Probléme ie7 sous vista
Résolu
jonus
Messages postés
50
Date d'inscription
Statut
Membre
Dernière intervention
-
jonus Messages postés 50 Date d'inscription Statut Membre Dernière intervention -
jonus Messages postés 50 Date d'inscription Statut Membre Dernière intervention -
Bonjour, j'ai 2 probléme sur mon ordi :
J'ai une fenetre d'erreur qui s'ouvre automatiquement lorsque que j'allume mon pc elle me marque:
"Ce programme ne peut pas afficher la page Web."
Pour la fermer je dois passer par le gestionnaire des tâches au bout de 10 minutes elle s'ouvre a nouveaux.
Mon 2eme probléme et que je me suis pris un virus il y a peu je l'ai supprimé avec mon anti-virus une fois cela fait j'ai fait plusieur scan qui n'ont rien détecté j'ai alors ouvet ie7 mais un message est apparue:
"Insecure Internet activity. Threat of virus attack
Due to insecure Internet browsing your PC can easily get infected with viruses, worms and trojans without your knowledge, and that can lead to system slowdown, freezes and crashes.
Also insecure Internet activity can result in revealing your personal information.
To get full advanced real-time protection for PC and Internet activity, register KvmSecure.
We recommend you to protect your PC now and continue safe Internet browsing.
Click here to get full advanced real-time protection and continue browsing.
Continue to this website unprotected (not recommended)."
lorsque je clic sur "Continue to this website unprotected (not recommended)." mon ie7 bug et se ferme automatiquement.Pour passer se message il faut que clic sur l'adresse du site que j'appuis sur entrer, alors mon ie7 marche mais un message et constament en haut de la page il me marque:
"Warning: possible spyware or adware infection! Click here to scan your computer for spyware and adware..."
lorsque je clic sur "Click here" mon ie7 bug et se ferme.A chaque fois que je fais quelque chose j'ai le message:
" Insecure Internet activity. Threat of virus attack
Due to insecure Internet browsing your PC can easily get infected with viruses, worms and trojans without your knowledge, and that can lead to system slowdown, freezes and crashes.
Also insecure Internet activity can result in revealing your personal information.
To get full advanced real-time protection for PC and Internet activity, register KvmSecure.
We recommend you to protect your PC now and continue safe Internet browsing.
Click here to get full advanced real-time protection and continue browsing.
Continue to this website unprotected (not recommended)."
qui s'affiche je fais donc comme j'ai dit plus haut pour le passer et sa me remet a ma page de garde d'internet(pour moi google).Pour info j'ai du taper se message 2 fois pour que vous puissier le lire.
Comment puis-je résoudre sais 2 probléme,
Merci d'avance coordialement.
J'ai une fenetre d'erreur qui s'ouvre automatiquement lorsque que j'allume mon pc elle me marque:
"Ce programme ne peut pas afficher la page Web."
Pour la fermer je dois passer par le gestionnaire des tâches au bout de 10 minutes elle s'ouvre a nouveaux.
Mon 2eme probléme et que je me suis pris un virus il y a peu je l'ai supprimé avec mon anti-virus une fois cela fait j'ai fait plusieur scan qui n'ont rien détecté j'ai alors ouvet ie7 mais un message est apparue:
"Insecure Internet activity. Threat of virus attack
Due to insecure Internet browsing your PC can easily get infected with viruses, worms and trojans without your knowledge, and that can lead to system slowdown, freezes and crashes.
Also insecure Internet activity can result in revealing your personal information.
To get full advanced real-time protection for PC and Internet activity, register KvmSecure.
We recommend you to protect your PC now and continue safe Internet browsing.
Click here to get full advanced real-time protection and continue browsing.
Continue to this website unprotected (not recommended)."
lorsque je clic sur "Continue to this website unprotected (not recommended)." mon ie7 bug et se ferme automatiquement.Pour passer se message il faut que clic sur l'adresse du site que j'appuis sur entrer, alors mon ie7 marche mais un message et constament en haut de la page il me marque:
"Warning: possible spyware or adware infection! Click here to scan your computer for spyware and adware..."
lorsque je clic sur "Click here" mon ie7 bug et se ferme.A chaque fois que je fais quelque chose j'ai le message:
" Insecure Internet activity. Threat of virus attack
Due to insecure Internet browsing your PC can easily get infected with viruses, worms and trojans without your knowledge, and that can lead to system slowdown, freezes and crashes.
Also insecure Internet activity can result in revealing your personal information.
To get full advanced real-time protection for PC and Internet activity, register KvmSecure.
We recommend you to protect your PC now and continue safe Internet browsing.
Click here to get full advanced real-time protection and continue browsing.
Continue to this website unprotected (not recommended)."
qui s'affiche je fais donc comme j'ai dit plus haut pour le passer et sa me remet a ma page de garde d'internet(pour moi google).Pour info j'ai du taper se message 2 fois pour que vous puissier le lire.
Comment puis-je résoudre sais 2 probléme,
Merci d'avance coordialement.
A voir également:
- Probléme ie7 sous vista
- Windows vista - Télécharger - Divers Utilitaires
- Clé windows vista - Guide
- Windows Vista SP1 - Télécharger - Divers Utilitaires
- Pdf vista - Télécharger - PDF
- Comment débloquer un ordinateur windows vista - Forum Windows
85 réponses
---> Fais un scan en ligne avec Panda et poste le rapport :
https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
J'ai fait le scan en ligne comme vous me l'avait dit mais arriver a la fin du scan je n'ai pas de rapport, je fait alors envoyer au laboratoir et comme la dernière fois la page internet a buger, que dois-je faire?
Merci d'avance coordialement.
Merci d'avance coordialement.
Il ne s'agit pas de pubs mais de message d'erreur.cela fait comme si j'avais voulue ouvrir internet sans etre connecté, alors que je n'essaye meme pas d'aller sur internet.Et oui cela me le fait toujours.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Oui c'est une fenetre reduite qui s'ouvre me mettent qu'internet explorerr ne peut pas afficher la pa ge web.Cela fait comme si j'essayer d'ouvrir ie sans etre connecté alors que je n'essaye meme pas d'aller sur internet.
---> Télécharge ComboFix.exe de sUBs sur ton Bureau :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
/!\ Déconnecte-toi du net et ferme toutes les applications, antivirus et antispyware y compris /!\
---> Double-clique sur Combofix.exe
Un "pop-up" va apparaître qui dit que "ComboFix est utilisé à vos risques et avec aucune garantie...".
Accepte en cliquant sur "Oui"
---> Mets-le en langue française F
Tape sur la touche 1 (Yes) pour démarrer le scan.
/!\ Ne touche à rien tant que le scan n'est pas terminé. /!\
En fin de scan, il est possible que ComboFix ait besoin de redémarrer le PC pour finaliser la désinfection, laisse-le faire.
Une fois le scan achevé, un rapport va s'afficher : Poste son contenu
/!\ Réactive la protection en temps réel de ton antivirus et de ton antispyware avant de te reconnecter à Internet. /!\
Note : Le rapport se trouve également là : C:\ComboFix\Combofix.txt
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
/!\ Déconnecte-toi du net et ferme toutes les applications, antivirus et antispyware y compris /!\
---> Double-clique sur Combofix.exe
Un "pop-up" va apparaître qui dit que "ComboFix est utilisé à vos risques et avec aucune garantie...".
Accepte en cliquant sur "Oui"
---> Mets-le en langue française F
Tape sur la touche 1 (Yes) pour démarrer le scan.
/!\ Ne touche à rien tant que le scan n'est pas terminé. /!\
En fin de scan, il est possible que ComboFix ait besoin de redémarrer le PC pour finaliser la désinfection, laisse-le faire.
Une fois le scan achevé, un rapport va s'afficher : Poste son contenu
/!\ Réactive la protection en temps réel de ton antivirus et de ton antispyware avant de te reconnecter à Internet. /!\
Note : Le rapport se trouve également là : C:\ComboFix\Combofix.txt
Bonjour je suis désolé de ne pas vous avoir repondu plutot mais je n'ai pas put a cause de probleme personnelle.
Donc pour faire tourner combofix je doit juste couper mes application ainti-virus et antispyware ou alors en plus de ça avec le gestionnaire des taches arreter le processus?
Merci d'avance.
Donc pour faire tourner combofix je doit juste couper mes application ainti-virus et antispyware ou alors en plus de ça avec le gestionnaire des taches arreter le processus?
Merci d'avance.
Voici le raport merci d'avance.
ComboFix 08-10-29.06 - Jonus 2009-05-24 13:57:42.1 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.1.1036.18.2038 [GMT 2:00]
Lancé depuis: C:\Users\Jonus\Desktop\ComboFix.exe
* Un nouveau point de restauration a été créé
.
- Mode FONCTIONNALITES REDUITES -
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Program Files\INSTALL.LOG
C:\resycled
C:\Windows\twain_16.dll
.
((((((((((((((((((((((((((((( Fichiers créés du 2009-04-24 au 2009-05-24 ))))))))))))))))))))))))))))))))))))
.
