[help] virus
salut a tous
mon internet est vrement lent et je pense avoir choppé quelque chose sur le net enre virus ou je sais pas quoi qui ralentit ma connexion a mort
serait il possible donc que vous m'aidiez a le supprimer svp
dites moi ce qu'il faut faire
merci
merci de m'aider !
__________________________________________
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:13:21, on 17/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\Domino.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Gigabyte\ET5Pro\GUI.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [EasyTuneVPro] C:\Program Files\Gigabyte\ET5Pro\ETcall.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ZSSnp211] C:\WINDOWS\ZSSnp211.exe
O4 - HKLM\..\Run: [Domino] C:\WINDOWS\Domino.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [AdVantage] "C:\Program Files\AdVantage\AdVantage.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Registration Tom Clancy's Rainbow Six Vegas.LNK = C:\Program Files\UBISOFT\Tom Clancy's Rainbow Six Vegas\Register\RegistrationReminder.exe
O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichiers/hardwaredetection/hardwaredetection_3_0_0_30.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
--
End of file - 5071 bytes
oui dsl talleur je l'ai pas mis sur le bureau, je n'ai pas fait la meme erreur ^^
_____________________________________
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:13:21, on 17/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\Domino.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Gigabyte\ET5Pro\GUI.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [EasyTuneVPro] C:\Program Files\Gigabyte\ET5Pro\ETcall.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ZSSnp211] C:\WINDOWS\ZSSnp211.exe
O4 - HKLM\..\Run: [Domino] C:\WINDOWS\Domino.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [AdVantage] "C:\Program Files\AdVantage\AdVantage.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Registration Tom Clancy's Rainbow Six Vegas.LNK = C:\Program Files\UBISOFT\Tom Clancy's Rainbow Six Vegas\Register\RegistrationReminder.exe
O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichiers/hardwaredetection/hardwaredetection_3_0_0_30.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
--
End of file - 5071 bytes
et vire avast et prend antivir +scan complet 
mince tromper de rapport dsl
ComboFix 08-06-15.4 - rocky 2008-06-17 19:27:14.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.653 [GMT 2:00]
Endroit: C:\Documents and Settings\rocky\Bureau\ComboFix.exe
* Création d'un nouveau point de restauration
[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\system32\msvcsv60.dll
.
((((((((((((((((((((((((((((( Fichiers créés 2008-05-17 to 2008-06-17 ))))))))))))))))))))))))))))))))))))
.
2008-06-17 19:12 . 2008-06-17 19:12 <REP> d-------- C:\Program Files\Trend Micro
2008-06-17 17:53 . 2008-06-17 19:12 <REP> d-------- C:\Pontifex II
2008-06-17 16:30 . 2005-05-26
15:34 2,297,552 --a------ C:\WINDOWS\system32\d3dx
9_26.dll
2008-06-17 16:22 . 2008-06-17 16:22 <REP> d-------- C:\Program Files\LucasArts
2008-06-17 16:15 . 2008-06-17 17:32 <REP> d-------- C:\Command and conquer general
2008-06-17 14:29 . 2008-06-17 16:33 <REP> d-------- C:\Lego star wars II
2008-06-17 11:29 . 2008-06-17 11:35 23 --a------ C:\WINDOWS\BlendSettings.ini
2008-06-17 11:16 . 2008-06-17 13:19 <REP> d-------- C:\Program Files\Bethesda Softworks
2008-06-17 11:13 . 2008-06-17 11:15 <REP> d-------- C:\Program Files\DAEMON Tools Lite
2008-06-17 11:10 . 2008-06-17 11:10 <REP> d-------- C:\Documents and Settings\rocky\Application Data\DAEMON Tools
2008-06-17 11:10 . 2008-06-17
