Se connecter / S'enregistrer
Votre question

Virus qui ma supprimer AdobeARM.exe

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
28 Juin 2010 11:33:57

Bonjour,

J'ai un probleme depui 2 jours je ne peut plus jouer au jeux sur mon ordinateur et il est ralentis constament quand je demarre le pc une page s'affiche et me dit AdobeARM.exe est inexistant ce fichier à étés supprimer par mon antivirus ce qui fait que je pense que c'est a cause que sa que je ne peut plus jouer au jeux sur lordi et ni meme voir mon gestionnaire de tache (carré tout noir ) ( ou peut etre un fichier dell.exe)

j'ai fait un test hijackthis le voici:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:20:51, on 27/06/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18928)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Registry Mechanic\RMTray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Users\william\Program Files\DNA\btdna.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Opera\Opera.exe
C:\Windows\system32\conime.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Users\william\AppData\Local\Opera\Opera\temporary_downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSo [...] =CT2567681
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emachines.com/rdr. [...] 8&m=emg620
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMess.dll
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMess.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMess.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RMTray.exe /H
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\william\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\Windows\system32\Adobe\Shockwave 11\SwHelper_1150600.exe -Update -1150600 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; GTB6; FBSMTWB; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; OfficeLiveConnector.1.3; OfficeLivePatch.0.0; .NET CLR 3.0.30729)" -"http://jeux2moto.com/jeu+de+moto+cross+en+3d.php"
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/Driv [...] ab_nvd.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/Mess [...] E_UNO1.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/Driv [...] rtScan.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr [...] dfr-fr.cab
O16 - DPF: {EAC139A9-D22D-4C29-8D1C-252BE63750F9} - http://affiliates.piclens.com/shared/plinstll.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O20 - AppInit_DLLs: C:\PROGRA~1\GOOGLE\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
O23 - Service: Google Desktop Manager 5.9.911.3589 (GoogleDesktopManager-110309-193829) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 11692 bytes


Merci beaucoup de votre aide

Autres pages sur : virus supprimer adobearm exe

28 Juin 2010 13:57:07

Pourraije avoir de l'aide svp !!

J'ai fait un rapport avec combofix aider moi silvouplait:

ComboFix 10-06-27.04 - william 28/06/2010 13:34:17.1.2 - x86
Microsoft® Windows Vista™ Édition Familiale Basique 6.0.6002.2.1252.33.1036.18.2814.1059 [GMT 2:00]
Lancé depuis: c:\users\william\AppData\Local\Opera\Opera\temporary_downloads\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\Counter-Strike.PC-de-william\AppData\Roaming\02000000da04d31e757C.manifest
c:\users\Counter-Strike.PC-de-william\AppData\Roaming\02000000da04d31e757O.manifest
c:\users\Counter-Strike.PC-de-william\AppData\Roaming\02000000da04d31e757P.manifest
c:\users\Counter-Strike.PC-de-william\AppData\Roaming\02000000da04d31e757S.manifest
c:\users\william\AppData\Roaming\02000000da04d31e757C.manifest
c:\users\william\AppData\Roaming\02000000da04d31e757O.manifest
c:\users\william\AppData\Roaming\02000000da04d31e757P.manifest
c:\users\william\AppData\Roaming\02000000da04d31e757S.manifest
c:\windows\Fonts\calibriz.ttf
c:\windows\Fonts\constani.ttf
c:\windows\Fonts\corbel.ttf
c:\windows\system32\unrar.exe

c:\windows\System32\wermgr.exe . . . est infecté!!

.
((((((((((((((((((((((((((((( Fichiers créés du 2010-05-28 au 2010-06-28 ))))))))))))))))))))))))))))))))))))
.

