Virus

Fermé

Zestikmou Messages postés 82 Date d'inscription mardi 2 septembre 2008 Statut Membre Dernière intervention 7 mars 2010 - 21 nov. 2008 à 19:55
Zestikmou Messages postés 82 Date d'inscription mardi 2 septembre 2008 Statut Membre Dernière intervention 7 mars 2010 - 17 déc. 2008 à 13:05

Bonjour,
mon ordi s'etein et redémare tout seul . aprés avoir regardé un peu partou je pense ke C un virus de type blaster ,
pour retardé son processus G tapé dans éxécuter : shutdown-a , ensuite G cherché dé solution é G trouvé dé kit de désinfection pour xp et 2000 mais G un vista et jtrouve rien pour vista eske kelk1 peu maider ? merci

A voir également:

Virus
Youtu.be virus - Accueil - Guide virus
Svchost.exe virus - Guide
Faux message virus ordinateur - Accueil - Arnaque
Softonic virus ✓ - Forum Virus
Faux message virus iphone - Forum iPhone

24 réponses

Réponse 21 / 24

Zestikmou Messages postés 82 Date d'inscription mardi 2 septembre 2008 Statut Membre Dernière intervention 7 mars 2010 13
14 déc. 2008 à 11:37

rapport :

Rapport de ZHPDiag v1.16 par Nicolas Coolman
Enregistré le 14/12/2008 11:35:28
Platform : Windows Vista (TM) Home Premium (6.0.6001) Service Pack 1
MSIE: Internet Explorer v7.0.6001.18000

---\\ Processus lancés
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\WINDOWS\System32\rs32net.exe
C:\Program Files\Windows Sidebar\sidebar.exe
rundll32.exe
C:\Windows\ehome\ehTray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Users\Damien\AppData\Local\Temp\winlogin.exe
C:\Users\Damien\AppData\Local\Temp\csrssc.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Windows\system32\Ati2evxx.exe
c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Bonjour\mDNSResponder.exe
c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
%windir%\system32\svchost.exe
c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
C:\Windows\system32\PnkBstrA.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\TeamViewer3\TeamViewer_Service.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe

---\\ Modification d'une valeur System.ini (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\ezShellStart.exe
F2 - REG:system.ini: Shell=explorer.exe

---\\ Pages de démarrage d'Internet Explorer (R0)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/

---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.google.com/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>

---\\ Redirection du fichier Hosts (O1)
O1 - Hosts: ::1 localhost

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: C:\Windows\system32\jsne87fidgf.dll - {C5BF49A2-94F3-42BD-F434-3604812C897D} - C:\Windows\system32\jsne87fidgf.dll

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: NCO Toolbar 2.0 - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll

---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
O4 - HKLM\..\Run: [rs32net] C:\WINDOWS\System32\rs32net.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun
O4 - HKCU\..\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun
O4 - HKCU\..\Run: [fsm]
O4 - HKCU\..\Run: [xsjfn83jkemfofght] C:\Users\Damien\AppData\Local\Temp\winlogin.exe
O4 - HKCU\..\Run: [Jnskdfmf9eldfd] C:\Users\Damien\AppData\Local\Temp\csrssc.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: inetcpl.cpl=no

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Recherche AOL Toolbar - C:\ProgramData\AOL\ieToolbar\resources\fr-FR\local\search.html
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll,208
O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll,210

---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

---\\ Clé de Registre autorun SharedTaskScheduler (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030}
O22 - SharedTaskScheduler: mcb7uehuj3n8weuhejsw - {C5BF49A2-94F3-42BD-F434-3604812C897D}

---\\ Services NT non Microsoft et non désactivés (O23)
O23 - Service: Apple Mobile Device (Apple Mobile Device) - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: (Ati External Event Utility) - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) - c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: BitDefender Scan Server (bdss) - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe" /service
O23 - Service: Service Bonjour (Bonjour Service) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon
O23 - Service: Symantec Settings Manager (ccSetMgr) - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon
O23 - Service: HP Health Check Service (HP Health Check Service) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe" /service
O23 - Service: LiveUpdate Notice (LiveUpdate Notice) - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon
O23 - Service: PnkBstrA (PnkBstrA) - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - C:\Windows\system32\SLsvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - C:\Windows\System32\spoolsv.exe
O23 - Service: TeamViewer 3 (TeamViewer) - C:\Program Files\TeamViewer3\TeamViewer_Service.exe" -service
O23 - Service: BitDefender Virus Shield (VSSERV) - C:\Program Files\Softwin\BitDefender10\vsserv.exe" /service
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - C:\Windows\system32\SearchIndexer.exe /Embedding
O23 - Service: BitDefender Communicator (XCOMM) - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe" /service

