Sujet Précédent Sujet Suivant

[Virus] Infections par de multiple pub

Résolu/Fermé
legras Messages postés 21 Date d'inscription mercredi 20 décembre 2006 Statut Membre Dernière intervention 8 février 2008 - 20 déc. 2006 à 19:16
legras Messages postés 21 Date d'inscription mercredi 20 décembre 2006 Statut Membre Dernière intervention 8 février 2008 - 31 déc. 2006 à 17:51
[PS] : Je suis une buse dans l'informatique profonde (modif ficher et autre)
Bonjour à tous, depuis quelque semaine mon ordi me donne envie de le faire faire un vol planer par la fenêtre, il plante régulièrement des pub intempestive apparaissent fréquemment et il est de plus en plus lents. Bon la faute me reviens aussi peut être dans le fais que je n'avais pas d'antivirus durant quelque mois, et tout m'est tombé dessus d'un coup.

Souvent quand je suis sur le net, j'ai ce message d'erreur qui apparait et quand je met "Ok" ma barre de lancement (barre bleu au bas de l'écran) disparaît en bref quand je ferme toute mes fenêtre je me retrouve avec mon image de fond avec le curseur de la souris et tout ce que je peux faire c'est [CTRL]+[Alt]+[Del] :

http://img163.imageshack.us/img163/9529/erreurre0.png

J'ai notamment des pub en tout qui viennent me pourrir mon surf (Systemdoctor, WinAntiVirusPRO, et une grande page bleu avec comme titre :Error Detected), j'ai lancé Ad-Awards, Spyboot, CCleaner, mais j'ai l'impression que de plus en plus de pub m'envahisse, voici déjà mon rapport brute Hijack This :

Logfile of HijackThis v1.99.1
Scan saved at 19:15:29, on 20.12.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\DAP\DAP.EXE
C:\Program Files\Messenger Plus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Logitech\Profiler\lwemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\NETGEAR\WG111v2 Configuration Utility\RtlWake.exe
C:\Program Files\NETGEAR\WG111v2 Configuration Utility\RtWLan.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE
C:\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://accounts.google.com/ServiceLogin?service=mail&passive=true&rm=false&continue=https://mail.google.com/mail/&ss=1&scc=1<mpl=default<mplcache=2&emr=1&osid=1
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?pc=mssh&form=msshhp&ocid=onepro&homepage=http%3a%2f%2fwww.microsoft.com%2fisapi%2fredir.dll%3fprd%3d{SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {61C40C3D-BDD2-B627-D189-C569348CDBE4} - (no file)
O3 - Toolbar: DAP Bar - {62999427-33FC-4baf-9C9C-BCE6BD127F08} - C:\Program Files\DAP\DAPIEBar.dll
O3 - Toolbar: Steganos Internet Anonyme - {00000000-5736-4205-0008-2fe89c996183} - c:\program files\steganos internet anonym 7\sia7iep.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [DownloadAccelerator] C:\PROGRA~1\DAP\DAP.EXE /STARTUP
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [DllRunning] rundll32.exe "C:\WINDOWS\system32\quxfwhbc.dll",setvm
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Start WingMan Profiler] "C:\Program Files\Logitech\Profiler\lwemon.exe" /noui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: .protected
O4 - Global Startup: .protected
O4 - Global Startup: Accélérateur de démarrage AutoCAD.lnk = C:\Program Files\Fichiers communs\Autodesk Shared\acstart16.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: WG111v2 Smart Wizard Wireless Setting.lnk = ?
O8 - Extra context menu item: &Download with &DAP - C:\PROGRA~1\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\PROGRA~1\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Run DAP - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\PROGRA~1\DAP\DAP.EXE
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - https://www.afternic.com/domains/drivecleaner.com
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {A91DEB0D-AD0D-453E-9AC8-60178EC24212} (VPlayer Control) - http://video.vividas.com/CDN1/4325_Pepsi/web/player/vivid_ocx.jpeg
O17 - HKLM\System\CCS\Services\Tcpip\..\{B7F9CDB8-BF58-4289-8669-EEA83434ED2E}: NameServer = 192.168.0.1
O18 - Protocol: bw+0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
O21 - SSODL: incestuously - {03413bf7-e34c-445b-bfc0-a2b127255871} - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

Merci de votre aide prochaine et providentielle.
A voir également:

30 réponses

Précédent
  • 1
  • 2
Réponse 21 / 30
legras Messages postés 21 Date d'inscription mercredi 20 décembre 2006 Statut Membre Dernière intervention 8 février 2008
27 déc. 2006 à 19:30
Mais ca va faire la même chose qu'avant juste scanné et non nettoyer. Non ?
0
Réponse 22 / 30
legras Messages postés 21 Date d'inscription mercredi 20 décembre 2006 Statut Membre Dernière intervention 8 février 2008
27 déc. 2006 à 21:40
Alors voila le rapport de eScan :

File C:\Documents and Settings\Wxp\Bureau\SmitfraudFix\Reboot.exe tagged as not-a-virus:RiskTool.Win32.Reboot.f. No

Action Taken.
File C:\Documents and Settings\Wxp\Bureau\SmitfraudFix.exe tagged as not-a-virus:RiskTool.Win32.Reboot.f.

No Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\agfherdb.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\aolelmeq.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\aqusnwid.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\audimhij.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\aupgnxlj.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\bbjudflx.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\bddoirhx.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\bifvcaqc.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\cgtyqlrr.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action

Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\cjgiktsa.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\ckxhgpdf.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\crdwqqep.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ddvvohgd.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\difwtfvm.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\dikmwqyc.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\dqacyhwy.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\dunxmasq.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\duoollxq.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action

Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\edeeccww.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\elsdjceh.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\eoffqsqk.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\fopwmgdy.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\ftboxnxl.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\fvsidooy.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action

Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\gardhtfc.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\gobrxtwv.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\gvopwqdu.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\hgcddihu.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\hjqqbfii.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\hxdfpeav.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ikicnabt.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\iuviiqct.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\jkrmhoip.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action

Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\krplutvf.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\kvrmyshi.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ldguntat.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action

Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\lvvoqgqi.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\mcldsfkv.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\mgxpvprt.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\musqllhf.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\mydcfiom.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\nfqwphvg.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\nloyoorh.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\nnddeawh.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ogpsrlax.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action

Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ohpkqvys.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\pfodbooc.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\pgshdnsa.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\phlkcrom.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\pmqbsdfq.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\qktboyra.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\qobxyqqr.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\quwjqcea.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\sgbpxmer.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\sqogavnb.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\stxubqlj.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\sufgwnyi.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\tduxgeqv.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\tioxqmer.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\tnhgecfn.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\tqdncpme.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\txhihndo.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ubhieikw.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\unutsgdr.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\vanlhmqa.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\veeqhdea.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\vjbmfnse.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\vltjjnrm.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\vsekpwgr.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\vynxttnq.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\waodljik.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\whudvlfi.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action

Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\wticjrpl.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\xcbphrhg.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\xlltauir.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action

Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\xonmwfdy.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\xwlplaqj.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ybulhxpc.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No

Action Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\yifydmhf.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File C:\Documents and

Settings\Wxp\DoctorWeb\Quarantine\ylafajue.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
File

C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ylorutgu.exe tagged as not-a-virus:AdWare.Win32.Agent.at. No Action

Taken.
File C:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ytqesnjf.exe tagged as

not-a-virus:AdWare.Win32.Agent.at. No Action Taken.
0
Réponse 23 / 30
legras Messages postés 21 Date d'inscription mercredi 20 décembre 2006 Statut Membre Dernière intervention 8 février 2008
27 déc. 2006 à 21:44
et celui de DiagHelp :

C:\WINDOWS\System32\wpa.dbl -->27.12.2006 09:41:25
C:\WINDOWS\System32\perfh00C.dat -->23.12.2006 10:56:18
C:\WINDOWS\System32\perfh009.dat -->23.12.2006 10:56:18
C:\WINDOWS\System32\perfc00C.dat -->23.12.2006 10:56:18
C:\WINDOWS\System32\perfc009.dat -->23.12.2006 10:56:18
C:\WINDOWS\System32\PerfStringBackup.INI -->23.12.2006 10:56:17
C:\WINDOWS\System32\xwjoalvq.ini -->23.12.2006 10:45:05
C:\WINDOWS\System32\odtpfici.dll -->22.12.2006 19:44:58
C:\WINDOWS\System32\wbqmyces.dll -->22.12.2006 19:20:41
C:\WINDOWS\System32\axgvpryj.dll -->22.12.2006 18:22:27
C:\WINDOWS\System32\njimnfjf.dll -->22.12.2006 17:37:06
C:\WINDOWS\System32\tmp.txt -->22.12.2006 17:34:49
C:\WINDOWS\System32\tmp.reg -->22.12.2006 17:34:49
C:\WINDOWS\System32\cpdymfnb.dll -->22.12.2006 17:33:49
C:\WINDOWS\System32\cbhwfxuq.ini -->22.12.2006 17:33:08
C:\WINDOWS\System32\muaktpvk.dll -->22.12.2006 17:02:57
C:\WINDOWS\System32\efvnvkme.dll -->21.12.2006 19:03:21
C:\WINDOWS\System32\cvfginer.dll -->20.12.2006 22:39:03
C:\WINDOWS\System32\gtmbnrcp.dll -->20.12.2006 18:34:44
C:\WINDOWS\System32\jrharjaq.dll -->20.12.2006 18:14:52
C:\WINDOWS\System32\rvoqxscq.dll -->19.12.2006 21:08:23
C:\WINDOWS\System32\quxfwhbc.dll -->18.12.2006 19:18:38
C:\WINDOWS\System32\spupdsvc.inf -->17.12.2006 18:19:27
C:\WINDOWS\System32\mcrh.tmp -->17.12.2006 14:26:34
C:\WINDOWS\System32\MRT.exe -->08.12.2006 00:13:44

C:\WINDOWS\BlendSettings.ini -->27.12.2006 14:42:40
C:\WINDOWS\WindowsUpdate.log -->27.12.2006 09:40:58
C:\WINDOWS\bootstat.dat -->27.12.2006 09:40:48
C:\WINDOWS\SchedLgU.Txt -->26.12.2006 23:29:25
C:\WINDOWS\QTFont.qfn -->26.12.2006 18:44:24
C:\WINDOWS\QTFont.for -->24.12.2006 16:04:06
C:\WINDOWS\cdPlayer.ini -->26.11.2006 14:29:21
C:\WINDOWS\Thumbs.db -->19.11.2006 16:47:33
C:\WINDOWS\SWPRODPB.INI -->06.11.2006 23:17:10
C:\WINDOWS\system.ini -->06.11.2006 22:46:44
C:\WINDOWS\cserve.ini -->01.11.2006 21:44:14
C:\WINDOWS\WMSysPr9.prx -->04.10.2006 19:46:53
C:\WINDOWS\mngui.INI -->28.09.2006 10:43:09
C:\WINDOWS\pavsig.txt -->08.09.2006 19:57:38
C:\WINDOWS\BricoPackFoldersDelete.cmd -->12.08.2006 16:08:45

