Sujet Précédent Sujet Suivant

Virus trojanspy.delf

pioline Messages postés 44 Statut Membre -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,
ma machine est lente et je suis en 18 megas chez neuf et quand je fais un test adsl il me trrouve a peine 3 go de debit alors que faire mon installation domicile a ete refaite entierement par un electricien
donc j ai fais un scan avec adaware et il m atrouve trojanspy.delf et virus trojanspy.b....
je post un scan hitjack
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:51:08, on 5/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\SYSTEM32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\windows\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\windows\system32\spoolsv.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\windows\system32\nvsvc32.exe
C:\windows\system32\PnkBstrA.exe
C:\windows\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\windows\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Azureus\Azureus.exe
C:\windows\system32\drwtsn32.exe
C:\windows\system32\drwtsn32.exe
C:\windows\explorer.exe
C:\Program Files\Fichiers communs\BinarySense\hldasvc.exe
C:\Program Files\Fichiers communs\BinarySense\hldasvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\windows\system32\drwtsn32.exe
C:\Program Files\a-squared Free\a2free.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.neuf.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Startup: HDDlife.lnk = C:\Program Files\BinarySense\HDDlife 3\HDDlifePro.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\windows\bdoscandel.exe
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: hddlife - {BD758015-47D9-477A-8873-4B688A2BC0E2} - "C:\Program Files\Fichiers communs\BinarySense\hlAPP.dll" (file missing)
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HDDlife HDD Access service - BinarySense, Inc. - C:\Program Files\Fichiers communs\BinarySense\hldasvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\windows\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\windows\System32\TuneUpDefragService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
A voir également:

2 réponses

Réponse 1 / 2
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
slt

mets a jour internet explorer:

https://www.01net.com/telecharger/windows/Internet/navigateur/fiches/33081.html

_______________

scan avec
MalwareByte's Anti-Malware et vire ce qui est trouvé et colle le rapport

https://www.malekal.com/tutoriel-malwarebyte-anti-malware/

________________

Télécharge Combofix de sUBs : Renomme le avant toute installation, par exemple, nomme le "KillBagle". aide ici : https://forum.pcastuces.com/sujet.asp?f=25&s=37315

http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Sauvegarde le sur ton bureau et pas ailleurs !

Aide à l’utilisation de combofix ici: https://bibou0007.forumpro.fr/login?redirect=%2Ft121-topic

Double-clic sur combofix, Il va te poser une question, réponds par la touche 1 et entrée pour valider, laisse toi guider.
Attends que combofix ait terminé, un rapport sera créé. Poste le rapport.
0
pioline Messages postés 44 Statut Membre
 
je poste le rapport antimalware merci de me repondre
Malwarebytes' Anti-Malware 1.12
Version de la base de données: 738

Type de recherche: Examen rapide
Eléments examinés: 36562
Temps écoulé: 3 minute(s), 5 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\youtubex.dll (Trojan.Agent) -> Quarantined and deleted successfully.
0
pioline Messages postés 44 Statut Membre
 
je poste le rapport combo et j attend que tu me dise ce que je doi faire
ComboFix 08-05-09.1 - Soprano 2008-05-10 23:45:12.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.1450 [GMT 2:00]
Endroit: C:\Documents and Settings\Soprano\Bureau\combo-fix.exe
* Création d'un nouveau point de restauration

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Soprano\Application Data\inst.exe
C:\windows\system32\cfa_z.dll
C:\windows\system32\vb6sock.dll

.
((((((((((((((((((((((((((((( Fichiers créés 2008-04-10 to 2008-05-10 ))))))))))))))))))))))))))))))))))))
.

