Sujet Précédent Sujet Suivant

Virus msn

maxime4611 Messages postés 361 Statut Membre -  
liguec1 Messages postés 1796 Statut Membre -
Bonjour,j ai du attraper le virus msn qui s apelle Win:Agent 32 que j ai trouver par avast.je le supprime mais a chaques fois il revien.comment faire pour l enlever svp!!!!
A voir également:

11 réponses

Réponse 1 / 11
liguec1 Messages postés 1796 Statut Membre 78
 
salut fais ca et post le rapport stp
télécharge GenProc de Jean-Chretien1 et Narco4 sur ton bureau
http://www.alt-shift-return.org/Info/Fichiers/GenProc.zip

lance genproc.bat et mes le rapport qui t'aura ouvert sur ce forum, fais ensuite exactement tous ce qu'il te demande
0
Réponse 2 / 11
maxime4611 Messages postés 361 Statut Membre 11
 
voila j ai fait tous ce qui etait demandé mais comment je fait pour savoir rapidement si je l ai toujourd paske avec avast il met 2 avant de le trouver!!!
0
Réponse 3 / 11
maxime4611 Messages postés 361 Statut Membre 11
 
dsl j ai mis 2 mais c est 2 heure pour que avast me trouve le virus
0
Réponse 4 / 11
liguec1 Messages postés 1796 Statut Membre 78
 
jaurai aimer que tu me mette les rapport comme demander au moins jaurai pu voir si il y etait encore
telecharge hijackthis et fais un scan avec et post moi le rapport
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 11
maxime4611 Messages postés 361 Statut Membre 11
 
sa c est le rapport de Genproc apres normalement la suppression du virus

System Report
*************

Run on 23/10/2007 at 18:25

Microsoft Windows XP [version 5.1.2600]

Current user is an administrator

Running Processes:

\SystemRoot\System32\smss.exe [684]
\??\C:\WINDOWS\system32\csrss.exe [744]
\??\C:\WINDOWS\system32\winlogon.exe [768]
C:\WINDOWS\system32\services.exe [812]
C:\WINDOWS\system32\lsass.exe [824]
C:\WINDOWS\system32\svchost.exe [972]
C:\WINDOWS\system32\svchost.exe [1028]
C:\WINDOWS\System32\svchost.exe [1064]
C:\WINDOWS\system32\svchost.exe [1120]
C:\WINDOWS\system32\svchost.exe [1168]
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [1432]
C:\Program Files\Alwil Software\Avast4\ashServ.exe [1480]
C:\WINDOWS\system32\spoolsv.exe [1688]
C:\WINDOWS\Explorer.EXE [132]
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [460]
C:\WINDOWS\System32\FTRTSVC.exe [516]
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [616]
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [644]
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe [280]
C:\Program Files\Vista Drive Icon\DrvIcon.exe [344]
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe [676]
C:\WINDOWS\SOUNDMAN.EXE [708]
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [740]
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe [980]
C:\WINDOWS\system32\ctfmon.exe [1208]
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [1300]
C:\WINDOWS\system32\svchost.exe [1400]
C:\WINDOWS\system32\wdfmgr.exe [1788]
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2332]
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2352]
C:\WINDOWS\System32\alg.exe [2632]
C:\WINDOWS\system32\wscntfy.exe [2828]
C:\PROGRA~1\Wanadoo\Toaster.exe [4048]
C:\PROGRA~1\Wanadoo\Inactivity.exe [4060]
C:\PROGRA~1\Wanadoo\PollingModule.exe [4068]
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE [236]
C:\Program Files\Wanadoo\GestionnaireInternet.exe [3400]
C:\Program Files\Wanadoo\ComComp.exe [3864]
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe [2192]
C:\Program Files\Wanadoo\Watch.exe [2080]
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil VoIP Plugin.exe [1652]
C:\WINDOWS\System32\svchost.exe [1516]
C:\Program Files\eMule\emule.exe [428]
C:\Program Files\PowerArchiver\POWERARC.EXE [2188]
C:\Program Files\MSN Messenger\msnmsgr.exe [3136]
C:\Program Files\Mozilla Firefox\firefox.exe [2232]

Files Created/Modified - 60 Days :

C:\

30 Sep 2007 10:04:00 212 ..SH. "C:\boot.ini"
22 Oct 2007 20:34:02 536 399 872 A.SH. "C:\hiberfil.sys"
22 Oct 2007 20:34:02 804 495 360 A.SH. "C:\pagefile.sys"

C:\WINDOWS\

23 Aug 2007 17:19:02 60 416 ..... "C:\WINDOWS\ALCFDRTM.EXE"
23 Aug 2007 17:19:02 60 416 ..... "C:\WINDOWS\ALCFDRTM.VER"
29 Sep 2007 11:53:48 2 048 A.... "C:\WINDOWS\Backups.bkf"
22 Oct 2007 20:34:04 2 048 A.S.. "C:\WINDOWS\bootstat.dat"
8 Sep 2007 17:59:44 149 ..... "C:\WINDOWS\Delme.bat"
18 Sep 2007 19:58:36 108 ..... "C:\WINDOWS\desktop.ini"
23 Oct 2007 18:19:18 155 A.... "C:\WINDOWS\DirectX.log"
14 Sep 2007 15:40:14 576 ..... "C:\WINDOWS\eReg.dat"
27 Aug 2007 22:39:14 0 ..... "C:\WINDOWS\mngui.INI"
26 Sep 2007 15:07:32 2 734 A.... "C:\WINDOWS\ModemLog_Bluetooth LAP Modem #2.txt"
26 Sep 2007 15:07:30 2 734 A.... "C:\WINDOWS\ModemLog_Bluetooth LAP Modem.txt"
20 Oct 2007 23:15:42 10 584 A.... "C:\WINDOWS\ModemLog_Bluetooth DUN Modem.txt"
20 Oct 2007 10:40:46 2 347 A.... "C:\WINDOWS\mozver.dat"
17 Oct 2007 16:04:14 746 A.... "C:\WINDOWS\msnfix.txt"
4 Oct 2007 20:03:20 600 A.... "C:\WINDOWS\ODBC.INI"
20 Oct 2007 17:01:46 286 720 A.... "C:\WINDOWS\PATCH.EXE"
4 Sep 2007 11:25:30 17 ..... "C:\WINDOWS\popcinfo.dat"
22 Oct 2007 20:33:02 28 968 A.... "C:\WINDOWS\SchedLgU.Txt"
23 Oct 2007 17:54:50 60 A.... "C:\WINDOWS\setupact.log"
23 Oct 2007 17:54:50 0 A.... "C:\WINDOWS\setuperr.log"
22 Oct 2007 19:42:54 454 A.... "C:\WINDOWS\system.ini"
15 Sep 2007 12:29:18 639 ..... "C:\WINDOWS\taskmgr.lnk"
20 Oct 2007 17:01:46 507 904 A.... "C:\WINDOWS\TMUPDATE.DLL"
20 Oct 2007 17:02:22 40 A.... "C:\WINDOWS\TSC.INI"
20 Oct 2007 17:01:46 69 689 A.... "C:\WINDOWS\UNZIP.DLL"
22 Oct 2007 20:34:30 159 A.... "C:\WINDOWS\wiadebug.log"
22 Oct 2007 20:34:22 50 A.... "C:\WINDOWS\wiaservc.log"
4 Oct 2007 20:02:30 573 ..... "C:\WINDOWS\win.ini"
22 Oct 2007 22:06:34 492 280 A.... "C:\WINDOWS\WindowsUpdate.log"
22 Sep 2007 12:51:54 2 560 A.... "C:\WINDOWS\_MSRSTRT.EXE"

