Forum |  HardWare.fr | News | Articles | PC | S'identifier | S'inscrire | Shop Recherche
1363 connectés 

  FORUM HardWare.fr
  Windows & Software
  Virus/Spywares

  Virus sur un raid0 [3dd] problème d'affichage et plantage Firefox

 
 


 Mot :   Pseudo :  
 
Bas de page
Auteur Sujet :

Virus sur un raid0 [3dd] problème d'affichage et plantage Firefox

n°2896020
pr0faz
Le sommeil est une séparation.
Posté le 24-09-2009 à 21:47:06  profilanswer
 

Coucou,  
 
Mon raid0 a succombé à la grippe H1N1 !!  
 
Problème d'affichage :
 
http://nsa09.casimages.com/img/2009/09/24/090924094600292622.jpg
 
http://nsa09.casimages.com/img/2009/09/24/090924094656499658.jpg
 
Impossible de passer en 32 bits, ça revient automatiquement en 4 bits  :??:  
 
 
Rapport de plantage Firefox :
 
http://nsa09.casimages.com/img/2009/09/24/090924095021172048.jpg
 
 
Voici le rapport de ComboFix :
 

ComboFix 09-09-23.02 - Administrateur 24/09/2009 21:26.1.2 - NTFSx86
Microsoft Windows XP Professionnel  5.1.2600.3.1252.33.1036.18.1023.416 [GMT 2:00]
Lancé depuis: \\Compaq\westerne d\Protection\ComboFix.exe
.
 
((((((((((((((((((((((((((((((((((((   Autres suppressions   ))))))))))))))))))))))))))))))))))))))))))))))))
.
 
c:\windows\system32\msconfig.exe
c:\windows\system32\prnqctl.vbs
 
.
(((((((((((((((((((((((((((((   Fichiers créés du 2009-08-24 au 2009-09-24  ))))))))))))))))))))))))))))))))))))
.
 
