7alex Posté(e) le 7 août 2009 Partager Posté(e) le 7 août 2009 Bonjour, mon cousin dans un fichier rar a chopé un virus que je n'arrive pas à enlever. Ce fichier a bloqué avast, et malgré une réinstallation on ne peut plus le lancer (il dit que avast.exe n'est pas une application win32 valide). J'ai fait sur bidefender un scan en ligne qui a supprimé quelques fichiers mais cela n' a pa s suffit. Après recherche sur le net, j'ai voulu installer hijack mais ca me fait pareil (n'est pas une application win32 valide). J'ai donc utiliser un autre soft (combo fix dont voici le rapprt ci dessous.. si un expert pouvait m'aider, svp :) rapport : ComboFix 09-08-06.01 - Administrateur 07/08/2009 19:04.1.2 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.2047.1713 [GMT 2:00] Running from: c:\documents and settings\Administrateur\Bureau\Combo-Fix.exe WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\Administrateur\Application Data\drivers\111wfs1intwq.sys c:\documents and settings\Administrateur\Application Data\Drivers\11s11ro1s1a2.sys c:\documents and settings\Administrateur\Application Data\drivers\downld c:\documents and settings\Administrateur\Application Data\drivers\downld\100000.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\101125.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\103500.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\105515.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\109203.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\112656.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\113562.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\114171.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\120718.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\131765.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\134343.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\135171.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\137750.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\140140.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\140984.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\141640.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\143484.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\143812.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\144093.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\144765.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\145765.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\146421.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\146578.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\147218.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\14899765.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\14934265.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\14948453.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\14963593.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\14995671.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\14997843.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\14998765.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15014781.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15015640.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15016437.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15016812.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15019359.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15035218.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15090671.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15091078.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15100968.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15102093.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15102609.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15110750.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15110765.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15115437.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15115484.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15116281.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15116640.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15119453.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15120812.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15121593.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15126468.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15128265.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15129125.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15145078.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15146265.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15146281.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15150500.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15151265.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15151640.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15152234.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15169218.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15185265.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15234343.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15234359.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15290062.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15290265.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15290390.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15291546.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15291562.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15320937.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15321109.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15321171.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15321500.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\15321515.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\156218.