2008-05-10 23:34 . 2008-05-10 23:34 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-05-10 23:34 . 2008-05-10 23:34 <REP> d-------- C:\Documents and Settings\Soprano\Application Data\Malwarebytes
2008-05-10 23:34 . 2008-05-10 23:34 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-05-10 23:34 . 2008-05-05 20:46 27,048 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys
2008-05-10 23:34 . 2008-05-05 20:46 15,864 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-05-10 12:25 . 2008-05-10 12:25 <REP> d-------- C:\Documents and Settings\Soprano\Application Data\Grisoft
2008-05-10 12:25 . 2007-05-30 14:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-05-10 08:39 . 2008-05-10 08:39 <REP> d-------- C:\Program Files\Fichiers communs\BinarySense
2008-05-10 08:39 . 2008-05-10 08:39 <REP> d-------- C:\Program Files\BinarySense
2008-05-10 08:39 . 2008-05-10 08:39 <REP> d-------- C:\Documents and Settings\Soprano\Application Data\BinarySense
2008-05-09 10:20 . 2008-05-09 10:26 <REP> d-------- C:\Program Files\RegCleaner
2008-05-09 01:27 . 2008-05-09 01:27 <REP> d-------- C:\WINDOWS\system32\fr
2008-05-09 01:27 . 2008-05-09 01:27 <REP> d-------- C:\WINDOWS\system32\bits
2008-05-09 01:27 . 2008-05-09 01:27 <REP> d-------- C:\WINDOWS\l2schemas
2008-05-09 01:25 . 2008-05-09 01:25 <REP> d-------- C:\WINDOWS\ServicePackFiles
2008-05-09 01:19 . 2008-05-09 01:19 <REP> d-------- C:\WINDOWS\EHome
2008-05-09 01:14 . 2004-08-19 15:53 701,440 --------- C:\WINDOWS\system32\drivers\ati2mtag.sys
2008-05-08 10:40 . 2008-05-08 10:41 <REP> d-------- C:\Program Files\Gogglebox TV
2008-05-03 23:21 . 2008-05-03 23:29 <REP> d-------- C:\Program Files\rFactor
2008-04-22 18:26 . 2008-04-22 18:26 <REP> d-------- C:\WINDOWS\MaxTV - TVU Player Plugin
2008-04-22 18:17 . 2008-04-22 18:17 <REP> d-------- C:\WINDOWS\MaxTV
2008-04-22 18:17 . 2008-04-22 18:17 <REP> d-------- C:\Program Files\DMV
2008-04-22 00:32 . 2008-04-22 00:32 <REP> d-------- C:\Program Files\ma-config.com
2008-04-22 00:32 . 2008-05-07 09:20 <REP> d-------- C:\Documents and Settings\Soprano\Application Data\ma-config.com
2008-04-21 23:42 . 2008-05-10 00:16 <REP> d-------- C:\Program Files\adslTV
2008-04-21 21:09 . 2008-05-05 12:37 <REP> d-------- C:\Program Files\Neuf
2008-04-19 23:54 . 2008-04-20 00:14 <REP> d-------- C:\Program Files\CleanUp!
2008-04-19 12:56 . 2008-04-19 12:56 <REP> d-------- C:\Program Files\Trend Micro
2008-04-19 12:55 . 2008-04-19 12:55 812,344 --a------ C:\scanner.exe.exe
2008-04-17 20:12 . 2008-04-17 20:13 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-04-14 04:33 . 2008-04-14 04:33 1,888,992 --------- C:\WINDOWS\system32\ati3duag.dll
2008-04-14 04:31 . 2008-04-14 04:31 6,144 --------- C:\WINDOWS\system32\kbdpash.dll
2008-04-14 04:31 . 2008-04-14 04:31 6,144 --------- C:\WINDOWS\system32\kbdnepr.dll
2008-04-14 04:31 . 2008-04-14 04:31 6,144 --------- C:\WINDOWS\system32\kbdiultn.dll
2008-04-14 04:31 . 2008-04-14 04:31 6,144 --------- C:\WINDOWS\system32\kbdbhc.dll
2008-04-14 04:10 . 2008-04-14 04:10 2,524 --------- C:\WINDOWS\system32\pid.inf
2008-04-14 04:04 . 2008-04-14 04:04 93,184 --a------ C:\WINDOWS\system32\msxml6r.dll
2008-04-14 04:04 . 2008-04-14 04:04 93,184 -----c--- C:\WINDOWS\system32\dllcache\msxml6r.dll
2008-04-14 04:03 . 2008-04-14 04:03 81,920 --------- C:\WINDOWS\system32\msshavmsg.dll
2008-04-14 03:59 . 2008-04-14 03:59 25,856 --------- C:\WINDOWS\system32\drivers\hidbth.sys
2008-04-14 03:58 . 2008-04-14 03:58 273,664 --------- C:\WINDOWS\system32\drivers\bthport.sys
2008-04-13 20:56 . 2008-04-13 20:56 30,592 --------- C:\WINDOWS\system32\drivers\rndismpx.sys
2008-04-13 20:56 . 2008-04-13 20:56 12,800 --------- C:\WINDOWS\system32\drivers\usb8023x.sys
2008-04-13 20:51 . 2008-04-13 20:51 101,120 --------- C:\WINDOWS\system32\drivers\bthpan.sys
2008-04-13 20:46 . 2008-04-13 20:46 121,984 --------- C:\WINDOWS\system32\drivers\usbvideo.sys
2008-04-13 20:46 . 2008-04-13 20:46 59,136 --------- C:\WINDOWS\system32\drivers\rfcomm.sys
2008-04-13 20:46 . 2008-04-13 20:46 37,888 --------- C:\WINDOWS\system32\drivers\bthmodem.sys
2008-04-13 20:46 . 2008-04-13 20:46 36,480 --------- C:\WINDOWS\system32\drivers\bthprint.sys
2008-04-13 20:46 . 2008-04-13 20:46 18,944 --------- C:\WINDOWS\system32\drivers\bthusb.sys
2008-04-13 20:46 . 2008-04-13 20:46 17,024 --------- C:\WINDOWS\system32\drivers\bthenum.sys
2008-04-13 20:45 . 2008-04-13 20:45 19,200 --------- C:\WINDOWS\system32\drivers\hidir.sys
2008-04-13 20:43 . 2008-04-13 20:43 14,208 --------- C:\WINDOWS\system32\drivers\wacompen.sys
2008-04-13 20:43 . 2008-04-13 20:43 12,672 --------- C:\WINDOWS\system32\drivers\mutohpen.sys
2008-04-13 20:40 . 2008-04-13 20:40 10,240 --------- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2008-04-13 20:36 . 2008-04-13 20:36 46,464 --------- C:\WINDOWS\system32\drivers\gagp30kx.sys
2008-04-13 20:36 . 2008-04-13 20:36 44,928 --------- C:\WINDOWS\system32\drivers\agpcpq.sys
2008-04-13 20:36 . 2008-04-13 20:36 44,672 --------- C:\WINDOWS\system32\drivers\uagp35.sys
2008-04-13 20:36 . 2008-04-13 20:36 43,008 --------- C:\WINDOWS\system32\drivers\amdagp.sys
2008-04-13 20:36 . 2008-04-13 20:36 42,752 --------- C:\WINDOWS\system32\drivers\alim1541.sys
2008-04-13 20:36 . 2008-04-13 20:36 42,368 --------- C:\WINDOWS\system32\drivers\agp440.sys
2008-04-13 20:36 . 2008-04-13 20:36 42,240 --------- C:\WINDOWS\system32\drivers\viaagp.sys
2008-04-13 20:36 . 2008-04-13 20:36 40,960 --------- C:\WINDOWS\system32\drivers\sisagp.sys
2008-04-13 20:36 . 2008-04-13 20:36 5,888 --------- C:\WINDOWS\system32\drivers\smbali.sys
2008-04-13 11:50 . 2008-04-13 20:21 <REP> d-------- C:\Documents and Settings\Soprano\Application Data\dp3d
2008-04-12 15:54 . 2008-04-12 15:54 <REP> d-------- C:\Program Files\TopWare
2008-04-12 14:14 . 2008-05-09 12:07 <REP> d-------- C:\WINDOWS\BDOSCAN8