C:\WINDOWS\system\

C:\WINDOWS\system32\

C:\WINDOWS\system32\drivers\

6 Sep 2007 12:00:54 26 624 A.... "C:\WINDOWS\system32\drivers\aavmker4.sys"
6 Sep 2007 12:05:26 92 848 A.... "C:\WINDOWS\system32\drivers\aswmon.sys"
6 Sep 2007 12:05:10 94 416 A.... "C:\WINDOWS\system32\drivers\aswmon2.sys"
6 Sep 2007 12:03:02 23 152 A.... "C:\WINDOWS\system32\drivers\aswRdr.sys"
6 Sep 2007 12:02:20 42 912 A.... "C:\WINDOWS\system32\drivers\aswTdi.sys"

C:\WINDOWS\system32\dllcache\

C:\Program Files\

31 Aug 2007 20:17:08 94 ..SH. "C:\Program Files\Adobe\Desktop.ini"
28 Sep 2007 10:05:36 722 160 A.... "C:\Program Files\CCleaner\CCleaner.exe"
21 Oct 2007 19:55:32 79 ..SH. "C:\Program Files\CCleaner\Desktop.ini"
28 Sep 2007 10:59:28 24 064 A.... "C:\Program Files\CCleaner\lang-1036.dll"
20 Oct 2007 10:49:20 111 054 A.... "C:\Program Files\CCleaner\uninst.exe"
1 Sep 2007 10:17:40 41 186 A.... "C:\Program Files\CCleaner\winapp.ini"
19 Sep 2007 20:41:00 73 ..SH. "C:\Program Files\eMule\Desktop.ini"
19 Sep 2007 16:36:10 74 374 A.... "C:\Program Files\eMule\Uninstall.exe"
21 Oct 2007 19:55:54 129 ..SH. "C:\Program Files\Heroes of might and magic 5\Desktop.ini"
7 Sep 2007 20:15:10 87 ..SH. "C:\Program Files\iColorFolder\Desktop.ini"
7 Sep 2007 20:05:02 219 775 A.... "C:\Program Files\iColorFolder\uninstall.exe"
26 Sep 2007 19:48:44 98 ..SH. "C:\Program Files\IVT Corporation\Desktop.ini"
26 Sep 2007 19:49:00 92 ..SH. "C:\Program Files\Logitech\Desktop.ini"
8 Sep 2007 13:20:06 95 ..SH. "C:\Program Files\Messenger\Desktop.ini"
21 Oct 2007 19:56:54 90 ..SH. "C:\Program Files\Microsoft Office\Desktop.ini"
19 Oct 2007 15:40:12 13 688 A.... "C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll"
1 Sep 2007 17:36:30 85 ..SH. "C:\Program Files\Mozilla Firefox\Desktop.ini"
19 Oct 2007 15:40:14 7 648 616 A.... "C:\Program Files\Mozilla Firefox\firefox.exe"
19 Oct 2007 15:40:14 200 829 A.... "C:\Program Files\Mozilla Firefox\freebl3.dll"
19 Oct 2007 15:40:14 456 032 A.... "C:\Program Files\Mozilla Firefox\js3250.dll"
19 Oct 2007 15:40:14 161 128 A.... "C:\Program Files\Mozilla Firefox\nspr4.dll"
19 Oct 2007 15:40:14 378 208 A.... "C:\Program Files\Mozilla Firefox\nss3.dll"
19 Oct 2007 15:40:14 271 720 A.... "C:\Program Files\Mozilla Firefox\nssckbi.dll"
19 Oct 2007 15:40:14 34 160 A.... "C:\Program Files\Mozilla Firefox\plc4.dll"
19 Oct 2007 15:40:14 30 056 A.... "C:\Program Files\Mozilla Firefox\plds4.dll"
19 Oct 2007 15:40:14 111 968 A.... "C:\Program Files\Mozilla Firefox\smime3.dll"
19 Oct 2007 15:40:14 254 060 A.... "C:\Program Files\Mozilla Firefox\softokn3.dll"
19 Oct 2007 15:40:16 132 448 A.... "C:\Program Files\Mozilla Firefox\ssl3.dll"
19 Oct 2007 15:40:16 131 968 A.... "C:\Program Files\Mozilla Firefox\updater.exe"
19 Oct 2007 15:40:16 732 A.... "C:\Program Files\Mozilla Firefox\updater.ini"
19 Oct 2007 15:40:16 13 152 A.... "C:\Program Files\Mozilla Firefox\xpcom.dll"
19 Oct 2007 15:40:16 73 584 A.... "C:\Program Files\Mozilla Firefox\xpcom_compat.dll"
19 Oct 2007 15:40:16 421 736 A.... "C:\Program Files\Mozilla Firefox\xpcom_core.dll"
19 Oct 2007 15:40:16 73 072 A.... "C:\Program Files\Mozilla Firefox\xpicleanup.exe"
19 Oct 2007 15:40:18 12 136 A.... "C:\Program Files\Mozilla Firefox\xpistub.dll"
26 Aug 2007 12:21:08 128 A.... "C:\Program Files\Services en ligne\desktop.ini"
1 Sep 2007 17:36:56 87 ..SH. "C:\Program Files\UberIcon\Desktop.ini"
1 Sep 2007 11:48:20 8 010 A.... "C:\Program Files\UberIcon\unins000.dat"
1 Sep 2007 11:48:08 689 104 A.... "C:\Program Files\UberIcon\unins000.exe"
26 Aug 2007 12:22:42 86 ..SH. "C:\Program Files\Vista Drive Icon\Desktop.ini"
26 Aug 2007 12:22:24 90 ..SH. "C:\Program Files\Wanadoo\Desktop.ini"
26 Aug 2007 12:21:02 128 A.SH. "C:\Program Files\Windows Live Favorites\desktop.ini"
2 Sep 2007 19:10:18 96 ..SH. "C:\Program Files\Windows NT\desktop.ini"
26 Aug 2007 12:21:38 91 ..SH. "C:\Program Files\Windows Media Player\Desktop.ini"
13 Sep 2007 20:25:14 106 A.... "C:\Program Files\xerox\desktop.ini"
6 Sep 2007 12:00:44 180 224 A.... "C:\Program Files\Alwil Software\Avast4\Aavm4h.dll"
6 Sep 2007 12:06:32 188 416 A.... "C:\Program Files\Alwil Software\Avast4\AavmGuih.dll"
6 Sep 2007 12:00:36 20 480 A.... "C:\Program Files\Alwil Software\Avast4\AavmRpch.dll"
6 Sep 2007 12:01:16 99 704 A.... "C:\Program Files\Alwil Software\Avast4\AhAScr.dll"
6 Sep 2007 12:03:34 139 264 A.... "C:\Program Files\Alwil Software\Avast4\AhJsctNs.dll"
6 Sep 2007 12:03:26 24 576 A.... "C:\Program Files\Alwil Software\Avast4\AhResJs.dll"
6 Sep 2007 12:01:20 35 840 A.... "C:\Program Files\Alwil Software\Avast4\AhResMai.dll"
6 Sep 2007 12:02:14 49 152 A.... "C:\Program Files\Alwil Software\Avast4\ahResMes.dll"
6 Sep 2007 12:01:30 31 744 A.... "C:\Program Files\Alwil Software\Avast4\AhResNS.dll"
6 Sep 2007 12:05:56 29 696 A.... "C:\Program Files\Alwil Software\Avast4\AhResOut.dll"
6 Sep 2007 12:02:04 32 768 A.... "C:\Program Files\Alwil Software\Avast4\ahResP2P.dll"
