Sujet Précédent Sujet Suivant

Accès au disque dur C:

Fermé
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 - 31 août 2008 à 02:03
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 - 3 sept. 2008 à 12:55
Bonjour, Depuis Hier (Samedi 30 Aout 2008) je n'arrive plus a acceder a mon DD C:, quand je veut y acceder voila ce que sa me met:


http://img513.imageshack.us/img513/8380/okze3.jpg


Voilà, merci d'avance.
A voir également:

108 réponses

Réponse 1 / 108
Utilisateur anonyme
31 août 2008 à 02:43
Re,

Aïe aïe Aïe !

Tu détiens le pompon très cher. Je n'ai jamais vu pire PC pollué.

Alors,
Je te le dis tout de suite : au cas où tu as des soucis suite aux opérations reprends contact avec moi depuis un autre PC pour récupérer le problème. Notamment tes données perso. Mais il s'agit juste là de préventions : au cas où.....

Il ne devrait pas y a avoir de problème. Tu peux avoir confiance.



Donc,
/!\ Pour les personnes ayant les mêmes problèmes ou similaires /!\
Ne postez pas sur cette discussion ! Créer votre propre topique en suivant cette procédure (Flash-player de Balltrap) afin d'obtenir une réponse plus efficace et ne pas perturber celui-ci. Peut-être que cette discussion vous apportera des solutions mais chaque infection est plus ou moins spécifique.

...Quelques conseils/recommandations...
- Tout d'abord, merci pour ta confiance :-)
- Ne crée pas d'autre discussion que celle-ci sur le forum : elle serait effacée, tu n'obtiendrais pas forcément une réponse plus rapidement, tu compliquerais la tâche des intervenants et tu chamboulerais l'intégrité du forum (si tu l'as déjà fais dis le moi).
- Suis les manip. dans l'ordre et poste tes réponses en fin de discussion afin d'en conserver la chronologie.
- Ne touche pas à la restauration système (sauf si obligation).
- Si la réponse n'arrive pas de suite, elle arrivera plus tard. Prends ton mal en patience ! ;-)
- Suis la désinfection jusqu'au bout ! Ce n'est pas parce que tu n'as plus d'alerte que le problème est résolu.
- Si certains liens ne sont plus accessibles, merci de me le signaler.
- Pour finir, je t'invite à consulter la charte de CCM.


Alors, on y va :

:-)

> Télécharge ComboFix : http://download.bleepingcomputer.com/sUBs/ComboFix.exe (par sUBs) sur ton Bureau.
Déconnecte toi du net et désactive ton antivirus pour que Combofix puisse s'exécuter normalement.
- Double clique combofix.exe
- Tape sur la touche 1 (Yes) pour démarrer le scan.
- Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.
NOTE : Le rapport se trouve également ici : C:\Combofix.txt
PS2 : Il peut s'avérer que le rapport Combofix soit trop long pour être supporter par CCM.net. Dans ce cas utilise ce service http://www.cijoint.fr pour me l'envoyer (dépose le fichier puis poste le lien sur le forum).
Attention, n'utilise pas ta souris ni ton clavier (ni un autre système de pointage) pendant que le programme tourne. Cela pourrait figer la machine.



Bon courage.

A+
2
Réponse 2 / 108
Utilisateur anonyme
31 août 2008 à 03:46
Ok,
alors,

> Lance Hijackthis :
- Puis sélectionne < Do a system scan only >
- Coche les cases des lignes suivantes : 