2009-05-23 23:21 . 2009-05-23 23:23 <REP> d-------- C:\Program Files\ATI
2009-05-23 23:20 . 2009-05-23 23:20 <REP> d-------- C:\ATI
2009-05-23 22:31 . 2008-06-20 03:14 781,344 --a------ C:\Windows\System32\PresentationNative_v0300.dll
2009-05-23 22:31 . 2008-06-20 03:14 622,080 --a------ C:\Windows\System32\icardagt.exe
2009-05-23 22:31 . 2008-06-20 03:14 326,160 --a------ C:\Windows\System32\PresentationHost.exe
2009-05-23 22:31 . 2008-06-20 03:14 105,016 --a------ C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2009-05-23 22:31 . 2008-06-20 03:14 97,800 --a------ C:\Windows\System32\infocardapi.dll
2009-05-23 22:31 . 2008-06-20 03:14 43,544 --a------ C:\Windows\System32\PresentationHostProxy.dll
2009-05-23 22:31 . 2008-06-20 03:14 37,384 --a------ C:\Windows\System32\infocardcpl.cpl
2009-05-23 22:31 . 2008-06-20 03:14 11,264 --a------ C:\Windows\System32\icardres.dll
2009-05-23 22:27 . 2008-07-27 20:03 282,112 --a------ C:\Windows\System32\mscoree.dll
2009-05-23 22:27 . 2008-07-27 20:03 158,720 --a------ C:\Windows\System32\mscorier.dll
2009-05-23 22:27 . 2008-07-27 20:03 96,760 --a------ C:\Windows\System32\dfshim.dll
2009-05-23 22:27 . 2008-07-27 20:03 83,968 --a------ C:\Windows\System32\mscories.dll
2009-05-23 22:27 . 2008-07-27 20:03 41,984 --a------ C:\Windows\System32\netfxperf.dll
2009-05-23 22:16 . 2009-05-23 22:16 <REP> d-------- C:\Users\All Users\DAEMON Tools Lite
2009-05-23 22:16 . 2009-05-23 22:16 <REP> d-------- C:\ProgramData\DAEMON Tools Lite
2009-05-23 22:16 . 2009-05-23 22:45 <REP> d-------- C:\Program Files\DAEMON Tools Toolbar
2009-05-23 22:16 . 2009-05-23 22:16 <REP> d-------- C:\Program Files\DAEMON Tools Lite
2009-05-23 22:12 . 2009-05-23 22:17 <REP> d-------- C:\Users\Jonus\AppData\Roaming\DAEMON Tools Lite
2009-05-23 22:12 . 2009-05-23 22:12 721,904 --a------ C:\Windows\System32\drivers\sptd.sys
2009-05-23 19:53 . 2009-05-23 19:54 737,280 --a------ C:\Windows\iun6002.exe
2009-05-22 00:46 . 2009-05-22 00:46 <REP> d-------- C:\Windows\System32\ZoneLabs
2009-05-22 00:46 . 2009-05-22 00:47 <REP> d-------- C:\Windows\Internet Logs
2009-05-22 00:46 . 2009-05-22 00:46 <REP> d-------- C:\Users\All Users\CheckPoint
2009-05-22 00:46 . 2009-05-22 00:46 <REP> d-------- C:\ProgramData\CheckPoint
2009-05-22 00:46 . 2009-05-22 00:46 <REP> d-------- C:\Program Files\Zone Labs
2009-05-22 00:46 . 2003-10-16 14:11 70 --ah----- C:\Windows\System32\drivers\vsconfig.xml
2009-05-20 21:50 . 2009-05-20 21:50 <REP> d-------- C:\Users\Jonus\AppData\Roaming\DeepBurner
2009-05-16 15:22 . 2009-05-23 19:54 <REP> d-------- C:\Program Files\EA GAMES
2009-05-16 15:22 . 2002-06-12 04:47 327,680 --a------ C:\Program Files\ArcadeRes.dll
2009-05-16 15:22 . 2001-12-20 10:46 180,224 --a------ C:\Program Files\ijl11.dll
2009-05-16 15:22 . 2002-06-12 04:47 163,840 --a------ C:\Program Files\rwvoice.dll
2009-05-16 15:22 . 2002-06-12 04:47 106,496 --a------ C:\Program Files\rwnet.dll
2009-05-16 15:22 . 2002-05-27 22:05 77,824 --a------ C:\Program Files\GSAPak.exe
2009-05-15 20:17 . 2009-05-15 20:17 <REP> d-------- C:\Users\Jonus\AppData\Roaming\BSplayer Pro
2009-05-15 20:17 . 2009-05-15 20:36 <REP> d-------- C:\Users\Jonus\AppData\Roaming\BSplayer
2009-05-15 20:17 . 2009-05-15 20:36 <REP> d-------- C:\Program Files\Webteh
2009-05-15 20:17 . 2009-05-15 20:17 <REP> d-------- C:\Program Files\Conduit
2009-05-15 19:43 . 2009-05-23 19:54 <REP> d-------- C:\Program Files\Astonsoft
2009-05-15 17:56 . 2009-05-15 18:03 <REP> d-------- C:\Users\Jonus\AppData\Roaming\vlc
2009-05-15 17:56 . 2009-05-15 17:56 <REP> d-------- C:\Program Files\VideoLAN
2009-05-07 20:25 . 2009-05-07 22:17 <REP> d-------- C:\Program Files\Cheat Engine
2009-04-29 05:31 . 2009-04-29 05:31 4,491,776 --a------ C:\Windows\System32\drivers\atikmdag.sys
2009-04-29 04:08 . 2009-04-29 04:08 442,368 --a------ C:\Windows\System32\ATIDEMGX.dll
2009-04-29 04:08 . 2009-04-29 04:08 303,104 --a------ C:\Windows\System32\atieclxx.exe
2009-04-29 04:07 . 2009-04-29 04:07 176,128 --a------ C:\Windows\System32\atiesrxx.exe
2009-04-29 04:05 . 2009-04-29 04:05 278,528 --a------ C:\Windows\System32\Oemdspif.dll
2009-04-29 04:05 . 2009-04-29 04:05 11,776 --a------ C:\Windows\System32\atimuixx.dll
2009-04-29 04:02 . 2009-04-29 04:02 2,428,928 --a------ C:\Windows\System32\atidxx32.dll
2009-04-29 03:41 . 2009-04-29 03:41 11,559,424 --a------ C:\Windows\System32\atioglxx.dll
2009-04-29 03:36 . 2009-04-29 03:36 167,952 --a------ C:\Windows\System32\atiumdva.cap
2009-04-29 03:25 . 2009-04-29 03:25 51,712 --a------ C:\Windows\System32\atimpc32.dll
2009-04-29 03:25 . 2009-04-29 03:25 51,712 --a------ C:\Windows\System32\amdpcom32.dll
2009-04-29 03:24 . 2009-04-29 03:24 163,840 --a------ C:\Windows\System32\atiadlxx.dll
2009-04-29 03:22 . 2009-04-29 03:22 53,248 --a------ C:\Windows\System32\aticalrt.dll
2009-04-29 03:22 . 2009-04-29 03:22 53,248 --a------ C:\Windows\System32\aticalcl.dll
2009-04-29 03:20 . 2009-04-29 03:20 3,293,184 --a------ C:\Windows\System32\aticaldd.dll
2009-04-29 03:11 . 2009-04-29 03:11 53,248 --a------ C:\Windows\System32\drivers\ati2erec.dll
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-24 10:35 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
2009-05-24 10:34 --------- d---a-w C:\ProgramData\TEMP
2009-05-24 10:19 --------- d-----w C:\ProgramData\Symantec
2009-05-23 21:23 --------- d-----w C:\Program Files\ATI Technologies
2009-05-23 20:33 --------- d-----w C:\Program Files\MSBuild
2009-05-23 19:19 --------- d-----w C:\ProgramData\Google Updater
2009-05-23 17:53 --------- d--h--w C:\Program Files\InstallShield Installation Information
2009-05-23 17:40 612 ----a-w C:\Program Files\GameSpy Arcade - Debug.lnk
2009-05-23 17:40 598 ----a-w C:\Program Files\GameSpy Arcade.lnk
2009-05-23 17:40 --------- d-----w C:\Program Files\Custom
2009-05-23 17:39 --------- d-----w C:\Program Files\Profiles
2009-05-21 10:41 --------- d-----w C:\Program Files\Common Files\Steam
2009-05-20 16:00 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2009-05-19 20:00 --------- d-----w C:\Users\Jonus\AppData\Roaming\LimeWire
2009-05-17 19:28 --------- d-----w C:\Program Files\Google
2009-05-16 13:22 --------- d-----w C:\Program Files\Skins
2009-05-16 13:22 --------- d-----w C:\Program Files\Services
2009-05-16 09:30 --------- d-----w C:\Program Files\Java
2009-05-16 09:27 --------- d-----w C:\ProgramData\Nero
2009-05-16 09:27 --------- d-----w C:\Program Files\Common Files\Ahead
2009-05-15 19:26 --------- d-----w C:\Program Files\Nero
2009-05-14 15:26 --------- d-----w C:\Program Files\Microsoft Games
2009-05-13 20:14 --------- d-----w C:\ProgramData\Microsoft Help
2009-05-13 20:13 --------- d-----w C:\Program Files\Windows Mail
2009-05-13 15:00 --------- d-----w C:\Program Files\Dofus
2009-04-29 02:06 356,352 ----a-w C:\Windows\System32\atipdlxx.dll
2009-04-29 02:06 159,744 ----a-w C:\Windows\System32\atitmmxx.dll
2009-04-29 02:05 43,520 ----a-w C:\Windows\System32\ati2edxx.dll
2009-04-29 01:52 3,082,752 ----a-w C:\Windows\System32\atiumdag.dll
2009-04-29 01:37 4,963,840 ----a-w C:\Windows\System32\atiumdva.dll
2009-04-16 15:55 --------- d-----w C:\Program Files\Common Files\LightScribe
2009-04-10 11:04 --------- d-----w C:\Program Files\directx
2009-04-09 16:48 --------- d-----w C:\Program Files\Ubisoft
2009-04-09 15:33 --------- d-----w C:\Program Files\Common Files\SWF Studio
2009-04-09 15:31 --------- d-----w C:\Program Files\Eidos Interactive
2009-04-05 16:52 107,888 ----a-w C:\Windows\System32\CmdLineExt.dll
2009-04-05 16:26 --------- d-----w C:\Program Files\Rockstar Games
2009-03-25 11:54 --------- d-----w C:\ProgramData\Media Center Programs
2009-03-17 03:38 40,960 ----a-w C:\Windows\AppPatch\apihex86.dll
2009-03-17 03:38 24,064 ----a-w C:\Windows\System32\amxread.dll
2009-03-17 03:38 13,824 ----a-w C:\Windows\System32\apilogen.dll
2009-03-09 03:19 410,984 ----a-w C:\Windows\System32\deploytk.dll
2009-03-03 19:56 118,784 ----a-w C:\Windows\System32\atibtmon.exe
2009-03-03 04:46 3,599,328 ----a-w C:\Windows\System32\ntkrnlpa.exe
2009-03-03 04:46 3,547,632 ----a-w C:\Windows\System32\ntoskrnl.exe
2009-03-03 04:40 827,392 ----a-w C:\Windows\System32\wininet.dll
2009-03-03 04:39 551,424 ----a-w C:\Windows\System32\rpcss.dll
2009-03-03 04:39 26,112 ----a-w C:\Windows\System32\printfilterpipelineprxy.dll
2009-03-03 04:39 183,296 ----a-w C:\Windows\System32\sdohlp.dll
2009-03-03 04:37 98,304 ----a-w C:\Windows\System32\iasrecst.dll
2009-03-03 04:37 78,336 ----a-w C:\Windows\System32\ieencode.dll
2009-03-03 04:37 54,784 ----a-w C:\Windows\System32\iasads.dll
2009-03-03 04:37 44,032 ----a-w C:\Windows\System32\iasdatastore.dll