2009-09-24 19:06 . 2009-09-24 19:06 -------- d-----w- g:\documents and settings\Administrateur\Application Data\Malwarebytes
2009-09-24 19:06 . 2009-09-10 12:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-24 19:06 . 2009-09-24 19:06 -------- d-----w- d:\program files\Malwarebytes' Anti-Malware
2009-09-24 19:06 . 2009-09-24 19:06 -------- d-----w- g:\documents and settings\All Users\Application Data\Malwarebytes
2009-09-24 19:06 . 2009-09-10 12:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-09-24 18:09 . 2009-09-24 19:09 91 ----a-w- c:\windows\system32\tempBatFile.bat
2009-09-24 17:13 . 2009-09-24 17:13 0 ----a-w- c:\windows\nsreg.dat
2009-09-24 10:43 . 2009-09-24 10:43 -------- d-----w- g:\documents and settings\Administrateur\Application Data\dvd time cake
2009-09-24 10:37 . 2009-09-24 10:40 -------- d-----w- g:\documents and settings\All Users\Application Data\Idle bind itch live
2009-09-24 09:25 . 2009-09-24 09:26 -------- d-----w- d:\program files\eMule
2009-09-23 14:12 . 2008-11-12 06:52 18984 ----a-w- c:\windows\system32\drivers\mrdd.sys
2009-09-23 13:58 . 2009-09-24 10:39 -------- d-----w- d:\program files\ma-config.com
2009-09-23 13:58 . 2009-09-24 10:39 -------- d-----w- g:\documents and settings\All Users\Application Data\ma-config.com
2009-09-23 13:45 . 2009-09-23 13:54 -------- d-----w- g:\documents and settings\Administrateur\Application Data\Download Manager
2009-09-23 13:45 . 2009-09-23 13:45 -------- d-----w- c:\windows\Sun
2009-09-23 13:27 . 2009-09-23 13:27 -------- d-----w- c:\windows\Logs
2009-09-23 13:27 . 2009-09-23 13:27 -------- d-----w- d:\program files\SiSoftware
2009-09-23 08:58 . 2009-09-23 08:58 -------- d-----w- C:\Intel
2009-09-22 22:23 . 2009-09-22 22:23 -------- d-----w- d:\program files\Synergy
2009-09-22 21:34 . 2009-09-22 21:34 -------- d-----w- g:\documents and settings\All Users\Application Data\Innovative Solutions
2009-09-22 21:34 . 2009-09-22 21:34 -------- d-----w- g:\documents and settings\Administrateur\Local Settings\Application Data\Innovative Solutions
2009-09-22 21:33 . 2009-09-22 21:33 -------- d-----w- d:\program files\Innovative Solutions
2009-09-22 19:51 . 2009-09-22 19:51 -------- d-----w- g:\documents and settings\Administrateur\Local Settings\Application Data\PC_Drivers_Headquarters
2009-09-22 19:50 . 2009-09-22 19:50 -------- d-----w- g:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters
2009-09-22 19:50 . 2009-09-22 19:50 -------- d-----w- d:\program files\PC Drivers HeadQuarters
2009-09-22 19:40 . 2003-05-27 12:58 5248 ----a-w- c:\windows\system32\drivers\kmw_kbd.sys
2009-09-22 19:40 . 2003-05-27 12:58 4736 ----a-w- c:\windows\system32\drivers\kmw_lib.sys
2009-09-22 19:40 . 2003-05-27 12:48 106496 ----a-w- c:\windows\system32\kmw_run.exe
2009-09-22 19:40 . 2003-05-27 12:48 110592 ----a-w- c:\windows\system32\kmw_dll.dll
2009-09-22 19:40 . 2003-05-27 12:47 167936 ----a-w- c:\windows\system32\kmw_show.exe
2009-09-22 19:40 . 2009-09-22 19:40 -------- d-----w- d:\program files\Kensington
2009-09-22 17:08 . 2009-09-22 17:08 -------- d-----w- g:\documents and settings\Administrateur\Local Settings\Application Data\Help
2009-09-22 13:36 . 2009-09-22 13:36 -------- d-----w- g:\documents and settings\Administrateur\.VirtualBox
2009-09-22 13:34 . 2009-09-09 18:15 115856 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2009-09-22 13:34 . 2009-09-09 18:15 91856 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2009-09-22 13:34 . 2009-09-09 18:15 41424 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2009-09-22 13:34 . 2009-09-22 13:34 -------- d-----w- d:\program files\Sun
2009-09-22 10:30 . 2009-09-22 10:30 -------- d-----w- d:\program files\RocketDock
2009-09-22 10:24 . 2008-04-13 18:33 184320 ----a-w- c:\windows\system32\wuaueng1.dll