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-10 21:47 525,600 --sha-w C:\windows\system32\drivers\fidbox2.dat
2008-05-10 21:47 31,363,616 --sha-w C:\windows\system32\drivers\fidbox.dat
2008-05-10 20:27 --------- d-----w C:\Program Files\Mozilla Firefox 3 Beta 2
2008-05-10 18:49 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-05-10 18:49 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-05-10 16:09 51,032 --sha-w C:\windows\system32\drivers\fidbox2.idx
2008-05-10 16:09 421,472 --sha-w C:\windows\system32\drivers\fidbox.idx
2008-05-10 14:40 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater
2008-05-10 11:59 --------- d-----w C:\Documents and Settings\Soprano\Application Data\Azureus
2008-05-07 10:45 --------- d-----w C:\Documents and Settings\Soprano\Application Data\gtk-2.0
2008-05-07 10:09 --------- d-----w C:\Program Files\a-squared Free
2008-05-07 09:03 --------- d-----w C:\Program Files\Deluge
2008-05-03 13:50 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-05-03 13:50 --------- d-----w C:\Program Files\AGEIA Technologies
2008-05-03 13:29 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-03 13:29 --------- d-----w C:\Program Files\THQ
2008-05-03 11:21 --------- d-----w C:\Documents and Settings\Soprano\Application Data\OpenOffice.org2
2008-04-21 21:42 --------- d-----w C:\Documents and Settings\Soprano\Application Data\vlc
2008-04-20 13:16 --------- d-----w C:\Program Files\EA Sports
2008-04-19 09:52 --------- d-----w C:\Documents and Settings\Soprano\Application Data\Todae
2008-04-17 18:12 --------- d-----w C:\Program Files\Lavasoft
2008-04-17 13:25 96,645 ----a-w C:\windows\system32\drivers\klin.dat
2008-04-17 13:25 87,941 ----a-w C:\windows\system32\drivers\klick.dat
2008-04-17 08:47 --------- d-----w C:\Program Files\Azureus
2008-04-14 02:50 1,804 ----a-w C:\windows\system32\dcache.bin
2008-04-14 02:37 332,800 ----a-w C:\windows\system32\netsetup.exe
2008-04-14 02:33 98,816 ----a-w C:\windows\system32\psbase.dll
2008-04-14 02:32 764,416 ----a-w C:\windows\system32\winntbbu.dll
2008-04-14 02:32 61,471 ----a-w C:\windows\system32\odbcji32.dll
2008-04-14 02:32 5,632 ----a-w C:\windows\system32\wmi.dll
2008-04-14 02:10 73,600 ----a-w C:\windows\system32\drivers\sr.sys
2008-04-14 02:09 80,384 ----a-w C:\windows\system32\drivers\parport.sys
2008-04-14 02:09 68,608 ----a-w C:\windows\system32\drivers\pci.sys
2008-04-14 02:09 46,848 ----a-w C:\windows\system32\drivers\p3.sys
2008-04-14 02:09 120,576 ----a-w C:\windows\system32\drivers\pcmcia.sys
2008-04-14 02:07 2,147,328 ----a-w C:\windows\system32\ntoskrnl.exe
2008-04-14 02:07 2,025,984 ----a-w C:\windows\system32\ntkrnlpa.exe
2008-04-14 02:06 4,096 ----a-w C:\windows\system32\dsprpres.dll
2008-04-14 02:05 800,256 ----a-w C:\windows\system32\drivers\dmboot.sys
2008-04-14 02:05 25,216 ----a-w C:\windows\system32\drivers\kbdclass.sys
2008-04-14 02:05 154,496 ----a-w C:\windows\system32\drivers\dmio.sys
2008-04-14 02:05 14,720 ----a-w C:\windows\system32\drivers\kbdhid.sys
2008-04-14 02:04 37,632 ----a-w C:\windows\system32\drivers\isapnp.sys
2008-04-14 02:03 40,576 ----a-w C:\windows\system32\drivers\intelppm.sys
2008-04-14 02:02 50,688 ----a-w C:\windows\system32\inetres.dll
2008-04-14 02:02 40,960 ----a-w C:\windows\system32\drivers\crusoe.sys
2008-04-14 02:00 66,048 ----a-w C:\windows\system32\drivers\serial.sys
2008-04-14 02:00 572,416 ----a-w C:\windows\system32\shdoclc.dll
2008-04-14 02:00 54,144 ----a-w C:\windows\system32\drivers\i8042prt.sys
2008-04-14 01:59 10,240 ----a-w C:\windows\system32\gpkrsrc.dll
2008-04-14 01:58 1,845,760 ----a-w C:\windows\system32\win32k.sys
2008-04-14 01:58 1,647,616 ----a-w C:\windows\system32\winbrand.dll
2008-04-14 01:57 70,144 ----a-w C:\windows\system32\browselc.dll
2008-04-14 01:57 58,752 ----a-w C:\windows\system32\drivers\redbook.sys
2008-04-14 01:57 44,672 ----a-w C:\windows\system32\drivers\fips.sys