11:10 717,296 --a------ C:\WINDOWS\system32\driver
s\sptd.sys
2008-06-16 18:53 . 2008-06-16 18:57 <REP> d-------- C:\Program Files\FlashGet
2008-06-16 18:53 . 2004-08-03
23:14 359,040 --a------ C:\WINDOWS\system32\driver
s\tcpip.sys.flg
2008-06-16 18:42 . 2008-06-16 18:42 <REP> d-------- C:\Program Files\Vimicro
2008-06-16 18:42 . 2007-08-03
10:27 1,470,592 --a------ C:\WINDOWS\system32\driv
ers\ZS211.sys
2008-06-16 14:48 . 2008-06-17 16:16 <REP> d-------- C:\Oblivion
2008-06-15 11:36 . 2008-06-15 11:37 <REP> d-------- C:\Program Files\Fichiers communs\Adobe
2008-06-15 11:31 . 2008-06-15 11:31 1,007 --a------ C:\WINDOWS\mozver.dat
2008-06-15 11:27 . 2008-06-15
12:26 16 --a------ C:\WINDOWS\system32\w3data.vss
2008-06-15 11:27 . 2008-06-15 12:26 16 --a------ C:\WINDOWS\msocreg32.dat
2008-06-15 11:26 . 2008-06-15 11:26 <REP> d-------- C:\Documents and Settings\All Users\Application Data\IK Multimedia
2008-06-13 21:37 . 2008-06-13 21:37 <REP> d-------- C:\Program Files\Audacity
2008-06-09 08:41 . 2008-06-09 08:41 <REP> d-------- C:\Documents and Settings\rocky\Application Data\U3
2008-06-04 21:38 . 2008-06-04 21:38 <REP> d-------- C:\Program Files\Guitar Pro 5
2008-06-04 21:38 . 2008-06-04 21:38 <REP> d-------- C:\GP 5
2008-06-02 16:20 . 2008-06-02 16:20 <REP> d-------- C:\Program Files\Google
2008-06-02 14:45 . 2008-06-02 14:45 <REP> d-------- C:\Program Files\AIDA32 - Personal System Information
2008-06-01 22:16 . 2008-06-01 22:16 0 --a------ C:\WINDOWS\nsreg.dat
2008-06-01 22:14 . 2008-06-01 22:14 <REP> d-------- C:\Freezer_byW[1].Games
2008-06-01 22:12 . 2008-06-01 22:12 <REP> d-------- C:\RS_H.H_Checker_-_Oleoo
2008-06-01 19:37 . 2008-06-01 19:37 <REP> d-------- C:\WINDOWS\system32\AGEIA
2008-06-01 19:37 . 2008-06-01 19:37 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-06-01 19:37 . 2008-06-01 19:37 <REP> d-------- C:\Program Files\AGEIA Technologies
2008-06-01 19:06 . 2008-06-09 20:09 <REP> d-------- C:\Program Files\UBISOFT
2008-05-30 21:07 . 2004-08-19
16:09 159,232 --a------ C:\WINDOWS\system32\ptpusd
.dll
2008-05-30 21:07 . 2004-08-03
22:58 15,104 --a------ C:\WINDOWS\system32\drivers
\usbscan.sys
2008-05-30 21:07 . 2004-08-03
22:58 15,104 --a--c--- C:\WINDOWS\system32\dllcach
e\usbscan.sys
2008-05-30 21:07 . 2001-08-23
17:47 5,632 --a------ C:\WINDOWS\system32\ptpusb.d
ll
2008-05-29 06:53 . 2008-05-29 06:53 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2008-05-28 20:55 . 1999-11-14 15:41 86,016 --a------ C:\WINDOWS\unvise32.exe
2008-05-28 06:39 . 2008-05-29
20:52 <REP> d-------- C:\WINDOWS\system32\LogFiles
2008-05-28 06:39 . 2008-05-30
20:07 107,832 --a------ C:\WINDOWS\system32\PnkBst
rB.exe
2008-05-28 06:39 . 2008-05-28
19:22 66,872 --a------ C:\WINDOWS\system32\PnkBstr
A.exe
2008-05-28 06:39 . 2008-05-30
20:09 22,328 --a------ C:\WINDOWS\system32\drivers
\PnkBstrK.sys
2008-05-28 06:39 . 2008-05-28 06:39 22,328 --a------ C:\Documents and Settings\rocky\Application Data\PnkBstrK.sys
2008-05-28 06:39 . 2008-05-28 06:39 321 --a------ C:\WINDOWS\game.ini
2008-05-27 20:45 . 2008-06-17 18:52 <REP> d-------- C:\Program Files\Steam
2008-05-27 19:32 . 2008-05-27 19:32 <REP> dr-h----- C:\Documents and Settings\rocky\Application Data\SecuROM
2008-05-27 19:32 . 2008-05-27
19:32 107,888 --a------ C:\WINDOWS\system32\CmdLin
eExt.dll
2008-05-27 19:28 . 2008-05-27 19:28 <REP> d-------- C:\Program Files\Messenger Plus! Live
2008-05-27 19:18 . 2007-07-19
18:14 3,727,720 --a------ C:\WINDOWS\system32\d3dx
9_35.dll
2008-05-27 19:18 . 2007-04-04
18:53 81,768 --a------ C:\WINDOWS\system32\xinput1
_3.dll
2008-05-27 19:13 . 2008-05-27 19:13 <REP> d-------- C:\WINDOWS\system32\Lang