2009-09-22 10:04 . 2009-09-22 10:04 -------- d-----w- g:\documents and settings\Administrateur\Application Data\ViStart
2009-09-22 10:04 . 2009-09-22 10:04 -------- d-----w- d:\program files\ViStart
2009-09-22 00:42 . 2009-09-22 00:42 -------- d-----w- g:\documents and settings\Administrateur\Local Settings\Application Data\AeroSnapApp
2009-09-22 00:42 . 2009-09-22 00:42 -------- d-----w- g:\documents and settings\Administrateur\Application Data\AeroSnapApp
2009-09-22 00:34 . 2009-09-22 00:34 -------- d-----w- d:\program files\Stardock
2009-09-21 22:12 . 2009-09-21 22:32 -------- d-----w- g:\documents and settings\All Users\Application Data\FLEXnet
2009-09-21 22:08 . 2009-09-21 22:08 -------- d-----w- d:\program files\Common Files\Macrovision Shared
2009-09-21 21:36 . 2009-09-21 21:36 -------- d-----w- g:\documents and settings\Administrateur\Application Data\OpenOffice.org
2009-09-21 21:35 . 2009-09-21 21:35 -------- d-----w- d:\program files\JRE
2009-09-21 21:35 . 2009-09-21 21:35 -------- d-----w- d:\program files\OpenOffice.org 3
2009-09-21 21:35 . 2009-09-21 21:35 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-09-21 21:35 . 2009-09-21 21:35 -------- d-----w- d:\program files\Java
2009-09-21 21:35 . 2009-09-21 21:35 -------- d-----w- d:\program files\OpenOffice
2009-09-21 21:31 . 2009-09-21 22:55 -------- d-----w- g:\documents and settings\Administrateur\Local Settings\Application Data\Adobe
2009-09-21 21:09 . 2009-09-21 22:10 -------- d-----w- d:\program files\Common Files\Adobe
2009-09-21 19:26 . 2009-09-21 19:26 -------- d-s---w- g:\documents and settings\Administrateur\UserData
2009-09-21 19:26 . 2009-09-21 19:26 -------- d-----w- g:\documents and settings\All Users\Application Data\Messenger Plus!
2009-09-21 19:25 . 2009-09-21 19:25 -------- d-----w- d:\program files\Nicolas MERLET
2009-09-21 19:23 . 2009-09-21 20:07 -------- d-----w- d:\program files\StuffPlug3
2009-09-21 19:20 . 2009-09-21 19:20 -------- d-----w- d:\program files\Messenger Plus! Live
2009-09-21 19:20 . 2009-09-21 22:12 13976 ----a-w- g:\documents and settings\Administrateur\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-09-21 19:19 . 2009-09-21 20:03 -------- d-----w- g:\documents and settings\Administrateur\Contacts
2009-09-21 19:05 . 2009-09-21 19:05 -------- d-----w- d:\program files\Windows Live
2009-09-21 18:58 . 2009-09-21 19:00 -------- d-----w- d:\program files\Realizer 1.1 for Winamp
2009-09-21 17:34 . 2009-09-21 17:34 -------- d-----w- g:\documents and settings\Administrateur\Application Data\GRETECH
2009-09-21 17:33 . 2009-09-21 17:33 -------- d-----w- d:\program files\GRETECH
2009-09-21 17:26 . 2009-09-21 17:26 -------- d-----w- g:\documents and settings\Administrateur\Application Data\Media Player Classic
2009-09-21 17:11 . 2009-08-16 15:08 178176 ----a-w- c:\windows\system32\unrar.dll
2009-09-21 17:11 . 2009-05-29 21:37 205824 ----a-w- c:\windows\system32\xvidvfw.dll
2009-09-21 17:11 . 2009-05-29 21:31 881664 ----a-w- c:\windows\system32\xvidcore.dll
2009-09-21 17:11 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll
2009-09-21 17:11 . 2009-06-02 16:11 85504 ----a-w- c:\windows\system32\ff_vfw.dll
2009-09-21 17:11 . 2009-09-21 17:12 -------- d-----w- d:\program files\K-Lite Codec Pack
2009-09-21 17:02 . 2009-09-21 17:33 -------- d-----w- g:\documents and settings\Administrateur\Application Data\foobar2000
2009-09-21 16:55 . 2009-09-21 16:56 -------- d-----w- d:\program files\SpeedFan
2009-09-21 16:51 . 2009-09-21 16:51 -------- d-----w- d:\program files\CamStudio
2009-09-21 16:51 . 2009-09-24 16:28 -------- d-----w- d:\program files\7-Zip
2009-09-21 16:41 . 2009-09-21 16:41 -------- d-----w- g:\documents and settings\Administrateur\Local Settings\Application Data\WMTools Downloaded Files
2009-09-21 16:23 . 2009-09-21 16:23 -------- d-----w- g:\documents and settings\Administrateur\Local Settings\Application Data\Google
2009-09-21 14:24 . 2009-09-24 19:01 -------- d-----w- d:\program files\AGEIA Technologies
2009-09-21 14:24 . 2009-09-21 14:24 -------- d-----w- c:\windows\system32\AGEIA
2009-09-21 14:24 . 2009-09-24 19:01 -------- d-----w- d:\program files\Common Files\Wise Installation Wizard
2009-09-21 14:23 . 2009-09-21 14:23 -------- d-----w- c:\windows\nview
2009-09-21 14:23 . 2009-08-16 22:57 485920 ----a-w- c:\windows\system32\nvudisp.exe
2009-09-21 14:23 . 2009-08-11 10:35 485920 ----a-w- c:\windows\system32\NVUNINST.EXE
2009-09-21 14:12 . 2009-09-21 14:12 -------- d-----w- g:\documents and settings\Administrateur\Local Settings\Application Data\Mozilla
2009-09-21 14:08 . 2009-09-21 14:08 17801 ----a-w- c:\windows\system32\drivers\AegisP.sys
2009-09-21 14:08 . 2009-09-21 14:08 -------- d-----w- d:\program files\NETGEAR
2009-09-21 14:07 . 2009-09-21 14:07 -------- d-----w- c:\windows\Downloaded Installations
2009-09-21 14:03 . 2009-09-21 14:53 -------- d-----w- d:\program files\ASUS
2009-09-21 14:03 . 2007-12-17 09:14 12400 ----a-r- c:\windows\system32\drivers\AsIO.sys
2009-09-21 14:03 . 2006-01-10 08:50 24576 ----a-r- c:\windows\system32\AsIO.dll
2009-09-21 14:03 . 2008-01-04 11:34 11832 ----a-w- c:\windows\system32\drivers\AsInsHelp64.sys
2009-09-21 14:03 . 2008-01-04 11:34 10216 ----a-w- c:\windows\system32\drivers\AsInsHelp32.sys
2009-09-21 14:00 . 2009-09-21 14:00 -------- d-----w- d:\program files\Marvell
2009-09-21 14:00 . 2008-02-02 15:54 36864 ----a-r- c:\windows\system32\drivers\l1e51x86.sys
2009-09-21 14:00 . 2009-09-21 14:00 -------- d-----w- c:\windows\system32\Atheros_L1e
2009-09-21 14:00 . 2008-04-13 07:45 2944 ----a-w- c:\windows\system32\drivers\drmkaud.sys
2009-09-21 14:00 . 2008-04-13 07:45 56576 ----a-w- c:\windows\system32\drivers\swmidi.sys
2009-09-21 14:00 . 2008-04-13 07:45 172416 ----a-w- c:\windows\system32\drivers\kmixer.sys
2009-09-21 14:00 . 2008-04-13 07:45 52864 ----a-w- c:\windows\system32\drivers\DMusic.sys
2009-09-21 14:00 . 2008-04-13 08:15 60800 ----a-w- c:\windows\system32\drivers\sysaudio.sys
2009-09-21 14:00 . 2008-04-13 07:45 6272 ----a-w- c:\windows\system32\drivers\splitter.sys
2009-09-21 14:00 . 2008-04-13 05:39 142592 ----a-w- c:\windows\system32\drivers\aec.sys
2009-09-21 14:00 . 2008-04-13 08:17 83072 ----a-w- c:\windows\system32\drivers\wdmaud.sys
2009-09-21 13:57 . 2009-09-21 13:57 -------- d-----w- c:\windows\system32\FRA
2009-09-21 13:57 . 2009-09-21 13:57 -------- d-----w- c:\windows\system32\Lang
2009-09-21 13:57 . 2008-04-18 11:29 1034776 ----a-w- c:\windows\system32\imsmudlg.exe
2009-09-21 13:57 . 2006-11-10 07:25 319456 ----a-w- c:\windows\system32\difxapi.dll
2009-09-21 13:57 . 2009-09-22 19:40 -------- d--h--w- d:\program files\InstallShield Installation Information
2009-09-21 13:57 . 2009-09-21 14:03 -------- d-----w- C:\Program Files
2009-09-21 13:57 . 2009-09-21 13:57 -------- d-----w- g:\documents and settings\Administrateur\Application Data\InstallShield
2009-09-21 13:51 . 2009-09-21 13:51 -------- d-----w- c:\windows\system32\drivers\system32
2009-09-21 13:51 . 2009-09-21 13:51 -------- d-----w- c:\windows\system32\drivers\INF
2009-09-21 13:51 . 2009-09-22 22:47 -------- dc----w- c:\windows\system32\DRVSTORE
2009-09-21 13:51 . 2009-09-21 13:57 -------- d-----w- d:\program files\Intel
2009-09-21 13:51 . 2008-06-04 12:55 53248 ----a-w- c:\windows\system32\CSVer.dll
2009-09-21 13:44 . 2009-09-21 13:44 -------- d-----w- c:\windows\ASUSInstAll
2009-09-21 13:40 . 2004-08-13 10:56 5810 ----a-r- c:\windows\system32\drivers\ASACPI.sys
2009-09-21 13:40 . 2007-12-28 15:22 10296 ----a-w- c:\windows\system32\drivers\ASUSHWIO.SYS
2009-09-21 13:27 . 2005-08-01 11:10 11264 ----a-r- c:\windows\system32\drivers\EIO.sys
 