C:\WINDOWS\ALCFDRTM.EXE |03/01/2002 17:07:42
C:\WINDOWS\alcrmv.exe |28/10/2004 16:12:26
C:\WINDOWS\alcupd.exe |28/10/2004 16:12:26
C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe |02/07/2005 17:43:37
C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe |17/07/2005 18:21:58
C:\WINDOWS\bwUnin-7.2.0.157-8876480SL.exe |02/04/2006 17:45:49
C:\WINDOWS\GPInstall.exe |09/02/2005 17:57:37
C:\WINDOWS\IsUn040c.exe |28/10/2004 15:57:55
C:\WINDOWS\IsUninst.exe |28/10/2004 15:45:05
C:\WINDOWS\iun6002.exe |20/07/2005 20:25:04
C:\WINDOWS\ScUnin.exe |24/09/2005 13:02:20
C:\WINDOWS\Setup1.exe |18/12/2004 13:14:19
C:\WINDOWS\slrundll.exe |28/10/2004 15:27:29
C:\WINDOWS\SOUNDMAN.EXE |28/10/2004 16:12:34
C:\WINDOWS\twunk_16.exe |24/04/2003 13:00:00
C:\WINDOWS\twunk_32.exe |24/04/2003 13:00:00
C:\WINDOWS\una2setup.exe |06/12/2004 20:06:03
C:\WINDOWS\unADesktop.exe |14/01/2005 15:43:51
C:\WINDOWS\unin040c.exe |16/02/2005 17:56:29
C:\WINDOWS\uninst.exe |18/08/2005 16:50:31
C:\WINDOWS\USBK700iphmgunin.exe |04/01/2002 19:44:54
C:\WINDOWS\twain.dll |24/04/2003 13:00:00
C:\WINDOWS\twain_32.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\AcSignOpt.exe |05/03/2005 13:18:15
C:\WINDOWS\system32\append.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\asuninst.exe |23/01/2006 20:11:05
C:\WINDOWS\system32\aswBoot.exe |02/11/2006 22:11:06
C:\WINDOWS\system32\ati2evxx.exe |29/09/2004 07:16:44
C:\WINDOWS\system32\Ati2mdxx.exe |29/09/2004 07:18:28
C:\WINDOWS\system32\ati2sgag.exe |28/10/2004 16:20:39
C:\WINDOWS\system32\debug.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\dmgr2.exe |25/03/2005 20:32:41
C:\WINDOWS\system32\dosx.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\dvdplay.exe |23/08/2001 18:47:34
C:\WINDOWS\system32\edlin.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\exe2bin.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\fastopen.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\java.exe |13/11/2006 18:41:29
C:\WINDOWS\system32\javaw.exe |13/11/2006 18:41:29
C:\WINDOWS\system32\javaws.exe |13/11/2006 18:41:29
C:\WINDOWS\system32\mem.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\mscdexnt.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\NeroCheck.exe |09/07/2001 11:50:42
C:\WINDOWS\system32\nlsfunc.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\redir.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\reico.exe |18/02/2005 18:17:11
C:\WINDOWS\system32\RTLCPL.EXE |28/10/2004 16:12:35
C:\WINDOWS\system32\setver.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\share.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\slrundll.exe |28/10/2004 15:27:30
C:\WINDOWS\system32\slserv.exe |28/10/2004 15:27:30
C:\WINDOWS\system32\SpoonUninstall.exe |17/04/2005 13:31:15
C:\WINDOWS\system32\UAService7.exe |27/03/2005 14:54:25
C:\WINDOWS\system32\Uharc.exe |18/02/2005 18:16:23
C:\WINDOWS\system32\usrmlnka.exe |23/08/2001 18:47:48
C:\WINDOWS\system32\usrprbda.exe |23/08/2001 18:47:48
C:\WINDOWS\system32\usrshuta.exe |23/08/2001 18:47:48
C:\WINDOWS\system32\a3d.dll |28/10/2004 16:12:34
C:\WINDOWS\system32\AcSignExt.dll |05/03/2005 13:18:09
C:\WINDOWS\system32\AcSignExtRes.dll |07/03/2005 19:00:01
C:\WINDOWS\system32\AcSignIcon.dll |05/03/2005 13:18:12
C:\WINDOWS\system32\amstream.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\ati2cqag.dll |28/10/2004 15:27:32
C:\WINDOWS\system32\ati2dvaa.dll |28/10/2004 15:27:32
C:\WINDOWS\system32\ati2dvag.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ati2edxx.dll |29/09/2004 07:18:20
C:\WINDOWS\system32\ati2evxx.dll |29/09/2004 07:18:08
C:\WINDOWS\system32\ati3d1ag.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ati3d2ag.dll |13/11/2003 21:10:54
C:\WINDOWS\system32\ati3duag.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ATIDDC.DLL |29/09/2004 07:16:22
C:\WINDOWS\system32\ATIDEMGR.dll |29/09/2004 09:32:34
C:\WINDOWS\system32\atiiiexx.dll |29/09/2004 09:58:44
C:\WINDOWS\system32\atikvmag.dll |21/02/2006 19:11:02
C:\WINDOWS\system32\atioglx1.dll |21/02/2006 19:27:14
C:\WINDOWS\system32\atioglxx.dll |29/09/2004 07:44:00
C:\WINDOWS\system32\atipdlxx.dll |29/09/2004 07:18:50
C:\WINDOWS\system32\atitvo32.dll |29/09/2004 06:36:20
C:\WINDOWS\system32\ativcoxx.dll |09/11/2001 10:01:04
C:\WINDOWS\system32\ativtmxx.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ativvaxx.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\atmfd.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\atmlib.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\Audio3D.dll |28/10/2004 16:12:34
C:\WINDOWS\system32\axgvpryj.dll |22/12/2006 18:22:25
C:\WINDOWS\system32\clrvidcc.dll |02/01/2005 21:33:57
C:\WINDOWS\system32\clrviddc.dll |11/08/1998 15:18:52
C:\WINDOWS\system32\CmdLineExt.dll |27/03/2005 14:54:25
C:\WINDOWS\system32\CNCS232.DLL |20/11/2003 14:09:09
C:\WINDOWS\system32\cncs32.dll |27/12/2005 18:15:46
C:\WINDOWS\system32\compatui.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\cpdymfnb.dll |22/12/2006 17:33:47
C:\WINDOWS\system32\cvfginer.dll |20/12/2006 22:39:02
C:\WINDOWS\system32\decdnet.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\dgrpsetu.dll |01/01/2002 00:07:13
C:\WINDOWS\system32\dgsetup.dll |01/01/2002 00:07:13
C:\WINDOWS\system32\DivX.dll |26/10/2004 23:38:23
C:\WINDOWS\system32\divxdec_0407.dll |26/10/2004 23:38:18
C:\WINDOWS\system32\divxdec_040c.dll |26/10/2004 23:38:18
C:\WINDOWS\system32\divxdec_0411.dll |26/10/2004 23:38:18
C:\WINDOWS\system32\divx_xx07.dll |26/10/2004 23:38:17
C:\WINDOWS\system32\divx_xx0c.dll |26/10/2004 23:38:18
C:\WINDOWS\system32\divx_xx11.dll |26/10/2004 23:38:18
C:\WINDOWS\system32\dmgrax2.dll |25/03/2005 20:32:31
C:\WINDOWS\system32\dpu10.dll |26/10/2004 23:39:03
C:\WINDOWS\system32\dpuGUI10.dll |26/10/2004 23:39:03
C:\WINDOWS\system32\dpus10.dll |26/10/2004 23:39:03
C:\WINDOWS\system32\dpv10.dll |26/10/2004 23:39:04
C:\WINDOWS\system32\efvnvkme.dll |21/12/2006 19:03:21
C:\WINDOWS\system32\encdec.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\encdnet.dll |02/01/2005 21:33:57
C:\WINDOWS\system32\EnumDev111.dll |23/10/2006 19:29:44
C:\WINDOWS\system32\EqnClass.Dll |01/01/2002 00:07:12
C:\WINDOWS\system32\GEARAspi.dll |19/09/2006 15:43:58
C:\WINDOWS\system32\gtmbnrcp.dll |20/12/2006 18:34:42
C:\WINDOWS\system32\hsfcisp2.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\hticons.dll |28/10/2004 15:48:03
C:\WINDOWS\system32\hypertrm.dll |28/10/2004 15:48:03
C:\WINDOWS\system32\iccvid.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\ieencode.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\imagr5.dll |21/09/2000 17:02:28
C:\WINDOWS\system32\imagx5.dll |27/09/2000 16:15:06
C:\WINDOWS\system32\ImagXpr5.dll |21/09/2000 12:53:00
C:\WINDOWS\system32\inetda.dll |02/08/2001 04:11:25
C:\WINDOWS\system32\IpLib.dll |23/10/2006 19:29:44
C:\WINDOWS\system32\ir32_32.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\ir41_qc.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ir41_qcx.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ir50_32.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ir50_qc.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ir50_qcx.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\isrdbg32.dll |28/10/2004 15:48:58
C:\WINDOWS\system32\jgaw400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgdw400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgmd400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgpl400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgsd400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgsh400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jrharjaq.dll |20/12/2006 18:14:51
C:\WINDOWS\system32\KMVIDC32.DLL |30/11/2004 18:40:54
C:\WINDOWS\system32\mdmxsdk.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\mdwmdmsp.dll |23/08/2001 18:47:06
C:\WINDOWS\system32\mrvdlg.dll |28/10/2004 16:17:56
C:\WINDOWS\system32\msdmo.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\msencode.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\msttxl16.dll |24/02/1998 23:21:00
C:\WINDOWS\system32\MSWAY.dll |26/12/2005 11:09:15
C:\WINDOWS\system32\msxwnet32.dll |16/05/2001 11:52:26
C:\WINDOWS\system32\mtxparhd.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\muaktpvk.dll |22/12/2006 17:02:55
C:\WINDOWS\system32\njimnfjf.dll |22/12/2006 17:37:05
C:\WINDOWS\system32\nv4_disp.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\odtpfici.dll |22/12/2006 19:44:55
C:\WINDOWS\system32\Oemdspif.dll |29/09/2004 07:18:36
C:\WINDOWS\system32\paqsp.dll |23/08/2001 18:47:16
C:\WINDOWS\system32\pdfcmnnt.dll |26/03/2006 10:49:45
C:\WINDOWS\system32\picn20.dll |21/09/2000 07:47:10
C:\WINDOWS\system32\pnc32301.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\pnc32401.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\pncrt.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\pndx5016.dll |26/11/2004 21:09:27
C:\WINDOWS\system32\pndx5032.dll |26/11/2004 21:09:27
C:\WINDOWS\system32\pnen3230.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\pneng101.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\PSIKey.dll |26/10/2004 23:38:24
C:\WINDOWS\system32\ptipbmf.dll |28/10/2004 16:18:41
C:\WINDOWS\system32\qedwipes.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\qt-mt331.dll |26/10/2004 23:39:05
C:\WINDOWS\system32\quxfwhbc.dll |18/12/2006 19:18:34
C:\WINDOWS\system32\RA3214_4.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\ra3228_8.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\ra32clv1.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\ra32dnet.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\ra32rv10.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\ra32sipr.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\rarv1032.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\rarv10en.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\RGSS100J.dll |11/06/2005 15:48:26
C:\WINDOWS\system32\rmevents.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\rmmerge2.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\rmoc3260.dll |26/11/2004 21:09:32
C:\WINDOWS\system32\Roboex32.dll |30/01/2005 14:44:37
C:\WINDOWS\system32\RTLCPAPI.dll |28/10/2004 16:12:34
C:\WINDOWS\system32\rvoqxscq.dll |19/12/2006 21:08:22
C:\WINDOWS\system32\s3gnb.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\sbe.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\SIntf16.dll |10/12/2004 17:11:20
C:\WINDOWS\system32\SIntf32.dll |10/12/2004 17:11:20
C:\WINDOWS\system32\SIntfNT.dll |10/12/2004 17:11:20
C:\WINDOWS\system32\slbcsp.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\slbiop.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\slbrccsp.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\slcoinst.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\slextspk.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\slgen.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\spnike.dll |23/08/2001 18:47:18
C:\WINDOWS\system32\sprio600.dll |23/08/2001 18:47:18
C:\WINDOWS\system32\sprio800.dll |23/08/2001 18:47:18
C:\WINDOWS\system32\spxcoins.dll |01/01/2002 00:07:12
C:\WINDOWS\system32\swxpckm.dll |19/11/2006 10:13:15
C:\WINDOWS\system32\tsd32.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\TwnLib20.dll |26/06/2000 10:45:30
C:\WINDOWS\system32\unrar.dll |06/12/2004 20:06:06
C:\WINDOWS\system32\unzip32.dll |05/12/2004 22:08:08
C:\WINDOWS\system32\usrcntra.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrcoina.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrdpa.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrdtea.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrfaxa.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrlbva.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrrtosa.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrsdpia.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrsvpia.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrv42a.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrv80a.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrvoica.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrvpa.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\vboxb410.dll |13/06/2001 03:52:44
C:\WINDOWS\system32\vboxp410.dll |13/06/2001 03:52:45
C:\WINDOWS\system32\vboxt410.dll |13/06/2001 03:52:45
C:\WINDOWS\system32\vturs.dll |05/12/2006 17:40:17
C:\WINDOWS\system32\wbhelp2.dll |02/11/2004 22:03:21
C:\WINDOWS\system32\wbqmyces.dll |22/12/2006 19:20:40
C:\WINDOWS\system32\WG1v2Lib.dll |23/10/2006 19:29:44
C:\WINDOWS\system32\wh2robo.dll |30/01/2005 14:44:37
C:\WINDOWS\system32\win87em.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\WmJoyFrc.dll |21/08/2006 14:02:54
C:\WINDOWS\system32\xmlparse.dll |08/12/2004 13:09:09
C:\WINDOWS\system32\xmltok.dll |08/12/2004 13:09:09
C:\WINDOWS\system32\ZPORT4AS.dll |23/01/2006 20:11:05

Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\WINDOWS\system32

19.08.2004 15:09 6'144 csrss.exe
1 fichier(s) 6'144 octets
0 Rép(s) 32'277'811'200 octets libres
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\WINDOWS\system32

25.03.2005 20:32 860'160 dmgr2.exe
1 fichier(s) 860'160 octets
0 Rép(s) 32'277'811'200 octets libres

Contenu de Downloaded Program Files
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\WINDOWS\Downloaded Program Files