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\157562.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\159375.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\159406.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\159562.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\160328.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\160906.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\161703.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\162218.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\163781.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\164890.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\165109.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\166140.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\166218.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\167109.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\167484.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\168937.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\169671.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\171421.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\173625.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\173640.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\174187.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\174453.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\175484.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\180703.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\181281.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\182125.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\183109.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\184843.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\187125.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\191859.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\193968.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\194921.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\203609.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\211656.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\214953.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\232375.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\232796.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\236671.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\237015.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\238812.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\239656.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\240328.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\241046.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\241312.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\241687.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\241718.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\242796.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\244546.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\244671.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\245000.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\245312.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\245937.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\246171.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\246781.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\247234.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\248000.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\252578.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\253578.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\253812.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\254640.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\255171.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\255234.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\256359.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\256906.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\262656.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\263296.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\263468.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\264468.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\264640.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\264890.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\265671.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\266187.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\267015.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\268156.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\268218.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\268671.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\269578.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\270515.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\270750.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\271375.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\272140.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\272546.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\272937.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\273015.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\273203.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\273218.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\273265.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\273281.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\273781.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\274031.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\274046.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\274078.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\275375.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\279203.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\280390.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\280593.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\280828.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\281484.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\281546.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\281578.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\283625.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\284750.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\284906.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\285640.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\285968.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\286937.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\287015.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\287328.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\287421.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\288046.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\288218.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\289343.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\289578.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\289968.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\290187.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\291359.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\291781.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\292296.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\292406.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\293625.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\293765.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\295062.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\295937.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\296015.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\296843.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\303062.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\303859.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\307437.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\309078.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\309703.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\310343.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\310734.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\311390.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\312312.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\312390.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\312765.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\313609.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\314218.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\314562.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\316593.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\320359.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\322437.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\326296.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\326984.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\327718.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\328109.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\328265.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\329515.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\337781.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\338921.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\339484.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\340187.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\341265.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\341656.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\343546.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\349093.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\350078.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\350437.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\352500.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\356187.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\356609.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\356625.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\356875.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\357125.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\360796.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\365781.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\366687.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\366843.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\366859.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\385171.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\385328.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\387656.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\387812.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\403531.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\404062.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\404078.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\425203.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\428390.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\434984.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\435140.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\453500.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\454031.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\454093.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\454390.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\455609.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\455625.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\469703.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\472875.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\473296.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\473343.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\473625.