O2 - BHO: (no name) - {0130E5C8-9145-485D-AC55-2DBE533D2825} - \
O2 - BHO: (no name) - {03B60C47-A8FC-4009-B2A1-EFE73547860C} - \
O2 - BHO: (no name) - {04ED3FAC-C8AE-4C02-A2AE-B73631A044ED} - \
O2 - BHO: (no name) - {0625D0C5-3329-42F9-8521-2D0DAC24C9FE} - \
O2 - BHO: (no name) - {096BAD95-DD57-4D41-B265-8079DDBF31AE} - \
O2 - BHO: (no name) - {0AC4EB2D-095F-4348-9F6A-D67DD5E2994C} - \
O2 - BHO: (no name) - {0B8F7A4B-69CC-455E-8C7F-A87EBD4C102B} - \
O2 - BHO: (no name) - {0C3F6274-33D1-4AC8-B6D7-594C64D6DFF1} - \
O2 - BHO: (no name) - {113D6A19-0152-4CE1-AA67-D74B2E2666DB} - \
O2 - BHO: (no name) - {1298BC84-EA4A-4275-ACDE-7C3FA12E7CB5} - \
O2 - BHO: (no name) - {12C642FC-670F-4566-AC88-D535B9F4AD21} - \
O2 - BHO: (no name) - {12D03E97-A906-4E7D-BD1F-C341ED744650} - \
O2 - BHO: (no name) - {14348DD5-0889-474B-ACA8-EAB11965AC3B} - \
O2 - BHO: (no name) - {14982F75-23E9-40EF-B164-8C941461CD05} - \
O2 - BHO: (no name) - {14E1A912-B256-4791-AA76-DF439DF6C0D9} - \
O2 - BHO: (no name) - {15CB173B-74C4-415D-AF0E-55A6EEE2B611} - \
O2 - BHO: (no name) - {17C8CEF9-A179-4EB7-A71F-E3DE00195566} - \
O2 - BHO: (no name) - {1B53F997-B6C4-43F5-8794-8172A6750ADF} - \
O2 - BHO: (no name) - {1CCFC023-FE17-482B-ADBB-6B3F4FC4B3C4} - \
O2 - BHO: (no name) - {1D248F5D-9DA8-47BD-815D-71A8D26FF44E} - \
O2 - BHO: (no name) - {1F0203E2-6C10-4C04-B4B8-C3617DA216DC} - \
O2 - BHO: (no name) - {20B548E7-2E6E-4C7D-855A-86526A08BFBA} - \
O2 - BHO: (no name) - {21FC5E31-979E-48F5-A1D8-1A4E3A0F59E1} - \
O2 - BHO: (no name) - {22DFC511-DC56-4648-A808-EF69955CF949} - \
O2 - BHO: (no name) - {2377B471-A56B-4435-AF5E-9939810402D8} - \
O2 - BHO: (no name) - {26E616CA-16C5-4BF6-A6AF-59EA73B0A019} - \
O2 - BHO: (no name) - {27E3D768-A79F-45C5-B146-E6304A20190E} - \
O2 - BHO: (no name) - {281F1F91-5B79-4937-BEFA-5D5CA262D6B0} - \
O2 - BHO: (no name) - {2E3B1584-4CD5-40DC-AA50-A0CA25654584} - \
O2 - BHO: (no name) - {2F7AFFB0-7418-42A5-A9F3-A410E3F7CF22} - \
O2 - BHO: (no name) - {3103C8AE-CBA6-470B-B195-366D0FAE16A4} - \
O2 - BHO: (no name) - {314DF925-79A2-4ADD-BCE5-58AF57C7931D} - \
O2 - BHO: (no name) - {32A428E9-378A-454C-BCAD-CC86CA53CE0E} - \
O2 - BHO: (no name) - {34D75E83-5306-4A51-85AE-C0C12C545831} - \
O2 - BHO: (no name) - {351A178C-A7C5-463D-B883-3D17700DFC1E} - \
O2 - BHO: (no name) - {35BF99DA-B81B-4AF0-9D01-B638290BA3AA} - \
O2 - BHO: (no name) - {35DF685B-F4FB-4E6D-9172-97D7F50E5D84} - \
O2 - BHO: (no name) - {38284B0C-8F62-470C-BAC8-BEC9C1E133B1} - \
O2 - BHO: (no name) - {3A68A11F-10FA-4C24-BE59-31270671C3AF} - \
O2 - BHO: (no name) - {3CA1D857-4CCD-45F2-A956-0CD6B9372070} - \
O2 - BHO: (no name) - {3D85C278-4794-4359-947C-847249E2EC84} - \
O2 - BHO: (no name) - {3EB51013-0DA2-457E-9D66-F2614016B39B} - \
O2 - BHO: (no name) - {3EF7D927-D459-4973-BE08-31D91B486750} - \
O2 - BHO: (no name) - {3FB4136C-2136-4198-909C-2599EA37FCC9} - \
O2 - BHO: (no name) - {444C870F-8EA5-4DC1-B378-21733FF0D44D} - \
O2 - BHO: (no name) - {45544890-737D-4A0B-B03D-EB9D05C142BB} - \
O2 - BHO: (no name) - {45A94654-5CE9-4E95-93CF-B6C90129CBDD} - \
O2 - BHO: (no name) - {45AF4313-0AB8-4FFC-98B6-8D95D038F7D6} - \
O2 - BHO: (no name) - {461471A1-8DD9-4777-BF28-EBFA6A8201CE} - \
O2 - BHO: (no name) - {47842C1B-B938-40FC-94B5-7DF595798258} - \
O2 - BHO: (no name) - {48F15D47-FFAB-4BEE-962F-2D060EA2700F} - \
O2 - BHO: (no name) - {4A1E35E5-62D2-44B4-B7EC-7422C20BC7E3} - \
O2 - BHO: (no name) - {4BEDE203-BB3D-4546-9644-B8E1EE77490F} - \
O2 - BHO: (no name) - {4E061004-A23C-45ED-A8A9-37D7D51E0B2C} - \
O2 - BHO: (no name) - {4E600F9A-BE3A-4967-9E8F-3D63D295DC7D} - \
O2 - BHO: (no name) - {4E6C2CEB-0F81-4000-81F2-C2305AFFE358} - \
O2 - BHO: (no name) - {4F73980C-A681-41E2-9744-62B334022656} - \
O2 - BHO: (no name) - {56A4FF7F-E0C9-43B3-86B1-27FB8D538C66} - \
O2 - BHO: (no name) - {56ECD5B1-8808-4F18-B49D-C87BEA257E92} - \
O2 - BHO: (no name) - {5720BF8E-91B9-4B32-9E9E-0DAD29DC4DEB} - \
O2 - BHO: (no name) - {57FEC964-A5F2-4CC8-B112-981B110B4E0B} - \
O2 - BHO: (no name) - {59C33354-C1F3-43DD-999D-D307084E83A7} - \
O2 - BHO: (no name) - {5BF79144-C03D-43E6-8B0C-FF263A6539D1} - \
O2 - BHO: (no name) - {5CAE3802-1782-4148-9DA8-98EC1DB05643} - \
O2 - BHO: (no name) - {5D0C4503-D95E-4D84-BA4B-36AD1A66FDBD} - \
O2 - BHO: (no name) - {5E319DF2-1A8E-4B83-9894-B1ECB69B6D7E} - \
O2 - BHO: (no name) - {5F07C624-3B1B-411F-A0CD-B1FC87FEBB6D} - \
O2 - BHO: (no name) - {64238DFE-0B2A-49D0-8700-17FA2656691B} - \
O2 - BHO: (no name) - {66470971-E018-484C-B774-4D77CEE9D724} - \
O2 - BHO: (no name) - {676A48FF-0E73-4D35-A64F-4990AF44D7E7} - \
O2 - BHO: (no name) - {6A15B214-F98F-4585-818D-6FB222D6DB85} - \
O2 - BHO: (no name) - {6D24BBD4-4F58-4CF3-8514-37CA1810DF1E} - \
O2 - BHO: (no name) - {6FFABE92-6D1E-4828-B002-02DC47CA641A} - \
O2 - BHO: (no name) - {70ABE135-41A8-462C-B581-A474AA06D80B} - \
O2 - BHO: (no name) - {74D3DD98-B5B8-4924-9120-42B21E4CE6C8} - \
O2 - BHO: (no name) - {77AB3D1D-BC66-47AF-B89E-EBA36D6412D4} - \
O2 - BHO: (no name) - {7A58AAA1-3C22-417E-8A10-7D4440505034} - \
O2 - BHO: (no name) - {7AE139B9-53D4-4C00-93AB-D02F9CCAC088} - \
O2 - BHO: (no name) - {7BE12965-C6E2-48F6-B7B2-58071489AC1F} - \
O2 - BHO: (no name) - {7C3A7C65-91B0-4D7C-BE3B-DA3481C82BEA} - \
O2 - BHO: (no name) - {7D0818D3-EDA9-4776-8B28-954B9195E2B2} - \
O2 - BHO: (no name) - {7F37EB5D-313E-47E0-9BA2-E9F012FDECFA} - \
O2 - BHO: (no name) - {7F496771-ECB4-4655-B976-83413DDB6A6D} - \
O2 - BHO: (no name) - {812AC33C-25B3-4CB5-8768-0E151D963645} - \
O2 - BHO: (no name) - {8396E849-BB9F-4950-BE13-A26D47752ABC} - \
O2 - BHO: (no name) - {83FCD87D-1B16-4AE1-BE70-A5FB0280E3F4} - \
O2 - BHO: (no name) - {856E45F3-9B0D-471B-B884-A6BD1710DA85} - \
O2 - BHO: (no name) - {859BFC86-37E4-458E-84DE-660B157D823D} - \
O2 - BHO: (no name) - {86AC5E43-2358-4E52-A1C1-BAFFF29838F6} - \
O2 - BHO: (no name) - {8981D2EE-EDEC-4104-9872-F67D7FA7335F} - \
O2 - BHO: (no name) - {89EC64B9-F2FE-4787-8E49-8EE1C864955B} - \
O2 - BHO: (no name) - {8B67F037-2714-4DBA-840F-A5335BE1961C} - \
O2 - BHO: (no name) - {8B87A6E3-CB5F-4531-BC39-E36890A69258} - \
O2 - BHO: (no name) - {8C531162-7D0E-4E43-B243-9CE04F41EE95} - \
O2 - BHO: (no name) - {8E0F4792-C893-426C-B1DA-02A9FFB3A82F} - \
O2 - BHO: (no name) - {8F5F9E31-0BF6-4595-8A3C-DF60A5B44125} - \
O2 - BHO: (no name) - {90320B45-D9CD-44C8-A2ED-F459196144B7} - \
O2 - BHO: (no name) - {969C004F-4D12-44E1-B95C-E7A0A6FFE1A0} - \
O2 - BHO: (no name) - {96AC4BF5-DF95-41EB-898B-63D95215F2AC} - \
O2 - BHO: (no name) - {9B457F5D-7F52-43BF-90E9-652560F63A53} - \
O2 - BHO: (no name) - {9CB6B77C-2D48-43E8-9AF8-F6BEE16E9B30} - \
O2 - BHO: (no name) - {9E4DE732-0227-454F-B7A4-F16E52BAA28E} - \
O2 - BHO: (no name) - {9EDCFEC2-94D2-4C9E-A722-C91B1D579033} - \
O2 - BHO: (no name) - {9EEC10AA-1203-4501-A6D2-2EB0297933F6} - \
O2 - BHO: (no name) - {9FC7346C-7B49-45B0-A450-A68656749B32} - \
O2 - BHO: (no name) - {A16CAD5D-5E37-46F9-BCB7-4D6EAE768078} - \
O2 - BHO: (no name) - {A27227DE-3D99-4381-8C6A-F0A5F04749F5} - \
O2 - BHO: (no name) - {A2BAE230-EA4D-4B73-9A54-402D9DAA8BE4} - \
O2 - BHO: (no name) - {A36371E7-CB65-4B9B-B075-1E5052972CAF} - \
O2 - BHO: (no name) - {A590013C-9E95-4B46-8EFA-8688B6FC62AF} - \
O2 - BHO: (no name) - {A7E15C49-FB38-4EE0-B9EC-3E4C1BE82992} - \
O2 - BHO: (no name) - {A85094DB-5FE9-438D-8678-94F711AD9999} - \
O2 - BHO: (no name) - {ABF22855-2AB5-4659-8179-77CB69D49423} - \
O2 - BHO: (no name) - {AC58BBD1-4525-45C0-AFE9-A6F492CA21F5} - \
O2 - BHO: (no name) - {ADB653B1-A760-4D1E-B8A2-47CD7ACF2552} - \
O2 - BHO: (no name) - {AE6212A4-78D2-4D08-BD46-E91A5ED35340} - \
O2 - BHO: (no name) - {AF492940-23DF-472A-B762-C885025603C3} - \
O2 - BHO: (no name) - {AFAAA73A-28BB-4446-B0E3-F57E52B3D5C0} - \
O2 - BHO: (no name) - {B1999188-571D-4368-BD8D-C5E520DBFFF5} - \
O2 - BHO: (no name) - {B1C7DDE3-AAC5-4EF4-A56F-88AA4390861F} - \
O2 - BHO: (no name) - {B2143F00-851F-448B-9C8A-160E58CBB0AB} - \
O2 - BHO: (no name) - {B3A864EA-E40B-4D0B-8BC9-1E9D059BE8D1} - \
O2 - BHO: (no name) - {B417B5E2-1C05-48EF-8A76-15683BC993D4} - \
O2 - BHO: (no name) - {B4C8AC83-2102-4C79-83B8-05D31D1FD1F3} - \
O2 - BHO: (no name) - {B4E1AA31-5F19-4B3F-A0CC-74F891EC3A4B} - \
O2 - BHO: (no name) - {B9A340B7-864C-45A1-9285-AEAEB2FEBC02} - \
O2 - BHO: (no name) - {BF80866F-EA9B-4DFB-BF87-6CA5D0E24C2C} - \
O2 - BHO: (no name) - {C0DFDDB7-96F3-458E-8FBB-3BB14E31075C} - \
O2 - BHO: (no name) - {C15ADF02-6FAC-46AE-AD3E-6AA6289830F8} - \
O2 - BHO: (no name) - {C215B6E1-B860-4141-A497-E2EF8DAE08C1} - \
O2 - BHO: (no name) - {C448D627-A3A1-4788-AE3C-C808191BC749} - \
O2 - BHO: (no name) - {C6A55D31-3778-4EFA-9C1C-071B8001D9C1} - \
O2 - BHO: (no name) - {C97C0F8C-72DB-4120-95B3-2A14DAEFAC30} - \
O2 - BHO: (no name) - {C98C8DE5-97AE-489D-B88D-500F58615789} - \
O2 - BHO: (no name) - {C9C46745-B619-450F-8E48-994BD6B73B17} - \
O2 - BHO: (no name) - {CA441479-453D-43D9-B7D5-E11374E3D555} - \
O2 - BHO: (no name) - {CF0C6091-166D-48F1-A7C2-09089F75CE36} - \
O2 - BHO: (no name) - {CF11BF08-7D8C-48F8-9AEE-B347D867B3CD} - \
O2 - BHO: (no name) - {CF1EE0CF-9AF8-46C1-9815-DF68BD278A8C} - \
O2 - BHO: (no name) - {D17305AA-EAF6-4B1B-BB5A-E36E9FAEBBF1} - \
O2 - BHO: (no name) - {D3E94D5F-2975-49E1-BD27-685DDF09BA19} - \
O2 - BHO: (no name) - {D50BA98A-6AD4-4A19-A2B3-75741064C886} - \
O2 - BHO: (no name) - {D5771924-7036-42B0-9324-228D6D30DB45} - \
O2 - BHO: (no name) - {D587388C-5780-4880-9B0B-6DA0AB9676E0} - \
O2 - BHO: (no name) - {D5DE8CDD-3DC4-4005-B5E7-8AF2EFD59127} - \
O2 - BHO: (no name) - {D68E1246-AD92-465B-9100-5845B4F0B582} - \
O2 - BHO: (no name) - {D714B290-DB56-40CE-8276-04A507AFF830} - \
O2 - BHO: (no name) - {D7F8A4E7-9534-4639-8CFB-BB1F3E418A9C} - \
O2 - BHO: (no name) - {D857C8A0-7555-4EDA-86EC-DB5AF689A551} - \
O2 - BHO: (no name) - {D90864DA-E06F-43F9-9E96-47EED34406FB} - \
O2 - BHO: (no name) - {D97956D4-4F16-415D-A1A0-FA581D7EA513} - \
O2 - BHO: (no name) - {DAC48B05-E9F8-4461-A6BE-6B7A90B883A6} - \
O2 - BHO: (no name) - {DADA06CD-685B-4187-BD1F-CF76A07F2761} - \
O2 - BHO: (no name) - {DCC6AAF3-3CB8-45C4-A9A0-0DBA3B085DFC} - \
O2 - BHO: (no name) - {DEB00362-1E04-447D-8390-CE01C8179AEC} - \
O2 - BHO: (no name) - {E1A35D6A-BB9C-42E2-85D3-D40CA0763267} - \
O2 - BHO: (no name) - {E417759D-7799-4803-987A-450500A15CFE} - \
O2 - BHO: (no name) - {E71A6E77-A2DC-4DCD-97D3-50915490C150} - \
O2 - BHO: (no name) - {E90F1610-F9E9-4C16-9D9F-874C27AD6B0E} - \
O2 - BHO: (no name) - {E92F5196-8E28-4A4A-8FB7-4D248FFEABE0} - \
O2 - BHO: (no name) - {EA8A5765-B3BB-44C7-8E59-8F54702A39EF} - \
O2 - BHO: (no name) - {EC424831-628C-4B7B-8127-F34D7CA6547D} - \
O2 - BHO: (no name) - {ECAADA80-B271-47F8-8068-C5B6F00A9640} - \
O2 - BHO: (no name) - {ED20CF9F-9A7A-49F4-8BFC-EDF7BBDBB76B} - \
O2 - BHO: (no name) - {EF362487-7D11-4AAF-8AD9-BA98E8900C64} - \
O2 - BHO: (no name) - {F2A87735-11A6-4354-B725-A8E107954773} - \
O2 - BHO: (no name) - {F3CA6BB1-B06C-4C88-97EF-77ED9336A2B6} - \
O2 - BHO: (no name) - {F686D283-9A03-400A-9291-B4F7486CB9D4} - \
O2 - BHO: (no name) - {F776AEF5-AEB7-45B7-93F0-0024EE4A7AF2} - \
O2 - BHO: (no name) - {F81E40EB-504D-4377-9A2E-2D89AFACB733} - \
O2 - BHO: (no name) - {F8333A2E-FE81-43AA-83C0-E67300D2252E} - \
O2 - BHO: (no name) - {FCF6880F-C2A1-46B2-A825-22E0D2F0C163} - \