2009-03-03 03:04 666,624 ----a-w C:\Windows\System32\printfilterpipelinesvc.exe
2009-03-03 02:38 17,408 ----a-w C:\Windows\System32\iashost.exe
2009-03-03 02:28 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2009-01-29 11:57 22,328 ----a-w C:\Users\Jonus\AppData\Roaming\PnkBstrK.sys
2008-12-01 17:27 3,584 ----a-w C:\Program Files\Aphex.DMP
2008-10-26 14:54 691 ----a-w C:\Users\Jonus\AppData\Roaming\GetValue.vbs
2008-10-26 14:54 35 ----a-w C:\Users\Jonus\AppData\Roaming\SetValue.bat
2005-04-06 12:00 4,161,591 ------w C:\Program Files\Aphex.exe
2005-04-06 10:49 430,080 ----a-w C:\Program Files\ArcRes.dll
2003-09-24 13:55 132,608 ----a-w C:\Program Files\RptCrash.exe
2002-12-08 16:32 1,979 ----a-w C:\Program Files\ws_default.html
2002-06-12 02:48 954 ----a-w C:\Program Files\edge.ico
2002-06-12 02:24 94,208 ----a-w C:\Program Files\gsws.dll
2002-06-12 02:24 81,920 ----a-w C:\Program Files\gslan.dll
2002-06-05 14:47 417 ----a-w C:\Program Files\def_banner.html
2002-05-31 05:31 8,531 ----a-w C:\Program Files\readme.html
1999-11-12 16:16 224,768 ----a-w C:\Program Files\fpupdate.exe
1999-06-25 08:55 149,504 ----a-w C:\Program Files\UNWISE.EXE
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
2009-04-30 17:08 470512 --a------ C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]
"RegistryMechanic"="C:\Program Files\Registry Mechanic\RMTray.exe" [2008-07-03 812952]
"Steam"="c:\users\jonus\documents\steam.exe" [2009-05-19 1217784]
"ccleaner"="C:\Program Files\CCleaner\CCleaner.exe" [2009-01-20 1451248]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-02-14 39408]
"RGSC"="C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]
"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"LogitechCommunicationsManager"="C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe" [2006-10-31 284184]
"LogitechQuickCamRibbon"="C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" [2006-11-15 746520]
"LVCOMSX"="C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe" [2006-11-15 244512]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-09 153136]
"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" [2009-03-09 148888]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-04-28 61440]
"ATICustomerCare"="C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe" [2008-05-02 307200]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.l3codecp"= l3codecp.acm
"msacm.avis"= ff_acm.acm
"msacm.dvacm"= C:\PROGRA~1\COMMON~1\ULEADS~1\Vio\Dvacm.acm
"msacm.MPEGacm"= C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG\MPEGacm.acm
"msacm.ulmp3acm"= C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG\ulmp3acm.acm
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG8_TRAY
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\isCfgWiz
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
--a------ 2008-01-21 04:25 125952 C:\Windows\ehome\ehtray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
--a------ 2007-05-08 16:24 54840 c:\Program Files\HP\HP Software Update\hpwuSchd2.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPAdvisor]
--a------ 2008-04-14 17:58 972128 C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv]
--a------ 2007-04-18 17:01 65536 c:\hp\support\hpsysdrv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
--a------ 2007-07-12 16:36 178712 C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KBD]
--a------ 2006-12-08 17:16 65536 C:\hp\KBD\KbdStub.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
--a------ 2008-01-21 04:23 1233920 C:\Program Files\Windows Sidebar\sidebar.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
-rahs---- 2008-08-18 18:41 1832272 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
--a------ 2009-05-19 17:14 1217784 c:\Users\Jonus\Documents\Steam.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-04-07 02:56 132760 C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UVS11 Preload]
--a------ 2007-03-03 14:12 341488 C:\Program Files\Videos\uvPL.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
--a------ 2008-01-21 04:23 1008184 C:\Program Files\Windows Defender\MSASCui.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
--a------ 2008-01-21 04:25 202240 C:\Program Files\Windows Media Player\wmpnscfg.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
--a------ 2008-03-26 15:21 5369856 C:\Windows\RtHDVCpl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"="0x00000000"
"UpdatesDisableNotify"="0x00000000"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{8C052177-3D71-427F-8122-3B72997E90B4}"= c:\Program Files\Cyberlink\PowerDirector\PDR.EXE:CyberLink PowerDirector
"{6E5F3BF1-E720-4037-B350-50E0D760534E}"= TCP:6004|C:\Program Files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{E7500F40-2364-46B5-A432-E3F109FF1672}"= Disabled:UDP:C:\Program Files\IncrediMail\bin\ImpCnt.exe:IncrediMail
"{62A86970-2A5C-404A-8C8D-AFB9D2322ACD}"= Disabled:TCP:C:\Program Files\IncrediMail\bin\ImpCnt.exe:IncrediMail
"{FB8039A5-D289-4CBA-9822-6C0435598657}"= Disabled:UDP:C:\Program Files\IncrediMail\bin\IncMail.exe:IncrediMail
"{E3F4A2FA-D5C2-48AA-BB28-DABCC07A3829}"= Disabled:TCP:C:\Program Files\IncrediMail\bin\IncMail.exe:IncrediMail
"{6FDE3092-E17E-414D-977C-C9982C64233B}"= Disabled:UDP:C:\Program Files\IncrediMail\bin\ImApp.exe:IncrediMail
"{AD2B4423-1330-4A09-90F1-EABC3F0C426B}"= Disabled:TCP:C:\Program Files\IncrediMail\bin\ImApp.exe:IncrediMail
"TCP Query User{96DA8758-495A-4059-BDB5-7742E0B3163A}C:\\program files\\jeux\\ea games\\battlefield 1942\\bf1942.exe"= UDP:C:\program files\jeux\ea games\battlefield 1942\bf1942.exe:BF1942
"UDP Query User{3FDDD468-1787-461E-A383-5E6A8B54AB89}C:\\program files\\jeux\\ea games\\battlefield 1942\\bf1942.exe"= TCP:C:\program files\jeux\ea games\battlefield 1942\bf1942.exe:BF1942
"TCP Query User{02502467-193E-4939-9136-14D9F67E5718}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike\\hl.exe"= UDP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike\hl.exe:Half-Life Launcher
"UDP Query User{467F86B7-AE7A-419B-9445-05CF7A41090C}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike\\hl.exe"= TCP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike\hl.exe:Half-Life Launcher
"TCP Query User{0E7F0D9A-6B91-41E0-89C2-A234A9BCAFE4}C:\\program files\\internet explorer\\iexplore.exe"= UDP:C:\program files\internet explorer\iexplore.exe:Internet Explorer
"UDP Query User{74C902E0-9DF2-421A-B17A-D8F5ECDC56BC}C:\\program files\\internet explorer\\iexplore.exe"= TCP:C:\program files\internet explorer\iexplore.exe:Internet Explorer
"TCP Query User{FE592352-7D59-4CF0-8976-BCD18F7C1E4B}C:\\program files\\microsoft games\\microsoft flight simulator x\\fsx.exe"= UDP:C:\program files\microsoft games\microsoft flight simulator x\fsx.exe:Microsoft Flight Simulator®
"UDP Query User{7A4B6B9C-5160-4CA3-8F10-3D922F556395}C:\\program files\\microsoft games\\microsoft flight simulator x\\fsx.exe"= TCP:C:\program files\microsoft games\microsoft flight simulator x\fsx.exe:Microsoft Flight Simulator®
"TCP Query User{034EBED4-1B4A-4130-AEB6-C9A8694846B3}C:\\program files\\jeux\\ea games\\command and conquer generals\\game.dat"= UDP:C:\program files\jeux\ea games\command and conquer generals\game.dat:game
"UDP Query User{0B40C841-FD58-40AC-A94A-EBD2CD5FBD9C}C:\\program files\\jeux\\ea games\\command and conquer generals\\game.dat"= TCP:C:\program files\jeux\ea games\command and conquer generals\game.dat:game
"TCP Query User{E232CCB5-CAC9-499C-B16A-7997603A1D6E}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\condition zero\\hl.exe"= UDP:C:\users\jonus\documents\steamapps\jonuskiller\condition zero\hl.exe:Half-Life Launcher
"UDP Query User{C969A2D4-6026-4402-ABC1-58461B155BE5}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\condition zero\\hl.exe"= TCP:C:\users\jonus\documents\steamapps\jonuskiller\condition zero\hl.exe:Half-Life Launcher
"{B10CC773-B673-4773-8A29-67038E10C788}"= UDP:C:\Users\Jonus\AppData\Local\Temp\WZSE0.TMP\SymNRT.exe:Norton Removal Tool
"{37C438D7-7C53-4E5C-AE13-86DC915CBD64}"= TCP:C:\Users\Jonus\AppData\Local\Temp\WZSE0.TMP\SymNRT.exe:Norton Removal Tool
"{9084064B-F56D-4AE1-A6E8-2AE1F7D83C0D}"= UDP:C:\Windows\System32\PnkBstrA.exe:PnkBstrA
"{C23AC1F1-20C0-44D0-8AC6-987153CAE84A}"= TCP:C:\Windows\System32\PnkBstrA.exe:PnkBstrA
"{81D508B6-0935-4211-B344-46343245C720}"= UDP:C:\Windows\System32\PnkBstrB.exe:PnkBstrB
"{255F8327-DC03-4E54-9365-4EFEB86A5A1C}"= TCP:C:\Windows\System32\PnkBstrB.exe:PnkBstrB
"TCP Query User{D6831824-51D6-4525-8A42-2D7B3674E6D9}C:\\users\\jonus\\downloads\\war europe downloader.exe"= UDP:C:\users\jonus\downloads\war europe downloader.exe:war europe downloader.exe