2008-05-27 19:13 . 2008-05-27
19:13 940,794 --a------ C:\WINDOWS\system32\LoopyM
usic.wav
2008-05-27 19:13 . 2008-05-27
19:13 146,650 --a------ C:\WINDOWS\system32\Buzzin
gBee.wav
2008-05-27 19:11 . 2004-08-03
23:07 6,400 --a------ C:\WINDOWS\system32\drivers\
splitter.sys
2008-05-27 19:11 . 2004-08-03
23:07 6,400 --a--c--- C:\WINDOWS\system32\dllcache
\splitter.sys
2008-05-27 19:11 . 2007-11-14 15:18 553 --a------ C:\WINDOWS\USetup.iss
2008-05-27 19:09 . 2005-05-03 18:43 69,632 --a------ C:\WINDOWS\Alcmtr.exe
2008-05-27 18:59 . 2008-05-27 18:59 <REP> d-------- C:\Documents and Settings\rocky\Application Data\fretsonfire
2008-05-22 21:08 . 2008-05-22 21:08 <REP> d-------- C:\Program Files\ma-config.com
2008-05-22 21:08 . 2008-05-22 21:08 <REP> d-------- C:\Documents and Settings\All Users\Application Data\ma-config.com
2008-05-22 20:49 . 2008-03-05 18:07 520,192 --a------ C:\WINDOWS\RtlExUpd.dll
2008-05-22 20:49 . 2008-05-22 20:49 315,392 --a------ C:\WINDOWS\HideWin.exe
2008-05-22 20:02 . 2007-07-30
19:19 271,224 --a------ C:\WINDOWS\system32\mucltu
i.dll
2008-05-22 20:02 . 2007-07-30
19:19 207,736 --a------ C:\WINDOWS\system32\muweb.
dll
2008-05-22 20:02 . 2007-07-30
19:18 30,072 --a------ C:\WINDOWS\system32\mucltui
.dll.mui
2008-05-22 20:00 . 2008-05-22 20:00 <REP> d---s---- C:\Documents and Settings\rocky\UserData
2008-05-22 19:34 . 2008-05-22 19:34 <REP> d-------- C:\Program Files\Alwil Software
2008-05-22 19:09 . 2008-06-12 21:20 <REP> d-------- C:\Documents and Settings\rocky\Contacts
2008-05-22 18:56 . 2008-05-22 19:04 <REP> d-------- C:\Program Files\Windows Live
2008-05-22 18:56 . 2008-05-22 19:02 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-05-22 18:56 . 2008-05-22 18:56 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-05-21 23:03 . 2008-05-21 23:03 <REP> d-------- C:\Program Files\Gigabyte
2008-05-21 23:03 . 1998-10-02 19:00 327,168 --a------ C:\WINDOWS\IsUninst.exe
2008-05-21 23:03 . 2007-10-11
11:10 30,008 --a------ C:\WINDOWS\system32\drivers
\ET5Drv.sys
2008-05-21 23:03 . 2008-06-17
18:10 24,944 --a------ C:\WINDOWS\system32\drivers
\GVTDrv.sys
2008-05-21 23:00 . 2008-06-16
18:42 <REP> d----c--- C:\WINDOWS\system32\DRVSTORE
2008-05-21 23:00 . 2008-05-21 23:00 <REP> d-------- C:\Program Files\Intel
2008-05-21 23:00 . 2008-05-21 23:00 <REP> d-------- C:\Intel
2008-05-21 23:00 . 2007-07-26
16:15 53,248 --a------ C:\WINDOWS\system32\CSVer.d
ll
2008-05-21 22:52 . 2008-05-21 22:52 <REP> d-------- C:\Documents and Settings\LocalService\Menu Démarrer
2008-05-21 22:52 . 2008-05-21 22:52 316,640 --a------ C:\WINDOWS\WMSysPr9.prx
2008-05-21 22:43 . 2008-05-21
22:43 <REP> d-------- C:\WINDOWS\ServicePackFiles
2008-05-21 22:40 . 2004-11-18
10:42 22,752 --a------ C:\WINDOWS\system32\spupdsv
c.exe
2008-05-21 22:40 . 2004-07-17
11:40 19,528 --a------ C:\WINDOWS\[u]0[/u]02236_.t
mp
2008-05-21 22:38 . 2008-05-21 22:45 <REP> d-------- C:\WINDOWS\EHome
2008-05-21 22:31 . 2008-05-21 22:31 <REP> d-------- C:\Program Files\Inventel
2008-05-21 22:31 . 2008-05-21
22:31 <REP> d-------- C:\Drivers-Dongles-WIFI-Inve
ntel
2008-05-21 22:31 . 2008-05-21 22:31 278,528 --a------ C:\Program Files\Fichiers communs\FDEUnInstaller.exe
2008-05-21 22:10 . 2008-05-03
05:46 182,347 --a------ C:\WINDOWS\system32\nvapps
.nvb
2008-05-21 22:06 . 2008-05-21 22:58 <REP> d-------- C:\WINDOWS\nview
2008-05-21 22:06 . 2008-05-21 22:57 <REP> d-------- C:\WINDOWS\nvidia icons
2008-05-21 22:06 . 2008-05-03
05:46 442,368 --a------ C:\WINDOWS\system32\nvudis
p.exe
2008-05-21 22:06 . 2008-06-17
18:10 177,348 --a------ C:\WINDOWS\system32\nvapps
.xml
2008-05-21 22:06 . 2008-05-03
05:46 18,070 --a------ C:\WINDOWS\system32\nvdisp.