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
O40 - ASIC: Internet Explorer - {26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
O40 - ASIC: Browser Customizations - {60B49E34-C7CC-11D0-8953-00A0C90347FF} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
O40 - ASIC: Adobe Flash Player 9 ActiveX - D27CDB6E-AE6D-11CF-96B8-444553540000 - (not file)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - (not file)
O40 - ASIC: (no name) - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - (not file)
O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\Windows\system32\regsvr32.exe /s /n /i:/UserInstall C:\Windows\system32\themeui.dll
O40 - ASIC: Offline Browsing Pack - {3af36230-a269-11d1-b5bf-0000f8051515} - (not file)
O40 - ASIC: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) - {411EDCF7-755D-414E-A74B-3DCD6583F589} - (not file)
O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
O40 - ASIC: (no name) - {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - (not file)
O40 - ASIC: DirectDrawEx - {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - (not file)
O40 - ASIC: Internet Explorer Help - {45ea75a0-a269-11d1-b5bf-0000f8051515} - (not file)
O40 - ASIC: Microsoft Windows Script 5.7 - {4f645220-306d-11d2-995d-00c04f98bbc9} - (not file)
O40 - ASIC: Internet Explorer Setup Tools - {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\Windows\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
O40 - ASIC: MSN Site Access - {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - (not file)
O40 - ASIC: Address Book 7 - {7790769C-0471-11d2-AF11-00C04FA35D02} - (not file)
O40 - ASIC: .NET Framework - {7C028AF8-F614-47B3-82DA-BA94E41B1089} - (not file)
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
O40 - ASIC: Dynamic HTML Data Binding - {9381D8F2-0288-11D0-9501-00AA00B911A5} - (not file)
O40 - ASIC: Microsoft .NET Framework 1.1 Hotfix (KB929729) - {AAC3F1F0-5649-4670-A698-F1523729F015} - (not file)
O40 - ASIC: .NET Framework - {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - (not file)
O40 - ASIC: Internet Explorer Core Fonts - {C9E9A340-D1F1-11D0-821E-444553540600} - (not file)
O40 - ASIC: .NET Framework - {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - (not file)
O40 - ASIC: (no name) - {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - (not file)
O40 - ASIC: Macromedia Shockwave Flash - {D27CDB6E-AE6D-11CF-96B8-444553540000} - C:\Windows\system32\Macromed\Flash\Flash9e.ocx
O40 - ASIC: HTML Help - {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Active Directory Service Interface - {E92B03AB-B707-11d2-9CBD-0000F87A369E} - (not file)