O3 - Toolbar: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) 

O9 - Extra button: (no name) - {AEF9B8DB-0DEF-4c0b-8209-661C9E82B8C3} - C:\Program Files\WinSysClean 2008 Trial\UDManager\UDManager.exe (file missing)
O9 - Extra button: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost (file missing)
O9 - Extra 'Tools' menuitem: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost (file missing) 

O16 - DPF: {733A5CA7-C0E1-41D7-9506-F4AA354B4500} (ActiveFormX Control) - file:///C:/Program%20Files/Intelore/AnimatedDesktop/advThemes/WorkDir/83490468/F iles/ActiveFormProj1.inf

Ensuite,
- Ferme toutes les autres fenêtres et applications (même internet)
- Clic sur < fixe checked >




Ensuite,
> Avec Combofix :
- Crée un nouveau document texte : clic droit de souris sur le bureau => Nouveau => Document Texte, et copie/colle dedans les lignes suivantes : 

Registry::
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\7c95cf1d] 
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced DHTML Enable] 
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Winspn] 
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Winupdate Engine] 

File::
C:\Documents and Settings\All Users\Application Data\1ÌØ13.sys 
C:\WINDOWS\system32\130F639A6A.sys
C:\WINDOWS\system32\CCAAB69B4E.sys 
C:\WINDOWS\system32\ayteedam.dll
C:\WINDOWS\system32\mlddjir.exe
C:\WINDOWS\system32\mlddjir.exe
C:\WINDOWS\system32\wupeng.exe

Folder::
C:\Documents and Settings\Appûø 
C:\WINDOWS\pchealth

Driver::
1ÌØ13
130F639A6A
CCAAB69B4E

- Enregistre ce fichier sous le nom CFScript (Type du fichier : tous les fichiers)
- Ferme tous tes navigateurs web (donc copie ou imprime les instructions suivantes avant si besoin est).
- Désactive ton antivirus et tes autres protections résidentes (ex : Spybot) si tu en as (c'est important).
- Fait un glisser/déposer de ce fichier CFScript sur le programme ComboFix.exe comme sur cette image.
(Explications du glisser/coller : Clique sur le fichier CFScript, maintient le doigt enfoncé et glisse la souris pour que l'icône du CFScript vienne recouvrir l'icône de Combofix. Relâche alors le bouton de la souris).
- Combofix va démarrer puis une fenêtre bleue va apparaître. Au message qui s'affiche (Type 1 to continue, or 2 to abort) : tape 1 puis valide.
- Patiente le temps du scan. Le bureau va disparaître à plusieurs reprises: c'est normal !
- Ne touche à rien tant que le scan n'est pas terminé sinon le PC peut planter !
- Une fois le scan achevé, un rapport va s'afficher: poste le stp.
PS : Si le fichier ne s'ouvre pas, il se trouve ici => C:\ComboFix.txt
PS2 : Il peut s'avérer que le rapport Combofix soit trop long pour être supporter par CCM.net. Dans ce cas utilise ce service http://www.cijoint.fr pour me l'envoyer (dépose le fichier puis poste le lien sur le forum).




Après,
> Relance ton PC en mode normal puis Hijackthis :
Puis sélectionne < do a system scan and save a logfile >,

Et envoie, par collier/coller, ton log Hijackthis,





Après,
> Rends toi sur ce site virustotal et fais analyser le/les fichier(s) suivant(s) stp : (copie/colle la/les ligne(s) dans le cadre "envoyer un fichier")
Si problème : http://pageperso.aol.fr/loraline60/virus_total.htm 

C:\WINDOWS\LBTWiz.exe
C:\Documents and Settings\All Users\Application Data\SysMon\SysMon.dll

et poste le/les résultat(s) par copier/coller stp (ou le/les lien(s) http, c'est plus rapide et préférable).



Bon courage.


A+
1
Réponse 3 / 108
Utilisateur anonyme
31 août 2008 à 02:16
Bonsoir,
Commence par poster un rapport HijackThis stp,
>Télécharge HiJackThis : https://www.commentcamarche.net/telecharger/securite/11747-hijackthis/
- Lance le programme, puis sélectionne < do a system scan and save a logfile >
- Enregistre le rapport sur ton bureau.
Et envoie, par copier/coller, ton log Hijackthis sur le forum,


A+
0
Claude Lachance Messages postés 33486 Date d'inscription lundi 15 janvier 2007 Statut Contributeur Dernière intervention 1 février 2024 1 023
31 août 2008 à 02:34
Salut DIID

Si le C: est son bootdisk comme c'est généralement le cas, ce sera difficile.

Dans cette situation, démarre sur le CD de XP et utilise la console de réparation pour réparer. Ciao !

0
Utilisateur anonyme > Claude Lachance Messages postés 33486 Date d'inscription lundi 15 janvier 2007 Statut Contributeur Dernière intervention 1 février 2024
31 août 2008 à 02:36
Re Claude,

Bah non ! Je pense qu'il voulait parler de l'accès au poste de travail.
La preuve il vient de poster le rapport.

;-)
0
Claude Lachance Messages postés 33486 Date d'inscription lundi 15 janvier 2007 Statut Contributeur Dernière intervention 1 février 2024 1 023 > Utilisateur anonyme
31 août 2008 à 02:37
Ah oui, en effet! Je te laisse le monsieur. Mes hommages ! :-)

0
Utilisateur anonyme > Claude Lachance Messages postés 33486 Date d'inscription lundi 15 janvier 2007 Statut Contributeur Dernière intervention 1 février 2024
31 août 2008 à 02:37
De plus sinon il n'aurait pas pu faire la capture d'écran.

