Pus de son et disparition curseur, HELP !Fermé

Question

Bonjour à tous et merci d'avance de prêter intérêt à mon message. 

Alors voilà, depuis quelque temps, je n'ai plus de son sur mon PC. Toutes les 20 secondes environ, mon curseur disparait de l'écran, stoppant ainsi l'écriture (c'est énervant!!!!) 
Et depuis peu, mon PC reboot parfois tout seul. 

Rien n'y fait : Kapersky, Avast, MalwareAntiMalware, restaurations, etc.... 

Bref, je ne peut plus compter que sur l'aide de spécialistes puisque je n'en suit pas du tout un ! 

Je poste derrière un log ZHP. 

Merci encore par avance, car 5 min pour écrire ce simple petit texte, c'est long !!!!

Grand Murin · Answer

Alors, vl'à l'truc :


Rapport de ZHPDiag v1.26.14 par Nicolas Coolman, Update du 07/07/2010
Run by seb at 28/07/2010 20:13:56
Web site :  http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr

---\ Web Browser
MSIE: Internet Explorer v6.0.2900.2180
MFIE: Mozilla Firefox (3.6.3)

---\ System Information
Platform : Microsoft Windows XP (5.1.2600) Service Pack 2
Processor: x86 Family 6 Model 8 Stepping 3, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 510 MB (49% free)
System drive C: has 5 GB (24%) free of 19 GB

---\ Logged in mode
Computer Name: SUIVRE-X29PIKTZ
User Name: seb
All Users Names: SUPPORT_388945a0, seb, HelpAssistant, Guest, Administrator, 
Unselected Option:  O1,O45,O61,O65,O82
Logged in as Administrator

---\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 5 Go of 19 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 19 Go)
E:\ CD-ROM drive (Not Inserted)


---\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK


---\ Processus lancés
[MD5.77AC10DB097DFD0CD3071465B644D0AB] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe   [153376]
[MD5.40D7D0A208EE863BCA8D89E299216F15] - (.Nero AG - Nero BackItUp.) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe   [877864]
[MD5.49958506B773E40D31832E3EEDA522E7] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe   [910296]
[MD5.3E71546398BF7D1A849B584190578BB9] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [474624]


---\ Pages de recherche  de Mozilla Firefox (M1)
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla FireFox\extensions\linkfilter@kaspersky.ru


---\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm


---\ Internet Explorer URLSearchHook (R3)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Shell Doc Object and Control Library.) (No version) -- %SystemRoot%\System32\shdocvw.dll


---\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} . (.Pas de propriétaire - Pas de description.) -- (.not file.)


---\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe 
O4 - HKLM\..\Run: [NBKeyScan] . (.Nero AG - Nero BackItUp.) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe 
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe 
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe 
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe 
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe 


---\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xport to Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~1\MICROS~1\Office10\EXCEL.exe


---\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe


---\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll


---\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} () - http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab


---\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\System32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Systray shell service object.) -- C:\WINDOWS\System32\stobject.dll


---\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\System32\browseui.dll

Grand Murin · Answer

---\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\System32\browseui.dll


---\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 3 (Nero BackItUp Scheduler 3) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe


---\ Enumération des composants Active Desktop (O24)
O24 - Desktop Component 0: My Current Home Page - file:About:Home


---\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS . (.Pas de propriétaire - Pas de description.) -- RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\binegutils.dll
O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Internet Explorer - {4b218e3e-bc98-4770-93d3-2731b9329278} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\inf\ie.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp.inf
O40 - ASIC: Address Book 6 - {7790769C-0471-11d2-AF11-00C04FA35D02} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r32.) -- C:\WINDOWS\System32\Macromed\Flash\Flash10c.ocx


---\ Pilotes lancés au démarrage (O41)
O41 - Driver: avgntdd (avgntdd) . (.Avira GmbH - Avira AntiVir File Filter Driver.) - C:\Windows\sysTEM32\DRIVERS\avgntdd.sys
O41 - Driver: avipbb (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\Windows\system32\DRIVERS\avipbb.sys
O41 - Driver: ssmdrv (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\system32\DRIVERS\ssmdrv.sys


---\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Reader 9 - Français - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Audacity 1.2.6 - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: CCleaner (remove only) - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: CartoExploreur 3 3.02 - (.Bayo.) [HKLM]
O42 - Logiciel: Connection Booster 4.0.0.0 - (.TRACKZAPPER.COM.) [HKLM]
O42 - Logiciel: I-Doser v4 - (.Pas de propriétaire.) [HKCU]
O42 - Logiciel: JDownloader - (.AppWork UG (haftungsbeschränkt).) [HKLM]
O42 - Logiciel: Java(TM) 6 Update 18 - (.Sun Microsystems, Inc..) [HKLM]
O42 - Logiciel: K-Lite Codec Pack 5.4.0 (Full) - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: MFCDLL Shared Library - Retail Version - (.Unknown.) [HKLM]
O42 - Logiciel: MSXML 3.0 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM]
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM]
O42 - Logiciel: Microsoft .NET Framework 2.0 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office XP Professional with FrontPage - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft XML Parser and SDK - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Mozilla Firefox (3.6.3) - (.Mozilla.) [HKLM]
O42 - Logiciel: Nero 8 - (.Nero AG.) [HKLM]
O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Real Alternative 2.0.1 - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Revo Uninstaller 1.85 - (.VS Revo Group.) [HKLM]
O42 - Logiciel: Réseau France Bayo 0003-Q0 - (.Bayo.) [HKLM]
O42 - Logiciel: Réseau France BdAlti 2003-Q1 - (.Bayo.) [HKLM]
O42 - Logiciel: Réseau France BdNyme 2003-Q1 - (.Bayo.) [HKLM]
O42 - Logiciel: SUPER © Version 2009.bld.36 (June 10, 2009) - (.eRightSoft.) [HKLM]
O42 - Logiciel: SpeleoBase 2.8.5 - (.Paul De Bie, SC Avalon, Belgium.) [HKLM]
O42 - Logiciel: StealthNet 0.8.7.5 - (.The StealthNet Team.) [HKLM]
O42 - Logiciel: Switch Sound File Converter - (.NCH Software.) [HKLM]
O42 - Logiciel: TextBridge Classic - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Trust Easy Connect 9600 Plus v1.51 - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Update for Windows XP (KB898461) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: VCRedistSetup - (.Nero AG.) [HKLM]
O42 - Logiciel: VIA Vinyl Audio Codecs Driver Setup Program - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: VideoLAN VLC media player 0.8.6i - (.VideoLAN Team.) [HKLM]
O42 - Logiciel: VirtualDub 1.6.9 Fr - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Visual Topo - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Windows Installer 3.1 (KB893803) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Installer Clean Up - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Sign-in Assistant - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Media Format Runtime - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Windows XP Service Pack 2 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: iPhoto Plus 4 - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM]

---\ HKCU & HKLM Software Keys
[HKCU\Software\AC3Filter]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Adobe]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Audacity]
[HKCU\Software\Bayo]
[HKCU\Software\Bobyte]
[HKCU\Software\Classes]
[HKCU\Software\Connection Booster]
[HKCU\Software\ConversApi]
[HKCU\Software\Cyberlink]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\DivXNetworks]
[HKCU\Software\FIXIO PC Utilities]
[HKCU\Software\Freeware]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\GenSur]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\IM Providers]
[HKCU\Software\Illustrate]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\MONOGRAM]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MediaInfo]
[HKCU\Software\Mozilla]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\POWERARC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PowerArchiver]
[HKCU\Software\QUAD Utilities]
[HKCU\Software\RealNetworks]
[HKCU\Software\SecuROM]
[HKCU\Software\Sysinternals]
[HKCU\Software\TCP Optimizer]
[HKCU\Software\Trolltech]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\Visual Topo]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Xerox]
[HKCU\Software\ahead]
[HKCU\Software\cybelsoft]
[HKCU\Software\eMule]
[HKCU\Software\keyhole.com]
[HKCU\Software\madFlac]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Adobe]
[HKLM\Software\Audible]
[HKLM\Software\AviSynth]
[HKLM\Software\Bayo]
[HKLM\Software\C07ft5Y]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Codec Tweak Tool]
[HKLM\Software\Cyberlink]
[HKLM\Software\Cygnus Solutions]
[HKLM\Software\FullCircle]
[HKLM\Software\GNU]
[HKLM\Software\Gabest]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\HaaliMkx]
[HKLM\Software\INTEL]
[HKLM\Software\InstallShield]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KLCodecPack]
[HKLM\Software\Macromedia]
[HKLM\Software\Marcus Software]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NCH Software]
[HKLM\Software\NCH Swift Sound]
[HKLM\Software\NeroDigital]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\RealAlternative]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\Trad-FR]
[HKLM\Software\TrendMicro]
[HKLM\Software\Ulead Systems]
[HKLM\Software\Uniblue]
[HKLM\Software\VIA Technologies, Inc.]
[HKLM\Software\VideoLAN]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Wise Solutions]
[HKLM\Software\Xerox]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\ahead]
[HKLM\Software\cybelsoft]
[HKLM\Software\mozilla.org]

Grand Murin · Answer

---\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files\3gpconverter
O43 - CFD:Common File Directory R---D- C:\Program Files\Accessoires
O43 - CFD:Common File Directory ----D- C:\Program Files\Ad-Remover
O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Audacity
O43 - CFD:Common File Directory ----D- C:\Program Files\AviSynth 2.5
O43 - CFD:Common File Directory ----D- C:\Program Files\Bayo
O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files
O43 - CFD:Common File Directory ----D- C:\Program Files\Connection Booster
O43 - CFD:Common File Directory ----D- C:\Program Files\Ejay Special - Full
O43 - CFD:Common File Directory ----D- C:\Program Files\eMule
O43 - CFD:Common File Directory ----D- C:\Program Files\eRightSoft
O43 - CFD:Common File Directory R---D- C:\Program Files\Fichiers communs
O43 - CFD:Common File Directory ----D- C:\Program Files\Google
O43 - CFD:Common File Directory ----D- C:\Program Files\Hangsim
O43 - CFD:Common File Directory ----D- C:\Program Files\i2p
O43 - CFD:Common File Directory ----D- C:\Program Files\IDoser v4
O43 - CFD:Common File Directory ----D- C:\Program Files\IGN Rando
O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files\Intuwave
O43 - CFD:Common File Directory ----D- C:\Program Files\iPhoto Plus 4
O43 - CFD:Common File Directory ----D- C:\Program Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\JDownloader
O43 - CFD:Common File Directory ----D- C:\Program Files\K-Lite Codec Pack
O43 - CFD:Common File Directory ----D- C:\Program Files\Kodak
O43 - CFD:Common File Directory ----D- C:\Program Files\ma-config.com
O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft ActiveSync
O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox
O43 - CFD:Common File Directory ----D- C:\Program Files\MP3 Player Utilities
O43 - CFD:Common File Directory ----D- C:\Program Files\mp3DirectCut
O43 - CFD:Common File Directory ----D- C:\Program Files\MSECache
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Apps
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Messenger
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Toolbar
O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0
O43 - CFD:Common File Directory ----D- C:\Program Files\My Shared Folder
O43 - CFD:Common File Directory ----D- C:\Program Files\NCH Software
O43 - CFD:Common File Directory ----D- C:\Program Files\NCH Swift Sound
O43 - CFD:Common File Directory ----D- C:\Program Files\Nero
O43 - CFD:Common File Directory R---D- C:\Program Files\NetMeeting
O43 - CFD:Common File Directory ----D- C:\Program Files\Online Services
O43 - CFD:Common File Directory ----D- C:\Program Files\OpenOffice.org 2.3
O43 - CFD:Common File Directory R---D- C:\Program Files\Outlook Express
O43 - CFD:Common File Directory ----D- C:\Program Files\PhotoFiltre
O43 - CFD:Common File Directory ----D- C:\Program Files\PowerPoint Viewer
O43 - CFD:Common File Directory ----D- C:\Program Files\Publication Web
O43 - CFD:Common File Directory --H-D- C:\Program Files\QMgr
O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime
O43 - CFD:Common File Directory ----D- C:\Program Files\Real Alternative
O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek AC97
O43 - CFD:Common File Directory ----D- C:\Program Files\RegCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files\SAGEM
O43 - CFD:Common File Directory ----D- C:\Program Files\SLD Codec Pack
O43 - CFD:Common File Directory ----D- C:\Program Files\Softwin
O43 - CFD:Common File Directory ----D- C:\Program Files\Sony
O43 - CFD:Common File Directory ----D- C:\Program Files\StealthNet
O43 - CFD:Common File Directory ----D- C:\Program Files\TextBridge Classic
O43 - CFD:Common File Directory ----D- C:\Program Files\Trust
O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files\VIAudioi
O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files\Vinyl_AudioCodec_V580c-2
O43 - CFD:Common File Directory ----D- C:\Program Files\VirtualDub
O43 - CFD:Common File Directory ----D- C:\Program Files\VS Revo Group
O43 - CFD:Common File Directory ----D- C:\Program Files\Vtopo
O43 - CFD:Common File Directory ----D- C:\Program Files\Wilco Publishing
O43 - CFD:Common File Directory ----D- C:\Program Files\Winamp
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Installer Clean Up
O43 - CFD:Common File Directory R---D- C:\Program Files\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT
O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate
O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR
O43 - CFD:Common File Directory ----D- C:\Program Files\xerox
O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adaptec Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Designer
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\FotoWire
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Kodak
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Logitech
O43 - CFD:Common File Directory R---D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Nikon
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ODBC
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ProtectionDeDriver
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SERVICES
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SYSTEM
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\AVSMedia
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Designer
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\MSSoap
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Nero
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\ODBC
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Real
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Softwin
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System


---\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.00000000000000000000000000000000] - 28/07/2010 - 18:49:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log   [301544]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/07/2010 - 18:48:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\0.log   [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - 28/07/2010 - 18:48:08 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiaservc.log   [50]
O44 - LFC:[MD5.00000000000000000000000000000000] - 28/07/2010 - 18:48:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiadebug.log   [159]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 28/07/2010 - 18:47:32 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat   [2048]
O44 - LFC:[MD5.D05CE391DF3392C596B855CC248A5FE9] - 28/07/2010 - 17:59:05 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\wpa.dbl   [2262]
O44 - LFC:[MD5.00000000000000000000000000000000] - 26/07/2010 - 17:35:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SchedLgU.Txt   [1522]
O44 - LFC:[MD5.760B1044B038BFCB2CF229EDA6B8FDA0] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\FaxSetup.log   [12364]
O44 - LFC:[MD5.6CF37596A0CE9B16FDBD083312AA793B] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB893803v2.log   [8025]
O44 - LFC:[MD5.67FB2DB5E68FE1AF174536B51E088621] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\MedCtrOC.log   [850]
O44 - LFC:[MD5.0F7FC1097A8824391EA4EF7226B2BDFB] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\comsetup.log   [4076]
O44 - LFC:[MD5.BC99B393E9E7AD122420C455B1FD958B] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\iis6.log   [13224]
O44 - LFC:[MD5.A55A85447BFC8D2B401AFEDAC7BC1C55] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\imsins.log   [1374]
O44 - LFC:[MD5.59C11D32475F30B5AB7B871A9AC7A1D3] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\msgsocm.log   [618]
O44 - LFC:[MD5.FF07C77948CF35548DD3FC95F26612AD] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS
etfxocm.log   [2166]
O44 - LFC:[MD5.C1262386290967B1E1DC307DFC59B2E4] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS
tdtcsetup.log   [2476]
O44 - LFC:[MD5.1E80DEE6BA45967E381D12B74D394C51] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocgen.log   [5832]
O44 - LFC:[MD5.E71BC5F24F0F9AD10B5FD4303E4AC36B] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocmsn.log   [684]
O44 - LFC:[MD5.5BBFCC8FC0E298386BE1E0E108760F94] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS	abletoc.log   [622]
O44 - LFC:[MD5.8CF2D1F233295439D6AAB7FCD98F2465] - 22/07/2010 - 09:06:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS	soc.log   [5642]
O44 - LFC:[MD5.9FB2789FB9E0C33040F4822FFB331519] - 22/07/2010 - 09:06:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\msmqinst.log   [3724]
O44 - LFC:[MD5.C745B88AC960AFFF74508BEDCC65558A] - 22/07/2010 - 09:05:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupapi.log   [2157]
O44 - LFC:[MD5.C6D3D2DD36988E0120350E703F74A5EF] - 22/07/2010 - 09:05:20 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB898461.log   [6816]
O44 - LFC:[MD5.3F5572DAA08675FB91E4F6E709502896] - 22/07/2010 - 09:05:20 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\imsins.BAK   [1374]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 22/07/2010 - 09:05:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupact.log   [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 22/07/2010 - 09:05:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setuperr.log   [0]
O44 - LFC:[MD5.DD8520280304B6145A6BE31008748C7C] - 21/07/2010 - 18:50:53 R--A- . (.Realtek Semiconductor Corp. - Realtek AC'97 Audio Driver (WDM).) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS   [4122368]
O44 - LFC:[MD5.C99E22EFE74C8B3EFF93E227472FE247] - 21/07/2010 - 18:47:51 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ALSNDMGR.WAV   [141016]
O44 - LFC:[MD5.F16B730398CD35A1787A95540EAA03CA] - 21/07/2010 - 18:47:51 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\RTLCPL.EXE   [10528768]
O44 - LFC:[MD5.A60F86102600421E0B9665021B6CB9A6] - 21/07/2010 - 18:47:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ALSNDMGR.CPL   [18804736]
O44 - LFC:[MD5.80FD4D46B0E9B620CF757A9A5C789329] - 21/07/2010 - 18:47:47 ---A- . (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.EXE   [577536]
O44 - LFC:[MD5.4368EEFD9E44D770C90A5E241139A7D3] - 21/07/2010 - 18:47:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\RTLCPAPI.dll   [147456]
O44 - LFC:[MD5.9A359C7A57A9AF742C9E0AA59C047CFB] - 21/07/2010 - 18:47:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\Alcrmv.exe   [217088]
O44 - LFC:[MD5.A3CF502659EF4EBA42C70E832ED967ED] - 21/07/2010 - 18:47:44 ---A- . (.Realtek Semiconductor Corp. - Driver Update for Windows x64 or x86_32.) -- C:\WINDOWS\alcupd.exe   [315392]
O44 - LFC:[MD5.2F3670DDC2DE01648D0FBF7057CE481C] - 21/07/2010 - 18:20:51 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\PerfStringBackup.INI   [458340]
O44 - LFC:[MD5.3E5632447222EFB1DAEE5B8635E1C238] - 21/07/2010 - 18:20:51 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc009.dat   [58596]
O44 - LFC:[MD5.88900778E3D1A0843F3220B4B38A9018] - 21/07/2010 - 18:20:51 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh009.dat   [392296]
O44 - LFC:[MD5.00000000000000000000000000000000] - 21/07/2010 - 18:14:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\Sti_Trace.log   [0]
O44 - LFC:[MD5.AE93F42072F694431327548418086ADF] - 18/07/2010 - 21:07:59 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\d3d9caps.dat   [664]
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 15/07/2010 - 20:37:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\CONFIG.NT   [2577]
O44 - LFC:[MD5.FDF06637A62677613683D05D9FA001E9] - 09/07/2010 - 21:47:57 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\bdod.bin   [81984]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/07/2010 - 19:50:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\bdss.log   [0]


---\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll


---\ Export de clé d'application autorisée (ECAA) (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Micr

Grand Murin · Answer

---\ Export de clé d'application autorisée (ECAA) (O47) O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Microsoft® Remote Desktop Help Session Manager.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\StealthNet\stealthnet.exe" [Enabled] .(.The StealthNet Team - StealthNet.) -- C:\Program Files\StealthNet\stealthnet.exe O47 - AAKE:Key Export SP - "C:\Program Files\ma-config.com\maconfservice.exe" [Enabled] .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Microsoft® Remote Desktop Help Session Manager.) -- C:\WINDOWS\system32\sessmgr.exe ---\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\ Trojan Driver Search Data (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - DSP Group TrueSpeech(TM) Audio Codec for MSACM V3.50.) -- C:\WINDOWS\System32 ssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.I420"="i420vfw.dll" . (.www.helixcommunity.org - Helix I420 YUV Codec.) -- C:\WINDOWS\System32\i420vfw.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\System32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.yv12"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\WINDOWS\System32\yv12vfw.dll O52 - TDSD: \Drivers32\"VIDC.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\xvidvfw.dll O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\WINDOWS\System32\ac3acm.acm O52 - TDSD: \Drivers32\"msacm.lameacm"="lameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\WINDOWS\System32\lameACM.acm O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec 1.2.2" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"lameACM.acm"="Lame ACM MP3 CODEC v3.98.2" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC-3 ACM Codec" . (.fccHandler - AC-3 ACM Codec.) -- C:\WINDOWS\System32\ac3acm.acm O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll ---\ ShareTools MSconfig StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\AudioDeck [Key] . (.VIA Technologies, Inc. - Audio Deck.) -- C:\Program Files\VIAudioi\SBADeck\ADeck.exe O53 - SMSR:HKLM\...\startupreg\KernelFaultCheck [Key] . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\dumprep 0 -k O53 - SMSR:HKLM\...\startupreg\MSConfig [Key] . (.Microsoft Corporation - System Configuration Utility.) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe O53 - SMSR:HKLM\...\startupreg\MsnMsgr [Key] . (.Microsoft Corporation - Messenger.) -- C:\Program Files\MSN Messenger\msnmsgr.exe ---\ Microsoft Control Security Providers (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll ---\ Microsoft Windows Policies System (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 ---\ Microsoft Windows Policies Explorer (MWPE) (O56) O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveTypeAutoRun"=145 ---\ Liste des Drivers Système (SDL) (O58) O58 - SDL:[MD5.DD8520280304B6145A6BE31008748C7C] - 24/09/2008 - 09:40:22 R--A- . (.Realtek Semiconductor Corp. - Realtek AC'97 Audio Driver (WDM).) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 13/02/2009 - 12:17:50 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys O58 - SDL:[MD5.8966CF7805052FCBFBA7D4D94516AE9C] - 03/11/2009 - 21:14:32 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys O58 - SDL:[MD5.2DAA8CC2670720DEDDCC74A20EDE2EE9] - 13/02/2009 - 12:28:40 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 30/03/2009 - 10:32:48 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\WINDOWS\system32\drivers\avipbb.sys O58 - SDL:[MD5.B562592B7F5759C99E179CA467ECFB4C] - 23/08/2001 - 15:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C 1.2 WDM Main Driver.) -- C:\WINDOWS\system32\drivers\cinemst2.sys O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 23/08/2001 - 15:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys O58 - SDL:[MD5.BB005CB49D0638039703AC4F67FE0A05] - 17/08/2001 - 12:12:02 ---A- . (.Intel Corporation. - NDIS 5.0 DC21X4 miniport driver.) -- C:\WINDOWS\system32\drivers\dc21x4.sys O58 - SDL:[MD5.06B7EF73BA5F302EECC294CDF7E19702] - 03/08/2004 - 22:29:38 ---A- . (.Intel(R) Corporation - Miniport Driver for Intel Graphics Driver.) -- C:\WINDOWS\system32\drivers\i81xnt5.sys O58 - SDL:[MD5.E3AD5DA43FE7240534AB6E622DD88190] - 09/07/1998 - 16:40:54 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\drivers\MA1908.SYS O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 29/04/2010 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 29/04/2010 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 23/08/2001 - 15:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers ikedrv.sys O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 23/08/2001 - 15:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 23/08/2001 - 15:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers io8drv.sys O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 23/08/2001 - 15:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers iodrv.sys O58 - SDL:[MD5.D26E26EA516450AF9D072635C60387F4] - 23/08/2001 - 15:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\drivers\secdrv.sys O58 - SDL:[MD5.00000000000000000000000000000000] - 10/10/2008 - 02:50:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\drivers\sptd.sys O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 03/11/2009 - 21:14:32 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 23/08/2001 - 15:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers sbvcap.sys O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 23/08/2001 - 15:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys O58 - SDL:[MD5.A1ABFF7B96BE4CBE5E902FEFFB9125D9] - 01/11/2004 - 15:19:00 ---A- . (.VIA Technologies, Inc. - Vinyl AC'97 Codec Combo WDM Driver.) -- C:\WINDOWS\system32\drivers\vinyl97.sys O58 - SDL:[MD5.7B5B44EFE5EB9DADFB8EE29700885D23] - 03/08/2004 - 22:29:38 ---A- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv01nt.sys O58 - SDL:[MD5.EB1F6BAB6C22EDE0BA551B527475F7E9] - 03/08/2004 - 22:29:38 ---A- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv02nt.sys O58 - SDL:[MD5.03CE989D846C1AA81145CB22FCB86D06] - 03/08/2004 - 22:29:38 ---A- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\drivers\wadv05nt.sys O58 - SDL:[MD5.D83BDD5C059667A2F647A6BE5703A4D2] - 03/08/2004 - 22:29:42 ---A- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\drivers\watv01nt.sys O58 - SDL:[MD5.ED968D23354DAA0D7C621580C012A1F6] - 03/08/2004 - 22:29:44 ---A- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\drivers\watv02nt.sys O58 - SDL:[MD5.D738273F218A224C1DDAC04203F27A84] - 03/08/2004 - 22:29:44 ---A- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\drivers\watv04nt.sys O58 - SDL:[MD5.0052D118995CBAB152DAABE6106D1442] - 03/08/2004 - 22:29:46 ---A- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\drivers\wch7xxnt.sys O58 - SDL:[MD5.525849B4469DE021D5D61B4DB9BE3A9D] - 03/08/2004 - 22:29:48 ---A- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\drivers\wsiintxx.sys O58 - SDL:[MD5.589C2BCDB5BD602BF7B63D210407EF8C] - 03/08/2004 - 22:29:50 ---A- . (.Intel(R) Corporation - Local Flat Panel Display Minidriver for Intel(R) Graphics Drive.) -- C:\WINDOWS\system32\drivers\wvchntxx.sys O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 23/08/2001 - 15:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ansi.sys O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 23/08/2001 - 15:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\country.sys O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 23/08/2001 - 15:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\himem.sys O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 23/08/2001 - 15:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\key01.sys O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 03/08/2004 - 22:46:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\keyboard.sys O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 23/08/2001 - 15:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32 tdos.sys O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 23/08/2001 - 15:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32 tdos404.sys O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 23/08/2001 - 15:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32 tdos411.sys O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 23/08/2001 - 15:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32 tdos412.sys O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 23/08/2001 - 15:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32 tdos804.sys O58 - SDL:[MD5.4FE09F868CE65B334B42862C372C69CC] - 03/08/2004 - 22:45:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32 tio.sys O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 03/08/2004 - 22:45:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32 tio404.sys O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 03/08/2004 - 22:45:12 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32 tio411.sys O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 03/08/2004 - 22:45:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32 tio412.sys O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 03/08/2004 - 22:45:14 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32 tio804.sys ---\ Liste des outils de nettoyage (LATC) (O63) O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) O63 - Logiciel: ZHPDiag 1.26 - (.Nicolas Coolman.) O63 - Logiciel: Dial-a-fix - (.Djlizard.) O63 - Logiciel: RSIT - (.random/random.) ---\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (r) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS egedit.exe O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (r) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS egedit.exe ---\ Start Menu Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Pas de propriétaire - Pas de description.) -- "%programfiles%\Internet Explorer\iexplore.exe" (.not file.) O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - msn.) -- C:\Program Files\MSN\MSNCoreFiles\MSN6.exe ---\ Recherche d'infection Master Boot Record (O80) Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net Run by seb at 28/07/2010 20:14:50 device: opened successfully user: error reading MBR called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x823D81E8]<< kernel: MBR read successfully detected MBR rootkit hooks: \Driver\atapi -> 0x823d81e8 Warning: possible MBR rootkit infection ! MBR rootkit infection detected ! Use: "mbr.exe -f" to fix. Use "ZHPFix" command "MBRFix" to clear infection ! End of the scan (627 lines in 00mn 54s)

Grand Murin · Answer

Personne?????

Snif, j'sais vraiment plus quoi faire et l'intervention d'un professionnel couterait plus cher que la valeur e mon P.C!! J'ai beau chercher des solutions sur le web, je ne trouve pas de problème similaire.

Merci d'avance

Pus de son et disparition curseur, HELP !

5 réponses

Discussions similaires

Newsletters