Se connecter / S'enregistrer
Votre question

Avast application win32 non valide

Tags :
  • Avast
  • Sécurité
Dernière réponse : dans Sécurité et virus
17 Novembre 2008 12:47:09

Bonjour,

J'ai un problème à l'ouverture de mon antivirus AVAST. Lorsque j'essaye de le démarrer, il me dit que l'application Win32 est non valide....
J'ai même l'impression que mon pc est ralenti, certains logiciels ne veulent pas s'ouvrir ou me disent pareil que pour Avast.

Je suis sous Vista, pouvez vous me donner la solution pour résoudre mon problème svp.

Merci d'avance

Salutations

Autres pages sur : avast application win32 valide

17 Novembre 2008 12:53:24

J'ai vu qu'il y avait des analyses à faire et à poster sur le forum, je vais faire comme il est indiqué sur les autres sujets et posté les rapports.
a b 8 Sécurité
17 Novembre 2008 17:15:46

Bonjour,

Chaque infection est différente, ne pas lancer des tools au hasard.

[#ff0000]! Désactive tes protections résidentes (antivirus, Spybot-S&D, etc.) ![/#f]

  • Télécharge ComboFix ([#ff0000]sUBs[/#f]) sur ton Bureau.
  • Double clique sur ComboFix.exe (le .exe n'est pas forcément visible) afin de le lancer.
  • Lorsque la recherche sera terminée, un rapport apparaîtra. Poste ce rapport (C:\combofix.txt*) dans ta prochaine réponse.

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer
    Contenus similaires
    25 Novembre 2008 10:09:14

    Désolé pour le retard, je n'ai pas pu avant. problème de temps et problème de technique...
    Voici le rapport :

    ComboFix 08-11-24.01 - Yann 2008-11-25 9:53:13.1 - NTFSx86
    Microsoft® Windows Vista™ Édition Intégrale 6.0.6000.0.1252.1.1036.18.1140 [GMT 1:00]
    Lancé depuis: c:\users\Yann\Desktop\Combo-Fix.exe
    .
    ADS - Windows: deleted 48 bytes in 1 streams.

    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .

    C:\InfoSat.txt
    c:\program files\IEToolbar
    c:\program files\IEToolbar\Ant.com Toolbar\ant.dll
    c:\program files\IEToolbar\Ant.com Toolbar\AntPlugin.dll
    c:\program files\IEToolbar\Ant.com Toolbar\uninstall.exe
    c:\users\Yann\AppData\Local\woiiuaq.dat
    c:\users\Yann\AppData\Local\woiiuaq.exe
    c:\users\Yann\AppData\Local\woiiuaq_nav.dat
    c:\users\Yann\AppData\Local\woiiuaq_navps.dat
    c:\users\Yann\AppData\Roaming\inst.exe
    c:\users\Yann\AppData\Roaming\rhc34sj0ecda
    c:\windows\system32\drivers\downld
    c:\windows\system32\drivers\downld\104161.exe
    c:\windows\system32\drivers\downld\104276699.exe
    c:\windows\system32\drivers\downld\104293080.exe
    c:\windows\system32\drivers\downld\104293844.exe
    c:\windows\system32\drivers\downld\104510046.exe
    c:\windows\system32\drivers\downld\104716326.exe
    c:\windows\system32\drivers\downld\104731302.exe
    c:\windows\system32\drivers\downld\104770.exe
    c:\windows\system32\drivers\downld\105391576.exe
    c:\windows\system32\drivers\downld\105423307.exe
    c:\windows\system32\drivers\downld\105425631.exe
    c:\windows\system32\drivers\downld\105469155.exe
    c:\windows\system32\drivers\downld\105480325.exe
    c:\windows\system32\drivers\downld\105659.exe
    c:\windows\system32\drivers\downld\105897550.exe
    c:\windows\system32\drivers\downld\105926082.exe
    c:\windows\system32\drivers\downld\105931511.exe
    c:\windows\system32\drivers\downld\106111.exe
    c:\windows\system32\drivers\downld\107050803.exe
    c:\windows\system32\drivers\downld\107052207.exe
    c:\windows\system32\drivers\downld\107075186.exe
    c:\windows\system32\drivers\downld\107076153.exe
    c:\windows\system32\drivers\downld\107103562.exe
    c:\windows\system32\drivers\downld\107324865.exe
    c:\windows\system32\drivers\downld\107333508.exe
    c:\windows\system32\drivers\downld\107940336.exe
    c:\windows\system32\drivers\downld\107941178.exe
    c:\windows\system32\drivers\downld\108138910.exe
    c:\windows\system32\drivers\downld\108152045.exe
    c:\windows\system32\drivers\downld\108344847.exe
    c:\windows\system32\drivers\downld\108352600.exe
    c:\windows\system32\drivers\downld\108997.exe
    c:\windows\system32\drivers\downld\109606.exe
    c:\windows\system32\drivers\downld\113412.exe
    c:\windows\system32\drivers\downld\120360402.exe
    c:\windows\system32\drivers\downld\120362181.exe
    c:\windows\system32\drivers\downld\120392617.exe
    c:\windows\system32\drivers\downld\120403958.exe
    c:\windows\system32\drivers\downld\120833242.exe
    c:\windows\system32\drivers\downld\120838265.exe
    c:\windows\system32\drivers\downld\121747922.exe
    c:\windows\system32\drivers\downld\121787796.exe
    c:\windows\system32\drivers\downld\121788451.exe
    c:\windows\system32\drivers\downld\121811415.exe
    c:\windows\system32\drivers\downld\122013373.exe
    c:\windows\system32\drivers\downld\122026041.exe
    c:\windows\system32\drivers\downld\122768512.exe
    c:\windows\system32\drivers\downld\122769417.exe
    c:\windows\system32\drivers\downld\122958474.exe
    c:\windows\system32\drivers\downld\122969441.exe
    c:\windows\system32\drivers\downld\123162087.exe
    c:\windows\system32\drivers\downld\123169715.exe
    c:\windows\system32\drivers\downld\135018.exe
    c:\windows\system32\drivers\downld\135259387.exe
    c:\windows\system32\drivers\downld\135279745.exe
    c:\windows\system32\drivers\downld\135280697.exe
    c:\windows\system32\drivers\downld\135296344.exe
    c:\windows\system32\drivers\downld\135302943.exe
    c:\windows\system32\drivers\downld\135702446.exe
    c:\windows\system32\drivers\downld\135704505.exe
    c:\windows\system32\drivers\downld\137582804.exe
    c:\windows\system32\drivers\downld\137597702.exe
    c:\windows\system32\drivers\downld\137598388.exe
    c:\windows\system32\drivers\downld\137690538.exe
    c:\windows\system32\drivers\downld\137692207.exe
    c:\windows\system32\drivers\downld\137713626.exe
    c:\windows\system32\drivers\downld\137907457.exe
    c:\windows\system32\drivers\downld\137913963.exe
    c:\windows\system32\drivers\downld\143208.exe
    c:\windows\system32\drivers\downld\144051.exe
    c:\windows\system32\drivers\downld\145252.exe
    c:\windows\system32\drivers\downld\145548.exe
    c:\windows\system32\drivers\downld\14768333.exe
    c:\windows\system32\drivers\downld\14769316.exe
    c:\windows\system32\drivers\downld\14807895.exe
    c:\windows\system32\drivers\downld\14839907.exe
    c:\windows\system32\drivers\downld\14855616.exe
    c:\windows\system32\drivers\downld\14856334.exe
    c:\windows\system32\drivers\downld\14868704.exe
    c:\windows\system32\drivers\downld\14888033.exe
    c:\windows\system32\drivers\downld\14888688.exe
    c:\windows\system32\drivers\downld\14893821.exe
    c:\windows\system32\drivers\downld\14905879.exe
    c:\windows\system32\drivers\downld\14910528.exe
    c:\windows\system32\drivers\downld\14916628.exe
    c:\windows\system32\drivers\downld\149246.exe
    c:\windows\system32\drivers\downld\14927408.exe
    c:\windows\system32\drivers\downld\14928141.exe
    c:\windows\system32\drivers\downld\14929295.exe
    c:\windows\system32\drivers\downld\14952071.exe
    c:\windows\system32\drivers\downld\14953756.exe
    c:\windows\system32\drivers\downld\14957266.exe
    c:\windows\system32\drivers\downld\14966813.exe
    c:\windows\system32\drivers\downld\14969356.exe
    c:\windows\system32\drivers\downld\14970573.exe
    c:\windows\system32\drivers\downld\14971259.exe
    c:\windows\system32\drivers\downld\14972944.exe
    c:\windows\system32\drivers\downld\15010447.exe
    c:\windows\system32\drivers\downld\150125565.exe
    c:\windows\system32\drivers\downld\150127640.exe
    c:\windows\system32\drivers\downld\150162818.exe
    c:\windows\system32\drivers\downld\150172708.exe
    c:\windows\system32\drivers\downld\15030961.exe
    c:\windows\system32\drivers\downld\15031881.exe
    c:\windows\system32\drivers\downld\15053488.exe
    c:\windows\system32\drivers\downld\150592055.exe
    c:\windows\system32\drivers\downld\150599636.exe
    c:\windows\system32\drivers\downld\15065734.exe
    c:\windows\system32\drivers\downld\15091209.exe
    c:\windows\system32\drivers\downld\15098525.exe
    c:\windows\system32\drivers\downld\15110397.exe
    c:\windows\system32\drivers\downld\15116216.exe
    c:\windows\system32\drivers\downld\15122861.exe
    c:\windows\system32\drivers\downld\15133313.exe
    c:\windows\system32\drivers\downld\15161081.exe
    c:\windows\system32\drivers\downld\15167587.exe
    c:\windows\system32\drivers\downld\15171565.exe
    c:\windows\system32\drivers\downld\15171924.exe
    c:\windows\system32\drivers\downld\15175980.exe
    c:\windows\system32\drivers\downld\15184185.exe
    c:\windows\system32\drivers\downld\15201579.exe
    c:\windows\system32\drivers\downld\152325304.exe
    c:\windows\system32\drivers\downld\152342495.exe
    c:\windows\system32\drivers\downld\152343743.exe
    c:\windows\system32\drivers\downld\152504736.exe
    c:\windows\system32\drivers\downld\152524392.exe
    c:\windows\system32\drivers\downld\15258598.exe
    c:\windows\system32\drivers\downld\152723949.exe
    c:\windows\system32\drivers\downld\152743652.exe
    c:\windows\system32\drivers\downld\15351091.exe
    c:\windows\system32\drivers\downld\15353119.exe
    c:\windows\system32\drivers\downld\15383180.exe
    c:\windows\system32\drivers\downld\15392213.exe
    c:\windows\system32\drivers\downld\15399950.exe
    c:\windows\system32\drivers\downld\15408265.exe
    c:\windows\system32\drivers\downld\15413819.exe
    c:\windows\system32\drivers\downld\15418686.exe
    c:\windows\system32\drivers\downld\15419716.exe
    c:\windows\system32\drivers\downld\15448326.exe
    c:\windows\system32\drivers\downld\15449559.exe
    c:\windows\system32\drivers\downld\15452335.exe
    c:\windows\system32\drivers\downld\15453693.exe
    c:\windows\system32\drivers\downld\15454925.exe
    c:\windows\system32\drivers\downld\15460884.exe
    c:\windows\system32\drivers\downld\15461617.exe
    c:\windows\system32\drivers\downld\15463677.exe
    c:\windows\system32\drivers\downld\154940.exe
    c:\windows\system32\drivers\downld\15723340.exe
    c:\windows\system32\drivers\downld\15728130.exe
    c:\windows\system32\drivers\downld\157327.exe
    c:\windows\system32\drivers\downld\157451.exe
    c:\windows\system32\drivers\downld\15807518.exe
    c:\windows\system32\drivers\downld\15821543.exe
    c:\windows\system32\drivers\downld\15896501.exe
    c:\windows\system32\drivers\downld\15908685.exe
    c:\windows\system32\drivers\downld\15935408.exe
    c:\windows\system32\drivers\downld\15945688.exe
    c:\windows\system32\drivers\downld\16036153.exe
    c:\windows\system32\drivers\downld\16064826.exe
    c:\windows\system32\drivers\downld\162631.exe
    c:\windows\system32\drivers\downld\164159.exe
    c:\windows\system32\drivers\downld\165017295.exe
    c:\windows\system32\drivers\downld\165023177.exe
    c:\windows\system32\drivers\downld\165024191.exe
    c:\windows\system32\drivers\downld\165046015.exe
    c:\windows\system32\drivers\downld\165051553.exe
    c:\windows\system32\drivers\downld\165127.exe
    c:\windows\system32\drivers\downld\165513628.exe
    c:\windows\system32\drivers\downld\165520960.exe
    c:\windows\system32\drivers\downld\167180530.exe
    c:\windows\system32\drivers\downld\167182449.exe
    c:\windows\system32\drivers\downld\167414298.exe
    c:\windows\system32\drivers\downld\167416965.exe
    c:\windows\system32\drivers\downld\167459398.exe
    c:\windows\system32\drivers\downld\167666567.exe
    c:\windows\system32\drivers\downld\167709436.exe
    c:\windows\system32\drivers\downld\179940897.exe
    c:\windows\system32\drivers\downld\179942254.exe
    c:\windows\system32\drivers\downld\179970303.exe
    c:\windows\system32\drivers\downld\179978447.exe
    c:\windows\system32\drivers\downld\180382084.exe
    c:\windows\system32\drivers\downld\180431317.exe
    c:\windows\system32\drivers\downld\180440740.exe
    c:\windows\system32\drivers\downld\182239541.exe
    c:\windows\system32\drivers\downld\182270398.exe
    c:\windows\system32\drivers\downld\182276232.exe
    c:\windows\system32\drivers\downld\182450563.exe
    c:\windows\system32\drivers\downld\182477099.exe
    c:\windows\system32\drivers\downld\182687638.exe
    c:\windows\system32\drivers\downld\182712801.exe
    c:\windows\system32\drivers\downld\184205.exe
    c:\windows\system32\drivers\downld\185641.exe
    c:\windows\system32\drivers\downld\186405.exe
    c:\windows\system32\drivers\downld\194871378.exe
    c:\windows\system32\drivers\downld\194873141.exe
    c:\windows\system32\drivers\downld\194905995.exe
    c:\windows\system32\drivers\downld\194917633.exe
    c:\windows\system32\drivers\downld\197148494.exe
    c:\windows\system32\drivers\downld\197174265.exe
    c:\windows\system32\drivers\downld\197175919.exe
    c:\windows\system32\drivers\downld\197403509.exe
    c:\windows\system32\drivers\downld\197406722.exe
    c:\windows\system32\drivers\downld\197425224.exe
    c:\windows\system32\drivers\downld\197649475.exe
    c:\windows\system32\drivers\downld\197668960.exe
    c:\windows\system32\drivers\downld\198927373.exe
    c:\windows\system32\drivers\downld\198940384.exe
    c:\windows\system32\drivers\downld\198952677.exe
    c:\windows\system32\drivers\downld\203253.exe
    c:\windows\system32\drivers\downld\211615.exe
    c:\windows\system32\drivers\downld\212189346.exe
    c:\windows\system32\drivers\downld\212190407.exe
    c:\windows\system32\drivers\downld\212293227.exe
    c:\windows\system32\drivers\downld\212313195.exe
    c:\windows\system32\drivers\downld\212515497.exe
    c:\windows\system32\drivers\downld\212535060.exe
    c:\windows\system32\drivers\downld\213365640.exe
    c:\windows\system32\drivers\downld\213383549.exe
    c:\windows\system32\drivers\downld\213384360.exe
    c:\windows\system32\drivers\downld\213404640.exe
    c:\windows\system32\drivers\downld\213411941.exe
    c:\windows\system32\drivers\downld\213795922.exe
    c:\windows\system32\drivers\downld\213804315.exe
    c:\windows\system32\drivers\downld\213806109.exe
    c:\windows\system32\drivers\downld\225312.exe
    c:\windows\system32\drivers\downld\226977617.exe
    c:\windows\system32\drivers\downld\226980128.exe
    c:\windows\system32\drivers\downld\227163351.exe
    c:\windows\system32\drivers\downld\227169420.exe
    c:\windows\system32\drivers\downld\227234363.exe
    c:\windows\system32\drivers\downld\227458146.exe
    c:\windows\system32\drivers\downld\227507084.exe
    c:\windows\system32\drivers\downld\227636.exe
    c:\windows\system32\drivers\downld\228216920.exe
    c:\windows\system32\drivers\downld\228233331.exe
    c:\windows\system32\drivers\downld\228234049.exe
    c:\windows\system32\drivers\downld\228254844.exe
    c:\windows\system32\drivers\downld\228264625.exe
    c:\windows\system32\drivers\downld\228652787.exe
    c:\windows\system32\drivers\downld\228663738.exe
    c:\windows\system32\drivers\downld\228665735.exe
    c:\windows\system32\drivers\downld\228775.exe
    c:\windows\system32\drivers\downld\229929.exe
    c:\windows\system32\drivers\downld\242113.exe
    c:\windows\system32\drivers\downld\243078152.exe
    c:\windows\system32\drivers\downld\243099540.exe
    c:\windows\system32\drivers\downld\243100304.exe
    c:\windows\system32\drivers\downld\243125233.exe
    c:\windows\system32\drivers\downld\243132394.exe
    c:\windows\system32\drivers\downld\243520337.exe
    c:\windows\system32\drivers\downld\243538137.exe
    c:\windows\system32\drivers\downld\243560960.exe
    c:\windows\system32\drivers\downld\253470.exe
    c:\windows\system32\drivers\downld\257980163.exe
    c:\windows\system32\drivers\downld\257980818.exe
    c:\windows\system32\drivers\downld\258061299.exe
    c:\windows\system32\drivers\downld\258073811.exe
    c:\windows\system32\drivers\downld\258462362.exe
    c:\windows\system32\drivers\downld\258473516.exe
    c:\windows\system32\drivers\downld\258484405.exe
    c:\windows\system32\drivers\downld\272914654.exe
    c:\windows\system32\drivers\downld\272916432.exe
    c:\windows\system32\drivers\downld\273006289.exe
    c:\windows\system32\drivers\downld\273017817.exe
    c:\windows\system32\drivers\downld\273445416.exe
    c:\windows\system32\drivers\downld\273470751.exe
    c:\windows\system32\drivers\downld\273481671.exe
    c:\windows\system32\drivers\downld\279397.exe
    c:\windows\system32\drivers\downld\284296.exe
    c:\windows\system32\drivers\downld\284795.exe
    c:\windows\system32\drivers\downld\287917956.exe
    c:\windows\system32\drivers\downld\287918799.exe
    c:\windows\system32\drivers\downld\288082974.exe
    c:\windows\system32\drivers\downld\288087030.exe
    c:\windows\system32\drivers\downld\288090431.exe
    c:\windows\system32\drivers\downld\288483320.exe
    c:\windows\system32\drivers\downld\288492711.exe
    c:\windows\system32\drivers\downld\288494848.exe
    c:\windows\system32\drivers\downld\291269.exe
    c:\windows\system32\drivers\downld\293905.exe
    c:\windows\system32\drivers\downld\29549537.exe
    c:\windows\system32\drivers\downld\29552657.exe
    c:\windows\system32\drivers\downld\29573281.exe
    c:\windows\system32\drivers\downld\29574061.exe
    c:\windows\system32\drivers\downld\29574419.exe
    c:\windows\system32\drivers\downld\29576245.exe
    c:\windows\system32\drivers\downld\29601220.exe
    c:\windows\system32\drivers\downld\29607710.exe
    c:\windows\system32\drivers\downld\29609192.exe
    c:\windows\system32\drivers\downld\29620128.exe
    c:\windows\system32\drivers\downld\29643138.exe
    c:\windows\system32\drivers\downld\29647771.exe
    c:\windows\system32\drivers\downld\296682.exe
    c:\windows\system32\drivers\downld\29705289.exe
    c:\windows\system32\drivers\downld\29714586.exe
    c:\windows\system32\drivers\downld\29805956.exe
    c:\windows\system32\drivers\downld\29812805.exe
    c:\windows\system32\drivers\downld\29822133.exe
    c:\windows\system32\drivers\downld\29823475.exe
    c:\windows\system32\drivers\downld\29824302.exe
    c:\windows\system32\drivers\downld\29846548.exe
    c:\windows\system32\drivers\downld\29852101.exe
    c:\windows\system32\drivers\downld\29873317.exe
    c:\windows\system32\drivers\downld\29874675.exe
    c:\windows\system32\drivers\downld\29878590.exe
    c:\windows\system32\drivers\downld\29879573.exe
    c:\windows\system32\drivers\downld\29896031.exe
    c:\windows\system32\drivers\downld\29896842.exe
    c:\windows\system32\drivers\downld\29903472.exe
    c:\windows\system32\drivers\downld\29910789.exe
    c:\windows\system32\drivers\downld\29912427.exe
    c:\windows\system32\drivers\downld\29915001.exe
    c:\windows\system32\drivers\downld\29918058.exe
    c:\windows\system32\drivers\downld\29924501.exe
    c:\windows\system32\drivers\downld\29951271.exe
    c:\windows\system32\drivers\downld\29960475.exe
    c:\windows\system32\drivers\downld\29975061.exe
    c:\windows\system32\drivers\downld\299943.exe
    c:\windows\system32\drivers\downld\30058896.exe
    c:\windows\system32\drivers\downld\30070253.exe
    c:\windows\system32\drivers\downld\30117584.exe
    c:\windows\system32\drivers\downld\30127225.exe
    c:\windows\system32\drivers\downld\30188611.exe
    c:\windows\system32\drivers\downld\30222167.exe
    c:\windows\system32\drivers\downld\302904442.exe
    c:\windows\system32\drivers\downld\302921774.exe
    c:\windows\system32\drivers\downld\302922663.exe
    c:\windows\system32\drivers\downld\302938154.exe