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32000 (AsyncMac) - C:\WINDOWS\system32\DRIVERS\asyncmac.sys
O41 - Driver: (no object) (atikmdag) - C:\WINDOWS\system32\DRIVERS\atikmdag.sys
O41 - Driver: bdfdll (bdfdll) - C:\Program Files\Softwin\BitDefender10\bdfdll.sys
O41 - Driver: BDFsDrv (BDFsDrv) - C:\Program Files\Softwin\BitDefender10\bdfsdrv.sys
O41 - Driver: BDRsDrv (BDRsDrv) - C:\Program Files\Softwin\BitDefender10\bdrsdrv.sys
O41 - Driver: COH_Mon (COH_Mon) - C:\Windows\system32\Drivers\COH_Mon.sys
O41 - Driver: CO_Mon (CO_Mon) - C:\Windows\system32\drivers\CO_Mon.sys
O41 - Driver: CrystalSysInfo (CrystalSysInfo) - C:\Program Files\MediaCoder\SysInfo.sys
O41 - Driver: Pilote MS IEEE-1284.4 (Dot4) - C:\WINDOWS\system32\DRIVERS\Dot4.sys
O41 - Driver: Pilote de classe Imprimante pour IEEE-1284.4 (Dot4Print) - C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys
O41 - Driver: MS Dot4USB Filter Dot4USB Filter (dot4usb) - C:\WINDOWS\system32\DRIVERS\dot4usb.sys
O41 - Driver: Filtre de décodeur DRM (Noyau Microsoft) (drmkaud) - C:\WINDOWS\system32\drivers\drmkaud.sys
O41 - Driver: Intel(R) PRO/1000 NDIS 6 Adapter Driver (E1G60) - C:\WINDOWS\system32\DRIVERS\E1G60I32.sys
O41 - Driver: Symantec Eraser Control driver (eeCtrl) - C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
O41 - Driver: GEAR ASPI Filter Driver (GEARAspiWDM) - C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys
O41 - Driver: Symantec Intrusion Prevention Driver (IDSvix86) - C:\PROGRA~2\Symantec\DEFINI~1\SymcData\ipsdefs\20081014.001\IDSvix86.sys
O41 - Driver: Service for Realtek HD Audio (WDM) (IntcAzAudAddService) - C:\WINDOWS\system32\drivers\RTKVHDA.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32013 (IpFilterDriver) - C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
O41 - Driver: IP in IP Tunnel Driver (IpInIp) - C:\WINDOWS\system32\DRIVERS\ipinip.sys
O41 - Driver: Link-Layer Topology Discovery Mapper I/O Driver (lltdio) - C:\WINDOWS\system32\DRIVERS\lltdio.sys
O41 - Driver: Service Pilote de fonction de classe Moniteur Microsoft (monitor) - C:\WINDOWS\system32\DRIVERS\monitor.sys
O41 - Driver: Proxy de service de répartition Microsoft (MSKSSRV) - C:\WINDOWS\system32\drivers\MSKSSRV.sys
O41 - Driver: Proxy d'horloge de répartition Microsoft (MSPCLOCK) - C:\WINDOWS\system32\drivers\MSPCLOCK.sys
O41 - Driver: Proxy de gestion de qualité de répartition Microsoft (MSPQM) - C:\WINDOWS\system32\drivers\MSPQM.sys
O41 - Driver: Convertisseur en T/site-à-site de répartition Microsoft (MSTEE) - C:\WINDOWS\system32\drivers\MSTEE.sys
O41 - Driver: Filtre NativeWiFi (NativeWifiP) - C:\WINDOWS\system32\DRIVERS\nwifi.sys
O41 - Driver: NAVENG (NAVENG) - C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20081023.003\NAVENG.SYS
O41 - Driver: NAVEX15 (NAVEX15) - C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20081023.003\NAVEX15.SYS
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32001 (NdisTapi) - C:\WINDOWS\system32\DRIVERS\ndistapi.sys
O41 - Driver: NDIS Usermode I/O Protocol (Ndisuio) - C:\WINDOWS\system32\DRIVERS\ndisuio.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32002 (NdisWan) - C:\WINDOWS\system32\DRIVERS\ndiswan.sys
O41 - Driver: NetBIOS Interface (NetBIOS) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: USB Wireless 802.11 b/g Adaptor Driver for Vista (netr73) - C:\WINDOWS\system32\DRIVERS\netr73.sys
O41 - Driver: NVIDIA nForce Networking Controller Driver (NVENETFD) - C:\WINDOWS\system32\DRIVERS\nvmfdx32.sys
O41 - Driver: IPX Traffic Filter Driver (NwlnkFlt) - C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
O41 - Driver: IPX Traffic Forwarder Driver (NwlnkFwd) - C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32006 (PptpMiniport) - C:\WINDOWS\system32\DRIVERS\raspptp.sys
O41 - Driver: PS2 (Ps2) - C:\WINDOWS\system32\DRIVERS\PS2.sys
O41 - Driver: @%SystemRoot%\System32\drivers\pacer.sys,-101 (PSched) - C:\WINDOWS\system32\DRIVERS\pacer.sys
O41 - Driver: Remote Access Auto Connection Driver (RasAcd) - C:\WINDOWS\System32\DRIVERS\rasacd.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32005 (Rasl2tp) - C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32007 (RasPppoe) - C:\WINDOWS\system32\DRIVERS\raspppoe.sys
O41 - Driver: @%systemroot%\system32\sstpsvc.dll,-202 (RasSstp) - C:\WINDOWS\system32\DRIVERS\rassstp.sys
O41 - Driver: Link-Layer Topology Discovery Responder (rspndr) - C:\WINDOWS\system32\DRIVERS\rspndr.sys
O41 - Driver: @%SystemRoot%\system32\tcpipcfg.dll,-50005 (Smb) - C:\WINDOWS\system32\DRIVERS\smb.sys
O41 - Driver: SPBBCDrv (SPBBCDrv) - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
O41 - Driver: SRTSP (SRTSP) - C:\WINDOWS\System32\Drivers\SRTSP.SYS
O41 - Driver: SRTSPL (SRTSPL) - C:\WINDOWS\System32\Drivers\SRTSPL.SYS
O41 - Driver: SRTSPX (SRTSPX) - C:\WINDOWS\System32\Drivers\SRTSPX.SYS
O41 - Driver: (no object) (SYMDNS) - C:\Windows\System32\Drivers\SYMDNS.SYS
O41 - Driver: (no object) (SymEvent) - C:\Windows\system32\Drivers\SYMEVENT.SYS
O41 - Driver: (no object) (SYMFW) - C:\Windows\System32\Drivers\SYMFW.SYS
O41 - Driver: Symantec Network Security Intermediate Filter Driver (SymIM) - C:\WINDOWS\system32\DRIVERS\SymIMv.sys
O41 - Driver: (no object) (SYMNDISV) - C:\Windows\System32\Drivers\SYMNDISV.SYS
O41 - Driver: (no object) (SYMREDRV) - C:\Windows\System32\Drivers\SYMREDRV.SYS
O41 - Driver: SYMTDI (SYMTDI) - C:\Windows\System32\Drivers\SYMTDI.SYS
O41 - Driver: Microsoft IPv6 Protocol Driver (Tcpip6) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: Pilote de carte miniport Microsoft IPv6 Tunnel (tunnel) - C:\WINDOWS\system32\DRIVERS\tunnel.sys
O41 - Driver: Apple Mobile USB Driver (USBAAPL) - C:\WINDOWS\System32\Drivers\usbaapl.sys
O41 - Driver: Pilote de scanneur USB (usbscan) - C:\WINDOWS\system32\DRIVERS\usbscan.sys
O41 - Driver: (no object) (vga) - C:\WINDOWS\system32\DRIVERS\vgapnp.sys
O41 - Driver: Remote Access IP ARP Driver (Wanarp) - C:\WINDOWS\system32\DRIVERS\wanarp.sys
O41 - Driver: Remote Access IPv6 ARP Driver (Wanarpv6) - C:\WINDOWS\system32\DRIVERS\wanarp.sys
O41 - Driver: WpdUsb (WpdUsb) - C:\WINDOWS\system32\DRIVERS\wpdusb.sys
O41 - Driver: (no object) (WUDFRd) - C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32000 (AsyncMac) - C:\WINDOWS\system32\DRIVERS\asyncmac.sys
O41 - Driver: (no object) (atikmdag) - C:\WINDOWS\system32\DRIVERS\atikmdag.sys
O41 - Driver: bdfdll (bdfdll) - C:\Program Files\Softwin\BitDefender10\bdfdll.sys
O41 - Driver: BDFsDrv (BDFsDrv) - C:\Program Files\Softwin\BitDefender10\bdfsdrv.sys
O41 - Driver: BDRsDrv (BDRsDrv) - C:\Program Files\Softwin\BitDefender10\bdrsdrv.sys
O41 - Driver: COH_Mon (COH_Mon) - C:\Windows\system32\Drivers\COH_Mon.sys
O41 - Driver: CO_Mon (CO_Mon) - C:\Windows\system32\drivers\CO_Mon.sys
O41 - Driver: CrystalSysInfo (CrystalSysInfo) - C:\Program Files\MediaCoder\SysInfo.sys
O41 - Driver: Pilote MS IEEE-1284.4 (Dot4) - C:\WINDOWS\system32\DRIVERS\Dot4.sys
O41 - Driver: Pilote de classe Imprimante pour IEEE-1284.4 (Dot4Print) - C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys
O41 - Driver: MS Dot4USB Filter Dot4USB Filter (dot4usb) - C:\WINDOWS\system32\DRIVERS\dot4usb.sys
O41 - Driver: Filtre de décodeur DRM (Noyau Microsoft) (drmkaud) - C:\WINDOWS\system32\drivers\drmkaud.sys
O41 - Driver: Intel(R) PRO/1000 NDIS 6 Adapter Driver (E1G60) - C:\WINDOWS\system32\DRIVERS\E1G60I32.sys
O41 - Driver: Symantec Eraser Control driver (eeCtrl) - C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
O41 - Driver: GEAR ASPI Filter Driver (GEARAspiWDM) - C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys
O41 - Driver: Symantec Intrusion Prevention Driver (IDSvix86) - C:\PROGRA~2\Symantec\DEFINI~1\SymcData\ipsdefs\20081014.001\IDSvix86.sys
O41 - Driver: Service for Realtek HD Audio (WDM) (IntcAzAudAddService) - C:\WINDOWS\system32\drivers\RTKVHDA.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32013 (IpFilterDriver) - C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
O41 - Driver: IP in IP Tunnel Driver (IpInIp) - C:\WINDOWS\system32\DRIVERS\ipinip.sys
O41 - Driver: Link-Layer Topology Discovery Mapper I/O Driver (lltdio) - C:\WINDOWS\system32\DRIVERS\lltdio.sys
O41 - Driver: Service Pilote de fonction de classe Moniteur Microsoft (monitor) - C:\WINDOWS\system32\DRIVERS\monitor.sys
O41 - Driver: Proxy de service de répartition Microsoft (MSKSSRV) - C:\WINDOWS\system32\drivers\MSKSSRV.sys
O41 - Driver: Proxy d'horloge de répartition Microsoft (MSPCLOCK) - C:\WINDOWS\system32\drivers\MSPCLOCK.sys
O41 - Driver: Proxy de gestion de qualité de répartition Microsoft (MSPQM) - C:\WINDOWS\system32\drivers\MSPQM.sys
O41 - Driver: Convertisseur en T/site-à-site de répartition Microsoft (MSTEE) - C:\WINDOWS\system32\drivers\MSTEE.sys
O41 - Driver: Filtre NativeWiFi (NativeWifiP) - C:\WINDOWS\system32\DRIVERS\nwifi.sys
O41 - Driver: NAVENG (NAVENG) - C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20081023.003\NAVENG.SYS
O41 - Driver: NAVEX15 (NAVEX15) - C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20081023.003\NAVEX15.SYS
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32001 (NdisTapi) - C:\WINDOWS\system32\DRIVERS\ndistapi.sys
O41 - Driver: NDIS Usermode I/O Protocol (Ndisuio) - C:\WINDOWS\system32\DRIVERS\ndisuio.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32002 (NdisWan) - C:\WINDOWS\system32\DRIVERS\ndiswan.sys
O41 - Driver: NetBIOS Interface (NetBIOS) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: USB Wireless 802.11 b/g Adaptor Driver for Vista (netr73) - C:\WINDOWS\system32\DRIVERS\netr73.sys
O41 - Driver: NVIDIA nForce Networking Controller Driver (NVENETFD) - C:\WINDOWS\system32\DRIVERS\nvmfdx32.sys
O41 - Driver: IPX Traffic Filter Driver (NwlnkFlt) - C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
O41 - Driver: IPX Traffic Forwarder Driver (NwlnkFwd) - C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32006 (PptpMiniport) - C:\WINDOWS\system32\DRIVERS\raspptp.sys
O41 - Driver: PS2 (Ps2) - C:\WINDOWS\system32\DRIVERS\PS2.sys
O41 - Driver: @%SystemRoot%\System32\drivers\pacer.sys,-101 (PSched) - C:\WINDOWS\system32\DRIVERS\pacer.sys
O41 - Driver: Remote Access Auto Connection Driver (RasAcd) - C:\WINDOWS\System32\DRIVERS\rasacd.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32005 (Rasl2tp) - C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32007 (RasPppoe) - C:\WINDOWS\system32\DRIVERS\raspppoe.sys
O41 - Driver: @%systemroot%\system32\sstpsvc.dll,-202 (RasSstp) - C:\WINDOWS\system32\DRIVERS\rassstp.sys
O41 - Driver: Link-Layer Topology Discovery Responder (rspndr) - C:\WINDOWS\system32\DRIVERS\rspndr.sys
O41 - Driver: @%SystemRoot%\system32\tcpipcfg.dll,-50005 (Smb) - C:\WINDOWS\system32\DRIVERS\smb.sys
O41 - Driver: SPBBCDrv (SPBBCDrv) - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
O41 - Driver: SRTSP (SRTSP) - C:\WINDOWS\System32\Drivers\SRTSP.SYS
O41 - Driver: SRTSPL (SRTSPL) - C:\WINDOWS\System32\Drivers\SRTSPL.SYS
O41 - Driver: SRTSPX (SRTSPX) - C:\WINDOWS\System32\Drivers\SRTSPX.SYS
O41 - Driver: (no object) (SYMDNS) - C:\Windows\System32\Drivers\SYMDNS.SYS
O41 - Driver: (no object) (SymEvent) - C:\Windows\system32\Drivers\SYMEVENT.SYS
O41 - Driver: (no object) (SYMFW) - C:\Windows\System32\Drivers\SYMFW.SYS
O41 - Driver: Symantec Network Security Intermediate Filter Driver (SymIM) - C:\WINDOWS\system32\DRIVERS\SymIMv.sys
O41 - Driver: (no object) (SYMNDISV) - C:\Windows\System32\Drivers\SYMNDISV.SYS
O41 - Driver: (no object) (SYMREDRV) - C:\Windows\System32\Drivers\SYMREDRV.SYS
O41 - Driver: SYMTDI (SYMTDI) - C:\Windows\System32\Drivers\SYMTDI.SYS
O41 - Driver: Microsoft IPv6 Protocol Driver (Tcpip6) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: Pilote de carte miniport Microsoft IPv6 Tunnel (tunnel) - C:\WINDOWS\system32\DRIVERS\tunnel.sys
O41 - Driver: Apple Mobile USB Driver (USBAAPL) - C:\WINDOWS\System32\Drivers\usbaapl.sys
O41 - Driver: Pilote de scanneur USB (usbscan) - C:\WINDOWS\system32\DRIVERS\usbscan.sys
O41 - Driver: (no object) (vga) - C:\WINDOWS\system32\DRIVERS\vgapnp.sys
O41 - Driver: Remote Access IP ARP Driver (Wanarp) - C:\WINDOWS\system32\DRIVERS\wanarp.sys
O41 - Driver: Remote Access IPv6 ARP Driver (Wanarpv6) - C:\WINDOWS\system32\DRIVERS\wanarp.sys
O41 - Driver: WpdUsb (WpdUsb) - C:\WINDOWS\system32\DRIVERS\wpdusb.sys
O41 - Driver: (no object) (WUDFRd) - C:\WINDOWS\system32\DRIVERS\WUDFRd.sys