"UDP Query User{0BAFB70C-5597-4F36-BF63-738A192B9B70}C:\\users\\jonus\\downloads\\war europe downloader.exe"= TCP:C:\users\jonus\downloads\war europe downloader.exe:war europe downloader.exe
"TCP Query User{FC5DE729-2826-478E-8638-3FC7D25E6180}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike source\\hl2.exe"= UDP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike source\hl2.exe:hl2
"UDP Query User{2485AB10-313A-4CFA-AFCE-FB5F12550982}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike source\\hl2.exe"= TCP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike source\hl2.exe:hl2
"TCP Query User{DB3836D0-C544-4513-9270-A3DD68498C57}C:\\program files\\eidos interactive\\pyro studios\\praetorians\\praetorians.exe"= UDP:C:\program files\eidos interactive\pyro studios\praetorians\praetorians.exe:Praetorians
"UDP Query User{41647ECE-13AE-41C6-A9B5-B775047AD489}C:\\program files\\eidos interactive\\pyro studios\\praetorians\\praetorians.exe"= TCP:C:\program files\eidos interactive\pyro studios\praetorians\praetorians.exe:Praetorians
"TCP Query User{2D12F0B9-95C0-45ED-91DF-E3F601755897}C:\\windows\\system32\\dplaysvr.exe"= UDP:C:\windows\system32\dplaysvr.exe:Application d'assistance Microsoft DirectPlay
"UDP Query User{0BC8A042-966B-4DCD-959F-F0E58DDE5FAE}C:\\windows\\system32\\dplaysvr.exe"= TCP:C:\windows\system32\dplaysvr.exe:Application d'assistance Microsoft DirectPlay
"TCP Query User{BF998301-4ECD-40D9-A191-90FD2742BFE5}C:\\program files\\jeux\\ea games\\command & conquer generals zero hour\\game.dat"= UDP:C:\program files\jeux\ea games\command & conquer generals zero hour\game.dat:game
"UDP Query User{7677E19F-7B7E-4C43-9498-A1948D15C481}C:\\program files\\jeux\\ea games\\command & conquer generals zero hour\\game.dat"= TCP:C:\program files\jeux\ea games\command & conquer generals zero hour\game.dat:game
"{A449F1B6-9317-405E-B248-22D55D6F5322}"= UDP:C:\Program Files\Aphex.exe:GameSpy Arcade
"{1C006AD5-2228-4274-A919-7ADC8D029471}"= TCP:C:\Program Files\Aphex.exe:GameSpy Arcade
"TCP Query User{87D1B118-520C-4825-A882-8FA074542B73}C:\\program files\\codemasters\\worms 4 mayhem\\worms 4 mayhem.exe"= UDP:C:\program files\codemasters\worms 4 mayhem\worms 4 mayhem.exe:Worms 4 Mayhem
"UDP Query User{F427BF94-D4AD-40D7-93D8-68849C65A762}C:\\program files\\codemasters\\worms 4 mayhem\\worms 4 mayhem.exe"= TCP:C:\program files\codemasters\worms 4 mayhem\worms 4 mayhem.exe:Worms 4 Mayhem
"TCP Query User{CD194004-FEEE-4E53-A7D0-6DC8AE570A18}C:\\program files\\metin2_france\\metin2.bin"= UDP:C:\program files\metin2_france\metin2.bin:metin2.bin
"UDP Query User{53492FD5-0B72-499A-95E5-311DC489A3E3}C:\\program files\\metin2_france\\metin2.bin"= TCP:C:\program files\metin2_france\metin2.bin:metin2.bin
"TCP Query User{6BC27656-420F-44F0-BB58-42E941A0C268}C:\\program files\\emule\\emule.exe"= UDP:C:\program files\emule\emule.exe:eMule
"UDP Query User{60416B2E-FD26-43EE-8928-B2D551632ECD}C:\\program files\\emule\\emule.exe"= TCP:C:\program files\emule\emule.exe:eMule
"TCP Query User{4C89E8AD-574B-4FD4-9561-651EF63C6E8F}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike beta\\hl.exe"= UDP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike beta\hl.exe:Half-Life Launcher
"UDP Query User{CBC3A8B8-E2B8-4878-8817-73285728DE06}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike beta\\hl.exe"= TCP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike beta\hl.exe:Half-Life Launcher
"{B04931F6-B914-46BF-91FF-5AEFAF94F441}"= UDP:C:\Program Files\Microsoft Games\Age of Empires III\age3x.exe:Age of Empires III - The WarChiefs
"{FC46AA8A-1FEC-4587-B9D1-932BF8D90328}"= TCP:C:\Program Files\Microsoft Games\Age of Empires III\age3x.exe:Age of Empires III - The WarChiefs
"{05435E2D-99C6-426E-84EE-7033B9719DB0}"= UDP:C:\Program Files\Microsoft Games\Age of Empires III\age3.exe:Age of Empires III
"{BF18499D-6632-4299-B867-2D9EF2F65D3C}"= TCP:C:\Program Files\Microsoft Games\Age of Empires III\age3.exe:Age of Empires III
"{270F699F-4E17-4D9B-9043-D317252DA067}"= UDP:C:\Program Files\Microsoft Games\Age of Empires III\age3y.exe:Age of Empires III - The Asian Dynasties
"{25D5EC7A-7C2B-4871-ABA3-E0643BBB505B}"= TCP:C:\Program Files\Microsoft Games\Age of Empires III\age3y.exe:Age of Empires III - The Asian Dynasties
"{89F66E8F-7DFE-4A4E-BE93-BB14BB8B91FC}"= UDP:C:\Users\Jonus\Documents\steamapps\common\call of duty 4\iw3sp.exe:Call of Duty 4: Modern Warfare
"{6E3D7C23-299B-426C-A6C2-030CCAFAE186}"= TCP:C:\Users\Jonus\Documents\steamapps\common\call of duty 4\iw3sp.exe:Call of Duty 4: Modern Warfare
"{159302C4-D9CE-47E7-97A3-A8FF9E59ED23}"= UDP:C:\Users\Jonus\Documents\steamapps\common\call of duty 4\iw3mp.exe:Call of Duty 4: Modern Warfare
"{BE9C60DB-14C4-4A27-903D-BBFB22060C06}"= TCP:C:\Users\Jonus\Documents\steamapps\common\call of duty 4\iw3mp.exe:Call of Duty 4: Modern Warfare
"TCP Query User{CD7C6189-1C90-415A-86A7-914B427135D1}C:\\program files\\limewire\\limewire.exe"= UDP:C:\program files\limewire\limewire.exe:LimeWire
"UDP Query User{CA4FE4AF-EA09-4224-A3E8-CB3F2D4085E1}C:\\program files\\limewire\\limewire.exe"= TCP:C:\program files\limewire\limewire.exe:LimeWire
"{4D740EDA-DEAA-4057-9948-9CE795CE624C}"= UDP:C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX.exe:Tom Clancy's H.A.W.X
"{F5EBE1EB-772A-43BE-ADF7-7C70F8DA66CC}"= TCP:C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX.exe:Tom Clancy's H.A.W.X
"{DB57E7D8-92D4-4C76-B715-C1A4D1216D3A}"= UDP:C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX_dx10.exe:Tom Clancy's H.A.W.X
"{AA19725D-0ED8-4BF0-B42D-D1142A5CA405}"= TCP:C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX_dx10.exe:Tom Clancy's H.A.W.X
"{84A9D86B-3130-4D10-BB65-2263FD87ACAF}"= UDP:C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club
"{A31EC7E6-586A-4879-B042-AA9A5C807C68}"= TCP:C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club
"{7AF3CD5B-F981-4A8D-922F-7065EFF1B1CF}"= UDP:C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV
"{3F683DB1-CBEE-41EC-A615-CA40DFD09E1E}"= TCP:C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV
"TCP Query User{F21DC726-8A58-48C6-B069-72D18C3A0394}C:\\program files\\rockstar games\\grand theft auto iv\\gtaiv.exe"= UDP:C:\program files\rockstar games\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV
"UDP Query User{4AFCB64C-F597-414E-9342-77C531CCC052}C:\\program files\\rockstar games\\grand theft auto iv\\gtaiv.exe"= TCP:C:\program files\rockstar games\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV
"{674EA8F6-285D-4547-BF1D-4C97E4795F57}"= UDP:C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe:Dungeon Party
"{7B338A84-3325-47FB-AB2C-6B0CB8E1E5F6}"= TCP:C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe:Dungeon Party
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"C:\\Windows\\system32\\winlogon.exe"= C:\Windows\system32\winlogon.exe:*:enabled:@shell32.dll,-1
R1 aswSP;avast! Self Protection;C:\Windows\system32\drivers\aswSP.sys [2009-02-05 114768]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe [2009-04-29 176128]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMonFlt;aswMonFlt;C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
R2 ezSharedSvc;Easybits Shared Services for Windows;C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 NMSAccessU;NMSAccessU;C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-06-15 71096]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2008-07-07 809296]
R3 atikmdag;atikmdag;C:\Windows\system32\DRIVERS\atikmdag.sys [2009-04-29 4491776]
S2 gupdate1c98ed1260e2b81;Service Google Update (gupdate1c98ed1260e2b81);C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-14 133104]
S3 Boonty Games;Boonty Games;C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe [2008-10-27 69120]
S3 GameConsoleService;GameConsoleService;C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [ ]
S3 getPlus(R) Helper;getPlus(R) Helper;C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2008-12-01 33752]
S3 Steam Client Service;Steam Client Service;C:\Program Files\Common Files\Steam\SteamService.exe [2009-05-20 322032]
S4 ErrDev;Microsoft Hardware Error Device Driver;C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR;C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ezSharedSvc
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{81ec1af4-419d-11dd-8037-806e6f6e6963}]
\shell\AutoRun\command - E:\AUTORUN.EXE
*Newly Created Service* - CATCHME
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
.