    c:\windows\system32\drivers\downld\302945314.exe
    c:\windows\system32\drivers\downld\303335301.exe
    c:\windows\system32\drivers\downld\303344380.exe
    c:\windows\system32\drivers\downld\303346471.exe
    c:\windows\system32\drivers\downld\30387887.exe
    c:\windows\system32\drivers\downld\30389135.exe
    c:\windows\system32\drivers\downld\30410132.exe
    c:\windows\system32\drivers\downld\30411209.exe
    c:\windows\system32\drivers\downld\30437667.exe
    c:\windows\system32\drivers\downld\30441894.exe
    c:\windows\system32\drivers\downld\30445701.exe
    c:\windows\system32\drivers\downld\30529224.exe
    c:\windows\system32\drivers\downld\30534699.exe
    c:\windows\system32\drivers\downld\30542998.exe
    c:\windows\system32\drivers\downld\30549082.exe
    c:\windows\system32\drivers\downld\30555650.exe
    c:\windows\system32\drivers\downld\306526.exe
    c:\windows\system32\drivers\downld\30708157.exe
    c:\windows\system32\drivers\downld\30724412.exe
    c:\windows\system32\drivers\downld\30908446.exe
    c:\windows\system32\drivers\downld\30921613.exe
    c:\windows\system32\drivers\downld\30923734.exe
    c:\windows\system32\drivers\downld\311502.exe
    c:\windows\system32\drivers\downld\31165068.exe
    c:\windows\system32\drivers\downld\31198468.exe
    c:\windows\system32\drivers\downld\315574.exe
    c:\windows\system32\drivers\downld\31598298.exe
    c:\windows\system32\drivers\downld\31690885.exe
    c:\windows\system32\drivers\downld\317757625.exe
    c:\windows\system32\drivers\downld\317773412.exe
    c:\windows\system32\drivers\downld\317774177.exe
    c:\windows\system32\drivers\downld\317788841.exe
    c:\windows\system32\drivers\downld\317793926.exe
    c:\windows\system32\drivers\downld\318179530.exe
    c:\windows\system32\drivers\downld\318186565.exe
    c:\windows\system32\drivers\downld\318193819.exe
    c:\windows\system32\drivers\downld\319458.exe
    c:\windows\system32\drivers\downld\32061200.exe
    c:\windows\system32\drivers\downld\32279071.exe
    c:\windows\system32\drivers\downld\323639.exe
    c:\windows\system32\drivers\downld\324731.exe
    c:\windows\system32\drivers\downld\324903.exe
    c:\windows\system32\drivers\downld\332603710.exe
    c:\windows\system32\drivers\downld\332630323.exe
    c:\windows\system32\drivers\downld\332631103.exe
    c:\windows\system32\drivers\downld\332660276.exe
    c:\windows\system32\drivers\downld\332665439.exe
    c:\windows\system32\drivers\downld\333065051.exe
    c:\windows\system32\drivers\downld\333098716.exe
    c:\windows\system32\drivers\downld\333104254.exe
    c:\windows\system32\drivers\downld\347556717.exe
    c:\windows\system32\drivers\downld\347589181.exe
    c:\windows\system32\drivers\downld\347589930.exe
    c:\windows\system32\drivers\downld\347609493.exe
    c:\windows\system32\drivers\downld\347616279.exe
    c:\windows\system32\drivers\downld\348017747.exe
    c:\windows\system32\drivers\downld\348029525.exe
    c:\windows\system32\drivers\downld\351314.exe
    c:\windows\system32\drivers\downld\351829.exe
    c:\windows\system32\drivers\downld\352515.exe
    c:\windows\system32\drivers\downld\353061.exe
    c:\windows\system32\drivers\downld\360019.exe
    c:\windows\system32\drivers\downld\362447699.exe
    c:\windows\system32\drivers\downld\362472909.exe
    c:\windows\system32\drivers\downld\362474921.exe
    c:\windows\system32\drivers\downld\362513781.exe
    c:\windows\system32\drivers\downld\362524483.exe
    c:\windows\system32\drivers\downld\362940865.exe
    c:\windows\system32\drivers\downld\362969023.exe
    c:\windows\system32\drivers\downld\368271.exe
    c:\windows\system32\drivers\downld\368599.exe
    c:\windows\system32\drivers\downld\373169.exe
    c:\windows\system32\drivers\downld\375042.exe
    c:\windows\system32\drivers\downld\377401971.exe
    c:\windows\system32\drivers\downld\377402797.exe
    c:\windows\system32\drivers\downld\377444621.exe
    c:\windows\system32\drivers\downld\377453966.exe
    c:\windows\system32\drivers\downld\377457694.exe
    c:\windows\system32\drivers\downld\377844421.exe
    c:\windows\system32\drivers\downld\377851971.exe
    c:\windows\system32\drivers\downld\38859.exe
    c:\windows\system32\drivers\downld\392262829.exe
    c:\windows\system32\drivers\downld\392279224.exe
    c:\windows\system32\drivers\downld\392280114.exe
    c:\windows\system32\drivers\downld\392301299.exe
    c:\windows\system32\drivers\downld\392308007.exe
    c:\windows\system32\drivers\downld\392691098.exe
    c:\windows\system32\drivers\downld\392698867.exe
    c:\windows\system32\drivers\downld\407111519.exe
    c:\windows\system32\drivers\downld\407132563.exe
    c:\windows\system32\drivers\downld\407133281.exe
    c:\windows\system32\drivers\downld\407159551.exe
    c:\windows\system32\drivers\downld\407166166.exe
    c:\windows\system32\drivers\downld\407552689.exe
    c:\windows\system32\drivers\downld\407559990.exe
    c:\windows\system32\drivers\downld\421979272.exe
    c:\windows\system32\drivers\downld\421980801.exe
    c:\windows\system32\drivers\downld\422189827.exe
    c:\windows\system32\drivers\downld\422229030.exe
    c:\windows\system32\drivers\downld\422788886.exe
    c:\windows\system32\drivers\downld\422801990.exe
    c:\windows\system32\drivers\downld\435305.exe
    c:\windows\system32\drivers\downld\437261426.exe
    c:\windows\system32\drivers\downld\437282065.exe
    c:\windows\system32\drivers\downld\437283594.exe
    c:\windows\system32\drivers\downld\437324747.exe
    c:\windows\system32\drivers\downld\437334934.exe
    c:\windows\system32\drivers\downld\437756963.exe
    c:\windows\system32\drivers\downld\437773359.exe
    c:\windows\system32\drivers\downld\44492140.exe
    c:\windows\system32\drivers\downld\44492982.exe
    c:\windows\system32\drivers\downld\44529174.exe
    c:\windows\system32\drivers\downld\44547707.exe
    c:\windows\system32\drivers\downld\44548550.exe
    c:\windows\system32\drivers\downld\44550094.exe
    c:\windows\system32\drivers\downld\44583135.exe
    c:\windows\system32\drivers\downld\44588439.exe
    c:\windows\system32\drivers\downld\44600873.exe
    c:\windows\system32\drivers\downld\44673226.exe
    c:\windows\system32\drivers\downld\44674677.exe
    c:\windows\system32\drivers\downld\447629.exe
    c:\windows\system32\drivers\downld\44804111.exe
    c:\windows\system32\drivers\downld\44848883.exe
    c:\windows\system32\drivers\downld\44893640.exe
    c:\windows\system32\drivers\downld\44967397.exe
    c:\windows\system32\drivers\downld\44973200.exe
    c:\windows\system32\drivers\downld\44974417.exe
    c:\windows\system32\drivers\downld\45017224.exe
    c:\windows\system32\drivers\downld\45023042.exe
    c:\windows\system32\drivers\downld\45027520.exe
    c:\windows\system32\drivers\downld\45113227.exe
    c:\windows\system32\drivers\downld\45127922.exe
    c:\windows\system32\drivers\downld\452189458.exe
    c:\windows\system32\drivers\downld\452209317.exe
    c:\windows\system32\drivers\downld\452211595.exe
    c:\windows\system32\drivers\downld\452239457.exe
    c:\windows\system32\drivers\downld\452252171.exe
    c:\windows\system32\drivers\downld\452455783.exe
    c:\windows\system32\drivers\downld\452656276.exe
    c:\windows\system32\drivers\downld\452675869.exe
    c:\windows\system32\drivers\downld\453042.exe
    c:\windows\system32\drivers\downld\45335949.exe
    c:\windows\system32\drivers\downld\45344888.exe
    c:\windows\system32\drivers\downld\45346199.exe
    c:\windows\system32\drivers\downld\45369567.exe
    c:\windows\system32\drivers\downld\45471389.exe
    c:\windows\system32\drivers\downld\45492387.exe
    c:\windows\system32\drivers\downld\45497395.exe
    c:\windows\system32\drivers\downld\455086.exe
    c:\windows\system32\drivers\downld\45516364.exe
    c:\windows\system32\drivers\downld\45532074.exe
    c:\windows\system32\drivers\downld\45864793.exe
    c:\windows\system32\drivers\downld\45877008.exe
    c:\windows\system32\drivers\downld\45879285.exe
    c:\windows\system32\drivers\downld\467102748.exe
    c:\windows\system32\drivers\downld\467120376.exe
    c:\windows\system32\drivers\downld\467121250.exe
    c:\windows\system32\drivers\downld\467148285.exe
    c:\windows\system32\drivers\downld\467169985.exe
    c:\windows\system32\drivers\downld\467363395.exe
    c:\windows\system32\drivers\downld\467562827.exe
    c:\windows\system32\drivers\downld\467616194.exe
    c:\windows\system32\drivers\downld\47071492.exe
    c:\windows\system32\drivers\downld\47109946.exe
    c:\windows\system32\drivers\downld\47408.exe
    c:\windows\system32\drivers\downld\48044267.exe
    c:\windows\system32\drivers\downld\48073860.exe
    c:\windows\system32\drivers\downld\48191236.exe
    c:\windows\system32\drivers\downld\482027629.exe
    c:\windows\system32\drivers\downld\482031763.exe
    c:\windows\system32\drivers\downld\48203216.exe
    c:\windows\system32\drivers\downld\482032574.exe
    c:\windows\system32\drivers\downld\482071372.exe
    c:\windows\system32\drivers\downld\482077316.exe
    c:\windows\system32\drivers\downld\482281864.exe
    c:\windows\system32\drivers\downld\482896914.exe
    c:\windows\system32\drivers\downld\482904480.exe
    c:\windows\system32\drivers\downld\490155.exe
    c:\windows\system32\drivers\downld\49483267.exe
    c:\windows\system32\drivers\downld\49577819.exe
    c:\windows\system32\drivers\downld\496582.exe
    c:\windows\system32\drivers\downld\497405677.exe
    c:\windows\system32\drivers\downld\497423586.exe
    c:\windows\system32\drivers\downld\497424522.exe
    c:\windows\system32\drivers\downld\497458468.exe
    c:\windows\system32\drivers\downld\497463273.exe
    c:\windows\system32\drivers\downld\497470137.exe
    c:\windows\system32\drivers\downld\497666714.exe
    c:\windows\system32\drivers\downld\497868579.exe
    c:\windows\system32\drivers\downld\497885240.exe
    c:\windows\system32\drivers\downld\49966886.exe
    c:\windows\system32\drivers\downld\50214896.exe
    c:\windows\system32\drivers\downld\512301651.exe
    c:\windows\system32\drivers\downld\512331947.exe
    c:\windows\system32\drivers\downld\512333538.exe
    c:\windows\system32\drivers\downld\512379059.exe
    c:\windows\system32\drivers\downld\512411008.exe
    c:\windows\system32\drivers\downld\512615432.exe
    c:\windows\system32\drivers\downld\513783006.exe
    c:\windows\system32\drivers\downld\513868744.exe
    c:\windows\system32\drivers\downld\519358.exe
    c:\windows\system32\drivers\downld\523742.exe
    c:\windows\system32\drivers\downld\52603.exe
    c:\windows\system32\drivers\downld\528292518.exe
    c:\windows\system32\drivers\downld\528305201.exe
    c:\windows\system32\drivers\downld\528307338.exe
    c:\windows\system32\drivers\downld\528339630.exe
    c:\windows\system32\drivers\downld\528350675.exe
    c:\windows\system32\drivers\downld\528553492.exe
    c:\windows\system32\drivers\downld\528765279.exe
    c:\windows\system32\drivers\downld\528782330.exe
    c:\windows\system32\drivers\downld\533320.exe
    c:\windows\system32\drivers\downld\53555.exe
    c:\windows\system32\drivers\downld\56363.exe
    c:\windows\system32\drivers\downld\570526.exe
    c:\windows\system32\drivers\downld\570760.exe
    c:\windows\system32\drivers\downld\57891.exe
    c:\windows\system32\drivers\downld\58281.exe
    c:\windows\system32\drivers\downld\583287.exe
    c:\windows\system32\drivers\downld\585393.exe
    c:\windows\system32\drivers\downld\59288039.exe
    c:\windows\system32\drivers\downld\59289084.exe
    c:\windows\system32\drivers\downld\59324403.exe
    c:\windows\system32\drivers\downld\59339473.exe
    c:\windows\system32\drivers\downld\59361110.exe
    c:\windows\system32\drivers\downld\59547812.exe
    c:\windows\system32\drivers\downld\59548514.exe
    c:\windows\system32\drivers\downld\59601055.exe
    c:\windows\system32\drivers\downld\59613426.exe
    c:\windows\system32\drivers\downld\59750722.exe
    c:\windows\system32\drivers\downld\60002960.exe
    c:\windows\system32\drivers\downld\60009840.exe
    c:\windows\system32\drivers\downld\60301078.exe
    c:\windows\system32\drivers\downld\60302389.exe
    c:\windows\system32\drivers\downld\60328784.exe
    c:\windows\system32\drivers\downld\60336381.exe
    c:\windows\system32\drivers\downld\60684.exe
    c:\windows\system32\drivers\downld\60746305.exe
    c:\windows\system32\drivers\downld\60760907.exe
    c:\windows\system32\drivers\downld\60764807.exe
    c:\windows\system32\drivers\downld\62416.exe
    c:\windows\system32\drivers\downld\62717222.exe
    c:\windows\system32\drivers\downld\62742884.exe
    c:\windows\system32\drivers\downld\62743508.exe
    c:\windows\system32\drivers\downld\62855720.exe
    c:\windows\system32\drivers\downld\63072795.exe
    c:\windows\system32\drivers\downld\63081749.exe
    c:\windows\system32\drivers\downld\63211.exe
    c:\windows\system32\drivers\downld\63308934.exe
    c:\windows\system32\drivers\downld\63328403.exe
    c:\windows\system32\drivers\downld\63329588.exe
    c:\windows\system32\drivers\downld\63502812.exe
    c:\windows\system32\drivers\downld\63710028.exe
    c:\windows\system32\drivers\downld\63729715.exe
    c:\windows\system32\drivers\downld\65972.exe
    c:\windows\system32\drivers\downld\67454.exe
    c:\windows\system32\drivers\downld\67922.exe
    c:\windows\system32\drivers\downld\685608.exe
    c:\windows\system32\drivers\downld\69498.exe
    c:\windows\system32\drivers\downld\70496.exe
    c:\windows\system32\drivers\downld\721395.exe
    c:\windows\system32\drivers\downld\726917.exe
    c:\windows\system32\drivers\downld\736823.exe
    c:\windows\system32\drivers\downld\74084.exe
    c:\windows\system32\drivers\downld\74424722.exe
    c:\windows\system32\drivers\downld\74425362.exe
    c:\windows\system32\drivers\downld\74625293.exe
    c:\windows\system32\drivers\downld\74724.exe
    c:\windows\system32\drivers\downld\74827798.exe
    c:\windows\system32\drivers\downld\74834615.exe
    c:\windows\system32\drivers\downld\74898123.exe
    c:\windows\system32\drivers\downld\749085.exe
    c:\windows\system32\drivers\downld\75193308.exe
    c:\windows\system32\drivers\downld\75195196.exe
    c:\windows\system32\drivers\downld\75225554.exe
    c:\windows\system32\drivers\downld\75234492.exe
    c:\windows\system32\drivers\downld\75644.exe
    c:\windows\system32\drivers\downld\75644323.exe
    c:\windows\system32\drivers\downld\75663636.exe
    c:\windows\system32\drivers\downld\75670110.exe
    c:\windows\system32\drivers\downld\75722.exe
    c:\windows\system32\drivers\downld\75785.exe
    c:\windows\system32\drivers\downld\75790028.exe
    c:\windows\system32\drivers\downld\75828778.exe
    c:\windows\system32\drivers\downld\75977166.exe
    c:\windows\system32\drivers\downld\76004279.exe
    c:\windows\system32\drivers\downld\76119096.exe
    c:\windows\system32\drivers\downld\76188002.exe
    c:\windows\system32\drivers\downld\76580.exe
    c:\windows\system32\drivers\downld\76702446.exe
    c:\windows\system32\drivers\downld\76766500.exe
    c:\windows\system32\drivers\downld\76846.exe
    c:\windows\system32\drivers\downld\774576.exe
    c:\windows\system32\drivers\downld\77556739.exe
    c:\windows\system32\drivers\downld\77585116.exe
    c:\windows\system32\drivers\downld\77587409.exe
    c:\windows\system32\drivers\downld\77666532.exe
    c:\windows\system32\drivers\downld\77936601.exe
    c:\windows\system32\drivers\downld\77955025.exe
    c:\windows\system32\drivers\downld\78163364.exe
    c:\windows\system32\drivers\downld\78165299.exe
    c:\windows\system32\drivers\downld\78272175.exe
    c:\windows\system32\drivers\downld\783078.exe
    c:\windows\system32\drivers\downld\78489937.exe
    c:\windows\system32\drivers\downld\784934.exe
    c:\windows\system32\drivers\downld\78515303.exe
    c:\windows\system32\drivers\downld\788429.exe
    c:\windows\system32\drivers\downld\802235.exe
    c:\windows\system32\drivers\downld\820892.exe
    c:\windows\system32\drivers\downld\842374.exe
    c:\windows\system32\drivers\downld\84661.exe
    c:\windows\system32\drivers\downld\89429320.exe
    c:\windows\system32\drivers\downld\89430053.exe
    c:\windows\system32\drivers\downld\89482.exe
    c:\windows\system32\drivers\downld\89645568.exe
    c:\windows\system32\drivers\downld\89847730.exe
    c:\windows\system32\drivers\downld\89858135.exe
    c:\windows\system32\drivers\downld\90130669.exe
    c:\windows\system32\drivers\downld\90135755.exe
    c:\windows\system32\drivers\downld\90220120.exe
    c:\windows\system32\drivers\downld\90240026.exe
    c:\windows\system32\drivers\downld\90433.exe
    c:\windows\system32\drivers\downld\90683.exe
    c:\windows\system32\drivers\downld\90892469.exe
    c:\windows\system32\drivers\downld\90929893.exe
    c:\windows\system32\drivers\downld\90944636.exe
    c:\windows\system32\drivers\downld\92374010.exe
    c:\windows\system32\drivers\downld\92391389.exe
    c:\windows\system32\drivers\downld\92392169.exe
    c:\windows\system32\drivers\downld\92419812.exe
    c:\windows\system32\drivers\downld\92630148.exe
    c:\windows\system32\drivers\downld\92638151.exe
    c:\windows\system32\drivers\downld\92953507.exe
    c:\windows\system32\drivers\downld\92955566.exe
    c:\windows\system32\drivers\downld\93165232.exe
    c:\windows\system32\drivers\downld\93444.exe
    c:\windows\system32\drivers\downld\93466002.exe
    c:\windows\system32\drivers\downld\93502334.exe
    c:\windows\system32\drivers\downld\95613.exe
    c:\windows\system32\drivers\downld\95862.exe
    c:\windows\system32\drivers\downld\98935.exe
    c:\windows\system32\smp