---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player ActiveX
O42 - Logiciel: AOL Toolbar 5.0
O42 - Logiciel: Blender (remove only)
O42 - Logiciel: Counter-Strike Source LAN Edition
O42 - Logiciel: Dev-C++ 5 beta 9 release (4.9.9.2)
O42 - Logiciel: Magic Desktop
O42 - Logiciel: Favorit
O42 - Logiciel: Free Download Manager 2.5
O42 - Logiciel: HijackThis 2.0.2
O42 - Logiciel: HP Imaging Device Functions 9.0
O42 - Logiciel: HP Photosmart Essential 2.01
O42 - Logiciel: HP Solution Center 9.0
O42 - Logiciel: HP Customer Participation Program 9.0
O42 - Logiciel: CyberLink PowerDirector
O42 - Logiciel: Solution de clavier multimédia amélioré
O42 - Logiciel: LimeWire 4.18.6
O42 - Logiciel: Microsoft .NET Framework 1.1 Hotfix (KB929729)
O42 - Logiciel: Malwarebytes' Anti-Malware
O42 - Logiciel: MediaCoder 0.6.2
O42 - Logiciel: Microsoft .NET Framework 1.1
O42 - Logiciel: Navilog1 3.6.9
O42 - Logiciel: NVIDIA Drivers
O42 - Logiciel: Version de démonstration de Microsoft Office Home and Student 2007
O42 - Logiciel: Outils de diagnostic du matériel
O42 - Logiciel: PDF Writer Pro v2.0
O42 - Logiciel: Pochette Express 2
O42 - Logiciel: PokerStars
O42 - Logiciel: LiveUpdate (Symantec Corporation)
O42 - Logiciel: PunkBuster Services
O42 - Logiciel: SAMSUNG CDMA Modem Driver Set
O42 - Logiciel: SAMSUNG Mobile USB Modem Software
O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software
O42 - Logiciel: Macromedia Flash Player 8
O42 - Logiciel: Software Informer 1.0 BETA
O42 - Logiciel: Norton Internet Security (Symantec Corporation)
O42 - Logiciel: TeamViewer 3
O42 - Logiciel: Virtual DJ - Atomix Productions
O42 - Logiciel: VideoLAN VLC media player 0.8.6i
O42 - Logiciel: My HP Games
O42 - Logiciel: Windows Live Bêta (tous les programmes)
O42 - Logiciel: Archiveur WinRAR
O42 - Logiciel: XviD MPEG-4 Video Codec
O42 - Logiciel: Crysis(R)
O42 - Logiciel: LightScribe System Software 1.12.37.1
O42 - Logiciel: Python 2.5
O42 - Logiciel: HP Update
O42 - Logiciel: Google Toolbar for Internet Explorer
O42 - Logiciel: CyberLink DVD Suite Deluxe
O42 - Logiciel: MSVCRT
O42 - Logiciel: Hewlett-Packard Active Check for Health Check
O42 - Logiciel: Catalyst Control Center - Branding
O42 - Logiciel: Component Framework
O42 - Logiciel: iTunes
O42 - Logiciel: Java(TM) SE Runtime Environment 6 Update 1
O42 - Logiciel: Norton Internet Security
O42 - Logiciel: Microsoft Works
O42 - Logiciel: Power2Go
O42 - Logiciel: HP Smart Web Printing
O42 - Logiciel: HPSSupply
O42 - Logiciel: HP Picasso Media Center Add-In
O42 - Logiciel: Norton Confidential Core
O42 - Logiciel: Safari
O42 - Logiciel: Norton Protection Center
O42 - Logiciel: Hewlett-Packard Asset Agent for Health Check
O42 - Logiciel: Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
O42 - Logiciel: Apple Software Update
O42 - Logiciel: Panneau de configuration MobileMe
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable
O42 - Logiciel: SPBBC 32bit
O42 - Logiciel: Norton AntiVirus
O42 - Logiciel: MSXML 4.0 SP2 (KB954430)
O42 - Logiciel: Windows Live Call
O42 - Logiciel: Assistant de connexion Windows Live
O42 - Logiciel: Bonjour
O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French)
O42 - Logiciel: HP Customer Feedback
O42 - Logiciel: Adobe Reader 8.1.2 - Français
O42 - Logiciel: Adobe Reader 8.1.2 Security Update 1 (KB403742)
O42 - Logiciel: ccCommon
O42 - Logiciel: MSXML 4.0 SP2 (KB936181)
O42 - Logiciel: HP Customer Experience Enhancements
O42 - Logiciel: OD2 Music Manager
O42 - Logiciel: MSXML 4.0 SP2 (KB941833)
O42 - Logiciel: LabelPrint
O42 - Logiciel: Contacts
O42 - Logiciel: BitDefender Free Edition v10
O42 - Logiciel: Search Settings 1.2
O42 - Logiciel: Symantec Real Time Storage Protection Component
O42 - Logiciel: HP Active Support Library
O42 - Logiciel: HP Easy Setup - Frontend
O42 - Logiciel: Norton AntiVirus Help
O42 - Logiciel: Samsung PC Studio 3 USB Driver Installer
O42 - Logiciel: Choice Guard
O42 - Logiciel: Apple Mobile Device Support
O42 - Logiciel: AppCore
O42 - Logiciel: Realtek High Definition Audio Driver
O42 - Logiciel: 32 Bit HP CIO Components Installer
O42 - Logiciel: HP Total Care Advisor
O42 - Logiciel: Windows Live Messenger
O42 - Logiciel: QuickTime
O42 - Logiciel: HP Deskjet All-In-One Software 9.0
O42 - Logiciel: muvee autoProducer 6.1