Contenu du dossier 'Tâches planifiées'
2009-05-24 C:\Windows\Tasks\Google Software Updater.job
- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 19:58]
2009-05-24 C:\Windows\Tasks\GoogleUpdateTaskMachine.job
- C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-14 20:22]
2009-05-23 C:\Windows\Tasks\User_Feed_Synchronization-{BA6C4E52-F9F5-49A8-975B-9BD3EAAE55C8}.job
- C:\Windows\system32\msfeedssync.exe [2008-01-21 04:24]
.
- - - - ORPHELINS SUPPRIMES - - - -
BHO-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
Toolbar-{2EEF94DF-75F6-42E9-B7FB-AF5A170A6E2E} - (no file)
WebBrowser-{2EEF94DF-75F6-42E9-B7FB-AF5A170A6E2E} - (no file)
MSConfigStartUp-HP Health Check Scheduler - [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
.
------- Examen supplémentaire -------
.
R0 -: HKCU-Main,Start Page = hxxp://google.com/
R0 -: HKLM-Main,Start Page = hxxp://www.google.fr/
R0 -: HKLM-Main,Window Title = Salut Jonus !
R1 -: HKCU-Internet Settings,ProxyServer = socks=
R1 -: HKCU-Internet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,
O8 -: &Recherche AOL Toolbar - C:\ProgramData\AOL\ieToolbar\resources\fr-FR\local\search.html
O8 -: E&xporter vers Microsoft Excel - C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 -: {3B8FB116-D358-48A3-A5C7-DB84F15CBB04} - http://www.expresstoolie.com/redirect.php
O9 -: {3B8FB116-D358-48A3-A5C7-DB84F15CBB04} - http://www.expresstoolie.com/redirect.php -
O18 -: Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-24 13:58:27
Windows 6.0.6001 Service Pack 1 NTFS
Recherche de processus cachés ...
Recherche d'éléments en démarrage automatique cachés ...
Recherche de fichiers cachés ...
Scan terminé avec succès
Fichiers cachés: 0
**************************************************************************
.
Heure de fin: 2009-05-24 14:00:27
ComboFix-quarantined-files.txt 2009-05-24 12:00:24
Avant-CF: 131 503 538 176 octets libres
Après-CF: 131,470,868,480 octets libres
363 --- E O F --- 2009-05-23 20:39:34
ComboFix 08-10-29.06 - Jonus 2009-05-24 13:57:42.1 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.1.1036.18.2038 [GMT 2:00]
Lancé depuis: C:\Users\Jonus\Desktop\ComboFix.exe
* Un nouveau point de restauration a été créé
.
- Mode FONCTIONNALITES REDUITES -
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Program Files\INSTALL.LOG
C:\resycled
C:\Windows\twain_16.dll
.
((((((((((((((((((((((((((((( Fichiers créés du 2009-04-24 au 2009-05-24 ))))))))))))))))))))))))))))))))))))
.
2009-05-23 23:21 . 2009-05-23 23:23 <REP> d-------- C:\Program Files\ATI
2009-05-23 23:20 . 2009-05-23 23:20 <REP> d-------- C:\ATI
2009-05-23 22:31 . 2008-06-20 03:14 781,344 --a------ C:\Windows\System32\PresentationNative_v0300.dll
2009-05-23 22:31 . 2008-06-20 03:14 622,080 --a------ C:\Windows\System32\icardagt.exe
2009-05-23 22:31 . 2008-06-20 03:14 326,160 --a------ C:\Windows\System32\PresentationHost.exe
2009-05-23 22:31 . 2008-06-20 03:14 105,016 --a------ C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2009-05-23 22:31 . 2008-06-20 03:14 97,800 --a------ C:\Windows\System32\infocardapi.dll
2009-05-23 22:31 . 2008-06-20 03:14 43,544 --a------ C:\Windows\System32\PresentationHostProxy.dll
2009-05-23 22:31 . 2008-06-20 03:14 37,384 --a------ C:\Windows\System32\infocardcpl.cpl
2009-05-23 22:31 . 2008-06-20 03:14 11,264 --a------ C:\Windows\System32\icardres.dll
2009-05-23 22:27 . 2008-07-27 20:03 282,112 --a------ C:\Windows\System32\mscoree.dll
2009-05-23 22:27 . 2008-07-27 20:03 158,720 --a------ C:\Windows\System32\mscorier.dll
2009-05-23 22:27 . 2008-07-27 20:03 96,760 --a------ C:\Windows\System32\dfshim.dll
2009-05-23 22:27 . 2008-07-27 20:03 83,968 --a------ C:\Windows\System32\mscories.dll
2009-05-23 22:27 . 2008-07-27 20:03 41,984 --a------ C:\Windows\System32\netfxperf.dll
2009-05-23 22:16 . 2009-05-23 22:16 <REP> d-------- C:\Users\All Users\DAEMON Tools Lite
2009-05-23 22:16 . 2009-05-23 22:16 <REP> d-------- C:\ProgramData\DAEMON Tools Lite
2009-05-23 22:16 . 2009-05-23 22:45 <REP> d-------- C:\Program Files\DAEMON Tools Toolbar
2009-05-23 22:16 . 2009-05-23 22:16 <REP> d-------- C:\Program Files\DAEMON Tools Lite
2009-05-23 22:12 . 2009-05-23 22:17 <REP> d-------- C:\Users\Jonus\AppData\Roaming\DAEMON Tools Lite
2009-05-23 22:12 . 2009-05-23 22:12 721,904 --a------ C:\Windows\System32\drivers\sptd.sys
2009-05-23 19:53 . 2009-05-23 19:54 737,280 --a------ C:\Windows\iun6002.exe
2009-05-22 00:46 . 2009-05-22 00:46 <REP> d-------- C:\Windows\System32\ZoneLabs
2009-05-22 00:46 . 2009-05-22 00:47 <REP> d-------- C:\Windows\Internet Logs
2009-05-22 00:46 . 2009-05-22 00:46 <REP> d-------- C:\Users\All Users\CheckPoint
2009-05-22 00:46 . 2009-05-22 00:46 <REP> d-------- C:\ProgramData\CheckPoint
2009-05-22 00:46 . 2009-05-22 00:46 <REP> d-------- C:\Program Files\Zone Labs
2009-05-22 00:46 . 2003-10-16 14:11 70 --ah----- C:\Windows\System32\drivers\vsconfig.xml
2009-05-20 21:50 . 2009-05-20 21:50 <REP> d-------- C:\Users\Jonus\AppData\Roaming\DeepBurner
2009-05-16 15:22 . 2009-05-23 19:54 <REP> d-------- C:\Program Files\EA GAMES
2009-05-16 15:22 . 2002-06-12 04:47 327,680 --a------ C:\Program Files\ArcadeRes.dll
2009-05-16 15:22 . 2001-12-20 10:46 180,224 --a------ C:\Program Files\ijl11.dll
2009-05-16 15:22 . 2002-06-12 04:47 163,840 --a------ C:\Program Files\rwvoice.dll
2009-05-16 15:22 . 2002-06-12 04:47 106,496 --a------ C:\Program Files\rwnet.dll
2009-05-16 15:22 . 2002-05-27 22:05 77,824 --a------ C:\Program Files\GSAPak.exe
2009-05-15 20:17 . 2009-05-15 20:17 <REP> d-------- C:\Users\Jonus\AppData\Roaming\BSplayer Pro
2009-05-15 20:17 . 2009-05-15 20:36 <REP> d-------- C:\Users\Jonus\AppData\Roaming\BSplayer
2009-05-15 20:17 . 2009-05-15 20:36 <REP> d-------- C:\Program Files\Webteh
2009-05-15 20:17 . 2009-05-15 20:17 <REP> d-------- C:\Program Files\Conduit
2009-05-15 19:43 . 2009-05-23 19:54 <REP> d-------- C:\Program Files\Astonsoft
2009-05-15 17:56 . 2009-05-15 18:03 <REP> d-------- C:\Users\Jonus\AppData\Roaming\vlc
2009-05-15 17:56 . 2009-05-15 17:56 <REP> d-------- C:\Program Files\VideoLAN
2009-05-07 20:25 . 2009-05-07 22:17 <REP> d-------- C:\Program Files\Cheat Engine
2009-04-29 05:31 . 2009-04-29 05:31 4,491,776 --a------ C:\Windows\System32\drivers\atikmdag.sys
2009-04-29 04:08 . 2009-04-29 04:08 442,368 --a------ C:\Windows\System32\ATIDEMGX.dll
2009-04-29 04:08 . 2009-04-29 04:08 303,104 --a------ C:\Windows\System32\atieclxx.exe
2009-04-29 04:07 . 2009-04-29 04:07 176,128 --a------ C:\Windows\System32\atiesrxx.exe
2009-04-29 04:05 . 2009-04-29 04:05 278,528 --a------ C:\Windows\System32\Oemdspif.dll
2009-04-29 04:05 . 2009-04-29 04:05 11,776 --a------ C:\Windows\System32\atimuixx.dll
2009-04-29 04:02 . 2009-04-29 04:02 2,428,928 --a------ C:\Windows\System32\atidxx32.dll
2009-04-29 03:41 . 2009-04-29 03:41 11,559,424 --a------ C:\Windows\System32\atioglxx.dll
2009-04-29 03:36 . 2009-04-29 03:36 167,952 --a------ C:\Windows\System32\atiumdva.cap
2009-04-29 03:25 . 2009-04-29 03:25 51,712 --a------ C:\Windows\System32\atimpc32.dll
2009-04-29 03:25 . 2009-04-29 03:25 51,712 --a------ C:\Windows\System32\amdpcom32.dll
2009-04-29 03:24 . 2009-04-29 03:24 163,840 --a------ C:\Windows\System32\atiadlxx.dll
2009-04-29 03:22 . 2009-04-29 03:22 53,248 --a------ C:\Windows\System32\aticalrt.dll
2009-04-29 03:22 . 2009-04-29 03:22 53,248 --a------ C:\Windows\System32\aticalcl.dll
2009-04-29 03:20 . 2009-04-29 03:20 3,293,184 --a------ C:\Windows\System32\aticaldd.dll
2009-04-29 03:11 . 2009-04-29 03:11 53,248 --a------ C:\Windows\System32\drivers\ati2erec.dll
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-24 10:35 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
2009-05-24 10:34 --------- d---a-w C:\ProgramData\TEMP
2009-05-24 10:19 --------- d-----w C:\ProgramData\Symantec
2009-05-23 21:23 --------- d-----w C:\Program Files\ATI Technologies
2009-05-23 20:33 --------- d-----w C:\Program Files\MSBuild
2009-05-23 19:19 --------- d-----w C:\ProgramData\Google Updater
2009-05-23 17:53 --------- d--h--w C:\Program Files\InstallShield Installation Information
2009-05-23 17:40 612 ----a-w C:\Program Files\GameSpy Arcade - Debug.lnk
2009-05-23 17:40 598 ----a-w C:\Program Files\GameSpy Arcade.lnk
2009-05-23 17:40 --------- d-----w C:\Program Files\Custom
2009-05-23 17:39 --------- d-----w C:\Program Files\Profiles
2009-05-21 10:41 --------- d-----w C:\Program Files\Common Files\Steam
2009-05-20 16:00 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2009-05-19 20:00 --------- d-----w C:\Users\Jonus\AppData\Roaming\LimeWire
2009-05-17 19:28 --------- d-----w C:\Program Files\Google
2009-05-16 13:22 --------- d-----w C:\Program Files\Skins
2009-05-16 13:22 --------- d-----w C:\Program Files\Services