6 Sep 2007 12:06:54 43 520 A.... "C:\Program Files\Alwil Software\Avast4\AhResStd.dll"
6 Sep 2007 12:01:06 53 248 A.... "C:\Program Files\Alwil Software\Avast4\AhResWS.dll"
6 Sep 2007 12:03:30 32 768 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiJs.dll"
6 Sep 2007 12:03:42 65 536 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiMai.dll"
6 Sep 2007 12:02:10 36 864 A.... "C:\Program Files\Alwil Software\Avast4\ahRuiMes.dll"
6 Sep 2007 12:01:28 36 864 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiNS.dll"
6 Sep 2007 12:04:06 90 112 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiOut.dll"
6 Sep 2007 12:02:00 22 016 A.... "C:\Program Files\Alwil Software\Avast4\ahRuiP2P.dll"
6 Sep 2007 12:06:50 57 344 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiStd.dll"
6 Sep 2007 12:03:24 49 152 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiWS.dll"
6 Sep 2007 11:58:26 271 736 A.... "C:\Program Files\Alwil Software\Avast4\ashAvast.exe"
6 Sep 2007 11:54:22 212 992 A.... "C:\Program Files\Alwil Software\Avast4\ashBase.dll"
6 Sep 2007 11:58:16 128 376 A.... "C:\Program Files\Alwil Software\Avast4\ashBug.exe"
6 Sep 2007 11:57:12 98 304 A.... "C:\Program Files\Alwil Software\Avast4\ashCfgP.dll"
6 Sep 2007 11:57:34 131 072 A.... "C:\Program Files\Alwil Software\Avast4\ashCfgT.dll"
6 Sep 2007 11:57:50 147 456 A.... "C:\Program Files\Alwil Software\Avast4\ashChest.dll"
6 Sep 2007 11:58:40 66 936 A.... "C:\Program Files\Alwil Software\Avast4\ashChest.exe"
6 Sep 2007 11:59:40 83 320 A.... "C:\Program Files\Alwil Software\Avast4\ashCmd.exe"
6 Sep 2007 12:06:10 79 224 A.... "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
6 Sep 2007 11:59:22 222 584 A.... "C:\Program Files\Alwil Software\Avast4\ashEnhcd.exe"
6 Sep 2007 11:58:00 48 504 A.... "C:\Program Files\Alwil Software\Avast4\ashLogV.exe"
6 Sep 2007 12:05:42 243 064 A.... "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe"
6 Sep 2007 12:05:52 202 104 A.... "C:\Program Files\Alwil Software\Avast4\ashOutXt.dll"
6 Sep 2007 12:06:22 206 200 A.... "C:\Program Files\Alwil Software\Avast4\ashPopWz.exe"
6 Sep 2007 11:59:52 279 928 A.... "C:\Program Files\Alwil Software\Avast4\ashQuick.exe"
6 Sep 2007 12:06:04 132 472 A.... "C:\Program Files\Alwil Software\Avast4\ashServ.exe"
6 Sep 2007 11:59:56 75 128 A.... "C:\Program Files\Alwil Software\Avast4\ashShell.dll"
6 Sep 2007 11:59:34 128 376 A.... "C:\Program Files\Alwil Software\Avast4\ashSimp2.exe"
6 Sep 2007 12:00:24 157 048 A.... "C:\Program Files\Alwil Software\Avast4\ashSimpl.exe"
6 Sep 2007 11:58:04 17 920 A.... "C:\Program Files\Alwil Software\Avast4\ashSkPcc.exe"
6 Sep 2007 11:58:10 61 440 A.... "C:\Program Files\Alwil Software\Avast4\ashSkPck.exe"
6 Sep 2007 11:54:30 53 248 A.... "C:\Program Files\Alwil Software\Avast4\ashSODBC.dll"
6 Sep 2007 11:55:22 233 472 A.... "C:\Program Files\Alwil Software\Avast4\ashSSqlt.dll"
6 Sep 2007 11:55:06 48 128 A.... "C:\Program Files\Alwil Software\Avast4\ashSXML.dll"
6 Sep 2007 11:54:38 110 592 A.... "C:\Program Files\Alwil Software\Avast4\ashTask.dll"
6 Sep 2007 11:56:54 303 104 A.... "C:\Program Files\Alwil Software\Avast4\ashUInt.dll"
6 Sep 2007 11:54:44 66 936 A.... "C:\Program Files\Alwil Software\Avast4\ashUpd.exe"
6 Sep 2007 12:04:44 345 464 A.... "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe"
6 Sep 2007 12:05:32 118 784 A.... "C:\Program Files\Alwil Software\Avast4\ashWsFtr.dll"
6 Sep 2007 11:54:28 659 456 A.... "C:\Program Files\Alwil Software\Avast4\aswAux.dll"
6 Sep 2007 11:50:36 126 976 A.... "C:\Program Files\Alwil Software\Avast4\aswCmnB.dll"
6 Sep 2007 11:50:28 69 632 A.... "C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll"
6 Sep 2007 11:50:50 180 224 A.... "C:\Program Files\Alwil Software\Avast4\aswCmnS.dll"
6 Sep 2007 11:54:08 1 183 744 A.... "C:\Program Files\Alwil Software\Avast4\aswEngin.dll"
6 Sep 2007 11:54:54 4 608 A.... "C:\Program Files\Alwil Software\Avast4\aswIdle.dll"
6 Sep 2007 11:53:44 22 528 A.... "C:\Program Files\Alwil Software\Avast4\aswInteg.dll"
6 Sep 2007 11:50:10 143 360 A.... "C:\Program Files\Alwil Software\Avast4\aswRes.dll"
6 Sep 2007 11:53:22 81 920 A.... "C:\Program Files\Alwil Software\Avast4\aswScan.dll"
6 Sep 2007 11:54:58 16 248 A.... "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"
6 Sep 2007 12:01:54 106 496 A.... "C:\Program Files\Alwil Software\Avast4\avCommEx.dll"
6 Sep 2007 11:57:52 6 656 A.... "C:\Program Files\Alwil Software\Avast4\AVSSHOOK.dll"
6 Sep 2007 12:09:18 66 936 A.... "C:\Program Files\Alwil Software\Avast4\sched.exe"
6 Sep 2007 11:58:30 66 936 A.... "C:\Program Files\Alwil Software\Avast4\VisthAux.exe"
6 Sep 2007 12:00:12 51 576 A.... "C:\Program Files\Alwil Software\Avast4\VisthLic.exe"
6 Sep 2007 12:00:02 51 576 A.... "C:\Program Files\Alwil Software\Avast4\VisthUpd.exe"
20 Sep 2007 19:22:12 2 A.... "C:\Program Files\eMule\config\AC_BootstrapIPs.dat"
20 Sep 2007 19:22:12 2 A.... "C:\Program Files\eMule\config\AC_ServerMetURLs.dat"
19 Sep 2007 16:36:22 365 A.... "C:\Program Files\eMule\config\cryptkey.dat"
23 Oct 2007 17:59:10 13 592 A.... "C:\Program Files\eMule\config\key_index.dat"
23 Oct 2007 17:59:10 152 A.... "C:\Program Files\eMule\config\load_index.dat"
23 Oct 2007 17:59:10 4 612 A.... "C:\Program Files\eMule\config\nodes.dat"
23 Oct 2007 17:59:10 61 A.... "C:\Program Files\eMule\config\preferences.dat"
23 Oct 2007 17:59:10 10 202 A.... "C:\Program Files\eMule\config\preferences.ini"
23 Oct 2007 17:59:10 23 A.... "C:\Program Files\eMule\config\preferencesKad.dat"
23 Oct 2007 17:59:10 2 A.... "C:\Program Files\eMule\config\shareddir.dat"
23 Oct 2007 17:59:10 12 A.... "C:\Program Files\eMule\config\src_index.dat"
23 Oct 2007 18:24:34 2 116 A.... "C:\Program Files\eMule\config\statistics.ini"
31 Aug 2007 19:51:12 126 136 A.... "C:\Program Files\Google\Google Updater\GoogleUpdater.exe"
31 Aug 2007 19:51:18 68 856 A.... "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
18 Sep 2007 18:31:50 380 928 A.... "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\_setup.dll"
23 Oct 2007 17:55:08 20 413 A.... "C:\Program Files\IVT Corporation\BlueSoleil\bttl.ini"
19 Oct 2007 15:40:12 66 408 A.... "C:\Program Files\Mozilla Firefox\components\jar50.dll"
19 Oct 2007 15:40:12 54 112 A.... "C:\Program Files\Mozilla Firefox\components\jsd3250.dll"
19 Oct 2007 15:40:12 34 688 A.... "C:\Program Files\Mozilla Firefox\components\myspell.dll"
19 Oct 2007 15:40:12 46 456 A.... "C:\Program Files\Mozilla Firefox\components\spellchk.dll"
19 Oct 2007 15:40:12 171 880 A.... "C:\Program Files\Mozilla Firefox\components\xpinstal.dll"
3 Sep 2007 20:04:50 441 256 A.... "C:\Program Files\Mozilla Firefox\packbarre\setup.exe"
19 Oct 2007 15:40:14 22 400 A.... "C:\Program Files\Mozilla Firefox\plugins\npnul32.dll"
19 Oct 2007 15:40:16 451 496 A.... "C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
7 Oct 2007 19:08:40 229 A.... "C:\Program Files\Wanadoo\Component\INFOGatewayWifi.ini"
25 Sep 2007 18:04:30 576 A.... "C:\Program Files\Wanadoo\WOOBrowser\imagelist.ini"
22 Oct 2007 20:34:20 10 626 A.... "C:\Program Files\Alwil Software\Avast4\DATA\avast4.ini"
23 Oct 2007 17:58:18 391 216 A.... "C:\Program Files\Alwil Software\Avast4\DATA\clnr0.dll"
23 Oct 2007 17:58:18 284 728 A.... "C:\Program Files\Alwil Software\Avast4\DATA\dllcc0.dat"
23 Oct 2007 17:58:18 9 080 A.... "C:\Program Files\Alwil Software\Avast4\DATA\exts0.dll"
6 Sep 2007 11:48:46 98 304 A.... "C:\Program Files\Alwil Software\Avast4\FRENCH\Base.dll"
6 Sep 2007 11:47:36 18 432 A.... "C:\Program Files\Alwil Software\Avast4\FRENCH\Boot.dll"
6 Sep 2007 11:48:44 2 547 712 A.... "C:\Program Files\Alwil Software\Avast4\FRENCH\Lang.dll"
6 Sep 2007 11:48:40 61 440 A.... "C:\Program Files\Alwil Software\Avast4\FRENCH\LangMai.dll"
8 Sep 2007 9:40:48 90 160 A.... "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll"
23 Oct 2007 17:58:36 1 355 A.... "C:\Program Files\Alwil Software\Avast4\Setup\setup.ini"
31 Aug 2007 19:51:14 138 680 A.... "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"
31 Aug 2007 19:51:12 912 384 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\ci.dll"
31 Aug 2007 19:51:12 136 192 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\cires_fr.dll"
31 Aug 2007 19:51:12 126 136 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\GoogleUpdaterRestartManager.exe"
31 Aug 2007 19:51:12 125 624 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\GoogleUpdaterSetup.exe"
31 Aug 2007 19:51:12 669 880 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\GoogleUpdaterInstallMgr.exe"
31 Aug 2007 19:51:12 187 064 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\GoogleUpdaterAdminPrefs.exe"
31 Aug 2007 19:51:12 83 968 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\npCIDetect11.dll"
31 Aug 2007 19:51:18 127 472 A.... "C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\gtn.dll"
31 Aug 2007 19:51:18 654 832 A.... "C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll"
25 Sep 2007 1:11:44 1 671 168 A.... "C:\Program Files\Java\jre1.6.0_03\bin\awt.dll"
25 Sep 2007 1:11:44 114 688 A.... "C:\Program Files\Java\jre1.6.0_03\bin\axbridge.dll"
25 Sep 2007 1:11:44 192 512 A.... "C:\Program Files\Java\jre1.6.0_03\bin\cmm.dll"
25 Sep 2007 1:11:44 143 360 A.... "C:\Program Files\Java\jre1.6.0_03\bin\dcpr.dll"
25 Sep 2007 1:11:44 69 632 A.... "C:\Program Files\Java\jre1.6.0_03\bin\deploy.dll"
25 Sep 2007 1:11:44 16 896 A.... "C:\Program Files\Java\jre1.6.0_03\bin\dt_shmem.dll"
25 Sep 2007 1:11:44 13 312 A.... "C:\Program Files\Java\jre1.6.0_03\bin\dt_socket.dll"
25 Sep 2007 1:11:44 335 872 A.... "C:\Program Files\Java\jre1.6.0_03\bin\fontmanager.dll"
25 Sep 2007 1:11:44 15 872 A.... "C:\Program Files\Java\jre1.6.0_03\bin\hpi.dll"
25 Sep 2007 1:11:44 139 264 A.... "C:\Program Files\Java\jre1.6.0_03\bin\hprof.dll"
25 Sep 2007 1:11:44 98 304 A.... "C:\Program Files\Java\jre1.6.0_03\bin\instrument.dll"
25 Sep 2007 1:11:44 12 800 A.... "C:\Program Files\Java\jre1.6.0_03\bin\ioser12.dll"
25 Sep 2007 1:11:44 7 680 A.... "C:\Program Files\Java\jre1.6.0_03\bin\j2pcsc.dll"
25 Sep 2007 1:11:44 37 376 A.... "C:\Program Files\Java\jre1.6.0_03\bin\j2pkcs11.dll"
25 Sep 2007 1:11:44 10 240 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jaas_nt.dll"
24 Sep 2007 22:54:04 25 088 A.... "C:\Program Files\Java\jre1.6.0_03\bin\java-rmi.exe"
25 Sep 2007 1:11:44 126 976 A.... "C:\Program Files\Java\jre1.6.0_03\bin\java.dll"
24 Sep 2007 22:30:28 135 168 A.... "C:\Program Files\Java\jre1.6.0_03\bin\java.exe"
24 Sep 2007 23:31:42 37 376 A.... "C:\Program Files\Java\jre1.6.0_03\bin\javacpl.exe"
24 Sep 2007 22:30:30 135 168 A.... "C:\Program Files\Java\jre1.6.0_03\bin\javaw.exe"
24 Sep 2007 23:31:42 139 264 A.... "C:\Program Files\Java\jre1.6.0_03\bin\javaws.exe"
25 Sep 2007 1:11:44 14 336 A.... "C:\Program Files\Java\jre1.6.0_03\bin\java_crw_demo.dll"
25 Sep 2007 1:11:44 5 120 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jawt.dll"
25 Sep 2007 1:11:44 36 352 A.... "C:\Program Files\Java\jre1.6.0_03\bin\JdbcOdbc.dll"
25 Sep 2007 1:11:44 167 936 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jdwp.dll"
25 Sep 2007 1:11:44 77 824 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jli.dll"
25 Sep 2007 1:11:44 147 456 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jpeg.dll"
25 Sep 2007 1:11:44 98 304 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jpicom.dll"
25 Sep 2007 1:11:44 110 592 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jpiexp.dll"
25 Sep 2007 1:11:44 98 304 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jpinscp.dll"
25 Sep 2007 1:11:44 65 536 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jpioji.dll"
25 Sep 2007 1:11:44 126 976 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jpishare.dll"
25 Sep 2007 1:11:44 147 456 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jsound.dll"
25 Sep 2007 1:11:44 18 432 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jsoundds.dll"
25 Sep 2007 1:11:36 329 104 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe"
25 Sep 2007 1:11:36 54 672 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jureg.exe"
25 Sep 2007 1:11:36 132 496 A.... "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
24 Sep 2007 22:42:32 25 600 A.... "C:\Program Files\Java\jre1.6.0_03\bin\keytool.exe"
24 Sep 2007 22:43:14 25 600 A.... "C:\Program Files\Java\jre1.6.0_03\bin\kinit.exe"
24 Sep 2007 22:43:18 25 600 A.... "C:\Program Files\Java\jre1.6.0_03\bin\klist.exe"
24 Sep 2007 22:43:20 25 600 A.... "C:\Program Files\Java\jre1.6.0_03\bin\ktab.exe"
25 Sep 2007 1:11:44 18 432 A.... "C:\Program Files\Java\jre1.6.0_03\bin\management.dll"
25 Sep 2007 1:25:26 348 160 A.... "C:\Program Files\Java\jre1.6.0_03\bin\msvcr71.dll"
25 Sep 2007 1:11:44 77 824 A.... "C:\Program Files\Java\jre1.6.0_03\bin\net.dll"
25 Sep 2007 1:11:44 20 480 A.... "C:\Program Files\Java\jre1.6.0_03\bin\nio.dll"
25 Sep 2007 1:11:44 126 976 A.... "C:\Program Files\Java\jre1.6.0_03\bin\npjava11.dll"
25 Sep 2007 1:11:44 126 976 A.... "C:\Program Files\Java\jre1.6.0_03\bin\npjava12.dll"
25 Sep 2007 1:11:44 126 976 A.... "C:\Program Files\Java\jre1.6.0_03\bin\npjava13.dll"
25 Sep 2007 1:11:46 126 976 A.... "C:\Program Files\Java\jre1.6.0_03\bin\npjava14.dll"
25 Sep 2007 1:11:46 126 976 A.... "C:\Program Files\Java\jre1.6.0_03\bin\npjava32.dll"
25 Sep 2007 1:11:34 132 496 A.... "C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll"
25 Sep 2007 1:11:46 126 976 A.... "C:\Program Files\Java\jre1.6.0_03\bin\npoji610.dll"
25 Sep 2007 1:11:46 8 192 A.... "C:\Program Files\Java\jre1.6.0_03\bin\npt.dll"
24 Sep 2007 23:01:32 25 600 A.... "C:\Program Files\Java\jre1.6.0_03\bin\orbd.exe"
24 Sep 2007 23:02:12 25 600 A.... "C:\Program Files\Java\jre1.6.0_03\bin\pack200.exe"
24 Sep 2007 22:43:12 25 600 A.... "C:\Program Files\Java\jre1.6.0_03\bin\policytool.exe"
25 Sep 2007 1:25:26 233 472 A.... "C:\Program Files\Java\jre1.6.0_03\bin\regutils.dll"
25 Sep 2007 1:11:46 5 120 A.... "C:\Program Files\Java\jre1.6.0_03\bin\rmi.dll"
24 Sep 2007 22:53:56 25 600 A.... "C:\Program Files\Java\jre1.6.0_03\bin\rmid.exe"
24 Sep 2007 22:53:46 25 600 A.... "C:\Program Files\Java\jre1.6.0_03\bin\rmiregistry.exe"
24 Sep 2007 23:01:36 25 600 A.... "C:\Program Files\Java\jre1.6.0_03\bin\servertool.exe"
25 Sep 2007 1:11:46 131 072 A.... "C:\Program Files\Java\jre1.6.0_03\bin\splashscreen.dll"
25 Sep 2007 1:11:34 501 136 A.... "C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll"
25 Sep 2007 1:11:46 16 384 A.... "C:\Program Files\Java\jre1.6.0_03\bin\sunmscapi.dll"
24 Sep 2007 23:01:20 26 112 A.... "C:\Program Files\Java\jre1.6.0_03\bin\tnameserv.exe"
25 Sep 2007 1:11:46 61 440 A.... "C:\Program Files\Java\jre1.6.0_03\bin\unpack.dll"
24 Sep 2007 23:02:08 122 880 A.... "C:\Program Files\Java\jre1.6.0_03\bin\unpack200.exe"
25 Sep 2007 1:11:46 31 744 A.... "C:\Program Files\Java\jre1.6.0_03\bin\verify.dll"
25 Sep 2007 1:11:46 24 701 A.... "C:\Program Files\Java\jre1.6.0_03\bin\w2k_lsa_auth.dll"
25 Sep 2007 1:11:46 110 592 A.... "C:\Program Files\Java\jre1.6.0_03\bin\wsdetect.dll"
25 Sep 2007 1:11:46 47 104 A.... "C:\Program Files\Java\jre1.6.0_03\bin\zip.dll"
3 Sep 2007 12:36:58 126 976 A.... "C:\Program Files\Mozilla Firefox\packbarre\PackBarre_1_1_0_2\Interop.SHDocVw.dll"
3 Sep 2007 20:04:48 106 496 A.... "C:\Program Files\Mozilla Firefox\packbarre\PackBarre_1_1_0_2\PackBarre.exe"
31 Aug 2007 20:13:50 1 728 A.... "C:\Program Files\Adobe\Reader 8.0\Setup Files\{AC76BA86-7AD7-1036-7B44-A81000000003}\abcpy.ini"
31 Aug 2007 20:14:22 304 784 A.... "C:\Program Files\Adobe\Reader 8.0\Setup Files\{AC76BA86-7AD7-1036-7B44-A81000000003}\Setup.exe"
31 Aug 2007 20:14:22 294 A.... "C:\Program Files\Adobe\Reader 8.0\Setup Files\{AC76BA86-7AD7-1036-7B44-A81000000003}\setup.ini"
6 Sep 2007 12:00:54 26 624 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\Aavmker4.sys"
6 Sep 2007 12:05:26 92 848 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\aswMon.sys"
6 Sep 2007 12:05:10 94 416 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\aswMon2.sys"
6 Sep 2007 12:02:40 45 648 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\aswMonFlt.sys"
6 Sep 2007 12:03:02 23 152 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AswRdr.sys"
6 Sep 2007 12:02:20 42 912 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AswTdi.sys"
25 Sep 2007 1:11:46 2 314 240 A.... "C:\Program Files\Java\jre1.6.0_03\bin\client\jvm.dll"
24 Sep 2007 23:31:42 16 801 A.... "C:\Program Files\Java\jre1.6.0_03\lib\deploy\ffjcext.zip"
19 Oct 2007 15:40:12 99 576 A.... "C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\BrandRes.dll"
19 Oct 2007 15:40:12 156 280 A.... "C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\fullsoft.dll"
19 Oct 2007 15:40:12 3 323 A.... "C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\master.ini"
19 Oct 2007 15:40:12 14 192 A.... "C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\qfaservices.dll"
19 Oct 2007 15:40:12 406 776 A.... "C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\talkback.exe"
4 Sep 2007 20:29:16 1 500 000 A.... "C:\Program Files\Wanadoo\Config\Veronique DESHOULLES\Temp\DLM170.tmp"
27 Sep 2007 18:40:06 860 000 A.... "C:\Program Files\Wanadoo\Config\Veronique DESHOULLES\Temp\DLM23.tmp"
8 Sep 2007 17:20:56 0 A.... "C:\Program Files\Wanadoo\Config\Veronique DESHOULLES\Temp\DLM53.tmp"
31 Aug 2007 19:45:08 0 A.... "C:\Program Files\Wanadoo\Config\Veronique DESHOULLES\Temp\DLM55.tmp"
31 Aug 2007 19:47:42 0 A.... "C:\Program Files\Wanadoo\Config\Veronique DESHOULLES\Temp\DLM57.tmp"
31 Aug 2007 19:49:44 0 A.... "C:\Program Files\Wanadoo\Config\Veronique DESHOULLES\Temp\DLM59.tmp"
16 Sep 2007 19:45:28 5 240 000 A.... "C:\Program Files\Wanadoo\Config\Veronique DESHOULLES\Temp\DLMB.tmp"
8 Sep 2007 10:09:56 0 A.... "C:\Program Files\Wanadoo\Config\Veronique DESHOULLES\Temp\DLMF.tmp"
6 Sep 2007 12:01:02 24 656 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\Aavmker4.sys"
6 Sep 2007 12:05:20 75 856 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswMon2.sys"
6 Sep 2007 12:02:56 55 376 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswMonFlt.sys"
6 Sep 2007 12:03:08 27 216 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswRdr.sys"
6 Sep 2007 12:02:26 48 720 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswTdi.sys"
6 Sep 2007 12:02:48 114 768 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\IA64\aswMonFlt.sys"
6 Sep 2007 12:03:10 55 376 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\IA64\aswRdr.sys"
6 Sep 2007 12:02:30 103 504 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\IA64\aswTdi.sys"
25 Sep 2007 1:25:20 9 685 797 A.... "C:\Program Files\Fichiers communs\Java\Update\Base Images\jre1.6.0.b105\core1.zip"
25 Sep 2007 1:25:22 10 238 372 A.... "C:\Program Files\Fichiers communs\Java\Update\Base Images\jre1.6.0.b105\core2.zip"
25 Sep 2007 1:25:22 4 868 848 A.... "C:\Program Files\Fichiers communs\Java\Update\Base Images\jre1.6.0.b105\core3.zip"
25 Sep 2007 1:25:24 3 584 A.... "C:\Program Files\Fichiers communs\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_03.b05\launcher.exe"
25 Sep 2007 1:25:26 348 160 A.... "C:\Program Files\Fichiers communs\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_03.b05\msvcr71.dll"
25 Sep 2007 1:25:24 2 540 904 A.... "C:\Program Files\Fichiers communs\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_03.b05\patchjre.exe"
25 Sep 2007 1:25:26 233 472 A.... "C:\Program Files\Fichiers communs\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_03.b05\regutils.dll"
25 Sep 2007 1:25:18 20 480 A.... "C:\Program Files\Fichiers communs\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_03.b05\zipper.exe"

Program Folders:

C:\Program Files\

Adobe
Alwil Software
CCleaner
eMule
Fichiers communs
Google
Heroes of might and magic 5
iColorFolder
InstallShield Installation Information
Internet Explorer
Inventel
IVT Corporation
Java
LimeWire
Logitech
Messenger
Messenger Plus! Live
microsoft frontpage
Microsoft Office
Movie Maker
Mozilla Firefox
MSN Gaming Zone
MSN Messenger
NetMeeting
Outlook Express
PowerArchiver
Realtek AC97
SAGEM
Services en ligne
UberIcon
Uninstall Information
Vista Drive Icon
Wanadoo
Windows Live Favorites
Windows Media Player
Windows NT
WindowsUpdate
xerox

C:\Program Files\Fichiers communs\

Adobe
Adobe(2)
Designer
InstallShield
Java
Logitech
Microsoft Shared
MSSoap
ODBC
Real
Services
SpeechEngines
Symantec Shared
System
Teleca Shared

Add/Remove Programs:

Adobe Flash Player Plugin
Adobe Shockwave Player
avast! Antivirus
CCleaner (remove only)
eMule
Navigateur Orange
Gestionnaire Internet
Outil de mise à jour Google
Heroes of Might and Magic V [Rebuild]
iColorFolder
Windows Installer 3.1 (KB893803)
LimeWire 4.14.4
Messenger Plus! Live & Sponsor (CiD)
Microsoft .NET Framework 2.0
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA
Mozilla Firefox (2.0.0.8)
Pack Vista Inspirat 2 1.0
Programme de gestion Camera de Logitech®
CashBarre
UberIcon 1.0.4
Vista Drive Icon 1.3
Windows Media Format Runtime
Lecteur Windows Media 10
Microsoft Office 2000 Professional
Sagem Wi-Fi 11g USB adapter (driver)
Java(TM) 6 Update 2
Java(TM) 6 Update 3
Windows Live Sign-in Assistant
Microsoft .NET Framework 2.0
UMVPLStandalone
Adobe Reader 8.1.0 - Français
Bluesoleil3.2.1.2 Release 070314
Logitech Audio Echo Cancellation Component
Logitech Video Enumerator
Logitech QuickCam
Microsoft .NET Framework 2.0 Language Pack - FRA
Windows Live Messenger
Realtek AC'97 Audio

Run Values:

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"WOOWATCH"="C:\\PROGRA~1\\Wanadoo\\Watch.exe"
"WOOTASKBARICON"="C:\\PROGRA~1\\Wanadoo\\GestMaj.exe TaskBarIcon.exe"
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.6.0_03\\bin\\jusched.exe\""
"DrvIcon"="C:\\Program Files\\Vista Drive Icon\\DrvIcon.exe"
"SoundMan"="SOUNDMAN.EXE"
"Adobe Reader Speed Launcher"="\"C:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\""
"LogitechCommunicationsManager"="\"C:\\Program Files\\Fichiers communs\\Logitech\\LComMgr\\Communications_Helper.exe\""
"LogitechQuickCamRibbon"="\"C:\\Program Files\\Logitech\\QuickCam10\\QuickCam10.exe\" /hide"
"LVCOMSX"="\"C:\\Program Files\\Fichiers communs\\Logitech\\LComMgr\\LVComSX.exe\""
"BluetoothAuthenticationAgent"="rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]
@=""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
@=""
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
@=""
"NoChange"="1"
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
@=""
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\" /background"

Bot Check:

SERVICE_NAME: wscsvc

DISPLAY_NAME : Centre de sécurité
START_TYPE : 2 AUTO_START

SERVICE_NAME: sharedaccess

DISPLAY_NAME : Pare-feu Windows / Partage de connexion Internet
START_TYPE : 2 AUTO_START

SERVICE_NAME: wuauserv

DISPLAY_NAME : Mises à jour automatiques
START_TYPE : 2 AUTO_START

SERVICE_NAME: srservice

DISPLAY_NAME : Service de restauration système
START_TYPE : 2 AUTO_START

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole]
"EnableDCOM"="Y"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"restrictanonymous"=dword:00000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update]
"AUOptions"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify"=dword:00000000
"FirewallDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000000
"AntiVirusOverride"=dword:00000000
"FirewallOverride"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control]
"WaitToKillServiceTimeout"="20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"SFCDisable"=dword:00000000
"SfcScan"=dword:00000000
"Shell"="Explorer.exe"
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shell extensions]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters]
"TransportBindName"="\\Device\\"

ShellExecuteHooks:

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""

Environment:

HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager\environment
ComSpec REG_EXPAND_SZ %SystemRoot%\system32\cmd.exe
Path REG_EXPAND_SZ %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Fichiers communs\Teleca Shared
windir REG_EXPAND_SZ %SystemRoot%
OS REG_SZ Windows_NT
PATHEXT REG_SZ .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
TEMP REG_EXPAND_SZ %SystemRoot%\TEMP
TMP REG_EXPAND_SZ %SystemRoot%\TEMP

SecurityProviders:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders
SecurityProviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

Authentication Packages:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
Authentication Packages REG_MULTI_SZ msv1_0\0nwprovau\0\0

Non-Default IFEO Debugger:

Non-Default Installed Components:

HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{73fa19d0-2d75-11d2-995d-00c04f98bbc9}
<NO NAME> REG_SZ Dossiers Web
StubPath REG_SZ
Version REG_SZ 10,0,0,1

Non-Default Safeboot Minimal:

File Associations:

[HKEY_CLASSES_ROOT\batfile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\cmdfile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\comfile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\exefile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\htafile\shell\open\command]
@="C:\\WINDOWS\\system32\\mshta.exe \"%1\" %*"

[HKEY_CLASSES_ROOT\http\shell\open\command]
@="\"C:\\PROGRA~1\\Wanadoo\\WOOBrowser\\WOOBrowser.exe\" %1"

[HKEY_CLASSES_ROOT\https\shell\open\command]
@="\"C:\\PROGRA~1\\Wanadoo\\WOOBrowser\\WOOBrowser.exe\" %1"

[HKEY_CLASSES_ROOT\htmlfile\shell\open\command]
@="\"C:\\PROGRA~1\\Wanadoo\\WOOBrowser\\WOOBrowser.exe\" %1"

[HKEY_CLASSES_ROOT\regedit\shell\open\command]
@="regedit.exe %1"

[HKEY_CLASSES_ROOT\regfile\shell\open\command]
@="regedit.exe \"%1\""

[HKEY_CLASSES_ROOT\scrfile\shell\open\command]
@="\"%1\" /S"

[HKEY_CLASSES_ROOT\txtfile\shell\open\command]
@="%SystemRoot%\system32\NOTEPAD.EXE %1"

Finished!
0
Réponse 6 / 11
maxime4611 Messages postés 361 Statut Membre 11
 
et celui de hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:30:53, on 23/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil VoIP Plugin.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\PowerArchiver\POWERARC.EXE
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {95FBB1F0-B17C-4C18-A865-942098F50376} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: (no name) - {BFB5F154-9212-46F3-B547-AC6106030A54} - (no file)
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Global Startup: BlueSoleil.lnk = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {C36661D7-3590-45B1-80B5-520839E94DAD} (MaxisSimCity4PatcherX Control) - http://simcity.ea.com/update/MaxisSimCity4PatcherX.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
0
Réponse 7 / 11
liguec1 Messages postés 1796 Statut Membre 78
 
salut, tu n'est plus infecté.
par contre ce n'est pas le rapport de grenproc ca!!!
quand tu le lance genproc.bat ca touvre une fenetre bleu normalement ou tu dois appuyer sur une touche pour continuer.
ca scan et apres touvre un rapport dans le bloc note
0
Réponse 8 / 11
maxime4611 Messages postés 361 Statut Membre 11
 
merci beaucoup pour m avoir aidez a supprimer se fichu virus qui fesait ramer mon ordi!!!
0
Réponse 9 / 11
liguec1 Messages postés 1796 Statut Membre 78
 
tu peut supprimer tout les logiciel que tu as utiliser a part ccleaner si tu la telecharger qui est utile tous les jours.
de rien
0
Réponse 10 / 11
maxime4611 Messages postés 361 Statut Membre 11
 
et comment tu voit dans les rapport que le virus est supprimé s il te plait??
0
Réponse 11 / 11
liguec1 Messages postés 1796 Statut Membre 78
 
le nom du programme qui permet de lancer ces ficgier a tes contact msn est C:\WINDOWS\LBTWiz.exe , grace au rapport hijackthis je ne le vois plus.
tu aurai fais un rapport hijackthis avant on aurai vu ce processus.

derniere chose que je vais te demander de faire c'est de relancer hijackthis, une fois le rapport mis, tu retourne sur le logiciel et tu coche ces ligne et tu clique en bas sur fix it :

R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {95FBB1F0-B17C-4C18-A865-942098F50376} - (no file)
O3 - Toolbar: (no name) - {BFB5F154-9212-46F3-B547-AC6106030A54} - (no file)
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
symboles et écritures pour nick msn
Pando -
roro -

20 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses