SOS rapports rsit..
chabby
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
Bonjour,
voici le lien du virus détecté par avast à chaque fois que j'ouvre un mail. Je ne sais pas quoi faire
car ensuite j'ai carrément à mettre en quarantaine le monstre.
Seulement cela recommence à chque fois
https://mail.yahoo.com/\{gzip}
puis il ya : connexion à "ad.yieldmanager.com" (je n'arrive pas à lire tout)
Je suis perdue et bien ennuyée.
merci de me donner la marche à suivre
Configuration: Windows XP Internet Explorer 6.0
je vous poste les deux rapports que j'ai eu avec RSIT:
log.txt:
Logfile of random's system information tool 1.06 (written by random/random)
Run by FRAMBOISE at 2009-12-28 11:05:35
Microsoft Windows XP Professionnel Service Pack 2
System drive F: has 2 GB (7%) free of 24 GB
Total RAM: 447 MB (26% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:06:04, on 28/12/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\Explorer.EXE
F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
F:\Program Files\Alwil Software\Avast4\ashServ.exe
F:\WINDOWS\system32\spoolsv.exe
F:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
F:\Program Files\Bonjour\mDNSResponder.exe
F:\Program Files\Java\jre6\bin\jqs.exe
F:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe
F:\Program Files\Cyberlink\Shared files\RichVideo.exe
F:\WINDOWS\system32\svchost.exe
F:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
F:\WINDOWS\system32\wbem\wmiapsrv.exe
F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
F:\Program Files\Java\jre6\bin\jusched.exe
F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
F:\WINDOWS\system32\wuauclt.exe
F:\Program Files\Internet Explorer\iexplore.exe
F:\WINDOWS\system32\NOTEPAD.EXE
F:\Documents and Settings\FRAMBOISE\Bureau\RSIT.exe
F:\Program Files\trend micro\FRAMBOISE.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - F:\Program Files\AskSearch\bin\DefaultSearch.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - F:\Program Files\AskBarDis\bar\bin\askBar1.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - F:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - F:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - F:\Program Files\AskBarDis\bar\bin\askBar1.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [avast!] F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "F:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [swg] "F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = F:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = F:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://F:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://F:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://F:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - F:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - F:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: f:\windows\system32\nwprovau.dll
O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - https://www.snapfish.fr/2/home
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - F:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader5.cab
O16 - DPF: {68C1822F-F5C7-4404-A73F-03C10E0E94DA} (telechargement-photoweb) - http://www4.photoweb.fr/telechargement/Photoweb_uploader.cab
O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.fr/ImageUploader4.cab
O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.photoways.com/clients/uploader_v2.2.0.6.cab
O23 - Service: Apple Mobile Device - Apple Inc. - F:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - F:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Software Updater (gusvc) - Google - F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - F:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - F:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: MemeoBackgroundService - Memeo - F:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe
O23 - Service: PACSPTISVR - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - F:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - F:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 7614 bytes
======Scheduled tasks folder======
F:\WINDOWS\tasks\GlaryInitialize.job
F:\WINDOWS\tasks\WGASetup.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - F:\Program Files\AskBarDis\bar\bin\askBar1.dll [2008-07-17 279944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - F:\Program Files\Java\jre6\bin\ssv.dll [2009-11-25 321312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-30 263280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - F:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-30 764912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - F:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - F:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-25 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - F:\Program Files\AskBarDis\bar\bin\askBar1.dll [2008-07-17 279944]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-30 263280]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"SunJavaUpdateSched"=F:\Program Files\Java\jre6\bin\jusched.exe [2009-11-25 149280]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-18 39408]
F:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Adobe Gamma Loader.lnk - F:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
Lancement rapide d'Adobe Reader.lnk - F:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Microsoft Office.lnk - F:\Program Files\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"F:\Program Files\FileZilla\FileZilla.exe"="F:\Program Files\FileZilla\FileZilla.exe:*:Enabled:FileZilla"