2010-06-28 11:49 . 2010-06-28 11:49 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-06-28 11:49 . 2010-06-28 11:49 -------- d-----w- c:\users\Counter-Strike.PC-de-william\AppData\Local\temp
2010-06-28 09:49 . 2010-06-28 09:49 -------- d-----w- c:\windows\9580813D94B14C289426A441E2BB29A5.TMP
2010-06-27 23:03 . 2010-06-27 23:03 -------- d-----w- C:\GAMIGO
2010-06-27 23:02 . 2010-06-27 23:02 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2010-06-27 23:02 . 2010-06-28 08:59 242896 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-06-27 23:02 . 2010-06-27 23:02 216200 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-06-27 23:02 . 2010-06-28 08:59 29584 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-06-27 23:02 . 2010-06-27 23:15 -------- d-----w- c:\windows\system32\drivers\Avg
2010-06-27 23:02 . 2010-06-27 23:07 -------- d-----w- c:\programdata\AVG Security Toolbar
2010-06-27 23:01 . 2010-06-27 23:01 -------- d-----w- c:\programdata\avg9
2010-06-27 23:01 . 2010-06-27 23:01 -------- d-----w- c:\program files\AVG
2010-06-27 19:58 . 2010-06-27 19:58 -------- d-----w- c:\users\Counter-Strike.PC-de-william\AppData\Roaming\Malwarebytes
2010-06-27 19:23 . 2010-06-27 19:23 -------- d-----w- c:\program files\Uniblue
2010-06-27 19:23 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-06-27 19:23 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-06-27 17:19 . 2010-06-27 17:19 -------- dc----w- c:\programdata\{52AC600B-5800-407E-99FF-83CD0669760B}
2010-06-24 09:31 . 2009-11-08 08:55 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-06-24 09:31 . 2009-11-08 08:55 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-06-24 09:31 . 2009-11-08 08:55 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-06-24 09:31 . 2009-11-08 08:55 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-06-24 09:31 . 2009-11-08 08:55 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-06-23 10:23 . 2010-04-16 16:43 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2010-06-23 10:23 . 2010-04-16 14:39 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2010-06-16 16:27 . 2010-06-21 11:35 -------- d-----w- c:\program files\Metin2
2010-06-14 15:50 . 2010-06-14 15:50 -------- d-----w- c:\users\william\AppData\Roaming\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
2010-06-13 16:35 . 2010-06-13 16:35 -------- d-----w- c:\users\william\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
2010-06-13 16:35 . 2010-06-13 16:35 -------- d-----w- c:\users\william\AppData\Roaming\app
2010-06-13 16:35 . 2010-06-13 16:45 -------- d-----w- c:\users\william\AppData\Roaming\Dofus 2
2010-06-13 16:35 . 2010-06-13 16:35 -------- d-----w- c:\users\william\AppData\Roaming\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
2010-06-13 16:35 . 2010-06-13 11:09 53632 ----a-w- c:\users\william\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-06-13 11:09 . 2010-06-13 11:09 53632 ----a-w- c:\users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-06-10 23:27 . 2010-05-01 14:13 2037248 ----a-w- c:\windows\system32\win32k.sys
2010-06-10 13:09 . 2010-06-10 13:09 -------- d-----w- c:\program files\Bonjour
2010-06-10 13:07 . 2010-06-10 13:07 -------- d-----w- c:\program files\Apple Software Update
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Application Data\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Application Data\Application Data\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Application Data\Application Data\Application Data\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-09 23:14 . 2010-06-09 23:14 501872 ----a-w- c:\programdata\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\Google Toolbar\Update\gtbC654.tmp.exe
2010-06-06 01:55 . 2010-06-06 01:55 -------- d-----w- c:\programdata\Zylom
2010-06-01 16:53 . 2010-06-02 17:02 -------- d-----w- c:\users\william\AppData\Roaming\TS3Client
2010-06-01 16:43 . 2010-06-14 18:13 -------- d-----w- c:\program files\TeamSpeak 3 Client