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\474468.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\474484.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\477937.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\481984.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\482484.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\482531.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\482562.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\482781.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\482796.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\482859.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\483781.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\483828.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\486812.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\490359.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\490421.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\491234.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\492296.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\525703.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\527187.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\529890.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\530375.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\530484.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\530765.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\532046.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\534296.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\534671.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\534734.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\535046.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\535984.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\58515.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\585500.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\586000.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\586062.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\586343.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\589859.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\589875.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\59203.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\59375.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\62453.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\62703.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\63109.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\657546.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\658093.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\66921.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\67015.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\73406.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\74265.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\77468.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\77734.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\781046.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\784171.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\784468.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\784515.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\784796.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\788609.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\79531.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\80703.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\81328.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\87343.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\88234.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\89234.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\92093.exe c:\documents and settings\Administrateur\Application Data\drivers\downld\93031.exe c:\documents and settings\Administrateur\Application Data\drivers\winupgro.exe c:\documents and settings\Administrateur\Application Data\m c:\documents and settings\Administrateur\Application Data\m\data.oct c:\documents and settings\Administrateur\Application Data\m\flec006.exe c:\documents and settings\Administrateur\Application Data\m\list.oct c:\documents and settings\Administrateur\Application Data\m\shared\1D Stock Cutter Free 2.82.zip c:\documents and settings\Administrateur\Application Data\m\shared\3D Angels in Heaven Screensaver 1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\3D_Dancing_Uncle_Sam_1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\3D_Rain_Forest_Adventure_3.0_Key+Serial.zip c:\documents and settings\Administrateur\Application Data\m\shared\A-one DVD Copy Ripper Creator Package 5.93.zip c:\documents and settings\Administrateur\Application Data\m\shared\ABF_Slide_Show_Screen_Saver_1.6.3.45.zip c:\documents and settings\Administrateur\Application Data\m\shared\AcadCalcStair 02.zip c:\documents and settings\Administrateur\Application Data\m\shared\Access Password Recovery 2.5.zip c:\documents and settings\Administrateur\Application Data\m\shared\AddChapter_1.2.0.2.zip c:\documents and settings\Administrateur\Application Data\m\shared\Advanced_Access_Password_Recovery_2.5.zip c:\documents and settings\Administrateur\Application Data\m\shared\Agenda 1.3.zip c:\documents and settings\Administrateur\Application Data\m\shared\Amaze_Screen_Saver_1.