"F:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="F:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"F:\Program Files\Yahoo!\Messenger\YServer.exe"="F:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server"
"F:\Program Files\MSN Messenger\msnmsgr.exe"="F:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"F:\Program Files\MSN Messenger\livecall.exe"="F:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"E:\install guppy\miniGuppY.cmd"="E:\install guppy\miniGuppY.cmd:*:Disabled:miniGuppY"
"F:\Program Files\GUPPY\ZazouMiniWebServer.exe"="F:\Program Files\GUPPY\ZazouMiniWebServer.exe:*:Disabled:ZazouMiniWebServer"
"E:\install guppy\ZazouMiniWebServer.exe"="E:\install guppy\ZazouMiniWebServer.exe:*:Disabled:ZazouMiniWebServer"
"F:\Documents and Settings\FRAMBOISE\Application Data\U3\0000180CB7708DB9\0DE4F643-C398-46ec-9339-2362F2311932\Exec\Skype.exe"="F:\Documents and Settings\FRAMBOISE\Application Data\U3\0000180CB7708DB9\0DE4F643-C398-46ec-9339-2362F2311932\Exec\Skype.exe:*:Enabled:Skype"
"F:\Program Files\Messenger\msmsgs.exe"="F:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"F:\Program Files\video_dvd\CyberLink\PowerDirector\PowerDirector\PDR.exe"="F:\Program Files\video_dvd\CyberLink\PowerDirector\PowerDirector\PDR.exe:*:Enabled:CyberLink PowerDirector"
"F:\Program Files\7z457.exe"="F:\Program Files\7z457.exe:*:Disabled:7z457"
"F:\Program Files\Bonjour\mDNSResponder.exe"="F:\Program Files\Bonjour\mDNSResponder.exe:*:Disabled:Bonjour"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"F:\Program Files\MSN Messenger\msnmsgr.exe"="F:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"F:\Program Files\MSN Messenger\livecall.exe"="F:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{061e051c-067f-11de-904a-0060b3d27de6}]
shell\1\command - .\RECYCLER\RECYCLER\autorun.exe
shell\2\command - .\RECYCLER\RECYCLER\autorun.exe
shell\AutoRun\command - F:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\RECYCLER\RECYCLER\autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5bffc556-48f7-11dd-8f8f-0060b3d27de6}]
shell\AutoRun\command - E:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5bffc557-48f7-11dd-8f8f-0060b3d27de6}]
shell\AutoRun\command - J:\setupSNK.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5cbaf9e6-ac05-11dc-8eb2-0060b3d27de6}]
shell\Auto\command - cmd /C launch.bat
shell\AutoRun\command - F:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{93f65c08-ee57-11da-8c64-0060b3d27de6}]
shell\AutoRun\command - drivers/aerivv.exe
shell\explore\command - drivers/aerivv.exe
shell\open\command - drivers/aerivv.exe
======List of files/folders created in the last 1 months======
2009-12-28 11:05:38 ----D---- F:\Program Files\trend micro
2009-12-28 11:05:35 ----D---- F:\rsit
======List of files/folders modified in the last 1 months======
2009-12-28 11:05:38 ----RD---- F:\Program Files
2009-12-28 11:05:36 ----D---- F:\WINDOWS\Prefetch
2009-12-28 10:54:33 ----D---- F:\WINDOWS\Temp
2009-12-28 10:35:01 ----D---- F:\WINDOWS
2009-12-27 21:40:28 ----A---- F:\WINDOWS\SchedLgU.Txt
2009-12-27 20:46:34 ----D---- F:\Program Files\cleaner_benoit
2009-12-27 20:44:46 ----SD---- F:\WINDOWS\Tasks
2009-12-26 14:37:21 ----D---- F:\WINDOWS\system32
2009-12-19 17:59:29 ----D---- F:\Program Files\CDex_150
2009-12-04 19:51:14 ----D---- F:\WINDOWS\system32\CatRoot2
2009-12-04 18:02:57 ----D---- F:\Documents and Settings\FRAMBOISE\Application Data\U3
2009-11-30 19:55:23 ----SHD---- F:\WINDOWS\Installer
2009-11-29 17:56:55 ----RSD---- F:\WINDOWS\Fonts
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; F:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; F:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; F:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 StarOpen;StarOpen; F:\WINDOWS\system32\drivers\StarOpen.sys [2009-02-11 5632]
R1 Tcpip6;Pilote du protocole IPv6 Microsoft; F:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
R2 aswFsBlk;aswFsBlk; F:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; F:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; F:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448]
R2 NwlnkNb;NetBIOS NWLink; F:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2002-08-30 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; F:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2002-08-30 55936]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); F:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-09-21 2278784]
R3 aswRdr;aswRdr; F:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; F:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; F:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; F:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HidUsb;Pilote de classe HID Microsoft; F:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 mouhid;Pilote HID de souris; F:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 Mtlmnt5;Mtlmnt5; F:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2004-08-25 229720]
R3 pfc;Padus ASPI Shell; F:\WINDOWS\system32\drivers\pfc.sys [2006-08-06 9856]
R3 Slntamr;SmartLink AMR_PCI Driver; F:\WINDOWS\system32\DRIVERS\slntamr.sys [2004-08-25 653600]
R3 SlWdmSup;SlWdmSup; F:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2004-08-25 13216]
R3 SynTP;Synaptics TouchPad Driver; F:\WINDOWS\system32\DRIVERS\SynTP.sys [2004-08-12 185664]