---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory - C:\Program Files\Common Files\Adobe
O43 - CFD:Common File Directory - C:\Program Files\Common Files\Apple
O43 - CFD:Common File Directory - C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD:Common File Directory - C:\Program Files\Common Files\HP
O43 - CFD:Common File Directory - C:\Program Files\Common Files\InstallShield
O43 - CFD:Common File Directory - C:\Program Files\Common Files\Java
O43 - CFD:Common File Directory - C:\Program Files\Common Files\LightScribe
O43 - CFD:Common File Directory - C:\Program Files\Common Files\LS Getting Started
O43 - CFD:Common File Directory - C:\Program Files\Common Files\microsoft shared
O43 - CFD:Common File Directory - C:\Program Files\Common Files\muvee Technologies
O43 - CFD:Common File Directory - C:\Program Files\Common Files\Services
O43 - CFD:Common File Directory - C:\Program Files\Common Files\Softwin
O43 - CFD:Common File Directory - C:\Program Files\Common Files\SpeechEngines
O43 - CFD:Common File Directory - C:\Program Files\Common Files\Symantec Shared
O43 - CFD:Common File Directory - C:\Program Files\Common Files\System
O43 - CFD:Common File Directory - C:\Program Files\Common Files\Windows Live
O43 - CFD:Common File Directory - C:\Program Files\Common Files\WindowsLiveInstaller