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-28 11:50 . 2010-02-10 17:05 -------- d-----w- c:\program files\Common Files\Akamai
2010-06-28 11:45 . 2010-02-26 01:03 -------- d-----w- c:\users\william\AppData\Roaming\DNA
2010-06-28 11:14 . 2009-08-02 09:03 -------- d-----w- c:\program files\Steam
2010-06-28 09:26 . 2009-07-18 20:26 -------- d-----w- c:\users\william\AppData\Roaming\LimeWire
2010-06-28 09:25 . 2010-04-09 10:18 241716 ----a-w- c:\programdata\nvModes.dat
2010-06-28 07:10 . 2010-04-14 20:53 -------- d-----w- c:\programdata\McAfee Security Scan
2010-06-28 07:10 . 2010-01-29 16:28 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-06-27 21:38 . 2009-11-02 21:30 -------- d-----w- c:\program files\gamigogames
2010-06-27 21:35 . 2010-01-29 11:20 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-06-27 21:30 . 2010-01-29 11:20 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2010-06-27 18:06 . 2010-01-29 11:30 -------- d-----w- c:\programdata\Alwil Software
2010-06-26 10:18 . 2009-07-15 07:32 1356 ----a-w- c:\users\william\AppData\Local\d3d9caps.dat
2010-06-26 07:46 . 2010-04-15 14:54 -------- d-----w- c:\programdata\Skype
2010-06-26 07:44 . 2008-09-09 14:56 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-06-26 06:10 . 2008-01-21 07:23 679042 ----a-w- c:\windows\system32\perfh00C.dat
2010-06-26 06:10 . 2008-01-21 07:23 126626 ----a-w- c:\windows\system32\perfc00C.dat
2010-06-26 06:06 . 2008-09-09 15:30 -------- d-----w- c:\program files\Microsoft.NET
2010-06-26 06:02 . 2010-04-15 14:55 -------- d-----w- c:\users\william\AppData\Roaming\Skype
2010-06-26 06:01 . 2010-04-15 14:57 -------- d-----w- c:\users\william\AppData\Roaming\skypePM
2010-06-24 09:33 . 2010-04-01 10:34 -------- d-----w- c:\program files\Opera
2010-06-17 19:42 . 2010-05-20 19:33 -------- d-----w- c:\program files\Messenger_Plus_Live_France
2010-06-17 19:42 . 2009-07-20 21:08 -------- d-----w- c:\program files\Messenger Plus! Live
2010-06-13 11:09 . 2008-09-09 15:25 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-06-11 08:47 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-06-11 00:33 . 2008-09-09 15:28 -------- d-----w- c:\programdata\Microsoft Help
2010-06-10 13:08 . 2010-03-09 17:03 -------- d-----w- c:\program files\Common Files\Apple
2010-06-09 14:31 . 2006-11-02 12:35 -------- d-----w- c:\program files\Microsoft Games
2010-06-07 11:28 . 2009-07-15 18:30 -------- d-----w- c:\program files\Microsoft Silverlight
2010-06-03 12:00 . 2010-04-24 14:03 -------- d-----w- c:\programdata\PMB Files
2010-05-27 22:42 . 2009-07-15 18:24 -------- d-----w- c:\program files\Microsoft
2010-05-26 20:04 . 2009-08-22 11:07 -------- d-----w- c:\users\william\AppData\Roaming\Mumble
2010-05-26 17:06 . 2010-06-10 23:28 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-05-26 14:47 . 2010-06-10 23:28 289792 ----a-w- c:\windows\system32\atmfd.dll
2010-05-23 19:51 . 2010-02-24 11:21 25256 ----a-w- c:\users\william\AppData\Roaming\Mumble\Plugins\tf2.dll
2010-05-23 19:51 . 2010-02-24 11:21 21672 ----a-w- c:\users\william\AppData\Roaming\Mumble\Plugins\l4d2.dll
2010-05-23 19:51 . 2010-04-04 15:31 21160 ----a-w- c:\users\william\AppData\Roaming\Mumble\Plugins\bfbc2.dll
2010-05-23 19:51 . 2010-03-02 12:59 21160 ----a-w- c:\users\william\AppData\Roaming\Mumble\Plugins\codmw2.dll
2010-05-23 19:51 . 2010-02-24 11:21 25256 ----a-w- c:\users\william\AppData\Roaming\Mumble\Plugins\insurgency.dll
2010-05-23 19:51 . 2010-02-24 11:21 25256 ----a-w- c:\users\william\AppData\Roaming\Mumble\Plugins\gmod.dll
2010-05-23 19:51 . 2010-02-24 11:21 25256 ----a-w- c:\users\william\AppData\Roaming\Mumble\Plugins\dods.dll
2010-05-23 19:51 . 2009-12-27 22:33 25256 ----a-w- c:\users\william\AppData\Roaming\Mumble\Plugins\aoc.dll
2010-05-23 17:21 . 2009-07-14 11:29 1512 ----a-w- c:\users\william\AppData\Roaming\wklnhst.dat
2010-05-21 12:14 . 2009-10-02 22:52 221568 ------w- c:\windows\system32\MpSigStub.exe
2010-05-20 19:33 . 2010-05-20 19:33 -------- d-----w- c:\program files\Conduit
2010-05-18 14:35 . 2010-05-18 14:35 91424 ----a-w- c:\windows\system32\dnssd.dll
2010-05-18 14:35 . 2010-05-18 14:35 107808 ----a-w- c:\windows\system32\dns-sd.exe
2010-05-06 20:59 . 2010-01-29 11:30 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-05-06 20:39 . 2010-01-29 11:31 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-05-06 20:39 . 2010-01-29 11:31 164048 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-05-06 20:34 . 2010-01-29 11:31 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-05-06 20:34 . 2010-01-29 11:31 51792 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2010-05-06 20:33 . 2010-01-29 11:31 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-05-04 05:59 . 2010-06-10 23:28 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-04 05:55 . 2010-06-10 23:28 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-05-04 05:55 . 2010-06-10 23:28 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-05-04 04:31 . 2010-06-10 23:28 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2010-04-30 14:13 . 2010-01-29 13:31 73528 ----a-w- c:\users\Counter-Strike.PC-de-william\AppData\Local\GDIPFONTCACHEV1.DAT
2010-04-23 21:19 . 2010-04-23 21:19 21672 ----a-w- c:\users\william\AppData\Roaming\Mumble\Plugins\cs.dll
2010-04-23 14:13 . 2010-05-26 10:12 2048 ----a-w- c:\windows\system32\tzres.dll
2010-04-16 16:43 . 2010-06-23 10:23 173056 ----a-w- c:\windows\AppPatch\AcXtrnal.dll
2010-04-16 16:43 . 2010-06-23 10:23 458752 ----a-w- c:\windows\AppPatch\AcSpecfc.dll
2010-04-16 16:43 . 2010-06-23 10:23 542720 ----a-w- c:\windows\AppPatch\AcLayers.dll
2010-04-16 16:43 . 2010-06-23 10:23 2159616 ----a-w- c:\windows\AppPatch\AcGenral.dll
2010-04-15 14:57 . 2010-04-15 14:57 56 ---ha-w- c:\programdata\ezsidmv.dat
2010-04-14 16:47 . 2010-01-29 11:30 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-04-13 12:59 . 2009-07-13 19:04 73528 ----a-w- c:\users\william\AppData\Local\GDIPFONTCACHEV1.DAT
2010-04-05 17:01 . 2010-06-10 23:28 67072 ----a-w- c:\windows\system32\asycfilt.dll
2010-04-04 15:31 . 2010-02-24 11:21 21672 ----a-w- c:\users\william\AppData\Roaming\Mumble\Plugins\lotro.dll
2010-04-01 06:49 . 2010-04-01 06:39 2828 --sha-w- c:\windows\system32\KGyGaAvL.sys
2010-04-01 06:43 . 2010-04-01 06:39 88 --sh--r- c:\windows\system32\380E17B1BD.sys
2010-01-23 22:43 . 2010-01-23 22:43 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
.