2008-04-14 01:56 57,344 ----a-w C:\windows\system32\mshtmler.dll
2008-04-14 01:56 53,376 ----a-w C:\windows\system32\drivers\volsnap.sys
2008-04-14 01:55 40,064 ----a-w C:\windows\system32\drivers\processr.sys
2008-04-14 01:54 41,856 ----a-w C:\windows\system32\drivers\amdk7.sys
2008-04-14 01:54 41,472 ----a-w C:\windows\system32\drivers\amdk6.sys
2008-04-14 01:54 103,936 ----a-w C:\windows\system32\dpcdll.dll
2008-04-14 01:53 30,336 ----a-w C:\windows\system32\drivers\modem.sys
2008-04-14 01:53 23,680 ----a-w C:\windows\system32\drivers\mouclass.sys
2008-04-14 01:52 188,672 ----a-w C:\windows\system32\drivers\acpi.sys
2008-04-13 23:13 --------- d-----w C:\Program Files\Lopxp
2008-04-13 19:28 175,744 ----a-w C:\windows\system32\drivers\rdbss.sys
2008-04-13 19:21 162,816 ----a-w C:\windows\system32\drivers\netbt.sys
2008-04-13 19:20 91,520 ----a-w C:\windows\system32\drivers\ndiswan.sys
2008-04-13 19:20 361,344 ----a-w C:\windows\system32\drivers\tcpip.sys
2008-04-13 19:20 182,656 ----a-w C:\windows\system32\drivers\ndis.sys
2008-04-13 19:19 75,264 ----a-w C:\windows\system32\drivers\ipsec.sys
2008-04-13 19:19 51,328 ----a-w C:\windows\system32\drivers\rasl2tp.sys
2008-04-13 19:19 48,384 ----a-w C:\windows\system32\drivers\raspptp.sys
2008-04-13 19:19 146,048 ----a-w C:\windows\system32\drivers\portcls.sys
2008-04-13 19:19 138,112 ----a-w C:\windows\system32\drivers\afd.sys
2008-04-13 19:17 83,072 ----a-w C:\windows\system32\drivers\wdmaud.sys
2008-04-13 19:17 456,576 ----a-w C:\windows\system32\drivers\mrxsmb.sys
2008-04-13 19:17 105,344 ----a-w C:\windows\system32\drivers\mup.sys
2008-04-13 19:16 49,536 ----a-w C:\windows\system32\drivers\classpnp.sys
2008-04-13 19:16 141,056 ----a-w C:\windows\system32\drivers\ks.sys
2008-04-13 19:15 60,800 ----a-w C:\windows\system32\drivers\sysaudio.sys
2008-04-13 19:15 574,976 ----a-w C:\windows\system32\drivers\ntfs.sys
2008-04-13 19:15 334,848 ----a-w C:\windows\system32\drivers\srv.sys
2008-04-13 19:14 63,744 ----a-w C:\windows\system32\drivers\cdfs.sys
2008-04-13 19:14 143,744 ----a-w C:\windows\system32\drivers\fastfat.sys
2008-04-13 19:00 225,664 ----a-w C:\windows\system32\drivers\tcpip6.sys
2008-04-13 19:00 19,072 ----a-w C:\windows\system32\drivers\tdi.sys
2008-04-13 18:57 41,472 ----a-w C:\windows\system32\drivers\raspppoe.sys
2008-04-13 18:57 40,576 ----a-w C:\windows\system32\drivers\ndproxy.sys
2008-04-13 18:57 34,560 ----a-w C:\windows\system32\drivers\wanarp.sys
2008-04-13 18:57 20,864 ----a-w C:\windows\system32\drivers\ipinip.sys
2008-04-13 18:57 152,832 ----a-w C:\windows\system32\drivers\ipnat.sys
2008-04-13 18:57 14,336 ----a-w C:\windows\system32\drivers\asyncmac.sys
2008-04-13 18:57 10,112 ----a-w C:\windows\system32\drivers\ndistapi.sys
2008-04-13 18:56 88,320 ----a-w C:\windows\system32\drivers\nwlnkipx.sys
2008-04-13 18:56 69,120 ----a-w C:\windows\system32\drivers\psched.sys
2008-04-13 18:56 35,072 ----a-w C:\windows\system32\drivers\msgpc.sys
2008-04-13 18:56 34,688 ----a-w C:\windows\system32\drivers\netbios.sys
2008-04-13 18:56 30,592 ----a-w C:\windows\system32\drivers\rndismp.sys
2008-04-13 18:56 12,800 ----a-w C:\windows\system32\drivers\usb8023.sys
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-09-13 18:04 68856]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2008-04-23 13:08 5724184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"="C:\WINDOWS\RaidTool\xInsIDE.exe" [2007-03-20 08:36 36864]
"36X Raid Configurer"="C:\WINDOWS\system32\xRaidSetup.exe" [2007-03-21 10:23 1953792]
"NvCplDaemon"="C:\windows\system32\NvCpl.dll" [2007-06-28 18:43 8466432]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2007-12-18 00:43 227856]
"Autoconfigurateur WiFi Neuf"="C:\Program Files\Neuf\Kit\WiFi\9wifi.exe" [2008-01-15 12:02 287984]
"RegistryMechanic"="" []
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 11:25 6731312]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-01-03 17:45 282624]

