| Auteur |
Message |
Neurone isolé
Messages: 7
Tutoriaux : 0
|
 Posté le:
Ven 05 Déc 2008 07:37 Sujet : Fenetre Rundll32 |
   |
Bonjour, lorsque j'ouvre mon dossier Films que j'ai gravé, plusieurs Memes fenetres s'ouvrent sans
discontinuer: Fenetre microsoft Windows....il y est ecrit: Processus hôte Windows ( Rundll 32) a
cessé de fonctionner
je suis sous Vista ,et j'ai Avast: impossible de trouver une ame tres tres competente pour m'aider
je precise que je n'ai gravé aucub film piraté mais que j'ai fait des reportages photos en film avec
photo recit: j'ai pas nero
Merci d'avance
PS pas trop avec la machine merci des precisions |
|
|
   |
|
|
Messages: 7032
Tutoriaux : 0
|
| Posté le:
Ven 05 Déc 2008 09:26 Sujet : Fenetre Rundll32 |
|
Salut à toi et bienvenue,  
Afin de nous éclairersur
la nature précise de tes soucis "infectieux", (ou
pas ! )
dans un premier temps fais cette procédure et poste le rapport généré par random's system information tool (RSIT)
par
random/random
-->source ici
Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).
Ps:
======
Conseil d'ordre général
 ne pas aller sur le Net avec
Internet Explorer
télécharger Mozilla-Firefox 3.0 et le mettre comme Navigateur par défaut.
http://www.mozilla-europe.org/fr/firefox/
-->source ici de conseils
Poster les 2 rapports demandés (log.txt et info.txt)
Important
=======================
| Citation: | Durant la phase de désinfection, il est absolument indispensable et
primordial de ne pas rajouter de programmes à votre PC, afin de ne pas perturber la décontamination
de votre machine. Faites-en un usage minimum durant cette
phase,
D'autre part, ne pas utiliser d'outil de décontamination
de sa propre initiative, celà peut définitivement nuire à notre travail et au bon rétablissement de la
machine
Ne pas poster de message dans une
autre partie du forum, durant la phase de décontamination, merci. |
|
_________________
*** je n'ai pas la prétention de résoudre vos soucis, mais juste celle de vous aider à les résoudre  Bonne et heureuse année à tous, cordialement
 |
|
 |
|
Neurone isolé
Messages: 7
Tutoriaux : 0
|
| Posté le:
Lun 08 Déc 2008 11:37 Sujet : Fenetre Rundll32 |
|
Logfile of random's system information tool 1.04 (written by random/random)
Run by ALAIN C at 2008-12-08 11:35:36
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 336 GB (72%) free of 469 GB
Total RAM: 2046 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:35:50, on 08/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files\Calendrier\Cld2000.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PcSync2.exe
C:\Program Files\Registry Mechanic\RMTray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Windows\system32\SearchFilterHost.exe
C:\Users\ALAIN C\Documents\Mes téléchargements\RSIT.exe
C:\Program Files\trend micro\ALAIN C.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.fr/spbasic.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ig?hl=fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=74&
;bd=Pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web
Printing\hpswp_framework.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program
Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer -
{3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} -
C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program
Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program
Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live -
{9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows
Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program
Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program
Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program
Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autoRun
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Cld2000.exe] C:\Program Files\Calendrier\Cld2000.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe"
-onlytray
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common
Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSync2.exe"
/NoDialog
O4 - HKCU\..\Run: [egecu] "c:\users\alain c\appdata\local\egecu.exe" egecu
O4 - HKCU\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RMTray.exe /H
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User
'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User
'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User
'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite
6\PcSync2.exe" /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite
6\PcSync2.exe" /NoDialog (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital
Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program
Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program
Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program
Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program
Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} -
C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -
C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration -
{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/q
tplugin.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/VistaMSNPUpldfr-fr.cab
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-27-0.cab<
/a>
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program
Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. -
C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program
Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google
Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP
Health Check\hphc_service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program
Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program
Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common
Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) -
Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common
Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common
Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common
Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio
Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing
Shared\stllssvr.exe
--
End of file - 9877 bytes
======Scheduled tasks folder======
C:\Windows\tasks\User_Feed_Synchronization-{42DA5A0B-8AA8-4503-A957-D280BBBEA033}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common
Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program
Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-04-30 308856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-07-07 1562448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}]
EoBho Class - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-04-07 501400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft
Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2008-12-04
251504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
[2008-12-04 657904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google
Toolbar\Component\fastsearch_219B3E1547538286.dll [2008-10-31 522224]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"=C:\Windows\SMINST\launcher.exe [2007-04-03 44168]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-19 1233920]
"WindowsWelcomeCenter"=C:\Windows\system32\oobefldr.dll [2008-01-19 2153472]
"HPAdvisor"=C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2007-06-01
1783400]
"IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2008-07-24 243072]
"Cld2000.exe"=C:\Program Files\Calendrier\Cld2000.exe [2007-10-29 3082752]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2008-10-02 1124352]
"ISUSPM"=C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2006-03-20
213936]
"Nokia.PCSync"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSync2.exe [2008-06-17 1249280]
"egecu"=c:\users\alain c\appdata\local\egecu.exe egecu []
"RegistryMechanic"=C:\Program Files\Registry Mechanic\RMTray.exe [2008-07-03 812952]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-12-04
39408]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standar
dprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainp
rofile\authorizedapplications\list]
======List of files/folders created in the last 1 months======
2008-12-07 19:11:09 ----D---- C:\Program Files\PokerStars
2008-12-04 17:52:28 ----D---- C:\Users\ALAIN C\AppData\Roaming\Malwarebytes
2008-12-04 17:52:23 ----D---- C:\ProgramData\Malwarebytes
2008-12-04 17:52:23 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-12-04 17:48:42 ----A---- C:\Windows\system32\msxml.dll
2008-12-04 17:48:41 ----A---- C:\Windows\system32\STKIT432.DLL
2008-12-04 17:48:39 ----D---- C:\Program Files\Registry Mechanic
2008-12-04 17:31:04 ----A---- C:\TB.txt
2008-12-04 17:30:08 ----D---- C:\ToolBar SD
2008-11-28 08:36:03 ----A---- C:\cleannavi.txt
2008-11-26 11:21:26 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-11-26 11:21:25 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-11-26 11:21:24 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-11-26 11:21:24 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-11-26 11:21:23 ----A---- C:\Windows\system32\connect.dll
2008-11-26 10:11:32 ----A---- C:\fixnavi.txt
2008-11-26 10:06:31 ----D---- C:\Program Files\Navilog1
2008-11-25 16:50:44 ----A---- C:\Windows\wininit.ini
2008-11-24 13:03:40 ----D---- C:\rsit
2008-11-24 13:03:40 ----D---- C:\Program Files\trend micro
2008-11-23 09:59:46 ----A---- C:\Windows\system32\wups2.dll
2008-11-23 09:59:46 ----A---- C:\Windows\system32\wucltux.dll
2008-11-23 09:59:46 ----A---- C:\Windows\system32\wuauclt.exe
2008-11-23 09:59:45 ----A---- C:\Windows\system32\wuaueng.dll
2008-11-23 09:59:31 ----A---- C:\Windows\system32\wups.dll
2008-11-23 09:59:31 ----A---- C:\Windows\system32\wudriver.dll
2008-11-23 09:59:30 ----A---- C:\Windows\system32\wuapi.dll
2008-11-23 09:59:24 ----A---- C:\Windows\system32\wuwebv.dll
2008-11-23 09:59:24 ----A---- C:\Windows\system32\wuapp.exe
2008-11-20 13:36:11 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-11-20 13:33:35 ----D---- C:\Program Files\Lavasoft
2008-11-16 20:49:05 ----A---- C:\Windows\system32\msxml3.dll
2008-11-16 20:49:03 ----A---- C:\Windows\system32\msxml6.dll
======List of files/folders modified in the last 1 months======
2008-12-08 11:35:40 ----D---- C:\Windows\Temp
2008-12-08 11:31:43 ----AD---- C:\ProgramData\TEMP
2008-12-08 11:31:34 ----D---- C:\Windows\SMINST
2008-12-08 09:33:53 ----D---- C:\Windows\System32
2008-12-08 09:33:53 ----D---- C:\Windows\inf
2008-12-08 09:33:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-12-07 20:27:49 ----SHD---- C:\System Volume Information
2008-12-07 19:11:09 ----RD---- C:\Program Files
2008-12-05 12:16:59 ----D---- C:\Windows\Prefetch
2008-12-05 08:21:52 ----D---- C:\Program Files\eMule
2008-12-05 07:06:17 ----D---- C:\Program Files\Google
2008-12-04 18:00:10 ----SHD---- C:\Windows\Installer
2008-12-04 17:52:26 ----D---- C:\Windows\system32\drivers
2008-12-04 17:52:23 ----HD---- C:\ProgramData
2008-12-04 17:34:57 ----D---- C:\Windows\system32\Tasks
2008-12-04 08:28:09 ----D---- C:\Windows\system32\Msdtc
2008-12-04 08:28:06 ----D---- C:\Windows\system32\wbem
2008-12-04 08:28:06 ----D---- C:\WINDOWS
2008-12-04 08:24:23 ----D---- C:\Windows\system32\config
2008-12-04 08:24:08 ----D---- C:\Windows\Tasks
2008-12-04 08:24:08 ----D---- C:\Windows\system32\spool
2008-12-04 08:24:08 ----D---- C:\Windows\system32\CodeIntegrity
2008-12-04 08:24:08 ----D---- C:\Windows\system32\catroot2
2008-12-04 08:24:04 ----D---- C:\ProgramData\Spybot - Search & Destroy
2008-12-04 08:24:03 ----D---- C:\ProgramData\HP Product Assistant
2008-12-04 08:24:01 ----D---- C:\Windows\registration
2008-12-02 17:30:30 ----D---- C:\ProgramData\Roxio
2008-11-26 11:54:14 ----D---- C:\Windows\winsxs
2008-11-26 11:53:33 ----D---- C:\Users\ALAIN C\AppData\Roaming\dvdcss
2008-11-26 11:21:19 ----D---- C:\Windows\system32\catroot
2008-11-24 13:26:28 ----D---- C:\E MULE
2008-11-23 21:22:34 ----D---- C:\Program Files\Mozilla Firefox
2008-11-23 21:04:43 ----D---- C:\Program Files\Ahead
2008-11-23 20:58:08 ----D---- C:\Users\ALAIN C\AppData\Roaming\Mozilla
2008-11-23 20:18:56 ----D---- C:\Windows\rescache
2008-11-23 20:01:58 ----D---- C:\Windows\system32\fr-FR
2008-11-23 09:22:54 ----SD---- C:\Windows\Downloaded Program Files
2008-11-20 13:36:11 ----D---- C:\Program Files\Common Files
2008-11-20 13:17:40 ----D---- C:\Program Files\AUDACITY
2008-11-20 13:17:20 ----D---- C:\Windows\system32\Adobe
2008-11-20 10:14:19 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-11-17 21:05:46 ----DC---- C:\Windows\system32\DRVSTORE
2008-11-17 21:05:01 ----D---- C:\Program Files\StopFlash
2008-11-17 11:07:48 ----D---- C:\Windows\TPP
2008-11-17 11:07:48 ----D---- C:\Windows\system32\IOSUBSYS
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2008-07-19 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2008-07-19 78416]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2008-07-19 42912]
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; \??\C:\Program
Files\CyberLink\PowerDVD8\000.fcl [2008-06-27 61424]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2008-07-19 51280]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-07-10 2769408]
R3 CamDrL;Logitech QuickCam Pro 3000(CamDrl); C:\Windows\system32\DRIVERS\Camdrl.sys [2007-02-03
1075360]
R3 GEARAspiWDM;GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys
[2008-01-15 2047576]
R3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\Windows\system32\DRIVERS\LVMVDrv.sys
[2007-10-11 2142488]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2007-10-11 25624]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBSta.sys [2007-02-03
41504]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys
[2007-05-03 1065384]
R3 Ps2;PS2; C:\Windows\system32\DRIVERS\PS2.sys [2005-12-12 19072]
R3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-19 73088]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S3 AVR309Prj;AVR309:USB to UART device driver; C:\Windows\System32\Drivers\AVR309.sys [2007-02-08
8652]
S3 avy2sm1b;avy2sm1b; C:\Windows\system32\drivers\avy2sm1b.sys []
S3 catchme;catchme; \??\C:\Users\ALAINC~1\AppData\Local\Temp\catchme.sys []
S3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys
[2008-01-19 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19
36864]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys
[2008-01-19 5632]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio;
C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 LVcKap;Logitech AEC Driver; C:\Windows\system32\DRIVERS\LVcKap.sys [2007-10-19 2109976]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys
[2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys
[2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys
[2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft;
C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2008-05-07 17536]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2008-05-07 20864]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2008-02-01
138112]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2008-02-01
8320]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17
21632]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2008-06-06 8064]
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2008-01-19 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2008-05-07 8064]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys
[2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
[2008-11-20 611664]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
[2008-07-19 16056]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe
[2007-07-10 606208]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-07-19
147640]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health
Check\hphc_service.exe [2007-05-24 61440]
R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2006-12-05
112152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files\Common
Files\LightScribe\LSSrvc.exe [2007-06-28 79136]
R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2007-10-19
186904]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-10-19
141848]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
[2008-07-19 250040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
[2008-07-23 348344]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-08-07
575488]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows
Live\Messenger\usnsvc.exe [2007-10-18 98328]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
[2007-10-19 141848]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google
Updater\GoogleUpdaterService.exe [2008-12-04 137200]
S3 IDriverT;InstallDriver Table Manager; c:\Program Files\Common
Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-07-30 532264]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
[2003-07-28 89136]
S3 RoxMediaDB9;RoxMediaDB9; c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
[2007-05-11 887544]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-05-03
74656]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe
[2007-10-25 266240]
-----------------EOF----------------- |
|
|
|
|
|
Messages: 7032
Tutoriaux : 0
|
| Posté le:
Lun 08 Déc 2008 20:04 Sujet : Fenetre Rundll32 |
|
hello,
A mon avis tu es déjà occupé avec un helpeur sur un autre site ?
@Mr_Jo
Il n'est pas d'usage entre helpeurs de croiser les posts, cela contribue à compliquer le problème plus qu'à le
solutionner.
Je te suggère toutefois d'éradiquer le plus vite possible tous les logiciels qui ont été crackés,
ton PC est en danger d'implosion....
| Citation: | C:\Users\ALAINC~1\Documents\DISQUE DUR EXTERNE Ordi\logiciels\Architecte Studio Expert
3D 2006 Crack Keygen Ok.zip
C:\Users\ALAINC~1\Documents\DISQUE DUR EXTERNE
Ordi\logiciels\Incredimail.Xe.Premium.build.2385.FR.JiNo22.Incl-Crack.rar
C:\Users\ALAINC~1\Documents\DISQUE DUR EXTERNE Ordi\logiciels\Microsoft Office XP Pro 2006 Full
French Version + crack.rar |
Source:
http://forum.aideonline.com/aideonline/securite-virus-failles-spyware/fenetres-sujet
_78078_1.htm
Cordialement |
|
|
|
|
|
|
|
| |