---\\ Derniers fichiers modifiés ou crées sous System32 (O44)
O44 - LFC:Last File Created - C:\Windows\System32\Apphlpdm.dll -->01/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\bdod.bin -->14/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\bdss.log -->14/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\connect.dll -->21/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\Faultrep.dll -->18/09/2008
O44 - LFC:Last File Created - C:\Windows\System32\FNTCACHE.DAT -->04/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\GameUXLegacyGDFs.dll -->01/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\gdi32.dll -->21/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\ieframe.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\iertutil.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\jsproxy.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\mrt.exe -->10/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\mshtml.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\mshtml.tlb -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\mstime.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\msxml4.dll -->30/09/2008
O44 - LFC:Last File Created - C:\Windows\System32\netapi32.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\ntkrnlpa.exe -->18/09/2008
O44 - LFC:Last File Created - C:\Windows\System32\ntoskrnl.exe -->18/09/2008
O44 - LFC:Last File Created - C:\Windows\System32\pbsvc.exe -->10/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\perfc009.dat -->14/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\perfc00C.dat -->14/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\perfh009.dat -->14/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\perfh00C.dat -->14/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\PerfStringBackup.INI -->14/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\PnkBstrA.exe -->10/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\PnkBstrB.exe -->10/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\PortableDeviceApi.dll -->22/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\QuickTime.qts -->04/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\QuickTimeVR.qtx -->04/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\RECV.log -->11/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\SENT.log -->11/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\shell32.dll -->06/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\TEST.log -->11/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\tzres.dll -->22/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\urlmon.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\wersvc.dll -->18/09/2008
O44 - LFC:Last File Created - C:\Windows\System32\win32k.sys -->18/09/2008
O44 - LFC:Last File Created - C:\Windows\System32\wininet.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\wuapi.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\wuapp.exe -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\wuauclt.exe -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\wuaueng.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\wucltux.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\wudriver.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\wups.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\wups2.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\wuwebv.dll -->16/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\drivers\mbam.sys -->22/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\drivers\mbamswissarmy.sys -->22/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf -->31/10/2008
O44 - LFC:Last File Created - C:\Windows\System32\drivers\PnkBstrK.sys -->10/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\drivers\SYMEVENT.CAT -->15/09/2008
O44 - LFC:Last File Created - C:\Windows\System32\drivers\SYMEVENT.INF -->15/09/2008
O44 - LFC:Last File Created - C:\Windows\System32\drivers\SYMEVENT.SYS -->15/09/2008