C:\Documents and Settings\Soprano\Menu D‚marrer\Programmes\D‚marrage\
HDDlife.lnk - C:\Program Files\BinarySense\HDDlife 3\HDDlifePro.exe [2008-02-15 14:16:18 2278648]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveSearch"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoInstrumentation"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.3iv2"= 3ivxVfWCodec.dll
"VIDC.HFYU"= huffyuv.dll
"VIDC.VP31"= vp31vfw.dll
"msacm.ac3filter"= ac3filter.acm

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^ASUS WiFi-AP Solo.lnk]
backup=C:\windows\pss\ASUS WiFi-AP Solo.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Outil de mise à jour Google.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Trend Micro Anti-Spyware.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^Soprano^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.2.lnk]
backup=C:\windows\pss\OpenOffice.org 2.2.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Soprano^Menu Démarrer^Programmes^Démarrage^Site informatique.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^Soprano^Menu Démarrer^Programmes^Démarrage^SITE MDR.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^Soprano^Menu Démarrer^Programmes^Démarrage^Site Pub.lnk]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\a-squared]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ad-Aware]
--a------ 2004-09-17 03:51 879616 C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Aware.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 23:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ai Nap]
--a------ 2007-04-09 14:49 1423360 C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
--a------ 2007-08-03 12:51 202024 C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cFosSpeed]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
--a------ 2007-04-04 00:29 165784 C:\Program Files\DAEMON Tools\daemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
--a------ 2007-06-22 14:45 133576 C:\Program Files\DAEMON Tools Pro\DTProAgent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DXDllRegExe]


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoEngine]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoWeather]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixCamera]
--a------ 2007-02-10 16:40 20480 C:\windows\FixCamera.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager]
--a------ 2003-12-22 08:38 241664 C:\Program Files\HP\hpcoretech\hpcmpmgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
--a------ 2003-08-04 17:28 49152 C:\Program Files\HP\HP Software Update\HPWuSchd.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
--a------ 2004-01-05 11:44 176128 C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM]
--a------ 2006-05-16 11:58 213936 C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
--a------ 2006-05-16 11:58 213936 C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
--a------ 2006-05-16 11:58 86960 C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
C:\windows\system32\dumprep 0 -k

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--------- 2008-04-14 04:34 1695232 C:\Program Files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
--a------ 2008-04-23 13:08 5724184 C:\Program Files\Windows Live\Messenger\MsnMsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
--a------ 2007-08-08 09:25 1828136 C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2007-03-01 15:57 153136 C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Neuf Media Center]
--a------ 2007-10-15 17:57 1025264 C:\Program Files\Neuf\Media Center\MediaCenter.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2007-06-28 18:43 8466432 C:\windows\system32\NvCpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
--a------ 2007-06-28 18:43 81920 C:\WINDOWS\system32\NvMcTray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2007-06-28 18:43 1626112 C:\WINDOWS\system32\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ooccctrl.exe]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
--------- 2003-11-10 17:06 406016 C:\WINDOWS\system32\PSDrvCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PMCRemote]
--------- 2007-09-18 14:00 257096 C:\Program Files\Pinnacle\Shared Files\Programs\Remote\Remoterm.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-01-03 17:45 282624 C:\Program Files\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd3]
--a------ 2006-09-19 10:07 827392 C:\windows\vsnpstd3.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
--------- 2006-07-13 07:12 729088 C:\Program Files\Analog Devices\SoundMAX\smax4.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
-ra------ 2006-12-18 15:34 868352 C:\Program Files\Analog Devices\Core\smax4pnp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRS Audio Sandbox]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-09-26 11:09 77824 C:\Program Files\Java\jre1.6.0\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperCopier2.exe]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
--a------ 2007-09-13 18:04 68856 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2008-01-18 19:20 185896 C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrojanScanner]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tsnpstd3]
--a------ 2007-03-10 15:43 270336 C:\windows\tsnpstd3.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uniblue RegistryBooster 2]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
--a------ 2004-08-20 12:28 45056 C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxMoniter]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
--a------ 2006-11-03 20:20 866584 C:\Program Files\Windows Defender\MSASCui.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"WinSys2"=C:\WINDOWS\system32\winsys2.exe
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime
"SoundMax"="C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Azureus\\Azureus.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\WINDOWS\\system32\\dpvsetup.exe"=
"C:\\WINDOWS\\system32\\rundll32.exe"=
"C:\\Documents and Settings\\Soprano\\Mes documents\\Unzipped\\mcoview[1]\\mcoview.exe"=
"C:\\Documents and Settings\\Soprano\\Mes documents\\logiciel\\eMule\\emule.exe"=
"C:\\WINDOWS\\system32\\PnkBstrA.exe"=
"C:\\WINDOWS\\system32\\PnkBstrB.exe"=
"C:\\Documents and Settings\\All Users\\Application Data\\Kaspersky Lab Setup Files\\Kaspersky Internet Security 7.0.1.321\\French\\setup.exe"=
"C:\\Program Files\\adslTV\\adsltv.exe"=
"C:\\Program Files\\Stacked\\Stacked.exe"=
"C:\\Program Files\\adslTV\\vlc.exe"=
"C:\\Documents and Settings\\Soprano\\Mes documents\\logiciel\\Halite torrent by lovanova\\Halite.exe"=
"C:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 7.0\\avp.exe"=
"C:\\Program Files\\DMV\\MaxTV\\plugins\\tvu.exe"=
"C:\\Program Files\\THQ\\Frontlines-Fuel of War\\Binaries\\FFOW.exe"=
"C:\\Program Files\\Deluge\\deluge.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\Program Files\Neuf\Media Center\httpd\httpd.exe"= C:\Program Files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel)
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"10300:TCP"= 10300:TCP:limewire
"26180:TCP"= 26180:TCP:neuf

R0 sfsync03;StarForce Protection Synchronization Driver (version 3.x);C:\windows\system32\drivers\sfsync03.sys [2005-12-06 17:11]
R1 SuperMounter;SuperMounter;C:\windows\system32\drivers\SuperMounter.sys [2008-02-24 17:17]
R2 acedrv10;acedrv10;C:\windows\system32\drivers\acedrv10.sys [2007-07-24 09:45]
R2 HDDlife HDD Access service;HDDlife HDD Access service;"C:\Program Files\Fichiers communs\BinarySense\hldasvc.exe" [2008-02-15 14:17]
R2 UxTuneUp;TuneUp Extension de thème;C:\windows\System32\svchost.exe [2008-04-14 04:34]
R3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE;C:\windows\system32\DRIVERS\3xHybrid.sys [2006-11-22 09:53]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\windows\system32\DRIVERS\klim5.sys [2007-12-13 13:28]
R3 PCASp50;PCASp50 NDIS Protocol Driver;C:\windows\system32\Drivers\PCASp50.sys [2005-11-19 03:13]
R3 RTLWUSB;Realtek RTL8187 Wireless 802.11g 54Mbps USB 2.0 Network Adapter;C:\windows\system32\DRIVERS\RTL8187.sys [2006-06-16 09:30]
S2 acehlp10;acehlp10;C:\windows\system32\drivers\acehlp10.sys [2007-07-11 10:20]
S3 SjyPkt;SjyPkt;C:\windows\System32\Drivers\SjyPkt.sys [2006-03-31 04:39]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service;C:\windows\System32\TuneUpDefragService.exe [2008-04-03 23:23]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