A+
0
Réponse 4 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 02:33
Voila le rapport:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:33:29, on 31/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\winlogon.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {0130E5C8-9145-485D-AC55-2DBE533D2825} - \
O2 - BHO: (no name) - {03B60C47-A8FC-4009-B2A1-EFE73547860C} - \
O2 - BHO: (no name) - {04ED3FAC-C8AE-4C02-A2AE-B73631A044ED} - \
O2 - BHO: (no name) - {0625D0C5-3329-42F9-8521-2D0DAC24C9FE} - \
O2 - BHO: (no name) - {096BAD95-DD57-4D41-B265-8079DDBF31AE} - \
O2 - BHO: (no name) - {0AC4EB2D-095F-4348-9F6A-D67DD5E2994C} - \
O2 - BHO: (no name) - {0B8F7A4B-69CC-455E-8C7F-A87EBD4C102B} - \
O2 - BHO: (no name) - {0C3F6274-33D1-4AC8-B6D7-594C64D6DFF1} - \
O2 - BHO: (no name) - {0F3A6864-B20A-47A1-BCFE-4972C395C83C} - (no file)
O2 - BHO: (no name) - {113D6A19-0152-4CE1-AA67-D74B2E2666DB} - \
O2 - BHO: (no name) - {1298BC84-EA4A-4275-ACDE-7C3FA12E7CB5} - \
O2 - BHO: (no name) - {12C642FC-670F-4566-AC88-D535B9F4AD21} - \
O2 - BHO: (no name) - {12D03E97-A906-4E7D-BD1F-C341ED744650} - \
O2 - BHO: (no name) - {14348DD5-0889-474B-ACA8-EAB11965AC3B} - \
O2 - BHO: (no name) - {14982F75-23E9-40EF-B164-8C941461CD05} - \
O2 - BHO: (no name) - {14E1A912-B256-4791-AA76-DF439DF6C0D9} - \
O2 - BHO: (no name) - {15CB173B-74C4-415D-AF0E-55A6EEE2B611} - \
O2 - BHO: (no name) - {17C8CEF9-A179-4EB7-A71F-E3DE00195566} - \
O2 - BHO: (no name) - {1B53F997-B6C4-43F5-8794-8172A6750ADF} - \
O2 - BHO: (no name) - {1CCFC023-FE17-482B-ADBB-6B3F4FC4B3C4} - \
O2 - BHO: (no name) - {1D248F5D-9DA8-47BD-815D-71A8D26FF44E} - \
O2 - BHO: (no name) - {1F0203E2-6C10-4C04-B4B8-C3617DA216DC} - \
O2 - BHO: (no name) - {20B548E7-2E6E-4C7D-855A-86526A08BFBA} - \
O2 - BHO: (no name) - {21FC5E31-979E-48F5-A1D8-1A4E3A0F59E1} - \
O2 - BHO: (no name) - {22DFC511-DC56-4648-A808-EF69955CF949} - \
O2 - BHO: (no name) - {2377B471-A56B-4435-AF5E-9939810402D8} - \
O2 - BHO: (no name) - {26E616CA-16C5-4BF6-A6AF-59EA73B0A019} - \
O2 - BHO: (no name) - {27E3D768-A79F-45C5-B146-E6304A20190E} - \
O2 - BHO: (no name) - {281F1F91-5B79-4937-BEFA-5D5CA262D6B0} - \
O2 - BHO: (no name) - {2E3B1584-4CD5-40DC-AA50-A0CA25654584} - \
O2 - BHO: (no name) - {2F7AFFB0-7418-42A5-A9F3-A410E3F7CF22} - \
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {3103C8AE-CBA6-470B-B195-366D0FAE16A4} - \
O2 - BHO: (no name) - {314DF925-79A2-4ADD-BCE5-58AF57C7931D} - \
O2 - BHO: (no name) - {32A428E9-378A-454C-BCAD-CC86CA53CE0E} - \
O2 - BHO: (no name) - {34D75E83-5306-4A51-85AE-C0C12C545831} - \
O2 - BHO: (no name) - {351A178C-A7C5-463D-B883-3D17700DFC1E} - \
O2 - BHO: (no name) - {35BF99DA-B81B-4AF0-9D01-B638290BA3AA} - \
O2 - BHO: (no name) - {35DF685B-F4FB-4E6D-9172-97D7F50E5D84} - \
O2 - BHO: (no name) - {38284B0C-8F62-470C-BAC8-BEC9C1E133B1} - \
O2 - BHO: (no name) - {3A68A11F-10FA-4C24-BE59-31270671C3AF} - \
O2 - BHO: (no name) - {3CA1D857-4CCD-45F2-A956-0CD6B9372070} - \
O2 - BHO: (no name) - {3D85C278-4794-4359-947C-847249E2EC84} - \
O2 - BHO: 0 - {3E9D4DEC-3C76-4EF6-88A8-37C40454AF4C} - (no file)
O2 - BHO: (no name) - {3EB51013-0DA2-457E-9D66-F2614016B39B} - \
O2 - BHO: (no name) - {3EF7D927-D459-4973-BE08-31D91B486750} - \
O2 - BHO: (no name) - {3FB4136C-2136-4198-909C-2599EA37FCC9} - \
O2 - BHO: (no name) - {444C870F-8EA5-4DC1-B378-21733FF0D44D} - \
O2 - BHO: (no name) - {45544890-737D-4A0B-B03D-EB9D05C142BB} - \
O2 - BHO: (no name) - {45A94654-5CE9-4E95-93CF-B6C90129CBDD} - \
O2 - BHO: (no name) - {45AF4313-0AB8-4FFC-98B6-8D95D038F7D6} - \
O2 - BHO: (no name) - {461471A1-8DD9-4777-BF28-EBFA6A8201CE} - \
O2 - BHO: (no name) - {47842C1B-B938-40FC-94B5-7DF595798258} - \
O2 - BHO: (no name) - {48F15D47-FFAB-4BEE-962F-2D060EA2700F} - \
O2 - BHO: (no name) - {4A1E35E5-62D2-44B4-B7EC-7422C20BC7E3} - \
O2 - BHO: (no name) - {4BEDE203-BB3D-4546-9644-B8E1EE77490F} - \
O2 - BHO: (no name) - {4E061004-A23C-45ED-A8A9-37D7D51E0B2C} - \
O2 - BHO: (no name) - {4E600F9A-BE3A-4967-9E8F-3D63D295DC7D} - \
O2 - BHO: (no name) - {4E6C2CEB-0F81-4000-81F2-C2305AFFE358} - \
O2 - BHO: (no name) - {4F73980C-A681-41E2-9744-62B334022656} - \
O2 - BHO: (no name) - {56A4FF7F-E0C9-43B3-86B1-27FB8D538C66} - \
O2 - BHO: (no name) - {56ECD5B1-8808-4F18-B49D-C87BEA257E92} - \
O2 - BHO: (no name) - {5720BF8E-91B9-4B32-9E9E-0DAD29DC4DEB} - \
O2 - BHO: (no name) - {57FEC964-A5F2-4CC8-B112-981B110B4E0B} - \
O2 - BHO: (no name) - {59C33354-C1F3-43DD-999D-D307084E83A7} - \
O2 - BHO: (no name) - {5BF79144-C03D-43E6-8B0C-FF263A6539D1} - \
O2 - BHO: (no name) - {5CAE3802-1782-4148-9DA8-98EC1DB05643} - \
O2 - BHO: (no name) - {5D0C4503-D95E-4D84-BA4B-36AD1A66FDBD} - \
O2 - BHO: (no name) - {5E319DF2-1A8E-4B83-9894-B1ECB69B6D7E} - \
O2 - BHO: ohb - {5ED7D3DE-6DBE-4516-8712-01B1B64B7057} - (no file)
O2 - BHO: (no name) - {5F07C624-3B1B-411F-A0CD-B1FC87FEBB6D} - \
O2 - BHO: (no name) - {64238DFE-0B2A-49D0-8700-17FA2656691B} - \
O2 - BHO: (no name) - {66470971-E018-484C-B774-4D77CEE9D724} - \
O2 - BHO: (no name) - {676A48FF-0E73-4D35-A64F-4990AF44D7E7} - \
O2 - BHO: (no name) - {6A15B214-F98F-4585-818D-6FB222D6DB85} - \
O2 - BHO: (no name) - {6D24BBD4-4F58-4CF3-8514-37CA1810DF1E} - \
O2 - BHO: (no name) - {6DE5DAC0-ED11-4663-83C5-731538F1FF4E} - (no file)
O2 - BHO: (no name) - {6FFABE92-6D1E-4828-B002-02DC47CA641A} - \
O2 - BHO: (no name) - {70ABE135-41A8-462C-B581-A474AA06D80B} - \
O2 - BHO: (no name) - {74D3DD98-B5B8-4924-9120-42B21E4CE6C8} - \
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {77AB3D1D-BC66-47AF-B89E-EBA36D6412D4} - \
O2 - BHO: (no name) - {7A58AAA1-3C22-417E-8A10-7D4440505034} - \
O2 - BHO: (no name) - {7AE139B9-53D4-4C00-93AB-D02F9CCAC088} - \
O2 - BHO: (no name) - {7BE12965-C6E2-48F6-B7B2-58071489AC1F} - \
O2 - BHO: (no name) - {7C3A7C65-91B0-4D7C-BE3B-DA3481C82BEA} - \
O2 - BHO: (no name) - {7D0818D3-EDA9-4776-8B28-954B9195E2B2} - \
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {7F37EB5D-313E-47E0-9BA2-E9F012FDECFA} - \
O2 - BHO: (no name) - {7F496771-ECB4-4655-B976-83413DDB6A6D} - \
O2 - BHO: (no name) - {812AC33C-25B3-4CB5-8768-0E151D963645} - \
O2 - BHO: (no name) - {8396E849-BB9F-4950-BE13-A26D47752ABC} - \
O2 - BHO: (no name) - {83FCD87D-1B16-4AE1-BE70-A5FB0280E3F4} - \
O2 - BHO: (no name) - {856E45F3-9B0D-471B-B884-A6BD1710DA85} - \
O2 - BHO: (no name) - {859BFC86-37E4-458E-84DE-660B157D823D} - \
O2 - BHO: (no name) - {86AC5E43-2358-4E52-A1C1-BAFFF29838F6} - \
O2 - BHO: (no name) - {8981D2EE-EDEC-4104-9872-F67D7FA7335F} - \
O2 - BHO: (no name) - {89EC64B9-F2FE-4787-8E49-8EE1C864955B} - \
O2 - BHO: (no name) - {8B67F037-2714-4DBA-840F-A5335BE1961C} - \
O2 - BHO: (no name) - {8B87A6E3-CB5F-4531-BC39-E36890A69258} - \
O2 - BHO: (no name) - {8C531162-7D0E-4E43-B243-9CE04F41EE95} - \
O2 - BHO: (no name) - {8E0F4792-C893-426C-B1DA-02A9FFB3A82F} - \
O2 - BHO: (no name) - {8F5F9E31-0BF6-4595-8A3C-DF60A5B44125} - \
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {90320B45-D9CD-44C8-A2ED-F459196144B7} - \
O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.0\EasyGifAnimator_Toolbar.dll
O2 - BHO: (no name) - {969C004F-4D12-44E1-B95C-E7A0A6FFE1A0} - \
O2 - BHO: (no name) - {96AC4BF5-DF95-41EB-898B-63D95215F2AC} - \
O2 - BHO: Mirar - {9A9C9B69-F908-4AAB-8D0C-10EA8997F37E} - C:\WINDOWS\system32\version69ie7fix.dll
O2 - BHO: (no name) - {9B457F5D-7F52-43BF-90E9-652560F63A53} - \
O2 - BHO: (no name) - {9CB6B77C-2D48-43E8-9AF8-F6BEE16E9B30} - \
O2 - BHO: (no name) - {9E4DE732-0227-454F-B7A4-F16E52BAA28E} - \
O2 - BHO: (no name) - {9EDCFEC2-94D2-4C9E-A722-C91B1D579033} - \
O2 - BHO: (no name) - {9EEC10AA-1203-4501-A6D2-2EB0297933F6} - \
O2 - BHO: (no name) - {9FC7346C-7B49-45B0-A450-A68656749B32} - \
O2 - BHO: (no name) - {A16CAD5D-5E37-46F9-BCB7-4D6EAE768078} - \
O2 - BHO: (no name) - {A27227DE-3D99-4381-8C6A-F0A5F04749F5} - \
O2 - BHO: (no name) - {A2BAE230-EA4D-4B73-9A54-402D9DAA8BE4} - \
O2 - BHO: (no name) - {A36371E7-CB65-4B9B-B075-1E5052972CAF} - \
O2 - BHO: (no name) - {A590013C-9E95-4B46-8EFA-8688B6FC62AF} - \
O2 - BHO: (no name) - {A7E15C49-FB38-4EE0-B9EC-3E4C1BE82992} - \
O2 - BHO: (no name) - {A85094DB-5FE9-438D-8678-94F711AD9999} - \
O2 - BHO: (no name) - {A95B2816-1D7E-4561-A202-68C0DE02353A} - (no file)
O2 - BHO: (no name) - {ABF22855-2AB5-4659-8179-77CB69D49423} - \
O2 - BHO: (no name) - {AC58BBD1-4525-45C0-AFE9-A6F492CA21F5} - \
O2 - BHO: (no name) - {ADB653B1-A760-4D1E-B8A2-47CD7ACF2552} - \
O2 - BHO: (no name) - {AE6212A4-78D2-4D08-BD46-E91A5ED35340} - \
O2 - BHO: (no name) - {AF492940-23DF-472A-B762-C885025603C3} - \
O2 - BHO: (no name) - {AFAAA73A-28BB-4446-B0E3-F57E52B3D5C0} - \
O2 - BHO: (no name) - {B1999188-571D-4368-BD8D-C5E520DBFFF5} - \
O2 - BHO: (no name) - {B1C7DDE3-AAC5-4EF4-A56F-88AA4390861F} - \
O2 - BHO: (no name) - {B2143F00-851F-448B-9C8A-160E58CBB0AB} - \
O2 - BHO: (no name) - {B3A864EA-E40B-4D0B-8BC9-1E9D059BE8D1} - \
O2 - BHO: (no name) - {B417B5E2-1C05-48EF-8A76-15683BC993D4} - \
O2 - BHO: (no name) - {B4C8AC83-2102-4C79-83B8-05D31D1FD1F3} - \
O2 - BHO: (no name) - {B4E1AA31-5F19-4B3F-A0CC-74F891EC3A4B} - \
O2 - BHO: (no name) - {B9A340B7-864C-45A1-9285-AEAEB2FEBC02} - \
O2 - BHO: (no name) - {BF80866F-EA9B-4DFB-BF87-6CA5D0E24C2C} - \
O2 - BHO: (no name) - {C0DFDDB7-96F3-458E-8FBB-3BB14E31075C} - \
O2 - BHO: (no name) - {C15ADF02-6FAC-46AE-AD3E-6AA6289830F8} - \
O2 - BHO: (no name) - {C215B6E1-B860-4141-A497-E2EF8DAE08C1} - \
O2 - BHO: (no name) - {C448D627-A3A1-4788-AE3C-C808191BC749} - \
O2 - BHO: (no name) - {C6A55D31-3778-4EFA-9C1C-071B8001D9C1} - \
O2 - BHO: (no name) - {C97C0F8C-72DB-4120-95B3-2A14DAEFAC30} - \
O2 - BHO: (no name) - {C98C8DE5-97AE-489D-B88D-500F58615789} - \
O2 - BHO: (no name) - {C9C46745-B619-450F-8E48-994BD6B73B17} - \
O2 - BHO: (no name) - {CA441479-453D-43D9-B7D5-E11374E3D555} - \
O2 - BHO: (no name) - {CF0C6091-166D-48F1-A7C2-09089F75CE36} - \
O2 - BHO: (no name) - {CF11BF08-7D8C-48F8-9AEE-B347D867B3CD} - \
O2 - BHO: (no name) - {CF1EE0CF-9AF8-46C1-9815-DF68BD278A8C} - \
O2 - BHO: (no name) - {D17305AA-EAF6-4B1B-BB5A-E36E9FAEBBF1} - \
O2 - BHO: (no name) - {D3E94D5F-2975-49E1-BD27-685DDF09BA19} - \
O2 - BHO: (no name) - {D50BA98A-6AD4-4A19-A2B3-75741064C886} - \
O2 - BHO: (no name) - {D5771924-7036-42B0-9324-228D6D30DB45} - \
O2 - BHO: (no name) - {D587388C-5780-4880-9B0B-6DA0AB9676E0} - \
O2 - BHO: (no name) - {D5DE8CDD-3DC4-4005-B5E7-8AF2EFD59127} - \
O2 - BHO: (no name) - {D68E1246-AD92-465B-9100-5845B4F0B582} - \
O2 - BHO: (no name) - {D714B290-DB56-40CE-8276-04A507AFF830} - \
O2 - BHO: (no name) - {D7F8A4E7-9534-4639-8CFB-BB1F3E418A9C} - \
O2 - BHO: (no name) - {D857C8A0-7555-4EDA-86EC-DB5AF689A551} - \
O2 - BHO: (no name) - {D90864DA-E06F-43F9-9E96-47EED34406FB} - \
O2 - BHO: (no name) - {D97956D4-4F16-415D-A1A0-FA581D7EA513} - \
O2 - BHO: (no name) - {DAC48B05-E9F8-4461-A6BE-6B7A90B883A6} - \
O2 - BHO: (no name) - {DADA06CD-685B-4187-BD1F-CF76A07F2761} - \
O2 - BHO: (no name) - {DCC6AAF3-3CB8-45C4-A9A0-0DBA3B085DFC} - \
O2 - BHO: (no name) - {DEB00362-1E04-447D-8390-CE01C8179AEC} - \
O2 - BHO: (no name) - {E1A35D6A-BB9C-42E2-85D3-D40CA0763267} - \
O2 - BHO: (no name) - {E417759D-7799-4803-987A-450500A15CFE} - \
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O2 - BHO: (no name) - {E71A6E77-A2DC-4DCD-97D3-50915490C150} - \
O2 - BHO: (no name) - {E90F1610-F9E9-4C16-9D9F-874C27AD6B0E} - \
O2 - BHO: (no name) - {E92F5196-8E28-4A4A-8FB7-4D248FFEABE0} - \
O2 - BHO: (no name) - {EA8A5765-B3BB-44C7-8E59-8F54702A39EF} - \
O2 - BHO: (no name) - {EC424831-628C-4B7B-8127-F34D7CA6547D} - \
O2 - BHO: (no name) - {ECAADA80-B271-47F8-8068-C5B6F00A9640} - \
O2 - BHO: (no name) - {ECCC63C4-23BE-4A4E-A540-2D87F5386564} - (no file)
O2 - BHO: (no name) - {ED20CF9F-9A7A-49F4-8BFC-EDF7BBDBB76B} - \
O2 - BHO: (no name) - {EF362487-7D11-4AAF-8AD9-BA98E8900C64} - \
O2 - BHO: (no name) - {F2A87735-11A6-4354-B725-A8E107954773} - \
O2 - BHO: (no name) - {F3CA6BB1-B06C-4C88-97EF-77ED9336A2B6} - \
O2 - BHO: (no name) - {F686D283-9A03-400A-9291-B4F7486CB9D4} - \
O2 - BHO: (no name) - {F6D547AF-1924-4C50-8F49-6EEFBFB0C97C} - (no file)
O2 - BHO: (no name) - {F776AEF5-AEB7-45B7-93F0-0024EE4A7AF2} - \
O2 - BHO: (no name) - {F81E40EB-504D-4377-9A2E-2D89AFACB733} - \
O2 - BHO: (no name) - {F8333A2E-FE81-43AA-83C0-E67300D2252E} - \
O2 - BHO: (no name) - {FC1B64D9-3499-4791-82D5-AABAC3FAEA45} - (no file)
O2 - BHO: (no name) - {FCF6880F-C2A1-46B2-A825-22E0D2F0C163} - \
O3 - Toolbar: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.0\EasyGifAnimator_Toolbar.dll
O3 - Toolbar: Mirar - {9A9C9B68-F908-4AAB-8D0C-10EA8997F37E} - C:\WINDOWS\system32\version69ie7fix.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Microsoft Updates] svehost.exe
O4 - HKLM\..\RunServices: [Microsoft Updates] svehost.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {AEF9B8DB-0DEF-4c0b-8209-661C9E82B8C3} - C:\Program Files\WinSysClean 2008 Trial\UDManager\UDManager.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost (file missing)
O9 - Extra 'Tools' menuitem: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost (file missing)
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {733A5CA7-C0E1-41D7-9506-F4AA354B4500} (ActiveFormX Control) - file:///C:/Program%20Files/Intelore/AnimatedDesktop/advThemes/WorkDir/83490468/Files/ActiveFormProj1.inf
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-45677db9d513036c.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game07.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F551} (Flatcast Viewer 4.15) - http://www.flatcast.info/objects/NpFv415.dll
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O20 - Winlogon Notify: bvxncbvq - C:\WINDOWS\
O20 - Winlogon Notify: DfLogon - C:\WINDOWS\SYSTEM32\LogonDll.dll
O20 - Winlogon Notify: pmnkhff - pmnkhff.dll (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: DF5Serv - Faronics Corporation - C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe (file missing)
0
zigguy Messages postés 169 Date d'inscription lundi 18 février 2008 Statut Membre Dernière intervention 28 juillet 2012 31
31 août 2008 à 09:49
jamais il faut faire cela donner tout dévoiler ton systeme sur un ... jamais tu donnes au ... Piratage ce que le pirate vas venir chez toi,