------- Sigcheck -------

[-] 2009-04-11 . 93952506C6D67330367F7E7934B6A02F . 758784 . . [7.0.6001.18000] . . c:\windows\System32\qmgr.dll

[-] 2009-04-11 . 3B5B4D53FEC14F7476CA29A20CC31AC9 . 550400 . . [6.0.6000.16386] . . c:\windows\System32\rpcss.dll

[-] 2009-04-11 . D4E6D91C1349B7BFB3599A6ADA56851B . 279552 . . [6.0.6000.16386] . . c:\windows\System32\services.exe

[-] 2009-04-11 . 524BFBEA40E6E404737CCBC754647A2E . 127488 . . [6.0.6000.16386] . . c:\windows\System32\spoolsv.exe

[-] 2009-04-11 . 898E7C06A350D4A1A64A9EA264D55452 . 314368 . . [6.0.6001.18000] . . c:\windows\System32\winlogon.exe

[-] 2009-04-11 . FB27772BEAF8E1D28CCD825C09DA939B . 129024 . . [6.0.6000.16386] . . c:\windows\System32\cryptsvc.dll

[-] 2009-04-11 . 67058C46504BC12D821F38CF99B7B28F . 268800 . . [2001.12.6932.18005] . . c:\windows\System32\es.dll

[-] 2009-04-11 . C8BDCECEE082B54F0BAC838BF0A34597 . 114688 . . [6.0.6002.18005] . . c:\windows\System32\imm32.dll

[-] 2009-04-11 . BB8509089E7DF514310814E1B2593FFC . 891392 . . [6.0.6001.18000] . . c:\windows\System32\kernel32.dll