.
((((((((((((((((((((((((((((((((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-09-23 16:37 . 2009-09-23 16:37 0 ----a-w- g:\documents and settings\All Users\Application Data\xml22.tmp
2009-09-23 16:37 . 2009-09-23 16:37 0 ----a-w- g:\documents and settings\All Users\Application Data\xml21.tmp
2009-09-23 13:28 . 2009-09-23 13:28 1801 ----a-w- g:\documents and settings\All Users\Application Data\xml92.tmp
2009-09-23 13:28 . 2009-09-23 13:28 0 ----a-w- g:\documents and settings\All Users\Application Data\xml91.tmp
2009-09-23 13:28 . 2009-09-23 13:28 0 ----a-w- g:\documents and settings\All Users\Application Data\xml90.tmp
2009-09-23 13:28 . 2009-09-23 13:28 8051 ----a-w- g:\documents and settings\All Users\Application Data\xml8F.tmp
2009-09-23 08:52 . 2009-09-15 13:12 71248 ----a-w- c:\windows\system32\perfc00C.dat
2009-09-23 08:52 . 2009-09-15 13:12 458230 ----a-w- c:\windows\system32\perfh00C.dat
2009-09-21 19:00 . 2009-09-21 17:44 -------- d-----w- d:\program files\Winamp
2009-09-21 18:59 . 2009-09-21 17:44 -------- d-----w- g:\documents and settings\Administrateur\Application Data\Winamp
2009-09-21 18:58 . 2009-09-21 18:58 2794 ----a-w- d:\program files\uninstal.log
2009-09-21 14:07 . 2009-09-21 13:59 -------- d-----w- d:\program files\Common Files\InstallShield
2009-09-21 13:59 . 2009-09-21 13:59 -------- d-----w- d:\program files\Realtek
2009-09-21 13:59 . 2009-09-21 13:59 315392 ----a-w- c:\windows\HideWin.exe
2009-09-21 10:22 . 2009-09-21 10:22 -------- d-----w- d:\program files\Services en ligne
2009-09-21 10:21 . 2009-09-21 10:21 21892 ----a-w- c:\windows\system32\emptyregdb.dat
2009-09-09 18:15 . 2009-09-09 18:15 133648 ----a-w- c:\windows\system32\VBoxNetFltNotify.dll
2009-09-09 18:15 . 2009-09-09 18:15 100368 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2009-09-04 15:44 . 2009-09-23 13:28 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2009-09-04 15:44 . 2009-09-23 13:28 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2009-09-04 15:44 . 2009-09-23 13:28 238936 ----a-w- c:\windows\system32\xactengine3_5.dll
2009-09-04 15:29 . 2009-09-23 13:28 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2009-09-04 15:29 . 2009-09-23 13:28 235344 ----a-w- c:\windows\system32\d3dx11_42.dll
2009-09-04 15:29 . 2009-09-23 13:28 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll
2009-09-04 15:29 . 2009-09-23 13:28 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2009-09-04 15:29 . 2009-09-23 13:28 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2009-08-17 01:03 . 2009-08-17 01:03 3674112 ----a-w- c:\windows\system32\nvwssr.dll
2009-08-17 01:02 . 2009-08-17 01:02 229376 ----a-w- c:\windows\system32\nvmccs.dll
2009-08-16 22:57 . 2009-08-16 22:57 1706528 ----a-w- c:\windows\system32\nvcuvenc.dll
2009-08-16 22:57 . 2009-08-16 22:57 1597690 ----a-w- c:\windows\system32\nvdata.bin
2009-08-16 22:57 . 2009-03-27 08:03 868352 ----a-w- c:\windows\system32\nvapi.dll
2009-08-16 22:57 . 2009-03-27 08:03 7729568 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2009-08-16 22:57 . 2009-03-27 08:03 2189856 ----a-w- c:\windows\system32\nvcuvid.dll
2009-08-16 22:57 . 2009-03-27 08:03 2002944 ----a-w- c:\windows\system32\nvcuda.dll
2009-08-16 22:57 . 2009-03-27 08:03 155648 ----a-w- c:\windows\system32\nvcodins.dll
2009-08-16 22:57 . 2009-03-27 08:03 155648 ----a-w- c:\windows\system32\nvcod.dll
2009-08-16 22:57 . 2009-03-27 08:03 10457088 ----a-w- c:\windows\system32\nvoglnt.dll
2009-08-14 11:36 . 2009-08-14 11:36 70936 ----a-w- c:\windows\system32\PhysXLoader.dll
2009-08-02 22:21 . 2009-08-02 22:21 23320 ----a-w- c:\windows\system32\PhysXDevice.dll
.
 
------- Sigcheck -------
 
 
 
[-] 2009-09-15 . 05896321B82A756F2937D4D36EE82729 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
 
 
c:\windows\system32\wuauclt.exe ... manque !!
c:\windows\system32\wscntfy.exe ... manque !!
c:\windows\system32\regsvc.dll ... manque !!
.
(((((((((((((((((((((((((((((((((   Points de chargement Reg   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés  
REGEDIT4
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="d:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-04-15 178712]
"Six Engine"="c:\program files\ASUS\Six Engine\SixEngine.exe" [2008-06-02 5964800]
"SunJavaUpdateSched"="d:\program files\Java\jre6\bin\jusched.exe" [2009-09-21 149280]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-08-17 86016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-08-17 13877248]
"Malwarebytes Anti-Malware (reboot)"="d:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"kmw_run.exe"="kmw_run.exe" - c:\windows\system32\kmw_run.exe [2003-05-27 106496]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.EXE [2008-07-03 16876032]
"SoundMan"="SOUNDMAN.EXE" - c:\windows\SOUNDMAN.EXE [2005-04-15 77824]
"AlcWzrd"="ALCWZRD.EXE" - c:\windows\ALCWZRD.EXE [2008-06-19 2808832]
 
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"_nltide_3"="advpack.dll" - c:\windows\system32\advpack.dll [2009-09-15 101888]
 
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
 
[HKEY_LOCAL_MACHINE\software\policies\microsoft\windows\windowsupdate\au]
"NoAutoUpdate"= 1 (0x1)
 
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"=hex(2):6c,6f,67,6f,6e,75,69,32,2e,65,78,65,00
 
[HKLM\~\startupfolder\G:^Documents and Settings^Administrateur^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 3.1.lnk]
path=g:\documents and settings\Administrateur\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.1.lnk
backup=c:\windows\pss\OpenOffice.org 3.1.lnkStartup
 
[HKLM\~\startupfolder\G:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^NETGEAR WPN311 Smart Wizard.lnk]
path=g:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\NETGEAR WPN311 Smart Wizard.lnk
backup=c:\windows\pss\NETGEAR WPN311 Smart Wizard.lnkCommon Startup
 
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
 
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)
 
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"d:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"d:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"d:\\Program Files\\SiSoftware\\SiSoftware Sandra Lite 2009.SP4\\RpcAgentSrv.exe"=
"d:\\Program Files\\SiSoftware\\SiSoftware Sandra Lite 2009.SP4\\WNt500x86\\RpcSandraSrv.exe"=
"d:\\Program Files\\eMule\\emule.exe"=
 
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1723:TCP"= 1723:TCP:@xpsp2res.dll,-22015
"1701:UDP"= 1701:UDP:@xpsp2res.dll,-22016
"500:UDP"= 500:UDP:@xpsp2res.dll,-22017
"5353:TCP"= 5353:TCP:Adobe CSI CS4
 
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
 
R0 mrdd;Marvell Removable Disk Control Driver;c:\windows\system32\drivers\mrdd.sys [23/09/2009 16:12 18984]
R0 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys [10/06/2008 12:33 152616]
R0 RRamdisk;Ramdisk Driver;c:\windows\system32\drivers\rramdisk.sys [09/12/2003 10:04 10368]
R1 VBoxDrv;VirtualBox Service;c:\windows\system32\drivers\VBoxDrv.sys [22/09/2009 15:34 115856]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\drivers\VBoxUSBMon.sys [22/09/2009 15:34 41424]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [22/09/2009 15:34 91856]
R3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\drivers\VBoxNetFlt.sys [09/09/2009 20:15 100368]
S3 L1e;Miniport Driver for Atheros AR8121/AR8113 PCI-E Ethernet Controller;c:\windows\system32\drivers\l1e51x86.sys [21/09/2009 16:00 36864]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service;d:\program files\SiSoftware\SiSoftware Sandra Lite 2009.SP4\RpcAgentSrv.exe [23/09/2009 15:27 99176]
 
--- Autres Services/Pilotes en mémoire ---
 
*NewlyCreated* - HELPSVC
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.Google.com/
mStart Page = hxxp://www.troner.net/
TCP: {1B5C1B23-9016-4040-AD11-A047EBC0158F} = 192.168.0.2
FF - ProfilePath - g:\documents and settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\9n9wal3p.default\
FF - prefs.js: browser.search.selectedEngine - Ask
FF - prefs.js: browser.startup.homepage - hxxp://www2.firesearch.com/
.
.
------- Associations de fichier -------
.
regfile\shell\edit\command=%SystemRoot%\system32\NOTEPAD.EXE %1
.
- - - - ORPHELINS SUPPRIMES - - - -
 
HKCU-Run-AdobeBridge - (no file)
HKCU-Run-DriverMax - (no file)
HKCU-Run-DriverMax_RESTART - (no file)
HKLM-Run-NetPumper - d:\program files\NetPumper\NetPumperIEProxy.exe
HKLM-Run-MSWheel - (no file)
 
 
 
**************************************************************************
 
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-24 21:28
Windows 5.1.2600 Service Pack 3 NTFS
 
Recherche de processus cachés ...  
 
Recherche d'éléments en démarrage automatique cachés ...  
 
Recherche de fichiers cachés ...  
 
Scan terminé avec succès
Fichiers cachés: 0
 
**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
 
[HKEY_USERS\S-1-5-21-329068152-1390067357-682003330-500\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID]
@Denied: (Full) (LocalSystem)
 
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"
 
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
 
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10c.exe"
 
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
 
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
 
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
 
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Heure de fin: 2009-09-24 21:28
ComboFix-quarantined-files.txt  2009-09-24 19:28
 
Avant-CF: 8 060 444 672 octets libres
Après-CF: 8 035 753 984 octets libres
 
WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect
 
308


 
 
Merci de m'aider


Message édité par pr0faz le 24-09-2009 à 21:49:14

---------------
Mes VenTes - Mes AchaTs
mood
Publicité
Posté le 24-09-2009 à 21:47:06  profilanswer
 

n°2896036
pr0faz
Le sommeil est une séparation.
Posté le 24-09-2009 à 23:27:26  profilanswer
 

up


---------------
Mes VenTes - Mes AchaTs

Aller à :
Ajouter une réponse
  FORUM HardWare.fr
  Windows & Software
  Virus/Spywares

  Virus sur un raid0 [3dd] problème d'affichage et plantage Firefox

 

Sujets relatifs
maj windows plante l'affichageconnexion reinitialisee firefox et ie7 impossible d'afficher la page
Erreur d'affichage Explorateur Windowsproblem virus
Problème d'ordre paranormal [Port USB inopérants mais pas H.S !]problème de redirection vers un autre site.
probleme outlook 2007Problème audio sur windows 7 pas de son des hauts-parleurs
Problème detection partition pour réinstallation vistaQu'arrive-t-il à firefox ?
Plus de sujets relatifs à : Virus sur un raid0 [3dd] problème d'affichage et plantage Firefox

Forum MesDiscussions.Net, Version 2010.2
(c) 2000-2011 Doctissimo
Page générée en 0.070 secondes

Copyright © 1997-2022 Hardware.fr SARL (Signaler un contenu illicite / Données personnelles) / Groupe LDLC / Shop HFR