Sujet Précédent Sujet Suivant

Virus aka spymarde 888bar + msn ?? help me!

Fermé
SmartParts Messages postés 4 Date d'inscription mardi 5 décembre 2006 Statut Membre Dernière intervention 6 décembre 2006 - 5 déc. 2006 à 23:47
 Utilisateur anonyme - 7 déc. 2006 à 00:02
Bonsoir ! j ai vraiment besoin d aide , Dimanche soir je suis revenu a la maison avec quelques verres dans le nez , j avais des discussion msn d ouverte l une d elle avais un lien pour une photo , comme je n ai pas pris le temps de lire j ai clicker et jme suis retrouver avec des program ki s installais et tou, comme j etais vraiment fracasse lol j ai juste fermer mon pc et je suis aller ronfler!

maintenant le reveil a ete brutal , plus j eissaye de trouver des info sur ce 888bar et msn virus plus je desespere!

SVP aider moi a nettoyer mon pc pour de bon!

bt_lbegin@hotmail.com

5 réponses

Réponse 1 / 5
Utilisateur anonyme
6 déc. 2006 à 00:35
Bonjour

Télécharge Combofix.exe (par sUBs) sur ton Bureau
http://download.bleepingcomputer.com/sUBs/combofix.exe

Double clique combofix.exe et suis les invites.
Lorsque le scan sera complété, un rapport apparaîtra.

Copie/colle ce rapport dans ta prochaine réponse avec un HijackThis.
http://pchelpbordeaux.free.fr/logiciels.html
Tutorial
http://pchelpbordeaux.free.fr/tuto.html
Démo en image
http://pageperso.aol.fr/balltrap34/demohijack.htm
0
SmartParts Messages postés 4 Date d'inscription mardi 5 décembre 2006 Statut Membre Dernière intervention 6 décembre 2006
6 déc. 2006 à 15:06
Combo fix ;

Blood Lotus - 06-12-06 8:58:49.40 Service Pack 2
ComboFix 06.11.27W - Running from: "C:\Documents and Settings\Blood Lotus\Desktop"

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\Program Files\Inetget2
C:\Program Files\Common Files\{30B14EC0-08A8-1033-1125-050512060001}
C:\Program Files\Common Files\{40B14EC0-08A8-1033-1125-050512060001}


((((((((((((((((((((((((((((((( Files Created from 2006-11-06 to 2006-12-06 ))))))))))))))))))))))))))))))))))


2006-12-06 08:42 <DIR> d-------- C:\Program Files\CCleaner
2006-12-05 17:10 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2006-12-05 17:10 <DIR> d-------- C:\Program Files\Grisoft
2006-12-05 16:50 <DIR> d-------- C:\WINDOWS\system32\ActiveScan
2006-12-04 14:31 1,941 --a------ C:\xfeq.exe
2006-12-04 14:02 73,728 --a------ C:\womqnd.exe
2006-12-04 11:11 8,759 --a------ C:\Documents and Settings\Blood Lotus\ost.old.exe
2006-12-02 12:19 <DIR> d-------- C:\WINDOWS\WBEM
2006-12-02 12:19 <DIR> d-------- C:\WINDOWS\system32\en-US
2006-12-02 12:17 121,856 --------- C:\WINDOWS\system32\xmllite.dll
2006-12-02 12:17 <DIR> d-------- C:\WINDOWS\network diagnostic
2006-11-20 15:34 43,520 --a------ C:\WINDOWS\system32\CmdLineExt03.dll
2006-11-20 15:27 21,840 --a------ C:\WINDOWS\system32\SIntfNT.dll
2006-11-20 15:27 17,212 --a------ C:\WINDOWS\system32\SIntf32.dll
2006-11-20 15:27 12,067 --a------ C:\WINDOWS\system32\SIntf16.dll
2006-11-20 15:18 2,829 --a------ C:\WINDOWS\DIIUnin.pif
2006-11-20 15:18 102,400 --a------ C:\WINDOWS\DIIUnin.exe
2006-11-20 15:11 <DIR> d-------- C:\Program Files\Diablo II
2006-11-07 03:26 13,312 --a------ C:\WINDOWS\system32\ieudinit.exe


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-12-06 09:00 -------- d-------- C:\Program Files\Common Files
2006-12-06 08:57 -------- d-------- C:\Program Files\Microsoft AntiSpyware
2006-12-05 23:02 -------- d-------- C:\Program Files\Warcraft III
2006-12-05 18:07 -------- d-------- C:\Program Files\Internet Explorer
2006-12-05 17:53 -------- d-------- C:\Program Files\mIRC
2006-12-05 17:02 -------- d-------- C:\Program Files\MSN Messenger
2006-11-26 16:26 -------- d-------- C:\Program Files\Java
2006-11-01 21:21 -------- d-------- C:\Program Files\Electronic Arts
2006-10-31 03:21 -------- d-------- C:\Program Files\HLSW
2006-10-31 03:21 -------- d-------- C:\Program Files\DCC Manager
2006-10-31 03:20 -------- d-------- C:\Program Files\BitTorrent
2006-10-26 01:31 -------- d-------- C:\Documents and Settings\Blood Lotus\Application Data\BitTorrent
2006-10-24 03:20 -------- d-------- C:\Program Files\EA GAMES
2006-10-24 03:17 -------- d-------- C:\Program Files\Wolfenstein - Enemy Territory
2006-10-21 09:41 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-10-21 04:31 60416 --a------ C:\WINDOWS\ALCFDRTM.EXE
2006-10-21 03:43 -------- d-------- C:\Program Files\ATI Technologies
2006-10-21 03:39 -------- d-------- C:\Program Files\ASUSTeK
2006-10-13 19:36 -------- d-------- C:\Program Files\PartyGaming
2006-10-13 19:35 -------- d-------- C:\Program Files\PartyGaming.net
2006-10-13 07:35 65536 --a------ C:\WINDOWS\system32\nwwks.dll
2006-10-13 07:35 64000 --a------ C:\WINDOWS\system32\nwapi32.dll
2006-10-13 07:35 142336 --a------ C:\WINDOWS\system32\nwprovau.dll
2006-10-13 05:23 163584 --a------ C:\WINDOWS\system32\drivers\nwrdr.sys
2006-10-09 19:57 -------- d-------- C:\Program Files\World of Warcraft
2006-10-09 12:29 2829 --a------ C:\WINDOWS\War3Unin.pif
2006-10-09 12:29 139264 --a------ C:\WINDOWS\War3Unin.exe
2006-09-13 00:01 1084416 --a------ C:\WINDOWS\system32\msxml3.dll
2006-09-06 16:43 22752 --a------ C:\WINDOWS\system32\spupdsvc.exe