    .
    ((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    -------\Legacy_SROSA


    ((((((((((((((((((((((((((((( Fichiers créés du 2008-10-25 au 2008-11-25 ))))))))))))))))))))))))))))))))))))
    .

    2008-11-25 08:46 . 2008-11-25 08:49 <REP> d-------- C:\ComboFix2
    2008-11-21 03:00 . 2008-11-21 03:00 <REP> d-------- C:\f90068dcf81718295ed3
    2008-11-20 15:15 . 2008-11-20 15:15 <REP> d-------- c:\users\All Users\Messenger Plus!
    2008-11-20 15:15 . 2008-11-20 15:15 <REP> d-------- c:\progra~2\Messenger Plus!
    2008-11-20 13:11 . 2008-11-20 13:11 <REP> d-------- c:\program files\Messenger Plus! Live
    2008-11-20 12:25 . 2008-09-10 04:25 1,341,440 --a------ c:\windows\System32\msxml6.dll
    2008-11-20 12:25 . 2008-09-05 05:48 1,194,496 --a------ c:\windows\System32\msxml3.dll
    2008-11-20 12:25 . 2008-08-26 02:11 211,456 --a------ c:\windows\System32\drivers\mrxsmb10.sys
    2008-11-20 12:25 . 2008-09-10 04:21 2,048 --a------ c:\windows\System32\msxml6r.dll
    2008-11-20 12:25 . 2008-09-05 05:45 2,048 --a------ c:\windows\System32\msxml3r.dll
    2008-11-17 18:48 . 2008-11-17 18:48 <REP> d-------- c:\program files\Bethesda Softworks
    2008-11-17 18:46 . 2008-11-17 18:46 <REP> d-------- c:\windows\System32\xlive
    2008-11-17 18:43 . 2008-11-17 18:43 524,288 --ahs---- C:\ntuser.dat{2f0559a9-b42a-11dd-bfe8-001e8c1a8e70}.TMContainer00000000000000000002.regtrans-ms
    2008-11-17 18:43 . 2008-11-17 18:43 524,288 --ahs---- C:\ntuser.dat{2f0559a9-b42a-11dd-bfe8-001e8c1a8e70}.TMContainer00000000000000000001.regtrans-ms
    2008-11-17 18:43 . 2008-11-17 18:43 524,288 --ahs---- C:\ntuser.dat{2f05599d-b42a-11dd-bfe8-001e8c1a8e70}.TMContainer00000000000000000002.regtrans-ms
    2008-11-17 18:43 . 2008-11-17 18:43 524,288 --ahs---- C:\ntuser.dat{2f05599d-b42a-11dd-bfe8-001e8c1a8e70}.TMContainer00000000000000000001.regtrans-ms
    2008-11-17 18:43 . 2008-11-25 09:16 262,144 --a------ C:\ntuser.dat
    2008-11-17 18:43 . 2008-11-17 18:43 65,536 --ahs---- C:\ntuser.dat{2f0559a9-b42a-11dd-bfe8-001e8c1a8e70}.TM.blf
    2008-11-17 18:43 . 2008-11-17 18:43 65,536 --ahs---- C:\ntuser.dat{2f05599d-b42a-11dd-bfe8-001e8c1a8e70}.TM.blf
    2008-11-17 18:43 . 2008-11-25 09:16 5,120 --ah----- C:\ntuser.dat.LOG1
    2008-11-17 18:43 . 2008-11-17 18:43 0 --ah----- C:\ntuser.dat.LOG2
    2008-11-17 12:54 . 2008-11-17 12:54 <REP> d--h----- c:\windows\PIF
    2008-11-16 22:14 . 2008-11-12 17:53 51,792 --a------ c:\windows\System32\drivers\aswMonFlt.sys
    2008-11-13 16:52 . 2008-11-13 16:52 846,334 --a------ c:\users\Yann\CALL.OF.DUTY.2.V1.01.INTELUPDATE.DEVIANCE.NOCD.ZIP
    2008-11-13 16:51 . 2008-11-13 16:51 43,102 --a------ c:\users\Yann\CALL.OF.DUTY.2.V1.0.MELATONIN.ICU.PUBLICSERVERFIX.ZIP
    2008-11-12 13:11 . 2008-11-12 13:11 <REP> d-------- c:\program files\Macromedia
    2008-11-12 13:03 . 2008-11-12 13:03 335 --a------ c:\windows\mozregistry.dat
    2008-11-12 13:02 . 2008-11-12 13:02 280 --a------ c:\windows\game.ini
    2008-11-10 16:17 . 2008-04-28 15:53 805,400 -ra------ c:\windows\System32\tmpDCD6.tmp
    2008-11-10 02:30 . 2008-11-10 02:31 <REP> d-------- c:\users\Yann\AppData\Roaming\Thunderbird
    2008-11-10 02:30 . 2008-11-10 02:30 <REP> d-------- c:\program files\Mozilla Thunderbird
    2008-11-10 00:59 . 2008-11-10 00:59 <REP> d-------- c:\program files\Ubi Soft
    2008-11-10 00:59 . 2001-05-04 12:05 505,104 --a------ c:\windows\System32\msxml.dll
    2008-11-10 00:59 . 2000-03-17 09:21 69,632 --a------ c:\windows\System32\xmltok.dll
    2008-11-10 00:59 . 2000-03-17 09:21 36,864 --a------ c:\windows\System32\xmlparse.dll
    2008-11-10 00:59 . 2002-04-24 13:43 35,840 --a------ c:\windows\System32\comdlg32.oca
    2008-11-10 00:59 . 2002-04-09 18:23 29,184 --a------ c:\windows\System32\MSINET.oca
    2008-11-10 00:59 . 2001-05-04 12:05 28,432 --a------ c:\windows\System32\msxmlr.dll
    2008-11-10 00:59 . 2002-06-17 08:25 26,088 --a------ c:\windows\System32\xmlinst.exe
    2008-11-10 00:59 . 2002-01-07 17:30 24,576 --a------ c:\windows\System32\msxml3a.dll
    2008-11-09 23:43 . 2008-11-12 16:16 <REP> d-------- c:\users\Yann\AppData\Roaming\GigaTribe
    2008-11-09 23:43 . 2008-11-09 23:43 <REP> d-------- c:\program files\GigaTribe
    2008-11-08 12:05 . 2008-11-08 12:05 <REP> d-------- c:\users\Yann\AppData\Roaming\DAEMON Tools Pro
    2008-11-08 12:03 . 2008-11-08 12:03 <REP> d-------- c:\users\All Users\DAEMON Tools Pro
    2008-11-08 12:03 . 2008-11-08 12:03 <REP> d-------- c:\progra~2\DAEMON Tools Pro
    2008-11-08 12:02 . 2008-11-08 12:06 <REP> d-------- c:\program files\DAEMON Tools Pro
    2008-11-08 11:53 . 2008-11-08 11:53 <REP> d-------- c:\users\All Users\Elaborate Bytes
    2008-11-08 11:53 . 2008-11-08 11:53 <REP> d-------- c:\program files\Elaborate Bytes
    2008-11-08 11:53 . 2008-11-08 11:53 <REP> d-------- c:\progra~2\Elaborate Bytes
    2008-11-08 11:52 . 2008-11-08 11:52 <REP> d-------- c:\users\Yann\AppData\Roaming\SlySoft
    2008-11-05 23:28 . 2008-11-10 16:16 <REP> d-------- c:\program files\EasyPHP 2.0b1
    2008-11-03 20:32 . 2008-11-03 20:32 <REP> d-------- c:\program files\AsfTools 3.1
    2008-10-29 15:47 . 2008-08-12 04:29 441,856 --a------ c:\windows\System32\win32spl.dll
    2008-10-29 15:47 . 2008-08-12 04:29 37,376 --a------ c:\windows\System32\printcom.dll
    2008-10-29 10:51 . 2008-10-29 10:51 <REP> d-------- c:\program files\Attansic
    2008-10-28 17:07 . 2008-10-28 17:07 <REP> d-------- c:\users\Yann\AppData\Roaming\Uniblue
    2008-10-27 12:48 . 2008-10-27 12:48 38 --a------ c:\windows\avisplitter.INI