2009-05-16 09:30 --------- d-----w C:\Program Files\Java
2009-05-16 09:27 --------- d-----w C:\ProgramData\Nero
2009-05-16 09:27 --------- d-----w C:\Program Files\Common Files\Ahead
2009-05-15 19:26 --------- d-----w C:\Program Files\Nero
2009-05-14 15:26 --------- d-----w C:\Program Files\Microsoft Games
2009-05-13 20:14 --------- d-----w C:\ProgramData\Microsoft Help
2009-05-13 20:13 --------- d-----w C:\Program Files\Windows Mail
2009-05-13 15:00 --------- d-----w C:\Program Files\Dofus
2009-04-29 02:06 356,352 ----a-w C:\Windows\System32\atipdlxx.dll
2009-04-29 02:06 159,744 ----a-w C:\Windows\System32\atitmmxx.dll
2009-04-29 02:05 43,520 ----a-w C:\Windows\System32\ati2edxx.dll
2009-04-29 01:52 3,082,752 ----a-w C:\Windows\System32\atiumdag.dll
2009-04-29 01:37 4,963,840 ----a-w C:\Windows\System32\atiumdva.dll
2009-04-16 15:55 --------- d-----w C:\Program Files\Common Files\LightScribe
2009-04-10 11:04 --------- d-----w C:\Program Files\directx
2009-04-09 16:48 --------- d-----w C:\Program Files\Ubisoft
2009-04-09 15:33 --------- d-----w C:\Program Files\Common Files\SWF Studio
2009-04-09 15:31 --------- d-----w C:\Program Files\Eidos Interactive
2009-04-05 16:52 107,888 ----a-w C:\Windows\System32\CmdLineExt.dll
2009-04-05 16:26 --------- d-----w C:\Program Files\Rockstar Games
2009-03-25 11:54 --------- d-----w C:\ProgramData\Media Center Programs
2009-03-17 03:38 40,960 ----a-w C:\Windows\AppPatch\apihex86.dll
2009-03-17 03:38 24,064 ----a-w C:\Windows\System32\amxread.dll
2009-03-17 03:38 13,824 ----a-w C:\Windows\System32\apilogen.dll
2009-03-09 03:19 410,984 ----a-w C:\Windows\System32\deploytk.dll
2009-03-03 19:56 118,784 ----a-w C:\Windows\System32\atibtmon.exe
2009-03-03 04:46 3,599,328 ----a-w C:\Windows\System32\ntkrnlpa.exe
2009-03-03 04:46 3,547,632 ----a-w C:\Windows\System32\ntoskrnl.exe
2009-03-03 04:40 827,392 ----a-w C:\Windows\System32\wininet.dll
2009-03-03 04:39 551,424 ----a-w C:\Windows\System32\rpcss.dll
2009-03-03 04:39 26,112 ----a-w C:\Windows\System32\printfilterpipelineprxy.dll
2009-03-03 04:39 183,296 ----a-w C:\Windows\System32\sdohlp.dll
2009-03-03 04:37 98,304 ----a-w C:\Windows\System32\iasrecst.dll
2009-03-03 04:37 78,336 ----a-w C:\Windows\System32\ieencode.dll
2009-03-03 04:37 54,784 ----a-w C:\Windows\System32\iasads.dll
2009-03-03 04:37 44,032 ----a-w C:\Windows\System32\iasdatastore.dll
2009-03-03 03:04 666,624 ----a-w C:\Windows\System32\printfilterpipelinesvc.exe
2009-03-03 02:38 17,408 ----a-w C:\Windows\System32\iashost.exe
2009-03-03 02:28 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2009-01-29 11:57 22,328 ----a-w C:\Users\Jonus\AppData\Roaming\PnkBstrK.sys
2008-12-01 17:27 3,584 ----a-w C:\Program Files\Aphex.DMP
2008-10-26 14:54 691 ----a-w C:\Users\Jonus\AppData\Roaming\GetValue.vbs
2008-10-26 14:54 35 ----a-w C:\Users\Jonus\AppData\Roaming\SetValue.bat
2005-04-06 12:00 4,161,591 ------w C:\Program Files\Aphex.exe
2005-04-06 10:49 430,080 ----a-w C:\Program Files\ArcRes.dll
2003-09-24 13:55 132,608 ----a-w C:\Program Files\RptCrash.exe
2002-12-08 16:32 1,979 ----a-w C:\Program Files\ws_default.html
2002-06-12 02:48 954 ----a-w C:\Program Files\edge.ico
2002-06-12 02:24 94,208 ----a-w C:\Program Files\gsws.dll
2002-06-12 02:24 81,920 ----a-w C:\Program Files\gslan.dll
2002-06-05 14:47 417 ----a-w C:\Program Files\def_banner.html
2002-05-31 05:31 8,531 ----a-w C:\Program Files\readme.html
1999-11-12 16:16 224,768 ----a-w C:\Program Files\fpupdate.exe
1999-06-25 08:55 149,504 ----a-w C:\Program Files\UNWISE.EXE
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
2009-04-30 17:08 470512 --a------ C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]
"RegistryMechanic"="C:\Program Files\Registry Mechanic\RMTray.exe" [2008-07-03 812952]
"Steam"="c:\users\jonus\documents\steam.exe" [2009-05-19 1217784]
"ccleaner"="C:\Program Files\CCleaner\CCleaner.exe" [2009-01-20 1451248]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-02-14 39408]
"RGSC"="C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]
"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"LogitechCommunicationsManager"="C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe" [2006-10-31 284184]
"LogitechQuickCamRibbon"="C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" [2006-11-15 746520]
"LVCOMSX"="C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe" [2006-11-15 244512]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-09 153136]
"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" [2009-03-09 148888]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-04-28 61440]
"ATICustomerCare"="C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe" [2008-05-02 307200]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.l3codecp"= l3codecp.acm
"msacm.avis"= ff_acm.acm
"msacm.dvacm"= C:\PROGRA~1\COMMON~1\ULEADS~1\Vio\Dvacm.acm
"msacm.MPEGacm"= C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG\MPEGacm.acm
"msacm.ulmp3acm"= C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG\ulmp3acm.acm
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG8_TRAY
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\isCfgWiz
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
--a------ 2008-01-21 04:25 125952 C:\Windows\ehome\ehtray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
--a------ 2007-05-08 16:24 54840 c:\Program Files\HP\HP Software Update\hpwuSchd2.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPAdvisor]
--a------ 2008-04-14 17:58 972128 C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv]
--a------ 2007-04-18 17:01 65536 c:\hp\support\hpsysdrv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
--a------ 2007-07-12 16:36 178712 C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KBD]
--a------ 2006-12-08 17:16 65536 C:\hp\KBD\KbdStub.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
--a------ 2008-01-21 04:23 1233920 C:\Program Files\Windows Sidebar\sidebar.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
-rahs---- 2008-08-18 18:41 1832272 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
--a------ 2009-05-19 17:14 1217784 c:\Users\Jonus\Documents\Steam.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-04-07 02:56 132760 C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UVS11 Preload]
--a------ 2007-03-03 14:12 341488 C:\Program Files\Videos\uvPL.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
--a------ 2008-01-21 04:23 1008184 C:\Program Files\Windows Defender\MSASCui.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
--a------ 2008-01-21 04:25 202240 C:\Program Files\Windows Media Player\wmpnscfg.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
--a------ 2008-03-26 15:21 5369856 C:\Windows\RtHDVCpl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"="0x00000000"
"UpdatesDisableNotify"="0x00000000"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{8C052177-3D71-427F-8122-3B72997E90B4}"= c:\Program Files\Cyberlink\PowerDirector\PDR.EXE:CyberLink PowerDirector
"{6E5F3BF1-E720-4037-B350-50E0D760534E}"= TCP:6004|C:\Program Files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{E7500F40-2364-46B5-A432-E3F109FF1672}"= Disabled:UDP:C:\Program Files\IncrediMail\bin\ImpCnt.exe:IncrediMail
"{62A86970-2A5C-404A-8C8D-AFB9D2322ACD}"= Disabled:TCP:C:\Program Files\IncrediMail\bin\ImpCnt.exe:IncrediMail
"{FB8039A5-D289-4CBA-9822-6C0435598657}"= Disabled:UDP:C:\Program Files\IncrediMail\bin\IncMail.exe:IncrediMail
"{E3F4A2FA-D5C2-48AA-BB28-DABCC07A3829}"= Disabled:TCP:C:\Program Files\IncrediMail\bin\IncMail.exe:IncrediMail
"{6FDE3092-E17E-414D-977C-C9982C64233B}"= Disabled:UDP:C:\Program Files\IncrediMail\bin\ImApp.exe:IncrediMail
"{AD2B4423-1330-4A09-90F1-EABC3F0C426B}"= Disabled:TCP:C:\Program Files\IncrediMail\bin\ImApp.exe:IncrediMail
"TCP Query User{96DA8758-495A-4059-BDB5-7742E0B3163A}C:\\program files\\jeux\\ea games\\battlefield 1942\\bf1942.exe"= UDP:C:\program files\jeux\ea games\battlefield 1942\bf1942.exe:BF1942
"UDP Query User{3FDDD468-1787-461E-A383-5E6A8B54AB89}C:\\program files\\jeux\\ea games\\battlefield 1942\\bf1942.exe"= TCP:C:\program files\jeux\ea games\battlefield 1942\bf1942.exe:BF1942
"TCP Query User{02502467-193E-4939-9136-14D9F67E5718}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike\\hl.exe"= UDP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike\hl.exe:Half-Life Launcher
"UDP Query User{467F86B7-AE7A-419B-9445-05CF7A41090C}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike\\hl.exe"= TCP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike\hl.exe:Half-Life Launcher
"TCP Query User{0E7F0D9A-6B91-41E0-89C2-A234A9BCAFE4}C:\\program files\\internet explorer\\iexplore.exe"= UDP:C:\program files\internet explorer\iexplore.exe:Internet Explorer