nvu
2008-05-21 22:05 . 2008-05-21 22:05 <REP> d-------- C:\Program Files\Fichiers communs\InstallShield
2008-05-21 22:05 . 2008-05-21 22:05 <REP> d-------- C:\NVIDIA
2008-05-21 22:05 . 2008-04-30
17:27 442,368 --a------ C:\WINDOWS\system32\NVUNIN
ST.EXE
2008-05-21 22:03 . 2007-09-19
15:44 101,504 -ra------ C:\WINDOWS\system32\driver
s\Rtenicxp.sys
2008-05-21 22:02 . 2008-05-21 22:02 <REP> d-------- C:\WINDOWS\OPTIONS
2008-05-21 22:02 . 2008-05-22 20:49 <REP> d-------- C:\Program Files\Realtek
2008-05-21 22:02 . 2008-06-17 16:31 <REP> d--h----- C:\Program Files\InstallShield Installation Information
2008-05-21 22:02 . 2008-05-21 22:02 <REP> d-------- C:\Documents and Settings\rocky\Application Data\InstallShield
2008-05-21 22:00 . 2008-05-27
19:18 <REP> d---s---- C:\WINDOWS\system32\Microsof
t
2008-05-21 22:00 . 2008-05-21 22:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2008-05-21 21:59 . 2008-05-21 21:59 <REP> d-------- C:\Outil pour avoir windows original
2008-05-21 04:34 . 2004-08-19
15:54 58,496 --a------ C:\WINDOWS\system32\drivers
\redbook.sys
2008-05-21 04:34 . 2004-08-19
16:09 21,504 --a------ C:\WINDOWS\system32\hidserv
.dll
2008-05-21 04:34 . 2001-08-17
22:59 3,072 --a------ C:\WINDOWS\system32\drivers\
audstub.sys
2008-05-21 04:33 . 2004-08-19
16:09 77,312 --a------ C:\WINDOWS\system32\usbui.d
ll
2008-05-21 04:33 . 2004-08-19
16:09 77,312 --a--c--- C:\WINDOWS\system32\dllcach
e\usbui.dll
2008-05-21 04:31 . 2008-06-17
18:10 <REP> d-------- C:\WINDOWS\system32\CatRoot2
2008-05-21 04:31 . 2008-06-01
19:02 <REP> d-------- C:\WINDOWS\system32\CatRoot
2008-05-21 04:31 . 2008-05-21 04:31 <REP> d--h----- C:\Documents and Settings\Default User\Voisinage réseau
2008-05-21 04:31 . 2008-05-21 04:31 <REP> d--h----- C:\Documents and Settings\Default User\Voisinage d'impression
2008-05-21 04:31 . 2008-05-21 03:37 <REP> d--h----- C:\Documents and Settings\Default User\Modèles
2008-05-21 04:31 . 2008-05-21 04:31 <REP> d-------- C:\Documents and Settings\Default User\Mes documents
2008-05-21 04:31 . 2008-05-21 04:31 <REP> dr------- C:\Documents and Settings\Default User\Menu Démarrer
2008-05-21 04:31 . 2008-05-21 04:31 <REP> d-------- C:\Documents and Settings\Default User\Favoris
2008-05-21 04:31 . 2008-05-21 04:31 <REP> d-------- C:\Documents and Settings\Default User\Bureau
2008-05-21 04:31 . 2008-05-21 04:31 <REP> d--h----- C:\Documents and Settings\All Users\Modèles
2008-05-21 04:31 . 2008-05-21 22:45 <REP> dr------- C:\Documents and Settings\All Users\Menu Démarrer
2008-05-21 04:31 . 2008-05-21 04:31 <REP> d-------- C:\Documents and Settings\All Users\Favoris
2008-05-21 04:31 . 2008-05-21 22:52 <REP> dr------- C:\Documents and Settings\All Users\Documents
la suite
____________________________
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-22 18:49 16,376 ----a-w C:\WINDOWS\gdrv.sys
2008-05-21 01:41 --------- d-----w C:\Program Files\microsoft frontpage
2008-05-21 01:37 --------- d-----w C:\Program Files\Services en ligne
2008-05-07
17:21 4,739,072 ----a-w C:\WINDOWS\system32\driver
s\RtkHDAud.sys
2008-05-07 13:39 16,862,208 ----a-w C:\WINDOWS\RTHDCPL.exe
2008-04-02 07:27 1,196,032 ----a-w C:\WINDOWS\RtlUpd.exe
.