R3 tunmp;Pilote de carte miniport Tun Microsoft; F:\WINDOWS\system32\DRIVERS\tunmp.sys [2004-08-19 12416]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; F:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Concentrateur USB2; F:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; F:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 viagfx;viagfx; F:\WINDOWS\system32\DRIVERS\vtmini.sys [2004-09-01 171392]
R3 XG350XP;NB 802.11g XG350 Driver; F:\WINDOWS\system32\DRIVERS\WlanCTG.sys [2004-12-10 481664]
S3 BthEnum;Pilote de bloc de demande Bluetooth; F:\WINDOWS\system32\DRIVERS\BthEnum.sys [2004-08-03 17024]
S3 BTHMODEM;Pilote de communication série Bluetooth; F:\WINDOWS\system32\DRIVERS\bthmodem.sys [2004-08-03 38016]
S3 BthPan;Périphérique Bluetooth (réseau personnel); F:\WINDOWS\system32\DRIVERS\bthpan.sys [2004-08-03 100992]
S3 BTHPORT;Pilote de port Bluetooth; F:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272768]
S3 BTHUSB;Pilote USB radio Bluetooth; F:\WINDOWS\System32\Drivers\BTHUSB.sys [2004-08-03 18944]
S3 CCDECODE;Décodeur sous-titre fermé; F:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 fbxusb;Carte réseau virtuelle FreeBox USB; F:\WINDOWS\system32\DRIVERS\fbxusb32.sys [2004-10-20 21344]
S3 grmnusb;grmnusb; F:\WINDOWS\system32\drivers\grmnusb.sys [2003-09-23 7296]
S3 LVUSBSta;Logitech USB Monitor Filter; F:\WINDOWS\system32\DRIVERS\LVUSBSta.sys [2004-10-11 22016]
S3 MPE;Filtre BDA MPE; F:\WINDOWS\system32\DRIVERS\MPE.sys [2004-08-03 15360]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; F:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 Mtlstrm;Mtlstrm; F:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2004-08-25 1395376]
S3 NABTSFEC;Codec NABTS/FEC VBI; F:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; F:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 nm;Pilote du Moniteur réseau; F:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-03 40320]
S3 PID_0928;Labtec WebCam(PID_0928); F:\WINDOWS\system32\DRIVERS\LV561AV.SYS [2004-10-11 211712]
S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); F:\WINDOWS\system32\DRIVERS\rfcomm.sys [2004-08-03 59648]
S3 RTL8187B;Realtek RTL8187B Wireless 802.11g 54Mbps USB 2.0 Network Adapter; F:\WINDOWS\system32\DRIVERS\RTL8187B.sys []
S3 SjyPkt;SjyPkt; \??\F:\WINDOWS\System32\Drivers\SjyPkt.sys []
S3 SLIP;Détrameur décalage BDA; F:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 SlNtHal;SlNtHal; F:\WINDOWS\system32\DRIVERS\Slnthal.sys [2004-08-25 100240]
S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); F:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); F:\WINDOWS\system32\DRIVERS\sscdbus.sys [2005-12-22 80272]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; F:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2005-12-22 10864]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; F:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2005-12-22 137884]
S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); F:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2007-05-02 83592]
S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; F:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2007-05-02 15112]
S3 ssm_mdm;SAMSUNG Mobile USB Port II 1.0 Drivers; F:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2007-05-02 109704]
S3 streamip;BDA IPSink; F:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 USB28xxBGA;USB 2863 Device; F:\WINDOWS\system32\DRIVERS\emBDA.sys [2008-05-14 535040]
S3 USB28xxOEM;USB 28xx OEM Filter; F:\WINDOWS\system32\DRIVERS\emOEM.sys [2008-05-14 286208]
S3 usbprint;Classe d'imprimantes USB Microsoft; F:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Pilote de scanneur USB; F:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Pilote de stockage de masse USB; F:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WSTCODEC;Codec Teletext standard; F:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 IntelIde;IntelIde; F:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 6to4;Service d'application d'assistance IPv6; F:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
R2 Apple Mobile Device;Apple Mobile Device; F:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-10 116040]
R2 aswUpdSv;avast! iAVS4 Control Service; F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; F:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 Bonjour Service;Service Bonjour; F:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 BthServ;Bluetooth Support Service; F:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
R2 JavaQuickStarterService;Java Quick Starter; F:\Program Files\Java\jre6\bin\jqs.exe [2009-11-25 153376]
R2 MemeoBackgroundService;MemeoBackgroundService; F:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe [2009-03-07 25824]
R2 NwSapAgent;Agent SAP; F:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); F:\Program Files\Cyberlink\Shared files\RichVideo.exe [2008-12-31 247152]
R2 YahooAUService;Yahoo! Updater; F:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
R3 avast! Mail Scanner;avast! Mail Scanner; F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; F:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 LIVESRV;BitDefender Desktop Update Service; F:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe [2007-08-11 237568]
S3 aspnet_state;ASP.NET State Service; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; F:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-18 182768]
S3 IDriverT;InstallDriver Table Manager; F:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; F:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-29 89136]
S3 PACSPTISVR;PACSPTISVR; F:\Program Files\Fichiers communs\Sony Shared\AVLib\Pacsptisvr.exe [2004-01-30 65625]
S3 SPTISRV;Sony SPTI Service; F:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe [2004-01-30 65622]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
INFO.TXT:
======Uninstall list======
-->F:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 F:\WINDOWS\INF\PCHealth.inf
-->VTUninst.exe -reg 5 'HKLM\Software\S3\VT\S3Uninst\S3Timer'
2+2 v.2.1a-->F:\Program Files\logicL_math_2+2 v.2.1a\uninstall.exe
AbaCalc-->F:\WINDOWS\st6unst.exe -n "F:\Program Files\Abacalc\ST6UNST.LOG"
Adobe Flash Player 10 ActiveX-->F:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Photoshop Elements 2.0-->F:\WINDOWS\ISUN040C.EXE -f"F:\Program Files\Adobe\Photoshop Elements 2\Uninst.isu" -c"F:\Program Files\Adobe\Photoshop Elements 2\Uninst.dll"
Adobe Reader 7.0 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70000000000}
Apple Mobile Device Support-->MsiExec.exe /I{AA9768AA-FF0B-4C66-A085-31E934F77841}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->F:\Program Files\WinRAR\uninstall.exe
ArtRage-->MsiExec.exe /I{CF72DC2F-F292-4D2B-B4E8-7D2060F095DA}
Ask Toolbar-->"F:\Program Files\AskBarDis\unins000.exe"
avast! Antivirus-->F:\Program Files\Alwil Software\Avast4\aswRunDll.exe "F:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
Caere Scan Manager 5.0-->MsiExec.exe /I{81D62C32-0984-11D3-86CD-00105AD33021}
Canon CanoScan Toolbox 4.9-->RunDll32 F:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}\setup.exe" -l0x40c anything
Canon Digital Camera USB WIA Driver-->F:\WINDOWS\IsUn040c.exe -f"F:\Program Files\Canon\DC USB WIA\Uninst.isu" -c"F:\Program Files\Canon\DC USB WIA\SetupWia.dll"
Canon ScanGear Starter-->RunDll32 F:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{18A5DFF2-8A95-49F3-873F-743CB5549F3D}\SETUP.EXE" -l0x40c anything
Canon Utilities PhotoStitch 3.1-->F:\WINDOWS\IsUn040c.exe -f"F:\Program Files\Canon\PhotoStitch\Uninst.isu"
Canon Utilities RemoteCapture 2.2-->F:\WINDOWS\IsUn040c.exe -f"F:\Program Files\Canon\RemoteCapture\Uninst.isu"
Canon Utilities ZoomBrowser EX-->F:\WINDOWS\IsUn040c.exe -f"F:\Program Files\Canon\ZoomBrowser EX\Uninst.isu" -c"F:\Program Files\Canon\ZoomBrowser EX\Program\uninstallutilities.dll"
CartoExploreur 3D 1.01-->"F:\Program Files\Bayo\Setup\CartoExploreur 3D 1.01\unins000.exe"
Casesym 1.0-->"F:\Program Files\symetrie\uninstall.exe"
CDex extraction audio-->"F:\Program Files\CDex_150\uninstall.exe"
Correctif pour Windows XP (KB952287)-->"F:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"F:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB970653-v3)-->"F:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Correctif Windows XP - KB873339-->F:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
Correctif Windows XP - KB885250-->F:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
Correctif Windows XP - KB885835-->F:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
Correctif Windows XP - KB885836-->F:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
Correctif Windows XP - KB885884-->F:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
Correctif Windows XP - KB886185-->F:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
Correctif Windows XP - KB887472-->F:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
Correctif Windows XP - KB887742-->F:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe
Correctif Windows XP - KB888113-->F:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
Correctif Windows XP - KB888302-->F:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
Correctif Windows XP - KB890859-->"F:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
Correctif Windows XP - KB891781-->F:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
CyberLink PhotoNow-->"F:\Program Files\InstallShield Installation Information\{D36DD326-7280-11D8-97C8-000129760CBE}\Setup.exe" /z-uninstall
CyberLink PhotoNow-->"F:\Program Files\InstallShield Installation Information\{D36DD326-7280-11D8-97C8-000129760CBE}\Setup.exe" /z-uninstall
CyberLink PowerDirector-->"F:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\Setup.exe" /z-uninstall
CyberLink PowerDirector-->"F:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\Setup.exe" /z-uninstall
DeepBurner v1.5.1.192-->"F:\Program Files\Astonsoft\DeepBurner\Uninstall.exe" "F:\Program Files\Astonsoft\DeepBurner\install.log"
DiaporamaWeb-->F:\WINDOWS\SIUnInst.exe F:\Program Files\DiaporamaWeb\Uninst.log
Dico Open-->F:\Program Files\Dico Open\uninstall.exe
Didapages 1.1-->F:\Program Files\Didapages\uninst.exe
DivX Codec-->F:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->F:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Web Player-->F:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
EasyGPS 2.9.1-->"F:\Program Files\EasyGPS\unins000.exe"
Fables-->F:\Documents and Settings\All Users\Menu Démarrer\ECOLE\Uninstal.exe
FileZilla Client 3.2.3.1-->F:\Program Files\FileZilla FTP Client\uninstall.exe
France Topo 2 Pyrénées-->"C:\Garmin\France Topo 2 Pyrénées\unins000.exe"
France Topo 3 Provence Côte d'Azur Méditerranée-->"C:\Garmin\France Topo 3 Provence Côte d'Azur Méditerranée\unins000.exe"
France Topo 7 Massif Central-->"C:\Garmin\France Topo 7 Massif Central\unins000.exe"
Free PDF to Word Doc Converter v1.1-->"F:\Program Files\Free PDF to Word Doc Converter\unins000.exe"
Garmin Atlantic (European) Basemap-->C:\Garmin\Basemap\UNWISE.EXE C:\Garmin\Basemap\INSTALL.LOG
Garmin Trip and Waypoint Manager v4-->MsiExec.exe
Bonjour,
voici le lien du virus détecté par avast à chaque fois que j'ouvre un mail. Je ne sais pas quoi faire
car ensuite j'ai carrément à mettre en quarantaine le monstre.