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC1.db -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC1.db.trx -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC3_83BF14F5.db -->02/11/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlFaultHistory.db -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlFgAppHistory.db -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlGlobalHistory.db -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1543288551-3606870827-1665585216-1000.db -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1543288551-3606870827-1665585216-1001.db -->02/11/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1543288551-3606870827-1665585216-1004.db -->09/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1543288551-3606870827-1665585216-1000.db -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1543288551-3606870827-1665585216-1001.db -->02/11/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1543288551-3606870827-1665585216-1004.db -->09/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgRobust.db -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ALUSCHEDULERSVC.EXE-816032A9.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ATBROKER.EXE-FF58B71D.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AUPDATE.EXE-3298D65C.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CRYSIS.EXE-0FE22F01.pf -->12/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CRYSIS.EXE-217E0311.pf -->12/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CSRSSC.EXE-376290AF.pf -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-167FD34A.pf -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-71214090.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-893DDF55.pf -->04/01/2097
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-91B07125.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DWM.EXE-AEABE78B.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\EHMSAS.EXE-6BE9D904.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\EXPLORER.EXE-7A3328DA.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\EZRECOVER.EXE-D0A96D68.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\EZSHELLSTART.EXE-159C1034.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GOOGLETOOLBARNOTIFIER.EXE-B3E65CF6.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-600E0B48.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\HPHC_SERVICE.EXE-B8B935C8.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\HPQDIREC.EXE-0842EF10.pf -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\HPQSTE08.EXE-2C76ABC1.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\HPRBLOG.EXE-BCFB7141.pf -->04/01/2097
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IEUSER.EXE-D895AB54.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IEXPLORE.EXE-1B894AFB.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IPODSERVICE.EXE-FE1A6FF7.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ITUNES.EXE-049DB451.pf -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\Layout.ini -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LIMEWIRE.EXE-7CCD1B8D.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LOGON.SCR-7C80CA1C.pf -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LOGONUI.EXE-1BEE4A84.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LUCALLBACKPROXY.EXE-9EFD4A00.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LUCOMSERVER_3_4.EXE-27978C1C.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MOBSYNC.EXE-D8BC6ED2.pf -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MPAS-D.EXE-C74E749D.pf -->12/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MPCMDRUN.EXE-BB72ED6F.pf -->12/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MPSIGSTUB.EXE-53128367.pf -->12/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MRT.EXE-C3C3D3DA.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MRTSTUB.EXE-3E827644.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MSFEEDSSYNC.EXE-1F01ED17.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PfSvPerfStats.bin -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PIFCRAWL.EXE-C3A9AB54.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-38F0B502.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-41E85287.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-7768279B.pf -->12/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-AA7A1FDD.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-AFAD3EF9.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SMSS.EXE-1DCD0EB1.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SNDVOL.EXE-783DCB11.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SSAUTORN.EXE-90C5868F.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-8FD92526.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-F0782E95.pf -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SYMLCSV1.EXE-F2B46FF9.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SYMLCSVC.EXE-256DB2EE.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TASKENG.EXE-5BAF290C.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-031B6478.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\USERINIT.EXE-F39AB672.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\VERCLSID.EXE-4D95F5A7.pf -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\VIRTUALDJ.EXE-8A9014C3.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\VLC.EXE-CE8E9BE1.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\VSSVC.EXE-04D079CC.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERFAULT.EXE-B7E27BE5.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERMGR.EXE-2A1BCBC7.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WINDOWS-KB890830-V2.5-DELTA.E-11C1FF53.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WINMAIL.EXE-D6E90604.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WINRAR.EXE-6F42D4E7.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WLCOMM.EXE-648065CA.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMIADAP.EXE-369DF1CD.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMIPRVSE.EXE-43972D0F.pf -->04/01/2097
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMPLAYER.EXE-9DE758AE.pf -->11/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMPNETWK.EXE-BD0344CA.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WSCSTUB.EXE-BA0F479D.pf -->14/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WSQMCONS.EXE-E2CE6542.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WUAUCLT.EXE-830BCC14.pf -->13/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ZHPDIAG.EXE-BE39B043.pf -->14/12/2008