*Newly Created Service* - CATCHME
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-05-10 21:00:00 C:\windows\Tasks\Maintenance en 1 clic.job"
- C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe
"2008-05-10 18:52:05 C:\windows\Tasks\MP Scheduled Scan.job"
- C:\Program Files\Windows Defender\MpCmdRun.exe
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-10 23:47:13
Windows 5.1.2600 Service Pack 3 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-05-10 23:49:02
ComboFix-quarantined-files.txt 2008-05-10 21:49:00

Pre-Run: 126,966,435,840 octets libres
Post-Run: 126,976,970,752 octets libres

380 --- E O F --- 2008-05-09 05:56:15
0
pioline Messages postés 44 Statut Membre
 
je poste le rapport combo et j attend que tu me dise ce que je doi faire
ComboFix 08-05-09.1 - Soprano 2008-05-10 23:45:12.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.1450 [GMT 2:00]
Endroit: C:\Documents and Settings\Soprano\Bureau\combo-fix.exe
* Création d'un nouveau point de restauration

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Soprano\Application Data\inst.exe
C:\windows\system32\cfa_z.dll
C:\windows\system32\vb6sock.dll

.
((((((((((((((((((((((((((((( Fichiers créés 2008-04-10 to 2008-05-10 ))))))))))))))))))))))))))))))))))))
.

2008-05-10 23:34 . 2008-05-10 23:34 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-05-10 23:34 . 2008-05-10 23:34 <REP> d-------- C:\Documents and Settings\Soprano\Application Data\Malwarebytes
2008-05-10 23:34 . 2008-05-10 23:34 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-05-10 23:34 . 2008-05-05 20:46 27,048 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys
2008-05-10 23:34 . 2008-05-05 20:46 15,864 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-05-10 12:25 . 2008-05-10 12:25 <REP> d-------- C:\Documents and Settings\Soprano\Application Data\Grisoft
2008-05-10 12:25 . 2007-05-30 14:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-05-10 08:39 . 2008-05-10 08:39 <REP> d-------- C:\Program Files\Fichiers communs\BinarySense
2008-05-10 08:39 . 2008-05-10 08:39 <REP> d-------- C:\Program Files\BinarySense
2008-05-10 08:39 . 2008-05-10 08:39 <REP> d-------- C:\Documents and Settings\Soprano\Application Data\BinarySense
2008-05-09 10:20 . 2008-05-09 10:26 <REP> d-------- C:\Program Files\RegCleaner
2008-05-09 01:27 . 2008-05-09 01:27 <REP> d-------- C:\WINDOWS\system32\fr
2008-05-09 01:27 . 2008-05-09 01:27 <REP> d-------- C:\WINDOWS\system32\bits
2008-05-09 01:27 . 2008-05-09 01:27 <REP> d-------- C:\WINDOWS\l2schemas
2008-05-09 01:25 . 2008-05-09 01:25 <REP> d-------- C:\WINDOWS\ServicePackFiles
2008-05-09 01:19 . 2008-05-09 01:19 <REP> d-------- C:\WINDOWS\EHome
2008-05-09 01:14 . 2004-08-19 15:53 701,440 --------- C:\WINDOWS\system32\drivers\ati2mtag.sys
2008-05-08 10:40 . 2008-05-08 10:41 <REP> d-------- C:\Program Files\Gogglebox TV
2008-05-03 23:21 . 2008-05-03 23:29 <REP> d-------- C:\Program Files\rFactor
2008-04-22 18:26 . 2008-04-22 18:26 <REP> d-------- C:\WINDOWS\MaxTV - TVU Player Plugin
2008-04-22 18:17 . 2008-04-22 18:17 <REP> d-------- C:\WINDOWS\MaxTV
2008-04-22 18:17 . 2008-04-22 18:17 <REP> d-------- C:\Program Files\DMV
2008-04-22 00:32 . 2008-04-22 00:32 <REP> d-------- C:\Program Files\ma-config.com
2008-04-22 00:32 . 2008-05-07 09:20 <REP> d-------- C:\Documents and Settings\Soprano\Application Data\ma-config.com
2008-04-21 23:42 . 2008-05-10 00:16 <REP> d-------- C:\Program Files\adslTV
2008-04-21 21:09 . 2008-05-05 12:37 <REP> d-------- C:\Program Files\Neuf
2008-04-19 23:54 . 2008-04-20 00:14 <REP> d-------- C:\Program Files\CleanUp!
2008-04-19 12:56 . 2008-04-19 12:56 <REP> d-------- C:\Program Files\Trend Micro
2008-04-19 12:55 . 2008-04-19 12:55 812,344 --a------ C:\scanner.exe.exe
2008-04-17 20:12 . 2008-04-17 20:13 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-04-14 04:33 . 2008-04-14 04:33 1,888,992 --------- C:\WINDOWS\system32\ati3duag.dll
2008-04-14 04:31 . 2008-04-14 04:31 6,144 --------- C:\WINDOWS\system32\kbdpash.dll
2008-04-14 04:31 . 2008-04-14 04:31 6,144 --------- C:\WINDOWS\system32\kbdnepr.dll
2008-04-14 04:31 . 2008-04-14 04:31 6,144 --------- C:\WINDOWS\system32\kbdiultn.dll
2008-04-14 04:31 . 2008-04-14 04:31 6,144 --------- C:\WINDOWS\system32\kbdbhc.dll
2008-04-14 04:10 . 2008-04-14 04:10 2,524 --------- C:\WINDOWS\system32\pid.inf
2008-04-14 04:04 . 2008-04-14 04:04 93,184 --a------ C:\WINDOWS\system32\msxml6r.dll
2008-04-14 04:04 . 2008-04-14 04:04 93,184 -----c--- C:\WINDOWS\system32\dllcache\msxml6r.dll
2008-04-14 04:03 . 2008-04-14 04:03 81,920 --------- C:\WINDOWS\system32\msshavmsg.dll
2008-04-14 03:59 . 2008-04-14 03:59 25,856 --------- C:\WINDOWS\system32\drivers\hidbth.sys
2008-04-14 03:58 . 2008-04-14 03:58 273,664 --------- C:\WINDOWS\system32\drivers\bthport.sys
2008-04-13 20:56 . 2008-04-13 20:56 30,592 --------- C:\WINDOWS\system32\drivers\rndismpx.sys
2008-04-13 20:56 . 2008-04-13 20:56 12,800 --------- C:\WINDOWS\system32\drivers\usb8023x.sys
2008-04-13 20:51 . 2008-04-13 20:51 101,120 --------- C:\WINDOWS\system32\drivers\bthpan.sys
2008-04-13 20:46 . 2008-04-13 20:46 121,984 --------- C:\WINDOWS\system32\drivers\usbvideo.sys
2008-04-13 20:46 . 2008-04-13 20:46 59,136 --------- C:\WINDOWS\system32\drivers\rfcomm.sys
2008-04-13 20:46 . 2008-04-13 20:46 37,888 --------- C:\WINDOWS\system32\drivers\bthmodem.sys
2008-04-13 20:46 . 2008-04-13 20:46 36,480 --------- C:\WINDOWS\system32\drivers\bthprint.sys
2008-04-13 20:46 . 2008-04-13 20:46 18,944 --------- C:\WINDOWS\system32\drivers\bthusb.sys
2008-04-13 20:46 . 2008-04-13 20:46 17,024 --------- C:\WINDOWS\system32\drivers\bthenum.sys
2008-04-13 20:45 . 2008-04-13 20:45 19,200 --------- C:\WINDOWS\system32\drivers\hidir.sys
2008-04-13 20:43 . 2008-04-13 20:43 14,208 --------- C:\WINDOWS\system32\drivers\wacompen.sys
2008-04-13 20:43 . 2008-04-13 20:43 12,672 --------- C:\WINDOWS\system32\drivers\mutohpen.sys
2008-04-13 20:40 . 2008-04-13 20:40 10,240 --------- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2008-04-13 20:36 . 2008-04-13 20:36 46,464 --------- C:\WINDOWS\system32\drivers\gagp30kx.sys
2008-04-13 20:36 . 2008-04-13 20:36 44,928 --------- C:\WINDOWS\system32\drivers\agpcpq.sys
2008-04-13 20:36 . 2008-04-13 20:36 44,672 --------- C:\WINDOWS\system32\drivers\uagp35.sys
2008-04-13 20:36 . 2008-04-13 20:36 43,008 --------- C:\WINDOWS\system32\drivers\amdagp.sys
2008-04-13 20:36 . 2008-04-13 20:36 42,752 --------- C:\WINDOWS\system32\drivers\alim1541.sys
2008-04-13 20:36 . 2008-04-13 20:36 42,368 --------- C:\WINDOWS\system32\drivers\agp440.sys
2008-04-13 20:36 . 2008-04-13 20:36 42,240 --------- C:\WINDOWS\system32\drivers\viaagp.sys
2008-04-13 20:36 . 2008-04-13 20:36 40,960 --------- C:\WINDOWS\system32\drivers\sisagp.sys
2008-04-13 20:36 . 2008-04-13 20:36 5,888 --------- C:\WINDOWS\system32\drivers\smbali.sys
2008-04-13 11:50 . 2008-04-13 20:21 <REP> d-------- C:\Documents and Settings\Soprano\Application Data\dp3d
2008-04-12 15:54 . 2008-04-12 15:54 <REP> d-------- C:\Program Files\TopWare
2008-04-12 14:14 . 2008-05-09 12:07 <REP> d-------- C:\WINDOWS\BDOSCAN8