Seulement cela recommence à chque fois
https://mail.yahoo.com/\{gzip}
puis il ya : connexion à "ad.yieldmanager.com" (je n'arrive pas à lire tout)
Je suis perdue et bien ennuyée.
merci de me donner la marche à suivre
Configuration: Windows XP Internet Explorer 6.0
je vous poste les deux rapports que j'ai eu avec RSIT:
log.txt:
Logfile of random's system information tool 1.06 (written by random/random)
Run by FRAMBOISE at 2009-12-28 11:05:35
Microsoft Windows XP Professionnel Service Pack 2
System drive F: has 2 GB (7%) free of 24 GB
Total RAM: 447 MB (26% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:06:04, on 28/12/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\Explorer.EXE
F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
F:\Program Files\Alwil Software\Avast4\ashServ.exe
F:\WINDOWS\system32\spoolsv.exe
F:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
F:\Program Files\Bonjour\mDNSResponder.exe
F:\Program Files\Java\jre6\bin\jqs.exe
F:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe
F:\Program Files\Cyberlink\Shared files\RichVideo.exe
F:\WINDOWS\system32\svchost.exe
F:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
F:\WINDOWS\system32\wbem\wmiapsrv.exe
F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
F:\Program Files\Java\jre6\bin\jusched.exe
F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
F:\WINDOWS\system32\wuauclt.exe
F:\Program Files\Internet Explorer\iexplore.exe
F:\WINDOWS\system32\NOTEPAD.EXE
F:\Documents and Settings\FRAMBOISE\Bureau\RSIT.exe
F:\Program Files\trend micro\FRAMBOISE.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - F:\Program Files\AskSearch\bin\DefaultSearch.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - F:\Program Files\AskBarDis\bar\bin\askBar1.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - F:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - F:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - F:\Program Files\AskBarDis\bar\bin\askBar1.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [avast!] F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "F:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [swg] "F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = F:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = F:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://F:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://F:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://F:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - F:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - F:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: f:\windows\system32\nwprovau.dll
O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - https://www.snapfish.fr/2/home
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - F:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader5.cab
O16 - DPF: {68C1822F-F5C7-4404-A73F-03C10E0E94DA} (telechargement-photoweb) - http://www4.photoweb.fr/telechargement/Photoweb_uploader.cab
O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.fr/ImageUploader4.cab
O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.photoways.com/clients/uploader_v2.2.0.6.cab
O23 - Service: Apple Mobile Device - Apple Inc. - F:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - F:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Software Updater (gusvc) - Google - F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - F:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - F:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: MemeoBackgroundService - Memeo - F:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe
O23 - Service: PACSPTISVR - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - F:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - F:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 7614 bytes
======Scheduled tasks folder======
F:\WINDOWS\tasks\GlaryInitialize.job
F:\WINDOWS\tasks\WGASetup.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - F:\Program Files\AskBarDis\bar\bin\askBar1.dll [2008-07-17 279944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - F:\Program Files\Java\jre6\bin\ssv.dll [2009-11-25 321312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-30 263280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - F:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-30 764912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - F:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - F:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-25 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - F:\Program Files\AskBarDis\bar\bin\askBar1.dll [2008-07-17 279944]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-30 263280]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"SunJavaUpdateSched"=F:\Program Files\Java\jre6\bin\jusched.exe [2009-11-25 149280]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-18 39408]
F:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Adobe Gamma Loader.lnk - F:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
Lancement rapide d'Adobe Reader.lnk - F:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Microsoft Office.lnk - F:\Program Files\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"F:\Program Files\FileZilla\FileZilla.exe"="F:\Program Files\FileZilla\FileZilla.exe:*:Enabled:FileZilla"
"F:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="F:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"F:\Program Files\Yahoo!\Messenger\YServer.exe"="F:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server"
"F:\Program Files\MSN Messenger\msnmsgr.exe"="F:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"F:\Program Files\MSN Messenger\livecall.exe"="F:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"E:\install guppy\miniGuppY.cmd"="E:\install guppy\miniGuppY.cmd:*:Disabled:miniGuppY"