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2008-11-25 07:59 --------- d-----w c:\progra~2\Microsoft Help
    2008-11-25 07:41 --------- d-----w c:\program files\Spybot - Search & Destroy
    2008-11-24 11:10 250,498,312 ----a-w c:\windows\DUMP3033.tmp
    2008-11-24 10:50 5,767,168 --sha-w c:\users\Invité\ntuser.dat
    2008-11-24 10:50 5,767,168 --sha-w c:\users\Invité\ntuser.dat
    2008-11-24 10:50 --------- d-----w c:\progra~2\Google Updater
    2008-11-20 11:28 --------- d-----w c:\progra~2\WLInstaller
    2008-11-18 22:50 275,115,656 ----a-w c:\windows\DUMP33cc.tmp
    2008-11-17 23:33 --------- d-----w c:\program files\UnrealTournament
    2008-11-17 22:02 313,421,448 ----a-w c:\windows\DUMP2db4.tmp
    2008-11-17 17:49 --------- d--h--w c:\program files\InstallShield Installation Information
    2008-11-16 21:28 --------- d-----w c:\progra~2\Spybot - Search & Destroy
    2008-11-12 11:58 --------- d-----w c:\program files\Activision
    2008-11-10 15:12 294,768,264 ----a-w c:\windows\DUMP3bf6.tmp
    2008-11-09 23:33 327,036,552 ----a-w c:\windows\DUMP3439.tmp
    2008-11-09 22:57 --------- d-----w c:\program files\KONAMI
    2008-11-02 19:54 22,328 ----a-w c:\users\Yann\AppData\Roaming\PnkBstrK.sys
    2008-11-02 19:51 --------- d-----w c:\program files\Ubisoft
    2008-10-31 17:27 --------- d-----w c:\program files\K-Lite Codec Pack
    2008-10-23 11:28 --------- d-----w c:\progra~2\KONAMI
    2008-10-21 19:24 --------- d-----w c:\program files\Hjsplit
    2008-10-21 19:01 --------- d-----w c:\program files\Microsoft Silverlight
    2008-10-20 17:50 --------- d-----w c:\program files\ESET
    2008-10-20 17:46 --------- d-----w c:\program files\Anti Trojan Elite
    2008-10-20 09:41 --------- d-----w c:\program files\Ligos
    2008-10-18 00:15 --------- dc-h--w c:\progra~2\{0691F710-1ECA-4B5A-9727-25554F1BFDC6}
    2008-10-18 00:05 --------- d-----w c:\program files\Electronic Arts
    2008-10-18 00:05 --------- d-----w c:\progra~2\Electronic Arts
    2008-10-17 17:42 319,456 ----a-w c:\windows\DIFxAPI.dll
    2008-10-15 18:59 --------- d-----w c:\program files\RocketDock
    2008-10-15 18:25 --------- d-----w c:\program files\Windows Mail
    2008-10-15 17:49 --------- d-----w c:\program files\EA Sports
    2008-10-15 15:49 --------- d-----w c:\program files\Common Files\Wise Installation Wizard
    2008-10-15 15:49 --------- d-----w c:\program files\AGEIA Technologies
    2008-10-15 13:39 94,208 ----a-w c:\users\Yann\AppData\Roaming\ezplay.sys
    2008-10-15 13:39 47,360 ----a-w c:\users\Yann\AppData\Roaming\pcouffin.sys
    2008-10-15 13:39 --------- d-----w c:\users\Yann\AppData\Roaming\Vso
    2008-10-15 13:37 --------- d-----w c:\program files\SystemRequirementsLab
    2008-10-14 17:06 --------- d-----w c:\users\Yann\AppData\Roaming\Disney Interactive Studios
    2008-10-14 16:44 --------- d-----w c:\program files\Disney Interactive Studios
    2008-10-13 23:16 --------- d-----w c:\progra~2\NVIDIA
    2008-10-13 22:46 --------- d-----w c:\program files\ma-config.com
    2008-10-13 22:46 --------- d-----w c:\progra~2\ma-config.com
    2008-10-13 17:43 --------- d-----w c:\progra~2\Codemasters
    2008-10-13 17:32 --------- d-----w c:\program files\OpenAL
    2008-10-13 17:12 --------- d-----w c:\program files\Codemasters
    2008-10-13 12:13 279,712 ----a-w c:\windows\system32\drivers\atksgt.sys
    2008-10-13 12:13 25,888 ----a-w c:\windows\system32\drivers\lirsgt.sys
    2008-10-10 14:54 716,272 ----a-w c:\windows\system32\drivers\sptd.sys
    2008-10-10 14:46 --------- d-----w c:\program files\Innovative Solutions
    2008-10-10 14:46 --------- d-----w c:\progra~2\Innovative Solutions
    2008-10-10 14:43 94,208 ----a-w c:\windows\system32\drivers\ezplay.sys
    2008-10-10 14:43 47,360 ----a-w c:\windows\system32\drivers\pcouffin.sys
    2008-10-10 14:39 --------- d-----w c:\program files\JeroboamV5
    2008-10-10 14:39 --------- d-----w c:\program files\Common Files\Borland Shared
    2008-10-10 14:38 --------- d-----w c:\program files\CaveAVin
    2008-10-10 14:34 --------- d-----w c:\program files\Nero
    2008-10-10 14:34 --------- d-----w c:\program files\Common Files\Ahead
    2008-10-10 14:28 --------- d-----w c:\progra~2\Nero
    2008-10-09 09:51 --------- d-----w c:\program files\Picasa2
    2008-10-08 22:03 --------- d-----w c:\users\Yann\AppData\Roaming\GHISLER
    2008-10-07 17:51 --------- d-----w c:\program files\Ableton
    2008-10-07 12:18 --------- d-----w c:\users\Yann\AppData\Roaming\Ableton
    2008-10-06 22:17 --------- d-----w c:\users\Yann\AppData\Roaming\Leadertech
    2008-10-06 16:00 --------- d-----w c:\program files\WinISO
    2008-10-02 03:49 52,736 ----a-w c:\windows\AppPatch\iebrshim.dll
    2008-10-01 13:32 82,272 ----a-w c:\windows\system32\drivers\jraid.sys
    2008-07-24 02:09 174 --sha-w c:\program files\desktop.ini
    2008-05-01 13:34 23 --sha-w c:\windows\System32\aaedfbabc_z.dll
    .

    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-03-25 1232896]
    "RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-03-19 630784]
    "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 201728]
    "CanalPlayer"="c:\program files\Lecteur CANALPLAY\CanalPlayer.exe" [2008-06-20 2144128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "UberIcon"="c:\program files\UberIcon\UberIcon Manager.exe" [2005-08-12 180224]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-09-17 13580832]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-09-17 92704]
    "JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2007-03-20 36864]
    "avast!"="c:\program files\Alwil Software\Avast4\ashDisp.exe" [2008-11-25 81000]
    "RtHDVCpl"="RtHDVCpl.exe" [2007-03-23 c:\windows\RtHDVCpl.exe]

    c:\users\Yann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    GigaTribe.lnk - c:\program files\GigaTribe\gigatribe.exe [2008-11-09 1070592]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
    "NoSMBalloonTip"= 1 (0x1)

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
    "AntiVirusOverride"=dword:00000001
    "AntiSpywareOverride"=dword:00000001
    "FirewallOverride"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-2751909203-2038563907-3353613837-1000]
    "EnableNotificationsRef"=dword:00000002