26.12.2006 11:17 <REP> .
26.12.2006 11:17 <REP> ..
11.04.2006 16:10 135'168 asinst.dll
03.04.2006 10:00 537 asinst.inf
17.05.2006 13:32 198'304 avsniffdlgs.dll
17.05.2006 13:26 537'704 AXXPEE.dll
06.09.2006 00:00 2'504 catalog.dat
18.11.2006 12:20 <REP> CONFLICT.1
22.12.2006 18:18 <REP> CONFLICT.2
22.12.2006 18:18 <REP> CONFLICT.3
22.12.2006 18:18 <REP> CONFLICT.4
26.12.2006 11:17 <REP> CONFLICT.5
22.12.2006 18:18 <REP> CONFLICT.6
28.10.2004 15:49 65 desktop.ini
06.09.2006 00:00 6'899 ecbootil.vxd
17.05.2006 13:26 42'112 ecmldr32.dll
06.09.2006 00:00 272'040 ecmsvr32.dll
08.09.2004 22:38 1'271 erma.inf
14.02.2003 09:32 283'296 IDrop.ocx
14.02.2003 09:34 114'848 IDropENU.dll
13.03.2003 09:58 114'600 IDropFRA.dll
10.11.2005 13:05 876 jinstall-1_5_0_06.inf
29.11.2006 14:00 367 LegitCheckControl.inf
17.05.2006 13:28 6'850 navapi.vxd
17.05.2006 13:28 201'896 navapi32.dll
06.09.2006 00:00 124'584 naveng32.dll
06.09.2006 00:00 882'344 navex32a.dll
09.12.2005 14:47 24'576 playershim.dll
09.10.2003 10:32 144 QTPlugin.inf
06.09.2006 00:00 97'552 scrauth.dat
22.06.2006 10:41 5'032 swflash.inf
06.09.2006 00:00 14 symaveng.cat
06.09.2006 00:00 901 symaveng.inf
06.09.2006 00:00 48'797 tcdefs.dat
06.09.2006 00:00 966'264 tcscan7.dat
06.09.2006 00:00 315'136 tcscan8.dat
06.09.2006 00:00 659'400 tcscan9.dat
06.09.2006 00:00 453 tinf.dat
06.09.2006 00:00 148 tinfidx.dat
06.09.2006 00:00 1'957 tinfl.dat
06.09.2006 00:00 58'587 tscan1.dat
06.09.2006 00:00 3'027 tscan1hd.dat
06.09.2006 00:00 5'116 v.grd
06.09.2006 00:00 2'261 v.sig
06.09.2006 00:00 106'244 virscan.inf
06.09.2006 00:00 966'811 virscan1.dat
06.09.2006 00:00 569'712 virscan2.dat
06.09.2006 00:00 146'612 virscan3.dat
06.09.2006 00:00 320'186 virscan4.dat
06.09.2006 00:00 2'700'020 virscan5.dat
06.09.2006 00:00 389'301 virscan6.dat
06.09.2006 00:00 4'468'258 virscan7.dat
06.09.2006 00:00 1'593'724 virscan8.dat
06.09.2006 00:00 3'622'432 virscan9.dat
06.09.2006 00:00 32 virscant.dat
08.09.2006 21:30 2'072 vscanmsx.dat
06.09.2006 00:00 224 zdone.dat
49 fichier(s) 20'001'258 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.1

18.11.2006 12:20 <REP> .
18.11.2006 12:20 <REP> ..
0 fichier(s) 0 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.2

22.12.2006 18:18 <REP> .
22.12.2006 18:18 <REP> ..
0 fichier(s) 0 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.3

22.12.2006 18:18 <REP> .
22.12.2006 18:18 <REP> ..
0 fichier(s) 0 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.4

22.12.2006 18:18 <REP> .
22.12.2006 18:18 <REP> ..
0 fichier(s) 0 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.5

26.12.2006 11:17 <REP> .
26.12.2006 11:17 <REP> ..
0 fichier(s) 0 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.6

22.12.2006 18:18 <REP> .
22.12.2006 18:18 <REP> ..
0 fichier(s) 0 octets

Total des fichiers listés :
49 fichier(s) 20'001'258 octets
20 Rép(s) 32'277'807'104 octets libres

Recherche de rootkit! (Merci S!Ri)

Recherche d'infections connues




Liste des programmes installes

Ad-Aware SE Personal
Adobe Flash Player 9 ActiveX
Adobe Photoshop 6.0
Adobe Reader 7.0.8 - Français
Adobe SVG Viewer
adsl TV
Apple Software Update
Archiveur WinRAR
AsusUpdate
ATI - Utilitaire de désinstallation du logiciel
ATI Control Panel
ATI Display Driver
Audacity 1.2.4
AutoCAD 2006 - Français
Autodesk DWF Viewer
AutoUpdate
avast! Antivirus
AVG Anti-Spyware 7.5
BitTorrent 4.0.1
CCleaner (remove only)
DirectX for Managed Code Update (December 2004)
DivX Player
DivX Pro Trial
Download Accelerator Plus
EA SPORTS online 2006
Easy TM 2.4
eMule
FileZilla (remove only)
Freelancer
GeTax2005
Google Earth
Google Toolbar for Internet Explorer
Highway Pursuit v1.1
HijackThis 1.99.1
IGNMap 0.8.1
iTunes
J2SE Runtime Environment 5.0 Update 6
J2SE Runtime Environment 5.0 Update 9
K700i USB-Handset Manager
Language pack for Ad-Aware SE
Lecteur Windows Media 10
Logitech Desktop Messenger
Logitech Gaming Software
Logitech SetPoint
LX Systems Download Manager
Macromedia Shockwave Player
MediaLife
MediaTickets by OIN
Messenger Plus! 3 & Sponsor
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 French Language Pack
Microsoft .NET Framework 1.1 Hotfix (KB886903)
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0 Language Pack - FRA
Microsoft Game Studios Common Redistributables Pack 1
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Access MUI (French) 2007 (Beta)
Microsoft Office Excel MUI (French) 2007 (Beta)
Microsoft Office InfoPath MUI (French) 2007 (Beta)
Microsoft Office Outlook MUI (French) 2007 (Beta)
Microsoft Office PowerPoint MUI (French) 2007 (Beta)
Microsoft Office Professional 2007 (Beta)
Microsoft Office Professional Plus 2007 (Beta)
Microsoft Office Proof (Arabic) 2007 (Beta)
Microsoft Office Proof (Dutch) 2007 (Beta)
Microsoft Office Proof (English) 2007 (Beta)
Microsoft Office Proof (French) 2007 (Beta)
Microsoft Office Proof (German) 2007 (Beta)
Microsoft Office Proof (Spanish) 2007 (Beta)
Microsoft Office Publisher MUI (French) 2007 (Beta)
Microsoft Office Shared MUI (French) 2007 (Beta)
Microsoft Office Word MUI (French) 2007 (Beta)
Microsoft XML Parser
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA
MSXML 4.0 SP2 (KB927978)
MSXML4 Parser
Nero - Burning Rom
NHL06
Oblivion
Package de base Microsoft de service de chiffrement pour cartes à puce
Panda ActiveScan
PDFCreator
Plasma Pong v1.2
PowerDVD
Prince of Persia T2T
Prince of Persia The Two Thrones
QuickTime
RealPlayer
Realtek AC'97 Audio
Rise Of Legends
Rise Of Legends
Rise of Nations
Security Update for Microsoft .NET Framework 2.0 (KB917283)
Security Update pour Microsoft .NET Framework 2.0 (KB922770)
Sony Ericsson Capability Manager
Sony Ericsson Mobile Phone Monitor
Spybot - Search & Destroy 1.4
Starcraft
Steganos Internet Anonym 7.1.6
TrackMania Nations ESWC 0.1.7.5
Watchtower Library 2005 - Édition française
WebFldrs XP
WG111v2 Configuration Utility
Windows Defender
Windows Defender Signatures
Windows Genuine Advantage Notifications (KB905474)
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Media Connect
Windows Media Format Runtime
Windows XP Service Pack 2



Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\Program Files

26.12.2006 11:19 <REP> .
26.12.2006 11:19 <REP> ..
11.09.2005 12:49 <REP> A4DeskMag2
24.11.2005 18:37 <REP> Admiresoft
26.03.2006 11:33 <REP> Adobe
13.11.2006 18:27 <REP> adslTV
17.11.2005 22:30 <REP> Adverts
01.01.2002 14:00 <REP> Ahead
06.02.2006 21:55 <REP> Alwil Software
07.06.2005 21:58 <REP> America's Army
05.11.2006 13:44 <REP> AnswerWorks 4.0
06.11.2006 21:17 <REP> Apple Software Update
25.03.2005 19:06 <REP> Ashampoo
28.10.2004 15:45 <REP> ASUS
28.10.2004 16:20 <REP> ATI Technologies
02.08.2006 19:03 <REP> Audacity
05.11.2006 13:49 <REP> AutoCAD 2006
04.11.2006 21:25 <REP> Autodesk
24.11.2005 18:36 <REP> AV MP3 Player-Morpher
28.10.2004 16:12 <REP> AvRack
19.04.2005 17:36 <REP> BitTorrent
27.03.2005 20:03 <REP> BoontyGames
18.11.2006 23:03 <REP> CCleaner
12.01.2006 18:02 <REP> Clash N Slash
14.01.2006 15:33 <REP> Common Files
07.02.2006 21:16 <REP> Comodo
28.10.2004 15:48 <REP> ComPlus Applications
29.10.2006 15:16 <REP> Corel(R) Painter(TM) IX.5 TBYB FR
21.03.2005 19:10 <REP> Creative
01.01.2002 13:57 <REP> CyberLink
26.12.2006 11:17 <REP> DAP
22.11.2004 21:21 <REP> directx
20.11.2004 10:31 <REP> DivX
17.04.2006 13:28 <REP> DOSBox-0.65
15.04.2006 11:42 <REP> D-Tools
18.11.2006 12:12 <REP> Easy TM
02.01.2002 16:26 <REP> eMule
21.06.2005 17:15 <REP> eoRezo
19.11.2006 13:26 <REP> Fichiers communs
03.04.2006 18:42 <REP> FileZilla
27.06.2005 21:22 <REP> FlashFXP
02.11.2006 22:05 <REP> F-Secure
11.03.2005 17:33 <REP> Game_Maker6
26.03.2006 11:34 <REP> GeTax2005
31.10.2006 21:26 <REP> Google
22.12.2006 17:10 <REP> Grisoft
30.04.2005 19:00 <REP> GSC Game World
12.09.2005 20:08 <REP> IDM Computer Solutions
18.12.2006 22:13 <REP> IGN
24.09.2006 12:39 <REP> IKEA HomePlanner
17.04.2005 13:31 <REP> Illustrate
28.10.2004 16:03 <REP> Intel
11.01.2006 18:47 <REP> InterActual
17.12.2006 18:21 <REP> Internet Explorer
06.11.2006 21:21 <REP> iPod
06.11.2006 21:22 <REP> iTunes
13.11.2006 18:41 <REP> Java
08.12.2004 12:57 <REP> K700i USB-Handset Manager
04.11.2006 16:24 <REP> Lavasoft
27.12.2005 12:02 <REP> Lecteur CANALPLAY
17.06.2006 13:00 <REP> LimeWire
21.08.2006 14:02 <REP> Logitech
15.05.2005 16:17 <REP> LucasFan Games
25.03.2005 20:32 <REP> LX Download Manager
23.01.2006 20:24 <REP> Messenger
24.09.2006 12:33 <REP> Messenger Plus! 3
28.10.2004 15:50 <REP> microsoft frontpage
23.05.2006 16:36 <REP> Microsoft Games
05.11.2006 13:44 <REP> Microsoft Office
02.07.2006 20:05 <REP> Microsoft Visual Studio
02.07.2006 20:04 <REP> Microsoft Works
02.07.2006 20:04 <REP> Microsoft.NET
16.12.2006 16:54 <REP> Movie Maker
09.01.2006 17:35 <REP> Mozilla Firefox
02.07.2006 20:05 <REP> MSBuild
28.10.2004 15:48 <REP> MSN
28.10.2004 15:48 <REP> MSN Gaming Zone
02.11.2006 22:24 <REP> MSN Messenger
17.11.2006 19:02 <REP> MSXML 4.0
12.09.2005 17:19 <REP> MUSICMATCH
19.04.2005 20:10 <REP> NASA
23.10.2006 19:29 <REP> NETGEAR
28.10.2004 15:26 <REP> NetMeeting
07.09.2006 14:40 <REP> Notepad++
04.01.2002 18:33 <REP> OfficeUpdate11
11.12.2006 19:03 <REP> Opera
16.12.2006 16:54 <REP> Outlook Express
26.03.2006 10:50 <REP> PDFCreator
16.05.2005 17:39 <REP> PeerGuardian pr14
09.03.2005 18:13 <REP> Plustech Inc
27.03.2005 13:48 <REP> PopCap Games
06.11.2006 21:20 <REP> QuickTime
26.11.2004 21:09 <REP> Real
28.10.2004 16:12 <REP> Realtek Sound Manager
21.08.2006 14:07 <REP> ReflexiveArcade
18.02.2005 18:07 <REP> ScreenSaver
23.01.2006 20:26 <REP> Secure Surfing Engine
28.10.2004 15:48 <REP> Services en ligne
28.09.2006 10:59 <REP> Sony Ericsson
01.05.2006 16:03 <REP> Spybot - Search & Destroy
04.11.2006 20:08 <REP> Spybot - Search & Destroy2
23.01.2006 20:26 <REP> Steganos Internet Anonym 7
27.12.2005 12:03 <REP> StreetFighter Flash
17.06.2006 12:53 <REP> TheTurtle
07.02.2006 18:22 <REP> Trustix
31.07.2005 12:04 <REP> Ubi Soft
08.12.2004 13:09 <REP> Ubisoft
01.06.2005 22:14 <REP> Ulead Systems
17.06.2006 12:59 <REP> Visicom Media
17.06.2005 19:32 <REP> VoipBuster.com
20.02.2006 19:44 <REP> Watchtower
09.03.2006 22:47 <REP> Webteh
18.11.2006 22:51 <REP> Windows Defender
05.11.2004 17:41 <REP> Windows Media Components
04.09.2006 19:43 <REP> Windows Media Connect 2
16.12.2006 16:54 <REP> Windows Media Player
28.10.2004 15:26 <REP> Windows NT
27.08.2005 19:55 <REP> WinHex
23.01.2006 20:26 <REP> WinRAR
28.10.2004 15:50 <REP> xerox
19.11.2006 13:26 <REP> ?ssembly
04.11.2006 12:26 <REP> ??stem
0 fichier(s) 0 octets
122 Rép(s) 32'277'479'424 octets libres
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\Program Files\fichiers communs

