ComboFix 07-12-21.4 - Visar 2007-12-30 15:13:25.2 - NTFSx86
Running from: C:\Documents and Settings\Visar\Bureau\ComboFix.exe
.
((((((((((((((((((((((((((((( Fichiers cr‚‚s 2007-11-28 to 2007-12-30 ))))))))))))))))))))))))))))))))))))
.
2007-12-29 19:05 . 2007-12-29 19:05 123 -r-hs---- C:\autorun.inf
2007-12-27 15:45 . 2007-12-27 15:45 2,007,722 --a------ C:\upload_moi_41A63901.tar.gz
2007-12-27 13:35 . 2007-12-27 13:35 <REP> d-------- C:\Program Files\MSXML 6.0
2007-12-27 13:07 . 2007-12-27 13:07 <REP> d-------- C:\Program Files\MSXML 4.0
2007-12-27 12:33 . 2007-07-30 19:19 38,232 --a------ C:\WINDOWS\system32\wucltui.dll.mui
2007-12-27 12:33 . 2007-07-30 19:20 30,040 --a------ C:\WINDOWS\system32\wuaucpl.cpl.mui
2007-12-27 12:33 . 2007-07-30 19:19 30,040 --a------ C:\WINDOWS\system32\wuapi.dll.mui
2007-12-27 12:33 . 2007-07-30 19:18 21,336 --a------ C:\WINDOWS\system32\wuaueng.dll.mui
2007-12-27 11:57 . 2007-06-21 21:54 1,086,952 --a------ C:\WINDOWS\system32\zpeng24.dll
2007-12-26 23:17 . 2007-12-26 23:17 <REP> d-------- C:\Documents and Settings\Visar\Application Data\Grisoft
2007-12-26 23:14 . 2007-12-26 23:14 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2007-12-26 23:14 . 2007-05-30 13:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2007-12-26 22:47 . 2007-09-24 23:31 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl
2007-12-26 22:09 . 2001-08-23 17:04 12,288 --a------ C:\WINDOWS\system32\drivers\mouhid.sys
2007-12-26 22:09 . 2001-08-23 17:04 12,288 --a--c--- C:\WINDOWS\system32\dllcache\mouhid.sys
2007-12-26 22:07 . 2007-12-26 22:07 110,656 --a------ C:\WINDOWS\system32\vlywgnxc.dll
2007-12-26 22:07 . 2007-12-30 13:11 26,855 --a------ C:\WINDOWS\BMff3cfda5.xml
2007-12-26 22:07 . 2007-12-30 15:24 22 --a------ C:\WINDOWS\pskt.ini
2007-12-26 14:50 . 2001-08-17 22:02 9,600 --a------ C:\WINDOWS\system32\drivers\hidusb.sys
2007-12-26 14:50 . 2001-08-17 22:02 9,600 --a--c--- C:\WINDOWS\system32\dllcache\hidusb.sys
2007-12-25 19:45 . 2007-12-26 22:07 1,026,915 ---hs---- C:\WINDOWS\system32\thtkhawc.ini
2007-12-24 15:28 . 2007-12-25 19:44 1,019,102 ---hs---- C:\WINDOWS\system32\xdrkhxwi.ini
2007-12-23 17:14 . 2007-12-23 17:14 143 --a------ C:\WINDOWS\system32\mcrh.tmp
2007-12-23 11:37 . 2007-12-24 15:28 992,776 ---hs---- C:\WINDOWS\system32\pfmsoyct.ini
2007-12-22 22:24 . 2007-12-22 22:24 <REP> d-------- C:\Program Files\Trend Micro
2007-12-22 22:20 . 2007-12-27 15:24 <REP> d-------- C:\WINDOWS\system32\rf1
2007-12-22 22:20 . 2007-12-22 22:20 <REP> d-------- C:\WINDOWS\system32\ey2
2007-12-22 22:20 . 2007-12-22 22:20 <REP> d-------- C:\WINDOWS\system32\ardCo01
2007-12-22 22:20 . 2007-12-22 22:20 <REP> d-------- C:\Temp\cEeer12
2007-12-22 22:13 . 2004-03-09 00:00 609,824 --a------ C:\WINDOWS\system32\COMCTL32.ocx
2007-12-22 22:13 . 2004-03-09 00:00 212,240 --a------ C:\WINDOWS\system32\richtx32.OCX
2007-12-22 22:13 . 2004-03-09 00:00 124,688 --a------ C:\WINDOWS\system32\MSWINSCK.ocx
2007-12-22 15:57 . 2007-12-22 15:57 <REP> d-------- C:\Program Files\SystemRequirementsLab
2007-12-22 15:57 . 2007-12-22 15:57 <REP> d-------- C:\Documents and Settings\Visar\Application Data\SystemRequirementsLab
2007-11-24 11:26 . 2007-11-24 11:26 <REP> d-------- C:\Program Files\iPod
2007-11-17 11:40 . 2007-11-17 11:40 <REP> d-------- C:\Program Files\DivX
2007-11-12 16:18 . 2007-11-12 16:18 <REP> d-------- C:\Documents and Settings\Albina\Application Data\Motive
2007-11-09 19:51 . 2007-11-09 19:51 <REP> d-------- C:\Documents and Settings\All Users\Application Data\MotiveSysIDs
2007-11-09 19:50 . 2005-04-05 16:20 69,632 --a------ C:\WINDOWS\system32\MCCDevice.dll
2007-11-09 19:50 . 2005-03-25 17:27 6,048 --a------ C:\WINDOWS\system32\MCC16.dll
2007-11-09 19:22 . 2007-11-09 19:22 <REP> d-------- C:\WINDOWS\Motive
2007-11-09 19:22 . 2007-11-09 19:22 <REP> d-------- C:\Program Files\Motive
2007-11-09 19:22 . 2007-11-09 19:22 <REP> d-------- C:\Program Files\Fichiers communs\Motive
2007-11-09 19:22 . 2007-11-09 19:22 <REP> d-------- C:\Program Files\Common Files
2007-11-09 19:22 . 2007-11-09 19:22 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Motive
2007-11-09 19:22 . 2003-10-22 09:54 81,920 --a------ C:\WINDOWS\system32\W32n50.dll
2007-11-09 19:22 . 2003-10-22 09:54 17,162 --a------ C:\WINDOWS\system32\Pcandis5.sys
2007-11-09 19:22 . 2003-10-22 09:54 16,848 --a------ C:\WINDOWS\system32\Pcandis4.sys
2007-11-09 19:22 . 2003-10-22 09:54 16,073 --a------ C:\WINDOWS\system32\Pcandis3.vxd
2007-11-09 19:18 . 2007-11-09 19:18 <REP> d-------- C:\Program Files\BroadJump
2007-11-09 19:14 . 2007-11-09 19:51 <REP> d-------- C:\Program Files\Club-Internet
2007-11-09 19:14 . 2002-02-14 03:53 6,345 -ra------ C:\WINDOWS\system32\DevMngr.vxd
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-12-29 19:41 --------- d-----w C:\Documents and Settings\Albina\Application Data\OpenOffice.org2
2007-12-27 15:23 --------- d-----w C:\Program Files\PowerArchiver
2007-12-27 14:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-12-26 22:07 --------- d-----w C:\Program Files\Windows Live Safety Center
2007-12-26 21:51 --------- d-----w C:\Program Files\Java
2007-12-22 21:13 --------- d-----w C:\Program Files\MSN Messenger
2007-11-24 10:21 --------- d-----w C:\Program Files\Apple Software Update
2007-11-15 20:46 --------- d-----w C:\Program Files\DLDIrc
2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-11-07 20:54 --------- d-----w C:\Documents and Settings\Visar\Application Data\Apple Computer
2007-10-28 12:26 0 ----a-w C:\Documents and Settings\Visar\dlditool.exe
2006-04-15 12:16 5 -c--a-w C:\Documents and Settings\Visar\getfile.dat
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MessengerPlus3"="C:\Program Files\MessengerPlus! 3\MsgPlus.exe" [2006-09-30 10:46]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 11:55]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 13:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="RUNDLL32.exe" [2004-08-05 13:00 C:\WINDOWS\system32\rundll32.exe]
"QuickTime Task"="D:\Program Files\K-Lite Codec Pack\QuickTime\QTTask.exe" [2007-10-19 20:16]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11]
"ZoneAlarm Client"="d:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2007-06-21 21:54]
"BMff3cfda5"="Rundll32.exe" [2004-08-05 13:00 C:\WINDOWS\system32\rundll32.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-05 13:00]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk
backup=C:\WINDOWS\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^LE COMPAGNON CLUB.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\LE COMPAGNON CLUB.lnk
backup=C:\WINDOWS\pss\LE COMPAGNON CLUB.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk
backup=C:\WINDOWS\pss\Logitech Desktop Messenger.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Visar^Menu Démarrer^Programmes^Démarrage^BitTorrent.lnk]
path=C:\Documents and Settings\Visar\Menu Démarrer\Programmes\Démarrage\BitTorrent.lnk
backup=C:\WINDOWS\pss\BitTorrent.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Visar^Menu Démarrer^Programmes^Démarrage^Club Internet.lnk]
path=C:\Documents and Settings\Visar\Menu Démarrer\Programmes\Démarrage\Club Internet.lnk
backup=C:\WINDOWS\pss\Club Internet.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Visar^Menu Démarrer^Programmes^Démarrage^ctfmon.exe]
path=C:\Documents and Settings\Visar\Menu Démarrer\Programmes\Démarrage\ctfmon.exe
backup=C:\WINDOWS\pss\ctfmon.exeStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Visar^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.1.lnk]
path=C:\Documents and Settings\Visar\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 2.1.lnk
backup=C:\WINDOWS\pss\OpenOffice.org 2.1.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Visar^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.2.lnk]
path=C:\Documents and Settings\Visar\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 2.2.lnk
backup=C:\WINDOWS\pss\OpenOffice.org 2.2.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Visar^Menu Démarrer^Programmes^Démarrage^Outil de détection de support de Cyber-shot Viewer.lnk]
path=C:\Documents and Settings\Visar\Menu Démarrer\Programmes\Démarrage\Outil de détection de support de Cyber-shot Viewer.lnk
backup=C:\WINDOWS\pss\Outil de détection de support de Cyber-shot Viewer.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Visar^Menu Démarrer^Programmes^Démarrage^SKYSM.lnk]
path=C:\Documents and Settings\Visar\Menu Démarrer\Programmes\Démarrage\SKYSM.lnk
backup=C:\WINDOWS\pss\SKYSM.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Visar^Menu Démarrer^Programmes^Démarrage^Stardock ObjectDock.lnk]
path=C:\Documents and Settings\Visar\Menu Démarrer\Programmes\Démarrage\Stardock ObjectDock.lnk
backup=C:\WINDOWS\pss\Stardock ObjectDock.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Visar^Menu Démarrer^Programmes^Démarrage^Y'z ToolBar.lnk]
path=C:\Documents and Settings\Visar\Menu Démarrer\Programmes\Démarrage\Y'z ToolBar.lnk
backup=C:\WINDOWS\pss\Y'z ToolBar.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]
d:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe /minimized
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
D:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BJCFD]
2003-01-27 17:16 376912 --a------ C:\Program Files\BroadJump\Client Foundation\CFD.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cmaudio]
RunDll32 cmicnfg.cpl,CMICtrlWnd
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
2004-08-05 13:00 15360 --a------ C:\WINDOWS\system32\ctfmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
d:\Program Files\DAEMON Tools\daemon.exe -lang 1033
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe -start
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2007-11-02 18:36 267048 --a------ D:\Program Files\iTunes\iTunesHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAVPersonal50]
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\kav.exe /minimize
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanceurEasyBox]
d:\Program Files\EasyBox\EasyBox.exe -AutoStart
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LDM]
2007-01-14 20:00 36864 --a------ C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
2006-10-31 01:03 284184 --a--c--- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe /hide
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
2006-11-15 22:01 244512 --a--c--- C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Motive SmartBridge]
2006-04-21 15:41 438359 --a------ C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe /background
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando]
D:\Program Files\Pando Networks\Pando\pando.exe /Minimized
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PKR Pal]
D:\Program Files\PKR\pkrpal.exe -osboot
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\Program Files\K-Lite Codec Pack\QuickTime\qttask.exe -atboottime
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RocketDock]
2007-03-18 23:05 630784 --a------ C:\Program Files\RocketDock\RocketDock.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StandardInstall]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9 -reboot 1
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VC8Player]
d:\Program Files\Virtual CD v8\System\VC8Play.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Virtual PDF Printer]
C:\Program Files\Virtual PDF Printer\VirtualPDFPrinter.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zone Labs Client]
2007-06-21 21:54 919016 --a------ d:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"PDSched"=2 (0x2)
"PDEngine"=3 (0x3)
"cmdService"=2 (0x2)
"usnjsvc"=3 (0x3)
"AVG Anti-Spyware Guard"=2 (0x2)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"MessengerPlus3"="C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd
"NvMediaCenter"=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
"MessengerPlus3"="C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
"NvCplDaemon"=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
R0 Defrag32b;Defrag32Boot;C:\WINDOWS\system32\drivers\Defrag32b.sys [2005-06-28 09:17]
R2 Defrag32;Defrag32;C:\WINDOWS\system32\drivers\Defrag32.sys [2005-06-28 09:17]
R2 UxTuneUp;Extension de conception TuneUp;C:\WINDOWS\System32\svchost.exe -k netsvcs []
R2 Vcs;Vcs support;C:\WINDOWS\system32\Drivers\Vcs.sys [2004-11-14 13:01]
S3 Camdrv30;Philips ToUcam XS;C:\WINDOWS\system32\Drivers\camdrv30.sys [2001-08-17 23:04]
S3 RivaTuner32;RivaTuner32;C:\Program Files\RivaTuner v2.01\RivaTuner32.sys [2007-04-29 18:05]
S4 PDSched;PDScheduler;"C:\Program Files\Raxco\PerfectDisk\PDSched.exe" [2005-06-28 13:07]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\C]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\Recycled\ctfmon.exe
\Shell\Open(&O)\command - C:\Recycled\Recycled\ctfmon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe
\Shell\Open(&0)\command - D:\Recycled\ctfmon.exe
.
Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'
"2007-12-29 11:59:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
"2007-12-21 16:24:20 C:\WINDOWS\Tasks\Maintenance en 1 clic.job"
- C:\Program Files\TuneUp Utilities 2007\SystemOptimizer.exe
.
**************************************************************************
catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-30 15:25:15
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-12-30 15:27:04 - machine was rebooted [Visar]
.
2007-12-27 12:46:34 --- E O F ---
===============================================
voilà le rapport combofix, je vous remercie pr l'interet que vous portez a mon problème.
Bon dimanche 
PS: problème en partie réglé concernant la navigation sur internet, apparament ZA bloquait les cookies.^^
Message édité par vis4r le 30-12-2007 à 15:24:10
---------------
-= V!s4R =-
![[:mr_jo]](/images/perso/mr_jo.gif "[:mr_jo]")
