Bonjour Ogu,
J'ai réalisé les 4 procédures demandées, ci-dessous les différents rapports :
PREMIER VIRUSTOTAL
Fichier UpdateUSB.exe reçu le 2008.03.17 19:22:23 (CET)Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.3.18.0 2008.03.17 -
AntiVir 7.6.0.73 2008.03.17 -
Authentium 4.93.8 2008.03.14 -
Avast 4.7.1098.0 2008.03.17 -
AVG 7.5.0.516 2008.03.17 -
BitDefender 7.2 2008.03.17 -
CAT-QuickHeal 9.50 2008.03.14 -
ClamAV 0.92.1 2008.03.17 -
DrWeb 4.44.0.09170 2008.03.17 -
eSafe 7.0.15.0 2008.03.09 -
eTrust-Vet 31.3.5621 2008.03.17 -
Ewido 4.0 2008.03.17 -
F-Prot 4.4.2.54 2008.03.16 -
F-Secure 6.70.13260.0 2008.03.17 -
FileAdvisor 1 2008.03.17 -
Fortinet 3.14.0.0 2008.03.17 -
Ikarus T3.1.1.20 2008.03.17 -
Kaspersky 7.0.0.125 2008.03.17 -
McAfee 5253 2008.03.17 -
Microsoft 1.3301 2008.03.16 -
NOD32v2 2953 2008.03.17 -
Norman 5.80.02 2008.03.17 -
Panda 9.0.0.4 2008.03.16 -
Prevx1 V2 2008.03.17 -
Rising 20.36.02.00 2008.03.17 -
Sophos 4.27.0 2008.03.17 -
Sunbelt 3.0.963.0 2008.03.14 -
Symantec 10 2008.03.17 -
TheHacker 6.2.92.247 2008.03.15 -
VBA32 3.12.6.2 2008.03.16 -
VirusBuster 4.3.26:9 2008.03.17 -
Webwasher-Gateway 6.6.2 2008.03.17 -
Information additionnelle
File size: 32768 bytes
MD5: b9226aec83cb09a26a756209d8124056
SHA1: e3ef240671501a0ce27b31097088811241f3ba6e
PEiD: Armadillo v1.71
Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.3.18.0 2008.03.17 -
AntiVir 7.6.0.73 2008.03.17 -
Authentium 4.93.8 2008.03.14 -
Avast 4.7.1098.0 2008.03.17 -
AVG 7.5.0.516 2008.03.17 -
BitDefender 7.2 2008.03.17 -
CAT-QuickHeal 9.50 2008.03.14 -
ClamAV 0.92.1 2008.03.17 -
DrWeb 4.44.0.09170 2008.03.17 -
eSafe 7.0.15.0 2008.03.09 -
eTrust-Vet 31.3.5621 2008.03.17 -
Ewido 4.0 2008.03.17 -
F-Prot 4.4.2.54 2008.03.16 -
F-Secure 6.70.13260.0 2008.03.17 -
FileAdvisor 1 2008.03.17 -
Fortinet 3.14.0.0 2008.03.17 -
Ikarus T3.1.1.20 2008.03.17 -
Kaspersky 7.0.0.125 2008.03.17 -
McAfee 5253 2008.03.17 -
Microsoft 1.3301 2008.03.16 -
NOD32v2 2953 2008.03.17 -
Norman 5.80.02 2008.03.17 -
Panda 9.0.0.4 2008.03.16 -
Prevx1 V2 2008.03.17 -
Rising 20.36.02.00 2008.03.17 -
Sophos 4.27.0 2008.03.17 -
Sunbelt 3.0.963.0 2008.03.14 -
Symantec 10 2008.03.17 -
TheHacker 6.2.92.247 2008.03.15 -
VBA32 3.12.6.2 2008.03.16 -
VirusBuster 4.3.26:9 2008.03.17 -
Webwasher-Gateway 6.6.2 2008.03.17 -
Information additionnelle
File size: 32768 bytes
MD5: b9226aec83cb09a26a756209d8124056
SHA1: e3ef240671501a0ce27b31097088811241f3ba6e
PEiD: Armadillo v1.71
DEUXIEME COMBOFIX
ComboFix 08-04-28.2 - Olivier 2008-05-05 19:19:48.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.33.1036.18.1498 [GMT 2:00]
Endroit: C:\ComboFix.exe
Command switches used :: C:\Documents and Settings\Olivier\Bureau\CFScript.txt
* Création d'un nouveau point de restauration
AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!FILE ::
C:\WINDOWS\TEMP\TMP000000566799594740F3B4DB
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\All Users\Application Data\whmzunwl
.
((((((((((((((((((((((((((((( Fichiers créés 2008-04-05 to 2008-05-05 ))))))))))))))))))))))))))))))))))))
.
2008-05-05 19:18 . 2008-05-05 19:18 <REP> d-------- C:\327882R2FWJFW
2008-05-05 19:14 . 2008-04-29 15:53 1,778,983 --a------ C:\ComboFix.exe
2008-04-30 13:22 . 2008-04-30 13:22 <REP> d-------- C:\WINDOWS\ERUNT
2008-04-30 13:18 . 2008-04-30 13:30 <REP> d-------- C:\SDFix
2008-04-30 12:03 . 2007-01-18 14:00 3,968 --a------ C:\WINDOWS\system32\drivers\AvgArCln.sys
2008-04-29 17:18 . 2008-04-29 17:23 96,645 --a------ C:\WINDOWS\system32\drivers\klin.dat
2008-04-29 17:18 . 2008-04-29 17:23 87,941 --a------ C:\WINDOWS\system32\drivers\klick.dat
2008-04-29 17:17 . 2008-04-29 17:17 <REP> d-------- C:\Program Files\Kaspersky Lab
2008-04-29 17:17 . 2008-05-05 19:12 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-04-29 17:17 . 2008-05-05 19:39 7,101,728 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-04-29 17:17 . 2008-05-05 19:10 98,144 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-04-29 17:17 . 2008-05-05 19:38 53,792 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
2008-04-29 17:17 . 2008-05-05 19:10 7,964 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx
2008-04-29 17:12 . 2008-04-29 17:12 <REP> d-------- C:\kav
2008-04-29 16:43 . 2008-04-29 16:43 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab
2008-04-29 13:16 . 2008-04-29 13:16 <REP> d-------- C:\Program Files\Avira GmbH
2008-04-29 12:58 . 2008-04-29 12:58 6,656 --a------ C:\WINDOWS\system32\drivers\RKPavProc.sys
2008-04-28 18:00 . 2008-04-28 18:00 <REP> d-------- C:\Documents and Settings\Kevin\Application Data\TmpRecentIcons
2008-04-28 13:41 . 2008-05-01 23:09 <REP> d-------- C:\QUARANTINE
2008-04-27 22:29 . 2008-04-27 22:29 <REP> d-------- C:\Program Files\Windows Defender
2008-04-27 18:48 . 2008-04-27 18:34 691,545 --a------ C:\WINDOWS\unins000.exe
2008-04-27 18:48 . 2008-04-27 18:48 2,549 --a------ C:\WINDOWS\unins000.dat
2008-04-27 18:31 . 2008-04-27 19:53 <REP> d-------- C:\Program Files\Spybot - Search & Destroy
2008-04-27 18:31 . 2008-04-27 19:53 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-04-27 18:29 . 2008-04-27 18:29 <REP> d-------- C:\Program Files\Lavasoft
2008-04-27 18:29 . 2008-04-27 18:29 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-04-27 18:28 . 2008-04-27 18:28 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-04-27 18:21 . 2008-04-28 13:19 <REP> d-------- C:\Documents and Settings\Olivier\Application Data\TmpRecentIcons
2008-04-26 22:27 . 2008-04-28 18:00 <REP> d-------- C:\Program Files\Steam
2008-04-25 23:10 . 2008-05-02 10:34 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-04-25 23:10 . 2008-04-25 23:10 1,409 --a------ C:\WINDOWS\QTFont.for
2008-04-25 22:36 . 2008-04-25 22:40 <REP> d-------- C:\Documents and Settings\Olivier\Application Data\uTorrent
2008-04-25 21:03 . 2008-04-25 21:03 <REP> d-------- C:\Program Files\Zattoo
2008-04-25 20:57 . 2008-04-25 20:57 <REP> d-------- C:\Program Files\DVD Flick
2008-04-25 20:57 . 2008-05-03 14:36 <REP> d-------- C:\Documents and Settings\Olivier\Application Data\DVD Flick