[-] 2009-04-11 . F5E991236960137B1F5449C5E5DF4656 . 679936 . . [7.0.6002.18005] . . c:\windows\System32\msvcrt.dll

[-] 2009-04-11 . 8617350C9B590B63E620881092751BCB . 223232 . . [6.0.6000.16386] . . c:\windows\System32\mswsock.dll

[-] 2009-04-11 . 95DAECF0FB120A7B5DA679CC54E37DDE . 592896 . . [6.0.6001.18000] . . c:\windows\System32\netlogon.dll

[-] 2009-04-11 . 9A7F4B2EDACD11444D048AA19CBB26AF . 98816 . . [6.0.6001.18000] . . c:\windows\System32\powrprof.dll

[-] 2009-04-11 . 8FC182167381E9915651267044105EE1 . 177152 . . [6.0.6000.16386] . . c:\windows\System32\scecli.dll

[-] 2009-04-11 . D7673E4B38CE21EE54C59EEEB65E2483 . 242688 . . [6.0.6000.16386] . . c:\windows\System32\tapisrv.dll

[-] 2009-04-11 . 75510147B94598407666F4802797C75A . 627712 . . [6.0.6001.18000] . . c:\windows\System32\user32.dll

[-] 2009-04-11 . A43FF743C9DBAC2264C0D750DA02DEE1 . 3956224 . . [6.0.6000.16386] . . c:\windows\explorer.exe

[-] 2010-02-23 . 690D53BD10A804BB6D0A772D1C0E6907 . 247296 . . [6.0.6000.16386] . . c:\windows\System32\shsvcs.dll

[-] 2009-04-11 . 9E6894EA18DAFF37B63E1005F83AE4AB . 107008 . . [6.0.6000.16386] . . c:\windows\System32\regsvc.dll

[-] 2009-04-11 . 323AE0BDFD2EB15B668DDA50CC597329 . 595456 . . [6.0.6001.18000] . . c:\windows\System32\schedsvc.dll

[-] 2009-04-11 . BB95DA09BEF6E7A131BFF3BA5032090D . 449024 . . [6.0.6001.18000] . . c:\windows\System32\termsrv.dll

[-] 2009-04-11 . 84B8827562B005C118CADBA0F25DB2C6 . 444416 . . [6.0.6000.16386] . . c:\windows\System32\dsound.dll

[-] 2009-04-11 . 8AAEEE8E59A70F37579993D118A34EE0 . 1788416 . . [6.0.6002.18005] . . c:\windows\System32\d3d9.dll

[-] 2009-04-11 06:28 . A944A73CEC5921B871542FE5CC5E03E4 . 88576 . . [6.0.6002.18005] . . c:\windows\System32\olepro32.dll
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{59994074-c06d-4a75-9768-49e5a8c21264}"= "c:\program files\Messenger_Plus_Live_France\tbMess.dll" [2010-04-15 2515552]
"{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2010-04-19 2117704]

[HKEY_CLASSES_ROOT\clsid\{59994074-c06d-4a75-9768-49e5a8c21264}]

[HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{59994074-c06d-4a75-9768-49e5a8c21264}]
2010-04-15 10:33 2515552 ----a-w- c:\program files\Messenger_Plus_Live_France\tbMess.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2010-04-19 08:25 2117704 ----a-w- c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{59994074-c06d-4a75-9768-49e5a8c21264}"= "c:\program files\Messenger_Plus_Live_France\tbMess.dll" [2010-04-15 2515552]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2010-04-19 2117704]

[HKEY_CLASSES_ROOT\clsid\{59994074-c06d-4a75-9768-49e5a8c21264}]

[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{59994074-C06D-4A75-9768-49E5A8C21264}"= "c:\program files\Messenger_Plus_Live_France\tbMess.dll" [2010-04-15 2515552]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2010-04-19 2117704]

[HKEY_CLASSES_ROOT\clsid\{59994074-c06d-4a75-9768-49e5a8c21264}]