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\Amazing Seattle Fractals 2000 -.zip c:\documents and settings\Administrateur\Application Data\m\shared\Any_Medias_to_MP3_Converter_2.2_(Crack).zip c:\documents and settings\Administrateur\Application Data\m\shared\AnyPlayer_1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Arabic_Cuisine_Ebook_1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Audioblast_1.6.3.zip c:\documents and settings\Administrateur\Application Data\m\shared\Autorun Spreading Breaker 1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\AutoSlideshow 0.3.4.zip c:\documents and settings\Administrateur\Application Data\m\shared\AVS Capture Wizard 1.5.1.64.zip c:\documents and settings\Administrateur\Application Data\m\shared\BBC_News_Readers_1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Best MP3 WAV Converter 1.00.zip c:\documents and settings\Administrateur\Application Data\m\shared\CleanTaskbar_2.13.zip c:\documents and settings\Administrateur\Application Data\m\shared\Cool VOB To WMV Converter 1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\CoolP 6.0 Patch.zip c:\documents and settings\Administrateur\Application Data\m\shared\CpuiDMax2_Build_108.zip c:\documents and settings\Administrateur\Application Data\m\shared\Data Export - Access2Oracle 1.1.018.zip c:\documents and settings\Administrateur\Application Data\m\shared\Data_Scripter_1.0_Cracked.zip c:\documents and settings\Administrateur\Application Data\m\shared\DBi-Desktop 1.1.0.41.zip c:\documents and settings\Administrateur\Application Data\m\shared\DDD_Pool_1.2.zip c:\documents and settings\Administrateur\Application Data\m\shared\Desktop Lock Express 1.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\Desktop_Bible_Cards_1.2.zip c:\documents and settings\Administrateur\Application Data\m\shared\Diff_Commander_2.0_Build_0209_(KeyGen).zip c:\documents and settings\Administrateur\Application Data\m\shared\DRKSpider 2.24 build 148.zip c:\documents and settings\Administrateur\Application Data\m\shared\Dupe-Finder_2006_6.0.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\Easy MP3 to CD Converter 4.0.0 Crack.zip c:\documents and settings\Administrateur\Application Data\m\shared\Easy_Search_Replace_1.0.2.zip c:\documents and settings\Administrateur\Application Data\m\shared\Elwoh_SmartBackup_Agent_1.0.3090_BETA_(Serial).zip c:\documents and settings\Administrateur\Application Data\m\shared\ESBUnitConv_Pro_6.1.0_[KeyGen].zip c:\documents and settings\Administrateur\Application Data\m\shared\EtherScout_1.10_[Patch].zip c:\documents and settings\Administrateur\Application Data\m\shared\eXPander_1.5.zip c:\documents and settings\Administrateur\Application Data\m\shared\File Split Fairy 1.5.zip c:\documents and settings\Administrateur\Application Data\m\shared\FlyingSpace PCE 2.0 Std.zip c:\documents and settings\Administrateur\Application Data\m\shared\Form Filler Pilot 2.12 Patch.zip c:\documents and settings\Administrateur\Application Data\m\shared\Fruit Machine 1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Happy_XP-3000_Drop-down_Menu_1.30_(Serial).zip c:\documents and settings\Administrateur\Application Data\m\shared\HiVis Large 3.3.zip c:\documents and settings\Administrateur\Application Data\m\shared\IconDeveloper_1.2.zip c:\documents and settings\Administrateur\Application Data\m\shared\IconPackager 4.00.zip c:\documents and settings\Administrateur\Application Data\m\shared\JukeItUp 1.61.zip c:\documents and settings\Administrateur\Application Data\m\shared\KidSurf Child Safe Web Browser 2.02.zip c:\documents and settings\Administrateur\Application Data\m\shared\Lalim_Dial-up_Password_Recovery_1.0.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\LightWave_3D_Patch_(OS_X)_7.0b.zip c:\documents and settings\Administrateur\Application Data\m\shared\LingvoSoft_Learning_PhraseBook_2007_German_-_French_2.2.76.zip c:\documents and settings\Administrateur\Application Data\m\shared\LingvoSoft_Talking_Dictionary_2007_English_-_Japanese_Kanji_Kana_4.0.22_Serial.zip c:\documents and settings\Administrateur\Application Data\m\shared\LS Screen Capture 1.0.2193 [KeyGen].zip c:\documents and settings\Administrateur\Application Data\m\shared\Magicbit_DVD_to_DivX_Converter_6.0.32_Build_719.zip c:\documents and settings\Administrateur\Application Data\m\shared\MailBee Objects 5.2.zip c:\documents and settings\Administrateur\Application Data\m\shared\MCE_RSS_Reader_1.0.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\Mech Warrior 4 Vengeance - Bear Trap map.zip c:\documents and settings\Administrateur\Application Data\m\shared\MELMS Pro 1.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\Memory Management System 13.4.zip c:\documents and settings\Administrateur\Application Data\m\shared\MoreClicks_1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\MOS-E2K_-_Microsoft_Excel_2000_CORE_1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\MovieJack 3.5.zip c:\documents and settings\Administrateur\Application Data\m\shared\Moyea FLV Converter 1.13.29 [KeyGen].zip c:\documents and settings\Administrateur\Application Data\m\shared\MS SQL Server Upload or Download Binary Data Software 7.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Multi Packer 2.05.zip c:\documents and settings\Administrateur\Application Data\m\shared\My Broadcast Station toolbar for Firefox 1.5.0.6.zip c:\documents and settings\Administrateur\Application Data\m\shared\My Download Secretary 1.0.5.zip c:\documents and settings\Administrateur\Application Data\m\shared\MySongBook_Search_1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Network_Magic_4.2.7179.0-Pure0_With_Crack.zip c:\documents and settings\Administrateur\Application Data\m\shared\Neverwinter_Nights_Community_Expansion_Pack_(exe)_1.5.zip c:\documents and settings\Administrateur\Application Data\m\shared\NsvRecorder_1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\OBC 0.2.zip c:\documents and settings\Administrateur\Application Data\m\shared\Optimal_Desktop_Standard_5.0_r222_KeyGen.zip c:\documents and settings\Administrateur\Application Data\m\shared\Panda.Antivirus.Titanium.2007.