"F:\Program Files\GUPPY\ZazouMiniWebServer.exe"="F:\Program Files\GUPPY\ZazouMiniWebServer.exe:*:Disabled:ZazouMiniWebServer"
"E:\install guppy\ZazouMiniWebServer.exe"="E:\install guppy\ZazouMiniWebServer.exe:*:Disabled:ZazouMiniWebServer"
"F:\Documents and Settings\FRAMBOISE\Application Data\U3\0000180CB7708DB9\0DE4F643-C398-46ec-9339-2362F2311932\Exec\Skype.exe"="F:\Documents and Settings\FRAMBOISE\Application Data\U3\0000180CB7708DB9\0DE4F643-C398-46ec-9339-2362F2311932\Exec\Skype.exe:*:Enabled:Skype"
"F:\Program Files\Messenger\msmsgs.exe"="F:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"F:\Program Files\video_dvd\CyberLink\PowerDirector\PowerDirector\PDR.exe"="F:\Program Files\video_dvd\CyberLink\PowerDirector\PowerDirector\PDR.exe:*:Enabled:CyberLink PowerDirector"
"F:\Program Files\7z457.exe"="F:\Program Files\7z457.exe:*:Disabled:7z457"
"F:\Program Files\Bonjour\mDNSResponder.exe"="F:\Program Files\Bonjour\mDNSResponder.exe:*:Disabled:Bonjour"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"F:\Program Files\MSN Messenger\msnmsgr.exe"="F:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"F:\Program Files\MSN Messenger\livecall.exe"="F:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{061e051c-067f-11de-904a-0060b3d27de6}]
shell\1\command - .\RECYCLER\RECYCLER\autorun.exe
shell\2\command - .\RECYCLER\RECYCLER\autorun.exe
shell\AutoRun\command - F:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\RECYCLER\RECYCLER\autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5bffc556-48f7-11dd-8f8f-0060b3d27de6}]
shell\AutoRun\command - E:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5bffc557-48f7-11dd-8f8f-0060b3d27de6}]
shell\AutoRun\command - J:\setupSNK.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5cbaf9e6-ac05-11dc-8eb2-0060b3d27de6}]
shell\Auto\command - cmd /C launch.bat
shell\AutoRun\command - F:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{93f65c08-ee57-11da-8c64-0060b3d27de6}]
shell\AutoRun\command - drivers/aerivv.exe
shell\explore\command - drivers/aerivv.exe
shell\open\command - drivers/aerivv.exe
======List of files/folders created in the last 1 months======
2009-12-28 11:05:38 ----D---- F:\Program Files\trend micro
2009-12-28 11:05:35 ----D---- F:\rsit
======List of files/folders modified in the last 1 months======
2009-12-28 11:05:38 ----RD---- F:\Program Files
2009-12-28 11:05:36 ----D---- F:\WINDOWS\Prefetch
2009-12-28 10:54:33 ----D---- F:\WINDOWS\Temp
2009-12-28 10:35:01 ----D---- F:\WINDOWS
2009-12-27 21:40:28 ----A---- F:\WINDOWS\SchedLgU.Txt
2009-12-27 20:46:34 ----D---- F:\Program Files\cleaner_benoit
2009-12-27 20:44:46 ----SD---- F:\WINDOWS\Tasks
2009-12-26 14:37:21 ----D---- F:\WINDOWS\system32
2009-12-19 17:59:29 ----D---- F:\Program Files\CDex_150
2009-12-04 19:51:14 ----D---- F:\WINDOWS\system32\CatRoot2
2009-12-04 18:02:57 ----D---- F:\Documents and Settings\FRAMBOISE\Application Data\U3
2009-11-30 19:55:23 ----SHD---- F:\WINDOWS\Installer
2009-11-29 17:56:55 ----RSD---- F:\WINDOWS\Fonts
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; F:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; F:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; F:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 StarOpen;StarOpen; F:\WINDOWS\system32\drivers\StarOpen.sys [2009-02-11 5632]
R1 Tcpip6;Pilote du protocole IPv6 Microsoft; F:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
R2 aswFsBlk;aswFsBlk; F:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; F:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; F:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448]
R2 NwlnkNb;NetBIOS NWLink; F:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2002-08-30 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; F:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2002-08-30 55936]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); F:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-09-21 2278784]
R3 aswRdr;aswRdr; F:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; F:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; F:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; F:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HidUsb;Pilote de classe HID Microsoft; F:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 mouhid;Pilote HID de souris; F:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 Mtlmnt5;Mtlmnt5; F:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2004-08-25 229720]
R3 pfc;Padus ASPI Shell; F:\WINDOWS\system32\drivers\pfc.sys [2006-08-06 9856]
R3 Slntamr;SmartLink AMR_PCI Driver; F:\WINDOWS\system32\DRIVERS\slntamr.sys [2004-08-25 653600]
R3 SlWdmSup;SlWdmSup; F:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2004-08-25 13216]
R3 SynTP;Synaptics TouchPad Driver; F:\WINDOWS\system32\DRIVERS\SynTP.sys [2004-08-12 185664]
R3 tunmp;Pilote de carte miniport Tun Microsoft; F:\WINDOWS\system32\DRIVERS\tunmp.sys [2004-08-19 12416]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; F:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Concentrateur USB2; F:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; F:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 viagfx;viagfx; F:\WINDOWS\system32\DRIVERS\vtmini.sys [2004-09-01 171392]
R3 XG350XP;NB 802.11g XG350 Driver; F:\WINDOWS\system32\DRIVERS\WlanCTG.sys [2004-12-10 481664]
S3 BthEnum;Pilote de bloc de demande Bluetooth; F:\WINDOWS\system32\DRIVERS\BthEnum.sys [2004-08-03 17024]
S3 BTHMODEM;Pilote de communication série Bluetooth; F:\WINDOWS\system32\DRIVERS\bthmodem.sys [2004-08-03 38016]
S3 BthPan;Périphérique Bluetooth (réseau personnel); F:\WINDOWS\system32\DRIVERS\bthpan.sys [2004-08-03 100992]
S3 BTHPORT;Pilote de port Bluetooth; F:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272768]
S3 BTHUSB;Pilote USB radio Bluetooth; F:\WINDOWS\System32\Drivers\BTHUSB.sys [2004-08-03 18944]