------- Sigcheck -------
2001-08-28 14:00 327168
e7774698bb0d14b0710a9a31e209f9b6 C:\WINDOWS\$NtSer
vicePackUninstall$\tcpip.sys
2004-08-03 23:14 359040
9f4b36614a0fc234525ba224957de55c C:\WINDOWS\Servic
ePackFiles\i386\tcpip.sys
2004-08-03 23:14 359040
6a603809f598332dbedd535bdbce313e C:\WINDOWS\system
32\drivers\tcpip.sys
.
((((((((((((((((((((((((((((((((( Point de chargement Reg
)))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
- Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curr
entVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 16:09 15360]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 11:34 5724184]
"Steam"="c:\program files\steam\steam.exe" [2008-05-27 20:48 1271032]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-04-01 11:39 486856]
"AdVantage"="C:\Program Files\AdVantage\AdVantage.exe" [ ]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Cur
rentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2008-05-03 05:46 13529088]
"nwiz"="nwiz.exe" [2008-05-03 05:46 1630208 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll"
[2008-05-03 05:46 86016]
"EasyTuneVPro"="C:\Program Files\Gigabyte\ET5Pro\ETcall.exe" [2007-07-26 15:05 20480]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe"
[2008-05-16 01:19 79224]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-07 15:39 16862208 C:\WINDOWS\RTHDCPL.exe]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]
"ZSSnp211"="C:\WINDOWS\ZSSnp211.exe" [2007-04-06 11:06 57344]
"Domino"="C:\WINDOWS\Domino.exe" [2006-08-18 16:58 49152]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cu
rrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-19 16:09 15360]
[HKLM\~\services\sharedaccess\parameters\firewallp
olicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\WINDOWS\\system32\\PnkBstrA.exe"=
"C:\\WINDOWS\\system32\\PnkBstrB.exe"=
"C:\\Program Files\\Steam\\steamapps\\blytch\\team fortress 2\\hl2.exe"=
"C:\\Freezer_byW[1].Games\\freezer.exe"=
"C:\\Program Files\\Gigabyte\\ET5Pro\\update.exe"=
"C:\\Program
Files\\Steam\\steamapps\\supersid_72\\garrysmod\\h
l2.exe"=
"C:\\Program Files\\FlashGet\\flashget.exe"=
R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-05-16 01:20]
R2
aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswF
sBlk.sys [2008-05-16 01:16]
R3 SIS163u;SiS163 usb Wireless LAN Adapter Driver;C:\WINDOWS\system32\DRIVERS\sis163u.sys [2005-06-20 11:12]
S3 gdrv;gdrv;C:\WINDOWS\gdrv.sys [2008-05-22 20:49]
S3 maconfservice;Ma-Config Service;"C:\Program Files\ma-config.com\maconfservice.exe" [2008-05-19 10:01]
- Newly Created Service* - CATCHME
.
- ***********************************************
- *********************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-17 19:29:07
Windows 5.1.2600 Service Pack 2 NTFS
Balayage processus cachés ...
Balayage caché autostart entries ...
Balayage des fichiers cachés ...
Scan terminé avec succès
Les fichiers cachés: 0
- ***********************************************
- *********************
.
Temps d'accomplissement: 2008-06-17 19:30:26
ComboFix-quarantined-files.txt 2008-06-17 17:30:02
Pre-Run: 2,297,667,584 octets libres
Post-Run: 2,577,092,608 octets libres
209
ouki je fait tout ca, je te donne le rapport apres avoir tout reinstller mais vu le debit que j'ai ca va pas etre rapide
- Aide à l'achat Mac
- Macintosh
- Création de sites web
- Création de Jeux
- Linux
- Programmation
- Internet
- Steam Deck
- Hardware