---.Crack.Username.Y.Password.zip c:\documents and settings\Administrateur\Application Data\m\shared\PanelSet_for_ASP.NET_1.1.92_(Serial).zip c:\documents and settings\Administrateur\Application Data\m\shared\PC Security Explorer 2.zip c:\documents and settings\Administrateur\Application Data\m\shared\PGuard_1.2.zip c:\documents and settings\Administrateur\Application Data\m\shared\Picture Man 5.0.2.zip c:\documents and settings\Administrateur\Application Data\m\shared\Pixel_Patchwork_1.2.zip c:\documents and settings\Administrateur\Application Data\m\shared\Popup Window Toolbox 1.0.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Presto_Transfer_Thunderbird_1.7_(Patch).zip c:\documents and settings\Administrateur\Application Data\m\shared\QDQ Search 1.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\Quick-Type_1_[With_Crack].zip c:\documents and settings\Administrateur\Application Data\m\shared\QuickBuild 1.2.3.zip c:\documents and settings\Administrateur\Application Data\m\shared\Radix 3.51.zip c:\documents and settings\Administrateur\Application Data\m\shared\RealGuitar 2.2.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\RegCool 3.1.0.7.zip c:\documents and settings\Administrateur\Application Data\m\shared\ReGet Pro 3.4.265.zip c:\documents and settings\Administrateur\Application Data\m\shared\rssPlayPen 1.0.30.20061220.zip c:\documents and settings\Administrateur\Application Data\m\shared\SC-PassUnleash 1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\SCMPX_1.5.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\ScreenSaver Druid 1.0 Build 10030123.zip c:\documents and settings\Administrateur\Application Data\m\shared\SDcorrect 1.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\Sermon_Library_5.0.0.9.zip c:\documents and settings\Administrateur\Application Data\m\shared\Shadow_Plan_3.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\ShareGuard Copy Protection 3.6.zip c:\documents and settings\Administrateur\Application Data\m\shared\Simplexar Statsar 1.0.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\SoftSubmit 1.12.zip c:\documents and settings\Administrateur\Application Data\m\shared\Sophos.Anti-Virus.v5.2.2.Multilanguage.Win2kXP2k3.RETAIL-ARN.link.zip c:\documents and settings\Administrateur\Application Data\m\shared\SSW_Property_and_Event_Pro_2000_2.3_[KeyGen].zip c:\documents and settings\Administrateur\Application Data\m\shared\StrongDisk_Pro_3.6_build_508_[Cracked].zip c:\documents and settings\Administrateur\Application Data\m\shared\SuperLoiLoScope MARS 1.4.1.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\SynchroFolder_2.12.171a.zip c:\documents and settings\Administrateur\Application Data\m\shared\System Configurer.zip c:\documents and settings\Administrateur\Application Data\m\shared\System_Manager_1.1.8.zip c:\documents and settings\Administrateur\Application Data\m\shared\Teachers Personal Information Manager 1.3.0016.zip c:\documents and settings\Administrateur\Application Data\m\shared\TFdxs 1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\TIFF_Assembler_1.0_(Crack).zip c:\documents and settings\Administrateur\Application Data\m\shared\Timetable_1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Underwater Screensaver 3.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Unreal_Tournament_2004_The_Golden_Years_Mutators.zip c:\documents and settings\Administrateur\Application Data\m\shared\Unreal_Tournament_348_patch_fix.zip c:\documents and settings\Administrateur\Application Data\m\shared\VDownloader 0.61.zip c:\documents and settings\Administrateur\Application Data\m\shared\Virtual_Camera_0.85_(Crack).zip c:\documents and settings\Administrateur\Application Data\m\shared\WashAndGo 8.751.zip c:\documents and settings\Administrateur\Application Data\m\shared\WeatherXpress_2000_v2.2.5.zip c:\documents and settings\Administrateur\Application Data\m\shared\Web_Considerations_toolbar_for_Firefox_1.5.0.3.zip c:\documents and settings\Administrateur\Application Data\m\shared\WebDev Client 3.0.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Willing_Webcam_4.0_(Patch).zip c:\documents and settings\Administrateur\Application Data\m\shared\WinDHCP 0.2 Beta.zip c:\documents and settings\Administrateur\Application Data\m\shared\Winsole_2.1_Standalone_2.1.zip c:\documents and settings\Administrateur\Application Data\m\shared\Word Reader 5.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Xe847_ProPlus_Plugin_for_Photoshop_1.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\YL_Mail_Man_2.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\Zilla_MP3_Finder_3.0.0.0.zip c:\documents and settings\Administrateur\Application Data\m\shared\zsCompare_Professional_Edition_3.03.zip c:\documents and settings\Administrateur\Application Data\m\srvlist.oct c:\documents and settings\Administrateur\Local Settings\Application Data\ucokcsy.dat c:\documents and settings\Administrateur\Local Settings\Application Data\ucokcsy.exe c:\documents and settings\Administrateur\Local Settings\Application Data\ucokcsy_nav.dat c:\documents and settings\Administrateur\Local Settings\Application Data\ucokcsy_navps.dat c:\windows\system32\ban_list.txt c:\windows\system32\drivers\down c:\windows\system32\mdelk.exe c:\windows\system32\wintems.exe . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_111111S1RO1S1A -------\Legacy_111111S1RO1S1A -------\Legacy_NPF -------\Legacy_SK9OU0S -------\Service_sK9Ou0s ((((((((((((((((((((((((( Files Created from 2009-07-07 to 2009-08-07 ))))))))))))))))))))))))))))))) . 2009-08-07 16:38 . 2009-02-05 20:04 97480 ----a-w- c:\windows\system32\AvastSS.scr 2009-08-07 16:38 . 2009-02-05 20:08 93296 ----a-w- c:\windows\system32\drivers\aswmon.sys 2009-08-07 16:38 . 2009-02-05 20:11 1256296 ----a-w- c:\windows\system32\aswBoot.exe 2009-08-07 12:42 . 2009-08-07 15:30 -------- d-----w- c:\windows\BDOSCAN8 2009-08-07 12:28 . 2009-08-07 12:28 -------- d-----w- c:\documents and settings\Administrateur\Application Data\HouseCall 6.6 2009-08-07 12:28 . 