2008-04-25 20:57 . 2004-03-09 00:00 212,240 --a------ C:\WINDOWS\system32\richtx32.ocx
2008-04-25 20:57 . 2000-05-19 17:56 81,920 --a------ C:\WINDOWS\system32\mbmouse.ocx
2008-04-25 20:57 . 2000-11-05 15:27 36,864 --a------ C:\WINDOWS\system32\trayicon.ocx
2008-04-24 17:59 . 2008-04-24 17:59 <REP> d-------- C:\Program Files\7-Zip
2008-04-23 18:56 . 2008-04-23 18:56 244 --ah----- C:\sqmnoopt04.sqm
2008-04-23 18:56 . 2008-04-23 18:56 244 --ah----- C:\sqmnoopt03.sqm
2008-04-23 18:56 . 2008-04-23 18:56 232 --ah----- C:\sqmdata04.sqm
2008-04-23 18:56 . 2008-04-23 18:56 232 --ah----- C:\sqmdata03.sqm
2008-04-23 18:55 . 2008-04-23 18:55 268 --ah----- C:\sqmdata02.sqm
2008-04-23 18:55 . 2008-04-23 18:55 244 --ah----- C:\sqmnoopt02.sqm
2008-04-23 18:53 . 2008-04-23 18:53 <REP> d-------- C:\Program Files\Windows Desktop Search
2008-04-23 18:53 . 2008-04-23 18:53 <REP> d-------- C:\Documents and Settings\Olivier\Application Data\Windows Desktop Search
2008-04-23 18:52 . 2006-09-15 14:36 192,000 -----c--- C:\WINDOWS\system32\dllcache\offfilt.dll
2008-04-23 18:52 . 2006-09-15 14:36 98,304 -----c--- C:\WINDOWS\system32\dllcache\nlhtml.dll
2008-04-23 18:50 . 2008-04-23 18:50 244 --ah----- C:\sqmnoopt01.sqm
2008-04-23 18:50 . 2008-04-23 18:50 232 --ah----- C:\sqmdata01.sqm
2008-04-23 18:45 . 2008-04-23 18:45 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2008-04-23 18:01 . 2008-04-27 11:41 <REP> d-------- C:\Documents and Settings\All Users\Application Data\SSScanAppDataDir
2008-04-23 18:01 . 2008-04-23 18:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\MSScanAppDataDir
2008-04-23 17:37 . 2006-10-26 19:58 30,512 --a------ C:\WINDOWS\system32\mdimon.dll
2008-04-23 17:36 . 2006-10-26 19:56 32,592 --a------ C:\WINDOWS\system32\msonpmon.dll
2008-04-23 17:35 . 2008-04-23 17:35 <REP> d-------- C:\Program Files\MSBuild
2008-04-23 17:35 . 2008-04-23 17:35 <REP> d-------- C:\Program Files\Microsoft Works
2008-04-23 17:34 . 2008-04-23 17:34 <REP> d-------- C:\Program Files\Microsoft.NET
2008-04-23 17:32 . 2008-04-23 17:39 <REP> d-------- C:\Program Files\Microsoft Visual Studio 8
2008-04-23 17:31 . 2008-04-24 19:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-04-23 17:30 . 2008-04-23 17:30 <REP> dr-h----- C:\MSOCache
2008-04-17 18:38 . 2008-04-17 18:38 <REP> d-------- C:\Program Files\EA GAMES
2008-04-17 16:41 . 2005-02-26 07:34 442,368 -ra------ C:\WINDOWS\system32\vp6vfw.dll
2008-04-16 13:19 . 2008-04-16 13:19 <REP> d-------- C:\Program Files\Fichiers communs\Borland Shared
2008-04-16 13:18 . 2008-04-16 13:18 <REP> d-------- C:\Documents and Settings\Amelie\WINDOWS
2008-04-16 13:18 . 1998-10-07 13:08 327,168 --a------ C:\WINDOWS\IsUn040c.exe
2008-04-16 13:18 . 2008-04-16 13:22 40 --a------ C:\WINDOWS\Navigma.INI
2008-04-14 17:29 . 2008-04-14 17:29 <REP> d-------- C:\Program Files\PANZERS - Phase2
2008-04-14 17:29 . 2008-04-29 13:56 364 --a------ C:\WINDOWS\WININIT.INI
2008-04-14 12:55 . 2008-04-14 12:56 223 --a------ C:\WINDOWS\HP PrecisionScan Pro.INI
2008-04-13 15:42 . 2008-04-13 15:42 <REP> d-------- C:\Documents and Settings\Amelie\Application Data\CyberLink
2008-04-13 15:32 . 2008-04-13 15:32 0 --a------ C:\WINDOWS\iPlayer.INI
2008-04-13 15:21 . 2008-04-13 15:21 <REP> d-------- C:\Program Files\InterActual
2008-04-13 15:21 . 2008-05-03 14:18 69 --a------ C:\WINDOWS\NeroDigital.ini
2008-04-11 20:10 . 2008-04-11 20:10 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2008-04-11 19:31 . 2008-04-11 19:31 <REP> d-------- C:\Program Files\Messenger Plus! Live
2008-04-11 19:28 . 2008-04-11 19:28 <REP> d-------- C:\Documents and Settings\Kevin\Contacts
2008-04-11 19:27 . 2008-04-11 19:27 <REP> d-------- C:\Program Files\Microsoft SQL Server Compact Edition
2008-04-11 19:27 . 2008-04-11 19:27 268 --ah----- C:\sqmdata00.sqm
2008-04-11 19:27 . 2008-04-11 19:27 244 --ah----- C:\sqmnoopt00.sqm
2008-04-09 12:52 . 2008-04-09 12:52 <REP> d-------- C:\Program Files\PDFCreator
2008-04-09 12:52 . 2004-03-09 01:00 662,288 --a------ C:\WINDOWS\system32\MSCOMCT2.OCX
2008-04-09 12:52 . 1998-07-13 02:08 141,312 --a------ C:\WINDOWS\system32\MSCMCFR.DLL
2008-04-09 12:52 . 1998-06-24 01:00 137,000 --a------ C:\WINDOWS\system32\MSMAPI32.OCX
2008-04-09 12:52 . 2001-10-28 17:42 116,224 --a------ C:\WINDOWS\system32\pdfcmnnt.dll
2008-04-09 12:52 . 1998-07-13 02:08 59,904 --a------ C:\WINDOWS\system32\MSCC2FR.DLL
2008-04-09 12:52 . 1998-07-06 01:00 23,552 --a------ C:\WINDOWS\system32\MSMPIDE.DLL
2008-04-07 19:44 . 2008-04-11 13:12 4,096 --ahs---- C:\VSNAP.IDX
2008-04-07 19:22 . 2008-04-07 19:22 <REP> d-------- C:\Documents and Settings\Olivier\Application Data\Symantec
2008-04-07 18:36 . 2007-04-03 08:59 215,144 -ra------ C:\WINDOWS\patchw32.dll
2008-04-07 18:35 . 2007-04-03 08:59 215,144 -ra------ C:\WINDOWS\pw32a.dll
2008-04-07 18:08 . 2008-04-07 18:08 <REP> d-------- C:\Program Files\Symantec
2008-04-07 18:08 . 2008-04-07 18:26 <REP> d-------- C:\Program Files\Fichiers communs\Symantec Shared
2008-04-07 18:08 . 2008-04-07 18:26 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Symantec
2008-04-07 18:08 . 2003-03-18 21:20 1,060,864 --a------ C:\WINDOWS\system32\MFC71.DLL
2008-04-07 18:08 . 2008-01-10 04:30 133,216 --a------ C:\WINDOWS\system32\drivers\symsnap.sys
2008-04-07 18:08 . 2007-07-31 00:57 128,104 --a------ C:\WINDOWS\system32\drivers\WimFltr.sys
2008-04-07 18:08 . 2007-07-31 00:34 37,864 --a------ C:\WINDOWS\system32\drivers\v2imount.sys
2008-04-07 18:08 . 2007-07-31 00:32 14,072 --a------ C:\WINDOWS\system32\drivers\vproeventmonitor.sys
2008-04-07 17:05 . 2008-04-07 17:05 <REP> d-------- C:\Documents and Settings\Olivier\Application Data\CyberLink
2008-04-07 16:47 . 2008-04-07 16:47 <REP> d-------- C:\Program Files\DVD Shrink
2008-04-07 16:47 . 2008-04-21 17:25 <REP> d-------- C:\Documents and Settings\All Users\Application Data\DVD Shrink
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-03 13:09 --------- d-----w C:\Program Files\Google
2008-05-01 21:32 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-04-24 16:13 --------- d-----w C:\Documents and Settings\Amelie\Application Data\LimeWire
2008-04-24 15:51 --------- d-----w C:\Program Files\Fichiers communs\C-CHANNEL
2008-04-13 15:22 --------- d-----w C:\Program Files\Windows Live
2008-04-11 17:26 --------- dcsh--w C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-04-11 17:25 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-03-27 17:51 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
2008-03-27 17:49 --------- d-----w C:\Documents and Settings\All Users\Application Data\SimCity Societies
2008-03-25 17:16 --------- d-----w C:\Documents and Settings\Olivier\Application Data\Apple Computer
2008-03-24 15:46 --------- d-----w C:\Documents and Settings\Kevin\Application Data\LimeWire
2008-03-24 14:14 --------- d-----w C:\Program Files\LimeWire
2008-03-24 14:04 --------- d-----w C:\Documents and Settings\Kevin\Application Data\Apple Computer
2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys
2008-03-19 16:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\Ubisoft
2008-03-14 16:39 1 ----a-w C:\Documents and Settings\Olivier\SI.bin
2008-03-10 17:00 --------- d-----w C:\Program Files\Hewlett-Packard
2008-03-10 16:53 --------- d-----w C:\Documents and Settings\Olivier\Application Data\Dossier de téléchargement Share-to-Web
2008-03-10 16:17 --------- d-----w C:\Program Files\Java
2008-03-09 17:21 --------- d-----w C:\Program Files\Fichiers communs\Java
2008-03-09 17:04 --------- d-----w C:\Program Files\QuickTime
2008-03-09 17:04 --------- d-----w C:\Program Files\iTunes
2008-03-09 17:04 --------- d-----w C:\Program Files\iPod
2008-03-09 17:04 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-03-09 17:03 --------- d-----w C:\Program Files\Fichiers communs\Apple
2008-03-09 17:03 --------- d-----w C:\Program Files\Apple Software Update
2008-03-09 17:03 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple
2008-03-09 16:44 --------- d--h--r C:\Documents and Settings\Amelie\Application Data\SecuROM
2008-03-09 16:44 --------- d-----w C:\Documents and Settings\Amelie\Application Data\MSN6
2008-03-09 16:44 --------- d-----w C:\Documents and Settings\Amelie\Application Data\Apple Computer
2008-03-09 16:44 --------- d-----w C:\Documents and Settings\Amelie\Application Data\AdobeUM
2008-03-08 15:31 --------- d--h--r C:\Documents and Settings\Olivier\Application Data\SecuROM
2008-03-08 09:03 --------- d-----w C:\Program Files\Regseeker
2008-03-07 20:00 409,600 ----a-w C:\WINDOWS\system32\wrap_oal.dll
2008-03-07 20:00 114,688 ----a-w C:\WINDOWS\system32\OpenAL32.dll
2008-03-07 20:00 --------- d-----w C:\Program Files\OpenAL
2008-03-07 19:13 --------- d-----w C:\Program Files\QuickHelp2
2008-03-07 19:13 --------- d-----w C:\Documents and Settings\Olivier\Application Data\Motive
2008-03-07 19:12 --------- d-----w C:\Program Files\Fichiers communs\Motive
2008-03-07 19:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\MotiveSysIDs
2008-03-07 19:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\Motive
2008-03-07 19:08 --------- d-----w C:\Program Files\Bluewin
2008-03-07 19:05 --------- d-----w C:\Program Files\Common Files
2008-03-07 18:49 --------- d-----w C:\Documents and Settings\Olivier\Application Data\Ahead
2008-03-07 18:33 --------- d-----w C:\Program Files\Executive Software
2008-03-07 18:30 --------- d-----w C:\Program Files\Ahead
2008-03-07 18:29 --------- d-----w C:\Program Files\Fichiers communs\Ahead
2008-03-07 17:46 --------- d-----w C:\Documents and Settings\Olivier\Application Data\Microsoft Web Folders
2008-03-07 17:39 --------- d-----w C:\Program Files\MSXML 4.0
2008-03-07 17:39 --------- d-----w C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-03-07 17:26 --------- d-----w C:\Program Files\Fichiers communs\Logishrd
2008-03-07 17:12 --------- d-----w C:\Program Files\Logitech
2008-03-07 17:12 --------- d-----w C:\Documents and Settings\All Users\Application Data\Logitech
2008-03-07 12:03 --------- d-----w C:\Program Files\Magix
2008-03-07 12:02 --------- d-----w C:\Program Files\Fichiers communs\MAGIX Shared
2008-03-07 11:56 --------- d-----w C:\Program Files\CyberLink
2008-03-07 11:56 --------- d-----w C:\Documents and Settings\All Users\Application Data\CyberLink
2008-03-07 11:49 --------- d-----w C:\Program Files\Fichiers communs\Adobe
2008-03-07 11:16 --------- d-----w C:\Program Files\Fichiers communs\Hewlett-Packard
2008-03-07 11:06 --------- d-----w C:\Program Files\Fichiers communs\EPSON
2008-03-07 11:03 --------- d-----w C:\Program Files\EPSON
2008-03-06 17:44 --------- d-----w C:\Program Files\Money
2008-03-06 17:24 --------- d-----w C:\Program Files\C-CHANNEL
2008-03-06 17:24 --------- d-----w C:\Documents and Settings\All Users\Application Data\C-CHANNEL
2008-03-06 17:22 --------- d-----w C:\Program Files\Microsoft WSE
2008-03-06 17:22 --------- d-----w C:\Program Files\Fichiers communs\InstallShield
2008-03-06 16:57 --------- d-----w C:\Program Files\Fichiers communs\Cisco Systems
2008-03-06 16:48 --------- d-----w C:\Documents and Settings\Olivier\Application Data\Logitech
2008-03-06 16:43 --------- d-----w C:\Program Files\totalcmd
2008-03-06 16:39 --------- d-----w C:\Documents and Settings\Kevin\Application Data\Logitech
2008-03-06 16:36 --------- d-----w C:\Documents and Settings\Amelie\Application Data\Logitech
2008-03-06 16:35 --------- d-----w C:\Documents and Settings\Corinne\Application Data\Logitech
2008-03-06 16:17 --------- d-----w C:\Documents and Settings\All Users\Application Data\LogiShrd
2008-03-06 16:16 0 ---ha-w C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-03-06 16:16 0 ---ha-w C:\WINDOWS\system32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf
2008-03-06 16:16 0 ---ha-w C:\WINDOWS\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
2008-03-06 16:16 0 ---ha-w C:\WINDOWS\system32\drivers\Msft_Kernel_LHidFilt_01005.Wdf
2008-03-05 16:05 --------- d-----w C:\Program Files\RegSupreme
2008-03-05 15:22 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-03-05 14:31 --------- d-----w C:\Program Files\Marvell
2008-03-05 14:28 --------- d-----w C:\Program Files\Analog Devices
2008-03-05 14:23 --------- d-----w C:\Program Files\Intel
2008-03-05 14:04 558,142 ----a-w C:\WINDOWS\java\Packages\WURD3F9B.ZIP
2008-03-05 14:04 155,995 ----a-w C:\WINDOWS\java\Packages\F9FVT37D.ZIP
2008-03-05 14:04 --------- d-----w C:\Program Files\microsoft frontpage
2008-03-05 14:02 --------- d-----w C:\Program Files\Services en ligne
2008-03-01 12:58 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll
2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll
2008-02-08 16:37 219,664 ----a-w C:\WINDOWS\system32\klogon.dll
2006-06-23 06:48 32,768 ----a-r C:\WINDOWS\inf\UpdateUSB.exe
.
((((((((((((((((((((((((((((( snapshot@2008-05-03_15.35.23.95 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-05-03 13:09:25 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-05-05 17:11:51 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-05-05 17:12:03 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_310.dat
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="C:\Program Files\Analog Devices\Core\smax4pnp.exe" [2006-12-18 15:34 868352]
"SoundMAX"="C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" [2006-07-13 08:12 729088]
"nwiz"="nwiz.exe" [2007-12-05 02:41 1626112 C:\WINDOWS\system32\nwiz.exe]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-11-29 03:17 55824 C:\WINDOWS\KHALMNPR.Exe]
"Symantec Backup Exec System Recovery 7.0"="C:\Program Files\Symantec\Backup Exec System Recovery\Agent\VProTray.exe" [2008-01-10 04:42 2037088]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2006-11-03 18:20 866584]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 02:41 8523776]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2008-02-08 18:36 227856]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-04 01:54 15360]
C:\Documents and Settings\Kevin\Menu D‚marrer\Programmes\D‚marrage\
OneNote 2007 - Capture d'‚cran et lancement.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 20:24:54 98632]
C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
C-CHANNEL OnlineUpdate.lnk - C:\Program Files\C-CHANNEL\OnlineUpdate\PeOnlineUpdate.exe [2008-03-06 19:24:46 993096]
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [2008-03-06 18:16:11 789008]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2007-02-05 15:39 294400]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll 2008-01-09 13:30 72208 c:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTWLgn.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"E:\\Jeux\\CompanyofHeroes\\RelicCOH.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Program Files\\LimeWire\\LimeWire.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"C:\\Program Files\\Zattoo\\zattood.exe"=
"C:\\Program Files\\Zattoo\\Zattoo2.exe"=
"C:\\kav\\kis7.0\\french\\setup.exe"=
R2 Backup Exec System Recovery;Backup Exec System Recovery;C:\Program Files\Symantec\Backup Exec System Recovery\Agent\VProSvc.exe [2008-01-10 04:42]
R2 McciCMService;McciCMService;"C:\Program Files\Fichiers communs\Motive\McciCMService.exe" [2007-09-10 10:19]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [2007-12-13 13:28]
S3 MREMP50;MREMP50 NDIS Protocol Driver;C:\PROGRA~1\FICHIE~1\Motive\MREMP50.SYS [2007-07-10 18:37]
S3 MRESP50;MRESP50 NDIS Protocol Driver;C:\PROGRA~1\FICHIE~1\Motive\MRESP50.SYS [2007-07-10 18:37]
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-03-24 13:48:00 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
"2008-05-05 17:14:54 C:\WINDOWS\Tasks\MP Scheduled Scan.job"
- C:\Program Files\Windows Defender\MpCmdRun.exe
.
**************************************************************************
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-05-05 19:38:40
Windows 5.1.2600 Service Pack 2 NTFS
Balayage processus cachés ...
Balayage caché autostart entries ...
Balayage des fichiers cachés ...
Scan terminé avec succès
Les fichiers cachés: 0
**************************************************************************
.
Temps d'accomplissement: 2008-05-05 19:41:11
ComboFix-quarantined-files.txt 2008-05-05 17:41:06
Pre-Run: 58,546,954,240 octets libres
Post-Run: 58,548,027,392 octets libres
296 --- E O F --- 2008-05-02 10:34:26
TROISIEME OTMOVEIT
File/Folder C:\WINDOWS\SoftwareDistribution\Download\02a4f2fd7d9c575c80786d5284ddaf44\BIT6.tmp not found.
C:\WINDOWS\SoftwareDistribution\Download\0a67b6c406b1d7e0f5c1e6f6d44a3f6e\BITC.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\18b19374451d28a8fbaf1939cf31ff45\BITF.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\22fb973e059470cc1b5d76c4ae605351\BIT13.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\26924cbc8132a10b438ce6e2b49d4652\BITB.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\2769b111678c52099a3b3123b12f2325\BIT10.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\30285791903730fbf957a83562db4ff4\BITD.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\9e870549834e2bceb796e44a1e3ac6f5\BIT12.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\cb8921d0c7830b2f33c00fa4c8a10d17\BITE.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\d77b9b5b8fed23dd91f50d167cce60d3\BIT11.tmp moved successfully.
< EmptyTemp >
File delete failed. C:\DOCUME~1\Olivier\LOCALS~1\Temp\Perflib_Perfdata_a9c.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_1cc.dat scheduled to be deleted on reboot.
Temp folders emptied.
IE temp folders emptied.
File/Folder not found.
OTMoveIt2 by OldTimer - Version 1.0.4.1 log created on 05052008_191009
Files moved on Reboot...
File C:\DOCUME~1\Olivier\LOCALS~1\Temp\Perflib_Perfdata_a9c.dat not found!
File C:\WINDOWS\temp\Perflib_Perfdata_1cc.dat not found!
ET LE DERNIER HIJACKTHIS
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:52:35, on 05.05.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Symantec\Backup Exec System Recovery\Agent\VProSvc.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Fichiers communs\Motive\McciCMService.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Symantec\Backup Exec System Recovery\Agent\VProTray.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
G:\RE-INSTALL HD\Anti-virus\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.ch/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =
http://go.microsoft.com/fwlink/?LinkId=74005R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Symantec Backup Exec System Recovery 7.0] "C:\Program Files\Symantec\Backup Exec System Recovery\Agent\VProTray.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -masquer
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: C-CHANNEL OnlineUpdate.lnk = ?
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel -
res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir l'image dans &Microsoft PhotoDraw -
res://C:\PROGRA~1\MICROS~3\Office\1036\phdintl.dll/phdContext.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -
http://webscanner.kaspersky.fr/kavwebscan_unicode.cabO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://www.update.microsoft.com/microso ... 4730837250O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/s ... wflash.cabO18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Backup Exec System Recovery - Symantec Corporation - C:\Program Files\Symantec\Backup Exec System Recovery\Agent\VProSvc.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Fichiers communs\Motive\McciCMService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
--
End of file - 9431 bytes
Et encore merci pour ta précieuse aide
Bonne soirée