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
"RemoteCenter"="C:\\Program Files\\Creative\\MediaSource\\RemoteControl\\RCMan.EXE"
"EA Core"="C:\\Program Files\\Electronic Arts\\EA Link\\Core.exe -silent"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"zBrowser Launcher"="C:\\Program Files\\Logitech\\iTouch\\iTouch.exe"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"Logitech Utility"="Logi_MwX.Exe"
"AlcxMonitor"="ALCXMNTR.EXE"
"CTHelper"="CTHELPER.EXE"
"SBDrvDet"="C:\\Program Files\\Creative\\SB Drive Det\\SBDrvDet.exe /r"
"UpdReg"="C:\\WINDOWS\\UpdReg.EXE"
"NeroFilterCheck"="C:\\WINDOWS\\system32\\NeroCheck.exe"
"gcasServ"="\"C:\\Program Files\\Microsoft AntiSpyware\\gcasServ.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_09\\bin\\jusched.exe\""
"Realtime Monitor"="C:\\PROGRA~1\\CA\\ETRUST~1\\realmon.exe -s"
"RemoteControl"="\"C:\\Program Files\\CyberLink\\PowerDVD\\PDVDServ.exe\""
"LanguageShortcut"="\"C:\\Program Files\\CyberLink\\PowerDVD\\Language\\Language.exe\""
"SoundMan"="SOUNDMAN.EXE"
"NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"
"nwiz"="nwiz.exe /install"
"NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit"
"CTSysVol"="C:\\Program Files\\Creative\\SBAudigy2ZS\\Surround Mixer\\CTSysVol.exe /r"
"CTDVDDET"="C:\\Program Files\\Creative\\SBAudigy2ZS\\DVDAudio\\CTDVDDet.EXE"
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"
"KernelFaultCheck"=hex(2):25,73,79,73,74,65,6d,72,6f,6f,74,25,5c,73,79,73,74,\
65,6d,33,32,5c,64,75,6d,70,72,65,70,20,30,20,2d,6b,00

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000005

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,d3,02,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{9EF34FF2-3396-4527-9D27-04C8C1C67806}"="Microsoft AntiSpyware Service Hook"
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WB

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

Completion time: 06-12-06 9:00:38.01
C:\ComboFix.txt ... 06-12-06 09:00


maintenant Hijackthis log ;

Logfile of HijackThis v1.99.1
Scan saved at 9:05:17 AM, on 12/6/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\savedump.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Stardock\Object Desktop\ThemeManager\wbload.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\CA\eTrust Antivirus\InoRpc.exe
C:\Program Files\CA\eTrust Antivirus\InoRT.exe
C:\Program Files\CA\eTrust Antivirus\InoTask.exe
C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\PROGRA~1\CA\ETRUST~1\realmon.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe
C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDet.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
C:\Program Files\Electronic Arts\EA Link\Core.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Blood Lotus\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sympatico.ca/homepage.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [SBDrvDet] C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [Realtime Monitor] C:\PROGRA~1\CA\ETRUST~1\realmon.exe -s
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [CTDVDDET] C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDet.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EA Link\Core.exe -silent
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - http://www.gamespy.com
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O20 - Winlogon Notify: WB - C:\Program Files\Stardock\Object Desktop\ThemeManager\fastload.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: CA License Client (CA_LIC_CLNT) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe
O23 - Service: CA License Server (CA_LIC_SRVR) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: eTrust Antivirus RPC Server (InoRPC) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Antivirus\InoRpc.exe
O23 - Service: eTrust Antivirus Realtime Server (InoRT) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Antivirus\InoRT.exe
O23 - Service: eTrust Antivirus Job Server (InoTask) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Antivirus\InoTask.exe
O23 - Service: Event Log Watch (LogWatch) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe

merci beaucoup de ton aide !
0
Réponse 2 / 5
Utilisateur anonyme
6 déc. 2006 à 15:24
Re

Rien avec HijackThis.

Deux fichiers douteux dans Combofix.

Télécharge DiagHelp.zip (de Malekal_Morte) sur ton bureau
http://www.malekal.com/download/DiagHelp.zip
- Fais un clic droit sur le fichier et extraire tout
- Un nouveau dossier chercher va être créé DiagHelp
- Ouvre le et double-clic sur go.cmd (le .cmd peut ne pas apparaître)
- Une fenêtre va s'ouvrir, choisis l'option 1
- L'analyse va commencer, ceci peut durer quelques minutes, laisse faire et appuie sur une touche quand on te le demande
- A la fin de l'analyse, il te sera redemandé de redémarrer l'ordinateur... Une fois l'ordinateur redémarré le rapport va apparaître sur le bloc-note.. Ce dernier se trouve sur C:\resultat.txt
- Copie/colle le contenu du bloc-note qui s'ouvre, pour cela :
-- Dans le bloc-note, cliquez sur le menu Edition / Selectionner tout
-- A nouveau menu Edition / copier
-- Dans un nouveau message ici, faire un clic droit / coller
0
Réponse 3 / 5
SmartParts Messages postés 4 Date d'inscription mardi 5 décembre 2006 Statut Membre Dernière intervention 6 décembre 2006
6 déc. 2006 à 15:49
hey hey re ! il est possible que peu de traces subsiste , j ai lu sur un site anglophone quelques etapes , et je doit avouer que avant de poster j avais fais rouler AVg / ADaware / CCleaner / Etrust /

donc voici mon log

C:\WINDOWS\System32\nvapps.xml -->12/6/2006 9:01:39 AM
C:\WINDOWS\System32\wpa.dbl -->12/6/2006 9:00:31 AM
C:\WINDOWS\System32\settingsbkup.sfm -->12/6/2006 8:59:14 AM
C:\WINDOWS\System32\settings.sfm -->12/6/2006 8:59:14 AM
C:\WINDOWS\System32\DVCStateBkp-{00000005-00000000-00000006-00001102-00000004-20021102}.dat -->12/6/2006 8:59:14 AM
C:\WINDOWS\System32\DVCState-{00000005-00000000-00000006-00001102-00000004-20021102}.dat -->12/6/2006 8:59:14 AM
C:\WINDOWS\System32\BMXStateBkp-{00000005-00000000-00000006-00001102-00000004-20021102}.rfx -->12/6/2006 8:59:14 AM
C:\WINDOWS\System32\BMXState-{00000005-00000000-00000006-00001102-00000004-20021102}.rfx -->12/6/2006 8:59:14 AM
C:\WINDOWS\System32\BMXCtrlState-{00000005-00000000-00000006-00001102-00000004-20021102}.rfx -->12/6/2006 8:59:14 AM
C:\WINDOWS\System32\BMXBkpCtrlState-{00000005-00000000-00000006-00001102-00000004-20021102}.rfx -->12/6/2006 8:59:14 AM
C:\WINDOWS\System32\PerfStringBackup.INI -->12/6/2006 8:39:50 AM
C:\WINDOWS\System32\perfh009.dat -->12/6/2006 8:39:50 AM
C:\WINDOWS\System32\perfc009.dat -->12/6/2006 8:39:50 AM
C:\WINDOWS\System32\CmdLineExt03.dll -->12/5/2006 9:30:08 PM
C:\WINDOWS\System32\spupdsvc.inf -->12/5/2006 5:55:32 PM
C:\WINDOWS\System32\asfiles.txt -->12/5/2006 4:54:36 PM
C:\WINDOWS\System32\Uninstall.ico -->12/5/2006 4:50:45 PM
C:\WINDOWS\System32\pavas.ico -->12/5/2006 4:50:45 PM
C:\WINDOWS\System32\Help.ico -->12/5/2006 4:50:45 PM
C:\WINDOWS\System32\jupdate-1.5.0_09-b03.log -->11/26/2006 4:26:49 PM
C:\WINDOWS\System32\SIntfNT.dll -->11/20/2006 3:27:07 PM
C:\WINDOWS\System32\SIntf32.dll -->11/20/2006 3:27:07 PM
C:\WINDOWS\System32\SIntf16.dll -->11/20/2006 3:27:07 PM
C:\WINDOWS\System32\MRT.exe -->11/16/2006 12:20:39 AM
C:\WINDOWS\System32\ieudinit.exe -->11/7/2006 3:26:32 AM