2009-08-07 12:28 -------- d-----w- c:\windows\system32\HouseCall 6.6 2009-08-07 12:10 . 2009-08-07 12:10 -------- d-----w- C:\coktel 2009-08-04 20:22 . 2009-08-07 17:12 -------- d--h--w- c:\documents and settings\Administrateur\Application Data\drivers 2009-07-18 21:31 . 2009-07-18 21:31 -------- d-----w- c:\program files\uTorrent 2009-07-18 21:30 . 2009-08-07 17:15 -------- d-----w- c:\documents and settings\Administrateur\Application Data\uTorrent 2009-07-16 14:48 . 2009-07-16 14:48 -------- d-----w- c:\documents and settings\Administrateur\Local Settings\Application Data\Apple Computer 16508-08-01 16:46 . 16508-08-01 16:48 63488 ----a-w- c:\windows\xobglu16.dll 16508-08-01 16:46 . 16508-08-01 16:48 23552 ----a-w- c:\windows\xobglu32.dll 16508-08-01 16:44 . 16508-08-01 16:44 -------- d-----w- c:\documents and settings\Administrateur\WINDOWS 16508-08-01 16:30 . 2009-08-07 12:11 -------- d-----w- c:\program files\Au Pays du Web 16508-07-16 17:49 . 1998-10-29 14:45 306688 ----a-w- c:\windows\IsUninst.exe 16508-07-16 17:45 . 16508-07-16 17:45 -------- d-----w- c:\windows\Downloaded Installations 16508-05-19 16:48 . 2005-12-22 10:24 11188 ----a-w- c:\windows\system32\drivers\sscdwhnt.sys 16508-05-19 16:48 . 2005-12-22 10:24 11188 ----a-w- c:\windows\system32\drivers\sscdwh.sys 16508-05-19 16:48 . 2005-12-22 10:24 137884 ----a-w- c:\windows\system32\drivers\sscdmdm.sys 16508-05-19 16:48 . 2005-12-22 10:24 11877 ----a-w- c:\windows\system32\drivers\sscdcmnt.sys 16508-05-19 16:48 . 2005-12-22 10:24 11877 ----a-w- c:\windows\system32\drivers\sscdcm.sys 16508-05-19 16:48 . 2005-12-22 10:24 10864 ----a-w- c:\windows\system32\drivers\sscdmdfl.sys 16508-05-19 16:48 . 2005-12-22 10:24 80272 ----a-w- c:\windows\system32\drivers\sscdbus.sys 16508-05-19 16:48 . 16508-05-19 16:48 -------- d-----w- c:\program files\Samsung 16508-05-19 16:35 . 1994-12-05 23:00 12800 -c--a-w- c:\windows\system\WING32.DLL 16508-05-19 16:27 . 16508-05-19 16:27 -------- d-----w- c:\program files\Happyneuron 16508-05-10 20:55 . 2004-10-29 17:11 5632 ----a-w- c:\windows\system32\ptpusb.dll 16508-05-10 20:55 . 2004-10-29 17:11 159232 -c--a-w- c:\windows\system32\ptpusd.dll 16508-04-10 16:57 . 16508-07-03 16:54 1019872 ----a-w- c:\windows\macromix.dll 16508-04-10 16:57 . 16508-07-03 16:54 30544 ----a-w- c:\windows\dirdib.drv . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-08-07 13:04 . 2007-09-08 00:46 -------- d-----w- c:\program files\DAEMON Tools 2009-08-07 12:18 . 2008-01-11 20:57 -------- d-----w- c:\program files\Lexmark 3500-4500 Series 2009-08-07 12:11 . 2008-08-06 19:07 -------- d-----w- c:\program files\QuickTime 2009-08-01 08:44 . 2009-02-22 17:02 -------- d-----w- c:\program files\Microsoft Silverlight 2009-06-29 15:57 . 2004-10-31 12:00 827392 ----a-w- c:\windows\system32\wininet.dll 2009-06-29 15:57 . 2004-10-31 12:00 78336 ----a-w- c:\windows\system32\ieencode.dll 2009-06-29 15:57 . 2004-10-31 12:00 17408 ------w- c:\windows\system32\corpol.dll 2009-06-25 17:45 . 2009-06-25 17:44 -------- d-----w- c:\program files\Google 2009-06-16 14:40 . 2004-10-31 12:00 81920 ----a-w- c:\windows\system32\fontsub.dll 2009-06-16 14:40 . 2004-10-31 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll 2009-06-12 08:49 . 2004-10-31 12:00 81734 ----a-w- c:\windows\system32\perfc00C.dat 2009-06-12 08:49 . 2004-10-31 12:00 503570 ----a-w- c:\windows\system32\perfh00C.dat 2009-06-03 19:10 . 2004-10-31 12:00 1297408 ----a-w- c:\windows\system32\quartz.dll 16508-05-19 16:55 . 2007-10-26 16:13 -------- d-----w- c:\documents and settings\Administrateur\Application Data\Samsung 16508-04-10 16:59 . 2008-03-22 11:12 45056 -c--a-w- c:\windows\NCUNINST.EXE . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [2006-08-17 864256] "DAEMON Tools"="c:\program files\DAEMON Tools\daemon.exe" [2007-04-03 165784] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408] "uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2009-07-18 288048] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "ATICCC"="c:\program files\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-09-25 90112] "WinampAgent"="c:\logiciels\Winamp\winampa.exe" [2003-12-13 33792] "lxdimon.exe"="c:\program files\Lexmark 3500-4500 Series\lxdimon.exe" [2007-05-07 435120] "lxdiamon"="c:\program files\Lexmark 3500-4500 Series\lxdiamon.exe" [2007-03-05 20480] "FaxCenterServer"="c:\program files\\Lexmark Fax Solutions\fm3032.exe" [2007-05-07 312240] "fssui"="c:\program files\Windows Live\Family Safety\fsui.exe" [2009-02-06 454000] "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-08-07 81000] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ NkbMonitor.exe.lnk - c:\program files\Nikon\PictureProject\NkbMonitor.exe [2007-9-24 118784] [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Codemasters\\DiRT\\dirt.exe"= "c:\\Program Files\\Sierra\\FEAR\\FEAR.exe"= "c:\\Program Files\\EA GAMES\\Medal of Honor Batailles du Pacifique\\mohpa.exe"= "c:\\WINDOWS\\system32\\lxdicoms.exe"= "c:\\Program Files\\Lexmark 3500-4500 Series\\lxdiamon.exe"= "c:\\Program Files\\Lexmark 3500-4500 Series\\App4R.exe"= "c:\\Program Files\\Abbyy FineReader 6.0 Sprint\\Scan\\ScanMan6.exe"= "c:\\Program Files\\Lexmark Fax Solutions\\FaxCtr.exe"= "c:\\Program Files\\Lexmark 3500-4500 Series\\lxdimon.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdipswx.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxditime.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdijswx.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdiwbgw.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\eMule\\emule.exe"= "c:\\Program Files\\Hercules\\Classic Link\\Station2.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= R0 pe3ah4nb;DiRT Environment Driver (pe3ah4nb);c:\windows\system32\drivers\pe3ah4nb.sys [17/06/2007 22:45 64880] R0 ps6ah4nb;DiRT Synchronization Driver (ps6ah4nb);c:\windows\system32\drivers\ps6ah4nb.sys [17/06/2007 22:45 55160] R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [09/02/2009 17:32 55136] R2 fsssvc;Windows Live Contrôle parental;c:\program files\Windows Live\Family Safety\fsssvc.exe [06/02/2009 19:08 533360] R2 lxdi_device;lxdi_device;c:\windows\system32\lxdicoms.exe -service --> c:\windows\system32\lxdicoms.exe -service [?] R2 lxdiCATSCustConnectService;lxdiCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdiserv.exe [11/01/2008 23:00 99248] R3 camfilt2;camfilt2;c:\windows\system32\drivers\camfilt2.sys [29/03/2009 19:24 98432] R3 PAC7302;Hercules Classic Link;c:\windows\system32\drivers\PAC7302.SYS [29/03/2009 19:24 457984] S1 aswSP;avast! Self Protection; [x] S2 ASKUpgrade;ASKUpgrade;c:\program files\AskBarDis\bar\bin\ASKUpgrade.exe --> c:\program files\AskBarDis\bar\bin\ASKUpgrade.exe [?] S2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys --> c:\windows\system32\DRIVERS\aswFsBlk.sys [?] S2 gupdate1c9f5bc9d6191a6;Service Google Update (gupdate1c9f5bc9d6191a6);c:\program files\Google\Update\GoogleUpdate.exe [25/06/2009 19:44 133104] S2 pr2ah4nb;DiRT Drivers Auto Removal (pr2ah4nb);c:\windows\system32\pr2ah4nb.exe svc --> c:\windows\system32\pr2ah4nb.exe svc [?] [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{DDDFC9C8-A0F8-E0CF-AF00-F0F423E36752}] c:\windows\system32\svchast.exe . Contents of the 'Scheduled Tasks' folder 2009-08-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-06-25 17:44] 2009-08-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-06-25 17:44] . - - - - ORPHANS REMOVED - - - - BHO-{201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\AskBarDis\bar\bin\askBar.dll Toolbar-{3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\AskBarDis\bar\bin\askBar.dll WebBrowser-{3041D03E-FD4B-44E0-B742-2D9B88305F98} - c:\program files\AskBarDis\bar\bin\askBar.dll HKCU-Run-ucokcsy - c:\documents and settings\administrateur\local settings\application data\ucokcsy.exe HKLM-Run-C6501Sound - c6501.cpl . ------- Supplementary Scan ------- . mStart Page = hxxp://www.tinit.org/ IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000 DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://www.bitdefender.fr/scan_fr/scan8/oscan8.cab . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-08-07 19:15 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\h–¤|ÿÿÿÿ¤•¤|ù•9~*] "C040110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL" . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'winlogon.exe'(828) c:\windows\system32\Ati2evxx.dll - - - - - - - > 'explorer.exe'(3616) c:\windows\system32\eappprxy.dll . ------------------------ Other Running Processes ------------------------ . c:\windows\system32\rundll32.exe c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe c:\windows\system32\lxdicoms.exe c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe c:\program files\Windows Live\Contacts\wlcomm.exe . ************************************************************************** . Completion time: 2009-08-07 19:32 - machine was rebooted ComboFix-quarantined-files.txt 2009-08-07 17:32 Pre-Run: 82 068 209 664 octets libres Post-Run: 81 766 293 504 octets libres Current=4 Default=4 Failed=2 LastKnownGood=5 Sets=1,2,3,4,5 662 --- E O F --- 2009-07-31 22:32 RESOLUTION : Utilisation efficace du soft Malwarebytes' Lien vers le commentaire Partager sur d’autres sites More sharing options...
7alex Posté(e) le 10 août 2009 Auteur Partager Posté(e) le 10 août 2009 personne pour m'aider ?? Lien vers le commentaire Partager sur d’autres sites More sharing options...
Shtong Posté(e) le 10 août 2009 Partager Posté(e) le 10 août 2009 Bonjour, As-tu essayé de lancer Avast en mode sans échec ? Avec un peu de chance le virus ne se lancera pas. Après un coup d'oeuil rapide sur ton log je vois que le registre fait référence à svchast.exe qui est un virus. Lien vers le commentaire Partager sur d’autres sites More sharing options...
7alex Posté(e) le 10 août 2009 Auteur Partager Posté(e) le 10 août 2009 merci je vais essayé ca :) Lien vers le commentaire Partager sur d’autres sites More sharing options...
7alex Posté(e) le 13 août 2009 Auteur Partager Posté(e) le 13 août 2009 bonjour j'ai testé, je ne peux pas non plus lancer avast en mode sans echec (même erreur). que puis je faire ? Lien vers le commentaire Partager sur d’autres sites More sharing options...
Higapeon Posté(e) le 13 août 2009 Partager Posté(e) le 13 août 2009 bonjourj'ai testé, je ne peux pas non plus lancer avast en mode sans echec (même erreur). que puis je faire ? Cela ressemble fort a une infection par Bagle http://www.commentcamarche.net/faq/sujet-9...us-beagle-bagle Et sinon, dis a ton cousin que télécharger des cracks, c'est mal, la preuve ton PC a pas supporté Lien vers le commentaire Partager sur d’autres sites More sharing options...
7alex Posté(e) le 13 août 2009 Auteur Partager Posté(e) le 13 août 2009 merci je vais essayé ca et effectivment le cousin achopé sur en p2p :( Lien vers le commentaire Partager sur d’autres sites More sharing options...
7alex Posté(e) le 14 août 2009 Auteur Partager Posté(e) le 14 août 2009 Merci Higapeon, j'ai utilisé la 3e methode de ton url et le virus a bien été eradiqué ! Merci Lien vers le commentaire Partager sur d’autres sites More sharing options...
2C.LiryC Posté(e) le 14 août 2009 Partager Posté(e) le 14 août 2009 Re (regardes dans ma signature ) Lien vers le commentaire Partager sur d’autres sites More sharing options...
Ferguss0N Posté(e) le 14 août 2009 Partager Posté(e) le 14 août 2009 c'est ça de dl du pr0n sur les réseau de p2p ! Lien vers le commentaire Partager sur d’autres sites More sharing options...
Messages recommandés
Archivé
Ce sujet est désormais archivé et ne peut plus recevoir de nouvelles réponses.