"UDP Query User{74C902E0-9DF2-421A-B17A-D8F5ECDC56BC}C:\\program files\\internet explorer\\iexplore.exe"= TCP:C:\program files\internet explorer\iexplore.exe:Internet Explorer
"TCP Query User{FE592352-7D59-4CF0-8976-BCD18F7C1E4B}C:\\program files\\microsoft games\\microsoft flight simulator x\\fsx.exe"= UDP:C:\program files\microsoft games\microsoft flight simulator x\fsx.exe:Microsoft Flight Simulator®
"UDP Query User{7A4B6B9C-5160-4CA3-8F10-3D922F556395}C:\\program files\\microsoft games\\microsoft flight simulator x\\fsx.exe"= TCP:C:\program files\microsoft games\microsoft flight simulator x\fsx.exe:Microsoft Flight Simulator®
"TCP Query User{034EBED4-1B4A-4130-AEB6-C9A8694846B3}C:\\program files\\jeux\\ea games\\command and conquer generals\\game.dat"= UDP:C:\program files\jeux\ea games\command and conquer generals\game.dat:game
"UDP Query User{0B40C841-FD58-40AC-A94A-EBD2CD5FBD9C}C:\\program files\\jeux\\ea games\\command and conquer generals\\game.dat"= TCP:C:\program files\jeux\ea games\command and conquer generals\game.dat:game
"TCP Query User{E232CCB5-CAC9-499C-B16A-7997603A1D6E}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\condition zero\\hl.exe"= UDP:C:\users\jonus\documents\steamapps\jonuskiller\condition zero\hl.exe:Half-Life Launcher
"UDP Query User{C969A2D4-6026-4402-ABC1-58461B155BE5}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\condition zero\\hl.exe"= TCP:C:\users\jonus\documents\steamapps\jonuskiller\condition zero\hl.exe:Half-Life Launcher
"{B10CC773-B673-4773-8A29-67038E10C788}"= UDP:C:\Users\Jonus\AppData\Local\Temp\WZSE0.TMP\SymNRT.exe:Norton Removal Tool
"{37C438D7-7C53-4E5C-AE13-86DC915CBD64}"= TCP:C:\Users\Jonus\AppData\Local\Temp\WZSE0.TMP\SymNRT.exe:Norton Removal Tool
"{9084064B-F56D-4AE1-A6E8-2AE1F7D83C0D}"= UDP:C:\Windows\System32\PnkBstrA.exe:PnkBstrA
"{C23AC1F1-20C0-44D0-8AC6-987153CAE84A}"= TCP:C:\Windows\System32\PnkBstrA.exe:PnkBstrA
"{81D508B6-0935-4211-B344-46343245C720}"= UDP:C:\Windows\System32\PnkBstrB.exe:PnkBstrB
"{255F8327-DC03-4E54-9365-4EFEB86A5A1C}"= TCP:C:\Windows\System32\PnkBstrB.exe:PnkBstrB
"TCP Query User{D6831824-51D6-4525-8A42-2D7B3674E6D9}C:\\users\\jonus\\downloads\\war europe downloader.exe"= UDP:C:\users\jonus\downloads\war europe downloader.exe:war europe downloader.exe
"UDP Query User{0BAFB70C-5597-4F36-BF63-738A192B9B70}C:\\users\\jonus\\downloads\\war europe downloader.exe"= TCP:C:\users\jonus\downloads\war europe downloader.exe:war europe downloader.exe
"TCP Query User{FC5DE729-2826-478E-8638-3FC7D25E6180}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike source\\hl2.exe"= UDP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike source\hl2.exe:hl2
"UDP Query User{2485AB10-313A-4CFA-AFCE-FB5F12550982}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike source\\hl2.exe"= TCP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike source\hl2.exe:hl2
"TCP Query User{DB3836D0-C544-4513-9270-A3DD68498C57}C:\\program files\\eidos interactive\\pyro studios\\praetorians\\praetorians.exe"= UDP:C:\program files\eidos interactive\pyro studios\praetorians\praetorians.exe:Praetorians
"UDP Query User{41647ECE-13AE-41C6-A9B5-B775047AD489}C:\\program files\\eidos interactive\\pyro studios\\praetorians\\praetorians.exe"= TCP:C:\program files\eidos interactive\pyro studios\praetorians\praetorians.exe:Praetorians
"TCP Query User{2D12F0B9-95C0-45ED-91DF-E3F601755897}C:\\windows\\system32\\dplaysvr.exe"= UDP:C:\windows\system32\dplaysvr.exe:Application d'assistance Microsoft DirectPlay
"UDP Query User{0BC8A042-966B-4DCD-959F-F0E58DDE5FAE}C:\\windows\\system32\\dplaysvr.exe"= TCP:C:\windows\system32\dplaysvr.exe:Application d'assistance Microsoft DirectPlay
"TCP Query User{BF998301-4ECD-40D9-A191-90FD2742BFE5}C:\\program files\\jeux\\ea games\\command & conquer generals zero hour\\game.dat"= UDP:C:\program files\jeux\ea games\command & conquer generals zero hour\game.dat:game
"UDP Query User{7677E19F-7B7E-4C43-9498-A1948D15C481}C:\\program files\\jeux\\ea games\\command & conquer generals zero hour\\game.dat"= TCP:C:\program files\jeux\ea games\command & conquer generals zero hour\game.dat:game
"{A449F1B6-9317-405E-B248-22D55D6F5322}"= UDP:C:\Program Files\Aphex.exe:GameSpy Arcade
"{1C006AD5-2228-4274-A919-7ADC8D029471}"= TCP:C:\Program Files\Aphex.exe:GameSpy Arcade
"TCP Query User{87D1B118-520C-4825-A882-8FA074542B73}C:\\program files\\codemasters\\worms 4 mayhem\\worms 4 mayhem.exe"= UDP:C:\program files\codemasters\worms 4 mayhem\worms 4 mayhem.exe:Worms 4 Mayhem
"UDP Query User{F427BF94-D4AD-40D7-93D8-68849C65A762}C:\\program files\\codemasters\\worms 4 mayhem\\worms 4 mayhem.exe"= TCP:C:\program files\codemasters\worms 4 mayhem\worms 4 mayhem.exe:Worms 4 Mayhem
"TCP Query User{CD194004-FEEE-4E53-A7D0-6DC8AE570A18}C:\\program files\\metin2_france\\metin2.bin"= UDP:C:\program files\metin2_france\metin2.bin:metin2.bin
"UDP Query User{53492FD5-0B72-499A-95E5-311DC489A3E3}C:\\program files\\metin2_france\\metin2.bin"= TCP:C:\program files\metin2_france\metin2.bin:metin2.bin
"TCP Query User{6BC27656-420F-44F0-BB58-42E941A0C268}C:\\program files\\emule\\emule.exe"= UDP:C:\program files\emule\emule.exe:eMule
"UDP Query User{60416B2E-FD26-43EE-8928-B2D551632ECD}C:\\program files\\emule\\emule.exe"= TCP:C:\program files\emule\emule.exe:eMule
"TCP Query User{4C89E8AD-574B-4FD4-9561-651EF63C6E8F}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike beta\\hl.exe"= UDP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike beta\hl.exe:Half-Life Launcher
"UDP Query User{CBC3A8B8-E2B8-4878-8817-73285728DE06}C:\\users\\jonus\\documents\\steamapps\\jonuskiller\\counter-strike beta\\hl.exe"= TCP:C:\users\jonus\documents\steamapps\jonuskiller\counter-strike beta\hl.exe:Half-Life Launcher
"{B04931F6-B914-46BF-91FF-5AEFAF94F441}"= UDP:C:\Program Files\Microsoft Games\Age of Empires III\age3x.exe:Age of Empires III - The WarChiefs
"{FC46AA8A-1FEC-4587-B9D1-932BF8D90328}"= TCP:C:\Program Files\Microsoft Games\Age of Empires III\age3x.exe:Age of Empires III - The WarChiefs
"{05435E2D-99C6-426E-84EE-7033B9719DB0}"= UDP:C:\Program Files\Microsoft Games\Age of Empires III\age3.exe:Age of Empires III
"{BF18499D-6632-4299-B867-2D9EF2F65D3C}"= TCP:C:\Program Files\Microsoft Games\Age of Empires III\age3.exe:Age of Empires III
"{270F699F-4E17-4D9B-9043-D317252DA067}"= UDP:C:\Program Files\Microsoft Games\Age of Empires III\age3y.exe:Age of Empires III - The Asian Dynasties
"{25D5EC7A-7C2B-4871-ABA3-E0643BBB505B}"= TCP:C:\Program Files\Microsoft Games\Age of Empires III\age3y.exe:Age of Empires III - The Asian Dynasties
"{89F66E8F-7DFE-4A4E-BE93-BB14BB8B91FC}"= UDP:C:\Users\Jonus\Documents\steamapps\common\call of duty 4\iw3sp.exe:Call of Duty 4: Modern Warfare
"{6E3D7C23-299B-426C-A6C2-030CCAFAE186}"= TCP:C:\Users\Jonus\Documents\steamapps\common\call of duty 4\iw3sp.exe:Call of Duty 4: Modern Warfare
"{159302C4-D9CE-47E7-97A3-A8FF9E59ED23}"= UDP:C:\Users\Jonus\Documents\steamapps\common\call of duty 4\iw3mp.exe:Call of Duty 4: Modern Warfare
"{BE9C60DB-14C4-4A27-903D-BBFB22060C06}"= TCP:C:\Users\Jonus\Documents\steamapps\common\call of duty 4\iw3mp.exe:Call of Duty 4: Modern Warfare
"TCP Query User{CD7C6189-1C90-415A-86A7-914B427135D1}C:\\program files\\limewire\\limewire.exe"= UDP:C:\program files\limewire\limewire.exe:LimeWire
"UDP Query User{CA4FE4AF-EA09-4224-A3E8-CB3F2D4085E1}C:\\program files\\limewire\\limewire.exe"= TCP:C:\program files\limewire\limewire.exe:LimeWire
"{4D740EDA-DEAA-4057-9948-9CE795CE624C}"= UDP:C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX.exe:Tom Clancy's H.A.W.X
"{F5EBE1EB-772A-43BE-ADF7-7C70F8DA66CC}"= TCP:C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX.exe:Tom Clancy's H.A.W.X
"{DB57E7D8-92D4-4C76-B715-C1A4D1216D3A}"= UDP:C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX_dx10.exe:Tom Clancy's H.A.W.X
"{AA19725D-0ED8-4BF0-B42D-D1142A5CA405}"= TCP:C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX_dx10.exe:Tom Clancy's H.A.W.X
"{84A9D86B-3130-4D10-BB65-2263FD87ACAF}"= UDP:C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club
"{A31EC7E6-586A-4879-B042-AA9A5C807C68}"= TCP:C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club
"{7AF3CD5B-F981-4A8D-922F-7065EFF1B1CF}"= UDP:C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV
"{3F683DB1-CBEE-41EC-A615-CA40DFD09E1E}"= TCP:C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV
"TCP Query User{F21DC726-8A58-48C6-B069-72D18C3A0394}C:\\program files\\rockstar games\\grand theft auto iv\\gtaiv.exe"= UDP:C:\program files\rockstar games\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV
"UDP Query User{4AFCB64C-F597-414E-9342-77C531CCC052}C:\\program files\\rockstar games\\grand theft auto iv\\gtaiv.exe"= TCP:C:\program files\rockstar games\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV
"{674EA8F6-285D-4547-BF1D-4C97E4795F57}"= UDP:C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe:Dungeon Party
"{7B338A84-3325-47FB-AB2C-6B0CB8E1E5F6}"= TCP:C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe:Dungeon Party
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"C:\\Windows\\system32\\winlogon.exe"= C:\Windows\system32\winlogon.exe:*:enabled:@shell32.dll,-1
R1 aswSP;avast! Self Protection;C:\Windows\system32\drivers\aswSP.sys [2009-02-05 114768]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe [2009-04-29 176128]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMonFlt;aswMonFlt;C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
R2 ezSharedSvc;Easybits Shared Services for Windows;C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 NMSAccessU;NMSAccessU;C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-06-15 71096]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2008-07-07 809296]
R3 atikmdag;atikmdag;C:\Windows\system32\DRIVERS\atikmdag.sys [2009-04-29 4491776]
S2 gupdate1c98ed1260e2b81;Service Google Update (gupdate1c98ed1260e2b81);C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-14 133104]
S3 Boonty Games;Boonty Games;C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe [2008-10-27 69120]
S3 GameConsoleService;GameConsoleService;C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [ ]
S3 getPlus(R) Helper;getPlus(R) Helper;C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2008-12-01 33752]
S3 Steam Client Service;Steam Client Service;C:\Program Files\Common Files\Steam\SteamService.exe [2009-05-20 322032]
S4 ErrDev;Microsoft Hardware Error Device Driver;C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR;C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ezSharedSvc
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{81ec1af4-419d-11dd-8037-806e6f6e6963}]
\shell\AutoRun\command - E:\AUTORUN.EXE
*Newly Created Service* - CATCHME
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
.
Contenu du dossier 'Tâches planifiées'
2009-05-24 C:\Windows\Tasks\Google Software Updater.job
- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 19:58]
2009-05-24 C:\Windows\Tasks\GoogleUpdateTaskMachine.job
- C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-14 20:22]
2009-05-23 C:\Windows\Tasks\User_Feed_Synchronization-{BA6C4E52-F9F5-49A8-975B-9BD3EAAE55C8}.job
- C:\Windows\system32\msfeedssync.exe [2008-01-21 04:24]
.
- - - - ORPHELINS SUPPRIMES - - - -
BHO-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
Toolbar-{2EEF94DF-75F6-42E9-B7FB-AF5A170A6E2E} - (no file)
WebBrowser-{2EEF94DF-75F6-42E9-B7FB-AF5A170A6E2E} - (no file)
MSConfigStartUp-HP Health Check Scheduler - [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
.
------- Examen supplémentaire -------
.
R0 -: HKCU-Main,Start Page = hxxp://google.com/
R0 -: HKLM-Main,Start Page = hxxp://www.google.fr/
R0 -: HKLM-Main,Window Title = Salut Jonus !
R1 -: HKCU-Internet Settings,ProxyServer = socks=
R1 -: HKCU-Internet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,
O8 -: &Recherche AOL Toolbar - C:\ProgramData\AOL\ieToolbar\resources\fr-FR\local\search.html
O8 -: E&xporter vers Microsoft Excel - C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 -: {3B8FB116-D358-48A3-A5C7-DB84F15CBB04} - http://www.expresstoolie.com/redirect.php
O9 -: {3B8FB116-D358-48A3-A5C7-DB84F15CBB04} - http://www.expresstoolie.com/redirect.php -
O18 -: Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-24 13:58:27
Windows 6.0.6001 Service Pack 1 NTFS
Recherche de processus cachés ...
Recherche d'éléments en démarrage automatique cachés ...
Recherche de fichiers cachés ...
Scan terminé avec succès
Fichiers cachés: 0
**************************************************************************
.
Heure de fin: 2009-05-24 14:00:27
ComboFix-quarantined-files.txt 2009-05-24 12:00:24
Avant-CF: 131 503 538 176 octets libres
Après-CF: 131,470,868,480 octets libres
363 --- E O F --- 2009-05-23 20:39:34
Lors d'un mise a jour de windows vista internet explorer 8 a essayer de s'installer mais y a eu un echec de l'installation.
Non il m'on juste dit : une erreur c'est produite pendant l'installation de internet explorer 8 veuillez redemarer votre ordinateur pour finaliser la mise a jour. Ce que j'ai fait et qui na fait aucun effet.
Merci d'avance
Merci d'avance
---> Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
---> Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
---> Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
---> Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
---> Sélectionne Exécuter un examen rapide.
---> Clique sur Rechercher. L'analyse démarre.
A la fin de l'analyse, un message s'affiche :
L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
---> Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
---> Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
---> Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
---> MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
---> Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
---> Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
---> Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
---> Sélectionne Exécuter un examen rapide.
---> Clique sur Rechercher. L'analyse démarre.
A la fin de l'analyse, un message s'affiche :
L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
---> Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
---> Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
---> Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
---> MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
Voici le rapport merci d'avance.
Malwarebytes' Anti-Malware 1.36
Version de la base de données: 2174
Windows 6.0.6001 Service Pack 1
24/05/2009 14:29:16
mbam-log-2009-05-24 (14-29-16).txt
Type de recherche: Examen rapide
Eléments examinés: 72298
Temps écoulé: 2 minute(s), 17 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 11
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\Program Files\WebMediaViewer (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Users\Jonus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.
C:\ProgramData\Solt Lake Software (Rogue.ProAntispyware) -> Quarantined and deleted successfully.
C:\ProgramData\Solt Lake Software\Pro Antispyware 2009 (Rogue.ProAntispyware) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\Program Files\WebMediaViewer\browseul.dll.vir (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\myd.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\mym.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\myp.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\myv.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\ot.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\ts.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\gslan.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\gsws.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Antivirus Scan.url (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Online Antispyware Test.url (Trojan.Zlob) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.36
Version de la base de données: 2174
Windows 6.0.6001 Service Pack 1
24/05/2009 14:29:16
mbam-log-2009-05-24 (14-29-16).txt
Type de recherche: Examen rapide
Eléments examinés: 72298
Temps écoulé: 2 minute(s), 17 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 11
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\Program Files\WebMediaViewer (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Users\Jonus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.
C:\ProgramData\Solt Lake Software (Rogue.ProAntispyware) -> Quarantined and deleted successfully.
C:\ProgramData\Solt Lake Software\Pro Antispyware 2009 (Rogue.ProAntispyware) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\Program Files\WebMediaViewer\browseul.dll.vir (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\myd.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\mym.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\myp.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\myv.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\ot.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaViewer\ts.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\gslan.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\gsws.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Antivirus Scan.url (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Online Antispyware Test.url (Trojan.Zlob) -> Quarantined and deleted successfully.