[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RegistryMechanic"="c:\program files\Registry Mechanic\RMTray.exe" [2008-07-03 812952]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"Steam"="c:\program files\steam\steam.exe" [2010-06-28 1238352]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1214976]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-02-19 39408]
"BitTorrent DNA"="c:\users\william\Program Files\DNA\btdna.exe" [2010-02-26 323392]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2010-04-24 2938552]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater"="c:\windows\system32\Adobe\Shockwave 11\SwHelper_1150600.exe" [2009-06-05 468408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2008-08-06 6265376]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-01-30 30192]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-04-04 36272]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-03-24 952768]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-04-29 1090952]
"AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2010-06-28 2065248]

c:\users\william\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
LimeWire On Startup.lnk - c:\program files\LimeWire\LimeWire.exe [2009-12-16 503808]
OneNote 2007 - Capture d'‚cran et lancement.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll c:\windows\System32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):D e,ee,37,24,cb,42,ca,01

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-19 135664]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-04 131072]
R3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG9\Toolbar\ToolbarBroker.exe [2010-04-19 430152]
R3 avshws;YouUp Simulated Hardware;c:\windows\system32\DRIVERS\youup.sys [2009-04-27 57472]
R3 EraserUtilDrv10920;EraserUtilDrv10920;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv10920.sys [x]
R3 GoogleDesktopManager-110309-193829;Google Desktop Manager 5.9.911.3589;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-01-30 30192]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [2010-01-11 3461904]
R3 WPFFontCache_v0400;Cache de police de Windows Presentation Foundation 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
R3 xusb20;Xbox 360 Wireless Receiver for Windows Driver Service;c:\windows\system32\DRIVERS\xusb20.sys [2006-10-13 50048]
S1 aswSP;aswSP; [x]
S1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\Drivers\avgldx86.sys [2010-06-27 216200]
S1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\Drivers\avgtdix.sys [2010-06-28 242896]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2008-01-21 21504]
S2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [2010-03-26 108289]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-05-06 51792]
S2 avg9emc;AVG Free E-mail Scanner;c:\program files\AVG\AVG9\avgemc.exe [2010-06-27 916760]
S2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [2010-06-27 308064]
S2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384]
S2 ETService;Empowering Technology Service;c:\program files\EMACHINES\eMachines Recovery Management\Service\ETService.exe [2008-06-11 24576]
S2 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-06 50424]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-04-17 11032]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60x.sys [2008-06-25 212992]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys [2008-12-10 17792]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
Akamai REG_MULTI_SZ Akamai
.
Contenu du dossier 'Tâches planifiées'

2010-06-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-19 14:31]

2010-06-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-19 14:31]

2010-06-28 c:\windows\Tasks\User_Feed_Synchronization-{948EC4DC-C17B-455E-849B-5F6AB066C2C6}.job
- c:\windows\system32\msfeedssync.exe [2010-06-10 04:30]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2567681
uInternet Settings,ProxyOverride = *.local
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll
DPF: {EAC139A9-D22D-4C29-8D1C-252BE63750F9} - hxxp://affiliates.piclens.com/shared/plinstll.cab
.
- - - - ORPHELINS SUPPRIMES - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-06-28 13:50
Windows 6.0.6002 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
Heure de fin: 2010-06-28 13:54:48
ComboFix-quarantined-files.txt 2010-06-28 11:54

Avant-CF: 12 707 721 216 octets libres
Après-CF: 14 570 143 744 octets libres

Current=1 Default=1 Failed=0 LastKnownGood=11 Sets=1,2,3,4,5,6,7,8,9,11
- - End Of File - - 03CFC313F61CC656A6C172027A5A82B3
28 Juin 2010 16:14:44

AIDER MOI SILVOUPLAIT !!!
Contenus similaires
28 Juin 2010 17:20:39

je ne peut plus lancer d'application sa me met a chaque fois sa ...

Signature du problème :
Nom d’événement de problème: APPCRASH
Nom de l’application: msiexec.exe
Version de l’application: 4.5.6002.18005
Horodatage de l'application: 49e01c42
Nom du module par défaut: RICHED20.DLL
Version du module par défaut: 5.31.23.1229
Horodateur du module par défaut: 49e03809
Code de l’exception: c0000005
Décalage de l’exception: 00009f5b
Version du système: 6.0.6002.2.2.0.768.2
Identificateur de paramètres régionaux: 1036
Information supplémentaire n° 1: 0735
Information supplémentaire n° 2: 819963e44e168b457178abc2922b688a
Information supplémentaire n° 3: 470e
Information supplémentaire n° 4: e84ffe11837c495c97b0a8450e39aabc
28 Juin 2010 20:15:15

MERCI DE VOTRE AIDE C'EST SYMPA ............ --'
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS