Sujet Précédent Sujet Suivant

Plus rien sur le bureau

roc29 Messages postés 24 Statut Membre -  
roc29 Messages postés 24 Statut Membre -
Bonjour,

suite a un virus je pense, tout mes dossiers,photos, logiciel on disparu de mon bureau ainsi que mon fond d'ecran.

jai fait un scan avec avast qui a supprimer un virus ,mais rien n'est revenu comme avant.

j'ecrit d'un autre ordi de peur de me faire pirater mes comptes personnel

je suis sous xp avec avast comme antivirus jai aussi fait un ccleaner ,en ce moment je fait un superantispyware qui pour l'instant a trouver un "worm.autorun/bot".

Quelqu'un aurait-il une solution a mon probleme ?

merci a vous.

37 réponses

Précédent
  • 1
  • 2
Réponse 21 / 37
Utilisateur anonyme
 
reessaie TDSSKILLER
0
Réponse 22 / 37
roc29 Messages postés 24 Statut Membre
 
c bon tdskiller marche tu veut le rapport?
0
Réponse 23 / 37
roc29 Messages postés 24 Statut Membre
 
je te le met .
pence tu que mon pc est encore infecter

2011/04/05 19:40:16.0328 3948 TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28
2011/04/05 19:40:16.0750 3948 ================================================================================
2011/04/05 19:40:16.0750 3948 SystemInfo:
2011/04/05 19:40:16.0750 3948
2011/04/05 19:40:16.0750 3948 OS Version: 5.1.2600 ServicePack: 3.0
2011/04/05 19:40:16.0750 3948 Product type: Workstation
2011/04/05 19:40:16.0750 3948 ComputerName: ROC29
2011/04/05 19:40:16.0750 3948 UserName: roc
2011/04/05 19:40:16.0750 3948 Windows directory: C:\WINDOWS
2011/04/05 19:40:16.0750 3948 System windows directory: C:\WINDOWS
2011/04/05 19:40:16.0750 3948 Processor architecture: Intel x86
2011/04/05 19:40:16.0750 3948 Number of processors: 2
2011/04/05 19:40:16.0750 3948 Page size: 0x1000
2011/04/05 19:40:16.0750 3948 Boot type: Normal boot
2011/04/05 19:40:16.0750 3948 ================================================================================
2011/04/05 19:40:17.0546 3948 Initialize success
2011/04/05 19:40:57.0375 3504 ================================================================================
2011/04/05 19:40:57.0375 3504 Scan started
2011/04/05 19:40:57.0375 3504 Mode: Manual;
2011/04/05 19:40:57.0375 3504 ================================================================================
2011/04/05 19:40:57.0765 3504 Aavmker4 (83631291adf2887cffc786d034d3fa15) C:\WINDOWS\system32\drivers\Aavmker4.sys
2011/04/05 19:40:57.0937 3504 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
2011/04/05 19:40:58.0046 3504 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/04/05 19:40:58.0171 3504 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
2011/04/05 19:40:58.0265 3504 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
2011/04/05 19:40:58.0406 3504 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2011/04/05 19:40:58.0515 3504 AESTAud (822d53766d57c90c437536232ece9023) C:\WINDOWS\system32\drivers\AESTAud.sys
2011/04/05 19:40:58.0671 3504 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
2011/04/05 19:40:58.0765 3504 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
2011/04/05 19:40:58.0875 3504 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
2011/04/05 19:40:58.0953 3504 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
2011/04/05 19:40:59.0078 3504 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
2011/04/05 19:40:59.0156 3504 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
2011/04/05 19:40:59.0281 3504 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
2011/04/05 19:40:59.0390 3504 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
2011/04/05 19:40:59.0515 3504 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
2011/04/05 19:40:59.0625 3504 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
2011/04/05 19:40:59.0750 3504 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
2011/04/05 19:40:59.0843 3504 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
2011/04/05 19:40:59.0937 3504 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
2011/04/05 19:41:00.0078 3504 aswFsBlk (1c2e6bb4fe8621b1b863855b02bc33eb) C:\WINDOWS\system32\drivers\aswFsBlk.sys
2011/04/05 19:41:00.0156 3504 aswMon2 (452d0ecd14fa02f9b061f42c8a30dd49) C:\WINDOWS\system32\drivers\aswMon2.sys
2011/04/05 19:41:00.0203 3504 aswRdr (b6a9373619d851be80fb5f1b5eed0d4e) C:\WINDOWS\system32\drivers\aswRdr.sys
2011/04/05 19:41:00.0312 3504 aswSnx (9be41c1ae8bc481eb662d85c98d979c2) C:\WINDOWS\system32\drivers\aswSnx.sys
2011/04/05 19:41:00.0484 3504 aswSP (4b1a54ba2bc5873a774df6b70ab8b0b3) C:\WINDOWS\system32\drivers\aswSP.sys
2011/04/05 19:41:00.0625 3504 aswTdi (c7f1cea32766184911293f4e1ee653f5) C:\WINDOWS\system32\drivers\aswTdi.sys
2011/04/05 19:41:00.0734 3504 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/04/05 19:41:00.0812 3504 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/04/05 19:41:00.0953 3504 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/04/05 19:41:01.0062 3504 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/04/05 19:41:01.0281 3504 BCM43XX (3f95defa6503e830ece21e74735753f7) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
2011/04/05 19:41:01.0500 3504 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/04/05 19:41:01.0687 3504 Cam3820 (5af2367c6e70d0488eb47a87d5d899c8) C:\WINDOWS\system32\Drivers\cam3820a.sys
2011/04/05 19:41:01.0843 3504 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
2011/04/05 19:41:01.0937 3504 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/04/05 19:41:02.0015 3504 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/04/05 19:41:02.0156 3504 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
2011/04/05 19:41:02.0234 3504 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/04/05 19:41:02.0406 3504 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/04/05 19:41:02.0468 3504 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/04/05 19:41:02.0750 3504 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
2011/04/05 19:41:02.0906 3504 CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys
2011/04/05 19:41:03.0015 3504 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
2011/04/05 19:41:03.0203 3504 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
2011/04/05 19:41:03.0328 3504 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
2011/04/05 19:41:03.0515 3504 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
2011/04/05 19:41:03.0656 3504 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/04/05 19:41:03.0843 3504 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
2011/04/05 19:41:03.0984 3504 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
2011/04/05 19:41:04.0140 3504 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/04/05 19:41:04.0281 3504 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2011/04/05 19:41:04.0453 3504 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
2011/04/05 19:41:04.0578 3504 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/04/05 19:41:04.0781 3504 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/04/05 19:41:04.0968 3504 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
2011/04/05 19:41:05.0062 3504 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
2011/04/05 19:41:05.0218 3504 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
2011/04/05 19:41:05.0328 3504 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
2011/04/05 19:41:05.0531 3504 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/04/05 19:41:05.0656 3504 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/04/05 19:41:05.0812 3504 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/04/05 19:41:05.0937 3504 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/04/05 19:41:06.0125 3504 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/04/05 19:41:06.0281 3504 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
2011/04/05 19:41:06.0437 3504 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/04/05 19:41:06.0578 3504 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
2011/04/05 19:41:06.0734 3504 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
2011/04/05 19:41:06.0828 3504 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/04/05 19:41:07.0140 3504 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
2011/04/05 19:41:07.0531 3504 iaStor (d483687eace0c065ee772481a96e05f5) C:\WINDOWS\system32\DRIVERS\iaStor.sys
2011/04/05 19:41:07.0656 3504 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/04/05 19:41:07.0812 3504 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
2011/04/05 19:41:07.0906 3504 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
2011/04/05 19:41:08.0031 3504 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/04/05 19:41:08.0093 3504 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
2011/04/05 19:41:08.0203 3504 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/04/05 19:41:08.0281 3504 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/04/05 19:41:08.0406 3504 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/04/05 19:41:08.0484 3504 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/04/05 19:41:08.0609 3504 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/04/05 19:41:08.0703 3504 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/04/05 19:41:08.0828 3504 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/04/05 19:41:08.0906 3504 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2011/04/05 19:41:09.0062 3504 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/04/05 19:41:09.0140 3504 L1c (573337205057e22e13da1ffbc66a8aaf) C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
2011/04/05 19:41:09.0531 3504 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\WINDOWS\system32\DRIVERS\lmimirr.sys
2011/04/05 19:41:09.0625 3504 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
2011/04/05 19:41:09.0765 3504 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/04/05 19:41:09.0859 3504 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
2011/04/05 19:41:10.0062 3504 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/04/05 19:41:10.0140 3504 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/04/05 19:41:10.0250 3504 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
2011/04/05 19:41:10.0328 3504 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/04/05 19:41:10.0453 3504 MRxSmb (f3aefb11abc521122b67095044169e98) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/04/05 19:41:10.0609 3504 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2011/04/05 19:41:10.0687 3504 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/04/05 19:41:10.0750 3504 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/04/05 19:41:10.0875 3504 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/04/05 19:41:10.0937 3504 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/04/05 19:41:11.0078 3504 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2011/04/05 19:41:11.0140 3504 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2011/04/05 19:41:11.0203 3504 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/04/05 19:41:11.0359 3504 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2011/04/05 19:41:11.0437 3504 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/04/05 19:41:11.0546 3504 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/04/05 19:41:11.0593 3504 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/04/05 19:41:11.0718 3504 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/04/05 19:41:11.0812 3504 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/04/05 19:41:11.0921 3504 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/04/05 19:41:11.0984 3504 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/04/05 19:41:12.0125 3504 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2011/04/05 19:41:12.0203 3504 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/04/05 19:41:12.0359 3504 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/04/05 19:41:12.0484 3504 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/04/05 19:41:12.0562 3504 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/04/05 19:41:12.0703 3504 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\drivers\Parport.sys
2011/04/05 19:41:12.0765 3504 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/04/05 19:41:12.0921 3504 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/04/05 19:41:13.0000 3504 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/04/05 19:41:13.0203 3504 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/04/05 19:41:13.0250 3504 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys
2011/04/05 19:41:13.0609 3504 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
2011/04/05 19:41:13.0656 3504 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
2011/04/05 19:41:13.0796 3504 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/04/05 19:41:13.0921 3504 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/04/05 19:41:14.0015 3504 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/04/05 19:41:14.0171 3504 PxHelp20 (5491e4e7d93804f43abe8ce3c39f5a86) C:\WINDOWS\system32\Drivers\PxHelp20.sys
2011/04/05 19:41:14.0265 3504 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
2011/04/05 19:41:14.0375 3504 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
2011/04/05 19:41:14.0484 3504 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
2011/04/05 19:41:14.0578 3504 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
2011/04/05 19:41:14.0671 3504 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
2011/04/05 19:41:14.0812 3504 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/04/05 19:41:14.0890 3504 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/04/05 19:41:15.0031 3504 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/04/05 19:41:15.0140 3504 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/04/05 19:41:15.0218 3504 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/04/05 19:41:15.0328 3504 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/04/05 19:41:15.0437 3504 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2011/04/05 19:41:15.0562 3504 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/04/05 19:41:15.0640 3504 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/04/05 19:41:15.0750 3504 RSUSBSTOR (83f7a29b659771e60cd71999ef57aa0c) C:\WINDOWS\system32\Drivers\RtsUStor.sys
2011/04/05 19:41:15.0875 3504 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
2011/04/05 19:41:15.0984 3504 SahdIa32 (0b2d5d2341437d7d7e1a6c7bbce3786a) C:\WINDOWS\system32\Drivers\SahdIa32.sys
2011/04/05 19:41:16.0062 3504 SaibIa32 (7a5f65b16249af2bc9d18d815f5d7172) C:\WINDOWS\system32\Drivers\SaibIa32.sys
2011/04/05 19:41:16.0109 3504 SaibVd32 (e333c9515822de586a3ff759a0c9b7bf) C:\WINDOWS\system32\Drivers\SaibVd32.sys
2011/04/05 19:41:16.0250 3504 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/04/05 19:41:16.0375 3504 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\drivers\Serial.sys
2011/04/05 19:41:16.0515 3504 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/04/05 19:41:16.0734 3504 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
2011/04/05 19:41:16.0812 3504 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/04/05 19:41:16.0953 3504 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
2011/04/05 19:41:17.0062 3504 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2011/04/05 19:41:17.0171 3504 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/04/05 19:41:17.0296 3504 Srv (0f6aefad3641a657e18081f52d0c15af) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/04/05 19:41:17.0484 3504 STHDA (4f500b19d3e5e7d0ffb4488e404a95b4) C:\WINDOWS\system32\drivers\sthda.sys
2011/04/05 19:41:17.0625 3504 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/04/05 19:41:17.0765 3504 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/04/05 19:41:17.0843 3504 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2011/04/05 19:41:18.0000 3504 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
2011/04/05 19:41:18.0078 3504 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
2011/04/05 19:41:18.0250 3504 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
2011/04/05 19:41:18.0406 3504 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
2011/04/05 19:41:18.0546 3504 SynTP (502986ad48c1169072cff1e087f45a2d) C:\WINDOWS\system32\DRIVERS\SynTP.sys
2011/04/05 19:41:18.0671 3504 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/04/05 19:41:18.0843 3504 SysCow (9c1c6212623484331cce11ebbbfa3139) C:\WINDOWS\system32\drivers\syscow32x.sys
2011/04/05 19:41:18.0984 3504 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/04/05 19:41:19.0156 3504 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/04/05 19:41:19.0234 3504 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/04/05 19:41:19.0375 3504 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/04/05 19:41:19.0453 3504 TosIde (b411668322c3bf4e690888706b999679) C:\WINDOWS\system32\DRIVERS\toside.sys
2011/04/05 19:41:19.0578 3504 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2011/04/05 19:41:19.0687 3504 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
2011/04/05 19:41:19.0812 3504 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2011/04/05 19:41:19.0953 3504 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/04/05 19:41:20.0062 3504 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/04/05 19:41:20.0156 3504 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/04/05 19:41:20.0250 3504 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/04/05 19:41:20.0375 3504 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2011/04/05 19:41:20.0468 3504 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
2011/04/05 19:41:20.0593 3504 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2011/04/05 19:41:20.0687 3504 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
2011/04/05 19:41:20.0765 3504 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
2011/04/05 19:41:20.0859 3504 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/04/05 19:41:20.0984 3504 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/04/05 19:41:21.0125 3504 Wdf01000 (fc701a6c89737a631078ce5255b3fd12) C:\WINDOWS\system32\Drivers\wdf01000.sys
2011/04/05 19:41:21.0359 3504 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/04/05 19:41:21.0484 3504 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
2011/04/05 19:41:21.0656 3504 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/04/05 19:41:21.0765 3504 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2011/04/05 19:41:21.0906 3504 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
2011/04/05 19:41:22.0109 3504 ================================================================================
2011/04/05 19:41:22.0109 3504 Scan finished
2011/04/05 19:41:22.0109 3504 ================================================================================
0
Réponse 24 / 37
Utilisateur anonyme
 
fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.

▶ Télécharge ici :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

(NB : Si tu as un message d'erreur t'indiquant qu'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX

▶ Potasses le Tuto pour te familiariser avec le prg :

( cela dit, il est très simple d'utilisation ).

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !

Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 37
roc29 Messages postés 24 Statut Membre
 
re

malware a planter je poste le resulta demains

bonne nuit :-)
0
Réponse 26 / 37
Utilisateur anonyme
 
ok :)

:(
0
Réponse 27 / 37
roc29 Messages postés 24 Statut Membre
 
bonjour,

petit soussi ce matin ,malware commence sa recherche puis o bout de 2 minute ,une page bleu arrive et repard tres vite (pas le temp de voire ce que y a dessus )puis l'ordi redemarre.
0
Réponse 28 / 37
roc29 Messages postés 24 Statut Membre
 
c 2 fichiers sont en erreur d'apres le rapport windows.

c:\DOCUME~1\roc\LOCALS~1\Temp\WER4474.dir00\Mini040611-05.dmp
c:\DOCUME~1\roc\LOCALS~1\Temp\WER4474.dir00\sysdata.xml
0
Réponse 29 / 37
Utilisateur anonyme
 
non ce sont les fichiers resultat du bluescreen

Télécharge ici : Blue screen View
Décompresse l'archive sur ton Bureau.
Double clique sur le fichier BlueScreenView.exe pour le lancer. (Clic droit Executer en tant qu'administrateur sous Vista/Seven)

A la fin du scan, , clique sur Edit puis Select All.
Puis Go File et Save Selected Items.
Sauve le rapport sous BSOD.txt.
Ouvre BSOD.txt dans le Bloc-notes, copie son contenu et poste le dans ta réponse.
0
Réponse 30 / 37
roc29 Messages postés 24 Statut Membre
 
==================================================
Dump File : Mini040611-05.dmp
Crash Time : 06/04/2011 12:41:53
Bug Check String : FILE_SYSTEM
Bug Check Code : 0x00000022
Parameter 1 : 0x43737953
Parameter 2 : 0x00000000
Parameter 3 : 0x00000540
Parameter 4 : 0xf7329e00
Caused By Driver : syscow32x.sys
Caused By Address : syscow32x.sys+13e00
File Description : BackOnTrack Component
Product Name : BackOnTrack
Company : Sonic Solutions
File Version : 1.0.0.1
Processor : 32-bit
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini040611-05.dmp
Processors Count : 2
Major Version : 15
Minor Version : 2600
Dump File Size : 106 496
==================================================

==================================================
Dump File : Mini040611-04.dmp
Crash Time : 06/04/2011 11:24:38
Bug Check String : FILE_SYSTEM
Bug Check Code : 0x00000022
Parameter 1 : 0x43737953
Parameter 2 : 0x00000000
Parameter 3 : 0x00000540
Parameter 4 : 0xf7329e00
Caused By Driver : syscow32x.sys
Caused By Address : syscow32x.sys+13e00
File Description : BackOnTrack Component
Product Name : BackOnTrack
Company : Sonic Solutions
File Version : 1.0.0.1
Processor : 32-bit
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini040611-04.dmp
Processors Count : 2
Major Version : 15
Minor Version : 2600
Dump File Size : 106 496
==================================================

==================================================
Dump File : Mini040611-03.dmp
Crash Time : 06/04/2011 11:21:03
Bug Check String : FILE_SYSTEM
Bug Check Code : 0x00000022
Parameter 1 : 0x43737953
Parameter 2 : 0x00000000
Parameter 3 : 0x00000540
Parameter 4 : 0xf7329e00
Caused By Driver : syscow32x.sys
Caused By Address : syscow32x.sys+13e00
File Description : BackOnTrack Component
Product Name : BackOnTrack
Company : Sonic Solutions
File Version : 1.0.0.1
Processor : 32-bit
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini040611-03.dmp
Processors Count : 2
Major Version : 15
Minor Version : 2600
Dump File Size : 106 496
==================================================

==================================================
Dump File : Mini040611-02.dmp
Crash Time : 06/04/2011 11:15:28
Bug Check String : FILE_SYSTEM
Bug Check Code : 0x00000022
Parameter 1 : 0x43737953
Parameter 2 : 0x00000000
Parameter 3 : 0x00000540
Parameter 4 : 0xf7329e00
Caused By Driver : syscow32x.sys
Caused By Address : syscow32x.sys+13e00
File Description : BackOnTrack Component
Product Name : BackOnTrack
Company : Sonic Solutions
File Version : 1.0.0.1
Processor : 32-bit
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini040611-02.dmp
Processors Count : 2
Major Version : 15
Minor Version : 2600
Dump File Size : 106 496
==================================================

==================================================
Dump File : Mini040611-01.dmp
Crash Time : 06/04/2011 10:11:59
Bug Check String : FILE_SYSTEM
Bug Check Code : 0x00000022
Parameter 1 : 0x43737953
Parameter 2 : 0x00000000
Parameter 3 : 0x00000540
Parameter 4 : 0xf7329e00
Caused By Driver : syscow32x.sys
Caused By Address : syscow32x.sys+13e00
File Description : BackOnTrack Component
Product Name : BackOnTrack
Company : Sonic Solutions
File Version : 1.0.0.1
Processor : 32-bit
Computer Name :
Full Path : C:\WINDOWS\Minidump\Mini040611-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 2600
Dump File Size : 106 496
==================================================
0
Réponse 31 / 37
Utilisateur anonyme
 
ok fais Combofix :

https://forums.commentcamarche.net/forum/affich-21484009-plus-rien-sur-le-bureau?full#15
0
Réponse 32 / 37
roc29 Messages postés 24 Statut Membre
 
tu a reçu le rapport combofix?
je les poster mais je ne le vois pas .
0
Utilisateur anonyme
 
j'ai demandé son deblocage
0
roc29 Messages postés 24 Statut Membre
 
ok
0
Chris 94 Messages postés 58331 Date d'inscription   Statut Modérateur Dernière intervention   7 350
 
Bonjour,

Et voilou ;-)
0
roc29 Messages postés 24 Statut Membre
 
merci
0
Réponse 33 / 37
roc29 Messages postés 24 Statut Membre
 
ComboFix 11-04-05.02 - roc 06/04/2011 13:15:05.1.2 - x86
Microsoft Windows XP ...dition familiale 5.1.2600.3.1252.33.1036.18.1015.596 [GMT 2:00]
LancÈ depuis: c:\documents and settings\roc\Bureau\roc29.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
AVERTISSEMENT - LA CONSOLE DE R...CUP...RATION N'EST PAS INSTALL...E SUR CETTE MACHINE !!
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\roc\Application Data\Adobe\plugs
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc135.exe
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc157.exe
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc170.exe
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc220.exe
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc27.exe
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc39173984.txt
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc39181515.txt
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc39186078.txt
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc39197468.txt
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc4.exe
c:\documents and settings\roc\Application Data\Adobe\plugs\mmc9.exe
c:\documents and settings\roc\Application Data\Adobe\shed
c:\documents and settings\roc\Application Data\Adobe\shed\thr1.chm
c:\documents and settings\roc\Menu DÈmarrer\Programmes\Windows Repair
c:\documents and settings\roc\Menu DÈmarrer\Programmes\Windows Repair\Windows Repair.lnk
c:\tdsskiller\tdsskiller.exe
c:\windows\Trcl.dll
.
c:\windows\regedit.exe . . . est infectÈ!!
.
.
((((((((((((((((((((((((((((( Fichiers crÈÈs du 2011-03-06 au 2011-04-06 ))))))))))))))))))))))))))))))))))))
.
.
2011-04-05 14:23 . 2011-04-05 14:23 -------- d-----w- c:\program files\Ad-Remover
2011-04-05 14:12 . 2011-04-06 11:30 -------- d-----w- C:\tdsskiller
2011-04-05 13:24 . 2011-04-05 13:24 -------- d-----w- C:\Kill'em
2011-04-05 13:23 . 2011-04-05 15:26 -------- d-----w- c:\program files\List_Kill'em
2011-04-05 08:37 . 2011-04-05 08:37 -------- d-----w- c:\program files\CCleaner
2011-04-04 22:32 . 2011-04-04 22:32 -------- d-----w- c:\documents and settings\roc\Local Settings\Application Data\Help
2011-04-04 22:07 . 2011-04-04 22:14 -------- d-----w- c:\documents and settings\All Users\Application Data\SecTaskMan
2011-04-04 22:07 . 2011-04-04 22:32 -------- d-----w- c:\program files\Security Task Manager
2011-04-04 19:03 . 2011-04-04 19:03 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2011-04-04 12:45 . 2010-12-20 16:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-04-04 12:45 . 2010-12-20 16:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-04 12:45 . 2011-04-04 12:45 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-04-04 12:34 . 2011-04-04 19:50 -------- d-----w- c:\program files\Look'Trojan'Stop
2011-04-04 12:23 . 2011-04-04 12:23 -------- d-----w- c:\documents and settings\roc\Application Data\QuickScan
2011-04-04 11:55 . 2011-04-04 11:55 -------- d-----w- c:\documents and settings\Administrateur
2011-04-03 18:03 . 2011-04-03 18:03 -------- d-----w- c:\documents and settings\roc\Local Settings\Application Data\Agence-Exclusive
2011-04-03 18:03 . 2011-04-03 18:03 -------- d-----w- c:\documents and settings\roc\Application Data\Agence-Exclusive
2011-04-03 18:03 . 2011-04-04 19:52 -------- d-----w- c:\program files\Agence-Exclusive
2011-04-03 17:32 . 2011-04-05 11:48 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-04-03 17:32 . 2011-04-05 11:40 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2011-04-03 17:25 . 2011-04-03 17:25 -------- d-----w- c:\documents and settings\roc\Application Data\TrojanHunter
2011-04-01 21:53 . 2011-04-04 19:52 -------- d-----w- c:\program files\TrojanHunter 5.3
2011-04-01 21:34 . 2011-03-18 17:58 142296 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-04-01 21:34 . 2011-03-18 17:58 16856 ----a-w- c:\program files\Mozilla Firefox\plugin-container.exe
2011-04-01 21:34 . 2011-03-18 17:58 781272 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-04-01 21:34 . 2011-03-18 17:58 728024 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-04-01 21:34 . 2011-03-18 17:58 719832 ----a-w- c:\program files\Mozilla Firefox\mozcpp19.dll
2011-04-01 21:34 . 2011-03-18 17:58 1975768 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_42.dll
2011-04-01 21:34 . 2011-03-18 17:58 1893336 ----a-w- c:\program files\Mozilla Firefox\d3dx9_42.dll
2011-04-01 21:34 . 2011-03-18 17:58 1874904 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-04-01 21:34 . 2011-03-18 17:58 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-04-01 21:34 . 2011-03-18 17:58 142296 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-04-01 21:12 . 2011-04-06 11:00 1097218 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2011-04-01 20:57 . 2011-04-01 21:00 102400 ----a-w- c:\windows\RegBootClean.exe
2011-04-01 20:11 . 2011-04-01 21:10 -------- d-----w- c:\windows\BDOSCAN8
2011-04-01 19:59 . 2011-02-23 13:56 301528 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-04-01 19:59 . 2011-02-23 13:54 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-04-01 19:59 . 2011-02-23 13:55 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-04-01 19:59 . 2011-02-23 13:55 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-04-01 19:59 . 2011-02-23 13:56 371544 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-04-01 19:59 . 2011-02-23 13:55 102232 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-04-01 19:59 . 2011-02-23 13:55 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-04-01 19:59 . 2011-02-23 13:54 30680 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-04-01 19:59 . 2011-02-23 14:04 40648 ------w- c:\windows\avastSS.scr
2011-04-01 19:59 . 2011-02-23 14:04 190016 ------w- c:\windows\system32\aswBoot.exe
2011-04-01 19:58 . 2011-04-01 19:58 -------- d-----w- c:\program files\AVAST Software
2011-04-01 19:58 . 2011-04-01 19:58 -------- d-----w- c:\documents and settings\All Users\Application Data\AVAST Software
2011-04-01 12:07 . 2011-04-01 21:25 -------- d-----w- c:\program files\GridinSoft Trojan Killer
2011-03-31 21:34 . 2011-03-31 21:34 -------- d--h--w- c:\documents and settings\roc\Application Data\Malwarebytes
2011-03-31 21:33 . 2011-03-31 21:33 -------- d--h--w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-03-27 19:48 . 2011-03-31 20:52 -------- d--h--w- c:\program files\PokerStars.FR
2011-03-25 12:52 . 2011-03-25 12:52 86576 ---ha-w- c:\documents and settings\roc\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe
2011-03-25 12:52 . 2011-03-25 12:52 132672 ---ha-w- c:\documents and settings\roc\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe
2011-03-25 12:52 . 2011-03-25 12:52 392728 ---ha-w- c:\documents and settings\roc\Application Data\Microsoft\Services Windows Live\Services Windows Live.dll
2011-03-25 10:26 . 2011-03-25 10:26 368640 ---ha-w- c:\windows\system32\ReWire.dll
2011-03-25 10:26 . 2011-03-25 10:26 233472 ---ha-w- c:\windows\system32\REX Shared Library.dll
2011-03-25 10:26 . 2011-03-25 10:26 -------- d--h--w- c:\documents and settings\All Users\Application Data\Propellerhead Software
2011-03-25 10:26 . 2011-03-25 10:26 -------- d--h--w- c:\documents and settings\roc\Application Data\Propellerhead Software
2011-03-17 11:00 . 2011-03-17 11:00 -------- d--h--w- c:\documents and settings\roc\Application Data\Template
2011-03-15 10:05 . 2008-04-13 10:40 36352 ---ha-w- c:\windows\system32\drivers\disk.sys
2011-03-15 10:04 . 2008-04-13 10:45 32128 ---ha-w- c:\windows\system32\drivers\usbccgp.sys
2011-03-14 16:49 . 2011-04-05 07:32 -------- d--h--w- c:\program files\IMEA Sequencer
2011-03-14 16:43 . 2011-03-17 10:54 -------- d--h--w- c:\documents and settings\roc\Application Data\DarkWave Studio
2011-03-14 16:42 . 2011-03-17 10:54 -------- d--h--w- c:\program files\ExperimentalScene
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-09 13:54 . 2011-02-09 13:54 270848 ---ha-w- c:\windows\system32\sbe.dll
2011-02-09 13:54 . 2011-02-09 13:54 186880 ---ha-w- c:\windows\system32\encdec.dll
2011-02-02 07:59 . 2011-02-02 07:59 2067456 ---ha-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57 . 2011-01-27 11:57 677888 ---ha-w- c:\windows\system32\mstsc.exe
2011-01-21 14:44 . 2011-01-21 14:44 441344 ---ha-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2011-01-07 14:09 290048 ---ha-w- c:\windows\system32\atmfd.dll
2011-03-18 17:58 . 2011-04-01 21:34 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
.
[-] 2008-04-14 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys
.
[-] 2008-04-15 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys
.
[-] 2008-04-15 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys
.
[-] 2008-04-14 . 16813155807C6881F4BFBF6657424659 . 25216 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys
.
[-] 2008-04-15 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys
.
[-] 2008-04-15 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys
.
[-] 2008-04-15 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys
.
[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[-] 2008-04-15 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
.
[-] 2008-04-15 . 06B54A7B1EF7CB16BFD0E208D343FA71 . 77824 . . [5.1.2600.5512] . . c:\windows\system32\browser.dll
.
[-] 2008-04-15 . 91E6024D6D4DCDECDB36C43ECF9BBECB . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe
.
[-] 2008-04-15 . BE0CB143FA427D93440DED18DB8C918B . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll
.
[-] 2008-04-15 12:00 . F4B7146C7EED6C4E158DCD9B5266C25A . 851968 . . [2001.12.4414.700] . . c:\windows\system32\comres.dll
.
[-] 2008-04-15 . BAA0B6E647C1AD593E9BAE5CC31BCFFB . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll
.
[-] 2009-02-09 . F83B964469D230F445613C44DF9FE25D . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\rpcss.dll
[-] 2009-02-09 . 0203B1AAD358F206CB0A3C1F93CCE17A . 401408 . . [5.1.2600.5755] . . c:\windows\system32\rpcss.dll
[-] 2008-04-15 . 3D65EB82E1FA6DB15A33E024C9E03CAB . 399360 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\rpcss.dll
.
[-] 2009-02-09 . C3FB1D70CB88722267949694BA51759E . 111104 . . [5.1.2600.5755] . . c:\windows\system32\services.exe
[-] 2009-02-09 . 62789101F9C2401ED598AA2CDE7450C0 . 111104 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe
[-] 2008-04-15 . 54CB50058851D95E56EC70D09F70857F . 109056 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\services.exe
.
[-] 2010-08-17 . 258DD5D4283FD9F9A7166BE9AE45CE73 . 58880 . . [5.1.2600.6024] . . c:\windows\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[-] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\spoolsv.exe
[-] 2008-04-15 . 460E4CE148BD07218DA0B6A3D31885A9 . 57856 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB2347290$\spoolsv.exe
.
[-] 2008-04-15 . DD73D6B9F6B4CB630CF35B438B540174 . 512000 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe
.
[-] 2010-08-23 . 4C96AB448A3014EBC11E1D3868071391 . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll
[-] 2010-08-23 . AD6F8920E9BC4ADF4F2844E3ED0D47AF . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
[-] 2008-04-15 . B4AA331468315B6A174C3F0D5B3BC135 . 617472 . . [5.82] . . c:\windows\$NtUninstallKB2296011$\comctl32.dll
[-] 2008-04-15 . AEF3D788DBF40C7C4D204EA45EB0C505 . 921088 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll
[-] 2008-04-15 . F92E6BEA9349D49341383F8403B4DFE5 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
.
[-] 2008-04-15 . 7A6D0B71035E123FDDA2156A25578AD3 . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll
.
[-] 2008-07-07 20:28 . EC16AE9B37EACF871629227A3F3913FD . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll
[-] 2008-07-07 20:24 . 157F9C595FD0D10502497DC4C1348D17 . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll
[-] 2008-04-15 12:00 . 9FD4A0615BF3E9388A46EDF8774C7294 . 246272 . . [2001.12.4414.701] . . c:\windows\$NtUninstallKB950974$\es.dll
.
[-] 2008-04-15 . 0469B73DB32E5520F342C5E163AA3CCA . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll
.
[-] 2009-03-21 . 98F08549604D090B6B2514AF845F329F . 1054720 . . [5.1.2600.5781] . . c:\windows\system32\kernel32.dll
[-] 2009-03-21 . C3AF0EEE26B59484E674673E3016AAB7 . 1056768 . . [5.1.2600.5781] . . c:\windows\$hf_mig$\KB959426\SP3QFE\kernel32.dll
[-] 2008-04-15 . 3AC8886DFA5AB641417DF4D3B7F5512E . 1054720 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB959426$\kernel32.dll
.
[-] 2008-04-15 . 5C64008E661307C4A3C3C25D9086CDE7 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll
.
[-] 2008-04-15 . 982B2C204337C3B12211E1E1D9BA8C9C . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll
.
[-] 2008-04-15 . 3891413139EAABFEFE9B0CA49B5CD395 . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll
[-] 2008-04-15 . 4200BE3808F6406DBE45A7B88DAE5035 . 322560 . . [7.0.2600.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.0.0_x-ww_2726e76a\msvcrt.dll
[-] 2008-04-15 . D33CD21D476C3A07DD88F83850A17432 . 343040 . . [7.0.2600.5512] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.5512_x-ww_3fd60d63\msvcrt.dll
.
[-] 2008-06-20 . 58AF8498C62E1E1DAB5AE59C6E08C180 . 247808 . . [5.1.2600.5625] . . c:\windows\system32\mswsock.dll
[-] 2008-06-20 . C759B3790D3BA760C52E218EF4886DAC . 247808 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll
[-] 2008-04-15 . 196CCC3FDD21665DCAA9F83FFC03B41A . 247808 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\mswsock.dll
.
[-] 2008-04-15 . 04821179C3171554C1BD1F9888A113E2 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll
.
[-] 2008-04-15 . 9F2C862E39BF8E8FC51C3F6A6BCEB415 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll
.
[-] 2008-04-15 . 973B36634C544948C663E8269AA1B3A3 . 187392 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll
.
[-] 2008-04-15 . 9A4E7ECBB5B7FB86F3B926AB039F4FEC . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll
.
[-] 2008-04-15 . E4BDF223CD75478BF44567B4D5C2634D . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe
.
[-] 2008-04-15 . 8E5231171AD6595FF002E848CC54FCD7 . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll
.
[-] 2008-04-15 . E853F84D3CE2FAA2A802E33CF89AC023 . 579584 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll
.
[-] 2008-04-15 . E74DDB12188C2FF57A78624DBF7332FC . 26624 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe
.
[-] 2008-04-15 . FB836F9E62D82904C983AD21296A5D9C . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll
.
[-] 2008-04-15 . 36A608BF354FCC64AD6C0F2B5E2B8806 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\ws2help.dll
.
[-] 2008-04-15 . F2317622D29F9FF0F88AEECD5F60F0DD . 1037824 . . [6.00.2900.5512] . . c:\windows\explorer.exe
.
[-] 2010-07-16 . A867E538CFD78CB10B3EEF2495C10F00 . 1287680 . . [5.1.2600.6010] . . c:\windows\system32\ole32.dll
[-] 2010-07-16 . 210E7ADFEFA2879115612E5C02D410D6 . 1288704 . . [5.1.2600.6010] . . c:\windows\$hf_mig$\KB979687\SP3QFE\ole32.dll
[-] 2008-04-15 . 9245FAF86A8235D5290A23C010DABD43 . 1287168 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB979687$\ole32.dll
.
[-] 2010-04-16 . E441C6889101BEEB1237855D0683C763 . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\usp10.dll
[-] 2010-04-16 . A044F43EACDB453AE6DA308DE9BBD51E . 406016 . . [1.0420.2600.5969] . . c:\windows\$hf_mig$\KB981322\SP3QFE\usp10.dll
[-] 2008-04-15 . 8B9167A0A9E18E22F31FB4EE2563019A . 406016 . . [1.0420.2600.5512] . . c:\windows\$NtUninstallKB981322$\usp10.dll
.
[-] 2008-04-15 . 6ED29124A1C83BD0CF6B26BD01CA6F6F . 171520 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
.
[-] 2008-04-15 . 02DA31AB433A6C1110A736C85701DECA . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe
.
[-] 2008-04-15 . F92A87FDDA0C11C8604FBC2B864FA726 . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll
.
[-] 2008-04-15 . 4EC800BDF80521B0207BD2301DFC7D14 . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll
.
[-] 2008-04-15 . E17C85D5B5CF477638433B851A98499E . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
[-] 2008-04-15 . 59DC5BB82E4C8E0B3EADCFDBC44BA6E4 . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
.
[-] 2008-04-15 . E598D81197E2E0EC42A0C55772BB00E8 . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll
.
[-] 2008-04-15 . 55F5C5C1BE1A78E285033E432BA01597 . 194560 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll
.
[-] 2008-04-15 . EA9E0DB8684CEF2FD3BADD671DF5A112 . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll
.
[-] 2008-04-15 . 710BC85A8C22626EE094439E3EA0D38C . 297984 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll
.
[-] 2008-04-15 . E62B0BE3FC855066C872F5B50A6BCD1B . 347136 . . [5.1.2600.5512] . . c:\windows\system32\hnetcfg.dll
.
[-] 2008-04-15 . E4ABC1212B70BB03D35E60681C447210 . 12032 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys
.
[-] 2008-04-13 08:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys
.
[-] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\agp440.sys
.
[-] 2008-04-15 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys
.
[-] 2010-09-18 07:18 . C27D0CD76C1982F36387F2E4F67E64A9 . 953856 . . [4.1.6151] . . c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc40u.dll
[-] 2010-09-18 06:53 . 8699BC5CF7FDE1292E7F9B56DD043D82 . 953856 . . [4.1.6151] . . c:\windows\system32\mfc40u.dll
[-] 2008-04-15 12:00 . CE21FE79AD3B913A79E0C742BED6BF85 . 927504 . . [4.1.0.61] . . c:\windows\$NtUninstallKB2387149$\mfc40u.dll
.
[-] 2008-04-15 . E67A66A3781C1A483F0F8992664CBE0D . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll
.
[-] 2006-10-18 20:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll
.
[-] 2008-04-15 12:00 . 037D92B3A7853A183FCAB77FB1D13D6C . 438272 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll
.
[-] 2008-04-15 . BD8166A495B02308F364B36249475F22 . 186368 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll
.
[-] 2008-04-15 . 4BB396EA6CAA50F2208078602549F2F2 . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dsound.dll
.
[-] 2008-04-15 . 7EAEC24B85DD04EDAA04A51CB07DF870 . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\d3d9.dll
.
[-] 2008-04-15 . 75BD925DAB6E5323EDB6D5CFCDEB16D1 . 279552 . . [5.03.2600.5512] . . c:\windows\system32\ddraw.dll
.
[-] 2008-04-15 12:00 . 3BA21BD333A1B8B222006E5464D44F49 . 84992 . . [5.1.2600.5512] . . c:\windows\system32\olepro32.dll
.
[-] 2008-04-15 . 08592889A219F7A60F9865B0EE7CAFF8 . 42496 . . [5.1.2600.5512] . . c:\windows\system32\perfctrs.dll
.
[-] 2008-04-15 . A71A42AD584FAD1A8D1EC5D807C6E528 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\version.dll
.
[-] 2008-04-15 . 6ED29124A1C83BD0CF6B26BD01CA6F6F . 171520 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
.
[-] 2008-04-15 . C1F726EE0B043B074A68992BC4AEF8FD . 178176 . . [5.1.2600.5512] . . c:\windows\system32\w32time.dll
.
[-] 2008-04-15 . D76B0E8A4ECAD1ADCC75FD14A7ACC54C . 334336 . . [5.1.2600.5512] . . c:\windows\system32\wiaservc.dll
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les ÈlÈments vides & les ÈlÈments initiaux lÈgitimes ne sont pas listÈs
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 14:04 122512 ------w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-15 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-15 159744]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-15 131072]
"AESTFltr"="c:\windows\system32\AESTFltr.exe" [2009-07-06 737280]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-11-18 149280]
"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-09-01 499768]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2011-01-30 35736]
"Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-02-23 3451496]
"autoupdater"="c:\documents and settings\roc\Application Data\Agence-Exclusive\Agence-Exclusive\autoupdater.exe" [2011-02-24 671360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-15 15360]
.
c:\documents and settings\roc\Menu DÇmarrer\Programmes\DÇmarrage\
OneNote 2007 - Capture d'Çcran et lancement.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2010-12-08 12:11 87424 ---ha-w- c:\windows\system32\LMIinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
.
R0 SahdIa32;HDD Filter Driver;c:\windows\system32\drivers\SahdIa32.sys [18/11/2009 17:50 21488]
R0 SaibIa32;Volume Filter Driver;c:\windows\system32\drivers\SaibIa32.sys [18/11/2009 17:50 15856]
R0 SysCow;SysCow;c:\windows\system32\drivers\syscow32x.sys [02/07/2009 00:10 103792]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [01/04/2011 21:59 371544]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [01/04/2011 21:59 301528]
R1 SaibVd32;Virtual Disk Driver;c:\windows\system32\drivers\SaibVd32.sys [18/11/2009 17:50 25584]
R2 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269;Roxio SAIB Service;c:\program files\Roxio\BackOnTrack\Disaster Recovery\SaibSVC.exe [02/06/2009 20:05 457200]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [01/04/2011 21:59 19544]
R2 BOTService;BOTService;c:\program files\Roxio\BackOnTrack\Instant Restore\BOTService.exe [09/07/2009 05:08 199152]
R3 AESTAud;AE Audio Service;c:\windows\system32\drivers\AESTAud.sys [18/11/2009 17:38 113664]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [04/09/2009 23:46 45056]
S2 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\LogMeIn\x86\RaInfo.sys --> c:\program files\LogMeIn\x86\RaInfo.sys [?]
S3 Cam3820;Cam3820 PC Camera Driver;c:\windows\system32\drivers\cam3820a.sys [18/06/2009 10:36 308608]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [18/11/2009 17:35 174592]
.
Contenu du dossier 'T'ches planifiÈes'
.
2011-04-06 c:\windows\Tasks\BackOnTrack Instant Restore Idle.job
- c:\program files\Roxio\BackOnTrack\Instant Restore\RstIdle.exe [2009-07-09 03:09]
.
.
------- Examen supplÈmentaire -------
.
uInternet Connection Wizard,ShellNext = "c:\program files\Outlook Express\msimn.exe" //mailurl:mailto:stÈlla.001@live.fr
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\roc\Application Data\Mozilla\Firefox\Profiles\sxpnkgd6.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?babsrc=SP_ss&mntrId=2e46140b00000000000018a905d7982e&tlver=1.4.19.19&instlRef=sst&ss=1&affID=18026&q=
FF - user.js: yahoo.homepage.dontask - true
.
- - - - ORPHELINS SUPPRIMES - - - -
.
BHO-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
BHO-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
HKLM-Run-SynTPEnh - %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-SysTrayApp - %ProgramFiles%\IDT\WDM\sttray.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-04-06 13:31
Windows 5.1.2600 Service Pack 3 NTFS
.
Recherche de processus cachÈs ...
.
Recherche d'ÈlÈments en dÈmarrage automatique cachÈs ...
.
Recherche de fichiers cachÈs ...
.
.
c:\docume~1\roc\LOCALS~1\Temp\catchme.dll 53248 bytes executable
.
Scan terminÈ avec succËs
Fichiers cachÈs: 1
.
**************************************************************************
.
--------------------- DLLs chargÈes dans les processus actifs ---------------------
.
- - - - - - - > 'winlogon.exe'(864)
c:\windows\system32\LMIinit.dll
c:\windows\system32\LMIRfsClientNP.dll
.
Heure de fin: 2011-04-06 13:42:07
ComboFix-quarantined-files.txt 2011-04-06 11:41
.
Avant-CF: 130+167+119+872 octets libres
AprËs-CF: 130+198+839+296 octets libres
.
WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe
.
- - End Of File - - EAB1288C9E8632E008A7C490798E8376
0
Réponse 34 / 37
Utilisateur anonyme
 
pourquoi tu n'as pas installé la console de recuperation avec combofixx?

et c'est quoi ce windows ?
0
roc29 Messages postés 24 Statut Membre
 
quand il me la demander jai fait ok
comprend pas .
c windows xp famille
0
Utilisateur anonyme
 
oui mais je veux dire il vient d'ou ?
0
roc29 Messages postés 24 Statut Membre
 
c hp qui m'a renvoyer un cd de restauration vu que j'avais planter y a un ans et que j'avais pas fait de sauvegarde du systeme
0
Réponse 35 / 37
Utilisateur anonyme
 

__________________________________________________
=>/!\Le script qui suit a été écrit spécialement cet ordinateur/!\ <=
=>il est fort déconseillé de le transposer sur un autre ordinateur !<=
----------------------------------------------------------------------------

Toujours avec toutes les protections désactivées, fais ceci :

▶ Ouvre le bloc-notes (Menu démarrer --> programmes --> accessoires --> bloc-notes)
▶ Copie/colle dans le bloc-notes ce qui entre les lignes ci dessous (sans les lignes) :

----------------------------------------------------------
KillAll::

SRPeek::
C:\Windows\Regedit.exe

------------------------------------------------------------------

▶ Enregistre ce fichier sur ton Bureau (et pas ailleurs !) sous le nom CFScript.txt
▶ Quitte le Bloc Notes

▶ Fais un glisser/déposer de ce fichier CFScript sur le fichier combofix

▶ Patiente le temps du scan. Le Bureau va disparaître à plusieurs reprises : c'est normal ! Ne touche à rien tant que le scan n'est pas terminé.
▶ Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
▶ Si le fichier ne s'ouvre pas, il se trouve ici => C:\ComboFix.txt

0
Réponse 36 / 37
roc29 Messages postés 24 Statut Membre
 
ComboFix 11-04-05.02 - roc 06/04/2011 16:54:33.2.2 - x86
Microsoft Windows XP ...dition familiale 5.1.2600.3.1252.33.1036.18.1015.583 [GMT 2:00]
LancÈ depuis: C:\Documents and Settings\roc\Bureau\roc29.exe
Commutateurs utilisÈs :: C:\Documents and Settings\roc\Bureau\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

C:\WINDOWS\regedit.exe . . . est infectÈ!!

((((((((((((((((((((((((((((( Fichiers crÈÈs du 2011-03-06 au 2011-04-06 ))))))))))))))))))))))))))))))))))))

2011-04-06 14:44:19 . 2011-04-06 14:49:51 -------- d-----w- C:\roc29
2011-04-05 14:23:50 . 2011-04-05 14:23:58 -------- d-----w- C:\Program Files\Ad-Remover
2011-04-05 14:12:49 . 2011-04-06 11:30:14 -------- d-----w- C:\tdsskiller
2011-04-05 13:24:12 . 2011-04-05 13:24:12 -------- d-----w- C:\Kill'em
2011-04-05 13:23:57 . 2011-04-05 15:26:40 -------- d-----w- C:\Program Files\List_Kill'em
2011-04-05 08:37:35 . 2011-04-05 08:37:40 -------- d-----w- C:\Program Files\CCleaner
2011-04-04 22:32:46 . 2011-04-04 22:32:46 -------- d-----w- C:\Documents and Settings\roc\Local Settings\Application Data\Help
2011-04-04 22:07:33 . 2011-04-04 22:14:46 -------- d-----w- C:\Documents and Settings\All Users\Application Data\SecTaskMan
2011-04-04 22:07:19 . 2011-04-04 22:32:46 -------- d-----w- C:\Program Files\Security Task Manager
2011-04-04 19:03:42 . 2011-04-04 19:03:42 -------- d-----w- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2011-04-04 12:45:48 . 2010-12-20 16:09:00 38224 ----a-w- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2011-04-04 12:45:41 . 2010-12-20 16:08:40 20952 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys
2011-04-04 12:45:40 . 2011-04-04 12:45:49 -------- d-----w- C:\Program Files\Malwarebytes' Anti-Malware
2011-04-04 12:34:31 . 2011-04-04 19:50:02 -------- d-----w- C:\Program Files\Look'Trojan'Stop
2011-04-04 12:23:13 . 2011-04-04 12:23:20 -------- d-----w- C:\Documents and Settings\roc\Application Data\QuickScan
2011-04-04 11:55:12 . 2011-04-04 11:55:12 -------- d-----w- C:\Documents and Settings\Administrateur
2011-04-03 18:03:19 . 2011-04-03 18:03:19 -------- d-----w- C:\Documents and Settings\roc\Local Settings\Application Data\Agence-Exclusive
2011-04-03 18:03:10 . 2011-04-03 18:03:10 -------- d-----w- C:\Documents and Settings\roc\Application Data\Agence-Exclusive
2011-04-03 18:03:09 . 2011-04-04 19:52:21 -------- d-----w- C:\Program Files\Agence-Exclusive
2011-04-03 17:32:19 . 2011-04-05 11:48:27 -------- d-----w- C:\Program Files\Spybot - Search & Destroy
2011-04-03 17:32:19 . 2011-04-05 11:40:32 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2011-04-03 17:25:18 . 2011-04-03 17:25:18 -------- d-----w- C:\Documents and Settings\roc\Application Data\TrojanHunter
2011-04-01 21:53:07 . 2011-04-04 19:52:40 -------- d-----w- C:\Program Files\TrojanHunter 5.3
2011-04-01 21:34:59 . 2011-03-18 17:58:47 142296 ----a-w- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
2011-04-01 21:34:58 . 2011-03-18 17:58:47 16856 ----a-w- C:\Program Files\Mozilla Firefox\plugin-container.exe
2011-04-01 21:34:57 . 2011-03-18 17:58:47 781272 ----a-w- C:\Program Files\Mozilla Firefox\mozsqlite3.dll
2011-04-01 21:34:57 . 2011-03-18 17:58:47 728024 ----a-w- C:\Program Files\Mozilla Firefox\libGLESv2.dll
2011-04-01 21:34:57 . 2011-03-18 17:58:47 719832 ----a-w- C:\Program Files\Mozilla Firefox\mozcpp19.dll
2011-04-01 21:34:57 . 2011-03-18 17:58:47 1975768 ----a-w- C:\Program Files\Mozilla Firefox\D3DCompiler_42.dll
2011-04-01 21:34:57 . 2011-03-18 17:58:47 1893336 ----a-w- C:\Program Files\Mozilla Firefox\d3dx9_42.dll
2011-04-01 21:34:57 . 2011-03-18 17:58:47 1874904 ----a-w- C:\Program Files\Mozilla Firefox\mozjs.dll
2011-04-01 21:34:57 . 2011-03-18 17:58:47 15832 ----a-w- C:\Program Files\Mozilla Firefox\mozalloc.dll
2011-04-01 21:34:57 . 2011-03-18 17:58:47 142296 ----a-w- C:\Program Files\Mozilla Firefox\libEGL.dll
2011-04-01 21:12:07 . 2011-04-06 14:42:50 1097218 ----a-w- C:\WINDOWS\system32\PerfStringBackup.TMP
2011-04-01 20:57:13 . 2011-04-01 21:00:33 102400 ----a-w- C:\WINDOWS\RegBootClean.exe
2011-04-01 20:11:10 . 2011-04-01 21:10:46 -------- d-----w- C:\WINDOWS\BDOSCAN8
2011-04-01 19:59:26 . 2011-02-23 13:56:45 301528 ----a-w- C:\WINDOWS\system32\drivers\aswSP.sys
2011-04-01 19:59:26 . 2011-02-23 13:54:55 19544 ----a-w- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2011-04-01 19:59:25 . 2011-02-23 13:55:49 49240 ----a-w- C:\WINDOWS\system32\drivers\aswTdi.sys
2011-04-01 19:59:25 . 2011-02-23 13:55:10 25432 ----a-w- C:\WINDOWS\system32\drivers\aswRdr.sys
2011-04-01 19:59:24 . 2011-02-23 13:56:55 371544 ----a-w- C:\WINDOWS\system32\drivers\aswSnx.sys
2011-04-01 19:59:24 . 2011-02-23 13:55:47 102232 ----a-w- C:\WINDOWS\system32\drivers\aswmon2.sys
2011-04-01 19:59:24 . 2011-02-23 13:55:44 96344 ----a-w- C:\WINDOWS\system32\drivers\aswmon.sys
2011-04-01 19:59:24 . 2011-02-23 13:54:57 30680 ----a-w- C:\WINDOWS\system32\drivers\aavmker4.sys
2011-04-01 19:59:04 . 2011-02-23 14:04:21 40648 ------w- C:\WINDOWS\avastSS.scr
2011-04-01 19:59:03 . 2011-02-23 14:04:17 190016 ------w- C:\WINDOWS\system32\aswBoot.exe
2011-04-01 19:58:57 . 2011-04-01 19:58:57 -------- d-----w- C:\Program Files\AVAST Software
2011-04-01 19:58:57 . 2011-04-01 19:58:57 -------- d-----w- C:\Documents and Settings\All Users\Application Data\AVAST Software
2011-04-01 12:07:45 . 2011-04-01 21:25:39 -------- d-----w- C:\Program Files\GridinSoft Trojan Killer
2011-03-31 21:34:03 . 2011-03-31 21:34:03 -------- d--h--w- C:\Documents and Settings\roc\Application Data\Malwarebytes
2011-03-31 21:33:46 . 2011-03-31 21:33:46 -------- d--h--w- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2011-03-27 19:48:27 . 2011-03-31 20:52:33 -------- d--h--w- C:\Program Files\PokerStars.FR
2011-03-25 12:52:24 . 2011-03-25 12:52:24 86576 ---ha-w- C:\Documents and Settings\roc\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe
2011-03-25 12:52:24 . 2011-03-25 12:52:24 132672 ---ha-w- C:\Documents and Settings\roc\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe
2011-03-25 12:52:23 . 2011-03-25 12:52:23 392728 ---ha-w- C:\Documents and Settings\roc\Application Data\Microsoft\Services Windows Live\Services Windows Live.dll
2011-03-25 10:26:39 . 2011-03-25 10:26:39 368640 ---ha-w- C:\WINDOWS\system32\ReWire.dll
2011-03-25 10:26:39 . 2011-03-25 10:26:39 233472 ---ha-w- C:\WINDOWS\system32\REX Shared Library.dll
2011-03-25 10:26:39 . 2011-03-25 10:26:39 -------- d--h--w- C:\Documents and Settings\All Users\Application Data\Propellerhead Software
2011-03-25 10:26:30 . 2011-03-25 10:26:54 -------- d--h--w- C:\Documents and Settings\roc\Application Data\Propellerhead Software
2011-03-17 11:00:59 . 2011-03-17 11:00:59 -------- d--h--w- C:\Documents and Settings\roc\Application Data\Template
2011-03-15 10:05:28 . 2008-04-13 10:40:48 36352 ---ha-w- C:\WINDOWS\system32\drivers\disk.sys
2011-03-15 10:04:37 . 2008-04-13 10:45:40 32128 ---ha-w- C:\WINDOWS\system32\drivers\usbccgp.sys
2011-03-14 16:49:51 . 2011-04-05 07:32:57 -------- d--h--w- C:\Program Files\IMEA Sequencer
2011-03-14 16:43:56 . 2011-03-17 10:54:11 -------- d--h--w- C:\Documents and Settings\roc\Application Data\DarkWave Studio
2011-03-14 16:42:35 . 2011-03-17 10:54:11 -------- d--h--w- C:\Program Files\ExperimentalScene

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

2011-02-09 13:54:09 . 2011-02-09 13:54:09 270848 ---ha-w- C:\WINDOWS\system32\sbe.dll
2011-02-09 13:54:09 . 2011-02-09 13:54:09 186880 ---ha-w- C:\WINDOWS\system32\encdec.dll
2011-02-02 07:59:09 . 2011-02-02 07:59:09 2067456 ---ha-w- C:\WINDOWS\system32\mstscax.dll
2011-01-27 11:57:06 . 2011-01-27 11:57:06 677888 ---ha-w- C:\WINDOWS\system32\mstsc.exe
2011-01-21 14:44:12 . 2011-01-21 14:44:12 441344 ---ha-w- C:\WINDOWS\system32\shimgvw.dll
2011-01-07 14:09:02 . 2011-01-07 14:09:02 290048 ---ha-w- C:\WINDOWS\system32\atmfd.dll
2011-03-18 17:58:47 . 2011-04-01 21:34:59 142296 ----a-w- C:\Program Files\mozilla firefox\components\browsercomps.dll
0
Réponse 37 / 37
roc29 Messages postés 24 Statut Membre
 
je ne voit pas le rapport que jai poster? comme tout a l'heure!

jai toujour un ecran bleu qui vient de temp en temp et qui redemare le pc

peut etre faut-il que je re-installe mon windows?
0

Discussions similaires

Carte pré-payée bureau tabac.
Jean_Bonn -
Utilisateur anonyme -

9 réponses
Mettre l'icone Outlook sur le bureau
59Jamich -
webadom -

1 réponse
Installer l'icone "Mail Orange" dans ma barre de tâches
sanceenne -
jmarion3 -

1 réponse