19.11.2006 13:26 <REP> .
19.11.2006 13:26 <REP> ..
26.03.2006 11:33 <REP> Adobe
05.11.2006 13:50 <REP> Autodesk Shared
05.08.2006 10:52 <REP> AVSMedia
05.11.2006 13:44 <REP> DESIGNER
21.11.2004 15:01 <REP> InstallShield
05.09.2006 20:30 <REP> Java
21.08.2006 14:02 <REP> Logitech
03.11.2004 19:17 <REP> Macrovision Shared
05.11.2006 13:44 <REP> Microsoft Shared
28.10.2004 15:48 <REP> MSSoap
01.01.2002 00:07 <REP> ODBC
24.09.2006 12:54 <REP> Panda Software
26.11.2004 21:09 <REP> Real
28.10.2004 15:48 <REP> Services
01.01.2002 00:07 <REP> SpeechEngines
20.06.2006 20:39 <REP> Synacast
16.12.2006 14:55 <REP> System
28.09.2006 10:59 <REP> Teleca Shared
26.11.2004 21:09 <REP> xing shared
22.12.2006 18:18 <REP> {84B2DB13-0C7E-1036-0924-040307090029}
0 fichier(s) 0 octets
22 Rép(s) 32'277'487'616 octets libres
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

02.07.2006 20:05 <REP> .
02.07.2006 20:05 <REP> ..
04.01.2002 18:27 <REP> 1033
02.07.2006 19:59 <REP> 1036
25.04.2006 20:33 967'952 MSONSEXT.DLL
02.05.2006 18:37 40'208 MSOSV.DLL
03.06.1999 13:09 122'937 MSOWS409.DLL
07.03.2001 08:00 127'033 MSOWS40c.DLL
11.07.2003 02:25 80'448 PKMWS.DLL
5 fichier(s) 1'338'578 octets
4 Rép(s) 32'277'487'616 octets libres
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\Program Files\common files

14.01.2006 15:33 <REP> .
14.01.2006 15:33 <REP> ..
21.08.2006 17:33 <REP> EasyInfo
20.02.2005 12:17 <REP> Stardock
0 fichier(s) 0 octets
4 Rép(s) 32'277'483'520 octets libres
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\

11.11.2001 00:00 68'096 diff.exe
27.08.2006 14:10 103'424 grep.exe
31.10.2005 16:56 700'416 StubInstaller.exe
24.05.2001 11:59 162'304 UNWISE.EXE
4 fichier(s) 1'034'240 octets
0 Rép(s) 32'277'483'520 octets libres
c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 7.0.2.16\iTunesSetupAdmin.exe
c:\Documents and Settings\Wxp\.limewire\.NetworkShare\LimeWireWin4.10.5.exe
c:\Documents and Settings\Wxp\.limewire\.NetworkShare\Incomplete\T-2840440-LimeWireWin4.10.9.exe
c:\Documents and Settings\Wxp\Bureau\avgas-setup-7.5.0.50.exe
c:\Documents and Settings\Wxp\Bureau\blbeta.exe
c:\Documents and Settings\Wxp\Bureau\drweb-cureit.exe
c:\Documents and Settings\Wxp\Bureau\mwav.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix.exe
c:\Documents and Settings\Wxp\Bureau\VundoFix.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\diff.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\FilesInfoCmd.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\grep.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\LFiles.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\LISTDLLS.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\streams.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\swreg.exe
c:\Documents and Settings\Wxp\Bureau\newbie\crackme1.exe
c:\Documents and Settings\Wxp\Bureau\newbie\stega11.exe
c:\Documents and Settings\Wxp\Bureau\newbie\stega22.exe
c:\Documents and Settings\Wxp\Bureau\newbie\stega4.exe
c:\Documents and Settings\Wxp\Bureau\newbie\HexDecCharEditor\HexDecCharEditor.exe
c:\Documents and Settings\Wxp\Bureau\newbie\Nouveau dossier\ocamlq-public[1].exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\dumphive.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\GenericRenosFix.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\Reboot.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\SmiUpdate.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\SrchSTS.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\swreg.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\swsc.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\swxcacls.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\unzip.exe
c:\Documents and Settings\Wxp\Bureau\Steganos Updates\sia7int.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\A0190033.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\A0190035.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\agfherdb.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\amwskrut.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\aolelmeq.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\aqusnwid.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\astpbqig.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\audimhij.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\aupgnxlj.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\bbjudflx.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\bddoirhx.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\bifvcaqc.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\bldhynhq.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\bnyvvhbm.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\cdjwyfix.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\cfvbcrlo.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\cgfvpsjm.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\cgtyqlrr.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\cjgiktsa.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ckxhgpdf.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\crdwqqep.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ddvvohgd.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\difwtfvm.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\dikmwqyc.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\dowllovy.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\dqacyhwy.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\dqxktplr.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\dtsijbas.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\duajsngx.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\dunxmasq.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\duoollxq.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\dwarqyok.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ealavluy.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\edeeccww.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\elsdjceh.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\eoffqsqk.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\exrkvkgu.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\fopwmgdy.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\Fport.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\fskmtsbm.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ftboxnxl.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\fvsidooy.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\gardhtfc.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\gktfxipw.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\gncopicl.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\gobrxtwv.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\guxarogi.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\gvopwqdu.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\gyjqeywt.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\hgcddihu.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\hjqqbfii.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\hsrjerlt.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\hxdfpeav.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ikicnabt.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\imonihvr.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\itdgccxx.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\iuviiqct.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\jkrmhoip.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\katadsql.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\krplutvf.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ksmnegtd.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\kunweeey.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\kvrmyshi.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ldguntat.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\lvvoqgqi.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\mcldsfkv.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\mgxpvprt.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\mjwgqnkh.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\musqllhf.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\mvtnxnrp.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\mydcfiom.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\mykecmyy.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ndjhporp.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\nfqwphvg.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\nhsraulq.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\nloyoorh.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\nnddeawh.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ntfwbkns.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\nwkrfcck.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\odabjrlj.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ogpsrlax.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ohnjbmtx.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ohpkqvys.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\oprsgstw.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\otfoegrk.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\owyllmmu.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\pfodbooc.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\pgshdnsa.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\phlkcrom.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\pmqbsdfq.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\Process.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\pslist.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\qktboyra.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\qnstnlpd.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\qobxyqqr.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\quwjqcea.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\rbneyqpm.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\restart.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\rriktdeh.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\sgbpxmer.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\sqogavnb.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\stuctgge.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\stxubqlj.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\sufgwnyi.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\svyywssj.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\tdbxowgv.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\tduxgeqv.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\tioxqmer.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\tnhgecfn.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\tqdncpme.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\txhihndo.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ubhieikw.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\uglxpxxn.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ujopqkeq.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\unutsgdr.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\vanlhmqa.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\veeqhdea.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\vfnvmtsv.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\vjbmfnse.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\vltjjnrm.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\vsekpwgr.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\vvnidnif.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\vynxttnq.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\waodljik.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\wbxcojle.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\whudvlfi.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\wticjrpl.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\xcbphrhg.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\xcrnlyax.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\xlltauir.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\xonmwfdy.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\xpeisose.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\xsvgmppc.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\xwlplaqj.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ybthtjqe.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ybulhxpc.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\yifydmhf.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ylafajue.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ylorutgu.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\yltenhbs.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ynktjcxl.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\ytqesnjf.exe
c:\Documents and Settings\Wxp\DoctorWeb\Quarantine\yyqrwrsj.exe
c:\Documents and Settings\Wxp\Local Settings\Temp\Uninst.exe
c:\Documents and Settings\Wxp\Local Settings\Temp\AUG2005DXREDIST\DXSETUP.exe
c:\Documents and Settings\Wxp\Mes documents\Ma musique\Adoprixtixics\4dsportdriving\LOAD.EXE
c:\Documents and Settings\Wxp\Mes documents\Ma musique\Adoprixtixics\4dsportdriving\SETUP.EXE
c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Default\MpEngine.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{05D79D39-D5A6-4866-9582-579B32CEA05A}\mpengine.dll
c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll
c:\Documents and Settings\Wxp\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll
0
Réponse 24 / 30
Utilisateur anonyme
28 déc. 2006 à 00:24
Bonjour

c'est déja mieux.
Encore quelques corrections.

Une partie de la procédure se déroulera sans avoir accès à internet, prière d'imprimer ces instructions, ou de les coller dans un fichier texte, pour lecture durant cette désinfection.
Les manipulations sont à faire sans interruption et dans l'ordre.
Si tu ne comprends pas quelque chose, demande des explications avant de commencer


1 Redémarre en mode sans échec. Attention, tu n'as pas accès à internet dans ce mode, note bien ce que tu as à faire.
Démarre l'ordinateur.
Une fois le chargement du BIOS terminé, il y a un écran noir. Appuye sur la touche F8 ou F5 jusqu'à l'affichage du menu des options avancées de Windows.
En utilisant les touches du curseur, sélectionne le mode sans échec approprié et appuye sur Entrée.


2 Assure toi d'avoir accés à tous les fichiers.
Démarrer, Poste de travail ou autre dossier, Menu Outils, Option des dossiers, onglet Affichage :
Activer la case : Afficher les fichiers et dossiers cachés
Désactiver la case : Masquer les extensions des fichiers dont le type est connu
Désactiver la case : Masquer les fichiers protégés du système d'exploitation
Puis Appliquer


3 Désinstalle ces applications (si tu les trouves) dans Ajout-Suppression de programmes :

MediaTickets by OIN
Adverts
?ssembly
??stem


4 Supprime les fichiers/dossiers incriminés (s'ils existent encore) :

C:\Program Files\MediaTickets by OIN
C:\Program Files\Adverts
C:\Program Files\?ssembly
C:\Program Files\??stem
c:\Documents and Settings\Wxp\Bureau\avgas-setup-7.5.0.50.exe
c:\Documents and Settings\Wxp\Bureau\blbeta.exe
c:\Documents and Settings\Wxp\Bureau\drweb-cureit.exe
c:\Documents and Settings\Wxp\Bureau\mwav.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix.exe
c:\Documents and Settings\Wxp\DoctorWeb
C:\WINDOWS\System32\xwjoalvq.ini
C:\WINDOWS\System32\odtpfici.dll
C:\WINDOWS\System32\wbqmyces.dll
C:\WINDOWS\System32\axgvpryj.dll
C:\WINDOWS\System32\njimnfjf.dll
C:\WINDOWS\System32\cpdymfnb.dll
C:\WINDOWS\System32\cbhwfxuq.ini
C:\WINDOWS\System32\muaktpvk.dll
C:\WINDOWS\System32\efvnvkme.dll
C:\WINDOWS\System32\cvfginer.dll
C:\WINDOWS\System32\gtmbnrcp.dll
C:\WINDOWS\System32\jrharjaq.dll
C:\WINDOWS\System32\rvoqxscq.dll
C:\WINDOWS\System32\quxfwhbc.dll
C:\WINDOWS\system32\vturs.dll
c:\WINDOWS\system32\dmgr2.exe

Recache les fichiers systeme afin de ne pas faire d'erreur à l'avenir en sélectionnant ne pas afficher les fichiers cachés ou les fichiers système.


5 Lance le nettoyage avec CCleaner


6 Redémarre normalement

Poste un nouveau rapport DiagHelp.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 30
legras Messages postés 21 Date d'inscription mercredi 20 décembre 2006 Statut Membre Dernière intervention 8 février 2008
30 déc. 2006 à 14:52
Et voila le dernier rapport Daig :

C:\WINDOWS\System32\wpa.dbl -->30.12.2006 14:45:58
C:\WINDOWS\System32\perfh00C.dat -->23.12.2006 10:56:18
C:\WINDOWS\System32\perfh009.dat -->23.12.2006 10:56:18
C:\WINDOWS\System32\perfc00C.dat -->23.12.2006 10:56:18
C:\WINDOWS\System32\perfc009.dat -->23.12.2006 10:56:18
C:\WINDOWS\System32\PerfStringBackup.INI -->23.12.2006 10:56:17
C:\WINDOWS\System32\tmp.txt -->22.12.2006 17:34:49
C:\WINDOWS\System32\tmp.reg -->22.12.2006 17:34:49
C:\WINDOWS\System32\quxfwhbc.dll -->18.12.2006 19:18:38
C:\WINDOWS\System32\spupdsvc.inf -->17.12.2006 18:19:27
C:\WINDOWS\System32\mcrh.tmp -->17.12.2006 14:26:34
C:\WINDOWS\System32\MRT.exe -->08.12.2006 00:13:44
C:\WINDOWS\System32\wmvcore.dll -->07.12.2006 06:29:34
C:\WINDOWS\System32\vturs.dll -->05.12.2006 17:40:25
C:\WINDOWS\System32\LegitCheckControl.DLL -->29.11.2006 16:31:32
C:\WINDOWS\System32\swxpckm.dll -->19.11.2006 10:13:15
C:\WINDOWS\System32\FNTCACHE.DAT -->19.11.2006 10:08:47
C:\WINDOWS\System32\jupdate-1.5.0_09-b03.log -->13.11.2006 18:41:28
C:\WINDOWS\System32\CmdLineExt.dll -->12.11.2006 19:50:00
C:\WINDOWS\System32\inetcomm.dll -->08.11.2006 06:07:30
C:\WINDOWS\System32\TitanPokerIconDropTRA108.ico -->04.11.2006 16:42:53
C:\WINDOWS\System32\MobileSidewalkRON_2.ico -->04.11.2006 16:32:42
C:\WINDOWS\System32\msxml4.dll -->04.11.2006 14:14:00
C:\WINDOWS\System32\CONFIG.NT -->02.11.2006 22:11:17
C:\WINDOWS\System32\Thumbs.db -->01.11.2006 21:37:45

C:\WINDOWS\WindowsUpdate.log -->30.12.2006 14:45:53
C:\WINDOWS\SchedLgU.Txt -->30.12.2006 14:45:49
C:\WINDOWS\bootstat.dat -->30.12.2006 14:45:47
C:\WINDOWS\BlendSettings.ini -->29.12.2006 23:46:37
C:\WINDOWS\QTFont.qfn -->28.12.2006 20:05:26
C:\WINDOWS\QTFont.for -->24.12.2006 16:04:06
C:\WINDOWS\cdPlayer.ini -->26.11.2006 14:29:21
C:\WINDOWS\Thumbs.db -->19.11.2006 16:47:33
C:\WINDOWS\SWPRODPB.INI -->06.11.2006 23:17:10
C:\WINDOWS\system.ini -->06.11.2006 22:46:44
C:\WINDOWS\cserve.ini -->01.11.2006 21:44:14
C:\WINDOWS\WMSysPr9.prx -->04.10.2006 19:46:53
C:\WINDOWS\mngui.INI -->28.09.2006 10:43:09
C:\WINDOWS\pavsig.txt -->08.09.2006 19:57:38
C:\WINDOWS\BricoPackFoldersDelete.cmd -->12.08.2006 16:08:45

C:\WINDOWS\ALCFDRTM.EXE |03/01/2002 17:07:42
C:\WINDOWS\alcrmv.exe |28/10/2004 16:12:26
C:\WINDOWS\alcupd.exe |28/10/2004 16:12:26
C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe |02/07/2005 17:43:37
C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe |17/07/2005 18:21:58
C:\WINDOWS\bwUnin-7.2.0.157-8876480SL.exe |02/04/2006 17:45:49
C:\WINDOWS\GPInstall.exe |09/02/2005 17:57:37
C:\WINDOWS\IsUn040c.exe |28/10/2004 15:57:55
C:\WINDOWS\IsUninst.exe |28/10/2004 15:45:05
C:\WINDOWS\iun6002.exe |20/07/2005 20:25:04
C:\WINDOWS\ScUnin.exe |24/09/2005 13:02:20
C:\WINDOWS\Setup1.exe |18/12/2004 13:14:19
C:\WINDOWS\slrundll.exe |28/10/2004 15:27:29
C:\WINDOWS\SOUNDMAN.EXE |28/10/2004 16:12:34
C:\WINDOWS\twunk_16.exe |24/04/2003 13:00:00
C:\WINDOWS\twunk_32.exe |24/04/2003 13:00:00
C:\WINDOWS\una2setup.exe |06/12/2004 20:06:03
C:\WINDOWS\unADesktop.exe |14/01/2005 15:43:51
C:\WINDOWS\unin040c.exe |16/02/2005 17:56:29
C:\WINDOWS\uninst.exe |18/08/2005 16:50:31
C:\WINDOWS\USBK700iphmgunin.exe |04/01/2002 19:44:54
C:\WINDOWS\twain.dll |24/04/2003 13:00:00
C:\WINDOWS\twain_32.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\AcSignOpt.exe |05/03/2005 13:18:15
C:\WINDOWS\system32\append.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\asuninst.exe |23/01/2006 20:11:05
C:\WINDOWS\system32\aswBoot.exe |02/11/2006 22:11:06
C:\WINDOWS\system32\ati2evxx.exe |29/09/2004 07:16:44
C:\WINDOWS\system32\Ati2mdxx.exe |29/09/2004 07:18:28
C:\WINDOWS\system32\ati2sgag.exe |28/10/2004 16:20:39
C:\WINDOWS\system32\debug.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\dosx.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\dvdplay.exe |23/08/2001 18:47:34
C:\WINDOWS\system32\edlin.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\exe2bin.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\fastopen.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\java.exe |13/11/2006 18:41:29
C:\WINDOWS\system32\javaw.exe |13/11/2006 18:41:29
C:\WINDOWS\system32\javaws.exe |13/11/2006 18:41:29
C:\WINDOWS\system32\mem.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\mscdexnt.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\NeroCheck.exe |09/07/2001 11:50:42
C:\WINDOWS\system32\nlsfunc.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\redir.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\reico.exe |18/02/2005 18:17:11
C:\WINDOWS\system32\RTLCPL.EXE |28/10/2004 16:12:35
C:\WINDOWS\system32\setver.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\share.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\slrundll.exe |28/10/2004 15:27:30
C:\WINDOWS\system32\slserv.exe |28/10/2004 15:27:30
C:\WINDOWS\system32\SpoonUninstall.exe |17/04/2005 13:31:15
C:\WINDOWS\system32\UAService7.exe |27/03/2005 14:54:25
C:\WINDOWS\system32\Uharc.exe |18/02/2005 18:16:23
C:\WINDOWS\system32\usrmlnka.exe |23/08/2001 18:47:48
C:\WINDOWS\system32\usrprbda.exe |23/08/2001 18:47:48
C:\WINDOWS\system32\usrshuta.exe |23/08/2001 18:47:48
C:\WINDOWS\system32\a3d.dll |28/10/2004 16:12:34
C:\WINDOWS\system32\AcSignExt.dll |05/03/2005 13:18:09
C:\WINDOWS\system32\AcSignExtRes.dll |07/03/2005 19:00:01
C:\WINDOWS\system32\AcSignIcon.dll |05/03/2005 13:18:12
C:\WINDOWS\system32\amstream.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\ati2cqag.dll |28/10/2004 15:27:32
C:\WINDOWS\system32\ati2dvaa.dll |28/10/2004 15:27:32
C:\WINDOWS\system32\ati2dvag.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ati2edxx.dll |29/09/2004 07:18:20
C:\WINDOWS\system32\ati2evxx.dll |29/09/2004 07:18:08
C:\WINDOWS\system32\ati3d1ag.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ati3d2ag.dll |13/11/2003 21:10:54
C:\WINDOWS\system32\ati3duag.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ATIDDC.DLL |29/09/2004 07:16:22
C:\WINDOWS\system32\ATIDEMGR.dll |29/09/2004 09:32:34
C:\WINDOWS\system32\atiiiexx.dll |29/09/2004 09:58:44
C:\WINDOWS\system32\atikvmag.dll |21/02/2006 19:11:02
C:\WINDOWS\system32\atioglx1.dll |21/02/2006 19:27:14
C:\WINDOWS\system32\atioglxx.dll |29/09/2004 07:44:00
C:\WINDOWS\system32\atipdlxx.dll |29/09/2004 07:18:50
C:\WINDOWS\system32\atitvo32.dll |29/09/2004 06:36:20
C:\WINDOWS\system32\ativcoxx.dll |09/11/2001 10:01:04
C:\WINDOWS\system32\ativtmxx.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ativvaxx.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\atmfd.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\atmlib.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\Audio3D.dll |28/10/2004 16:12:34
C:\WINDOWS\system32\clrvidcc.dll |02/01/2005 21:33:57
C:\WINDOWS\system32\clrviddc.dll |11/08/1998 15:18:52
C:\WINDOWS\system32\CmdLineExt.dll |27/03/2005 14:54:25
C:\WINDOWS\system32\CNCS232.DLL |20/11/2003 14:09:09
C:\WINDOWS\system32\cncs32.dll |27/12/2005 18:15:46
C:\WINDOWS\system32\compatui.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\decdnet.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\dgrpsetu.dll |01/01/2002 00:07:13
C:\WINDOWS\system32\dgsetup.dll |01/01/2002 00:07:13
C:\WINDOWS\system32\DivX.dll |26/10/2004 23:38:23
C:\WINDOWS\system32\divxdec_0407.dll |26/10/2004 23:38:18
C:\WINDOWS\system32\divxdec_040c.dll |26/10/2004 23:38:18
C:\WINDOWS\system32\divxdec_0411.dll |26/10/2004 23:38:18
C:\WINDOWS\system32\divx_xx07.dll |26/10/2004 23:38:17
C:\WINDOWS\system32\divx_xx0c.dll |26/10/2004 23:38:18
C:\WINDOWS\system32\divx_xx11.dll |26/10/2004 23:38:18
C:\WINDOWS\system32\dmgrax2.dll |25/03/2005 20:32:31
C:\WINDOWS\system32\dpu10.dll |26/10/2004 23:39:03
C:\WINDOWS\system32\dpuGUI10.dll |26/10/2004 23:39:03
C:\WINDOWS\system32\dpus10.dll |26/10/2004 23:39:03
C:\WINDOWS\system32\dpv10.dll |26/10/2004 23:39:04
C:\WINDOWS\system32\encdec.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\encdnet.dll |02/01/2005 21:33:57
C:\WINDOWS\system32\EnumDev111.dll |23/10/2006 19:29:44
C:\WINDOWS\system32\EqnClass.Dll |01/01/2002 00:07:12
C:\WINDOWS\system32\GEARAspi.dll |19/09/2006 15:43:58
C:\WINDOWS\system32\hsfcisp2.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\hticons.dll |28/10/2004 15:48:03
C:\WINDOWS\system32\hypertrm.dll |28/10/2004 15:48:03
C:\WINDOWS\system32\iccvid.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\ieencode.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\imagr5.dll |21/09/2000 17:02:28
C:\WINDOWS\system32\imagx5.dll |27/09/2000 16:15:06
C:\WINDOWS\system32\ImagXpr5.dll |21/09/2000 12:53:00
C:\WINDOWS\system32\inetda.dll |02/08/2001 04:11:25
C:\WINDOWS\system32\IpLib.dll |23/10/2006 19:29:44
C:\WINDOWS\system32\ir32_32.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\ir41_qc.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ir41_qcx.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ir50_32.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ir50_qc.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\ir50_qcx.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\isrdbg32.dll |28/10/2004 15:48:58
C:\WINDOWS\system32\jgaw400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgdw400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgmd400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgpl400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgsd400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgsh400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\KMVIDC32.DLL |30/11/2004 18:40:54
C:\WINDOWS\system32\mdmxsdk.dll |28/10/2004 15:27:31
C:\WINDOWS\system32\mdwmdmsp.dll |23/08/2001 18:47:06
C:\WINDOWS\system32\mrvdlg.dll |28/10/2004 16:17:56
C:\WINDOWS\system32\msdmo.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\msencode.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\msttxl16.dll |24/02/1998 23:21:00
C:\WINDOWS\system32\MSWAY.dll |26/12/2005 11:09:15
C:\WINDOWS\system32\msxwnet32.dll |16/05/2001 11:52:26
C:\WINDOWS\system32\mtxparhd.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\nv4_disp.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\Oemdspif.dll |29/09/2004 07:18:36
C:\WINDOWS\system32\paqsp.dll |23/08/2001 18:47:16
C:\WINDOWS\system32\pdfcmnnt.dll |26/03/2006 10:49:45
C:\WINDOWS\system32\picn20.dll |21/09/2000 07:47:10
C:\WINDOWS\system32\pnc32301.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\pnc32401.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\pncrt.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\pndx5016.dll |26/11/2004 21:09:27
C:\WINDOWS\system32\pndx5032.dll |26/11/2004 21:09:27
C:\WINDOWS\system32\pnen3230.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\pneng101.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\PSIKey.dll |26/10/2004 23:38:24
C:\WINDOWS\system32\ptipbmf.dll |28/10/2004 16:18:41
C:\WINDOWS\system32\qedwipes.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\qt-mt331.dll |26/10/2004 23:39:05
C:\WINDOWS\system32\quxfwhbc.dll |18/12/2006 19:18:34
C:\WINDOWS\system32\RA3214_4.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\ra3228_8.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\ra32clv1.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\ra32dnet.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\ra32rv10.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\ra32sipr.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\rarv1032.dll |11/08/1998 15:18:44
C:\WINDOWS\system32\rarv10en.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\RGSS100J.dll |11/06/2005 15:48:26
C:\WINDOWS\system32\rmevents.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\rmmerge2.dll |02/01/2005 21:33:58
C:\WINDOWS\system32\rmoc3260.dll |26/11/2004 21:09:32
C:\WINDOWS\system32\Roboex32.dll |30/01/2005 14:44:37
C:\WINDOWS\system32\RTLCPAPI.dll |28/10/2004 16:12:34
C:\WINDOWS\system32\s3gnb.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\sbe.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\SIntf16.dll |10/12/2004 17:11:20
C:\WINDOWS\system32\SIntf32.dll |10/12/2004 17:11:20
C:\WINDOWS\system32\SIntfNT.dll |10/12/2004 17:11:20
C:\WINDOWS\system32\slbcsp.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\slbiop.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\slbrccsp.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\slcoinst.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\slextspk.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\slgen.dll |28/10/2004 15:27:30
C:\WINDOWS\system32\spnike.dll |23/08/2001 18:47:18
C:\WINDOWS\system32\sprio600.dll |23/08/2001 18:47:18
C:\WINDOWS\system32\sprio800.dll |23/08/2001 18:47:18
C:\WINDOWS\system32\spxcoins.dll |01/01/2002 00:07:12
C:\WINDOWS\system32\swxpckm.dll |19/11/2006 10:13:15
C:\WINDOWS\system32\tsd32.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\TwnLib20.dll |26/06/2000 10:45:30
C:\WINDOWS\system32\unrar.dll |06/12/2004 20:06:06
C:\WINDOWS\system32\unzip32.dll |05/12/2004 22:08:08
C:\WINDOWS\system32\usrcntra.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrcoina.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrdpa.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrdtea.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrfaxa.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrlbva.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrrtosa.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrsdpia.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrsvpia.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrv42a.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrv80a.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrvoica.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\usrvpa.dll |23/08/2001 18:47:20
C:\WINDOWS\system32\vboxb410.dll |13/06/2001 03:52:44
C:\WINDOWS\system32\vboxp410.dll |13/06/2001 03:52:45
C:\WINDOWS\system32\vboxt410.dll |13/06/2001 03:52:45
C:\WINDOWS\system32\vturs.dll |05/12/2006 17:40:17
C:\WINDOWS\system32\wbhelp2.dll |02/11/2004 22:03:21
C:\WINDOWS\system32\WG1v2Lib.dll |23/10/2006 19:29:44
C:\WINDOWS\system32\wh2robo.dll |30/01/2005 14:44:37
C:\WINDOWS\system32\win87em.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\WmJoyFrc.dll |21/08/2006 14:02:54
C:\WINDOWS\system32\xmlparse.dll |08/12/2004 13:09:09
C:\WINDOWS\system32\xmltok.dll |08/12/2004 13:09:09
C:\WINDOWS\system32\ZPORT4AS.dll |23/01/2006 20:11:05

Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\WINDOWS\system32

19.08.2004 15:09 6'144 csrss.exe
1 fichier(s) 6'144 octets
0 Rép(s) 32'159'334'400 octets libres

Contenu de Downloaded Program Files
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\WINDOWS\Downloaded Program Files

26.12.2006 11:17 <REP> .
26.12.2006 11:17 <REP> ..
11.04.2006 16:10 135'168 asinst.dll
03.04.2006 10:00 537 asinst.inf
17.05.2006 13:32 198'304 avsniffdlgs.dll
17.05.2006 13:26 537'704 AXXPEE.dll
06.09.2006 00:00 2'504 catalog.dat
18.11.2006 12:20 <REP> CONFLICT.1
22.12.2006 18:18 <REP> CONFLICT.2
22.12.2006 18:18 <REP> CONFLICT.3
22.12.2006 18:18 <REP> CONFLICT.4
26.12.2006 11:17 <REP> CONFLICT.5
22.12.2006 18:18 <REP> CONFLICT.6
28.10.2004 15:49 65 desktop.ini
06.09.2006 00:00 6'899 ecbootil.vxd
17.05.2006 13:26 42'112 ecmldr32.dll
06.09.2006 00:00 272'040 ecmsvr32.dll
08.09.2004 22:38 1'271 erma.inf
14.02.2003 09:32 283'296 IDrop.ocx
14.02.2003 09:34 114'848 IDropENU.dll
13.03.2003 09:58 114'600 IDropFRA.dll
10.11.2005 13:05 876 jinstall-1_5_0_06.inf
29.11.2006 14:00 367 LegitCheckControl.inf
17.05.2006 13:28 6'850 navapi.vxd
17.05.2006 13:28 201'896 navapi32.dll
06.09.2006 00:00 124'584 naveng32.dll
06.09.2006 00:00 882'344 navex32a.dll
09.12.2005 14:47 24'576 playershim.dll
09.10.2003 10:32 144 QTPlugin.inf
06.09.2006 00:00 97'552 scrauth.dat
22.06.2006 10:41 5'032 swflash.inf
06.09.2006 00:00 14 symaveng.cat
06.09.2006 00:00 901 symaveng.inf
06.09.2006 00:00 48'797 tcdefs.dat
06.09.2006 00:00 966'264 tcscan7.dat
06.09.2006 00:00 315'136 tcscan8.dat
06.09.2006 00:00 659'400 tcscan9.dat
06.09.2006 00:00 453 tinf.dat
06.09.2006 00:00 148 tinfidx.dat
06.09.2006 00:00 1'957 tinfl.dat
06.09.2006 00:00 58'587 tscan1.dat
06.09.2006 00:00 3'027 tscan1hd.dat
06.09.2006 00:00 5'116 v.grd
06.09.2006 00:00 2'261 v.sig
06.09.2006 00:00 106'244 virscan.inf
06.09.2006 00:00 966'811 virscan1.dat
06.09.2006 00:00 569'712 virscan2.dat
06.09.2006 00:00 146'612 virscan3.dat
06.09.2006 00:00 320'186 virscan4.dat
06.09.2006 00:00 2'700'020 virscan5.dat
06.09.2006 00:00 389'301 virscan6.dat
06.09.2006 00:00 4'468'258 virscan7.dat
06.09.2006 00:00 1'593'724 virscan8.dat
06.09.2006 00:00 3'622'432 virscan9.dat
06.09.2006 00:00 32 virscant.dat
08.09.2006 21:30 2'072 vscanmsx.dat
06.09.2006 00:00 224 zdone.dat
49 fichier(s) 20'001'258 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.1

18.11.2006 12:20 <REP> .
18.11.2006 12:20 <REP> ..
0 fichier(s) 0 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.2

22.12.2006 18:18 <REP> .
22.12.2006 18:18 <REP> ..
0 fichier(s) 0 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.3

22.12.2006 18:18 <REP> .
22.12.2006 18:18 <REP> ..
0 fichier(s) 0 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.4

22.12.2006 18:18 <REP> .
22.12.2006 18:18 <REP> ..
0 fichier(s) 0 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.5

26.12.2006 11:17 <REP> .
26.12.2006 11:17 <REP> ..
0 fichier(s) 0 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.6

22.12.2006 18:18 <REP> .
22.12.2006 18:18 <REP> ..
0 fichier(s) 0 octets

Total des fichiers listés :
49 fichier(s) 20'001'258 octets
20 Rép(s) 32'159'330'304 octets libres

Recherche de rootkit! (Merci S!Ri)

Recherche d'infections connues




Liste des programmes installes

Ad-Aware SE Personal
Adobe Flash Player 9 ActiveX
Adobe Photoshop 6.0
Adobe Reader 7.0.8 - Français
Adobe SVG Viewer
adsl TV
Apple Software Update
Archiveur WinRAR
AsusUpdate
ATI - Utilitaire de désinstallation du logiciel
ATI Control Panel
ATI Display Driver
Audacity 1.2.4
AutoCAD 2006 - Français
Autodesk DWF Viewer
AutoUpdate
avast! Antivirus
AVG Anti-Spyware 7.5
BitTorrent 4.0.1
CCleaner (remove only)
DirectX for Managed Code Update (December 2004)
DivX Player
DivX Pro Trial
Download Accelerator Plus
EA SPORTS online 2006
Easy TM 2.4
eMule
FileZilla (remove only)
Freelancer
GeTax2005
Google Earth
Google Toolbar for Internet Explorer
Highway Pursuit v1.1
HijackThis 1.99.1
IGNMap 0.8.1
iTunes
J2SE Runtime Environment 5.0 Update 6
J2SE Runtime Environment 5.0 Update 9
K700i USB-Handset Manager
Language pack for Ad-Aware SE
Lecteur Windows Media 10
Logitech Desktop Messenger
Logitech Gaming Software
Logitech SetPoint
LX Systems Download Manager
Macromedia Shockwave Player
MediaLife
Messenger Plus! 3 & Sponsor
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 French Language Pack
Microsoft .NET Framework 1.1 Hotfix (KB886903)
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0 Language Pack - FRA
Microsoft Game Studios Common Redistributables Pack 1
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Access MUI (French) 2007 (Beta)
Microsoft Office Excel MUI (French) 2007 (Beta)
Microsoft Office InfoPath MUI (French) 2007 (Beta)
Microsoft Office Outlook MUI (French) 2007 (Beta)
Microsoft Office PowerPoint MUI (French) 2007 (Beta)
Microsoft Office Professional 2007 (Beta)
Microsoft Office Professional Plus 2007 (Beta)
Microsoft Office Proof (Arabic) 2007 (Beta)
Microsoft Office Proof (Dutch) 2007 (Beta)
Microsoft Office Proof (English) 2007 (Beta)
Microsoft Office Proof (French) 2007 (Beta)
Microsoft Office Proof (German) 2007 (Beta)
Microsoft Office Proof (Spanish) 2007 (Beta)
Microsoft Office Publisher MUI (French) 2007 (Beta)
Microsoft Office Shared MUI (French) 2007 (Beta)
Microsoft Office Word MUI (French) 2007 (Beta)
Microsoft XML Parser
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA
MSXML 4.0 SP2 (KB927978)
MSXML4 Parser
Nero - Burning Rom
NHL06
Oblivion
Package de base Microsoft de service de chiffrement pour cartes à puce
Panda ActiveScan
PDFCreator
Plasma Pong v1.2
PowerDVD
Prince of Persia T2T
Prince of Persia The Two Thrones
QuickTime
RealPlayer
Realtek AC'97 Audio
Rise Of Legends
Rise Of Legends
Rise of Nations
Security Update for Microsoft .NET Framework 2.0 (KB917283)
Security Update pour Microsoft .NET Framework 2.0 (KB922770)
Sony Ericsson Capability Manager
Sony Ericsson Mobile Phone Monitor
Spybot - Search & Destroy 1.4
Starcraft
Steganos Internet Anonym 7.1.6
TrackMania Nations ESWC 0.1.7.5
Watchtower Library 2005 - Édition française
WebFldrs XP
WG111v2 Configuration Utility
Windows Defender
Windows Defender Signatures
Windows Genuine Advantage Notifications (KB905474)
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Media Connect
Windows Media Format Runtime
Windows XP Service Pack 2



Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\Program Files

30.12.2006 14:33 <REP> .
30.12.2006 14:33 <REP> ..
11.09.2005 12:49 <REP> A4DeskMag2
24.11.2005 18:37 <REP> Admiresoft
26.03.2006 11:33 <REP> Adobe
13.11.2006 18:27 <REP> adslTV
01.01.2002 14:00 <REP> Ahead
06.02.2006 21:55 <REP> Alwil Software
07.06.2005 21:58 <REP> America's Army
05.11.2006 13:44 <REP> AnswerWorks 4.0
06.11.2006 21:17 <REP> Apple Software Update
25.03.2005 19:06 <REP> Ashampoo
28.10.2004 15:45 <REP> ASUS
28.10.2004 16:20 <REP> ATI Technologies
02.08.2006 19:03 <REP> Audacity
05.11.2006 13:49 <REP> AutoCAD 2006
04.11.2006 21:25 <REP> Autodesk
24.11.2005 18:36 <REP> AV MP3 Player-Morpher
28.10.2004 16:12 <REP> AvRack
19.04.2005 17:36 <REP> BitTorrent
27.03.2005 20:03 <REP> BoontyGames
18.11.2006 23:03 <REP> CCleaner
12.01.2006 18:02 <REP> Clash N Slash
14.01.2006 15:33 <REP> Common Files
07.02.2006 21:16 <REP> Comodo
28.10.2004 15:48 <REP> ComPlus Applications
29.10.2006 15:16 <REP> Corel(R) Painter(TM) IX.5 TBYB FR
21.03.2005 19:10 <REP> Creative
01.01.2002 13:57 <REP> CyberLink
26.12.2006 11:17 <REP> DAP
22.11.2004 21:21 <REP> directx
20.11.2004 10:31 <REP> DivX
17.04.2006 13:28 <REP> DOSBox-0.65
15.04.2006 11:42 <REP> D-Tools
18.11.2006 12:12 <REP> Easy TM
02.01.2002 16:26 <REP> eMule
21.06.2005 17:15 <REP> eoRezo
30.12.2006 14:15 <REP> Fichiers communs
03.04.2006 18:42 <REP> FileZilla
27.06.2005 21:22 <REP> FlashFXP
02.11.2006 22:05 <REP> F-Secure
11.03.2005 17:33 <REP> Game_Maker6
26.03.2006 11:34 <REP> GeTax2005
31.10.2006 21:26 <REP> Google
22.12.2006 17:10 <REP> Grisoft
30.04.2005 19:00 <REP> GSC Game World
12.09.2005 20:08 <REP> IDM Computer Solutions
18.12.2006 22:13 <REP> IGN
24.09.2006 12:39 <REP> IKEA HomePlanner
17.04.2005 13:31 <REP> Illustrate
28.10.2004 16:03 <REP> Intel
11.01.2006 18:47 <REP> InterActual
17.12.2006 18:21 <REP> Internet Explorer
06.11.2006 21:21 <REP> iPod
06.11.2006 21:22 <REP> iTunes
13.11.2006 18:41 <REP> Java
08.12.2004 12:57 <REP> K700i USB-Handset Manager
04.11.2006 16:24 <REP> Lavasoft
27.12.2005 12:02 <REP> Lecteur CANALPLAY
17.06.2006 13:00 <REP> LimeWire
21.08.2006 14:02 <REP> Logitech
15.05.2005 16:17 <REP> LucasFan Games
25.03.2005 20:32 <REP> LX Download Manager
23.01.2006 20:24 <REP> Messenger
24.09.2006 12:33 <REP> Messenger Plus! 3
28.10.2004 15:50 <REP> microsoft frontpage
23.05.2006 16:36 <REP> Microsoft Games
05.11.2006 13:44 <REP> Microsoft Office
02.07.2006 20:05 <REP> Microsoft Visual Studio
02.07.2006 20:04 <REP> Microsoft Works
02.07.2006 20:04 <REP> Microsoft.NET
16.12.2006 16:54 <REP> Movie Maker
09.01.2006 17:35 <REP> Mozilla Firefox
02.07.2006 20:05 <REP> MSBuild
28.10.2004 15:48 <REP> MSN
28.10.2004 15:48 <REP> MSN Gaming Zone
02.11.2006 22:24 <REP> MSN Messenger
17.11.2006 19:02 <REP> MSXML 4.0
12.09.2005 17:19 <REP> MUSICMATCH
19.04.2005 20:10 <REP> NASA
23.10.2006 19:29 <REP> NETGEAR
28.10.2004 15:26 <REP> NetMeeting
07.09.2006 14:40 <REP> Notepad++
04.01.2002 18:33 <REP> OfficeUpdate11
11.12.2006 19:03 <REP> Opera
16.12.2006 16:54 <REP> Outlook Express
26.03.2006 10:50 <REP> PDFCreator
16.05.2005 17:39 <REP> PeerGuardian pr14
09.03.2005 18:13 <REP> Plustech Inc
27.03.2005 13:48 <REP> PopCap Games
06.11.2006 21:20 <REP> QuickTime
26.11.2004 21:09 <REP> Real
28.10.2004 16:12 <REP> Realtek Sound Manager
21.08.2006 14:07 <REP> ReflexiveArcade
18.02.2005 18:07 <REP> ScreenSaver
23.01.2006 20:26 <REP> Secure Surfing Engine
28.10.2004 15:48 <REP> Services en ligne
28.09.2006 10:59 <REP> Sony Ericsson
01.05.2006 16:03 <REP> Spybot - Search & Destroy
04.11.2006 20:08 <REP> Spybot - Search & Destroy2
23.01.2006 20:26 <REP> Steganos Internet Anonym 7
27.12.2005 12:03 <REP> StreetFighter Flash
17.06.2006 12:53 <REP> TheTurtle
07.02.2006 18:22 <REP> Trustix
31.07.2005 12:04 <REP> Ubi Soft
08.12.2004 13:09 <REP> Ubisoft
01.06.2005 22:14 <REP> Ulead Systems
17.06.2006 12:59 <REP> Visicom Media
17.06.2005 19:32 <REP> VoipBuster.com
20.02.2006 19:44 <REP> Watchtower
09.03.2006 22:47 <REP> Webteh
18.11.2006 22:51 <REP> Windows Defender
05.11.2004 17:41 <REP> Windows Media Components
04.09.2006 19:43 <REP> Windows Media Connect 2
16.12.2006 16:54 <REP> Windows Media Player
28.10.2004 15:26 <REP> Windows NT
27.08.2005 19:55 <REP> WinHex
23.01.2006 20:26 <REP> WinRAR
28.10.2004 15:50 <REP> xerox
19.11.2006 13:26 <REP> ?ssembly
04.11.2006 12:26 <REP> ??stem
0 fichier(s) 0 octets
121 Rép(s) 32'159'117'312 octets libres
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\Program Files\fichiers communs

30.12.2006 14:15 <REP> .
30.12.2006 14:15 <REP> ..
26.03.2006 11:33 <REP> Adobe
05.11.2006 13:50 <REP> Autodesk Shared
05.08.2006 10:52 <REP> AVSMedia
05.11.2006 13:44 <REP> DESIGNER
21.11.2004 15:01 <REP> InstallShield
05.09.2006 20:30 <REP> Java
21.08.2006 14:02 <REP> Logitech
03.11.2004 19:17 <REP> Macrovision Shared
05.11.2006 13:44 <REP> Microsoft Shared
28.10.2004 15:48 <REP> MSSoap
01.01.2002 00:07 <REP> ODBC
24.09.2006 12:54 <REP> Panda Software
26.11.2004 21:09 <REP> Real
28.10.2004 15:48 <REP> Services
01.01.2002 00:07 <REP> SpeechEngines
20.06.2006 20:39 <REP> Synacast
16.12.2006 14:55 <REP> System
28.09.2006 10:59 <REP> Teleca Shared
26.11.2004 21:09 <REP> xing shared
22.12.2006 18:18 <REP> {84B2DB13-0C7E-1036-0924-040307090029}
0 fichier(s) 0 octets
22 Rép(s) 32'159'113'216 octets libres
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

02.07.2006 20:05 <REP> .
02.07.2006 20:05 <REP> ..
04.01.2002 18:27 <REP> 1033
02.07.2006 19:59 <REP> 1036
25.04.2006 20:33 967'952 MSONSEXT.DLL
02.05.2006 18:37 40'208 MSOSV.DLL
03.06.1999 13:09 122'937 MSOWS409.DLL
07.03.2001 08:00 127'033 MSOWS40c.DLL
11.07.2003 02:25 80'448 PKMWS.DLL
5 fichier(s) 1'338'578 octets
4 Rép(s) 32'159'113'216 octets libres
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\Program Files\common files

14.01.2006 15:33 <REP> .
14.01.2006 15:33 <REP> ..
21.08.2006 17:33 <REP> EasyInfo
20.02.2005 12:17 <REP> Stardock
0 fichier(s) 0 octets
4 Rép(s) 32'159'113'216 octets libres
Le volume dans le lecteur C s'appelle Wxp
Le numéro de série du volume est 84B2-DB13

Répertoire de C:\

11.11.2001 00:00 68'096 diff.exe
27.08.2006 14:10 103'424 grep.exe
31.10.2005 16:56 700'416 StubInstaller.exe
24.05.2001 11:59 162'304 UNWISE.EXE
4 fichier(s) 1'034'240 octets
0 Rép(s) 32'159'113'216 octets libres
c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 7.0.2.16\iTunesSetupAdmin.exe
c:\Documents and Settings\Wxp\.limewire\.NetworkShare\LimeWireWin4.10.5.exe
c:\Documents and Settings\Wxp\.limewire\.NetworkShare\Incomplete\T-2840440-LimeWireWin4.10.9.exe
c:\Documents and Settings\Wxp\Bureau\VundoFix.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\diff.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\FilesInfoCmd.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\grep.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\LFiles.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\LISTDLLS.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\streams.exe
c:\Documents and Settings\Wxp\Bureau\DiagHelp\DiagHelp\swreg.exe
c:\Documents and Settings\Wxp\Bureau\newbie\crackme1.exe
c:\Documents and Settings\Wxp\Bureau\newbie\stega11.exe
c:\Documents and Settings\Wxp\Bureau\newbie\stega22.exe
c:\Documents and Settings\Wxp\Bureau\newbie\stega4.exe
c:\Documents and Settings\Wxp\Bureau\newbie\HexDecCharEditor\HexDecCharEditor.exe
c:\Documents and Settings\Wxp\Bureau\newbie\Nouveau dossier\ocamlq-public[1].exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\dumphive.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\GenericRenosFix.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\Reboot.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\SmiUpdate.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\SrchSTS.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\swreg.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\swsc.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\swxcacls.exe
c:\Documents and Settings\Wxp\Bureau\SmitfraudFix\unzip.exe
c:\Documents and Settings\Wxp\Bureau\Steganos Updates\sia7int.exe
c:\Documents and Settings\Wxp\Mes documents\Ma musique\Adoprixtixics\4dsportdriving\LOAD.EXE
c:\Documents and Settings\Wxp\Mes documents\Ma musique\Adoprixtixics\4dsportdriving\SETUP.EXE
c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Default\MpEngine.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{15BEA3B1-56BA-483F-B423-5FF9C3F2C64C}\mpengine.dll
c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll
c:\Documents and Settings\Wxp\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll
0
Réponse 26 / 30
Utilisateur anonyme
30 déc. 2006 à 19:21
Bonjour


C'est beaucoup mieux.


Télécharge Combofix.exe (par sUBs) sur ton Bureau
http://download.bleepingcomputer.com/sUBs/combofix.exe

Double clique combofix.exe et suis les invites.
Lorsque le scan sera complété, un rapport apparaîtra.
Copie/colle ce rapport dans ta prochaine réponse avec un nouveau HijackThis.
0
Réponse 27 / 30
legras Messages postés 21 Date d'inscription mercredi 20 décembre 2006 Statut Membre Dernière intervention 8 février 2008
31 déc. 2006 à 16:12
Alors voici le rapport de ce chère Hijackthis :

Logfile of HijackThis v1.99.1
Scan saved at 16:11:02, on 31.12.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SYSTEM32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Messenger Plus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Logitech\Profiler\lwemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\NETGEAR\WG111v2 Configuration Utility\RtlWake.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\NETGEAR\WG111v2 Configuration Utility\RtWLan.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\iTunes\iTunes.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://accounts.google.com/ServiceLogin?service=mail&passive=true&rm=false&continue=https://mail.google.com/mail/&ss=1&scc=1<mpl=default<mplcache=2&emr=1&osid=1
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~2\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: (no name) - {D60B6578-737A-4422-99B4-0ABEDEBA0C17} - (no file)
O3 - Toolbar: Steganos Internet Anonyme - {00000000-5736-4205-0008-2fe89c996183} - c:\program files\steganos internet anonym 7\sia7iep.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Start WingMan Profiler] "C:\Program Files\Logitech\Profiler\lwemon.exe" /noui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Accélérateur de démarrage AutoCAD.lnk = C:\Program Files\Fichiers communs\Autodesk Shared\acstart16.exe
O4 - Global Startup: WG111v2 Smart Wizard Wireless Setting.lnk = ?
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B7F9CDB8-BF58-4289-8669-EEA83434ED2E}: NameServer = 192.168.0.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: wingdm32 - wingdm32.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
0
Réponse 28 / 30
legras Messages postés 21 Date d'inscription mercredi 20 décembre 2006 Statut Membre Dernière intervention 8 février 2008
31 déc. 2006 à 16:13
Et du Combofix :

Wxp - 06-12-31 11:58:37.10 Service Pack 2
ComboFix 06.11.27 - Running from: "C:\Documents and Settings\Wxp\Bureau"

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\components
C:\Program Files\Fichiers communs\{84B2DB13-0C7E-1036-0924-040307090029}

~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

Folders Quarantined:

C:\QooBox\Purity\Program Files\SSEMBL~1
C:\QooBox\Purity\Program Files\STEM~1
C:\QooBox\Purity\Program Files\STEM~1\??stem


((((((((((((((((((((((((((((((( Files Created from 2006-11-31 to 2006-12-31 ))))))))))))))))))))))))))))))))))


2006-12-31 11:06 <REP> d--hs---- C:\Documents and Settings\Wxp\Recent
2006-12-24 18:05 <REP> d-------- C:\Documents and Settings\All Users\Application Data\POP3Profiles
2006-12-23 16:43 <REP> d-------- C:\Downloads
2006-12-23 16:43 <REP> d-------- C:\Bases
2006-12-23 16:42 <REP> d-------- C:\Kaspersky
2006-12-23 11:06 853 --a------ C:\reboot.cmd
2006-12-23 11:06 68,096 --a------ C:\diff.exe
2006-12-23 11:06 103,424 --a------ C:\grep.exe
2006-12-22 19:46 <REP> d-------- C:\VundoFix Backups
2006-12-22 17:10 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2006-12-22 17:10 <REP> d-------- C:\Program Files\Grisoft
2006-12-20 19:20 2,788 --a------ C:\WINDOWS\system32\tmp.reg
2006-12-20 18:43 <REP> d-------- C:\HijackThis
2006-12-18 22:13 <REP> d-------- C:\Program Files\IGN
2006-12-18 19:18 118,804 --a------ C:\WINDOWS\system32\quxfwhbc.dll
2006-12-05 17:40 90,164 --ahs---- C:\WINDOWS\system32\vturs.dll


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-12-31 11:59 -------- d-------- C:\Program Files\Fichiers communs
2006-12-26 17:02 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-12-26 11:17 -------- d-------- C:\Program Files\DAP
2006-12-23 10:56 -------- d---s---- C:\Documents and Settings\Wxp\Application Data\Microsoft
2006-12-17 18:21 -------- d-------- C:\Program Files\Internet Explorer
2006-12-16 16:54 -------- d-------- C:\Program Files\Windows Media Player
2006-12-16 16:54 -------- d-------- C:\Program Files\Outlook Express
2006-12-16 16:54 -------- d-------- C:\Program Files\Movie Maker
2006-12-16 14:55 -------- d-------- C:\Program Files\Fichiers communs\System
2006-12-11 19:03 -------- d-------- C:\Program Files\Opera
2006-12-07 06:29 2374472 --a------ C:\WINDOWS\system32\wmvcore.dll
2006-11-19 10:13 93696 --a------ C:\WINDOWS\system32\swxpckm.dll
2006-11-18 23:03 -------- d-------- C:\Program Files\CCleaner
2006-11-18 22:51 -------- d-------- C:\Program Files\Windows Defender
2006-11-18 12:12 -------- d-------- C:\Program Files\Easy TM
2006-11-17 19:02 -------- d-------- C:\Program Files\MSXML 4.0
2006-11-13 18:41 -------- d-------- C:\Program Files\Java
2006-11-13 18:27 -------- d-------- C:\Program Files\adslTV
2006-11-12 19:50 98304 --a------ C:\WINDOWS\system32\CmdLineExt.dll
2006-11-08 06:07 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-11-06 21:22 -------- d-------- C:\Program Files\iTunes
2006-11-06 21:21 -------- d-------- C:\Program Files\iPod
2006-11-06 21:20 -------- d-------- C:\Program Files\QuickTime
2006-11-06 21:17 -------- d-------- C:\Program Files\Apple Software Update
2006-11-05 22:27 -------- d-------- C:\Documents and Settings\Wxp\Application Data\vlc
2006-11-05 21:44 -------- d-------- C:\Documents and Settings\Wxp\Application Data\Opera
2006-11-05 13:50 -------- d-------- C:\Program Files\Fichiers communs\Autodesk Shared
2006-11-05 13:49 -------- d-------- C:\Program Files\AutoCAD 2006
2006-11-05 13:44 -------- d-------- C:\Program Files\Microsoft Office
2006-11-05 13:44 -------- d-------- C:\Program Files\Fichiers communs\Microsoft Shared
2006-11-05 13:44 -------- d-------- C:\Program Files\Fichiers communs\DESIGNER
2006-11-05 13:44 -------- d-------- C:\Program Files\AnswerWorks 4.0
2006-11-05 13:41 -------- d-------- C:\Documents and Settings\Wxp\Application Data\Autodesk
2006-11-04 21:25 -------- d-------- C:\Program Files\Autodesk
2006-11-04 20:08 -------- d-------- C:\Program Files\Spybot - Search & Destroy2
2006-11-04 16:25 -------- d-------- C:\Documents and Settings\Wxp\Application Data\Lavasoft
2006-11-04 16:24 -------- d-------- C:\Program Files\Lavasoft
2006-11-04 14:14 1245696 --a------ C:\WINDOWS\system32\msxml4.dll
2006-11-02 22:24 -------- d-------- C:\Program Files\MSN Messenger
2006-11-02 22:05 -------- d-------- C:\Program Files\F-Secure
2006-11-01 20:50 -------- d-------- C:\Documents and Settings\Wxp\Application Data\F-Secure
2006-10-31 21:26 -------- d-------- C:\Program Files\Google
2006-10-29 15:28 88 -r-hs---- C:\WINDOWS\system32\4393551409.sys
2006-10-29 15:28 2516 --ahsc--- C:\WINDOWS\system32\KGyGaAvL.sys
2006-10-20 02:38 716800 --a------ C:\WINDOWS\system32\sxs.dll
2006-10-13 13:36 145920 --a------ C:\WINDOWS\system32\nwprovau.dll


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"MessengerPlus3"="\"C:\\Program Files\\Messenger Plus! 3\\MsgPlus.exe\" /WinStart"
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"Start WingMan Profiler"="\"C:\\Program Files\\Logitech\\Profiler\\lwemon.exe\" /noui"
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
"ccleaner"="\"C:\\Program Files\\CCleaner\\ccleaner.exe\" /AUTO"
"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"ATIPTA"="C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe"
"MessengerPlus3"="\"C:\\Program Files\\Messenger Plus! 3\\MsgPlus.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_09\\bin\\jusched.exe\""
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""
"Windows Defender"="\"C:\\Program Files\\Windows Defender\\MSASCui.exe\" -hide"
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"KernelFaultCheck"=hex(2):25,73,79,73,74,65,6d,72,6f,6f,74,25,5c,73,79,73,74,\
65,6d,33,32,5c,64,75,6d,70,72,65,70,20,30,20,2d,6b,00

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"NoChange"="1"
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000003

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="C:\\WINDOWS\\SideBar\\sidebar\\index.html"
"SubscribedURL"="C:\\WINDOWS\\SideBar\\sidebar\\index.html"
"FriendlyName"="Longhorn SideBar"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,ea,01,00,00,01,00,00,00,96,00,00,00,c1,01,00,00,ec,\
03,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:01,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ea,01,00,00,01,00,00,00,96,00,00,00,c1,01,\
00,00,01,00,00,40
"RestoredStateInfo"=hex:18,00,00,00,13,01,00,00,1d,01,00,00,da,00,00,00,d2,00,\
00,00,01,00,00,40

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"SIA7"="\"C:\\Program Files\\Steganos Internet Anonym 7\\SIA7.exe\" -firstboot"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\runonce]
"SIA7"="\"C:\\Program Files\\Steganos Internet Anonym 7\\SIA7.exe\" -firstboot"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"="Microsoft AntiMalware ShellExecuteHook"
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000000

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"0aMCPClient"="{F5DF91F9-15E9-416B-A7C3-7519B11ECBFC}"
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.exe.lnk]
"path"="C:\\Documents and Settings\\All Users\\Menu Démarrer\\Programmes\\Démarrage\\Adobe Gamma Loader.exe.lnk"
"backup"="C:\\WINDOWS\\pss\\Adobe Gamma Loader.exe.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\FICHIE~1\\Adobe\\CALIBR~1\\ADOBEG~1.EXE "
"item"="Adobe Gamma Loader.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^VoipBuster.lnk]
"path"="C:\\Documents and Settings\\All Users\\Menu Démarrer\\Programmes\\Démarrage\\VoipBuster.lnk"
"backup"="C:\\WINDOWS\\pss\\VoipBuster.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\VOIPBU~1.COM\\VOIPBU~1\\VOIPBU~1.EXE -nosplash -minimized"
"item"="VoipBuster"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NeroCheck"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\system32\\\\NeroCheck.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PeerGuardian]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="PeerGuardian_1"
"hkey"="HKCU"
"command"="C:\\Program Files\\PeerGuardian pr14\\PeerGuardian_1.99b_pr14.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="qttask"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SOUNDMAN"
"hkey"="HKLM"
"command"="SOUNDMAN.EXE"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="jusched"
"hkey"="HKLM"
"command"="C:\\Program Files\\Java\\jre1.5.0_02\\bin\\jusched.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="realsched"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot"
"inimapping"="0"

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\wingdm32

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"



~ ~ ~ ~ ~ ~ ~ ~ Hijackthis Backups ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

backup-20061226-111707-214
O18 - Protocol: bwz0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-339
O18 - Protocol: bww0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-669
O18 - Protocol: bwx0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-370
O18 - Protocol: bww0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-947
O18 - Protocol: bwx0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-919
O18 - Protocol: bwy0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-284
O18 - Protocol: bwz0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-904
O18 - Protocol: bwy0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-625
O18 - Protocol: bwt0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-371
O18 - Protocol: bwv0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-507
O18 - Protocol: bws0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-471
O18 - Protocol: bwr0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-360
O18 - Protocol: bwv0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-133
O18 - Protocol: bws0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-520
O18 - Protocol: bwt0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-578
O18 - Protocol: bwu0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-187
O18 - Protocol: bwu0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-237
O18 - Protocol: bwn0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-971
O18 - Protocol: bwp0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-668
O18 - Protocol: bwp0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-647
O18 - Protocol: bwn0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-644
O18 - Protocol: bwo0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-495
O18 - Protocol: bwo0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-612
O18 - Protocol: bwq0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-967
O18 - Protocol: bwr0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-431
O18 - Protocol: bwq0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-984
O18 - Protocol: bwl0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-436
O18 - Protocol: bwl0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-900
O18 - Protocol: bwi0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-816
O18 - Protocol: bwm0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-980
O18 - Protocol: bwk0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-173
O18 - Protocol: bwj0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-901
O18 - Protocol: bwj0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-378
O18 - Protocol: bwm0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-478
O18 - Protocol: bwk0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-112
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
backup-20061226-111707-786
O18 - Protocol: bwg0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-310
O18 - Protocol: bwg0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-739
O18 - Protocol: bwh0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-256
O18 - Protocol: bwi0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-716
O18 - Protocol: bwh0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-420
O18 - Protocol: bwf0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-223
O18 - Protocol: bwf0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-820
O18 - Protocol: bwe0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-683
O18 - Protocol: bwe0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-416
O18 - Protocol: bwd0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-588
O18 - Protocol: bw90 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-449
O18 - Protocol: bwc0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-428
O18 - Protocol: bw90s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-201
O18 - Protocol: bwa0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-597
O18 - Protocol: bw80s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-844
O18 - Protocol: bwc0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-908
O18 - Protocol: bwa0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-393
O18 - Protocol: bwd0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-752
O18 - Protocol: bwb0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-404
O18 - Protocol: bwb0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-398
O18 - Protocol: bw60 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-394
O18 - Protocol: bw50 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-526
O18 - Protocol: bw80 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-259
O18 - Protocol: bw50s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-231
O18 - Protocol: bw70 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-216
O18 - Protocol: bw70s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-981
O18 - Protocol: bw60s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-745
O18 - Protocol: bw40s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-215
O18 - Protocol: bw-0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-188
O18 - Protocol: bw+0s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-443
O18 - Protocol: bw00s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-496
O18 - Protocol: bw20s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-888
O18 - Protocol: bw20 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-830
O18 - Protocol: bw10 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-315
O18 - Protocol: bw-0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-781
O18 - Protocol: bw00 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-200
O18 - Protocol: bw10s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-681
O18 - Protocol: bw30s - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-670
O18 - Protocol: bw30 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-649
O18 - Protocol: bw40 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111707-978
O18 - Protocol: bw+0 - {C67A9ECA-D2AF-4C2D-9CC8-E1B4AD2511C3} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
backup-20061226-111706-358
O16 - DPF: {A91DEB0D-AD0D-453E-9AC8-60178EC24212} (VPlayer Control) - http://video.vividas.com/CDN1/4325_Pepsi/web/player/vivid_ocx.jpeg
backup-20061226-111706-950
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
backup-20061226-111706-479
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
backup-20061226-111706-180
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - https://www.afternic.com/domains/drivecleaner.com
backup-20061226-111706-846
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
backup-20061226-111706-613
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
backup-20061226-111706-362
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
backup-20061226-111706-609
O9 - Extra button: Run DAP - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\PROGRA~1\DAP\DAP.EXE
backup-20061226-111705-672
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
backup-20061226-111705-795
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
backup-20061226-111705-845
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
backup-20061226-111705-135
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
backup-20061226-111705-830
O8 - Extra context menu item: &Download with &DAP - C:\PROGRA~1\DAP\dapextie.htm
backup-20061226-111705-443
O4 - HKLM\..\Run: [DownloadAccelerator] C:\PROGRA~1\DAP\DAP.EXE /STARTUP
backup-20061226-111705-495
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
backup-20061226-111705-851
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
backup-20061226-111705-334
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
backup-20061226-111705-905
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
backup-20061226-111705-576
O4 - HKLM\..\Run: [DllRunning] rundll32.exe "C:\WINDOWS\system32\qvlaojwx.dll",setvm
backup-20061226-111705-559
O8 - Extra context menu item: Download &all with DAP - C:\PROGRA~1\DAP\dapextie2.htm
backup-20061226-111705-706
O3 - Toolbar: DAP Bar - {62999427-33FC-4baf-9C9C-BCE6BD127F08} - C:\Program Files\DAP\DAPIEBar.dll
backup-20061226-111705-952
O2 - BHO: (no name) - {61E91E9C-BF33-6A6A-7BFC-00B25F19A7AE} - C:\WINDOWS\system32\urwzhx.dll (file missing)
backup-20061226-111705-824
O2 - BHO: (no name) - {36068946-CD51-1AC7-C4AD-044557583146} - C:\WINDOWS\system32\lctsupj.dll (file missing)
backup-20061226-111705-959
O2 - BHO: (no name) - {42E53C82-E11D-E01B-A428-084851DB6947} - C:\WINDOWS\system32\yzivngl.dll (file missing)
backup-20061226-111705-290
O2 - BHO: (no name) - {3FD6B99C-A275-46ea-8FD1-3D63986E51E4} - C:\WINDOWS\system32\hpvekfro.dll (file missing)
backup-20061226-111705-126
O2 - BHO: (no name) - {2527DC3F-C7A0-CF37-33EA-0525C1600A34} - C:\WINDOWS\system32\quqrbkl.dll
backup-20061226-111705-436
O2 - BHO: (no name) - {0964344D-C233-DAF1-2ADC-08C2A8D60810} - C:\WINDOWS\system32\hptukyk.dll
backup-20061226-111705-231
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
backup-20061226-111705-638
O2 - BHO: DAPHelper Class - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - C:\PROGRA~1\DAP\dapbho.dll
backup-20061226-111705-783
R3 - URLSearchHook: (no name) - {61C40C3D-BDD2-B627-D189-C569348CDBE4} - (no file)

Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\{DE596C44-D582-438D-BE6A-E311E18B1DC2}_MICHAEL_Wxp.job

Completion time: 06-12-31 11:59:51.34
C:\ComboFix.txt ... 06-12-31 11:59
0
Réponse 29 / 30
Utilisateur anonyme
31 déc. 2006 à 16:20
Re


Quelques lignes inutiles dans HijackThis
Relance un scan HijackThis et coche les lignes ci-dessous :

O2 - BHO: (no name) - {D60B6578-737A-4422-99B4-0ABEDEBA0C17} - (no file)
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O20 - Winlogon Notify: wingdm32 - wingdm32.dll (file missing)

Ferme toutes les fenêtres Windows, Internet explorer, Outlook,sauf le logiciel Hijackthis et clique sur « Fix checked »

Combofix a fait du ménage.


As tu encore des dysfonctionnements ?
0
Réponse 30 / 30
legras Messages postés 21 Date d'inscription mercredi 20 décembre 2006 Statut Membre Dernière intervention 8 février 2008
31 déc. 2006 à 17:51
Non tous à l'air de bien fonctionner, j'ai pu installer IE7 (pas de commentaires svp :~) ) et plus aucune pub non incorporé au site n'apparaissent, et l'ordi s'éteinds de plus en plus rapidement.

Merci en tous cas de votre aide.
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Paris multiple : explications de 2/3, 3/4, 2/4, 2/5, etc.
florent.c -
Aide -

85 réponses
Musique pub Skoda IV
SkodaIV -
Duck -

16 réponses
Cherche chanteur et titre chanson pub kinder noel 2023
Herme80 -
trekipat -

16 réponses