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
    "{BF2E4868-1AEF-4B14-854E-EFB44A5FEDF7}"= UDP:c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:Logitech Desktop Messenger
    "{C1573EA9-0FEE-4B4D-9EB2-F92E9AA538C9}"= TCP:c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:Logitech Desktop Messenger
    "{B8596EAC-33E1-4F61-AD72-2E9629845A71}"= UDP:c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:Logitech Desktop Messenger
    "{B14BF7BF-36F2-457E-A46B-E53B1BC2585B}"= TCP:c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:Logitech Desktop Messenger
    "{7BE39979-4888-408C-BAAA-50A9BE1BDB74}"= UDP:c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:Logitech Desktop Messenger
    "{5EF56BD9-BA8E-4C82-94A8-40BD399A82E0}"= TCP:c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:Logitech Desktop Messenger
    "{D97A80C9-31F7-4764-8C5B-0ABB32CC604F}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
    "{FC24D301-0771-4441-A524-EE740374AF4B}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
    "{F51018CB-7C1D-445C-9F6E-D33A8947ABC2}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
    "TCP Query User{F9E0A61B-FDAC-48CD-ADD4-8316698F5B7D}c:\\program files\\windows sidebar\\sidebar.exe"= UDP:c:\program files\windows sidebar\sidebar.exe:Volet Windows
    "UDP Query User{9A88A4D6-0872-4D78-A507-ECDFCE367D43}c:\\program files\\windows sidebar\\sidebar.exe"= TCP:c:\program files\windows sidebar\sidebar.exe:Volet Windows
    "{9637138F-BE07-47F7-9C33-F2FA8E77CC14}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
    "TCP Query User{D2881981-D2EE-459F-8991-640D1FFD2B63}c:\\program files\\codemasters\\dirt\\dirt.exe"= UDP:c:\program files\codemasters\dirt\dirt.exe:D iRT Executable
    "UDP Query User{A5CCC40D-D1CB-440F-BF86-C463CA61B25E}c:\\program files\\codemasters\\dirt\\dirt.exe"= TCP:c:\program files\codemasters\dirt\dirt.exe:D iRT Executable
    "{61EB90EE-DC8B-4B09-A941-31566B870106}"= UDP:c:\program files\Unreal Tournament 3\Binaries\UT3.exe:Unreal Tournament 3
    "{F92A1211-3665-45EF-B04E-09F74B873CEA}"= TCP:c:\program files\Unreal Tournament 3\Binaries\UT3.exe:Unreal Tournament 3
    "TCP Query User{00214EBA-7539-41BC-BEAB-9857C061188E}c:\\program files\\emule\\emule.exe"= UDP:c:\program files\emule\emule.exe:eMule
    "UDP Query User{51199953-C589-41F7-B317-CE0B417950D4}c:\\program files\\emule\\emule.exe"= TCP:c:\program files\emule\emule.exe:eMule
    "{DD438799-895B-4B8B-8FDD-AB0F421B72DE}"= UDP:c:\program files\Sega\SEGA Rally\SEGA Rally.exe:SEGA Rally
    "{743FD1CA-B628-47B1-B53B-DDF3B6B90654}"= TCP:c:\program files\Sega\SEGA Rally\SEGA Rally.exe:SEGA Rally
    "{1D4EE313-904F-4D1D-8838-C0874A99825C}"= UDP:c:\program files\Sega\SEGA Rally\SEGA Rally_SSE1.exe:SEGA Rally
    "{647589FD-F652-43DE-B57B-51CD2D2FE59A}"= TCP:c:\program files\Sega\SEGA Rally\SEGA Rally_SSE1.exe:SEGA Rally
    "{8B5BC726-F947-44C8-821E-8C8610F103CA}"= UDP:c:\program files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe:Crysis_32
    "{A1D88158-BA24-4386-91F7-390BAF0350DF}"= TCP:c:\program files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe:Crysis_32
    "{753A6A64-84F1-4706-BC29-761658B6022D}"= UDP:c:\program files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe:CrysisDedicatedServer_32
    "{75654DB8-5439-4BD4-ADF1-6BB21BD4EDA4}"= TCP:c:\program files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe:CrysisDedicatedServer_32
    "{E50D4531-0227-4E19-A583-F73D9A4E56D3}"= UDP:c:\windows\System32\PnkBstrA.exe:p nkBstrA
    "{B2190EC9-E0AC-4DA5-88FC-283ECAD5CF32}"= TCP:c:\windows\System32\PnkBstrA.exe:p nkBstrA
    "{3F3AFECF-ED59-48E9-9856-E45F0C9EB081}"= UDP:c:\windows\System32\PnkBstrB.exe:p nkBstrB
    "{C9449DD3-4FB1-4648-BD7E-B7722081DDBC}"= TCP:c:\windows\System32\PnkBstrB.exe:p nkBstrB
    "{C88B5298-29C0-4CE8-80A5-CCF382702AE4}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
    "{AE0E899C-6DD8-4407-B942-37705B11C6B5}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
    "{B38F8E8F-D99F-456B-A03D-F4AD1B80C8AB}"= UDP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty(R) 4 - Modern Warfare(TM)
    "{AB63370F-3E73-4A85-9871-D21AB2B4EDCD}"= TCP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty(R) 4 - Modern Warfare(TM)
    "TCP Query User{B3AD62BB-D95E-487E-935E-009ECA5720D5}c:\\program files\\atari\\test drive unlimited\\testdriveunlimited.exe"= UDP:c:\program files\atari\test drive unlimited\testdriveunlimited.exe:Test Drive Unlimited
    "UDP Query User{3B1DC0C5-1E53-4C2B-BA37-CBF34162BA03}c:\\program files\\atari\\test drive unlimited\\testdriveunlimited.exe"= TCP:c:\program files\atari\test drive unlimited\testdriveunlimited.exe:Test Drive Unlimited
    "{A55CBF83-B8F1-4F54-8460-5A0C1DC41AFE}"= UDP:c:\program files\KONAMI\Pro Evolution Soccer 2008\PES2008.exe:p ro Evolution Soccer 2008
    "{C5D81720-1F40-466C-A450-583D4E856F8D}"= TCP:c:\program files\KONAMI\Pro Evolution Soccer 2008\PES2008.exe:p ro Evolution Soccer 2008
    "TCP Query User{923EA368-D00E-42E0-9DFC-93A0BC448DA8}c:\\program files\\codemasters\\dirt\\dirt.exe"= UDP:c:\program files\codemasters\dirt\dirt.exe:D iRT Executable
    "UDP Query User{F03DDD3F-58F3-4C92-8E65-DA1860EAF4F5}c:\\program files\\codemasters\\dirt\\dirt.exe"= TCP:c:\program files\codemasters\dirt\dirt.exe:D iRT Executable
    "TCP Query User{6F6B4325-1BEC-4A67-A2DD-93A3D6340815}c:\\program files\\tmnationsforever\\tmforever.exe"= UDP:c:\program files\tmnationsforever\tmforever.exe:TmForever
    "UDP Query User{79590269-028E-4544-9DD6-249B9F420D22}c:\\program files\\tmnationsforever\\tmforever.exe"= TCP:c:\program files\tmnationsforever\tmforever.exe:TmForever
    "TCP Query User{3B183167-7F9D-43F5-950B-C9C9A44D07AE}c:\\program files\\touchstone\\turok\\binaries\\turokgame.exe"= UDP:c:\program files\touchstone\turok\binaries\turokgame.exe:Turok
    "UDP Query User{8FAFEB6D-33DC-4339-B08C-EF79CEBB6136}c:\\program files\\touchstone\\turok\\binaries\\turokgame.exe"= TCP:c:\program files\touchstone\turok\binaries\turokgame.exe:Turok
    "TCP Query User{BC1C1590-E8E2-4FAF-8DD9-6B1EA7031CB0}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
    "UDP Query User{B3D2804F-D975-4F31-AE69-6E06A657F8F4}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
    "{FE9760C2-78C1-41AE-BBA6-557DCDA542A2}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
    "{81CE33C7-9339-42E0-9986-36FBF7F97C2E}"= UDP:c:\program files\KONAMI\Pro Evolution Soccer 2008\PES2008.exe:p ro Evolution Soccer 2008
    "{05B176F3-9499-4AED-B204-AF74CE00D9C4}"= TCP:c:\program files\KONAMI\Pro Evolution Soccer 2008\PES2008.exe:p ro Evolution Soccer 2008
    "{F9692F78-C2A9-4AD7-A66F-9FE3A6513C51}"= UDP:c:\program files\RealVNC\VNC4\winvnc4.exe:VNC Server
    "{D9BB037E-861F-4464-ACA8-9FB7C083FF9B}"= TCP:c:\program files\RealVNC\VNC4\winvnc4.exe:VNC Server
    "{11C11EA7-5E18-481C-B526-0BCFBB39E355}"= UDP:c:\program files\Lecteur CANALPLAY\CanalPlayer.exe:Lecteur CANALPLAY
    "{CB0FAAA5-7F0C-4CDA-A78C-9BD9733FD60B}"= TCP:c:\program files\Lecteur CANALPLAY\CanalPlayer.exe:Lecteur CANALPLAY
    "TCP Query User{92ABEC45-8D72-479A-919E-41E4EF2EA10E}c:\\program files\\unrealtournament\\system\\unrealtournament.exe"= UDP:c:\program files\unrealtournament\system\unrealtournament.exe:UnrealTournament
    "UDP Query User{8F50A582-CAB5-4264-9058-E723D707E187}c:\\program files\\unrealtournament\\system\\unrealtournament.exe"= TCP:c:\program files\unrealtournament\system\unrealtournament.exe:UnrealTournament
    "TCP Query User{8B859599-47E2-4705-B299-B851148D959D}c:\\program files\\unreal tournament 3\\binaries\\ut3.exe"= UDP:c:\program files\unreal tournament 3\binaries\ut3.exe:UT3
    "UDP Query User{11C53071-0210-4B46-A4B1-4B472BB2C5BC}c:\\program files\\unreal tournament 3\\binaries\\ut3.exe"= TCP:c:\program files\unreal tournament 3\binaries\ut3.exe:UT3
    "TCP Query User{B3AFE9CB-D34B-4930-B417-C293B0B1B433}c:\\emule\\emule.exe"= UDP:c:\emule\emule.exe:eMule
    "UDP Query User{75EA0144-33DD-4BD6-8B8E-327BFCA173CB}c:\\emule\\emule.exe"= TCP:c:\emule\emule.exe:eMule
    "{FA4ED317-9E77-45FF-B520-854AD9A0CD5E}"= UDP:12279:eMule TCP
    "{ABFCB61D-828F-49CD-9529-3BA742A1FAAF}"= TCP:32634:eMule UDP
    "{010AB5E0-83AA-4DF0-8B2D-3A588BBBB5B0}"= UDP:c:\program files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (CLI)
    "{18715426-267C-449C-917B-2EC102710CF9}"= TCP:c:\program files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (CLI)
    "{F9311D1D-3186-491B-94A2-7AC4BDA77335}"= UDP:c:\program files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (SRV)
    "{01520001-2DEA-4520-832B-6E1D4DEAFA9A}"= TCP:c:\program files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (SRV)
    "{975DF6C0-0C4C-40A5-8B73-E6CB23BBB21D}"= UDP:c:\program files\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (CLI)
    "{9901B4D5-5FEB-49DB-8150-C4707EDD4A35}"= TCP:c:\program files\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (CLI)
    "{E2ABCB61-80E7-49F5-9B5B-D7ECF7813112}"= UDP:c:\program files\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (SRV)
    "{D57CC741-212C-4B25-8733-67DCDDBA6F6A}"= TCP:c:\program files\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (SRV)
    "{31686067-5F6C-43B3-8363-559A36E9DB44}"= UDP:c:\program files\Codemasters\GRID\GRID.exe:GRID
    "{2914BBE7-8350-41C5-B252-D1CE494A4DB9}"= TCP:c:\program files\Codemasters\GRID\GRID.exe:GRID
    "{E14895D2-2B33-4092-A94B-014F439ECC8F}"= UDP:48113:LocalSubnet:LocalSubnet:maconfig_tcp
    "{21D49845-F257-49BE-B950-664018194926}"= TCP:48113:LocalSubnet:LocalSubnet:maconfig_udp
    "{A1A7805F-3BD0-460F-ADC8-19AE20ABE58D}"= UDP:c:\program files\ma-config.com\maconfservice.exe:maconfservice
    "{8D550A7E-143C-41C2-B671-33D5BC237C6A}"= TCP:c:\program files\ma-config.com\maconfservice.exe:maconfservice
    "{53B1E82D-5E55-42C0-8C8B-BE623311995D}"= UDP:c:\program files\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\Binaries\MOHA.exe:Medal of Honor Airborne
    "{BC1899DA-C05B-4F98-BFE7-11F8C9B3EE3C}"= TCP:c:\program files\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\Binaries\MOHA.exe:Medal of Honor Airborne
    "TCP Query User{5069DCAD-9419-4B59-B5B2-DB3960C975DF}c:\\program files\\electronic arts\\eadm\\core.exe"= UDP:c:\program files\electronic arts\eadm\core.exe:EA Download Manager
    "UDP Query User{40DF1BC8-2CCC-41D9-9D66-59A65A46F07B}c:\\program files\\electronic arts\\eadm\\core.exe"= TCP:c:\program files\electronic arts\eadm\core.exe:EA Download Manager
    "{AF4F3EE7-3915-4E4B-9027-D80AB1CB59A5}"= UDP:c:\program files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe:p ro Evolution Soccer 2009
    "{038CD9F1-1739-47C4-83DF-E37A508E9361}"= TCP:c:\program files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe:p ro Evolution Soccer 2009
    "TCP Query User{58B52E77-2399-4A8D-BFB3-B88EC1279621}c:\\emule\\emule.exe"= UDP:c:\emule\emule.exe:eMule
    "UDP Query User{9394BFA6-7B5B-4931-87E4-1E0D420F3318}c:\\emule\\emule.exe"= TCP:c:\emule\emule.exe:eMule
    "TCP Query User{11D920A3-D036-4C0A-BB05-719D79DC30FA}c:\\program files\\disney interactive studios\\pure\\pure.exe"= UDP:c:\program files\disney interactive studios\pure\pure.exe:p ure
    "UDP Query User{D046A2F2-885B-4576-AE41-B7990A9BB71D}c:\\program files\\disney interactive studios\\pure\\pure.exe"= TCP:c:\program files\disney interactive studios\pure\pure.exe:p ure
    "{8AE8446B-CFB0-46D7-8638-634125D277DC}"= UDP:c:\program files\Ubisoft\Far Cry 2\bin\FarCry2.exe:Far Cry 2
    "{C25B14EC-4D7D-45FB-B328-751EBED80172}"= TCP:c:\program files\Ubisoft\Far Cry 2\bin\FarCry2.exe:Far Cry 2
    "{291EF56F-1719-42C7-9BF3-9B000AA4181E}"= UDP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:Far Cry 2 Updater
    "{D7399423-BDD6-4593-A9D4-C4D1C4E800C6}"= TCP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:Far Cry 2 Updater
    "{3E5A9677-4A3E-4179-8417-6FC4050C6D0F}"= UDP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:Editeur
    "{4E3688EE-2EFA-4750-BBC3-D2BF00416B0A}"= TCP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:Editeur
    "{91D10DA8-0B87-4228-9AFE-15A2C3411135}"= UDP:c:\windows\System32\PnkBstrA.exe:p nkBstrA
    "{D7BB42C9-768C-44B3-A672-245BB95305C0}"= TCP:c:\windows\System32\PnkBstrA.exe:p nkBstrA
    "{151798F8-B9CB-4CEE-BA45-9B7DCCCBCFE8}"= UDP:c:\windows\System32\PnkBstrB.exe:p nkBstrB
    "{75A3BD91-8AC3-430A-87E6-B20456F17F42}"= TCP:c:\windows\System32\PnkBstrB.exe:p nkBstrB
    "TCP Query User{50A889A6-2CEA-45B4-8260-4904E33F0102}c:\\program files\\gigatribe\\gigatribe.exe"= UDP:c:\program files\gigatribe\gigatribe.exe:gigatribe
    "UDP Query User{BC60B73E-A248-413F-B17E-E0FB4F8665E4}c:\\program files\\gigatribe\\gigatribe.exe"= TCP:c:\program files\gigatribe\gigatribe.exe:gigatribe

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System]
    "DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic|

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
    "DoNotAllowExceptions"= 0 (0x0)

    R0 pe3ah4nc;DiRT Environment Driver (pe3ah4nc);c:\windows\system32\drivers\pe3ah4nc.sys [2007-05-18 64880]
    R0 ps6ah4nc;DiRT Synchronization Driver (ps6ah4nc);c:\windows\system32\drivers\ps6ah4nc.sys [2007-05-18 55160]
    R2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2008-11-16 51792]
    R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\DRIVERS\atl01v32.sys [2008-03-23 48128]
    R3 Service CANALPLAY;Service CANALPLAY;"c:\program files\Lecteur CANALPLAY\CanalPlayService.exe" [2008-09-15 436096]
    R3 X10Hid;X10 Hid Device;c:\windows\system32\Drivers\x10hid.sys [2006-11-17 13976]
    S0 OemBiosDevice;Royalty OEM Bios Extension;c:\windows\system32\drivers\royal.sys [2008-03-23 240128]
    S2 pr2ah4nc;DiRT Drivers Auto Removal (pr2ah4nc);c:\windows\system32\pr2ah4nc.exe svc []
    S3 maconfservice;Ma-Config Service;"c:\program files\ma-config.com\maconfservice.exe" [2008-09-02 191656]
    S4 RTSTOR;USB Mass Storage Device;c:\windows\system32\drivers\rtstor.sys [2007-06-11 43520]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    bthsvcs REG_MULTI_SZ BthServ

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{05a87e20-f872-11dc-936b-806e6f6e6963}]
    \shell\AutoRun\command - D:\Autorun.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0914a02e-1ead-11dd-b38f-000000000000}]
    \shell\AutoRun\command - G:\Setup.exe -auto

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{24374d6f-580a-11dd-b10a-806e6f6e6963}]
    \shell\AutoRun\command - d:\.\Bin\Assetup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{24374eea-580a-11dd-b10a-000000000000}]
    \shell\AutoRun\command - E:\setup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{32afa249-fa42-11dc-906d-000000000000}]
    \shell\AutoRun\command - E:\setup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5deb49e8-b7f7-11dd-a4a4-001e8c1a8e70}]
    \shell\AutoRun\command - G:\nideiect.com
    \shell\explore\Command - G:\nideiect.com
    \shell\open\Command - G:\nideiect.com

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7c5fbe88-b6e7-11dd-a6ae-001e8c1a8e70}]
    \shell\AutoRun\command - G:\nideiect.com
    \shell\explore\Command - G:\nideiect.com
    \shell\open\Command - G:\nideiect.com
    .
    - - - - ORPHELINS SUPPRIMES - - - -

    BHO-{DA3D342F-FF20-4E31-9E82-22334155730C} - (no file)
    Toolbar-ITBar7Layout - (no file)
    Toolbar-ITBar7Position - (no file)
    HKCU-Run-SpybotSD TeaTimer - c:\program files\Spybot - Search & Destroy\TeaTimer.exe


    .
    ------- Examen supplémentaire -------
    .
    FireFox -: Profile - c:\users\Yann\AppData\Roaming\Mozilla\Firefox\Profiles\n8ozzcnt.default\
    .

    **************************************************************************

    catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-11-25 09:58:31
    Windows 6.0.6000 NTFS

    Recherche de processus cachés ...

    Recherche d'éléments en démarrage automatique cachés ...

    Recherche de fichiers cachés ...

    Scan terminé avec succès
    Fichiers cachés: 0

    **************************************************************************
    .
    --------------------- DLLs chargées dans les processus actifs ---------------------

    - - - - - - - > 'Explorer.exe'(2396)
    c:\program files\RocketDock\RocketDock.dll
    c:\program files\UberIcon\UberIcon.dll
    .
    ------------------------ Autres processus actifs ------------------------
    .
    c:\windows\System32\nvvsvc.exe
    c:\windows\System32\audiodg.exe
    c:\windows\System32\rundll32.exe
    c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    c:\program files\Bonjour\mDNSResponder.exe
    c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe
    c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    c:\progra~1\COMMON~1\X10\Common\X10nets.exe
    c:\windows\System32\rundll32.exe
    c:\program files\Windows Media Player\wmpnetwk.exe
    c:\windows\System32\dllhost.exe
    .
    **************************************************************************
    .
    Heure de fin: 2008-11-25 10:02:17 - La machine a redémarré [Yann]
    ComboFix-quarantined-files.txt 2008-11-25 09:02:03

    Avant-CF: 59,547,938,816 octets libres
    Après-CF: 59,364,171,776 octets libres

    1034 --- E O F --- 2008-11-25 07:59:08
    a b 8 Sécurité
    25 Novembre 2008 12:39:09

    Re,

    Télécharge FindyKill ([#ff0000]Chiquitine29[/#ff]) sur ton Bureau.

  • Lance l'installation du programme en exécutant le fichier téléchargé.
  • Double-clique maintenant sur le raccourci de FindyKill.
  • Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
  • Poste le rapport généré dans ta prochaine réponse.

    NB : La barre des tâches et les icônes vont disparaître pendant la recherche.
    25 Novembre 2008 13:18:58

    Le logiciel plante, il me mets accés refusé!
    25 Novembre 2008 16:43:03

    C'est bon. Alors voila:

    FindyKill V4.705 ------------------

    * User : Yann - PC-DE-YANN
    * Emplacement : C:\Program Files\FindyKill
    * Outils Mis a jours le 17/11/08 par Chiquitine29
    * Recherche effectuée à 16:40:14 le 25/11/2008
    * Windows Vista - Internet Explorer 7.0.6000.16757

    ((((((((((((((((( *** Recherche *** ))))))))))))))))))


    --------------- [ Processus actifs ] ----------------


    C:\Windows\System32\smss.exe
    C:\Windows\system32\csrss.exe
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\csrss.exe
    C:\Windows\system32\services.exe
    C:\Windows\system32\lsass.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\winlogon.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\rundll32.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Windows\system32\svchost.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Windows\system32\svchost.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\UberIcon\UberIcon Manager.exe
    C:\Windows\RtHDVCpl.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\RocketDock\RocketDock.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files\RegCleaner\RegCleanr.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Watch.exe
    C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe
    C:\Windows\system32\taskeng.exe
    C:\Users\Yann\Downloads\bitdefender_free_v10.exe
    C:\Users\Yann\AppData\Local\Temp\IXP000.TMP\Setup.Exe
    C:\Windows\system32\msiexec.exe
    C:\Windows\system32\MsiExec.exe
    C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
    C:\Program Files\Softwin\BitDefender10\bdagent.exe
    C:\Program Files\Softwin\BitDefender10\bdwizreg.exe
    C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
    C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
    C:\Program Files\Softwin\BitDefender10\vsserv.exe
    C:\Program Files\Softwin\BitDefender10\bdlite.exe

    --------------- [ Fichiers/Dossiers infectieux ] ----------------


    »»»» Presence des fichiers dans C:


    »»»» Presence des fichiers dans C:\Windows


    »»»» Presence des fichiers dans C:\Windows\Prefetch

    Found ! - C:\Windows\prefetch\197148494.EXE-5EF27B81.pf
    Found ! - C:\Windows\prefetch\197185762.EXE-64A50CAC.pf
    Found ! - C:\Windows\prefetch\212196631.EXE-996DE181.pf
    Found ! - C:\Windows\prefetch\96705.EXE-95BE6BF5.pf
    Found ! - C:\Windows\prefetch\FLEC006.EXE-C8F7DF37.pf
    Found ! - C:\Windows\prefetch\WINTEMS.EXE-9889BB0E.pf

    »»»» Presence des fichiers dans C:\Windows\system32


    »»»» Presence des fichiers dans C:\Windows\system32\drivers


    »»»» Presence des fichiers dans C:\Users\Yann\AppData\Roaming


    »»»» Presence des fichiers dans C:\Users\Yann\AppData\Local\Temp


    »»»» Presence des fichiers dans C:\Users\Yann\Local Settings\Temporary Internet Files\Content.IE5

    Found ! [25/11/2008 11:13] - C:\Users\Yann\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6UG8PLYH\181a62b6481d7ee19057bc6d03d9a32b.9[1].jpg
    Found ! [24/03/2008 20:10] - C:\Users\Yann\Music\Ma Musique\Reggae\AlbumArt_{7AA3E2B0-599E-4B8B-8225-EB5B64FA3A37}_Large.jpg
    Found ! [24/03/2008 20:10] - C:\Users\Yann\Music\Ma Musique\Reggae\AlbumArt_{7AA3E2B0-599E-4B8B-8225-EB5B64FA3A37}_Small.jpg

    --------------- [ Registre / Startup ] ----------------

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]

    Sidebar=C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    RocketDock="C:\Program Files\RocketDock\RocketDock.exe"
    WMPNSCFG=C:\Program Files\Windows Media Player\WMPNSCFG.exe
    SpybotSD TeaTimer=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    ISUSPM Startup=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
    HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run\AdobeUpdater=
    <NO NAME>=

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]

    UberIcon="C:\Program Files\UberIcon\UberIcon Manager.exe"
    RtHDVCpl=RtHDVCpl.exe
    NvCplDaemon=RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    NvMediaCenter=RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    JMB36X IDE Setup=C:\Windows\RaidTool\xInsIDE.exe
    BDMCon="C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
    BDAgent="C:\Program Files\Softwin\BitDefender10\bdagent.exe"

    --------------- [ Registre / Clés infectieuses ] ----------------


    Found ! - HKEY_USERS\S-1-5-21-1790214544-2004668590-1207363898-1000\Software\Local AppWizard-Generated Applications\winfilse
    Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winfilse
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA

    --------------- [ Etat / Services ] ----------------



    +- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

    /!\ Ndisuio - Type de démarrage = 4

    EapHost - Type de démarrage = 3

    Wlansvc - Type de démarrage = 3

    SharedAccess - Type de démarrage = 2

    wuauserv - Type de démarrage = 2

    /!\ WinDefend - Type de démarrage = 4



    --------------- [ Recherche dans supports amovibles] ----------------


    +- Informations :

    C: - Lecteur fixe
    D: - Lecteur de CD-ROM

    +- Contenu de l'autorun : D:\autorun.inf

    [autorun]
    open = .\Bin\Assetup.exe
    icon = asus.ico


    +- presence des fichiers :

    Found ! [10/05/2006 20:01][-r-------] - D:\autorun.inf


    --------------- [ Registre / Mountpoint2 ] ----------------

    Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5deb49e8-b7f7-11dd-a4a4-001e8c1a8e70}\Shell\AutoRun\command
    Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5deb49e8-b7f7-11dd-a4a4-001e8c1a8e70}\Shell\explore\Command
    Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5deb49e8-b7f7-11dd-a4a4-001e8c1a8e70}\Shell\open\Command
    Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c5fbe88-b6e7-11dd-a6ae-001e8c1a8e70}\Shell\AutoRun\command
    Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c5fbe88-b6e7-11dd-a6ae-001e8c1a8e70}\Shell\explore\Command
    Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c5fbe88-b6e7-11dd-a6ae-001e8c1a8e70}\Shell\open\Command


    ------------------- ! Fin du rapport ! --------------------

    a b 8 Sécurité
    25 Novembre 2008 17:14:04

    Re,

    Relance FindyKill en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
    [#ff0000]! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
    Un rapport sera généré, poste son contenu ici.

    NB : Un redémarrage est parfois nécessaire, FindyKill t'enverra un message si cela est nécessaire.
    27 Novembre 2008 13:27:37

    Le logiciel plante, il redémarre le PC mais sans me faire le rapport. Je sais pas quoi faire...
    a b 8 Sécurité
    27 Novembre 2008 18:09:48

    Refais un scan FindyKill option 1 pour voir.
    27 Novembre 2008 20:46:55

    J'ai réussi. Décidement...! Voila le rapport après nettoyage :


    ----------------- FindyKill V4.705 ------------------

    * User : Yann - PC-DE-YANN
    * executed from : C:\Program Files\FindyKill
    * Update on 17/11/08 par Chiquitine29
    * Start at 20:29:47 the 27/11/2008
    * Windows Vista - Internet Explorer 7.0.6000.16757


    ((((((((((((((( *** deleting *** ))))))))))))))))))


    --------------- [ Active Processes ] ----------------


    C:\Windows\System32\smss.exe
    C:\Windows\system32\csrss.exe
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\csrss.exe
    C:\Windows\system32\services.exe
    C:\Windows\system32\lsass.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\winlogon.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\LogonUI.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\rundll32.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\userinit.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Windows\system32\svchost.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Windows\system32\svchost.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
    C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
    C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
    C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
    C:\Program Files\Softwin\BitDefender10\vsserv.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\runonce.exe

    --------------- [ Infected files / folders ] ----------------


    »»»» Supression files in C:


    »»»» Supression files in C:\Windows


    »»»» Supression files in C:\Windows\Prefetch


    »»»» Supression files in C:\Windows\system32


    »»»» Supression files in C:\Windows\system32\drivers


    »»»» Supression files in C:\Users\Yann\AppData\Roaming


    »»»» Supression files in C:\Users\Yann\AppData\Local\Temp


    »»»» Supression files in C:\Users\Yann\Local Settings\Temporary Internet Files\Content.IE5

    Deleted ! - C:\Users\Yann\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{101AA6E0-5C71-4EB5-A11B-ADDB4A70DB64}.jpg
    Deleted ! - C:\Users\Yann\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{10407068-B136-43E8-B315-9FAB64AAB3F9}.jpg
    Deleted ! - C:\Users\Yann\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{3AAFB503-6B64-42F3-A502-59786D2E4CF3}.jpg
    Deleted ! - C:\Users\Yann\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{75E8536C-B640-40D3-A373-63146B21A4CB}.jpg
    Deleted ! - C:\Users\Yann\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{78B67594-3CC1-4B11-B222-F5ADB39CFB64}.jpg
    Deleted ! - C:\Users\Yann\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{84400C03-B647-44EA-A0E1-FA20411562F6}.jpg
    Deleted ! - C:\Users\Yann\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{B64FEA42-3CF0-4DA3-9365-93208073611C}.jpg
    Deleted ! - C:\Users\Yann\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{D635EC38-5A1F-4046-8B64-259983424457}.jpg
    Deleted ! - C:\Users\Yann\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{FD7EE229-FBF6-4503-B647-1263F0AE0549}.jpg
    Deleted ! - C:\Users\Yann\Music\Ma Musique\Reggae\AlbumArt_{7AA3E2B0-599E-4B8B-8225-EB5B64FA3A37}_Large.jpg
    Deleted ! - C:\Users\Yann\Music\Ma Musique\Reggae\AlbumArt_{7AA3E2B0-599E-4B8B-8225-EB5B64FA3A37}_Small.jpg
    Deleted ! - C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{1B4B32C8-F41A-4DE0-B687-EFD8934AB643}.jpg
    Deleted ! - C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Media Player\Cache d’images\LocalMLS\{FA45D437-9803-48F9-B64C-6E8EA5CEC53F}.jpg

    --------------- [ Registry / Infected keys ] ----------------

    Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
    Deleted ! - HKEY_CURRENT_CONFIG\System\CurrentControlSet\Enum\ROOT\LEGACY_SROSA
    Deleted ! - HKEY_USERS\S-1-5-21-1790214544-2004668590-1207363898-1000\Software\Local AppWizard-Generated Applications\winfilse
    Deleted ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winfilse

    --------------- [ States / Restarting of services ] ----------------



    +- Services : [ Auto=2 / Request=3 / Disable=4 ]

    Ndisuio - Type of startup = 3

    EapHost - Type of startup = 2

    Wlansvc - Type of startup = 2

    SharedAccess - Type of startup = 2

    wuauserv - Type of startup = 2

    WinDefend - Type of startup = 2


    --------------- [ Cleaning removable drives ] ----------------

    +- Informations :

    C: - Lecteur fixe
    D: - Lecteur de CD-ROM

    +- deleting files :

    Not deleted !! - D:\autorun.inf

    --------------- [ Registry / Mountpoint2 ] ----------------

    Deleted ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5deb49e8-b7f7-11dd-a4a4-001e8c1a8e70}\Shell\AutoRun\command
    Deleted ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5deb49e8-b7f7-11dd-a4a4-001e8c1a8e70}\Shell\explore\Command
    Deleted ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5deb49e8-b7f7-11dd-a4a4-001e8c1a8e70}\Shell\open\Command
    Deleted ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c5fbe88-b6e7-11dd-a6ae-001e8c1a8e70}\Shell\AutoRun\command
    Deleted ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c5fbe88-b6e7-11dd-a6ae-001e8c1a8e70}\Shell\explore\Command
    Deleted ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c5fbe88-b6e7-11dd-a6ae-001e8c1a8e70}\Shell\open\Command

    --------------- [ Searching Cracks / Keygen ] ----------------


    C:\Users\Yann\Music\Ma Musique\Vrac\14. Steven Tyler - Animal Crackers.mp3


    ---------------- ! End of report ! ------------------


    a b 8 Sécurité
    27 Novembre 2008 21:28:23

    Reposte un rapport Hijackthis.
    28 Novembre 2008 16:43:49

    Je tiens à te remercier tout particulièrement, c'est vraiment cool de s'occuper de moi, il devrait y avoir que des personnes comme toi...Merci Angeldark.

    Ma connexion est redevenue à peu près normale, mon pc rame moins et j'ai beaucoup moins de processus actifs, mêmes des programmes qui me servent et qui sont me semble-t-il sans danger...

    Cependant j'ai encore le problème des applications Win32 non valide.

    Voici le rapport Hijacktis :

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 16:36:42, on 28/11/2008
    Platform: Windows Vista (WinNT 6.00.1904)
    MSIE: Internet Explorer v7.00 (7.00.6000.16757)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\explorer.exe
    C:\Program Files\Softwin\BitDefender10\bdmcon.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\Yann\Downloads\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.free.fr:3128
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
    O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
    O4 - HKLM\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe"
    O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
    O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
    O4 - HKCU\..\Run: [CanalPlayer] C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
    O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O10 - Broken Internet access because of LSP provider 'c:\windows\system32\pnrpnsp.dll' missing
    O13 - Gopher Prefix:
    O15 - Trusted Zone: *.canalplay.com
    O15 - Trusted Zone: *.canalplusactive.com
    O15 - Trusted Zone: *.canalplay.com (HKLM)
    O15 - Trusted Zone: *.canalplusactive.com (HKLM)
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.ap...
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichiers/hardwaredet...
    O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx...
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
    O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: DiRT Drivers Auto Removal (pr2ah4nc) (pr2ah4nc) - CODEMASTERS - C:\Windows\system32\pr2ah4nc.exe
    O23 - Service: Service CANALPLAY - Canal+ Distribution - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
    O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
    O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe

    --
    End of file - 8222 bytes
    a b 8 Sécurité
    28 Novembre 2008 17:51:49

    Tu as encore des soucis ?
    28 Novembre 2008 18:40:56

    Spybot & destroy ne veut pas s'ouvrir, toujours le meme message. Application win32 non valide..
    a b 8 Sécurité
    28 Novembre 2008 18:46:05

    Il faut le désinstaller/réinstaller.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS