Sujet Précédent Sujet Suivant

VIRUS PUBLICITE

Fermé
cécile - 16 janv. 2009 à 15:51
 cécile - 19 janv. 2009 à 10:32
Bonjour,
J'ai un gros probleme, je suis sous mozilla et j'ai sans cesse des pubs quand je surf..
Alors, j'ai tenté de télécharger l2mfix.exe et hijackthis,
les rapports sont les suivants :
l2mfix.exe :
L2MFIX find log 051206
These are the registry keys present
**********************************************************************************
Winlogon/notify:
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
"DLLName"="Ati2evxx.dll"
"Asynchronous"=dword:00000000
"Impersonate"=dword:00000001
"Lock"="AtiLockEvent"
"Logoff"="AtiLogoffEvent"
"Logon"="AtiLogonEvent"
"Disconnect"="AtiDisConnectEvent"
"Reconnect"="AtiReConnectEvent"
"Safe"=dword:00000000
"Shutdown"="AtiShutdownEvent"
"StartScreenSaver"="AtiStartScreenSaverEvent"
"StartShell"="AtiStartShellEvent"
"Startup"="AtiStartupEvent"
"StopScreenSaver"="AtiStopScreenSaverEvent"
"Unlock"="AtiUnLockEvent"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
"Asynchronous"=dword:00000000
"Impersonate"=dword:00000000
"DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,33,00,32,00,2e,00,64,00,6c,00,\
6c,00,00,00
"Logoff"="ChainWlxLogoffEvent"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
"Asynchronous"=dword:00000000
"Impersonate"=dword:00000000
"DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,6e,00,65,00,74,00,2e,00,64,00,\
6c,00,6c,00,00,00
"Logoff"="CryptnetWlxLogoffEvent"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
"DLLName"="cscdll.dll"
"Logon"="WinlogonLogonEvent"
"Logoff"="WinlogonLogoffEvent"
"ScreenSaver"="WinlogonScreenSaverEvent"
"Startup"="WinlogonStartupEvent"
"Shutdown"="WinlogonShutdownEvent"
"StartShell"="WinlogonStartShellEvent"
"Impersonate"=dword:00000000
"Asynchronous"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\qoMdCvsS]
"Asynchronous"=dword:00000001
"DllName"="qoMdCvsS.dll"
"Impersonate"=dword:00000000
"Logon"="o"
"Logoff"="f"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
"DLLName"="wlnotify.dll"
"Logon"="SCardStartCertProp"
"Logoff"="SCardStopCertProp"
"Lock"="SCardSuspendCertProp"
"Unlock"="SCardResumeCertProp"
"Enabled"=dword:00000001
"Impersonate"=dword:00000001
"Asynchronous"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
"Asynchronous"=dword:00000000
"DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\
6c,00,6c,00,00,00
"Impersonate"=dword:00000000
"StartShell"="SchedStartShell"
"Logoff"="SchedEventLogOff"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
"Logoff"="WLEventLogoff"
"Impersonate"=dword:00000000
"Asynchronous"=dword:00000001
"DllName"=hex(2):73,00,63,00,6c,00,67,00,6e,00,74,00,66,00,79,00,2e,00,64,00,\
6c,00,6c,00,00,00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
"DLLName"="WlNotify.dll"
"Lock"="SensLockEvent"
"Logon"="SensLogonEvent"
"Logoff"="SensLogoffEvent"
"Safe"=dword:00000001
"MaxWait"=dword:00000258
"StartScreenSaver"="SensStartScreenSaverEvent"
"StopScreenSaver"="SensStopScreenSaverEvent"
"Startup"="SensStartupEvent"
"Shutdown"="SensShutdownEvent"
"StartShell"="SensStartShellEvent"
"PostShell"="SensPostShellEvent"
"Disconnect"="SensDisconnectEvent"
"Reconnect"="SensReconnectEvent"
"Unlock"="SensUnlockEvent"
"Impersonate"=dword:00000001
"Asynchronous"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
"Asynchronous"=dword:00000000
"DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\
6c,00,6c,00,00,00
"Impersonate"=dword:00000000
"Logoff"="TSEventLogoff"
"Logon"="TSEventLogon"
"PostShell"="TSEventPostShell"
"Shutdown"="TSEventShutdown"
"StartShell"="TSEventStartShell"
"Startup"="TSEventStartup"
"MaxWait"=dword:00000258
"Reconnect"="TSEventReconnect"
"Disconnect"="TSEventDisconnect"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
"DLLName"="wlnotify.dll"
"Logon"="RegisterTicketExpiredNotificationEvent"
"Logoff"="UnregisterTicketExpiredNotificationEvent"
"Impersonate"=dword:00000001
"Asynchronous"=dword:00000001

**********************************************************************************
useragent:
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform]
"SV1"=""

**********************************************************************************
Shell Extension key:
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]
"{00022613-0000-0000-C000-000000000046}"="Feuille de propri‚t‚s du fichier multim‚dia"
"{176d6597-26d3-11d1-b350-080036a75b03}"="Gestion de scanneur ICM"
"{1F2E5C40-9550-11CE-99D2-00AA006E086C}"="Page de s‚curit‚ NTFS"
"{3EA48300-8CF6-101B-84FB-666CCB9BCD32}"="Page des propri‚t‚s de OLE DocFile"
"{40dd6e20-7c17-11ce-a804-00aa003ca9f6}"="Extensions de l'environnement pour le partage"
"{41E300E0-78B6-11ce-849B-444553540000}"="PlusPack CPL Extension"
"{42071712-76d4-11d1-8b24-00a0c9068ff3}"="Extension Affichage Carte du Panneau de configuration"
"{42071713-76d4-11d1-8b24-00a0c9068ff3}"="Extension Affichage cran du Panneau de configuration"
"{42071714-76d4-11d1-8b24-00a0c9068ff3}"="Extension Affichage Panorama du Panneau de configuration"
"{4E40F770-369C-11d0-8922-00A024AB2DBB}"="Page de s‚curit‚ DS"
"{513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}"="Page de compatibilit‚"
"{56117100-C0CD-101B-81E2-00AA004AE837}"="Gestionnaire de donn‚es endommag‚es de l'environnement"
"{59099400-57FF-11CE-BD94-0020AF85B590}"="Extension copie de disquette"
"{59be4990-f85c-11ce-aff7-00aa003ca9f6}"="Extensions de l'environnement pour les objets r‚seau de Microsoft Windows"
"{5DB2625A-54DF-11D0-B6C4-0800091AA605}"="Gestion d'‚cran ICM"
"{675F097E-4C4D-11D0-B6C1-0800091AA605}"="Gestion d'imprimante ICM"
"{764BF0E1-F219-11ce-972D-00AA00A14F56}"="Extensions de l'environnement de compression de fichiers"
"{77597368-7b15-11d0-a0c2-080036af3f03}"="Extension de l'environnement d'imprimante Web"
"{7988B573-EC89-11cf-9C00-00AA00A14F56}"="Disk Quota UI"
"{853FE2B1-B769-11d0-9C4E-00C04FB6C6FA}"="Menu contextuel de cryptage"
"{85BBD920-42A0-1069-A2E4-08002B30309D}"="Porte-documents"
"{88895560-9AA2-1069-930E-00AA0030EBC8}"="Extension ic“ne HyperTerminal"
"{BD84B380-8CA2-1069-AB1D-08000948F534}"="Fonts"
"{DBCE2480-C732-101B-BE72-BA78E9AD5B27}"="Profil ICC"
"{F37C5810-4D3F-11d0-B4BF-00AA00BBB723}"="Page de s‚curit‚ des imprimantes"
"{f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}"="Extensions de l'environnement pour le partage"
"{f92e8c40-3d33-11d2-b1aa-080036a75b03}"="Display TroubleShoot CPL Extension"
"{7444C717-39BF-11D1-8CD9-00C04FC29D45}"="Extension de cryptographie PKO"
"{7444C719-39BF-11D1-8CD9-00C04FC29D45}"="Extension de cryptographie Sign"
"{7007ACC7-3202-11D1-AAD2-00805FC1270E}"="Connexions r‚seau"
"{992CFFA0-F557-101A-88EC-00DD010CCC48}"="Connexions r‚seau"
"{E211B736-43FD-11D1-9EFB-0000F8757FCD}"="&Scanneurs et appareils photo"
"{FB0C9C8A-6C50-11D1-9F1D-0000F8757FCD}"="&Scanneurs et appareils photo"
"{905667aa-acd6-11d2-8080-00805f6596d2}"="&Scanneurs et appareils photo"
"{3F953603-1008-4f6e-A73A-04AAC7A992F1}"="&Scanneurs et appareils photo"
"{83bbcbf3-b28a-4919-a5aa-73027445d672}"="&Scanneurs et appareils photo"
"{F0152790-D56E-4445-850E-4F3117DB740C}"="Remote Sessions CPL Extension"
"{60254CA5-953B-11CF-8C96-00AA00B8708C}"="Extensions de l'interpr‚teur de commandes pour l'environnement d'ex‚cution de scripts Windows"
"{2206CDB2-19C1-11D1-89E0-00C04FD7A829}"="Liaison de donn‚es Microsoft"
"{DD2110F0-9EEF-11cf-8D8E-00AA0060F5BF}"="Tasks Folder Icon Handler"
"{797F1E90-9EDD-11cf-8D8E-00AA0060F5BF}"="Tasks Folder Shell Extension"
"{D6277990-4C6A-11CF-8D87-00AA0060F5BF}"="Tƒches planifi‚es"
"{2559a1f7-21d7-11d4-bdaf-00c04f60b9f0}"="Set Program Access and Defaults"
"{5F327514-6C5E-4d60-8F16-D07FA08A78ED}"="Auto Update Property Sheet Extension"
"{0DF44EAA-FF21-4412-828E-260A8728E7F1}"="Barre des tƒches et menu D‚marrer"
"{2559a1f0-21d7-11d4-bdaf-00c04f60b9f0}"="Rechercher"
"{2559a1f1-21d7-11d4-bdaf-00c04f60b9f0}"="Aide et support"
"{2559a1f2-21d7-11d4-bdaf-00c04f60b9f0}"="Aide et support"
"{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}"="Ex‚cuter..."
"{2559a1f4-21d7-11d4-bdaf-00c04f60b9f0}"="Internet"
"{2559a1f5-21d7-11d4-bdaf-00c04f60b9f0}"="Courrier ‚lectronique"
"{D20EA4E1-3957-11d2-A40B-0C5020524152}"="Polices"
"{D20EA4E1-3957-11d2-A40B-0C5020524153}"="Outils d'administration"
"{596AB062-B4D2-4215-9F74-E9109B0A8153}"="Page de propri‚t‚s des versions pr‚c‚dentes"
"{9DB7A13C-F208-4981-8353-73CC61AE2783}"="Versions pr‚c‚dentes"
"{875CB1A1-0F29-45de-A1AE-CFB4950D0B78}"="Audio Media Properties Handler"
"{40C3D757-D6E4-4b49-BB41-0E5BBEA28817}"="Video Media Properties Handler"
"{E4B29F9D-D390-480b-92FD-7DDB47101D71}"="Wav Properties Handler"
"{87D62D94-71B3-4b9a-9489-5FE6850DC73E}"="Avi Properties Handler"
"{A6FD9E45-6E44-43f9-8644-08598F5A74D9}"="Midi Properties Handler"
"{c5a40261-cd64-4ccf-84cb-c394da41d590}"="Video Thumbnail Extractor"
"{5E6AB780-7743-11CF-A12B-00AA004AE837}"="Barre d'outils Internet Microsoft"
"{22BF0C20-6DA7-11D0-B373-00A0C9034938}"="tat du t‚l‚chargement"
"{91EA3F8B-C99B-11d0-9815-00C04FD91972}"="Dossier Bureau ‚tendu"
"{6413BA2C-B461-11d1-A18A-080036B11A03}"="Dossier du shell augment‚"
"{F61FFEC1-754F-11d0-80CA-00AA005B4383}"="BandProxy"
"{7BA4C742-9E81-11CF-99D3-00AA004AE837}"="Bande du navigateur Microsoft"
"{30D02401-6A81-11d0-8274-00C04FD5AE38}"="Bande de recherche"
"{169A0691-8DF9-11d1-A1C4-00C04FD75D13}"="Volet int‚gr‚ de recherche"
"{07798131-AF23-11d1-9111-00A0C98BA67D}"="Recherche Web"
"{AF4F6510-F982-11d0-8595-00AA004CD6D8}"="Utilitaire des options de l'arborescence du Registre"
"{01E04581-4EEE-11d0-BFE9-00AA005B4383}"="&Adresse"
"{A08C11D2-A228-11d0-825B-00AA005B4383}"="BoŒte d'entr‚e de l'adresse"
"{00BB2763-6A77-11D0-A535-00C04FD7D062}"="Saisie semi-automatique Microsoft"
"{7376D660-C583-11d0-A3A5-00C04FD706EC}"="TridentImageExtractor"
"{6756A641-DE71-11d0-831B-00AA005B4383}"="Liste de saisie semi-automatique MRU"
"{6935DB93-21E8-4ccc-BEB9-9FE3C77A297A}"="Liste de saisie semi-automatique personnalis‚e MRU"
"{7e653215-fa25-46bd-a339-34a2790f3cb7}"="Accessible"
"{acf35015-526e-4230-9596-becbe19f0ac9}"="Barre de progrŠs auto-ouvrante"
"{00BB2764-6A77-11D0-A535-00C04FD7D062}"="Liste de saisie semi-automatique de l'historique Microsoft"
"{03C036F1-A186-11D0-824A-00AA005B4383}"="Liste de saisie semi-automatique du dossier Shell Microsoft"
"{00BB2765-6A77-11D0-A535-00C04FD7D062}"="Conteneur de la liste de saisie semi-automatique multiple Microsoft"
"{ECD4FC4E-521C-11D0-B792-00A0C90312E1}"="Menu Site de bandes"
"{3CCF8A41-5C85-11d0-9796-00AA00B90ADF}"="Shell DeskBarApp"
"{ECD4FC4C-521C-11D0-B792-00A0C90312E1}"="Barre du Bureau"
"{ECD4FC4D-521C-11D0-B792-00A0C90312E1}"="Shell Rebar BandSite"
"{DD313E04-FEFF-11d1-8ECD-0000F87A470C}"="Assistance utilisateur"
"{EF8AD2D1-AE36-11D1-B2D2-006097DF8C11}"="ParamŠtres du dossier global"
"{EFA24E61-B078-11d0-89E4-00C04FC9E26E}"="Favorites Band"
"{0A89A860-D7B1-11CE-8350-444553540000}"="Shell Automation Inproc Service"
"{E7E4BC40-E76A-11CE-A9BB-00AA004AE837}"="Shell DocObject Viewer"
"{A5E46E3A-8849-11D1-9D8C-00C04FC99D61}"="Microsoft Browser Architecture"
"{FBF23B40-E3F0-101B-8488-00AA003E56F8}"="InternetShortcut"
"{3C374A40-BAE4-11CF-BF7D-00AA006946EE}"="Microsoft Url History Service"
"{FF393560-C2A7-11CF-BFF4-444553540000}"="Historique"
"{7BD29E00-76C1-11CF-9DD0-00A0C9034933}"="Temporary Internet Files"
"{7BD29E01-76C1-11CF-9DD0-00A0C9034933}"="Temporary Internet Files"
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}"="Microsoft Url Search Hook"
"{A2B0DD40-CC59-11d0-A3A5-00C04FD706EC}"="Image de d‚marrage de la Suite IE4"
"{67EA19A0-CCEF-11d0-8024-00C04FD75D13}"="CDF Extension Copy Hook"
"{131A6951-7F78-11D0-A979-00C04FD705A2}"="ISFBand OC"
"{9461b922-3c5a-11d2-bf8b-00c04fb93661}"="Search Assistant OC"
"{3DC7A020-0ACD-11CF-A9BB-00AA004AE837}"="Internet"
"{871C5380-42A0-1069-A2EA-08002B30309D}"="Internet Name Space"
"{EFA24E64-B078-11d0-89E4-00C04FC9E26E}"="Explorer Band"
"{9E56BE60-C50F-11CF-9A2C-00A0C90A90CE}"="Sendmail service"
"{9E56BE61-C50F-11CF-9A2C-00A0C90A90CE}"="Sendmail service"
"{88C6C381-2E85-11D0-94DE-444553540000}"="Dossier ActiveX Cache"
"{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"="WebCheck"
"{ABBE31D0-6DAE-11D0-BECA-00C04FD940BE}"="Subscription Mgr"
"{F5175861-2688-11d0-9C5E-00AA00A45957}"="Dossier Inscription"
"{08165EA0-E946-11CF-9C87-00AA005127ED}"="WebCheckWebCrawler"
"{E3A8BDE6-ABCE-11d0-BC4B-00C04FD929DB}"="WebCheckChannelAgent"
"{E8BB6DC0-6B4E-11d0-92DB-00A0C90C2BD7}"="TrayAgent"
"{7D559C10-9FE9-11d0-93F7-00AA0059CE02}"="Code Download Agent"
"{E6CC6978-6B6E-11D0-BECA-00C04FD940BE}"="ConnectionAgent"
"{D8BD2030-6FC9-11D0-864F-00AA006809D9}"="PostAgent"
"{7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB}"="WebCheck SyncMgr Handler"
"{352EC2B7-8B9A-11D1-B8AE-006008059382}"="Gestionnaire d'applications d'environnement"
"{0B124F8F-91F0-11D1-B8B5-006008059382}"="num‚rateur d'applications install‚es"
"{CFCCC7A0-A282-11D1-9082-006008059382}"="Publication d'application Darwin"
"{e84fda7c-1d6a-45f6-b725-cb260c236066}"="Shell Image Verbs"
"{66e4e4fb-f385-4dd0-8d74-a2efd1bc6178}"="Shell Image Data Factory"
"{00E7B358-F65B-4dcf-83DF-CD026B94BFD4}"="Autoplay for SlideShow"
"{3F30C968-480A-4C6C-862D-EFC0897BB84B}"="Extracteur de miniatures de fichier + GDI"
"{9DBD2C50-62AD-11d0-B806-00C04FD706EC}"="Gestionnaire de miniatures - Informations de r‚sum‚ (DOCFILES)"
"{EAB841A0-9550-11cf-8C16-00805F1408F3}"="Extracteur de miniatures HTML"
"{eb9b1153-3b57-4e68-959a-a3266bc3d7fe}"="Shell Image Property Handler"
"{CC6EEFFB-43F6-46c5-9619-51D571967F7D}"="Assistant Publication de sites Web"
"{add36aa8-751a-4579-a266-d66f5202ccbb}"="Commande d'impressions via le Web"
"{6b33163c-76a5-4b6c-bf21-45de9cd503a1}"="Objet Assistant de publication Shell"
"{58f1f272-9240-4f51-b6d4-fd63d1618591}"="Assistant Obtenir une identit‚ Passport"
"{7A9D77BD-5403-11d2-8785-2E0420524153}"="Comptes d'utilisateurs"
"{BD472F60-27FA-11cf-B8B4-444553540000}"="Compressed (zipped) Folder Right Drag Handler"
"{888DCA60-FC0A-11CF-8F0F-00C04FD7D062}"="Compressed (zipped) Folder SendTo Target"
"{f39a0dc0-9cc8-11d0-a599-00c04fd64433}"="Fichier de chaŒne"
"{f3aa0dc0-9cc8-11d0-a599-00c04fd64434}"="Raccourci de chaŒne"
"{f3ba0dc0-9cc8-11d0-a599-00c04fd64435}"="Channel Handler Object"
"{f3da0dc0-9cc8-11d0-a599-00c04fd64437}"="Channel Menu"
"{f3ea0dc0-9cc8-11d0-a599-00c04fd64438}"="Channel Properties"
"{692F0339-CBAA-47e6-B5B5-3B84DB604E87}"="Extensions Manager Folder"
"{63da6ec0-2e98-11cf-8d82-444553540000}"="FTP Folders Webview"
"{883373C3-BF89-11D1-BE35-080036B11A03}"="Microsoft DocProp Shell Ext"
"{A9CF0EAE-901A-4739-A481-E35B73E47F6D}"="Microsoft DocProp Inplace Edit Box Control"
"{8EE97210-FD1F-4B19-91DA-67914005F020}"="Microsoft DocProp Inplace ML Edit Box Control"
"{0EEA25CC-4362-4A12-850B-86EE61B0D3EB}"="Microsoft DocProp Inplace Droplist Combo Control"
"{6A205B57-2567-4A2C-B881-F787FAB579A3}"="Microsoft DocProp Inplace Calendar Control"
"{28F8A4AC-BBB3-4D9B-B177-82BFC914FA33}"="Microsoft DocProp Inplace Time Control"
"{8A23E65E-31C2-11d0-891C-00A024AB2DBB}"="Directory Query UI"
"{9E51E0D0-6E0F-11d2-9601-00C04FA31A86}"="Shell properties for a DS object"
"{163FDC20-2ABC-11d0-88F0-00A024AB2DBB}"="Directory Object Find"
"{F020E586-5264-11d1-A532-0000F8757D7E}"="Directory Start/Search Find"
"{0D45D530-764B-11d0-A1CA-00AA00C16E65}"="Directory Property UI"
"{62AE1F9A-126A-11D0-A14B-0800361B1103}"="Directory Context Menu Verbs"
"{ECF03A33-103D-11d2-854D-006008059367}"="MyDocs Copy Hook"
"{ECF03A32-103D-11d2-854D-006008059367}"="MyDocs Drop Target"
"{4a7ded0a-ad25-11d0-98a8-0800361b1103}"="MyDocs Properties"
"{750fdf0e-2a26-11d1-a3ea-080036587f03}"="Offline Files Menu"
"{10CFC467-4392-11d2-8DB4-00C04FA31A66}"="Offline Files Folder Options"
"{AFDB1F70-2A4C-11d2-9039-00C04F8EEB3E}"="Dossier Fichiers hors connexion"
"{143A62C8-C33B-11D1-84FE-00C04FA34A14}"="Microsoft Agent Character Property Sheet Handler"
"{ECCDF543-45CC-11CE-B9BF-0080C87CDBA6}"="DfsShell"
"{60fd46de-f830-4894-a628-6fa81bc0190d}"="%DESC_PublishDropTarget%"
"{7A80E4A8-8005-11D2-BCF8-00C04F72C717}"="MMC Icon Handler"
"{0CD7A5C0-9F37-11CE-AE65-08002B2E1262}"=".CAB file viewer"
"{32714800-2E5F-11d0-8B85-00AA0044F941}"="Des &personnes..."
"{8DD448E6-C188-4aed-AF92-44956194EB1F}"="Windows Media Player Play as Playlist Context Menu Handler"
"{CE3FB1D1-02AE-4a5f-A6E9-D9F1B4073E6C}"="Windows Media Player Burn Audio CD Context Menu Handler"
"{F1B9284F-E9DC-4e68-9D7E-42362A59F0FD}"="Windows Media Player Add to Playlist Context Menu Handler"
"{640167b4-59b0-47a6-b335-a6b3c0695aea}"="Portable Media Devices"
"{cc86590a-b60a-48e6-996b-41d25ed39a1e}"="Portable Media Devices Menu"
"{1D2680C9-0E2A-469d-B787-065558BC7D43}"="Fusion Cache"
"{B41DB860-8EE4-11D2-9906-E49FADC173CA}"="WinRAR shell extension"
"{5464D816-CF16-4784-B9F3-75C0DB52B499}"="Yahoo! Mail"
"{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}"="OpenOffice.org Column Handler"
"{087B3AE3-E237-4467-B8DB-5A38AB959AC9}"="OpenOffice.org Infotip Handler"
"{63542C48-9552-494A-84F7-73AA6A7C99C1}"="OpenOffice.org Property Sheet Handler"
"{3B092F0C-7696-40E3-A80F-68D74DA84210}"="OpenOffice.org Thumbnail Viewer"
"{BDEADF00-C265-11D0-BCED-00A0C90AB50F}"="Dossiers Web"
"{42042206-2D85-11D3-8CFF-005004838597}"="Microsoft Office HTML Icon Handler"
"{e82a2d71-5b2f-43a0-97b8-81be15854de8}"="ShellLink for Application References"
"{E37E2028-CE1A-4f42-AF05-6CEABC4E5D75}"="Shell Icon Handler for Application References"

**********************************************************************************
HKEY ROOT CLASSIDS:
**********************************************************************************
Files Found are not all bad files:

E:\WINDOWS\SYSTEM32\
aewcjdrp.dll Fri 9 Jan 2009 15:40:48 ..... 73 216 71,50 K
amvo0.dll Mon 10 Nov 2008 22:53:30 ..SHR 84 992 83,00 K
amvo1.dll Thu 6 Nov 2008 19:24:06 ..SHR 84 992 83,00 K
awtrqrqh.dll Mon 12 Jan 2009 12:20:42 A.... 36 864 36,00 K
awtrriys.dll Sun 11 Jan 2009 11:51:48 A.... 36 864 36,00 K
awtsrhfe.dll Sat 10 Jan 2009 9:52:10 A.... 36 864 36,00 K
awttstlj.dll Sun 11 Jan 2009 14:01:50 A.... 36 864 36,00 K
awtumfxr.dll Sat 10 Jan 2009 13:32:08 A.... 36 864 36,00 K
awturogh.dll Thu 15 Jan 2009 19:08:48 A.... 37 376 36,50 K
awtusqqg.dll Sat 10 Jan 2009 11:12:10 A.... 36 864 36,00 K
awtutqrj.dll Sat 10 Jan 2009 16:02:08 A.... 36 864 36,00 K
awtuvwpq.dll Tue 13 Jan 2009 11:35:52 A.... 36 864 36,00 K
byxnecyy.dll Sun 11 Jan 2009 20:21:14 A.... 36 864 36,00 K
byxoffcr.dll Mon 12 Jan 2009 13:54:42 A.... 36 864 36,00 K
byxohgvm.dll Sun 11 Jan 2009 19:51:04 A.... 36 864 36,00 K
byxpicay.dll Sun 11 Jan 2009 17:41:12 A.... 36 864 36,00 K
byxqictk.dll Mon 12 Jan 2009 13:13:16 A.... 36 864 36,00 K
byxrkjdu.dll Wed 14 Jan 2009 17:44:54 A.... 36 864 36,00 K
byxrlkda.dll Sun 11 Jan 2009 13:41:50 A.... 36 864 36,00 K
cbxndulf.dll Thu 15 Jan 2009 15:47:06 A.... 37 376 36,50 K
cbxngarr.dll Sun 11 Jan 2009 19:21:12 A.... 36 864 36,00 K
cbxohbsj.dll Sun 11 Jan 2009 10:41:48 A.... 36 864 36,00 K
cbxpfcsi.dll Fri 16 Jan 2009 14:49:06 A.... 37 376 36,50 K
cbxpfewq.dll Sat 10 Jan 2009 14:32:10 A.... 36 864 36,00 K
cbxpfexv.dll Sun 11 Jan 2009 12:51:48 A.... 36 864 36,00 K
cbxphfec.dll Sat 10 Jan 2009 23:14:18 A.... 36 864 36,00 K
cbxqijyx.dll Sat 10 Jan 2009 22:44:18 A.... 36 864 36,00 K
cbxqkkij.dll Sun 11 Jan 2009 12:21:48 A.... 36 864 36,00 K
cbxribct.dll Sat 10 Jan 2009 10:42:10 A.... 36 864 36,00 K
cbxrkcuo.dll Sun 11 Jan 2009 14:31:50 A.... 36 864 36,00 K
cfxrnftq.dll Tue 13 Jan 2009 12:08:32 A.... 73 216 71,50 K
ciuytr0.dll Fri 16 Jan 2009 11:58:36 ..SHR 90 112 88,00 K
ciuytr1.dll Tue 13 Jan 2009 15:51:46 ..SHR 90 112 88,00 K
ciuytr2.dll Sun 11 Jan 2009 12:51:42 ..SHR 90 112 88,00 K
cjhnnfdd.dll Wed 14 Jan 2009 13:41:10 A.... 73 728 72,00 K
ckvo0.dll Mon 10 Nov 2008 13:08:32 ..SHR 85 504 83,50 K
ckvo1.dll Fri 7 Nov 2008 9:31:26 ..SHR 85 504 83,50 K
ckvo2.dll Mon 3 Nov 2008 17:24:34 ..SHR 85 504 83,50 K
cluhpsnh.dll Sun 11 Jan 2009 20:07:20 A.... 126 976 124,00 K
cranvrxw.dll Fri 16 Jan 2009 15:24:38 A.... 124 416 121,50 K
cvnmhg0.dll Thu 15 Jan 2009 17:34:34 ..SHR 89 600 87,50 K
cvnmhg1.dll Tue 13 Jan 2009 11:36:20 ..SHR 89 600 87,50 K
cwsnry.dll Mon 12 Jan 2009 12:07:40 A.... 126 464 123,50 K
ddcatrss.dll Thu 15 Jan 2009 16:55:32 A.... 37 376 36,50 K
ddcbrhbc.dll Mon 12 Jan 2009 20:18:04 A.... 36 864 36,00 K
ddcbuopn.dll Tue 13 Jan 2009 16:21:24 A.... 36 864 36,00 K
ddccsmcr.dll Wed 14 Jan 2009 18:04:54 A.... 36 864 36,00 K
ddcctkhe.dll Sat 10 Jan 2009 16:22:10 A.... 36 864 36,00 K
ddccttuo.dll Sat 10 Jan 2009 12:22:08 A.... 36 864 36,00 K
ddccvmgh.dll Fri 16 Jan 2009 13:51:06 A.... 37 376 36,50 K
ddcddtlk.dll Sat 10 Jan 2009 17:47:20 A.... 36 864 36,00 K
ddcdtqof.dll Thu 15 Jan 2009 16:07:08 A.... 37 376 36,50 K
ddcyoooo.dll Sat 10 Jan 2009 23:54:20 A.... 36 864 36,00 K
ddcypoom.dll Sun 11 Jan 2009 11:11:50 A.... 36 864 36,00 K
ddcyxwmc.dll Sun 11 Jan 2009 17:51:12 A.... 36 864 36,00 K
efcaqgvs.dll Sat 10 Jan 2009 16:52:08 A.... 36 864 36,00 K
efcarhig.dll Sat 10 Jan 2009 15:12:08 A.... 36 864 36,00 K
efccsqij.dll Sat 10 Jan 2009 14:42:08 A.... 36 864 36,00 K
efccstri.dll Thu 15 Jan 2009 17:58:46 A.... 37 376 36,50 K
efcdskbu.dll Mon 12 Jan 2009 14:56:36 A.... 36 864 36,00 K
efcdtkcs.dll Sun 11 Jan 2009 14:41:48 A.... 36 864 36,00 K
efcdtmcs.dll Tue 13 Jan 2009 16:31:26 A.... 36 864 36,00 K
efcduooe.dll Sat 10 Jan 2009 11:22:10 A.... 36 864 36,00 K
efcyofgx.dll Sat 10 Jan 2009 11:32:10 A.... 36 864 36,00 K
fccaaphw.dll Mon 12 Jan 2009 20:18:02 A.... 36 864 36,00 K
fccaatqr.dll Thu 15 Jan 2009 18:28:48 A.... 37 376 36,50 K
fccayonn.dll Sat 10 Jan 2009 16:42:08 A.... 36 864 36,00 K
fccbbrkc.dll Thu 15 Jan 2009 17:05:22 A.... 37 376 36,50 K
fccbxqrl.dll Sun 11 Jan 2009 10:51:48 A.... 36 864 36,00 K
fcccdbum.dll Sun 11 Jan 2009 18:51:12 A.... 36 864 36,00 K
fccdddas.dll Sun 11 Jan 2009 11:01:48 A.... 36 864 36,00 K
fccddebu.dll Fri 16 Jan 2009 15:29:06 A.... 37 376 36,50 K
fccddeum.dll Sat 10 Jan 2009 12:32:10 A.... 36 864 36,00 K
fccdeccd.dll Sat 10 Jan 2009 17:17:18 A.... 36 864 36,00 K
fccyofec.dll Thu 15 Jan 2009 17:48:44 A.... 37 376 36,50 K
fccywvwm.dll Tue 13 Jan 2009 12:21:26 A.... 36 864 36,00 K
fgucvdkr.dll Wed 14 Jan 2009 13:43:18 A.... 126 464 123,50 K
fozyzc.dll Tue 13 Jan 2009 12:11:30 A.... 126 976 124,00 K
gasret~1.dll Fri 16 Jan 2009 11:58:32 ..SHR 84 992 83,00 K
gasret~2.dll Thu 11 Dec 2008 11:21:32 ..SHR 84 992 83,00 K
gasret~3.dll Tue 11 Nov 2008 15:03:30 ..SHR 85 504 83,50 K
gdwcmqon.dll Thu 15 Jan 2009 17:36:02 A.... 73 216 71,50 K
gebqqgvu.dll Sun 11 Jan 2009 17:31:12 A.... 36 864 36,00 K
gebssqpj.dll Sat 10 Jan 2009 13:22:10 A.... 36 864 36,00 K
gebstqqh.dll Sat 10 Jan 2009 13:52:10 A.... 36 864 36,00 K
gebstrol.dll Wed 14 Jan 2009 16:35:24 A.... 36 864 36,00 K
gebtsqqg.dll Fri 16 Jan 2009 13:41:06 A.... 37 376 36,50 K
geburibc.dll Tue 13 Jan 2009 17:41:24 A.... 36 864 36,00 K
gebutlkj.dll Tue 13 Jan 2009 17:11:26 A.... 36 864 36,00 K
hggawuno.dll Sat 10 Jan 2009 12:52:08 A.... 36 864 36,00 K
hggayxqi.dll Fri 9 Jan 2009 16:04:16 A.... 36 864 36,00 K
hggvwttt.dll Sat 10 Jan 2009 13:12:12 A.... 36 864 36,00 K
hggwtkji.dll Sun 11 Jan 2009 14:11:48 A.... 36 864 36,00 K
hggwulbc.dll Thu 15 Jan 2009 16:37:08 A.... 37 376 36,50 K
hggwwopm.dll Sat 10 Jan 2009 14:02:10 A.... 36 864 36,00 K
hggxvpqh.dll Fri 16 Jan 2009 12:21:06 A.... 37 376 36,50 K
hggxyxno.dll Thu 15 Jan 2009 18:38:44 A.... 37 376 36,50 K
hggyawtn.dll Sat 10 Jan 2009 23:04:20 A.... 36 864 36,00 K
iifebbus.dll Sat 10 Jan 2009 22:27:20 A.... 36 864 36,00 K
iifecbyx.dll Fri 16 Jan 2009 15:19:08 A.... 37 376 36,50 K
iiffcumn.dll Sat 10 Jan 2009 23:34:18 A.... 36 864 36,00 K
iiffdwne.dll Mon 12 Jan 2009 12:01:22 A.... 36 864 36,00 K
iiffeurr.dll Tue 13 Jan 2009 20:07:42 A.... 36 864 36,00 K
iifffyyo.dll Sat 10 Jan 2009 11:02:10 A.... 36 864 36,00 K
iifgdspo.dll Sat 10 Jan 2009 15:48:24 A.... 36 864 36,00 K
iifgdtqn.dll Thu 15 Jan 2009 15:57:08 A.... 37 376 36,50 K
iifggxpo.dll Sat 10 Jan 2009 16:32:08 A.... 36 864 36,00 K
iifghxum.dll Fri 16 Jan 2009 14:29:06 A.... 37 376 36,50 K
iyvjbebf.dll Fri 9 Jan 2009 15:42:40 A.... 126 464 123,50 K
jajpyxxu.dll Fri 16 Jan 2009 15:24:40 ..... 73 216 71,50 K
jkkhbbrq.dll Sat 10 Jan 2009 16:12:08 A.... 36 864 36,00 K
jkkhwqig.dll Fri 16 Jan 2009 14:11:06 A.... 37 376 36,50 K
jkkibukb.dll Fri 16 Jan 2009 13:31:06 A.... 37 376 36,50 K
jkkicurl.dll Sun 11 Jan 2009 13:21:48 A.... 36 864 36,00 K
jkkifwqp.dll Mon 12 Jan 2009 14:53:08 A.... 36 864 36,00 K
jkkjawvm.dll Wed 14 Jan 2009 17:14:56 A.... 36 864 36,00 K
jkkjbbyo.dll Sun 11 Jan 2009 18:11:10 A.... 36 864 36,00 K
jkkjcrhb.dll Sun 11 Jan 2009 19:41:10 A.... 36 864 36,00 K
jkkjdevu.dll Sun 11 Jan 2009 13:31:48 A.... 36 864 36,00 K
jkkkbust.dll Fri 9 Jan 2009 15:39:36 ..... 303 104 296,00 K
jkklctll.dll Sun 11 Jan 2009 15:03:22 A.... 36 864 36,00 K
jmfasp.dll Thu 15 Jan 2009 13:44:50 A.... 124 416 121,50 K
jyiurhtv.dll Mon 12 Jan 2009 12:07:40 ..... 73 216 71,50 K
kav320.dll Fri 2 Jan 2009 18:52:32 ..SHR 84 992 83,00 K
kav321.dll Thu 1 Jan 2009 10:06:52 ..SHR 84 992 83,00 K
kdptft.dll Fri 16 Jan 2009 15:24:38 A.... 124 416 121,50 K
khfcrpgd.dll Sun 11 Jan 2009 18:21:12 A.... 36 864 36,00 K
khfcuule.dll Sat 10 Jan 2009 14:22:08 A.... 36 864 36,00 K
khfeuljj.dll Sat 10 Jan 2009 14:12:10 A.... 36 864 36,00 K
khfexnme.dll Sun 11 Jan 2009 13:11:48 A.... 36 864 36,00 K
khffetur.dll Sat 10 Jan 2009 10:22:10 A.... 36 864 36,00 K
khffwmds.dll Thu 15 Jan 2009 17:34:52 A.... 37 376 36,50 K
khffxpoo.dll Tue 13 Jan 2009 16:41:26 A.... 36 864 36,00 K
khffxrsp.dll Fri 16 Jan 2009 12:31:06 A.... 37 376 36,50 K
khfgvwvu.dll Sun 11 Jan 2009 10:31:48 A.... 36 864 36,00 K
khfgxvno.dll Thu 15 Jan 2009 15:30:40 A.... 37 376 36,50 K
khfgxwop.dll Sat 10 Jan 2009 17:57:18 A.... 36 864 36,00 K
kofdogvf.dll Sat 10 Jan 2009 16:35:28 A.... 126 464 123,50 K
ljjarjkk.dll Mon 12 Jan 2009 12:30:44 A.... 36 864 36,00 K
ljjbqopj.dll Sat 10 Jan 2009 14:52:08 A.... 36 864 36,00 K
ljjbrooo.dll Tue 13 Jan 2009 11:41:26 A.... 36 864 36,00 K
ljjbuvwv.dll Sun 11 Jan 2009 11:41:48 A.... 36 864 36,00 K
ljjcaatk.dll Sat 10 Jan 2009 22:17:24 A.... 36 864 36,00 K
ljjcrofv.dll Thu 15 Jan 2009 18:18:46 A.... 37 376 36,50 K
ljjcrrhe.dll Sat 10 Jan 2009 15:52:08 A.... 36 864 36,00 K
ljjctkdb.dll Fri 16 Jan 2009 15:09:08 A.... 37 376 36,50 K
ljjdwndv.dll Mon 12 Jan 2009 14:01:28 A.... 36 864 36,00 K
ljjyawmc.dll Fri 16 Jan 2009 12:11:06 A.... 37 376 36,50 K
ljjyppop.dll Sat 10 Jan 2009 15:22:08 A.... 36 864 36,00 K
ljjyqjyp.dll Sun 11 Jan 2009 20:31:14 A.... 36 864 36,00 K
lxtawg.dll Wed 14 Jan 2009 13:43:18 A.... 126 464 123,50 K
mljapofw.dll Sun 11 Jan 2009 19:31:14 A.... 36 864 36,00 K
mljappge.dll Thu 15 Jan 2009 11:30:46 A.... 37 376 36,50 K
mljbcsts.dll Sat 10 Jan 2009 9:42:10 A.... 36 864 36,00 K
mljbqroe.dll Thu 15 Jan 2009 16:27:06 A.... 37 376 36,50 K
mljbtnkk.dll Sun 11 Jan 2009 14:51:48 A.... 36 864 36,00 K
mljyrrqi.dll Sat 10 Jan 2009 12:02:10 A.... 36 864 36,00 K
mljystsi.dll Tue 13 Jan 2009 16:01:24 A.... 36 864 36,00 K
mshxgqef.dll Sat 10 Jan 2009 16:32:40 A.... 73 728 72,00 K
msvcr71.dll Sun 2 Nov 2008 18:53:34 A.... 348 160 340,00 K
nmdfgds0.dll Fri 16 Jan 2009 11:58:40 ..... 95 744 93,50 K
nmdfgds1.dll Fri 16 Jan 2009 12:00:24 ..SHR 95 744 93,50 K
nnnklebb.dll Sun 11 Jan 2009 12:11:48 A.... 36 864 36,00 K
nnnlmkja.dll Sat 10 Jan 2009 10:12:10 A.... 36 864 36,00 K
nnnmljcc.dll Thu 15 Jan 2009 18:08:46 A.... 37 376 36,50 K
nnnmlmgg.dll Fri 16 Jan 2009 13:11:06 A.... 37 376 36,50 K
nnnmmjkd.dll Sat 10 Jan 2009 11:52:10 A.... 36 864 36,00 K
nnnomfew.dll Mon 12 Jan 2009 11:02:48 A.... 36 864 36,00 K
nnnoneef.dll Sat 10 Jan 2009 15:42:08 A.... 36 864 36,00 K
nnnonghi.dll Sun 11 Jan 2009 20:41:14 A.... 36 864 36,00 K
nnnoogxu.dll Sat 10 Jan 2009 13:42:08 A.... 36 864 36,00 K
omyoypip.dll Sun 11 Jan 2009 10:15:20 A.... 126 976 124,00 K
opnkjkev.dll Sun 11 Jan 2009 11:31:48 A.... 36 864 36,00 K
opnklklk.dll Mon 12 Jan 2009 13:51:20 A.... 36 864 36,00 K
opnkllja.dll Thu 15 Jan 2009 19:38:46 A.... 37 376 36,50 K
opnklmkd.dll Thu 15 Jan 2009 11:40:46 A.... 37 376 36,50 K
opnlkabx.dll Sun 11 Jan 2009 13:01:48 A.... 36 864 36,00 K
opnlkctj.dll Sun 11 Jan 2009 17:11:12 A.... 36 864 36,00 K
opnllcsi.dll Thu 15 Jan 2009 18:58:46 A.... 37 376 36,50 K
opnllfyq.dll Sun 11 Jan 2009 19:11:10 A.... 36 864 36,00 K
opnmfvoo.dll Sun 11 Jan 2009 18:01:14 A.... 36 864 36,00 K
opnmnevs.dll Sat 10 Jan 2009 12:12:08 A.... 36 864 36,00 K
opnnnklj.dll Sun 11 Jan 2009 12:31:48 A.... 36 864 36,00 K
opnonfvv.dll Sat 10 Jan 2009 23:44:18 A.... 36 864 36,00 K
optyhww0.dll Fri 16 Jan 2009 11:58:34 ..SHR 89 600 87,50 K
pmnlkhbs.dll Sun 11 Jan 2009 0:04:20 A.... 36 864 36,00 K
pmnlmfwu.dll Fri 9 Jan 2009 16:44:16 A.... 36 864 36,00 K
podbwnoc.dll Sun 11 Jan 2009 20:07:22 ..... 73 216 71,50 K
pxfakefo.dll Thu 15 Jan 2009 13:44:50 A.... 124 416 121,50 K
python25.dll Sun 2 Nov 2008 18:53:34 A.... 2 117 632 2,02 M
python~1.dll Sun 2 Nov 2008 18:53:34 A.... 339 968 332,00 K
pywint~1.dll Sun 2 Nov 2008 18:53:34 A.... 114 688 112,00 K
qomdbyvm.dll Thu 15 Jan 2009 17:15:34 A.... 37 376 36,50 K
qomdcvss.dll Fri 9 Jan 2009 15:34:28 A.... 36 864 36,00 K
qomfcdsp.dll Sun 11 Jan 2009 17:21:12 A.... 36 864 36,00 K
qomgevvn.dll Sat 10 Jan 2009 22:54:18 A.... 36 864 36,00 K
qomgfefg.dll Fri 9 Jan 2009 16:14:16 A.... 36 864 36,00 K
rgcgdodo.dll Mon 12 Jan 2009 12:07:40 A.... 126 464 123,50 K
rqrhbapg.dll Sun 11 Jan 2009 17:06:00 A.... 36 864 36,00 K
rqrhefee.dll Sun 11 Jan 2009 13:51:48 A.... 36 864 36,00 K
rqrixxwt.dll Sat 10 Jan 2009 10:52:08 A.... 36 864 36,00 K
rqriyppo.dll Sun 11 Jan 2009 18:41:12 A.... 36 864 36,00 K
rqrjarrh.dll Mon 12 Jan 2009 11:51:20 A.... 36 864 36,00 K
rqrjastt.dll Sun 11 Jan 2009 20:17:32 A.... 36 864 36,00 K
rqrjcuol.dll Mon 12 Jan 2009 13:41:26 A.... 36 864 36,00 K
rqrlcawx.dll Sat 10 Jan 2009 10:32:10 A.... 36 864 36,00 K
rqrleeee.dll Tue 13 Jan 2009 15:51:28 A.... 36 864 36,00 K
ssqnfgvw.dll Thu 15 Jan 2009 11:09:12 A.... 37 376 36,50 K
ssqpihew.dll Mon 12 Jan 2009 15:11:28 A.... 36 864 36,00 K
ssqpjihg.dll Sun 11 Jan 2009 20:11:14 A.... 36 864 36,00 K
ssqqgeuv.dll Wed 14 Jan 2009 17:54:56 A.... 36 864 36,00 K
tuvslbxn.dll Fri 16 Jan 2009 11:59:06 A.... 37 376 36,50 K
tuvsliha.dll Mon 12 Jan 2009 13:51:26 A.... 36 864 36,00 K
tuvsslli.dll Mon 12 Jan 2009 14:21:30 A.... 36 864 36,00 K
tuvtndsi.dll Fri 16 Jan 2009 14:39:08 A.... 37 376 36,50 K
tuvuldur.dll Wed 14 Jan 2009 16:44:58 A.... 36 864 36,00 K
tuvuuurp.dll Mon 12 Jan 2009 14:43:08 A.... 36 864 36,00 K
tuvvwwmg.dll Sun 11 Jan 2009 19:01:10 A.... 36 864 36,00 K
tuvwmlli.dll Mon 12 Jan 2009 11:56:12 A.... 36 864 36,00 K
tuvwqnfx.dll Sun 11 Jan 2009 20:51:14 A.... 36 864 36,00 K
tuvwqofx.dll Sun 11 Jan 2009 20:01:14 A.... 36 864 36,00 K
urqndtlb.dll Sat 10 Jan 2009 17:02:08 A.... 36 864 36,00 K
urqndtme.dll Sat 10 Jan 2009 9:32:16 A.... 36 864 36,00 K
urqndtrp.dll Sat 10 Jan 2009 22:08:44 A.... 36 864 36,00 K
urqnfyaq.dll Sun 11 Jan 2009 11:21:48 A.... 36 864 36,00 K
urqnmnml.dll Tue 13 Jan 2009 12:01:26 A.... 36 864 36,00 K
urqofxxo.dll Sat 10 Jan 2009 12:42:10 A.... 36 864 36,00 K
urqpigex.dll Thu 15 Jan 2009 18:48:46 A.... 37 376 36,50 K
urqqhhge.dll Sun 11 Jan 2009 10:12:46 A.... 36 864 36,00 K
urqrkbum.dll Tue 13 Jan 2009 11:51:26 A.... 36 864 36,00 K
vbsdfe0.dll Fri 2 Jan 2009 11:45:16 ..SHR 85 504 83,50 K
vbsdfe1.dll Fri 2 Jan 2009 11:37:06 ..SHR 85 504 83,50 K
vbsdfe2.dll Tue 23 Dec 2008 10:47:30 ..SHR 85 504 83,50 K
vdqyjt.dll Sat 10 Jan 2009 16:35:28 A.... 126 464 123,50 K
vgrpzo.dll Sun 11 Jan 2009 20:07:20 A.... 126 976 124,00 K
vonedkhu.dll Tue 13 Jan 2009 12:11:30 A.... 126 976 124,00 K
vtuklbqo.dll Sat 10 Jan 2009 17:37:18 A.... 36 864 36,00 K
vtuliysk.dll Fri 16 Jan 2009 13:01:06 A.... 37 376 36,50 K
vtulkexq.dll Sat 10 Jan 2009 15:02:08 A.... 36 864 36,00 K
vtumjctn.dll Sun 11 Jan 2009 18:31:12 A.... 36 864 36,00 K
vtumkebq.dll Mon 12 Jan 2009 11:46:16 A.... 36 864 36,00 K
vtumldbx.dll Thu 15 Jan 2009 11:50:46 A.... 37 376 36,50 K
vtuomkhh.dll Tue 13 Jan 2009 15:51:14 A.... 36 864 36,00 K
vtuonofy.dll Sat 10 Jan 2009 23:24:18 A.... 36 864 36,00 K
wvukkdew.dll Thu 15 Jan 2009 19:18:46 A.... 37 376 36,50 K
wvukldaw.dll Mon 12 Jan 2009 14:33:06 A.... 36 864 36,00 K
wvukljdu.dll Sat 10 Jan 2009 17:27:22 A.... 36 864 36,00 K
wvulkhaa.dll Tue 13 Jan 2009 12:31:26 A.... 36 864 36,00 K
wvullmng.dll Sat 10 Jan 2009 15:32:10 A.... 36 864 36,00 K
wvulmnnl.dll Thu 15 Jan 2009 19:28:44 A.... 37 376 36,50 K
wvumffvl.dll Tue 13 Jan 2009 17:01:26 A.... 36 864 36,00 K
wvumnoii.dll Sun 11 Jan 2009 19:51:14 A.... 36 864 36,00 K
wvungypn.dll Fri 16 Jan 2009 12:51:06 A.... 37 376 36,50 K
wvuoicyv.dll Sat 10 Jan 2009 11:42:14 A.... 36 864 36,00 K
wvuonlfv.dll Sun 11 Jan 2009 12:41:48 A.... 36 864 36,00 K
wvuooevu.dll Fri 9 Jan 2009 16:24:16 A.... 36 864 36,00 K
wxawyooi.dll Thu 15 Jan 2009 13:41:50 ..... 73 216 71,50 K
wyeeceqm.dll Sun 11 Jan 2009 10:13:22 ..... 73 216 71,50 K
xboetp.dll Sun 11 Jan 2009 10:15:20 A.... 126 976 124,00 K
xmssdm.dll Fri 9 Jan 2009 15:42:40 A.... 126 464 123,50 K
xxyawxyw.dll Fri 9 Jan 2009 15:44:18 A.... 36 864 36,00 K
xxyaxxwm.dll Wed 14 Jan 2009 17:24:56 A.... 36 864 36,00 K
xxyaxxwv.dll Sun 11 Jan 2009 10:14:18 A.... 36 864 36,00 K
xxyayrlc.dll Thu 15 Jan 2009 12:10:46 A.... 37 376 36,50 K
xxyaywoh.dll Mon 12 Jan 2009 15:13:08 A.... 36 864 36,00 K
xxyayxrr.dll Mon 12 Jan 2009 13:46:16 A.... 36 864 36,00 K
xxyvstsj.dll Mon 12 Jan 2009 15:06:22 A.... 36 864 36,00 K
xxyxwpic.dll Fri 9 Jan 2009 15:34:32 A.... 46 080 45,00 K
xxyxwqgx.dll Sat 10 Jan 2009 10:02:08 A.... 36 864 36,00 K
xxyyolme.dll Sun 11 Jan 2009 14:21:48 A.... 36 864 36,00 K
xxyyxvtq.dll Tue 13 Jan 2009 17:21:26 A.... 36 864 36,00 K
yayabrpo.dll Mon 12 Jan 2009 13:23:18 A.... 36 864 36,00 K
yayvtjgh.dll Wed 14 Jan 2009 17:04:56 A.... 36 864 36,00 K
yayvvmfw.dll Sat 10 Jan 2009 13:02:08 A.... 36 864 36,00 K
yaywtutn.dll Thu 15 Jan 2009 17:38:46 A.... 37 376 36,50 K
yayywpmk.dll Sun 11 Jan 2009 12:01:48 A.... 36 864 36,00 K

276 items found: 276 files (20 H/S), 0 directories.
Total of file sizes: 16 283 136 bytes 15,53 M
Locate .tmp files:

No matches found.
**********************************************************************************
Directory Listing of system files:
Le volume dans le lecteur E n'a pas de nom.
Le num‚ro de s‚rie du volume est 241D-E5E8

R‚pertoire de E:\WINDOWS\System32

16/01/2009 15:44 1ÿ349ÿ487 TsuBKkkj.ini
16/01/2009 15:41 1ÿ349ÿ487 TsuBKkkj.ini2
16/01/2009 15:24 1ÿ416ÿ767 uxxypjaj.ini
16/01/2009 12:00 95ÿ744 nmdfgds1.dll
16/01/2009 12:00 110ÿ003 olhrwef.exe
16/01/2009 11:58 90ÿ112 ciuytr0.dll
16/01/2009 11:58 89ÿ600 optyhww0.dll
16/01/2009 11:58 84ÿ992 gasretyw0.dll
15/01/2009 17:36 1ÿ403ÿ545 noqmcwdg.ini
15/01/2009 17:34 89ÿ600 cvnmhg0.dll
15/01/2009 13:41 1ÿ403ÿ545 iooywaxw.ini
14/01/2009 13:41 1ÿ381ÿ956 ddfnnhjc.ini
13/01/2009 20:08 107ÿ234 urretnd.exe
13/01/2009 16:00 107ÿ692 vamsoft.exe
13/01/2009 15:51 90ÿ112 ciuytr1.dll
13/01/2009 12:08 1ÿ360ÿ699 qtfnrxfc.ini
13/01/2009 11:36 89ÿ600 cvnmhg1.dll
13/01/2009 11:36 107ÿ496 amvo.exe
12/01/2009 12:14 1ÿ289ÿ472 vthruiyj.ini
11/01/2009 20:07 1ÿ289ÿ472 conwbdop.ini
11/01/2009 12:51 90ÿ112 ciuytr2.dll
11/01/2009 10:13 1ÿ289ÿ472 mqeceeyw.ini
10/01/2009 16:32 1ÿ289ÿ785 feqgxhsm.ini
10/01/2009 16:32 1ÿ289ÿ785 prdjcwea.ini
02/01/2009 18:52 84ÿ992 kav320.dll
02/01/2009 11:45 85ÿ504 vbsdfe0.dll
02/01/2009 11:37 85ÿ504 vbsdfe1.dll
01/01/2009 10:06 84ÿ992 kav321.dll
23/12/2008 10:47 85ÿ504 vbsdfe2.dll
11/12/2008 11:21 84ÿ992 gasretyw1.dll
11/12/2008 11:10 <REP> dllcache
08/12/2008 17:52 107ÿ045 kamsoft.exe
11/11/2008 15:03 85ÿ504 gasretyw2.dll
10/11/2008 22:53 84ÿ992 amvo0.dll
10/11/2008 13:08 85ÿ504 ckvo0.dll
07/11/2008 09:31 85ÿ504 ckvo1.dll
07/11/2008 09:31 109ÿ879 ckvo.exe
06/11/2008 19:24 84ÿ992 amvo1.dll
03/11/2008 17:24 85ÿ504 ckvo2.dll
13/04/2008 15:08 <REP> Microsoft
03/01/2008 14:27 94ÿ208 tmp.exe
39 fichier(s) 18ÿ600ÿ389 octets
2 R‚p(s) 366ÿ551ÿ040 octets libres



et hijackthis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:28:27, on 16/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\Explorer.EXE
E:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
E:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
E:\WINDOWS\system32\BDAGENTS.EXE
C:\WINDOWS\winav.exe
E:\WINDOWS\fxstaller.exe
E:\WINDOWS\system32\rundll32.exe
E:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
E:\Program Files\OpenOffice.org 3\program\soffice.exe
E:\Program Files\OpenOffice.org 3\program\soffice.bin
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\AhnRpta.exe
E:\Program Files\Mozilla Firefox\firefox.exe
E:\WINDOWS\system32\rundll32.exe
E:\WINDOWS\explorer.exe
E:\WINDOWS\system32\rundll32.exe
E:\WINDOWS\system32\rundll32.exe
E:\Program Files\WinRAR\WinRAR.exe
E:\DOCUME~1\Demonn\LOCALS~1\Temp\Rar$EX00.922\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.a2articles.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet XP-Demonn
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: AGSearchHook Class - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - E:\Program Files\AGI\common\agcutils.dll
R3 - URLSearchHook: Yahoo! ¤u¨ã¦C - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - E:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Yahoo! ¤u¨ã¦C - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - E:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - E:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O3 - Toolbar: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - E:\Program Files\Kiwee Toolbar\2.8.167\KiweeIEToolbar.dll (file missing)
O4 - HKLM\..\Run: [IMJPMIG8.1] "E:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] E:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] E:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ATIPTA] "E:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "E:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [KiweeHook] "E:\Program Files\Kiwee Toolbar\2.8.167\kwtbaim.exe"
O4 - HKLM\..\Run: [Windows UDP Control Center] fxstaller.exe
O4 - HKLM\..\Run: [Microsoft Update] BDAGENTS.EXE
O4 - HKLM\..\Run: [win system] C:\WINDOWS\winav.exe
O4 - HKLM\..\Run: [WinDLL (tmp.exe)] rundll32.exe E:\WINDOWS\system32\tmp.exe,start
O4 - HKLM\..\Run: [a81fe225] rundll32.exe "E:\WINDOWS\system32\jajpyxxu.dll",b
O4 - HKCU\..\Run: [MsnMsgr] "E:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "E:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [amva] E:\WINDOWS\system32\amvo.exe
O4 - HKCU\..\Run: [kamsoft] E:\WINDOWS\system32\kamsoft.exe
O4 - HKCU\..\Run: [vamsoft] E:\WINDOWS\system32\vamsoft.exe
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] E:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [cdoosoft] E:\WINDOWS\system32\olhrwef.exe
O4 - HKCU\..\Run: [cbvcs] E:\WINDOWS\system32\urretnd.exe
O4 - HKCU\..\RunOnce: [Microsoft Update] BDAGENTS.EXE
O4 - Startup: OpenOffice.org 3.0.lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: &Windows Live Search - res://E:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://E:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?1211e4922a8e40cf90b5049bb2baabc6
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://E:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?1211e4922a8e40cf90b5049bb2baabc6
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - E:\Program Files\Yahoo!\Common\yinsthelper.dll
O18 - Protocol: skyline - {3A4F9195-65A8-11D5-85C1-0001023952C1} - E:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll
O20 - AppInit_DLLs: kdptft.dll
O23 - Service: AG Windows Service (AGWinService) - Unknown owner - E:\Program Files\AGI\common\win32\PythonService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\WINDOWS\system32\Ati2evxx.exe

8 réponses

Réponse 1 / 8
Utilisateur anonyme
16 janv. 2009 à 16:02
Salut,

▶ Télécharge UsbFix (de Chiquitine29) sur ton Bureau :

▶ Lance l'installation avec les paramètres par défaut.

▶ Branche tes sources de données externes à ton PC (clé USB, disque dur externe, etc...) sans les ouvrir.

▶ Double-clique sur le raccourci UsbFix sur ton Bureau.

Choisit l'option 1

▶ Le PC va redémarrer.

▶ Après redémarrage, poste le rapport UsbFix.txt

Note : le rapport UsbFix.txt est sauvegardé à la racine du disque.

(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide)

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
2
cécile
19 janv. 2009 à 10:32
Merci de ton aide !
voici le rapport :


-------------- UsbFix V2.414.3 ---------------

* User : Demonn - XP-7043CEGIWWUF
* Outils mis a jours le 18/01/2009 par Chiquitine29 et Chimay8
* Recherche effectuée à 10:21:54 le 19/01/2009
* Windows Xp - Internet Explorer 6.0.2900.2180


--------------- [ Processus actifs ] ----------------


E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\csrss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\system32\logonui.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\system32\userinit.exe
E:\WINDOWS\Explorer.EXE

--------------- [ Informations lecteurs ] ----------------

C: - Lecteur fixe

E: - Lecteur fixe

F: - Lecteur fixe


+- Contenu de l'autorun : C:\autorun.inf

;12k2d4okw2adiXq97awL532acseALwkILldd8j0iiAa8osA8jriisqs9sa34olj3KK4SjolK4ljakLK4D7L5i7lSiswafAlk32wq0d2a6f3JkeK3o4Jkwakrd
[AutoRun]
;9qoSqsKrD0di00sLkHZ2DodLojsj2iwaaa3k2w
open=m9ma.exe
;ikLaa4ased402LZ3sJdIKLilLo
shell\open\Command=m9ma.exe
;slpJDo435Xf7i32ad2w9k2adlSlk2d4
shell\open\Default=1
;5A2lLajw1d8AZfl0ial43akcDk7J303afmrdDwwo743LiAwl93aqKDaO2icjDaLJdkdsoo9rC
shell\explore\Command=m9ma.exe
;wkl30armfZawe9kDldwp2as3D5Sq5k3wLaS80Cjd72DiHqKe5


+- Contenu de l'autorun : E:\autorun.inf

;12k2d4okw2adiXq97awL532acseALwkILldd8j0iiAa8osA8jriisqs9sa34olj3KK4SjolK4ljakLK4D7L5i7lSiswafAlk32wq0d2a6f3JkeK3o4Jkwakrd
[AutoRun]
;9qoSqsKrD0di00sLkHZ2DodLojsj2iwaaa3k2w
open=m9ma.exe
;ikLaa4ased402LZ3sJdIKLilLo
shell\open\Command=m9ma.exe
;slpJDo435Xf7i32ad2w9k2adlSlk2d4
shell\open\Default=1
;5A2lLajw1d8AZfl0ial43akcDk7J303afmrdDwwo743LiAwl93aqKDaO2icjDaLJdkdsoo9rC
shell\explore\Command=m9ma.exe
;wkl30armfZawe9kDldwp2as3D5Sq5k3wLaS80Cjd72DiHqKe5


+- Contenu de l'autorun : F:\autorun.inf

;4
[AutoRun]
;0cA34kILdkj9wA7O4dSsw101cjql8D9w23wi2aolksA20605CiaAKdojLwDfJsjwdAr2lp0fpokjSKD55JkfaJ1Dk54Ka3aiFwa3LlfK22ekolLi4s3da
open=6fnlpetp.exe
;wDwDJKek0dki7524ldik5rds2wDjrmw5sDaws3rK0o34fk20S9cklAs4ekwiZaiakKisAL9oaada
shell\open\Command=6fnlpetp.exe
;KJ79d3IFUsS4qaqDkwka2swKZ3kqmdjoJwLaDKdAa
shell\open\Default=1
;Kijd3fKiDKd31i7fwlSsLj43akKLJk8e1l940cwaAsoA9a4a42wq1LwAA0
shell\explore\Command=6fnlpetp.exe
;qrsL


--------------- [ Lecteur C ] ----------------

C: - Lecteur fixe


+- Listing des fichiers présents :

[08/12/2008 17:52][-r-hs----] C:\1gk8ha.bat
[08/12/2008 17:52][-r-hs----] C:\3rl3lqbq.bat
[08/12/2008 17:52][-r-hs----] C:\a1.bat
[08/12/2008 17:52][-r-hs----] C:\abk.bat
[08/12/2008 17:52][-r-hs----] C:\AUTOEXEC.BAT
[08/12/2008 17:52][-r-hs----] C:\bo1dhu.bat
[08/12/2008 17:52][-r-hs----] C:\c9hehpa.bat
[08/12/2008 17:52][-r-hs----] C:\ceb6eu98.bat
[08/12/2008 17:52][-r-hs----] C:\eb.bat
[08/12/2008 17:52][-r-hs----] C:\f.bat
[08/12/2008 17:52][-r-hs----] C:\ij.bat
[08/12/2008 17:52][-r-hs----] C:\iky.bat
[08/12/2008 17:52][-r-hs----] C:\iq.bat
[08/12/2008 17:52][-r-hs----] C:\iqe68o.bat
[08/12/2008 17:52][-r-hs----] C:\iqosrtk.bat
[08/12/2008 17:52][-r-hs----] C:\kk3.bat
[08/12/2008 17:52][-r-hs----] C:\l8yuk.bat
[08/12/2008 17:52][-r-hs----] C:\m2nl.bat
[08/12/2008 17:52][-r-hs----] C:\nope.bat
[08/12/2008 17:52][-r-hs----] C:\qoes.bat
[08/12/2008 17:52][-r-hs----] C:\qquq.bat
[08/12/2008 17:52][-r-hs----] C:\qwultj1.bat
[08/12/2008 17:52][-r-hs----] C:\r8.bat
[08/12/2008 17:52][-r-hs----] C:\rqq2v.bat
[08/12/2008 17:52][-r-hs----] C:\s.bat
[08/12/2008 17:52][-r-hs----] C:\tbm9.bat
[08/12/2008 17:52][-r-hs----] C:\x.bat
[08/12/2008 17:52][-r-hs----] C:\xrdygg.bat
[10/10/2008 08:06][-r-hs----] C:\08dgu.com
[10/10/2008 08:06][-r-hs----] C:\0w.com
[10/10/2008 08:06][-r-hs----] C:\2fiji.com
[10/10/2008 08:06][-r-hs----] C:\2u.com
[10/10/2008 08:06][-r-hs----] C:\3.com
[10/10/2008 08:06][-r-hs----] C:\83fgj.com
[10/10/2008 08:06][-r-hs----] C:\b.com
[10/10/2008 08:06][-r-hs----] C:\b3b9u.com
[10/10/2008 08:06][-r-hs----] C:\bwpncb6.com
[10/10/2008 08:06][-r-hs----] C:\e.com
[10/10/2008 08:06][-r-hs----] C:\fr.com
[10/10/2008 08:06][-r-hs----] C:\g.com
[10/10/2008 08:06][-r-hs----] C:\jdhc2x2.com
[10/10/2008 08:06][-r-hs----] C:\je26200.com
[10/10/2008 08:06][-r-hs----] C:\knupkb.com
[10/10/2008 08:06][-r-hs----] C:\lel3cx.com
[10/10/2008 08:06][-r-hs----] C:\mnl6on3.com
[10/10/2008 08:06][-r-hs----] C:\n.com
[10/10/2008 08:06][-r-hs----] C:\njibyekk.com
[10/10/2008 08:06][-r-hs----] C:\o1.com
[10/10/2008 08:06][-r-hs----] C:\ogcikeq.com
[10/10/2008 08:06][-r-hs----] C:\ph.com
[10/10/2008 08:06][-r-hs----] C:\pnt.com
[10/10/2008 08:06][-r-hs----] C:\r2nl.com
[10/10/2008 08:06][-r-hs----] C:\sq.com
[10/10/2008 08:06][-r-hs----] C:\uis.com
[10/10/2008 08:06][-r-hs----] C:\w0o.com
[10/10/2008 08:06][-r-hs----] C:\whi.com
[10/10/2008 08:06][-r-hs----] C:\x.com
[10/10/2008 08:06][-r-hs----] C:\xcisvxl.com
[10/10/2008 08:06][-r-hs----] C:\xlk9.com
[15/09/2008 16:30][-r-hs----] C:\1u0o8bnq.cmd
[15/09/2008 16:30][-r-hs----] C:\2.cmd
[15/09/2008 16:30][-r-hs----] C:\2w.cmd
[15/09/2008 16:30][-r-hs----] C:\83l3v.cmd
[15/09/2008 16:30][-r-hs----] C:\9.cmd
[15/09/2008 16:30][-r-hs----] C:\cqdis.cmd
[15/09/2008 16:30][-r-hs----] C:\e.cmd
[15/09/2008 16:30][-r-hs----] C:\ev60a2.cmd
[15/09/2008 16:30][-r-hs----] C:\krg62.cmd
[15/09/2008 16:30][-r-hs----] C:\n6t1h.cmd
[15/09/2008 16:30][-r-hs----] C:\nq0cq.cmd
[15/09/2008 16:30][-r-hs----] C:\ov.cmd
[15/09/2008 16:30][-r-hs----] C:\p1y2.cmd
[15/09/2008 16:30][-r-hs----] C:\rcukd.cmd
[15/09/2008 16:30][-r-hs----] C:\rs.cmd
[15/09/2008 16:30][-r-hs----] C:\v0s.cmd
[15/09/2008 16:30][-r-hs----] C:\x0.cmd
[15/09/2008 16:30][-r-hs----] C:\x2tpc.cmd
[15/09/2008 16:30][-r-hs----] C:\xih9.cmd
[15/09/2008 16:30][-r-hs----] C:\yannh.cmd
[15/09/2008 16:30][-r-hs----] C:\yb12j.cmd
[15/09/2008 16:30][-r-hs----] C:\yg.cmd
[15/09/2008 16:30][-r-hs----] C:\yssjnngm.cmd
[13/01/2009 11:36][-r-hs----] C:\2.exe
[13/01/2009 11:36][-r-hs----] C:\22xo.exe
[13/01/2009 11:36][-r-hs----] C:\2vk6wn.exe
[13/01/2009 11:36][-r-hs----] C:\68.exe
[13/01/2009 11:36][-r-hs----] C:\6fnlpetp.exe
[13/01/2009 11:36][-r-hs----] C:\adware.exe
[13/01/2009 11:36][-r-hs----] C:\b.exe
[13/01/2009 11:36][-r-hs----] C:\bd3q0qix.exe
[13/01/2009 11:36][-r-hs----] C:\bpu.exe
[13/01/2009 11:36][-r-hs----] C:\e8kj.exe
[13/01/2009 11:36][-r-hs----] C:\i.exe
[13/01/2009 11:36][-r-hs----] C:\jk.exe
[13/01/2009 11:36][-r-hs----] C:\kqnns.exe
[13/01/2009 11:36][-r-hs----] C:\ktnquo.exe
[13/01/2009 11:36][-r-hs----] C:\l2mfix.exe
[13/01/2009 11:36][-r-hs----] C:\lky.exe
[13/01/2009 11:36][-r-hs----] C:\ln9.exe
[13/01/2009 11:36][-r-hs----] C:\m9ma.exe
[13/01/2009 11:36][-r-hs----] C:\nyh9ok.exe
[13/01/2009 11:36][-r-hs----] C:\pip.exe
[13/01/2009 11:36][-r-hs----] C:\pipp.exe
[13/01/2009 11:36][-r-hs----] C:\spcc.exe
[13/01/2009 11:36][-r-hs----] C:\tfk8.exe
[13/01/2009 11:36][-r-hs----] C:\tyktjfww.exe
[13/01/2009 11:36][-r-hs----] C:\u9dyi.exe
[13/01/2009 11:36][-r-hs----] C:\v63enh.exe
[13/01/2009 11:36][-r-hs----] C:\ve.exe
[13/01/2009 11:36][-r-hs----] C:\vfjc8mxm.exe
[13/01/2009 11:36][-r-hs----] C:\vxl.exe
[13/01/2009 11:36][-r-hs----] C:\wqesvxa.exe
[13/01/2009 11:36][-r-hs----] C:\x2csvg.exe
[13/01/2009 11:36][-r-hs----] C:\xfl3hx.exe
[18/01/2009 20:46][-r-hs----] C:\autorun.inf
[24/08/2008 13:08][--a------] C:\YServer.txt
[13/04/2008 15:04][--a------] C:\CONFIG.SYS
[13/04/2008 15:04][--a------] C:\IO.SYS
[13/04/2008 15:04][--a------] C:\MSDOS.SYS

--------------- [ Lecteur E ] ----------------

E: - Lecteur fixe


+- Listing des fichiers présents :

[08/12/2008 17:52][-r-hs----] E:\1gk8ha.bat
[08/12/2008 17:52][-r-hs----] E:\3rl3lqbq.bat
[08/12/2008 17:52][-r-hs----] E:\a1.bat
[08/12/2008 17:52][-r-hs----] E:\abk.bat
[08/12/2008 17:52][-r-hs----] E:\bo1dhu.bat
[08/12/2008 17:52][-r-hs----] E:\c9hehpa.bat
[08/12/2008 17:52][-r-hs----] E:\ceb6eu98.bat
[08/12/2008 17:52][-r-hs----] E:\eb.bat
[08/12/2008 17:52][-r-hs----] E:\f.bat
[08/12/2008 17:52][-r-hs----] E:\ij.bat
[08/12/2008 17:52][-r-hs----] E:\iky.bat
[08/12/2008 17:52][-r-hs----] E:\iq.bat
[08/12/2008 17:52][-r-hs----] E:\iqe68o.bat
[08/12/2008 17:52][-r-hs----] E:\iqosrtk.bat
[08/12/2008 17:52][-r-hs----] E:\kk3.bat
[08/12/2008 17:52][-r-hs----] E:\l8yuk.bat
[08/12/2008 17:52][-r-hs----] E:\m2nl.bat
[08/12/2008 17:52][-r-hs----] E:\qoes.bat
[08/12/2008 17:52][-r-hs----] E:\qquq.bat
[08/12/2008 17:52][-r-hs----] E:\qwultj1.bat
[08/12/2008 17:52][-r-hs----] E:\r8.bat
[08/12/2008 17:52][-r-hs----] E:\rqq2v.bat
[08/12/2008 17:52][-r-hs----] E:\s.bat
[08/12/2008 17:52][-r-hs----] E:\tbm9.bat
[08/12/2008 17:52][-r-hs----] E:\x.bat
[08/12/2008 17:52][-r-hs----] E:\xrdygg.bat
[10/10/2008 08:06][-r-hs----] E:\08dgu.com
[10/10/2008 08:06][-r-hs----] E:\0w.com
[10/10/2008 08:06][-r-hs----] E:\2fiji.com
[10/10/2008 08:06][-r-hs----] E:\2u.com
[10/10/2008 08:06][-r-hs----] E:\3.com
[10/10/2008 08:06][-r-hs----] E:\83fgj.com
[10/10/2008 08:06][-r-hs----] E:\b.com
[10/10/2008 08:06][-r-hs----] E:\b3b9u.com
[10/10/2008 08:06][-r-hs----] E:\bwpncb6.com
[10/10/2008 08:06][-r-hs----] E:\e.com
[10/10/2008 08:06][-r-hs----] E:\fr.com
[10/10/2008 08:06][-r-hs----] E:\g.com
[10/10/2008 08:06][-r-hs----] E:\jdhc2x2.com
[10/10/2008 08:06][-r-hs----] E:\je26200.com
[10/10/2008 08:06][-r-hs----] E:\knupkb.com
[10/10/2008 08:06][-r-hs----] E:\lel3cx.com
[10/10/2008 08:06][-r-hs----] E:\mnl6on3.com
[10/10/2008 08:06][-r-hs----] E:\n.com
[10/10/2008 08:06][-r-hs----] E:\njibyekk.com
[10/10/2008 08:06][-r-hs----] E:\NTDETECT.COM
[10/10/2008 08:06][-r-hs----] E:\o1.com
[10/10/2008 08:06][-r-hs----] E:\ogcikeq.com
[10/10/2008 08:06][-r-hs----] E:\ph.com
[10/10/2008 08:06][-r-hs----] E:\pnt.com
[10/10/2008 08:06][-r-hs----] E:\r2nl.com
[10/10/2008 08:06][-r-hs----] E:\sq.com
[10/10/2008 08:06][-r-hs----] E:\uis.com
[10/10/2008 08:06][-r-hs----] E:\w0o.com
[10/10/2008 08:06][-r-hs----] E:\whi.com
[10/10/2008 08:06][-r-hs----] E:\x.com
[10/10/2008 08:06][-r-hs----] E:\xcisvxl.com
[10/10/2008 08:06][-r-hs----] E:\xlk9.com
[15/09/2008 16:30][-r-hs----] E:\1u0o8bnq.cmd
[15/09/2008 16:30][-r-hs----] E:\2.cmd
[15/09/2008 16:30][-r-hs----] E:\2w.cmd
[15/09/2008 16:30][-r-hs----] E:\83l3v.cmd
[15/09/2008 16:30][-r-hs----] E:\9.cmd
[15/09/2008 16:30][-r-hs----] E:\cqdis.cmd
[15/09/2008 16:30][-r-hs----] E:\e.cmd
[15/09/2008 16:30][-r-hs----] E:\ev60a2.cmd
[15/09/2008 16:30][-r-hs----] E:\krg62.cmd
[15/09/2008 16:30][-r-hs----] E:\n6t1h.cmd
[15/09/2008 16:30][-r-hs----] E:\nq0cq.cmd
[15/09/2008 16:30][-r-hs----] E:\ov.cmd
[15/09/2008 16:30][-r-hs----] E:\p1y2.cmd
[15/09/2008 16:30][-r-hs----] E:\rcukd.cmd
[15/09/2008 16:30][-r-hs----] E:\rs.cmd
[15/09/2008 16:30][-r-hs----] E:\v0s.cmd
[15/09/2008 16:30][-r-hs----] E:\x0.cmd
[15/09/2008 16:30][-r-hs----] E:\x2tpc.cmd
[15/09/2008 16:30][-r-hs----] E:\xih9.cmd
[15/09/2008 16:30][-r-hs----] E:\yannh.cmd
[15/09/2008 16:30][-r-hs----] E:\yb12j.cmd
[15/09/2008 16:30][-r-hs----] E:\yg.cmd
[15/09/2008 16:30][-r-hs----] E:\yssjnngm.cmd
[13/01/2009 11:36][-r-hs----] E:\2.exe
[13/01/2009 11:36][-r-hs----] E:\22xo.exe
[13/01/2009 11:36][-r-hs----] E:\2vk6wn.exe
[13/01/2009 11:36][-r-hs----] E:\68.exe
[13/01/2009 11:36][-r-hs----] E:\6fnlpetp.exe
[13/01/2009 11:36][-r-hs----] E:\b.exe
[13/01/2009 11:36][-r-hs----] E:\bd3q0qix.exe
[13/01/2009 11:36][-r-hs----] E:\bpu.exe
[13/01/2009 11:36][-r-hs----] E:\e8kj.exe
[13/01/2009 11:36][-r-hs----] E:\i.exe
[13/01/2009 11:36][-r-hs----] E:\jk.exe
[13/01/2009 11:36][-r-hs----] E:\kqnns.exe
[13/01/2009 11:36][-r-hs----] E:\ktnquo.exe
[13/01/2009 11:36][-r-hs----] E:\lky.exe
[13/01/2009 11:36][-r-hs----] E:\ln9.exe
[13/01/2009 11:36][-r-hs----] E:\m9ma.exe
[13/01/2009 11:36][-r-hs----] E:\nyh9ok.exe
[13/01/2009 11:36][-r-hs----] E:\tfk8.exe
[13/01/2009 11:36][-r-hs----] E:\tyktjfww.exe
[13/01/2009 11:36][-r-hs----] E:\u9dyi.exe
[13/01/2009 11:36][-r-hs----] E:\v63enh.exe
[13/01/2009 11:36][-r-hs----] E:\ve.exe
[13/01/2009 11:36][-r-hs----] E:\vfjc8mxm.exe
[13/01/2009 11:36][-r-hs----] E:\vxl.exe
[13/01/2009 11:36][-r-hs----] E:\wqesvxa.exe
[13/01/2009 11:36][-r-hs----] E:\x2csvg.exe
[13/01/2009 11:36][-r-hs----] E:\xfl3hx.exe
[13/04/2008 16:51][---hs----] E:\boot.ini
[13/04/2008 16:51][---hs----] E:\XP.ini
[18/01/2009 20:46][-r-hs----] E:\autorun.inf
[16/01/2009 15:43][--a------] E:\direct.txt
[16/01/2009 15:43][--a------] E:\UsbFix.txt
[][] E:\pagefile.sys

--------------- [ Lecteur F ] ----------------

F: - Lecteur fixe


+- Listing des fichiers présents :

[14/08/2008 12:26][-r-hs----] F:\tbm9.bat
[14/08/2008 12:26][-r-hs----] F:\rqq2v.bat
[14/08/2008 12:26][-r-hs----] F:\kk3.bat
[14/08/2008 12:26][-r-hs----] F:\qwultj1.bat
[14/08/2008 12:26][-r-hs----] F:\xrdygg.bat
[23/07/2008 18:34][-r-hs----] F:\njibyekk.com
[23/07/2008 18:34][-r-hs----] F:\e.com
[23/07/2008 18:34][-r-hs----] F:\w0o.com
[23/07/2008 18:34][-r-hs----] F:\ph.com
[23/07/2008 18:34][-r-hs----] F:\jdhc2x2.com
[23/07/2008 18:34][-r-hs----] F:\bwpncb6.com
[23/07/2008 18:34][-r-hs----] F:\2fiji.com
[02/08/2008 11:18][-r-hs----] F:\yg.cmd
[02/08/2008 11:18][-r-hs----] F:\cqdis.cmd
[25/07/2008 15:24][-r-hs----] F:\jk.exe
[25/07/2008 15:24][-r-hs----] F:\22xo.exe
[25/07/2008 15:24][-r-hs----] F:\ktnquo.exe
[25/07/2008 15:24][-r-hs----] F:\vxl.exe
[25/07/2008 15:24][-r-hs----] F:\m9ma.exe
[25/07/2008 15:24][-r-hs----] F:\6fnlpetp.exe
[25/07/2008 15:24][-r-hs----] F:\DivXBundle.exe
[25/07/2008 15:24][-r-hs----] F:\tfk8.exe
[12/12/2008 16:46][-r-hs----] F:\autorun.inf

--------------- [ Registre / Startup ] ----------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="E:\\WINDOWS\\system32\\userinit.exe,"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
MsnMsgr="E:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
Yahoo! Pager="E:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
Uniblue RegistryBooster 2009=E:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
IMJPMIG8.1="E:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
PHIME2002ASync=E:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
PHIME2002A=E:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
ATIPTA="E:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
SunJavaUpdateSched="E:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
KernelFaultCheck=%systemroot%\system32\dumprep 0 -k
Adobe Reader Speed Launcher="E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
KiweeHook="E:\Program Files\Kiwee Toolbar\2.8.167\kwtbaim.exe"
Windows UDP Control Center=fxstaller.exe
Microsoft Update=BDAGENTS.EXE
win system=C:\WINDOWS\winav.exe
WinDLL (tmp.exe)=rundll32.exe E:\WINDOWS\system32\tmp.exe,start
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
<NO NAME>=
Installed=1
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
<NO NAME>=
Installed=1
NoChange=1
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
<NO NAME>=
Installed=1


--------------- [ Registre / Mountpoint2 ] ----------------

Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\C\Shell\AutoRun\command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\C\Shell\explore\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\C\Shell\open\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\Shell\AutoRun\command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\Shell\explore\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\Shell\open\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1b24ba7a-0967-11dd-8df2-000fb0bfd07b}\Shell\AutoRun\command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1b24ba7a-0967-11dd-8df2-000fb0bfd07b}\Shell\explore\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1b24ba7a-0967-11dd-8df2-000fb0bfd07b}\Shell\open\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{31304b66-bfdf-11dd-8f4a-0014a527f206}\Shell\AutoRun\command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{31304b66-bfdf-11dd-8f4a-0014a527f206}\Shell\explore\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{31304b66-bfdf-11dd-8f4a-0014a527f206}\Shell\open\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{363ae862-a05b-11dd-8ef2-0014a527f206}\Shell\AutoRun\command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{363ae862-a05b-11dd-8ef2-0014a527f206}\Shell\explore\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{363ae862-a05b-11dd-8ef2-0014a527f206}\Shell\open\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{71566302-12cf-11dd-8e0a-0014a527f206}\Shell\AutoRun\command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{71566302-12cf-11dd-8e0a-0014a527f206}\Shell\open\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c6bc877d-0e0b-11dd-8dff-0014a527f206}\Shell\AutoRun\command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c6bc877d-0e0b-11dd-8dff-0014a527f206}\Shell\explore\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c6bc877d-0e0b-11dd-8dff-0014a527f206}\Shell\open\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e196cce8-0d27-11dd-8dfe-0014a527f206}\Shell\AutoRun\command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e196cce8-0d27-11dd-8dfe-0014a527f206}\Shell\explore\Command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e196cce8-0d27-11dd-8dfe-0014a527f206}\Shell\open\Command

--------------- [ Nettoyage des disques ] ----------------

Supprimé ! - [19/08/2004 19:10][--a------] "E:\WINDOWS\expiorer.exe"
Supprimé ! - [07/11/2008 09:31][-r-hs----] E:\WINDOWS\system32\ckvo.exe
Supprimé ! - [08/12/2008 17:52][-r-hs----] E:\WINDOWS\system32\kamsoft.exe
Supprimé ! - [13/01/2009 16:00][-r-hs----] E:\WINDOWS\system32\vamsoft.exe
Supprimé ! - [16/01/2009 12:00][-r-hs----] E:\WINDOWS\system32\olhrwef.exe
Supprimé ! - [18/01/2009 20:40][-r-hs----] E:\WINDOWS\system32\urretnd.exe
Supprimé ! - [17/11/2004 20:13][--a------] E:\WINDOWS\system32\afmain0.dll
Echec de la supression !! - [17/11/2004 20:13] E:\WINDOWS\system32\afmain1.dll
Supprimé ! - [13/01/2009 11:36][-r-hs----] E:\WINDOWS\system32\amvo.exe
Supprimé ! - [10/11/2008 22:53][-r-hs----] E:\WINDOWS\system32\amvo0.dll
Supprimé ! - [06/11/2008 19:24][-r-hs----] E:\WINDOWS\system32\amvo1.dll
Supprimé ! - [17/11/2004 20:13][--a------] E:\WINDOWS\system32\Bitkv0.dll
Supprimé ! - [17/11/2004 20:13][--a------] E:\WINDOWS\system32\Bitkv1.dll
Supprimé ! - [19/01/2009 10:05][-r-hs----] E:\WINDOWS\system32\ciuytr0.dll
Supprimé ! - [13/01/2009 15:51][-r-hs----] E:\WINDOWS\system32\ciuytr1.dll
Supprimé ! - [11/01/2009 12:51][-r-hs----] E:\WINDOWS\system32\ciuytr2.dll
Supprimé ! - [10/11/2008 13:08][-r-hs----] E:\WINDOWS\system32\ckvo0.dll
Supprimé ! - [07/11/2008 09:31][-r-hs----] E:\WINDOWS\system32\ckvo1.dll
Supprimé ! - [03/11/2008 17:24][-r-hs----] E:\WINDOWS\system32\ckvo2.dll
Supprimé ! - [19/01/2009 10:05][-r-hs----] E:\WINDOWS\system32\cvnmhg0.dll
Supprimé ! - [13/01/2009 11:36][-r-hs----] E:\WINDOWS\system32\cvnmhg1.dll
Supprimé ! - [19/01/2009 10:05][-r-hs----] E:\WINDOWS\system32\gasretyw0.dll
Supprimé ! - [11/12/2008 11:21][-r-hs----] E:\WINDOWS\system32\gasretyw1.dll
Supprimé ! - [11/11/2008 15:03][-r-hs----] E:\WINDOWS\system32\gasretyw2.dll
Supprimé ! - [17/11/2004 20:13][--a------] E:\WINDOWS\system32\haozs0.dll
Echec de la supression !! - [17/11/2004 20:13] E:\WINDOWS\system32\haozs1.dll
Supprimé ! - [17/11/2004 20:13][--a------] E:\WINDOWS\system32\haozs2.dll
Supprimé ! - [02/01/2009 18:52][-r-hs----] E:\WINDOWS\system32\kav320.dll
Supprimé ! - [01/01/2009 10:06][-r-hs----] E:\WINDOWS\system32\kav321.dll
Supprimé ! - [19/01/2009 10:05][-r-hs----] E:\WINDOWS\system32\nmdfgds0.dll
Supprimé ! - [16/01/2009 12:00][-r-hs----] E:\WINDOWS\system32\nmdfgds1.dll
Supprimé ! - [19/01/2009 10:05][-r-hs----] E:\WINDOWS\system32\optyhww0.dll
Supprimé ! - [02/01/2009 11:45][-r-hs----] E:\WINDOWS\system32\vbsdfe0.dll
Supprimé ! - [02/01/2009 11:37][-r-hs----] E:\WINDOWS\system32\vbsdfe1.dll
Supprimé ! - [23/12/2008 10:47][-r-hs----] E:\WINDOWS\system32\vbsdfe2.dll
Supprimé ! - E:\DOCUME~1\Demonn\LOCALS~1\Temp\nsi31.tmp\System.dll
Supprimé ! - E:\DOCUME~1\Demonn\LOCALS~1\Temp\nsr2F.tmp\System.dll
C:\autorun.inf ~> fichier appelé : "C:\m9ma.exe" ( présent ! )
Supprimé ! - C:\m9ma.exe
E:\autorun.inf ~> fichier appelé : "E:\m9ma.exe" ( présent ! )
Supprimé ! - E:\m9ma.exe
F:\autorun.inf ~> fichier appelé : "F:\6fnlpetp.exe" ( présent ! )
Supprimé ! - F:\6fnlpetp.exe
Supprimé ! - [10/10/2008 08:06][-r-hs----] C:\08dgu.com
Supprimé ! - [16/11/2008 19:49][-r-hs----] C:\0w.com
Supprimé ! - [08/12/2008 17:52][-r-hs----] C:\1gk8ha.bat
Supprimé ! - [15/09/2008 16:30][-r-hs----] C:\1u0o8bnq.cmd
Supprimé ! - [02/09/2008 18:02][-r-hs----] C:\22xo.exe
Supprimé ! - [21/10/2008 18:11][-r-hs----] C:\2fiji.com
Supprimé ! - [08/12/2008 12:45][-r-hs----] C:\2u.com
Supprimé ! - [19/12/2008 10:10][-r-hs----] C:\2w.cmd
Supprimé ! - [08/12/2008 17:52][-r-hs----] C:\3rl3lqbq.bat
Supprimé ! - [13/10/2008 10:27][-r-hs----] C:\68.exe
Supprimé ! - [08/12/2008 17:52][-r-hs----] C:\6fnlpetp.exe
Supprimé ! - [21/08/2008 19:01][-r-hs----] C:\83fgj.com
Supprimé ! - [22/08/2008 11:06][-r-hs----] C:\83l3v.cmd
Supprimé ! - [11/09/2008 10:59][-r-hs----] C:\a1.bat
Supprimé ! - [24/11/2008 14:12][-r-hs----] C:\abk.bat
Supprimé ! - [13/08/2008 11:22][-r-hs----] C:\b3b9u.com
Supprimé ! - [13/01/2009 16:00][-r-hs----] C:\bd3q0qix.exe
Supprimé ! - [13/10/2008 09:09][-r-hs----] C:\bo1dhu.bat
Supprimé ! - [12/08/2008 11:45][-r-hs----] C:\bpu.exe
Supprimé ! - [29/08/2008 18:24][-r-hs----] C:\bwpncb6.com
Supprimé ! - [18/08/2008 20:04][-r-hs----] C:\c9hehpa.bat
Supprimé ! - [20/11/2008 10:13][-r-hs----] C:\ceb6eu98.bat
Supprimé ! - [15/10/2008 16:57][-r-hs----] C:\cqdis.cmd
Supprimé ! - [31/12/2008 23:30][-r-hs----] C:\e8kj.exe
Supprimé ! - [02/12/2008 11:24][-r-hs----] C:\eb.bat
Supprimé ! - [15/10/2008 08:10][-r-hs----] C:\ev60a2.cmd
Supprimé ! - [26/11/2008 19:54][-r-hs----] C:\ij.bat
Supprimé ! - [08/12/2008 17:52][-r-hs----] C:\iky.bat
Supprimé ! - [15/01/2009 11:18][-r-hs----] C:\iq.bat
Supprimé ! - [08/12/2008 17:52][-r-hs----] C:\iqe68o.bat
Supprimé ! - [05/12/2008 16:23][-r-hs----] C:\iqosrtk.bat
Supprimé ! - [08/09/2008 16:37][-r-hs----] C:\jdhc2x2.com
Supprimé ! - [23/10/2008 07:57][-r-hs----] C:\je26200.com
Supprimé ! - [02/09/2008 15:02][-r-hs----] C:\kk3.bat
Supprimé ! - [04/08/2008 11:00][-r-hs----] C:\knupkb.com
Supprimé ! - [16/09/2008 11:23][-r-hs----] C:\kqnns.exe
Supprimé ! - [24/08/2008 17:25][-r-hs----] C:\krg62.cmd
Supprimé ! - [05/09/2008 22:25][-r-hs----] C:\ktnquo.exe
Supprimé ! - [13/01/2009 20:08][-r-hs----] C:\lel3cx.com
Supprimé ! - [14/11/2008 08:26][-r-hs----] C:\lky.exe
Supprimé ! - [25/11/2008 13:51][-r-hs----] C:\ln9.exe
Supprimé ! - [27/11/2008 18:35][-r-hs----] C:\m2nl.bat
Supprimé ! - [23/08/2008 09:19][-r-hs----] C:\mnl6on3.com
Supprimé ! - [08/10/2008 17:17][-r-hs----] C:\n6t1h.cmd
Supprimé ! - [23/07/2008 17:34][-r-hs----] C:\njibyekk.com
Supprimé ! - [06/11/2008 08:46][-r-hs----] C:\nq0cq.cmd
Supprimé ! - [28/11/2008 10:12][-r-hs----] C:\o1.com
Supprimé ! - [11/11/2008 10:46][-r-hs----] C:\ogcikeq.com
Supprimé ! - [04/09/2008 11:56][-r-hs----] C:\ov.cmd
Supprimé ! - [08/12/2008 17:52][-r-hs----] C:\p1y2.cmd
Supprimé ! - [29/08/2008 18:39][-r-hs----] C:\ph.com
Supprimé ! - [15/10/2008 10:25][-r-hs----] C:\pnt.com
Supprimé ! - [01/12/2008 19:24][-r-hs----] C:\qquq.bat
Supprimé ! - [12/09/2008 11:03][-r-hs----] C:\qwultj1.bat
Supprimé ! - [11/08/2008 11:11][-r-hs----] C:\r2nl.com
Supprimé ! - [03/01/2009 19:45][-r-hs----] C:\r8.bat
Supprimé ! - [04/12/2008 19:53][-r-hs----] C:\rcukd.cmd
Supprimé ! - [13/08/2008 11:08][-r-hs----] C:\rqq2v.bat
Supprimé ! - [30/08/2008 08:13][-r-hs----] C:\rs.cmd
Supprimé ! - [07/11/2008 09:31][-r-hs----] C:\sq.com
Supprimé ! - [14/08/2008 15:04][-r-hs----] C:\tbm9.bat
Supprimé ! - [28/06/2008 09:15][-r-hs----] C:\tfk8.exe
Supprimé ! - [11/08/2008 11:26][-r-hs----] C:\tyktjfww.exe
Supprimé ! - [26/08/2008 18:42][-r-hs----] C:\u9dyi.exe
Supprimé ! - [01/08/2008 11:33][-r-hs----] C:\uis.com
Supprimé ! - [20/10/2008 09:21][-r-hs----] C:\v0s.cmd
Supprimé ! - [16/01/2009 12:00][-r-hs----] C:\ve.exe
Supprimé ! - [01/11/2008 20:06][-r-hs----] C:\vfjc8mxm.exe
Supprimé ! - [13/09/2008 09:44][-r-hs----] C:\vxl.exe
Supprimé ! - [02/08/2008 17:00][-r-hs----] C:\w0o.com
Supprimé ! - [10/11/2008 13:09][-r-hs----] C:\whi.com
Supprimé ! - [10/01/2009 09:32][-r-hs----] C:\wqesvxa.exe
Supprimé ! - [08/08/2008 15:28][-r-hs----] C:\x0.cmd
Supprimé ! - [12/01/2009 20:19][-r-hs----] C:\x2tpc.cmd
Supprimé ! - [09/01/2009 13:31][-r-hs----] C:\xcisvxl.com
Supprimé ! - [16/11/2008 20:14][-r-hs----] C:\xfl3hx.exe
Supprimé ! - [04/11/2008 16:01][-r-hs----] C:\xih9.cmd
Supprimé ! - [22/10/2008 11:06][-r-hs----] C:\xlk9.com
Supprimé ! - [11/12/2008 19:14][-r-hs----] C:\xrdygg.bat
Supprimé ! - [17/11/2008 13:46][-r-hs----] C:\yannh.cmd
Supprimé ! - [07/01/2009 10:15][-r-hs----] C:\yb12j.cmd
Supprimé ! - [02/08/2008 10:18][-r-hs----] C:\yg.cmd
Supprimé ! - [23/08/2008 09:04][-r-hs----] C:\yssjnngm.cmd
Supprimé ! - [20/08/2008 18:25][-r-hs----] C:\2.cmd
Supprimé ! - [17/10/2008 06:36][-r-hs----] C:\9.cmd
Supprimé ! - [13/01/2009 11:36][-r-hs----] C:\2.exe
Supprimé ! - [17/09/2008 16:34][-r-hs----] C:\3.com
Supprimé ! - [29/10/2008 22:18][-r-hs----] C:\b.com
Supprimé ! - [24/07/2008 20:20][-r-hs----] C:\e.com
Supprimé ! - [29/07/2008 21:24][-r-hs----] C:\g.com
Supprimé ! - [25/08/2008 20:38][-r-hs----] C:\n.com
Supprimé ! - [06/08/2008 19:23][-r-hs----] C:\x.com
Supprimé ! - [03/09/2008 07:19][-r-hs----] C:\f.bat
Supprimé ! - [10/09/2008 16:34][-r-hs----] C:\s.bat
Supprimé ! - [06/11/2008 19:24][-r-hs----] C:\x.bat
Supprimé ! - [02/12/2008 14:26][-r-hs----] C:\e.cmd
Supprimé ! - [17/10/2008 09:05][-r-hs----] C:\b.exe
Supprimé ! - [06/11/2008 19:24][-r-hs----] C:\i.exe
Supprimé ! - [18/01/2009 20:46][-r-hs----] C:\autorun.inf
Supprimé ! - [10/10/2008 08:06][-r-hs----] E:\08dgu.com
Supprimé ! - [16/11/2008 19:49][-r-hs----] E:\0w.com
Supprimé ! - [08/12/2008 17:52][-r-hs----] E:\1gk8ha.bat
Supprimé ! - [15/09/2008 16:30][-r-hs----] E:\1u0o8bnq.cmd
Supprimé ! - [02/09/2008 18:02][-r-hs----] E:\22xo.exe
Supprimé ! - [21/10/2008 18:11][-r-hs----] E:\2fiji.com
Supprimé ! - [08/12/2008 12:45][-r-hs----] E:\2u.com
Supprimé ! - [19/12/2008 10:10][-r-hs----] E:\2w.cmd
Supprimé ! - [08/12/2008 17:52][-r-hs----] E:\3rl3lqbq.bat
Supprimé ! - [13/10/2008 10:27][-r-hs----] E:\68.exe
Supprimé ! - [08/12/2008 17:52][-r-hs----] E:\6fnlpetp.exe
Supprimé ! - [21/08/2008 19:01][-r-hs----] E:\83fgj.com
Supprimé ! - [22/08/2008 11:06][-r-hs----] E:\83l3v.cmd
Supprimé ! - [11/09/2008 10:59][-r-hs----] E:\a1.bat
Supprimé ! - [24/11/2008 14:12][-r-hs----] E:\abk.bat
Supprimé ! - [13/08/2008 11:22][-r-hs----] E:\b3b9u.com
Supprimé ! - [13/01/2009 16:00][-r-hs----] E:\bd3q0qix.exe
Supprimé ! - [13/10/2008 09:09][-r-hs----] E:\bo1dhu.bat
Supprimé ! - [12/08/2008 11:45][-r-hs----] E:\bpu.exe
Supprimé ! - [29/08/2008 18:24][-r-hs----] E:\bwpncb6.com
Supprimé ! - [18/08/2008 20:04][-r-hs----] E:\c9hehpa.bat
Supprimé ! - [20/11/2008 10:13][-r-hs----] E:\ceb6eu98.bat
Supprimé ! - [15/10/2008 16:57][-r-hs----] E:\cqdis.cmd
Supprimé ! - [31/12/2008 23:30][-r-hs----] E:\e8kj.exe
Supprimé ! - [02/12/2008 11:24][-r-hs----] E:\eb.bat
Supprimé ! - [15/10/2008 08:10][-r-hs----] E:\ev60a2.cmd
Supprimé ! - [26/11/2008 19:54][-r-hs----] E:\ij.bat
Supprimé ! - [08/12/2008 17:52][-r-hs----] E:\iky.bat
Supprimé ! - [15/01/2009 11:18][-r-hs----] E:\iq.bat
Supprimé ! - [08/12/2008 17:52][-r-hs----] E:\iqe68o.bat
Supprimé ! - [05/12/2008 16:23][-r-hs----] E:\iqosrtk.bat
Supprimé ! - [08/09/2008 16:37][-r-hs----] E:\jdhc2x2.com
Supprimé ! - [23/10/2008 07:57][-r-hs----] E:\je26200.com
Supprimé ! - [02/09/2008 15:02][-r-hs----] E:\kk3.bat
Supprimé ! - [04/08/2008 11:00][-r-hs----] E:\knupkb.com
Supprimé ! - [16/09/2008 11:23][-r-hs----] E:\kqnns.exe
Supprimé ! - [24/08/2008 17:25][-r-hs----] E:\krg62.cmd
Supprimé ! - [05/09/2008 22:25][-r-hs----] E:\ktnquo.exe
Supprimé ! - [13/01/2009 20:08][-r-hs----] E:\lel3cx.com
Supprimé ! - [14/11/2008 08:26][-r-hs----] E:\lky.exe
Supprimé ! - [25/11/2008 13:51][-r-hs----] E:\ln9.exe
Supprimé ! - [27/11/2008 18:35][-r-hs----] E:\m2nl.bat
Supprimé ! - [23/08/2008 09:19][-r-hs----] E:\mnl6on3.com
Supprimé ! - [08/10/2008 17:17][-r-hs----] E:\n6t1h.cmd
Supprimé ! - [23/07/2008 17:34][-r-hs----] E:\njibyekk.com
Supprimé ! - [06/11/2008 08:46][-r-hs----] E:\nq0cq.cmd
Supprimé ! - [28/11/2008 10:12][-r-hs----] E:\o1.com
Supprimé ! - [11/11/2008 10:46][-r-hs----] E:\ogcikeq.com
Supprimé ! - [04/09/2008 11:56][-r-hs----] E:\ov.cmd
Supprimé ! - [08/12/2008 17:52][-r-hs----] E:\p1y2.cmd
Supprimé ! - [29/08/2008 18:39][-r-hs----] E:\ph.com
Supprimé ! - [15/10/2008 10:25][-r-hs----] E:\pnt.com
Supprimé ! - [01/12/2008 19:24][-r-hs----] E:\qquq.bat
Supprimé ! - [12/09/2008 11:03][-r-hs----] E:\qwultj1.bat
Supprimé ! - [11/08/2008 11:11][-r-hs----] E:\r2nl.com
Supprimé ! - [03/01/2009 19:45][-r-hs----] E:\r8.bat
Supprimé ! - [04/12/2008 19:53][-r-hs----] E:\rcukd.cmd
Supprimé ! - [13/08/2008 11:08][-r-hs----] E:\rqq2v.bat
Supprimé ! - [30/08/2008 08:13][-r-hs----] E:\rs.cmd
Supprimé ! - [07/11/2008 09:31][-r-hs----] E:\sq.com
Supprimé ! - [14/08/2008 15:04][-r-hs----] E:\tbm9.bat
Supprimé ! - [28/06/2008 09:15][-r-hs----] E:\tfk8.exe
Supprimé ! - [11/08/2008 11:26][-r-hs----] E:\tyktjfww.exe
Supprimé ! - [26/08/2008 18:42][-r-hs----] E:\u9dyi.exe
Supprimé ! - [01/08/2008 11:33][-r-hs----] E:\uis.com
Supprimé ! - [20/10/2008 09:21][-r-hs----] E:\v0s.cmd
Supprimé ! - [16/01/2009 12:00][-r-hs----] E:\ve.exe
Supprimé ! - [01/11/2008 20:06][-r-hs----] E:\vfjc8mxm.exe
Supprimé ! - [13/09/2008 09:44][-r-hs----] E:\vxl.exe
Supprimé ! - [02/08/2008 17:00][-r-hs----] E:\w0o.com
Supprimé ! - [10/11/2008 13:09][-r-hs----] E:\whi.com
Supprimé ! - [10/01/2009 09:32][-r-hs----] E:\wqesvxa.exe
Supprimé ! - [08/08/2008 15:28][-r-hs----] E:\x0.cmd
Supprimé ! - [12/01/2009 20:19][-r-hs----] E:\x2tpc.cmd
Supprimé ! - [09/01/2009 13:31][-r-hs----] E:\xcisvxl.com
Supprimé ! - [16/11/2008 20:14][-r-hs----] E:\xfl3hx.exe
Supprimé ! - [04/11/2008 16:01][-r-hs----] E:\xih9.cmd
Supprimé ! - [22/10/2008 11:06][-r-hs----] E:\xlk9.com
Supprimé ! - [11/12/2008 19:14][-r-hs----] E:\xrdygg.bat
Supprimé ! - [17/11/2008 13:46][-r-hs----] E:\yannh.cmd
Supprimé ! - [07/01/2009 10:15][-r-hs----] E:\yb12j.cmd
Supprimé ! - [02/08/2008 10:18][-r-hs----] E:\yg.cmd
Supprimé ! - [23/08/2008 09:04][-r-hs----] E:\yssjnngm.cmd
Supprimé ! - [20/08/2008 18:25][-r-hs----] E:\2.cmd
Supprimé ! - [17/10/2008 06:36][-r-hs----] E:\9.cmd
Supprimé ! - [13/01/2009 11:36][-r-hs----] E:\2.exe
Supprimé ! - [17/09/2008 16:34][-r-hs----] E:\3.com
Supprimé ! - [29/10/2008 22:18][-r-hs----] E:\b.com
Supprimé ! - [24/07/2008 20:20][-r-hs----] E:\e.com
Supprimé ! - [29/07/2008 21:24][-r-hs----] E:\g.com
Supprimé ! - [25/08/2008 20:38][-r-hs----] E:\n.com
Supprimé ! - [06/08/2008 19:23][-r-hs----] E:\x.com
Supprimé ! - [03/09/2008 07:19][-r-hs----] E:\f.bat
Supprimé ! - [10/09/2008 16:34][-r-hs----] E:\s.bat
Supprimé ! - [06/11/2008 19:24][-r-hs----] E:\x.bat
Supprimé ! - [02/12/2008 14:26][-r-hs----] E:\e.cmd
Supprimé ! - [17/10/2008 09:05][-r-hs----] E:\b.exe
Supprimé ! - [06/11/2008 19:24][-r-hs----] E:\i.exe
Supprimé ! - [18/01/2009 20:46][-r-hs----] E:\autorun.inf
Supprimé ! - [30/08/2008 19:33][-r-hs----] F:\22xo.exe
Supprimé ! - [18/10/2008 15:08][-r-hs----] F:\2fiji.com
Supprimé ! - [29/08/2008 19:24][-r-hs----] F:\bwpncb6.com
Supprimé ! - [15/10/2008 17:57][-r-hs----] F:\cqdis.cmd
Supprimé ! - [06/09/2008 10:49][-r-hs----] F:\jdhc2x2.com
Supprimé ! - [30/08/2008 19:48][-r-hs----] F:\kk3.bat
Supprimé ! - [05/09/2008 23:25][-r-hs----] F:\ktnquo.exe
Supprimé ! - [08/12/2008 17:52][-r-hs----] F:\m9ma.exe
Supprimé ! - [23/07/2008 18:34][-r-hs----] F:\njibyekk.com
Supprimé ! - [29/08/2008 19:39][-r-hs----] F:\ph.com
Supprimé ! - [12/09/2008 12:03][-r-hs----] F:\qwultj1.bat
Supprimé ! - [13/08/2008 12:08][-r-hs----] F:\rqq2v.bat
Supprimé ! - [14/08/2008 12:26][-r-hs----] F:\tbm9.bat
Supprimé ! - [28/06/2008 10:15][-r-hs----] F:\tfk8.exe
Supprimé ! - [12/09/2008 17:38][-r-hs----] F:\vxl.exe
Supprimé ! - [02/08/2008 18:00][-r-hs----] F:\w0o.com
Supprimé ! - [11/12/2008 19:14][-r-hs----] F:\xrdygg.bat
Supprimé ! - [02/08/2008 11:18][-r-hs----] F:\yg.cmd
Supprimé ! - [24/07/2008 21:20][-r-hs----] F:\e.com
Supprimé ! - [12/12/2008 16:46][-r-hs----] F:\autorun.inf

--------------- [ Resumé ] ----------------

-> /!\ Le resultat doit etre interprété par un spécialiste /!\

[13/04/2008 15:04][--a------] C:\AUTOEXEC.BAT
[13/04/2008 15:04][--a------] C:\l8yuk.bat
[13/04/2008 15:04][--a------] C:\nope.bat
[13/04/2008 15:04][--a------] C:\qoes.bat
[01/01/2009 10:06][-r-hs----] C:\fr.com
[21/12/2008 21:50][-r-hs----] C:\2vk6wn.exe
[21/12/2008 21:50][-r-hs----] C:\adware.exe
[21/12/2008 21:50][-r-hs----] C:\jk.exe
[21/12/2008 21:50][-r-hs----] C:\l2mfix.exe
[21/12/2008 21:50][-r-hs----] C:\nyh9ok.exe
[21/12/2008 21:50][-r-hs----] C:\pip.exe
[21/12/2008 21:50][-r-hs----] C:\pipp.exe
[21/12/2008 21:50][-r-hs----] C:\spcc.exe
[21/12/2008 21:50][-r-hs----] C:\v63enh.exe
[21/12/2008 21:50][-r-hs----] C:\x2csvg.exe
[08/12/2008 20:30][-r-hs----] E:\l8yuk.bat
[08/12/2008 20:30][-r-hs----] E:\qoes.bat
[01/01/2009 10:06][-r-hs----] E:\fr.com
[01/01/2009 10:06][-r-hs----] E:\NTDETECT.COM
[21/12/2008 21:50][-r-hs----] E:\2vk6wn.exe
[21/12/2008 21:50][-r-hs----] E:\jk.exe
[21/12/2008 21:50][-r-hs----] E:\nyh9ok.exe
[21/12/2008 21:50][-r-hs----] E:\v63enh.exe
[21/12/2008 21:50][-r-hs----] E:\x2csvg.exe
[13/04/2008 16:51][---hs----] E:\boot.ini
[13/04/2008 16:51][---hs----] E:\XP.ini
[25/07/2008 15:24][-r-hs----] F:\jk.exe
[25/07/2008 15:24][-r-hs----] F:\DivXBundle.exe

--------------- [ Vaccination ] ----------------

C:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
E:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
F:\autorun.inf -> Dossier autorun.inf crée par UsbFix !

--------------- ! Fin du rapport ! ----------------
0
Réponse 2 / 8
Utilisateur anonyme
16 janv. 2009 à 16:09
Re,

Pour AMVO il serait préférable de passer USBFIX.

merci
2
Réponse 3 / 8
Utilisateur anonyme
16 janv. 2009 à 15:56
Bonjour,

* Telecharges Mbam :
http://malwarebytes.org/mbam/program/mbam-setup.exe
à la fin du telechargement Mbam se met à jour automatiquement, laisses faire.

* Fermes tous les programmes en cours

* Ouvres Mbam :
--> clique sur Recherche puis :
--> clique sur executer un examen rapide

* Ne touche à rien pendant le scan

* A la fin de l'analyse, clique sur :
- Afficher les resultats puis
- sur supprimer la selection

* Postes le rapport généré
1
Réponse 4 / 8
Utilisateur anonyme
16 janv. 2009 à 16:06
Re, pour Cecile :

* Ne fais pas attention et fais uniquement Malwarebytes antimalware
pour le moment!
1

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
Utilisateur anonyme
16 janv. 2009 à 16:11
Re,

* Je repètes, fais uniquement Mbam, pour le reste, on verra ensuite !
1
Réponse 6 / 8
HANSVALTA
16 janv. 2009 à 16:00
le meilleur navigateur pour bloqué le plus de publicité est internet explorer
0
Réponse 7 / 8
Utilisateur anonyme
16 janv. 2009 à 16:11
Re,

Bon courage.
0
Réponse 8 / 8
Utilisateur anonyme
16 janv. 2009 à 16:18
))):???
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Message "Un bloqueur de publicité empêche la lecture..."
pistouri -
pistouri -

0 réponse
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
M6 Replay désactiver le bloqueur de publicité
katydel88 -
Mathieu -

14 réponses