C:\WINDOWS\WindowsUpdate.log -->12/6/2006 9:06:33 AM
C:\WINDOWS\{00000005-00000000-00000006-00001102-00000004-20021102}.CDF -->12/6/2006 9:01:52 AM
C:\WINDOWS\iTouch.ini -->12/6/2006 9:01:26 AM
C:\WINDOWS\0.log -->12/6/2006 9:00:24 AM
C:\WINDOWS\bootstat.dat -->12/6/2006 9:00:09 AM
C:\WINDOWS\tsoc.log -->12/6/2006 8:39:51 AM
C:\WINDOWS\tabletoc.log -->12/6/2006 8:39:51 AM
C:\WINDOWS\ocmsn.log -->12/6/2006 8:39:51 AM
C:\WINDOWS\ocgen.log -->12/6/2006 8:39:51 AM
C:\WINDOWS\ntdtcsetup.log -->12/6/2006 8:39:51 AM
C:\WINDOWS\msgsocm.log -->12/6/2006 8:39:51 AM
C:\WINDOWS\MedCtrOC.log -->12/6/2006 8:39:51 AM
C:\WINDOWS\imsins.log -->12/6/2006 8:39:51 AM
C:\WINDOWS\iis6.log -->12/6/2006 8:39:51 AM
C:\WINDOWS\FaxSetup.log -->12/6/2006 8:39:51 AM

C:\WINDOWS\ALCFDRTM.EXE |21/10/2006 04:31:32
C:\WINDOWS\ALCXMNTR.EXE |07/09/2004 13:47:52
C:\WINDOWS\ATKKBService.exe |21/10/2006 03:36:50
C:\WINDOWS\bwUnin-6.1.4.36-8876480L.exe |15/01/2005 23:14:17
C:\WINDOWS\Ctregrun.exe |07/02/2005 22:52:29
C:\WINDOWS\DIIUnin.exe |20/11/2006 15:18:12
C:\WINDOWS\IsUninst.exe |30/09/2005 07:34:03
C:\WINDOWS\iun6002.exe |29/01/2005 14:26:27
C:\WINDOWS\LOGI_MWX.EXE |16/01/2005 04:17:02
C:\WINDOWS\MIDIDEF.EXE |07/02/2005 22:47:51
C:\WINDOWS\PSCONV.EXE |07/02/2005 22:47:51
C:\WINDOWS\READREG.EXE |07/02/2005 22:47:51
C:\WINDOWS\RmvDir.exe |10/11/2005 15:17:06
C:\WINDOWS\slrundll.exe |04/08/2004 02:56:56
C:\WINDOWS\SOUNDMAN.EXE |21/10/2006 03:32:14
C:\WINDOWS\twunk_16.exe |29/08/2002 07:00:00
C:\WINDOWS\twunk_32.exe |29/08/2002 07:00:00
C:\WINDOWS\Updreg.EXE |07/02/2005 22:49:15
C:\WINDOWS\War3Unin.exe |09/10/2006 11:22:25
C:\WINDOWS\CTCCW.DLL |07/02/2005 22:49:06
C:\WINDOWS\CTDCRES.DLL |07/02/2005 22:47:52
C:\WINDOWS\CTDCRFRN.DLL |07/02/2005 22:48:03
C:\WINDOWS\CTRES.DLL |07/02/2005 22:49:06
C:\WINDOWS\DEVREG.DLL |07/02/2005 22:47:51
C:\WINDOWS\INRESFRN.DLL |07/02/2005 22:48:03
C:\WINDOWS\mickey32.dll |26/02/2005 20:30:34
C:\WINDOWS\twain.dll |29/08/2002 07:00:00
C:\WINDOWS\twain_32.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\append.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\asuninst.exe |05/12/2006 16:51:11
C:\WINDOWS\system32\CTHELPER.EXE |07/02/2005 22:47:50
C:\WINDOWS\system32\CTSVCCDA.EXE |07/02/2005 22:45:10
C:\WINDOWS\system32\CTSVCCTL.EXE |07/02/2005 22:45:10
C:\WINDOWS\system32\ctxsetup.exe |20/02/2004 23:16:12
C:\WINDOWS\system32\debug.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\dosx.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\dvdplay.exe |17/08/2001 17:36:42
C:\WINDOWS\system32\edlin.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\ENSDEF.EXE |07/02/2005 22:47:51
C:\WINDOWS\system32\exe2bin.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\fastopen.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\java.exe |26/11/2006 16:26:50
C:\WINDOWS\system32\javaw.exe |26/11/2006 16:26:50
C:\WINDOWS\system32\javaws.exe |26/11/2006 16:26:50
C:\WINDOWS\system32\keystone.exe |13/02/2006 08:05:00
C:\WINDOWS\system32\KILLAPPS.EXE |07/02/2005 22:47:51
C:\WINDOWS\system32\mem.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\mscdexnt.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\NeroCheck.exe |17/02/2005 14:33:14
C:\WINDOWS\system32\nlsfunc.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\nvappbar.exe |13/02/2006 08:05:00
C:\WINDOWS\system32\nvcolor.exe |13/02/2006 08:05:00
C:\WINDOWS\system32\nvdspsch.exe |13/02/2006 08:05:00
C:\WINDOWS\system32\nvsvc32.exe |13/02/2006 08:05:00
C:\WINDOWS\system32\nvudisp.exe |21/10/2006 03:36:19
C:\WINDOWS\system32\NVUNINST.EXE |21/10/2006 03:35:52
C:\WINDOWS\system32\nvunrm.exe |21/10/2006 03:31:36
C:\WINDOWS\system32\nw16.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\nwiz.exe |13/02/2006 08:05:00
C:\WINDOWS\system32\redir.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\REGPLIB.EXE |07/02/2005 22:47:51
C:\WINDOWS\system32\RTLCPL.EXE |21/10/2006 03:32:22
C:\WINDOWS\system32\setver.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\share.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\slrundll.exe |04/08/2004 02:56:56
C:\WINDOWS\system32\slserv.exe |04/08/2004 02:56:56
C:\WINDOWS\system32\usrmlnka.exe |17/08/2001 17:37:00
C:\WINDOWS\system32\usrprbda.exe |17/08/2001 17:37:00
C:\WINDOWS\system32\usrshuta.exe |17/08/2001 17:37:00
C:\WINDOWS\system32\vwipxspx.exe |29/08/2002 07:00:00
C:\WINDOWS\system32\a3d.dll |07/02/2005 22:47:45
C:\WINDOWS\system32\AC3API.DLL |07/02/2005 22:47:45
C:\WINDOWS\system32\AHQCpURes.dll |07/02/2005 22:46:51
C:\WINDOWS\system32\amstream.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\aschs.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\ASCHT.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\aseng.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\asfrench.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\asgerman.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\asjapan.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\askorean.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\asrussian.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\ati2cqag.dll |04/08/2004 02:56:41
C:\WINDOWS\system32\ati2dvaa.dll |04/08/2004 02:56:41
C:\WINDOWS\system32\ati2dvag.dll |04/08/2004 02:56:41
C:\WINDOWS\system32\ati3d1ag.dll |04/08/2004 02:56:41
C:\WINDOWS\system32\ati3duag.dll |04/08/2004 02:56:41
C:\WINDOWS\system32\ativtmxx.dll |04/08/2004 02:56:41
C:\WINDOWS\system32\ativvaxx.dll |04/08/2004 02:56:41
C:\WINDOWS\system32\ATKDISP.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\ATKDispCPL.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\ATKOGL32.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\ATKOSDMini.DLL |21/10/2006 03:36:50
C:\WINDOWS\system32\ATKOSDX32.dll |21/10/2006 03:36:50
C:\WINDOWS\system32\atmfd.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\atmlib.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\bdco1.dll |21/10/2006 03:31:36
C:\WINDOWS\system32\bdco1ins.dll |21/10/2006 03:31:36
C:\WINDOWS\system32\CmdLineExt.dll |13/09/2005 14:08:50
C:\WINDOWS\system32\CmdLineExt03.dll |20/11/2006 15:34:45
C:\WINDOWS\system32\commonfx.dll |07/02/2005 22:47:45
C:\WINDOWS\system32\COMNCTR.DLL |16/01/2005 04:17:05
C:\WINDOWS\system32\compatui.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\CTAGENT.DLL |07/02/2005 22:47:46
C:\WINDOWS\system32\CTASIO.DLL |07/02/2005 22:47:46
C:\WINDOWS\system32\ctaudfx.dll |07/02/2005 22:47:46
C:\WINDOWS\system32\ctcoinst.dll |07/02/2005 22:47:53
C:\WINDOWS\system32\CTDC0000.DLL |07/02/2005 22:47:46
C:\WINDOWS\system32\CTDC0001.DLL |07/02/2005 22:47:46
C:\WINDOWS\system32\CTDCIFCE.DLL |07/02/2005 22:47:46
C:\WINDOWS\system32\CTDetres.dll |07/02/2005 22:45:10
C:\WINDOWS\system32\CTDPROXY.DLL |07/02/2005 22:47:47
C:\WINDOWS\system32\ctdvda32.dll |07/02/2005 22:46:57
C:\WINDOWS\system32\ctdvinst.dll |07/02/2005 22:47:54
C:\WINDOWS\system32\CTEMUPIA.DLL |07/02/2005 22:47:50
C:\WINDOWS\system32\CTMEDENG.DLL |07/02/2005 22:45:08
C:\WINDOWS\system32\CTMERes.DLL |07/02/2005 22:45:08
C:\WINDOWS\system32\CTMMEP.DLL |07/02/2005 22:47:50
C:\WINDOWS\system32\CTOSUSER.DLL |07/02/2005 22:47:50
C:\WINDOWS\system32\ctsblfx.dll |07/02/2005 22:47:50
C:\WINDOWS\system32\CTSCAL.DLL |07/02/2005 22:47:50
C:\WINDOWS\system32\CTSPKHLP.DLL |07/02/2005 22:47:50
C:\WINDOWS\system32\CTTHXCAL.DLL |07/02/2005 22:47:50
C:\WINDOWS\system32\CTWFLT32.DLL |07/02/2005 22:49:05
C:\WINDOWS\system32\devenum.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\dgrpsetu.dll |15/01/2005 16:52:13
C:\WINDOWS\system32\dgsetup.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\dxmasf.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\EAXAC3.DLL |07/02/2005 22:47:51
C:\WINDOWS\system32\encdec.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\EqnClass.Dll |15/01/2005 16:52:12
C:\WINDOWS\system32\fdco1.dll |21/10/2006 03:31:38
C:\WINDOWS\system32\fdco1ins.dll |21/10/2006 03:31:38
C:\WINDOWS\system32\FEELIT.DLL |16/01/2005 04:17:06
C:\WINDOWS\system32\frapsvid.dll |03/12/2005 06:56:50
C:\WINDOWS\system32\HHActiveX.dll |20/03/2002 21:01:58
C:\WINDOWS\system32\hsfcisp2.dll |04/08/2004 02:56:42
C:\WINDOWS\system32\hticons.dll |15/01/2005 22:16:21
C:\WINDOWS\system32\hypertrm.dll |17/11/2004 12:57:01
C:\WINDOWS\system32\iccvid.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\ieencode.dll |04/08/2004 02:56:42
C:\WINDOWS\system32\ifc21.dll |16/01/2005 04:17:06
C:\WINDOWS\system32\imagr5.dll |17/02/2005 14:33:15
C:\WINDOWS\system32\imagx5.dll |17/02/2005 14:33:16
C:\WINDOWS\system32\ImagXpr5.dll |17/02/2005 14:33:15
C:\WINDOWS\system32\INETWH32.DLL |07/02/2005 22:49:05
C:\WINDOWS\system32\ir32_32.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\ir41_qc.dll |23/09/2004 18:57:35
C:\WINDOWS\system32\ir41_qcx.dll |23/09/2004 18:57:35
C:\WINDOWS\system32\ir50_32.dll |04/08/2004 02:56:42
C:\WINDOWS\system32\ir50_qc.dll |04/08/2004 02:56:42
C:\WINDOWS\system32\ir50_qcx.dll |04/08/2004 02:56:42
C:\WINDOWS\system32\isrdbg32.dll |15/01/2005 22:17:53
C:\WINDOWS\system32\itiimg3.dll |13/07/2001 14:09:44
C:\WINDOWS\system32\jgaw400.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\jgdw400.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\jgmd400.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\jgpl400.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\jgsd400.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\jgsh400.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\LCoInst.Dll |16/01/2005 04:17:02
C:\WINDOWS\system32\lfbmp13n.dll |14/06/2005 11:44:15
C:\WINDOWS\system32\lfcmp13n.dll |14/06/2005 11:44:15
C:\WINDOWS\system32\lfgif13n.dll |14/06/2005 11:44:16
C:\WINDOWS\system32\LGUICOM.DLL |16/01/2005 04:17:05
C:\WINDOWS\system32\lmoufrc.dll |16/01/2005 04:17:02
C:\WINDOWS\system32\LMOUSE16.DLL |16/01/2005 04:17:05
C:\WINDOWS\system32\LMOUSE32.DLL |16/01/2005 04:17:05
C:\WINDOWS\system32\ltdis13n.dll |14/06/2005 11:44:15
C:\WINDOWS\system32\ltefx13n.dll |14/06/2005 11:44:15
C:\WINDOWS\system32\ltfil13n.dll |14/06/2005 11:44:15
C:\WINDOWS\system32\ltimg13n.dll |14/06/2005 11:44:15
C:\WINDOWS\system32\ltkrn13n.dll |14/06/2005 11:44:15
C:\WINDOWS\system32\MCC16.dll |26/02/2006 15:17:13
C:\WINDOWS\system32\MCCDevice.dll |26/02/2006 15:17:13
C:\WINDOWS\system32\MCCDNSHLP_1-0-0_DSR.dll |26/02/2006 15:17:13
C:\WINDOWS\system32\mciqtz32.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\mdmxsdk.dll |04/08/2004 02:56:42
C:\WINDOWS\system32\mdwmdmsp.dll |17/08/2001 17:36:20
C:\WINDOWS\system32\msdmo.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\msdxmlc.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\msencode.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\mtxparhd.dll |04/08/2004 02:56:44
C:\WINDOWS\system32\NewMsgButton.dll |01/08/2003 09:22:44
C:\WINDOWS\system32\nv4_disp.dll |04/08/2004 02:56:44
C:\WINDOWS\system32\nvapi.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvcod.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvcodins.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvconrm.dll |21/10/2006 03:31:36
C:\WINDOWS\system32\nvcpl.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvhwvid.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nview.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvmccs.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvmccsrs.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvmctray.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvnt4cpl.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvoglnt.dll |15/02/2006 06:07:30
C:\WINDOWS\system32\nvrsar.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrscs.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsda.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsde.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsel.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrseng.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrses.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsesm.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsfi.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsfr.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrshe.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrshu.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsit.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsja.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsko.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsnl.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsno.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrspl.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrspt.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsptb.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrsru.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrssk.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrssl.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrssv.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrstr.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrszhc.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvrszht.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvshell.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwddi.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwdmcpl.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwimg.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsar.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrscs.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsda.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsde.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsel.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrseng.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrses.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsesm.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsfi.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsfr.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrshe.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrshu.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsit.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsja.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsko.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsnl.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsno.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrspl.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrspt.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsptb.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrsru.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrssk.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrssl.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrssv.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrstr.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrszhc.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\nvwrszht.dll |13/02/2006 08:05:00
C:\WINDOWS\system32\OPENAL32.DLL |07/02/2005 22:47:51
C:\WINDOWS\system32\paqsp.dll |17/08/2001 17:36:28
C:\WINDOWS\system32\PIAPROXY.DLL |07/02/2005 22:47:51
C:\WINDOWS\system32\picn20.dll |17/02/2005 14:33:17
C:\WINDOWS\system32\qcap.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\qdv.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\qdvd.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\qedit.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\qedwipes.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\quartz.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\RTLCPAPI.dll |21/10/2006 03:32:26
C:\WINDOWS\system32\s3gnb.dll |04/08/2004 02:56:44
C:\WINDOWS\system32\sbe.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\scriptpw.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\SFCVRT32.DLL |07/02/2005 22:49:06
C:\WINDOWS\system32\sfman32.dll |07/02/2005 22:47:51
C:\WINDOWS\system32\SFMS32.DLL |07/02/2005 22:47:51
C:\WINDOWS\system32\SIntf16.dll |20/11/2006 15:27:07
C:\WINDOWS\system32\SIntf32.dll |20/11/2006 15:27:07
C:\WINDOWS\system32\SIntfNT.dll |20/11/2006 15:27:07
C:\WINDOWS\system32\slbcsp.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\slbiop.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\slbrccsp.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\slcoinst.dll |04/08/2004 02:56:45
C:\WINDOWS\system32\slextspk.dll |04/08/2004 02:56:45
C:\WINDOWS\system32\slgen.dll |04/08/2004 02:56:45
C:\WINDOWS\system32\spnike.dll |17/08/2001 17:36:32
C:\WINDOWS\system32\sprio600.dll |17/08/2001 17:36:32
C:\WINDOWS\system32\sprio800.dll |17/08/2001 17:36:32
C:\WINDOWS\system32\spxcoins.dll |15/01/2005 22:51:37
C:\WINDOWS\system32\tsd32.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\TwnLib20.dll |17/02/2005 14:33:20
C:\WINDOWS\system32\usrcntra.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrcoina.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrdpa.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrdtea.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrfaxa.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrlbva.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrrtosa.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrsdpia.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrsvpia.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrv42a.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrv80a.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrvoica.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\usrvpa.dll |17/08/2001 17:36:34
C:\WINDOWS\system32\wbsys.dll |16/06/2005 12:16:53
C:\WINDOWS\system32\win87em.dll |29/08/2002 07:00:00
C:\WINDOWS\system32\ZPORT4AS.dll |05/12/2006 16:51:11

Volume in drive C has no label.
Volume Serial Number is 40B1-4EC0

Directory of C:\WINDOWS\system32

08/04/2004 02:56 AM 6,144 csrss.exe
1 File(s) 6,144 bytes
0 Dir(s) 12,575,498,240 bytes free

Contenu de Downloaded Program Files
Volume in drive C has no label.
Volume Serial Number is 40B1-4EC0

Directory of C:\WINDOWS\Downloaded Program Files

12/05/2006 05:48 PM <DIR> .
12/05/2006 05:48 PM <DIR> ..
08/24/2006 08:28 AM 141,424 asinst.dll
08/22/2006 09:06 AM 537 asinst.inf
01/15/2005 10:59 PM 65 desktop.ini
10/14/1997 06:52 PM 697 DirectAnimation Java Classes.osd
06/25/2006 11:50 AM 1,793 erma.inf
11/03/2005 08:24 PM 495 LegitCheckControl.inf
04/06/2004 07:03 PM 172,072 MessengerStatsPAClient.dll
01/20/2000 03:25 PM 1,162 Microsoft XML Parser for Java.osd
10/08/2004 03:01 PM 372,736 MsnPUpld.dll
10/08/2004 03:13 PM 587 MSNPupld.inf
06/19/2002 01:11 PM 117,088 PURen-us.dll
05/31/2002 08:20 AM 117,328 PURfr-ca.dll
01/16/2005 02:19 AM 12,846,248 QuickTimeFullInstaller.exe
09/01/2004 05:46 PM 298 sinstaller.inf
03/27/2006 12:00 PM 5,019 swflash.inf
11/17/2004 10:44 PM 114,728 ZIntro.ocx
16 File(s) 13,892,277 bytes

Total Files Listed:
16 File(s) 13,892,277 bytes
2 Dir(s) 12,575,498,240 bytes free

Recherche de rootkit! (Merci S!Ri)

Recherche d'infections connues




Liste des programmes installes

Ad-Aware SE Personal
Adobe Download Manager 2.0 (Remove Only)
Adobe Reader 7.0 - Français
Adobe Shockwave Player
ASUS Enhanced Display Driver
ASUS nVIDIA Driver
AVG Anti-Spyware 7.5
CA eTrust Antivirus
CA Licensing
CCleaner (remove only)
Citrix Web Client
CodeBaby Player (Remove Only) 1.0.2.15
Creative MediaSource
Creative System Information
Diablo II
EA Link
EA Link
Fraps
HighMAT Extension to Microsoft Windows XP CD Writing Wizard
HijackThis 1.99.1
Hotfix for Windows XP (KB896344)
Hotfix for Windows XP (KB914440)
Hotfix for Windows XP (KB915865)
InterActual Player
IrfanView (remove only)
J2SE Runtime Environment 5.0 Update 3
J2SE Runtime Environment 5.0 Update 5
J2SE Runtime Environment 5.0 Update 6
J2SE Runtime Environment 5.0 Update 9
LimeWire 4.12.6
Logiciel iTouch de Logitech
Logitech Desktop Messenger
Logitech MouseWare 9.75
Macromedia Flash Player 8
Microsoft .NET Framework 1.1
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0
Microsoft AntiSpyware
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Excel Viewer 2003
MSN Music Assistant
Nero OEM
NVIDIA Drivers
Panda ActiveScan
PartyPoker
PowerDVD
Security Update for Microsoft .NET Framework 2.0 (KB917283)
Security Update for Microsoft .NET Framework 2.0 (KB922770)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows XP (KB883939)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB896688)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899588)
Security Update for Windows XP (KB899589)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB903235)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB905915)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB908531)
Security Update for Windows XP (KB911280)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912812)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913446)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB916281)
Security Update for Windows XP (KB917159)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB918899)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922760)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB925486)
Sound Blaster Audigy 2 ZS
TeamSpeak 2 RC2
Update for Windows XP (KB894391)
Update for Windows XP (KB896727)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB900930)
Update for Windows XP (KB904942)
Update for Windows XP (KB910437)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Ventrilo Client
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Installer 3.1 (KB893803)
Windows Installer 3.1 (KB893803)
Windows Media Connect
Windows Media Format SDK Hotfix - KB891122
Windows Media Player 10
Windows XP Hotfix - KB834707
Windows XP Hotfix - KB867282
Windows XP Hotfix - KB873333
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB887797
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890047
Windows XP Hotfix - KB890175
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB890923
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB893066
Windows XP Hotfix - KB893086
Windows XP Service Pack 2
WinRAR archiver
WinZip
World of Warcraft



Volume in drive C has no label.
Volume Serial Number is 40B1-4EC0

Directory of C:\Program Files

12/06/2006 08:59 AM <DIR> .
12/06/2006 08:59 AM <DIR> ..
01/29/2005 02:26 PM <DIR> AceGain
02/27/2005 10:48 PM <DIR> Adobe
12/08/2005 11:17 PM <DIR> Ahead
10/21/2006 03:39 AM <DIR> ASUSTeK
10/21/2006 03:43 AM <DIR> ATI Technologies
10/31/2006 03:20 AM <DIR> BitTorrent
11/10/2005 03:17 PM <DIR> CA
12/06/2006 08:42 AM <DIR> CCleaner
08/19/2005 05:47 PM <DIR> Citrix
12/06/2006 09:00 AM <DIR> Common Files
01/15/2005 10:16 PM <DIR> ComPlus Applications
02/07/2005 10:52 PM <DIR> Creative
06/06/2006 10:27 PM <DIR> CyberLink
10/31/2006 03:21 AM <DIR> DCC Manager
12/05/2006 09:30 PM <DIR> Diablo II
01/29/2005 08:47 PM <DIR> DreamCatcher
10/24/2006 03:20 AM <DIR> EA GAMES
11/01/2006 09:21 PM <DIR> Electronic Arts
12/05/2006 05:10 PM <DIR> Grisoft
12/25/2005 03:06 AM <DIR> HighMAT CD Writing Wizard
10/31/2006 03:21 AM <DIR> HLSW
08/14/2006 11:25 AM <DIR> InterActual
12/05/2006 06:07 PM <DIR> Internet Explorer
03/23/2006 02:11 AM <DIR> IrfanView
09/12/2006 01:59 AM <DIR> iWin.com
11/26/2006 04:26 PM <DIR> Java
09/23/2005 11:27 AM <DIR> Lavasoft
09/12/2006 05:20 AM <DIR> LimeWire
01/16/2005 04:17 AM <DIR> Logitech
02/11/2005 03:09 AM <DIR> Messenger
09/11/2006 01:18 AM <DIR> Microprose
12/06/2006 09:43 AM <DIR> Microsoft AntiSpyware
01/15/2005 10:20 PM <DIR> microsoft frontpage
06/27/2006 03:49 AM <DIR> Microsoft Office
12/05/2006 05:53 PM <DIR> mIRC
01/16/2005 02:09 PM <DIR> Movie Maker
01/15/2005 10:16 PM <DIR> MSN Gaming Zone
12/05/2006 05:02 PM <DIR> MSN Messenger
02/10/2005 02:34 AM <DIR> MsnMusic
01/15/2005 11:13 PM <DIR> MUSICMATCH
01/16/2005 02:07 PM <DIR> NetMeeting
01/15/2005 10:18 PM <DIR> Online Services
04/12/2006 02:04 AM <DIR> Outlook Express
10/13/2006 07:36 PM <DIR> PartyGaming
10/13/2006 07:35 PM <DIR> PartyGaming.net
02/18/2006 04:00 AM <DIR> PartyPoker.net
03/26/2006 02:20 PM <DIR> QuickTime
06/16/2005 12:16 PM <DIR> Stardock
04/23/2005 02:25 PM <DIR> Sympatico
01/16/2005 04:31 AM <DIR> Teamspeak2_RC2
03/14/2005 12:40 PM <DIR> The All-Seeing Eye
01/15/2006 04:16 AM <DIR> TrustyFiles
09/11/2006 12:12 AM <DIR> Trymedia
05/24/2006 11:51 PM <DIR> Ventrilo
12/05/2006 11:02 PM <DIR> Warcraft III
12/25/2005 02:51 AM <DIR> Windows Installer Clean Up
01/15/2006 04:16 AM <DIR> Windows Media Connect 2
03/26/2006 02:20 PM <DIR> Windows Media Player
01/16/2005 02:07 PM <DIR> Windows NT
01/27/2005 11:05 PM <DIR> WinRAR
01/15/2005 11:41 PM <DIR> WinZip
10/24/2006 03:17 AM <DIR> Wolfenstein - Enemy Territory
10/09/2006 07:57 PM <DIR> World of Warcraft
01/15/2005 10:20 PM <DIR> xerox
0 File(s) 0 bytes
66 Dir(s) 12,575,358,976 bytes free
Volume in drive C has no label.
Volume Serial Number is 40B1-4EC0

Directory of C:\Program Files\common files

12/06/2006 09:00 AM <DIR> .
12/06/2006 09:00 AM <DIR> ..
03/10/2006 07:31 PM <DIR> ACD Systems
02/27/2005 10:49 PM <DIR> Adobe
02/17/2005 02:33 PM <DIR> Ahead
09/23/2005 10:42 AM <DIR> Blizzard Entertainment
07/07/2006 04:16 PM <DIR> InstallShield
09/02/2005 02:11 PM <DIR> Java
01/15/2005 11:12 PM <DIR> Logitech
06/27/2006 03:49 AM <DIR> Microsoft Shared
02/26/2006 03:18 PM <DIR> Motive
01/15/2005 10:17 PM <DIR> MSSoap
01/15/2005 04:52 PM <DIR> ODBC
01/15/2005 10:17 PM <DIR> Services
01/15/2005 04:52 PM <DIR> SpeechEngines
06/16/2005 12:16 PM <DIR> Stardock
04/12/2006 02:04 AM <DIR> System
10/14/2005 05:10 PM <DIR> Vbox
05/24/2006 11:51 PM <DIR> Wise Installation Wizard
0 File(s) 0 bytes
19 Dir(s) 12,575,358,976 bytes free
Volume in drive C has no label.
Volume Serial Number is 40B1-4EC0

Directory of C:\

11/11/2001 12:00 AM 68,096 diff.exe
08/27/2006 02:10 PM 103,424 grep.exe
08/26/2005 03:55 PM 727,552 StubInstaller.exe
12/04/2006 02:40 PM 73,728 womqnd.exe
12/04/2006 02:31 PM 1,941 xfeq.exe
5 File(s) 974,741 bytes
0 Dir(s) 12,575,358,976 bytes free
c:\Documents and Settings\All Users\Documents\Share\bsplayer\bplay.exe
c:\Documents and Settings\Blood Lotus\ost.old.exe
c:\Documents and Settings\Blood Lotus\.limewire\.NetworkShare\LimeWireWin4.12.6-fixed.exe
c:\Documents and Settings\Blood Lotus\.limewire\.NetworkShare\LimeWireWin4.12.6-nopack2.exe
c:\Documents and Settings\Blood Lotus\Desktop\combofix.exe
c:\Documents and Settings\Blood Lotus\Desktop\HijackThis.exe
c:\Documents and Settings\Blood Lotus\Desktop\New Folder\DiagHelp\diff.exe
c:\Documents and Settings\Blood Lotus\Desktop\New Folder\DiagHelp\FilesInfoCmd.exe
c:\Documents and Settings\Blood Lotus\Desktop\New Folder\DiagHelp\Fport.exe
c:\Documents and Settings\Blood Lotus\Desktop\New Folder\DiagHelp\grep.exe
c:\Documents and Settings\Blood Lotus\Desktop\New Folder\DiagHelp\LFiles.exe
c:\Documents and Settings\Blood Lotus\Desktop\New Folder\DiagHelp\LISTDLLS.exe
c:\Documents and Settings\Blood Lotus\Desktop\New Folder\DiagHelp\pslist.exe
c:\Documents and Settings\Blood Lotus\Desktop\New Folder\DiagHelp\streams.exe
c:\Documents and Settings\Blood Lotus\Desktop\New Folder\DiagHelp\swreg.exe
c:\Documents and Settings\Blood Lotus\My Documents\ET_Patch_2_60.exe
c:\Documents and Settings\Blood Lotus\My Documents\EyeInstaller.exe
c:\Documents and Settings\Blood Lotus\My Documents\PartyPokerNetSetup.exe
c:\Documents and Settings\Blood Lotus\My Documents\PowerDVD_Trial.exe
c:\Documents and Settings\Blood Lotus\My Documents\Repair.exe
c:\Documents and Settings\Blood Lotus\My Documents\WorldofWarcraft_Desktop.exe
c:\Documents and Settings\Blood Lotus\My Documents\WoW-1[1].12.0.5595-to-1.12.1.5875-enUS-patch.exe
c:\Documents and Settings\Blood Lotus\My Documents\AV\Setup.exe
c:\Documents and Settings\Blood Lotus\My Documents\CyberLink\csview.exe
c:\Documents and Settings\Blood Lotus\My Documents\My Received Files\moh_spearhead.exe
c:\Documents and Settings\Blood Lotus\My Documents\risk 2\RISK2\mp3unpack.exe
c:\Documents and Settings\Blood Lotus\My Documents\risk 2\RISK2\RISKII.EXE
c:\Documents and Settings\Blood Lotus\My Documents\risk 2\RISK2\SETUPREG.EXE
c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Expsrv.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Msado15.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Msadox.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Msadrh15.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Msjet40.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Msjetoledb40.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Msjint40.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Msjro.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Msjter40.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Msjtes40.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\Mswstr10.dll
c:\Documents and Settings\Blood Lotus\Application Data\Creative\Media Database\JetFileBackup\vbajet32.dll
c:\Documents and Settings\Blood Lotus\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll

Liste des drivers...

< Service Pack 212 6 2006 09:46:03.375
< Loaded driver \WINDOWS\system32\ntkrnlpa.exe
< Loaded driver sptd.sys
< Loaded driver \WINDOWS\System32\Drivers\WMILIB.SYS
< Loaded driver \WINDOWS\System32\Drivers\SPTD1021.SYS
< Loaded driver ohci1394.sys
< Loaded driver \WINDOWS\System32\DRIVERS\1394BUS.SYS
< Loaded driver pciide.sys
< Loaded driver \WINDOWS\System32\DRIVERS\PCIIDEX.SYS
< Loaded driver \WINDOWS\System32\DRIVERS\CLASSPNP.SYS
< Loaded driver fltmgr.sys
< Loaded driver ino_flpy.sys
< Loaded driver \SystemRoot\System32\DRIVERS\nic1394.sys
< Loaded driver \SystemRoot\System32\DRIVERS\processr.sys
< Loaded driver \SystemRoot\System32\DRIVERS\usbohci.sys
< Loaded driver \SystemRoot\System32\DRIVERS\usbehci.sys
< Loaded driver \SystemRoot\system32\drivers\ALCXWDM.SYS
< Loaded driver \SystemRoot\System32\DRIVERS\imapi.sys
< Loaded driver \SystemRoot\System32\Drivers\MxlW2k.SYS
< Loaded driver \SystemRoot\System32\DRIVERS\cdrom.sys
< Loaded driver \SystemRoot\System32\DRIVERS\redbook.sys
< Loaded driver \SystemRoot\system32\drivers\ctoss2k.sys
< Loaded driver \SystemRoot\System32\drivers\ctprxy2k.sys
< Loaded driver \SystemRoot\system32\drivers\ctaud2k.sys
< Loaded driver \SystemRoot\System32\DRIVERS\gameenum.sys
< Loaded driver \SystemRoot\system32\DRIVERS\nvnetbus.sys
< Loaded driver \SystemRoot\System32\DRIVERS\nv4_mini.sys
< Loaded driver \SystemRoot\System32\DRIVERS\fdc.sys
< Loaded driver \SystemRoot\System32\DRIVERS\serial.sys
< Loaded driver \SystemRoot\System32\DRIVERS\serenum.sys
< Loaded driver \SystemRoot\System32\DRIVERS\parport.sys
< Loaded driver \SystemRoot\System32\DRIVERS\i8042prt.sys
< Loaded driver \SystemRoot\System32\DRIVERS\L8042pr2.Sys
< Loaded driver \SystemRoot\System32\DRIVERS\LMouFlt2.Sys
< Loaded driver \SystemRoot\System32\DRIVERS\mouclass.sys
< Loaded driver \SystemRoot\System32\DRIVERS\itchfltr.sys
< Loaded driver \SystemRoot\System32\DRIVERS\kbdclass.sys
< Loaded driver \SystemRoot\system32\drivers\msmpu401.sys
< Loaded driver \SystemRoot\system32\drivers\atkkbnt.sys
< Loaded driver \SystemRoot\System32\DRIVERS\audstub.sys
< Loaded driver \SystemRoot\System32\DRIVERS\rasl2tp.sys
< Loaded driver \SystemRoot\System32\DRIVERS\ndistapi.sys
< Loaded driver \SystemRoot\System32\DRIVERS\ndiswan.sys
< Loaded driver \SystemRoot\System32\DRIVERS\raspppoe.sys
< Loaded driver \SystemRoot\System32\DRIVERS\raspptp.sys
< Loaded driver \SystemRoot\System32\DRIVERS\msgpc.sys
< Loaded driver \SystemRoot\System32\DRIVERS\psched.sys
< Loaded driver \SystemRoot\System32\DRIVERS\ptilink.sys
< Loaded driver \SystemRoot\System32\DRIVERS\raspti.sys
< Loaded driver \SystemRoot\System32\DRIVERS\rdpdr.sys
< Loaded driver \SystemRoot\System32\DRIVERS\termdd.sys
< Loaded driver \SystemRoot\System32\DRIVERS\swenum.sys
< Loaded driver \SystemRoot\System32\DRIVERS\update.sys
< Loaded driver \SystemRoot\System32\DRIVERS\mssmbios.sys
< Loaded driver \SystemRoot\System32\DRIVERS\usbhub.sys
< Loaded driver \SystemRoot\System32\drivers\hap16v2k.sys
< Loaded driver \SystemRoot\System32\drivers\ha10kx2k.sys
< Loaded driver \SystemRoot\System32\drivers\emupia2k.sys
< Loaded driver \SystemRoot\System32\drivers\ctsfm2k.sys
< Loaded driver \SystemRoot\System32\drivers\ctac32k.sys
< Loaded driver \SystemRoot\system32\DRIVERS\NVENETFD.sys
< Loaded driver \SystemRoot\System32\DRIVERS\flpydisk.sys
< Loaded driver \SystemRoot\System32\DRIVERS\AvgAsCln.sys
< Did not load driver \SystemRoot\system32\DRIVERS\kbdhid.sys
< Loaded driver \SystemRoot\System32\DRIVERS\rasacd.sys
< Loaded driver \SystemRoot\System32\DRIVERS\ipsec.sys
< Loaded driver \SystemRoot\System32\DRIVERS\tcpip.sys
< Loaded driver \SystemRoot\System32\DRIVERS\wanarp.sys
< Loaded driver \SystemRoot\System32\DRIVERS\netbt.sys
< Loaded driver \SystemRoot\System32\DRIVERS\netbios.sys
< Loaded driver \SystemRoot\System32\DRIVERS\arp1394.sys
< Did not load driver \SystemRoot\System32\DRIVERS\amdk7.sys
< Loaded driver \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys
< Loaded driver \??\C:\WINDOWS\system32\Drivers\ino_fltr.sys
< Loaded driver \SystemRoot\System32\DRIVERS\ndisuio.sys
< Loaded driver \SystemRoot\System32\DRIVERS\mrxdav.sys
< Loaded driver \??\C:\WINDOWS\system32\drivers\EIO.sys
< Loaded driver \SystemRoot\System32\DRIVERS\srv.sys
< Loaded driver \??\C:\WINDOWS\system32\drivers\PfModNT.sys
< Loaded driver \SystemRoot\system32\drivers\wdmaud.sys
< Loaded driver \SystemRoot\system32\drivers\sysaudio.sys
< Loaded driver \SystemRoot\system32\drivers\splitter.sys
< Loaded driver \SystemRoot\system32\drivers\aec.sys
< Loaded driver \SystemRoot\system32\drivers\swmidi.sys
< Loaded driver \SystemRoot\system32\drivers\DMusic.sys
< Loaded driver \SystemRoot\System32\DRIVERS\secdrv.sys
< Loaded driver \SystemRoot\system32\drivers\kmixer.sys
< Loaded driver \SystemRoot\system32\drivers\drmkaud.sys


merci beaucoup de ton aide!
0
Réponse 4 / 5
SmartParts Messages postés 4 Date d'inscription mardi 5 décembre 2006 Statut Membre Dernière intervention 6 décembre 2006
6 déc. 2006 à 15:50
o ps , est-ce que c est safe de reinstaller msn ?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 5
Utilisateur anonyme
7 déc. 2006 à 00:02
Rien de visible non plus dans ce rapport.

Fais une analyse antivirus en ligne sur Kaspersky
https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
Sélectionne le poste de travail comme analyse.
Colle son rapport ici.
0

Discussions similaires

Il semble que quelqu'un d'autre utilise votre compte
adurnat -
okuuma -

60 réponses
minecraft ne démare pas
chachat_du_62 -
Zaykyoo -

7 réponses
networksetup
rakatamouche -
rakatamouche -

6 réponses
je n arrive pas a lancer minecraft
kaz_luffy -
BabaProg -

1 réponse