S3 CCDECODE;Décodeur sous-titre fermé; F:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 fbxusb;Carte réseau virtuelle FreeBox USB; F:\WINDOWS\system32\DRIVERS\fbxusb32.sys [2004-10-20 21344]
S3 grmnusb;grmnusb; F:\WINDOWS\system32\drivers\grmnusb.sys [2003-09-23 7296]
S3 LVUSBSta;Logitech USB Monitor Filter; F:\WINDOWS\system32\DRIVERS\LVUSBSta.sys [2004-10-11 22016]
S3 MPE;Filtre BDA MPE; F:\WINDOWS\system32\DRIVERS\MPE.sys [2004-08-03 15360]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; F:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 Mtlstrm;Mtlstrm; F:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2004-08-25 1395376]
S3 NABTSFEC;Codec NABTS/FEC VBI; F:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; F:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 nm;Pilote du Moniteur réseau; F:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-03 40320]
S3 PID_0928;Labtec WebCam(PID_0928); F:\WINDOWS\system32\DRIVERS\LV561AV.SYS [2004-10-11 211712]
S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); F:\WINDOWS\system32\DRIVERS\rfcomm.sys [2004-08-03 59648]
S3 RTL8187B;Realtek RTL8187B Wireless 802.11g 54Mbps USB 2.0 Network Adapter; F:\WINDOWS\system32\DRIVERS\RTL8187B.sys []
S3 SjyPkt;SjyPkt; \??\F:\WINDOWS\System32\Drivers\SjyPkt.sys []
S3 SLIP;Détrameur décalage BDA; F:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 SlNtHal;SlNtHal; F:\WINDOWS\system32\DRIVERS\Slnthal.sys [2004-08-25 100240]
S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); F:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); F:\WINDOWS\system32\DRIVERS\sscdbus.sys [2005-12-22 80272]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; F:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2005-12-22 10864]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; F:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2005-12-22 137884]
S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); F:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2007-05-02 83592]
S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; F:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2007-05-02 15112]
S3 ssm_mdm;SAMSUNG Mobile USB Port II 1.0 Drivers; F:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2007-05-02 109704]
S3 streamip;BDA IPSink; F:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 USB28xxBGA;USB 2863 Device; F:\WINDOWS\system32\DRIVERS\emBDA.sys [2008-05-14 535040]
S3 USB28xxOEM;USB 28xx OEM Filter; F:\WINDOWS\system32\DRIVERS\emOEM.sys [2008-05-14 286208]
S3 usbprint;Classe d'imprimantes USB Microsoft; F:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Pilote de scanneur USB; F:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Pilote de stockage de masse USB; F:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WSTCODEC;Codec Teletext standard; F:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 IntelIde;IntelIde; F:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 6to4;Service d'application d'assistance IPv6; F:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
R2 Apple Mobile Device;Apple Mobile Device; F:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-10 116040]
R2 aswUpdSv;avast! iAVS4 Control Service; F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; F:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 Bonjour Service;Service Bonjour; F:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 BthServ;Bluetooth Support Service; F:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
R2 JavaQuickStarterService;Java Quick Starter; F:\Program Files\Java\jre6\bin\jqs.exe [2009-11-25 153376]
R2 MemeoBackgroundService;MemeoBackgroundService; F:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe [2009-03-07 25824]
R2 NwSapAgent;Agent SAP; F:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); F:\Program Files\Cyberlink\Shared files\RichVideo.exe [2008-12-31 247152]
R2 YahooAUService;Yahoo! Updater; F:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
R3 avast! Mail Scanner;avast! Mail Scanner; F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; F:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 LIVESRV;BitDefender Desktop Update Service; F:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe [2007-08-11 237568]
S3 aspnet_state;ASP.NET State Service; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; F:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-18 182768]
S3 IDriverT;InstallDriver Table Manager; F:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; F:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-29 89136]
S3 PACSPTISVR;PACSPTISVR; F:\Program Files\Fichiers communs\Sony Shared\AVLib\Pacsptisvr.exe [2004-01-30 65625]
S3 SPTISRV;Sony SPTI Service; F:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe [2004-01-30 65622]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
INFO.TXT:
======Uninstall list======
-->F:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 F:\WINDOWS\INF\PCHealth.inf
-->VTUninst.exe -reg 5 'HKLM\Software\S3\VT\S3Uninst\S3Timer'
2+2 v.2.1a-->F:\Program Files\logicL_math_2+2 v.2.1a\uninstall.exe
AbaCalc-->F:\WINDOWS\st6unst.exe -n "F:\Program Files\Abacalc\ST6UNST.LOG"
Adobe Flash Player 10 ActiveX-->F:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Photoshop Elements 2.0-->F:\WINDOWS\ISUN040C.EXE -f"F:\Program Files\Adobe\Photoshop Elements 2\Uninst.isu" -c"F:\Program Files\Adobe\Photoshop Elements 2\Uninst.dll"
Adobe Reader 7.0 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70000000000}
Apple Mobile Device Support-->MsiExec.exe /I{AA9768AA-FF0B-4C66-A085-31E934F77841}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->F:\Program Files\WinRAR\uninstall.exe
ArtRage-->MsiExec.exe /I{CF72DC2F-F292-4D2B-B4E8-7D2060F095DA}
Ask Toolbar-->"F:\Program Files\AskBarDis\unins000.exe"
avast! Antivirus-->F:\Program Files\Alwil Software\Avast4\aswRunDll.exe "F:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
Caere Scan Manager 5.0-->MsiExec.exe /I{81D62C32-0984-11D3-86CD-00105AD33021}
Canon CanoScan Toolbox 4.9-->RunDll32 F:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}\setup.exe" -l0x40c anything
Canon Digital Camera USB WIA Driver-->F:\WINDOWS\IsUn040c.exe -f"F:\Program Files\Canon\DC USB WIA\Uninst.isu" -c"F:\Program Files\Canon\DC USB WIA\SetupWia.dll"
Canon ScanGear Starter-->RunDll32 F:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{18A5DFF2-8A95-49F3-873F-743CB5549F3D}\SETUP.EXE" -l0x40c anything
Canon Utilities PhotoStitch 3.1-->F:\WINDOWS\IsUn040c.exe -f"F:\Program Files\Canon\PhotoStitch\Uninst.isu"
Canon Utilities RemoteCapture 2.2-->F:\WINDOWS\IsUn040c.exe -f"F:\Program Files\Canon\RemoteCapture\Uninst.isu"
Canon Utilities ZoomBrowser EX-->F:\WINDOWS\IsUn040c.exe -f"F:\Program Files\Canon\ZoomBrowser EX\Uninst.isu" -c"F:\Program Files\Canon\ZoomBrowser EX\Program\uninstallutilities.dll"
CartoExploreur 3D 1.01-->"F:\Program Files\Bayo\Setup\CartoExploreur 3D 1.01\unins000.exe"
Casesym 1.0-->"F:\Program Files\symetrie\uninstall.exe"
CDex extraction audio-->"F:\Program Files\CDex_150\uninstall.exe"
Correctif pour Windows XP (KB952287)-->"F:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"F:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB970653-v3)-->"F:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Correctif Windows XP - KB873339-->F:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
Correctif Windows XP - KB885250-->F:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
Correctif Windows XP - KB885835-->F:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
Correctif Windows XP - KB885836-->F:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
Correctif Windows XP - KB885884-->F:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
Correctif Windows XP - KB886185-->F:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
Correctif Windows XP - KB887472-->F:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
Correctif Windows XP - KB887742-->F:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe
Correctif Windows XP - KB888113-->F:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
Correctif Windows XP - KB888302-->F:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
Correctif Windows XP - KB890859-->"F:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
Correctif Windows XP - KB891781-->F:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
CyberLink PhotoNow-->"F:\Program Files\InstallShield Installation Information\{D36DD326-7280-11D8-97C8-000129760CBE}\Setup.exe" /z-uninstall
CyberLink PhotoNow-->"F:\Program Files\InstallShield Installation Information\{D36DD326-7280-11D8-97C8-000129760CBE}\Setup.exe" /z-uninstall
CyberLink PowerDirector-->"F:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\Setup.exe" /z-uninstall
CyberLink PowerDirector-->"F:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\Setup.exe" /z-uninstall
DeepBurner v1.5.1.192-->"F:\Program Files\Astonsoft\DeepBurner\Uninstall.exe" "F:\Program Files\Astonsoft\DeepBurner\install.log"
DiaporamaWeb-->F:\WINDOWS\SIUnInst.exe F:\Program Files\DiaporamaWeb\Uninst.log
Dico Open-->F:\Program Files\Dico Open\uninstall.exe
Didapages 1.1-->F:\Program Files\Didapages\uninst.exe
DivX Codec-->F:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->F:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Web Player-->F:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
EasyGPS 2.9.1-->"F:\Program Files\EasyGPS\unins000.exe"
Fables-->F:\Documents and Settings\All Users\Menu Démarrer\ECOLE\Uninstal.exe
FileZilla Client 3.2.3.1-->F:\Program Files\FileZilla FTP Client\uninstall.exe
France Topo 2 Pyrénées-->"C:\Garmin\France Topo 2 Pyrénées\unins000.exe"
France Topo 3 Provence Côte d'Azur Méditerranée-->"C:\Garmin\France Topo 3 Provence Côte d'Azur Méditerranée\unins000.exe"
France Topo 7 Massif Central-->"C:\Garmin\France Topo 7 Massif Central\unins000.exe"
Free PDF to Word Doc Converter v1.1-->"F:\Program Files\Free PDF to Word Doc Converter\unins000.exe"
Garmin Atlantic (European) Basemap-->C:\Garmin\Basemap\UNWISE.EXE C:\Garmin\Basemap\INSTALL.LOG
Garmin Trip and Waypoint Manager v4-->MsiExec.exe
Configuration: Windows XP Internet Explorer 6.0
A voir également:
- SOS rapports rsit..
- Rsit - Télécharger - Antivirus & Antimalwares
- Exemple des rapports de stage - Guide
- À quelle fréquence le galaxy s25 plante ou se fige selon les rapports des utilisateurs ? - Forum Samsung
2 réponses
bonjour
Télécharge AD Remover ( de Cyrildu17 / C_XX ) sur ton bureau :
http://pagesperso-orange.fr/NosTools/C_XX/AD-R.exe
ou
https://www.androidworld.fr/
Désactive l'anti-virus
Déconnecte toi et ferme toutes les applications en cours
Double clique sur le programme d'installation , et installe le dans son emplacement par défaut. ( C:\Program files )
Double-clique sur l'icône Ad-remover présent sur ton bureau pour le lancer
Au menu principal, sélectionne l'option L, puis appuie sur la touche entrée
Poste le rapport qui apparait à la fin .
( le rapport est sauvegardé aussi sous C:\Ad-report(date).log )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
Note :
"Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall
Télécharge AD Remover ( de Cyrildu17 / C_XX ) sur ton bureau :
http://pagesperso-orange.fr/NosTools/C_XX/AD-R.exe
ou
https://www.androidworld.fr/
Désactive l'anti-virus
Déconnecte toi et ferme toutes les applications en cours
Double clique sur le programme d'installation , et installe le dans son emplacement par défaut. ( C:\Program files )
Double-clique sur l'icône Ad-remover présent sur ton bureau pour le lancer
Au menu principal, sélectionne l'option L, puis appuie sur la touche entrée
Poste le rapport qui apparait à la fin .
( le rapport est sauvegardé aussi sous C:\Ad-report(date).log )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
Note :
"Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall