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-10 21:47 525,600 --sha-w C:\windows\system32\drivers\fidbox2.dat
2008-05-10 21:47 31,363,616 --sha-w C:\windows\system32\drivers\fidbox.dat
2008-05-10 20:27 --------- d-----w C:\Program Files\Mozilla Firefox 3 Beta 2
2008-05-10 18:49 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-05-10 18:49 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-05-10 16:09 51,032 --sha-w C:\windows\system32\drivers\fidbox2.idx
2008-05-10 16:09 421,472 --sha-w C:\windows\system32\drivers\fidbox.idx
2008-05-10 14:40 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater
2008-05-10 11:59 --------- d-----w C:\Documents and Settings\Soprano\Application Data\Azureus
2008-05-07 10:45 --------- d-----w C:\Documents and Settings\Soprano\Application Data\gtk-2.0
2008-05-07 10:09 --------- d-----w C:\Program Files\a-squared Free
2008-05-07 09:03 --------- d-----w C:\Program Files\Deluge
2008-05-03 13:50 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-05-03 13:50 --------- d-----w C:\Program Files\AGEIA Technologies
2008-05-03 13:29 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-03 13:29 --------- d-----w C:\Program Files\THQ
2008-05-03 11:21 --------- d-----w C:\Documents and Settings\Soprano\Application Data\OpenOffice.org2
2008-04-21 21:42 --------- d-----w C:\Documents and Settings\Soprano\Application Data\vlc
2008-04-20 13:16 --------- d-----w C:\Program Files\EA Sports
2008-04-19 09:52 --------- d-----w C:\Documents and Settings\Soprano\Application Data\Todae
2008-04-17 18:12 --------- d-----w C:\Program Files\Lavasoft
2008-04-17 13:25 96,645 ----a-w C:\windows\system32\drivers\klin.dat
2008-04-17 13:25 87,941 ----a-w C:\windows\system32\drivers\klick.dat
2008-04-17 08:47 --------- d-----w C:\Program Files\Azureus
2008-04-14 02:50 1,804 ----a-w C:\windows\system32\dcache.bin
2008-04-14 02:37 332,800 ----a-w C:\windows\system32\netsetup.exe
2008-04-14 02:33 98,816 ----a-w C:\windows\system32\psbase.dll
2008-04-14 02:32 764,416 ----a-w C:\windows\system32\winntbbu.dll
2008-04-14 02:32 61,471 ----a-w C:\windows\system32\odbcji32.dll
2008-04-14 02:32 5,632 ----a-w C:\windows\system32\wmi.dll
2008-04-14 02:10 73,600 ----a-w C:\windows\system32\drivers\sr.sys
2008-04-14 02:09 80,384 ----a-w C:\windows\system32\drivers\parport.sys
2008-04-14 02:09 68,608 ----a-w C:\windows\system32\drivers\pci.sys
2008-04-14 02:09 46,848 ----a-w C:\windows\system32\drivers\p3.sys
2008-04-14 02:09 120,576 ----a-w C:\windows\system32\drivers\pcmcia.sys
2008-04-14 02:07 2,147,328 ----a-w C:\windows\system32\ntoskrnl.exe
2008-04-14 02:07 2,025,984 ----a-w C:\windows\system32\ntkrnlpa.exe
2008-04-14 02:06 4,096 ----a-w C:\windows\system32\dsprpres.dll
2008-04-14 02:05 800,256 ----a-w C:\windows\system32\drivers\dmboot.sys
2008-04-14 02:05 25,216 ----a-w C:\windows\system32\drivers\kbdclass.sys
2008-04-14 02:05 154,496 ----a-w C:\windows\system32\drivers\dmio.sys
2008-04-14 02:05 14,720 ----a-w C:\windows\system32\drivers\kbdhid.sys
2008-04-14 02:04 37,632 ----a-w C:\windows\system32\drivers\isapnp.sys
2008-04-14 02:03 40,576 ----a-w C:\windows\system32\drivers\intelppm.sys
2008-04-14 02:02 50,688 ----a-w C:\windows\system32\inetres.dll
2008-04-14 02:02 40,960 ----a-w C:\windows\system32\drivers\crusoe.sys
2008-04-14 02:00 66,048 ----a-w C:\windows\system32\drivers\serial.sys
2008-04-14 02:00 572,416 ----a-w C:\windows\system32\shdoclc.dll
2008-04-14 02:00 54,144 ----a-w C:\windows\system32\drivers\i8042prt.sys
2008-04-14 01:59 10,240 ----a-w C:\windows\system32\gpkrsrc.dll
2008-04-14 01:58 1,845,760 ----a-w C:\windows\system32\win32k.sys
2008-04-14 01:58 1,647,616 ----a-w C:\windows\system32\winbrand.dll
2008-04-14 01:57 70,144 ----a-w C:\windows\system32\browselc.dll
2008-04-14 01:57 58,752 ----a-w C:\windows\system32\drivers\redbook.sys
2008-04-14 01:57 44,672 ----a-w C:\windows\system32\drivers\fips.sys
2008-04-14 01:56 57,344 ----a-w C:\windows\system32\mshtmler.dll
2008-04-14 01:56 53,376 ----a-w C:\windows\system32\drivers\volsnap.sys
2008-04-14 01:55 40,064 ----a-w C:\windows\system32\drivers\processr.sys
2008-04-14 01:54 41,856 ----a-w C:\windows\system32\drivers\amdk7.sys
2008-04-14 01:54 41,472 ----a-w C:\windows\system32\drivers\amdk6.sys
2008-04-14 01:54 103,936 ----a-w C:\windows\system32\dpcdll.dll
2008-04-14 01:53 30,336 ----a-w C:\windows\system32\drivers\modem.sys
2008-04-14 01:53 23,680 ----a-w C:\windows\system32\drivers\mouclass.sys
2008-04-14 01:52 188,672 ----a-w C:\windows\system32\drivers\acpi.sys
2008-04-13 23:13 --------- d-----w C:\Program Files\Lopxp
2008-04-13 19:28 175,744 ----a-w C:\windows\system32\drivers\rdbss.sys
2008-04-13 19:21 162,816 ----a-w C:\windows\system32\drivers\netbt.sys
2008-04-13 19:20 91,520 ----a-w C:\windows\system32\drivers\ndiswan.sys
2008-04-13 19:20 361,344 ----a-w C:\windows\system32\drivers\tcpip.sys
2008-04-13 19:20 182,656 ----a-w C:\windows\system32\drivers\ndis.sys
2008-04-13 19:19 75,264 ----a-w C:\windows\system32\drivers\ipsec.sys
2008-04-13 19:19 51,328 ----a-w C:\windows\system32\drivers\rasl2tp.sys
2008-04-13 19:19 48,384 ----a-w C:\windows\system32\drivers\raspptp.sys
2008-04-13 19:19 146,048 ----a-w C:\windows\system32\drivers\portcls.sys
2008-04-13 19:19 138,112 ----a-w C:\windows\system32\drivers\afd.sys
2008-04-13 19:17 83,072 ----a-w C:\windows\system32\drivers\wdmaud.sys
2008-04-13 19:17 456,576 ----a-w C:\windows\system32\drivers\mrxsmb.sys
2008-04-13 19:17 105,344 ----a-w C:\windows\system32\drivers\mup.sys
2008-04-13 19:16 49,536 ----a-w C:\windows\system32\drivers\classpnp.sys
2008-04-13 19:16 141,056 ----a-w C:\windows\system32\drivers\ks.sys
2008-04-13 19:15 60,800 ----a-w C:\windows\system32\drivers\sysaudio.sys
2008-04-13 19:15 574,976 ----a-w C:\windows\system32\drivers\ntfs.sys
2008-04-13 19:15 334,848 ----a-w C:\windows\system32\drivers\srv.sys
2008-04-13 19:14 63,744 ----a-w C:\windows\system32\drivers\cdfs.sys
2008-04-13 19:14 143,744 ----a-w C:\windows\system32\drivers\fastfat.sys
2008-04-13 19:00 225,664 ----a-w C:\windows\system32\drivers\tcpip6.sys
2008-04-13 19:00 19,072 ----a-w C:\windows\system32\drivers\tdi.sys
2008-04-13 18:57 41,472 ----a-w C:\windows\system32\drivers\raspppoe.sys
2008-04-13 18:57 40,576 ----a-w C:\windows\system32\drivers\ndproxy.sys
2008-04-13 18:57 34,560 ----a-w C:\windows\system32\drivers\wanarp.sys
2008-04-13 18:57 20,864 ----a-w C:\windows\system32\drivers\ipinip.sys
2008-04-13 18:57 152,832 ----a-w C:\windows\system32\drivers\ipnat.sys
2008-04-13 18:57 14,336 ----a-w C:\windows\system32\drivers\asyncmac.sys
2008-04-13 18:57 10,112 ----a-w C:\windows\system32\drivers\ndistapi.sys
2008-04-13 18:56 88,320 ----a-w C:\windows\system32\drivers\nwlnkipx.sys
2008-04-13 18:56 69,120 ----a-w C:\windows\system32\drivers\psched.sys
2008-04-13 18:56 35,072 ----a-w C:\windows\system32\drivers\msgpc.sys
2008-04-13 18:56 34,688 ----a-w C:\windows\system32\drivers\netbios.sys
2008-04-13 18:56 30,592 ----a-w C:\windows\system32\drivers\rndismp.sys
2008-04-13 18:56 12,800 ----a-w C:\windows\system32\drivers\usb8023.sys
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-09-13 18:04 68856]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2008-04-23 13:08 5724184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"="C:\WINDOWS\RaidTool\xInsIDE.exe" [2007-03-20 08:36 36864]
"36X Raid Configurer"="C:\WINDOWS\system32\xRaidSetup.exe" [2007-03-21 10:23 1953792]
"NvCplDaemon"="C:\windows\system32\NvCpl.dll" [2007-06-28 18:43 8466432]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2007-12-18 00:43 227856]
"Autoconfigurateur WiFi Neuf"="C:\Program Files\Neuf\Kit\WiFi\9wifi.exe" [2008-01-15 12:02 287984]
"RegistryMechanic"="" []
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 11:25 6731312]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-01-03 17:45 282624]

C:\Documents and Settings\Soprano\Menu D‚marrer\Programmes\D‚marrage\
HDDlife.lnk - C:\Program Files\BinarySense\HDDlife 3\HDDlifePro.exe [2008-02-15 14:16:18 2278648]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveSearch"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoInstrumentation"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.3iv2"= 3ivxVfWCodec.dll
"VIDC.HFYU"= huffyuv.dll
"VIDC.VP31"= vp31vfw.dll
"msacm.ac3filter"= ac3filter.acm

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^ASUS WiFi-AP Solo.lnk]
backup=C:\windows\pss\ASUS WiFi-AP Solo.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Outil de mise à jour Google.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Trend Micro Anti-Spyware.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^Soprano^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.2.lnk]
backup=C:\windows\pss\OpenOffice.org 2.2.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Soprano^Menu Démarrer^Programmes^Démarrage^Site informatique.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^Soprano^Menu Démarrer^Programmes^Démarrage^SITE MDR.lnk]

[HKLM\~\startupfolder\C:^Documents and Settings^Soprano^Menu Démarrer^Programmes^Démarrage^Site Pub.lnk]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\a-squared]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ad-Aware]
--a------ 2004-09-17 03:51 879616 C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Aware.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 23:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ai Nap]
--a------ 2007-04-09 14:49 1423360 C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
--a------ 2007-08-03 12:51 202024 C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cFosSpeed]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
--a------ 2007-04-04 00:29 165784 C:\Program Files\DAEMON Tools\daemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
--a------ 2007-06-22 14:45 133576 C:\Program Files\DAEMON Tools Pro\DTProAgent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DXDllRegExe]


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoEngine]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoWeather]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixCamera]
--a------ 2007-02-10 16:40 20480 C:\windows\FixCamera.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager]
--a------ 2003-12-22 08:38 241664 C:\Program Files\HP\hpcoretech\hpcmpmgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
--a------ 2003-08-04 17:28 49152 C:\Program Files\HP\HP Software Update\HPWuSchd.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
--a------ 2004-01-05 11:44 176128 C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM]
--a------ 2006-05-16 11:58 213936 C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
--a------ 2006-05-16 11:58 213936 C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
--a------ 2006-05-16 11:58 86960 C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
C:\windows\system32\dumprep 0 -k

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--------- 2008-04-14 04:34 1695232 C:\Program Files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
--a------ 2008-04-23 13:08 5724184 C:\Program Files\Windows Live\Messenger\MsnMsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
--a------ 2007-08-08 09:25 1828136 C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2007-03-01 15:57 153136 C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Neuf Media Center]
--a------ 2007-10-15 17:57 1025264 C:\Program Files\Neuf\Media Center\MediaCenter.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2007-06-28 18:43 8466432 C:\windows\system32\NvCpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
--a------ 2007-06-28 18:43 81920 C:\WINDOWS\system32\NvMcTray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2007-06-28 18:43 1626112 C:\WINDOWS\system32\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ooccctrl.exe]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
--------- 2003-11-10 17:06 406016 C:\WINDOWS\system32\PSDrvCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PMCRemote]
--------- 2007-09-18 14:00 257096 C:\Program Files\Pinnacle\Shared Files\Programs\Remote\Remoterm.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-01-03 17:45 282624 C:\Program Files\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd3]
--a------ 2006-09-19 10:07 827392 C:\windows\vsnpstd3.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
--------- 2006-07-13 07:12 729088 C:\Program Files\Analog Devices\SoundMAX\smax4.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
-ra------ 2006-12-18 15:34 868352 C:\Program Files\Analog Devices\Core\smax4pnp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRS Audio Sandbox]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-09-26 11:09 77824 C:\Program Files\Java\jre1.6.0\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperCopier2.exe]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
--a------ 2007-09-13 18:04 68856 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2008-01-18 19:20 185896 C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrojanScanner]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tsnpstd3]
--a------ 2007-03-10 15:43 270336 C:\windows\tsnpstd3.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uniblue RegistryBooster 2]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
--a------ 2004-08-20 12:28 45056 C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxMoniter]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
--a------ 2006-11-03 20:20 866584 C:\Program Files\Windows Defender\MSASCui.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"WinSys2"=C:\WINDOWS\system32\winsys2.exe
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime
"SoundMax"="C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Azureus\\Azureus.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\WINDOWS\\system32\\dpvsetup.exe"=
"C:\\WINDOWS\\system32\\rundll32.exe"=
"C:\\Documents and Settings\\Soprano\\Mes documents\\Unzipped\\mcoview[1]\\mcoview.exe"=
"C:\\Documents and Settings\\Soprano\\Mes documents\\logiciel\\eMule\\emule.exe"=
"C:\\WINDOWS\\system32\\PnkBstrA.exe"=
"C:\\WINDOWS\\system32\\PnkBstrB.exe"=
"C:\\Documents and Settings\\All Users\\Application Data\\Kaspersky Lab Setup Files\\Kaspersky Internet Security 7.0.1.321\\French\\setup.exe"=
"C:\\Program Files\\adslTV\\adsltv.exe"=
"C:\\Program Files\\Stacked\\Stacked.exe"=
"C:\\Program Files\\adslTV\\vlc.exe"=
"C:\\Documents and Settings\\Soprano\\Mes documents\\logiciel\\Halite torrent by lovanova\\Halite.exe"=
"C:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 7.0\\avp.exe"=
"C:\\Program Files\\DMV\\MaxTV\\plugins\\tvu.exe"=
"C:\\Program Files\\THQ\\Frontlines-Fuel of War\\Binaries\\FFOW.exe"=
"C:\\Program Files\\Deluge\\deluge.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\Program Files\Neuf\Media Center\httpd\httpd.exe"= C:\Program Files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel)
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"10300:TCP"= 10300:TCP:limewire
"26180:TCP"= 26180:TCP:neuf

R0 sfsync03;StarForce Protection Synchronization Driver (version 3.x);C:\windows\system32\drivers\sfsync03.sys [2005-12-06 17:11]
R1 SuperMounter;SuperMounter;C:\windows\system32\drivers\SuperMounter.sys [2008-02-24 17:17]
R2 acedrv10;acedrv10;C:\windows\system32\drivers\acedrv10.sys [2007-07-24 09:45]
R2 HDDlife HDD Access service;HDDlife HDD Access service;"C:\Program Files\Fichiers communs\BinarySense\hldasvc.exe" [2008-02-15 14:17]
R2 UxTuneUp;TuneUp Extension de thème;C:\windows\System32\svchost.exe [2008-04-14 04:34]
R3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE;C:\windows\system32\DRIVERS\3xHybrid.sys [2006-11-22 09:53]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\windows\system32\DRIVERS\klim5.sys [2007-12-13 13:28]
R3 PCASp50;PCASp50 NDIS Protocol Driver;C:\windows\system32\Drivers\PCASp50.sys [2005-11-19 03:13]
R3 RTLWUSB;Realtek RTL8187 Wireless 802.11g 54Mbps USB 2.0 Network Adapter;C:\windows\system32\DRIVERS\RTL8187.sys [2006-06-16 09:30]
S2 acehlp10;acehlp10;C:\windows\system32\drivers\acehlp10.sys [2007-07-11 10:20]
S3 SjyPkt;SjyPkt;C:\windows\System32\Drivers\SjyPkt.sys [2006-03-31 04:39]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service;C:\windows\System32\TuneUpDefragService.exe [2008-04-03 23:23]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

*Newly Created Service* - CATCHME
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-05-10 21:00:00 C:\windows\Tasks\Maintenance en 1 clic.job"
- C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe
"2008-05-10 18:52:05 C:\windows\Tasks\MP Scheduled Scan.job"
- C:\Program Files\Windows Defender\MpCmdRun.exe
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-10 23:47:13
Windows 5.1.2600 Service Pack 3 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-05-10 23:49:02
ComboFix-quarantined-files.txt 2008-05-10 21:49:00

Pre-Run: 126,966,435,840 octets libres
Post-Run: 126,976,970,752 octets libres

380 --- E O F --- 2008-05-09 05:56:15
0
Réponse 2 / 2
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
utilise pour supprimer tes traces

CCLEANER: (lance un nettoyage et répare 3 fois le registre) sans installer la barre yahoo

https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html

________

colle un rapport avec kaspersky que tu as
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses
a quoi sert softonic ?
durup1928 -
jacklyn -

25 réponses