---\\ ShellExecuteHooks, Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\system32\EZUPBH~1.DLL

---\\ Déni du service Local Security Authority (LSA) (O48)
O48 - LSA:Local Security Authority Authentication Packages - C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages - C:\Windows\System32\scecli.dll

---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\volmgrx.sys

End of the scan:

Réponse 22 / 24

Utilisateur anonyme
14 déc. 2008 à 15:52

Telecharge maintenant FindyKill sur ton bureau :

http://sd-1.archive-host.com/membres/up/116615172019703188/FindyKill.exe

--> Lance l installation avec les parametres par default

--> Fais un clic droit sur le raccourci FindyKill sur ton bureau

--> Choisi executer en tant qu administrateur

--> Au menu principal,choisi l option 1 (Recherche)

--> Post le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé a la racine du disque

Zestikmou Messages postés 82 Date d'inscription mardi 2 septembre 2008 Statut Membre Dernière intervention 7 mars 2010 13
14 déc. 2008 à 19:42

rapport findykill

Réponse 23 / 24

Utilisateur anonyme
15 déc. 2008 à 00:41

Réponse 24 / 24

Zestikmou Messages postés 82 Date d'inscription mardi 2 septembre 2008 Statut Membre Dernière intervention 7 mars 2010 13
17 déc. 2008 à 13:05

----------------- FindyKill V4.709 ------------------

* User : Damien - PC-DE-NNL
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 10/12/08 par Chiquitine29
* Recherche effectuée à 22:06:44 le 16/12/2008

((((((((((((((((( *** Recherche *** ))))))))))))))))))

--------------- [ Processus actifs ] ----------------

C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\PnkBstrA.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Program Files\TeamViewer3\TeamViewer_Service.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\TeamViewer3\TeamViewer.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Software Informer\softinfo.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\Damien\AppData\Local\wgcyw.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conime.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Windows\System32\svchost.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Users\Damien\AppData\Local\Temp\csrssc.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe

--------------- [ Fichiers/Dossiers infectieux ] ----------------

»»»» Presence des fichiers dans C:

»»»» Presence des fichiers dans C:\Windows

»»»» Presence des fichiers dans C:\Windows\Prefetch

»»»» Presence des fichiers dans C:\Windows\system32

Found ! [20/09/2007 Ze Stikmou 02:14] - C:\Windows\system32\AutoRun.inf

»»»» Presence des fichiers dans C:\Windows\system32\config\systemprofile\AppData\Roaming

»»»» Presence des fichiers dans C:\Windows\system32\drivers

»»»» Presence des fichiers dans C:\Users\Damien\AppData\Roaming

»»»» Presence des fichiers dans C:\Users\Damien\AppData\Local\Temp

»»»» Presence des fichiers dans C:\Users\Damien\Local Settings\Temporary Internet Files\Content.IE5

Found ! [02/05/2008 Ze Stikmou 01:00] - C:\Users\Damien\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S7TA2LAB\WMP3ed7b645-1025-49a0-9aa6-f43d62ef9d5a[1]..jpg

--------------- [ Registre / Startup ] ----------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
Sidebar=C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
WindowsWelcomeCenter=rundll32.exe oobefldr.dll,ShowWelcomeCenter
MsnMsgr="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
ehTray.exe=C:\Windows\ehome\ehTray.exe
swg=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Free Download Manager="C:\Program Files\Free Download Manager\fdm.exe" -autorun
Software Informer="C:\Program Files\Software Informer\softinfo.exe" -autorun
fsm=
xsjfn83jkemfofght=C:\Users\Damien\AppData\Local\Temp\winlogin.exe
Jnskdfmf9eldfd=C:\Users\Damien\AppData\Local\Temp\csrssc.exe
WMPNSCFG=C:\Program Files\Windows Media Player\WMPNSCFG.exe
wgcyw="c:\users\damien\appdata\local\wgcyw.exe" wgcyw

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
AppleSyncNotifier=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
BDMCon="C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
BDAgent="C:\Program Files\Softwin\BitDefender10\bdagent.exe"
rs32net=C:\WINDOWS\System32\rs32net.exe
QuickTime Task="C:\Program Files\QuickTime\QTTask.exe" -atboottime
iTunesHelper="C:\Program Files\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\software\local appwizard-generated applications\DestComp]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\hprbui]

--------------- [ Registre / Clés infectieuses ] ----------------

--------------- [ Etat / Services ] ----------------

Clé manquante : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden

- des fichiers cachés non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network

- sans echec non fonctionnel !!

+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

Ndisuio - Type de démarrage = 3

EapHost - Type de démarrage = 3

Wlansvc - Type de démarrage = 2

/!\ SharedAccess - Type de démarrage = 4

wuauserv - Type de démarrage = 2

wscsvc - Type de démarrage = 2

WinDefend - Type de démarrage = 2

--------------- [ Recherche dans supports amovibles] ----------------

+- Informations :

C: - Lecteur fixe
D: - Lecteur fixe
E: - Lecteur de CD-ROM

+- presence des fichiers :

--------------- [ Registre / Mountpoint2 ] ----------------

-> Not found !

------------------- ! Fin du rapport ! --------------------

Discussions similaires

Est ce que le site tlauncher est dangereux ?

Softonic,est-ce un virus ?

4 virus en raison d’un porno ????

problême Opéra est ce un virus??

Virus MSN Tinyurl