ou t'envoyer un virus
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 02:40
Non, claude lachance a raison, je ne peut pas telecharger des logiciel puisque je n'arrive pas a y acceder dans mon duisque dur.


La je suis en mode sans echec, c'est pour sa que j'y arrive.
0
Claude Lachance Messages postés 33486 Date d'inscription lundi 15 janvier 2007 Statut Contributeur Dernière intervention 1 février 2024 1 023
31 août 2008 à 02:43
Si tu y arrives en mode sans échec, on peut supposer que tu as soi un conflit de pilote (vérifie la présence de ! dans ton gestionnaire de périphérique, soi un virus mais pas un disque dur avec un index endommagé, comme je croyais. Continue avec DIID qui est bien meilleur que moi en désinfection.

Vérifie tout de même dans ton gestionnaire de périphérique.

Ciao !
0
Utilisateur anonyme
31 août 2008 à 02:44
Ok,
alors fais la manip. suivante en MSE stp si tu n'as pas accès au mode normal.

A+
0
Réponse 6 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 02:46
Att DllD, avant de faire la manipulation, j'ai deepfreeze.

Donc quand je redemarre l'ordi, tous ce que je fait maintenant peut être suprimé.
0
Utilisateur anonyme
31 août 2008 à 02:48
Ok,
Parfait.

Je ne connaissais pas ce log.

Alors vas-y avec combo stp.
Puis poste son srapport plus un nouvel HiJackT stp.

A+
0
Réponse 7 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 02:52
Bon je commence avec le scan de combo.
0
sogeking
31 août 2008 à 02:57
sogeki no shima de ... lu lu la la lu ... sogegege soge soge sogekingu.
0
Réponse 8 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 03:03
Voila le rapport combo:

ComboFix 08-08-30.01 - Administrateur 2008-08-31 2:53:54.1 - NTFSx86 NETWORK
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.791 [GMT 2:00]
Endroit: C:\Documents and Settings\Administrateur.KOCA\Bureau\ComboFix.exe

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\BM7fa6fc81.txt
C:\WINDOWS\BM7fa6fc81.xml
C:\WINDOWS\system32\ajjeksnt.ini
C:\WINDOWS\system32\bhgiscin.dll
C:\WINDOWS\system32\cbmfjgio.dll
C:\WINDOWS\system32\cdeeg.ini
C:\WINDOWS\system32\cdeeg.ini2
C:\WINDOWS\system32\ceisiqnt.ini
C:\WINDOWS\system32\dqdjswaq.ini
C:\WINDOWS\system32\drivers\npf.sys
C:\WINDOWS\system32\drvtusr.dll
C:\WINDOWS\system32\ehewlcrv.ini
C:\WINDOWS\system32\exxkxqhl.ini
C:\WINDOWS\system32\fgxbtvhv.dll
C:\WINDOWS\system32\gfemchff.dll
C:\WINDOWS\system32\ggjlm.ini2
C:\WINDOWS\system32\hmngmlgx.dll
C:\WINDOWS\system32\iqglbmvo.ini
C:\WINDOWS\system32\jonqakss.ini
C:\WINDOWS\system32\kntufcks.ini
C:\WINDOWS\system32\ksmbsxmg.ini
C:\WINDOWS\system32\kuchelma.ini
C:\WINDOWS\system32\kvcmcvvy.ini
C:\WINDOWS\system32\lgyoblco.ini
C:\WINDOWS\system32\lvgxdeus.ini
C:\WINDOWS\system32\madeetya.ini
C:\WINDOWS\system32\nicsighb.ini
C:\WINDOWS\system32\njtjgtfx.ini
C:\WINDOWS\system32\oquaxaym.ini
C:\WINDOWS\system32\oskwtkoa.ini
C:\WINDOWS\system32\packet.dll
C:\WINDOWS\system32\pfwxdyos.ini
C:\WINDOWS\system32\ponxymac.ini
C:\WINDOWS\system32\psgrhqwi.dll
C:\WINDOWS\system32\pthreadVC.dll
C:\WINDOWS\system32\qqerosid.ini
C:\WINDOWS\system32\qqtss.ini
C:\WINDOWS\system32\qqtss.ini2
C:\WINDOWS\system32\qvriqkjh.ini
C:\WINDOWS\system32\qxkivgbm.dll
C:\WINDOWS\system32\rhenmbcp.dll
C:\WINDOWS\system32\rlsijeog.ini
C:\WINDOWS\system32\rqbkaqca.ini
C:\WINDOWS\system32\rrfdralf.dll
C:\WINDOWS\system32\srqss.ini
C:\WINDOWS\system32\srqss.ini2
C:\WINDOWS\system32\suseiorw.dll
C:\WINDOWS\system32\sutbkham.ini
C:\WINDOWS\system32\tcoutuvp.ini
C:\WINDOWS\system32\umtvrmhy.dll
C:\WINDOWS\system32\uqvqhvto.ini
C:\WINDOWS\system32\vjjvqghq.dll
C:\WINDOWS\system32\vkxyjvkm.ini
C:\WINDOWS\system32\vxpvfgls.ini
C:\WINDOWS\system32\wanpacket.dll
C:\WINDOWS\system32\wbhcynel.dll
C:\WINDOWS\system32\wpcap.dll
C:\WINDOWS\system32\wvjspseg.ini
C:\WINDOWS\system32\wybeg.ini2
C:\WINDOWS\system32\xifoylhq.ini
.
---- Previous Run -------
.
C:\Program Files\Fichiers communs\delsim
C:\WINDOWS\C005_jpg.zip
C:\WINDOWS\Casino.ico
C:\WINDOWS\cookies.ini
C:\WINDOWS\Free Online Dating.ico
C:\WINDOWS\pskt.ini
C:\WINDOWS\Spyware Remover.ico
C:\WINDOWS\system32\bund1
C:\WINDOWS\system32\bund1\ClientBundle1.exe
C:\WINDOWS\system32\bund1\temp.txt
C:\WINDOWS\system32\bvxncbvq.dllbox
C:\WINDOWS\system32\dao350.dll
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\Microsoft\backup.ftp
C:\WINDOWS\system32\Microsoft\backup.tftp
C:\WINDOWS\system32\MSINET.oca
C:\WINDOWS\system32\nvs2.inf
C:\WINDOWS\system32\smpi1
C:\WINDOWS\system32\svehost.exe
C:\WINDOWS\system32\UpMedia
C:\WINDOWS\system32\version69ie7fix.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_NPF
-------\Service_NPF


((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-07-28 to 2008-08-31 ))))))))))))))))))))))))))))))))))))
.

2152-03-02 07:07 . 2152-03-02 07:07 3,120 --a------ C:\WINDOWS\MF_C420.lfa
2031-09-13 16:30 . 2005-11-13 10:46 316,640 --a------ C:\WINDOWS\WMSysPr9.prx
2008-08-31 02:33 . 2008-08-31 02:33 <REP> d-------- C:\Program Files\Trend Micro
2008-08-31 02:25 . 2008-08-31 02:25 <REP> d----c--- C:\Documents and Settings\Appûø
2008-08-30 21:50 . 2008-08-30 21:50 268 --ah-c--- C:\sqmdata00.sqm
2008-08-30 21:50 . 2008-08-30 21:50 244 --ah-c--- C:\sqmnoopt00.sqm
2008-08-30 20:53 . 2008-08-30 20:53 <REP> d-------- C:\WINDOWS\Mozilla

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2031-09-13 14:27 --------- d-----w C:\Program Files\Fichiers communs\IdiomaX Uninstall
2008-08-30 23:45 --------- dc--a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-08-30 19:49 --------- d-----w C:\Program Files\Messenger Plus! Live
2007-10-08 19:23 13 -c-h--w C:\Documents and Settings\All Users\Application Data\1ÌØ13.sys
2008-05-05 23:59 251,392 ----a-w C:\Program Files\opera\program\plugins\dapop.dll
2008-02-15 15:48 56 --sh--r C:\WINDOWS\system32\130F639A6A.sys
2008-02-10 22:54 168 -csh--r C:\WINDOWS\system32\CCAAB69B4E.sys
2008-02-15 15:48 6,112 -csha-w C:\WINDOWS\system32\KGyGaAvL.sys
.
[code]<pre>
----a-w 962,560 2008-02-17 14:57:05 C:\Program Files\Ares\Ares .exe
-c--a-w 962,560 2008-02-17 20:46:26 C:\Program Files\Ares\Ares .exe
----a-w 160,768 2008-01-16 09:13:22 C:\WINDOWS\pchealth\helpctr\binaries\MSConfig .exe
</pre>[/code]


((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0130E5C8-9145-485D-AC55-2DBE533D2825}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{03B60C47-A8FC-4009-B2A1-EFE73547860C}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{04ED3FAC-C8AE-4C02-A2AE-B73631A044ED}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0625D0C5-3329-42F9-8521-2D0DAC24C9FE}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{096BAD95-DD57-4D41-B265-8079DDBF31AE}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0AC4EB2D-095F-4348-9F6A-D67DD5E2994C}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0B8F7A4B-69CC-455E-8C7F-A87EBD4C102B}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0C3F6274-33D1-4AC8-B6D7-594C64D6DFF1}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{113D6A19-0152-4CE1-AA67-D74B2E2666DB}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1298BC84-EA4A-4275-ACDE-7C3FA12E7CB5}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{12C642FC-670F-4566-AC88-D535B9F4AD21}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{12D03E97-A906-4E7D-BD1F-C341ED744650}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{14348DD5-0889-474B-ACA8-EAB11965AC3B}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{14982F75-23E9-40EF-B164-8C941461CD05}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{14E1A912-B256-4791-AA76-DF439DF6C0D9}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{15CB173B-74C4-415D-AF0E-55A6EEE2B611}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{17C8CEF9-A179-4EB7-A71F-E3DE00195566}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1B53F997-B6C4-43F5-8794-8172A6750ADF}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1CCFC023-FE17-482B-ADBB-6B3F4FC4B3C4}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1D248F5D-9DA8-47BD-815D-71A8D26FF44E}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1F0203E2-6C10-4C04-B4B8-C3617DA216DC}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20B548E7-2E6E-4C7D-855A-86526A08BFBA}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{21FC5E31-979E-48F5-A1D8-1A4E3A0F59E1}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{22DFC511-DC56-4648-A808-EF69955CF949}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2377B471-A56B-4435-AF5E-9939810402D8}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{26E616CA-16C5-4BF6-A6AF-59EA73B0A019}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{27E3D768-A79F-45C5-B146-E6304A20190E}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{281F1F91-5B79-4937-BEFA-5D5CA262D6B0}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E3B1584-4CD5-40DC-AA50-A0CA25654584}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2F7AFFB0-7418-42A5-A9F3-A410E3F7CF22}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3103C8AE-CBA6-470B-B195-366D0FAE16A4}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{314DF925-79A2-4ADD-BCE5-58AF57C7931D}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{32A428E9-378A-454C-BCAD-CC86CA53CE0E}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{34D75E83-5306-4A51-85AE-C0C12C545831}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{351A178C-A7C5-463D-B883-3D17700DFC1E}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{35BF99DA-B81B-4AF0-9D01-B638290BA3AA}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{35DF685B-F4FB-4E6D-9172-97D7F50E5D84}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{38284B0C-8F62-470C-BAC8-BEC9C1E133B1}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3A68A11F-10FA-4C24-BE59-31270671C3AF}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3CA1D857-4CCD-45F2-A956-0CD6B9372070}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D85C278-4794-4359-947C-847249E2EC84}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3EB51013-0DA2-457E-9D66-F2614016B39B}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3EF7D927-D459-4973-BE08-31D91B486750}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3FB4136C-2136-4198-909C-2599EA37FCC9}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{444C870F-8EA5-4DC1-B378-21733FF0D44D}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45544890-737D-4A0B-B03D-EB9D05C142BB}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45A94654-5CE9-4E95-93CF-B6C90129CBDD}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45AF4313-0AB8-4FFC-98B6-8D95D038F7D6}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{461471A1-8DD9-4777-BF28-EBFA6A8201CE}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{47842C1B-B938-40FC-94B5-7DF595798258}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{48F15D47-FFAB-4BEE-962F-2D060EA2700F}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4A1E35E5-62D2-44B4-B7EC-7422C20BC7E3}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4BEDE203-BB3D-4546-9644-B8E1EE77490F}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E061004-A23C-45ED-A8A9-37D7D51E0B2C}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E600F9A-BE3A-4967-9E8F-3D63D295DC7D}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E6C2CEB-0F81-4000-81F2-C2305AFFE358}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4F73980C-A681-41E2-9744-62B334022656}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{56A4FF7F-E0C9-43B3-86B1-27FB8D538C66}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{56ECD5B1-8808-4F18-B49D-C87BEA257E92}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5720BF8E-91B9-4B32-9E9E-0DAD29DC4DEB}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{57FEC964-A5F2-4CC8-B112-981B110B4E0B}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{59C33354-C1F3-43DD-999D-D307084E83A7}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5BF79144-C03D-43E6-8B0C-FF263A6539D1}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5CAE3802-1782-4148-9DA8-98EC1DB05643}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5D0C4503-D95E-4D84-BA4B-36AD1A66FDBD}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E319DF2-1A8E-4B83-9894-B1ECB69B6D7E}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5F07C624-3B1B-411F-A0CD-B1FC87FEBB6D}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{64238DFE-0B2A-49D0-8700-17FA2656691B}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{66470971-E018-484C-B774-4D77CEE9D724}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{676A48FF-0E73-4D35-A64F-4990AF44D7E7}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6A15B214-F98F-4585-818D-6FB222D6DB85}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6D24BBD4-4F58-4CF3-8514-37CA1810DF1E}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6FFABE92-6D1E-4828-B002-02DC47CA641A}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{70ABE135-41A8-462C-B581-A474AA06D80B}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74D3DD98-B5B8-4924-9120-42B21E4CE6C8}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{77AB3D1D-BC66-47AF-B89E-EBA36D6412D4}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7A58AAA1-3C22-417E-8A10-7D4440505034}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7AE139B9-53D4-4C00-93AB-D02F9CCAC088}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7BE12965-C6E2-48F6-B7B2-58071489AC1F}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7C3A7C65-91B0-4D7C-BE3B-DA3481C82BEA}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7D0818D3-EDA9-4776-8B28-954B9195E2B2}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7F37EB5D-313E-47E0-9BA2-E9F012FDECFA}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7F496771-ECB4-4655-B976-83413DDB6A6D}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{812AC33C-25B3-4CB5-8768-0E151D963645}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8396E849-BB9F-4950-BE13-A26D47752ABC}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{83FCD87D-1B16-4AE1-BE70-A5FB0280E3F4}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{856E45F3-9B0D-471B-B884-A6BD1710DA85}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{859BFC86-37E4-458E-84DE-660B157D823D}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{86AC5E43-2358-4E52-A1C1-BAFFF29838F6}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8981D2EE-EDEC-4104-9872-F67D7FA7335F}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89EC64B9-F2FE-4787-8E49-8EE1C864955B}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B67F037-2714-4DBA-840F-A5335BE1961C}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B87A6E3-CB5F-4531-BC39-E36890A69258}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8C531162-7D0E-4E43-B243-9CE04F41EE95}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8E0F4792-C893-426C-B1DA-02A9FFB3A82F}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8F5F9E31-0BF6-4595-8A3C-DF60A5B44125}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{90320B45-D9CD-44C8-A2ED-F459196144B7}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{969C004F-4D12-44E1-B95C-E7A0A6FFE1A0}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{96AC4BF5-DF95-41EB-898B-63D95215F2AC}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9B457F5D-7F52-43BF-90E9-652560F63A53}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9CB6B77C-2D48-43E8-9AF8-F6BEE16E9B30}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E4DE732-0227-454F-B7A4-F16E52BAA28E}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9EDCFEC2-94D2-4C9E-A722-C91B1D579033}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9EEC10AA-1203-4501-A6D2-2EB0297933F6}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9FC7346C-7B49-45B0-A450-A68656749B32}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A16CAD5D-5E37-46F9-BCB7-4D6EAE768078}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A27227DE-3D99-4381-8C6A-F0A5F04749F5}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A2BAE230-EA4D-4B73-9A54-402D9DAA8BE4}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A36371E7-CB65-4B9B-B075-1E5052972CAF}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A590013C-9E95-4B46-8EFA-8688B6FC62AF}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7E15C49-FB38-4EE0-B9EC-3E4C1BE82992}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A85094DB-5FE9-438D-8678-94F711AD9999}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ABF22855-2AB5-4659-8179-77CB69D49423}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AC58BBD1-4525-45C0-AFE9-A6F492CA21F5}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ADB653B1-A760-4D1E-B8A2-47CD7ACF2552}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AE6212A4-78D2-4D08-BD46-E91A5ED35340}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AF492940-23DF-472A-B762-C885025603C3}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AFAAA73A-28BB-4446-B0E3-F57E52B3D5C0}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B1999188-571D-4368-BD8D-C5E520DBFFF5}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B1C7DDE3-AAC5-4EF4-A56F-88AA4390861F}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B2143F00-851F-448B-9C8A-160E58CBB0AB}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B3A864EA-E40B-4D0B-8BC9-1E9D059BE8D1}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B417B5E2-1C05-48EF-8A76-15683BC993D4}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4C8AC83-2102-4C79-83B8-05D31D1FD1F3}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4E1AA31-5F19-4B3F-A0CC-74F891EC3A4B}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B9A340B7-864C-45A1-9285-AEAEB2FEBC02}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BF80866F-EA9B-4DFB-BF87-6CA5D0E24C2C}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C0DFDDB7-96F3-458E-8FBB-3BB14E31075C}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C15ADF02-6FAC-46AE-AD3E-6AA6289830F8}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C215B6E1-B860-4141-A497-E2EF8DAE08C1}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C448D627-A3A1-4788-AE3C-C808191BC749}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C6A55D31-3778-4EFA-9C1C-071B8001D9C1}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C97C0F8C-72DB-4120-95B3-2A14DAEFAC30}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C98C8DE5-97AE-489D-B88D-500F58615789}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C9C46745-B619-450F-8E48-994BD6B73B17}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CA441479-453D-43D9-B7D5-E11374E3D555}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CF0C6091-166D-48F1-A7C2-09089F75CE36}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CF11BF08-7D8C-48F8-9AEE-B347D867B3CD}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CF1EE0CF-9AF8-46C1-9815-DF68BD278A8C}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D17305AA-EAF6-4B1B-BB5A-E36E9FAEBBF1}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D3E94D5F-2975-49E1-BD27-685DDF09BA19}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D50BA98A-6AD4-4A19-A2B3-75741064C886}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D5771924-7036-42B0-9324-228D6D30DB45}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D587388C-5780-4880-9B0B-6DA0AB9676E0}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D5DE8CDD-3DC4-4005-B5E7-8AF2EFD59127}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D68E1246-AD92-465B-9100-5845B4F0B582}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D714B290-DB56-40CE-8276-04A507AFF830}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D7F8A4E7-9534-4639-8CFB-BB1F3E418A9C}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D857C8A0-7555-4EDA-86EC-DB5AF689A551}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D90864DA-E06F-43F9-9E96-47EED34406FB}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D97956D4-4F16-415D-A1A0-FA581D7EA513}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DAC48B05-E9F8-4461-A6BE-6B7A90B883A6}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DADA06CD-685B-4187-BD1F-CF76A07F2761}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DCC6AAF3-3CB8-45C4-A9A0-0DBA3B085DFC}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DEB00362-1E04-447D-8390-CE01C8179AEC}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E1A35D6A-BB9C-42E2-85D3-D40CA0763267}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E417759D-7799-4803-987A-450500A15CFE}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E71A6E77-A2DC-4DCD-97D3-50915490C150}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E90F1610-F9E9-4C16-9D9F-874C27AD6B0E}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E92F5196-8E28-4A4A-8FB7-4D248FFEABE0}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA8A5765-B3BB-44C7-8E59-8F54702A39EF}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EC424831-628C-4B7B-8127-F34D7CA6547D}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ECAADA80-B271-47F8-8068-C5B6F00A9640}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ED20CF9F-9A7A-49F4-8BFC-EDF7BBDBB76B}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EF362487-7D11-4AAF-8AD9-BA98E8900C64}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F2A87735-11A6-4354-B725-A8E107954773}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F3CA6BB1-B06C-4C88-97EF-77ED9336A2B6}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F686D283-9A03-400A-9291-B4F7486CB9D4}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F776AEF5-AEB7-45B7-93F0-0024EE4A7AF2}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F81E40EB-504D-4377-9A2E-2D89AFACB733}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F8333A2E-FE81-43AA-83C0-E67300D2252E}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FCF6880F-C2A1-46B2-A825-22E0D2F0C163}]
2008-08-31 02:57 0 d--hsc--- \

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [N/A]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"="C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe" [2007-11-21 02:52 218496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-02-24 08:32 5537792]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoSMMyPictures"= 0 (0x0)
"NoStartMenuMyMusic"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoInstrumentation"= 0 (0x0)
"NoSimpleStartMenu"= 0 (0x0)
"NoFavoritesMenu"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"=hex(2):76,69,73,74,61,75,69,2e,65,78,65,00

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DfLogon]
2008-04-10 14:26 65536 C:\WINDOWS\system32\LogonDll.dll

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Iniciar guiños Messenger.lnk]
backup=C:\WINDOWS\pss\Iniciar guiños Messenger.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Iolo Macro Magic.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Iolo Macro Magic.lnk
backup=C:\WINDOWS\pss\Iolo Macro Magic.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Messenger Power Plus 8.1.lnk]
backup=C:\WINDOWS\pss\Messenger Power Plus 8.1.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Kòcà^Menu Démarrer^Programmes^Démarrage^Y'z Toolbar.lnk]
backup=C:\WINDOWS\pss\Y'z Toolbar.lnkStartup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AntivirusRegistration
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cevuudkdq
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLHomeMediaServer
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\gohhbjcckd
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HomeKeyLogger
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IdiomaX Office
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IdiomaX Product Update
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PMsn Paraiso
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\zzz_ImInstaller_IncrediMail

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\7c95cf1d]
C:\WINDOWS\system32\ayteedam.dll [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced DHTML Enable]
C:\WINDOWS\system32\mlddjir.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer]
-ra------ 2006-11-17 13:41 71216 C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
--a------ 2007-12-31 16:29 962560 C:\Program Files\Ares\Ares.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast!]
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avp]
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flag Owns Live Grim]
C:\Documents and Settings\All Users\Application Data\Software rule flag owns\Comp Acid.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
--a------ 2004-09-13 15:49 49152 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LBTWiz.exe]
C:\WINDOWS\LBTWiz.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate]
--a------ 2005-06-08 14:44 196608 C:\Program Files\Logitech\Video\ManifestEngine.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair]
--a--c--- 2005-06-08 15:24 458752 C:\Program Files\Logitech\Video\ISStart.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]
--a------ 2005-06-08 15:14 217088 C:\Program Files\Logitech\Video\LogiTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lsass]
C:\WINDOWS\lsass.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
--a------ 2005-07-19 18:32 221184 C:\WINDOWS\system32\LVCOMSX.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2001-07-09 11:50 155648 C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2005-02-24 08:32 5537792 C:\WINDOWS\system32\nvcpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RayV]
--a------ 2007-11-20 10:12 4306208 C:\Program Files\RayV\RayV\RayV.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Realtime Monitor]
C:\PROGRA~1\CA\ETRUST~1\realmon.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysMon]
--a--c--- 2007-08-22 13:26 577536 C:\Documents and Settings\All Users\Application Data\SysMon\SysMon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2008-03-30 18:18 185896 C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Winspn]
C:\WINDOWS\system32\mlddjir.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Winupdate Engine]
C:\WINDOWS\system32\wupeng.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XPRepairPro2007]
C:\Program Files\XP Repair Pro 2007\XPRepairPro.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG]
--a------ 2005-03-08 15:53 88203 C:\WINDOWS\AGRSMMSG.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cmaudio]
cmicnfg.cpl [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2005-02-24 08:32 1495040 C:\WINDOWS\system32\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Update]
GooGLed.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDIAL.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLACSD.exe"=
"C:\\Program Files\\Ares\\Ares.exe"=
"C:\\WINDOWS\\system32\\sessmgr.exe"=
"C:\\WINDOWS\\system32\\fxsclnt.exe"=
"C:\\Program Files\\eMule\\eMule.exe"=
"C:\\Program Files\\LimeWire\\LimeWire.exe"=
"C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\DAP\\DAP.exe"=
"C:\\Program Files\\Messenger\\Msmsgs.exe"=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

R0 DeepFrz;DeepFrz;C:\WINDOWS\system32\drivers\DeepFrz.sys [2008-04-10 14:29]
R2 Dnscache;Client DNS;C:\WINDOWS\system32\svchost.exe [2004-08-05 14:00]
S3 3xHybrid;3xHybrid service;C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2005-06-08 03:35]
S3 cmudax;C-Media High Definition Audio Interface;C:\WINDOWS\system32\drivers\cmudax.sys [2005-05-12 14:39]
S3 PRISM_A00;CREATIX 802.11g Driver;C:\WINDOWS\system32\DRIVERS\PRISMA00.sys [2004-01-16 10:31]
.
Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'

2008-05-06 C:\WINDOWS\Tasks\9F67AFAA9E1C482E.job
- c:\docume~1\mel\applic~1\thismix\Aim Stupid Program.exe []

2008-05-02 C:\WINDOWS\Tasks\Maintenance en 1 clic.job
- C:\Program Files\TuneUp Utilities 2007\SystemOptimizer.exe []
.
- - - - ORPHANS REMOVED - - - -

Notify-bvxncbvq - (no file)
Notify-pmnkhff - pmnkhff.dll


.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Documents and Settings\Administrateur.KOCA\Application Data\Mozilla\Firefox\Profiles\ntol8tev.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://google.fr/
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-31 02:58:31
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cach‚s ...

Balayage cach‚ autostart entries ...

Balayage des fichiers cach‚s ...

Scan termin‚ avec succŠs
Les fichiers cach‚s: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\EverestDriver]
"ImagePath"="\??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt"
.
--------------------- DLLs a charg‚ sous des processus courants ---------------------

PROCESS: C:\WINDOWS\system32\winlogon.exe
-> C:\WINDOWS\system32\LogonDll.dll
-> C:\WINDOWS\system32\tsd32.dll
.
Temps d'accomplissement: 2008-08-31 3:01:40 - machine was rebooted
ComboFix-quarantined-files.txt 2008-08-31 01:01:37

Pre-Run: 126,497,021,952 octets libres
Post-Run: 126,942,367,744 octets libres

629 --- E O F --- 2008-05-06 11:17:19
0
Réponse 9 / 108
Utilisateur anonyme
31 août 2008 à 03:06
Ok,
parfait.

Peux tu reposter un rapport HiJackT stp ? Si possible en mode normal.

Je te prépare la suite.

A+
0
Réponse 10 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 03:07
Non dsl jme suis tromper de mode, j'avais pas compris quand t'a dis en mode normal, c'est bon jsui plus en mode sans echec là, j'tenvoi le rapport HIJACKTHIS tous de suite.
0
Réponse 11 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 03:23
Voila le rapport Hijackthis en mode normal:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 03:23, on 2008-08-31
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\msiexec.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.carrefour.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {0130E5C8-9145-485D-AC55-2DBE533D2825} - \
O2 - BHO: (no name) - {03B60C47-A8FC-4009-B2A1-EFE73547860C} - \
O2 - BHO: (no name) - {04ED3FAC-C8AE-4C02-A2AE-B73631A044ED} - \
O2 - BHO: (no name) - {0625D0C5-3329-42F9-8521-2D0DAC24C9FE} - \
O2 - BHO: (no name) - {096BAD95-DD57-4D41-B265-8079DDBF31AE} - \
O2 - BHO: (no name) - {0AC4EB2D-095F-4348-9F6A-D67DD5E2994C} - \
O2 - BHO: (no name) - {0B8F7A4B-69CC-455E-8C7F-A87EBD4C102B} - \
O2 - BHO: (no name) - {0C3F6274-33D1-4AC8-B6D7-594C64D6DFF1} - \
O2 - BHO: (no name) - {113D6A19-0152-4CE1-AA67-D74B2E2666DB} - \
O2 - BHO: (no name) - {1298BC84-EA4A-4275-ACDE-7C3FA12E7CB5} - \
O2 - BHO: (no name) - {12C642FC-670F-4566-AC88-D535B9F4AD21} - \
O2 - BHO: (no name) - {12D03E97-A906-4E7D-BD1F-C341ED744650} - \
O2 - BHO: (no name) - {14348DD5-0889-474B-ACA8-EAB11965AC3B} - \
O2 - BHO: (no name) - {14982F75-23E9-40EF-B164-8C941461CD05} - \
O2 - BHO: (no name) - {14E1A912-B256-4791-AA76-DF439DF6C0D9} - \
O2 - BHO: (no name) - {15CB173B-74C4-415D-AF0E-55A6EEE2B611} - \
O2 - BHO: (no name) - {17C8CEF9-A179-4EB7-A71F-E3DE00195566} - \
O2 - BHO: (no name) - {1B53F997-B6C4-43F5-8794-8172A6750ADF} - \
O2 - BHO: (no name) - {1CCFC023-FE17-482B-ADBB-6B3F4FC4B3C4} - \
O2 - BHO: (no name) - {1D248F5D-9DA8-47BD-815D-71A8D26FF44E} - \
O2 - BHO: (no name) - {1F0203E2-6C10-4C04-B4B8-C3617DA216DC} - \
O2 - BHO: (no name) - {20B548E7-2E6E-4C7D-855A-86526A08BFBA} - \
O2 - BHO: (no name) - {21FC5E31-979E-48F5-A1D8-1A4E3A0F59E1} - \
O2 - BHO: (no name) - {22DFC511-DC56-4648-A808-EF69955CF949} - \
O2 - BHO: (no name) - {2377B471-A56B-4435-AF5E-9939810402D8} - \
O2 - BHO: (no name) - {26E616CA-16C5-4BF6-A6AF-59EA73B0A019} - \
O2 - BHO: (no name) - {27E3D768-A79F-45C5-B146-E6304A20190E} - \
O2 - BHO: (no name) - {281F1F91-5B79-4937-BEFA-5D5CA262D6B0} - \
O2 - BHO: (no name) - {2E3B1584-4CD5-40DC-AA50-A0CA25654584} - \
O2 - BHO: (no name) - {2F7AFFB0-7418-42A5-A9F3-A410E3F7CF22} - \
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {3103C8AE-CBA6-470B-B195-366D0FAE16A4} - \
O2 - BHO: (no name) - {314DF925-79A2-4ADD-BCE5-58AF57C7931D} - \
O2 - BHO: (no name) - {32A428E9-378A-454C-BCAD-CC86CA53CE0E} - \
O2 - BHO: (no name) - {34D75E83-5306-4A51-85AE-C0C12C545831} - \
O2 - BHO: (no name) - {351A178C-A7C5-463D-B883-3D17700DFC1E} - \
O2 - BHO: (no name) - {35BF99DA-B81B-4AF0-9D01-B638290BA3AA} - \
O2 - BHO: (no name) - {35DF685B-F4FB-4E6D-9172-97D7F50E5D84} - \
O2 - BHO: (no name) - {38284B0C-8F62-470C-BAC8-BEC9C1E133B1} - \
O2 - BHO: (no name) - {3A68A11F-10FA-4C24-BE59-31270671C3AF} - \
O2 - BHO: (no name) - {3CA1D857-4CCD-45F2-A956-0CD6B9372070} - \
O2 - BHO: (no name) - {3D85C278-4794-4359-947C-847249E2EC84} - \
O2 - BHO: (no name) - {3EB51013-0DA2-457E-9D66-F2614016B39B} - \
O2 - BHO: (no name) - {3EF7D927-D459-4973-BE08-31D91B486750} - \
O2 - BHO: (no name) - {3FB4136C-2136-4198-909C-2599EA37FCC9} - \
O2 - BHO: (no name) - {444C870F-8EA5-4DC1-B378-21733FF0D44D} - \
O2 - BHO: (no name) - {45544890-737D-4A0B-B03D-EB9D05C142BB} - \
O2 - BHO: (no name) - {45A94654-5CE9-4E95-93CF-B6C90129CBDD} - \
O2 - BHO: (no name) - {45AF4313-0AB8-4FFC-98B6-8D95D038F7D6} - \
O2 - BHO: (no name) - {461471A1-8DD9-4777-BF28-EBFA6A8201CE} - \
O2 - BHO: (no name) - {47842C1B-B938-40FC-94B5-7DF595798258} - \
O2 - BHO: (no name) - {48F15D47-FFAB-4BEE-962F-2D060EA2700F} - \
O2 - BHO: (no name) - {4A1E35E5-62D2-44B4-B7EC-7422C20BC7E3} - \
O2 - BHO: (no name) - {4BEDE203-BB3D-4546-9644-B8E1EE77490F} - \
O2 - BHO: (no name) - {4E061004-A23C-45ED-A8A9-37D7D51E0B2C} - \
O2 - BHO: (no name) - {4E600F9A-BE3A-4967-9E8F-3D63D295DC7D} - \
O2 - BHO: (no name) - {4E6C2CEB-0F81-4000-81F2-C2305AFFE358} - \
O2 - BHO: (no name) - {4F73980C-A681-41E2-9744-62B334022656} - \
O2 - BHO: (no name) - {56A4FF7F-E0C9-43B3-86B1-27FB8D538C66} - \
O2 - BHO: (no name) - {56ECD5B1-8808-4F18-B49D-C87BEA257E92} - \
O2 - BHO: (no name) - {5720BF8E-91B9-4B32-9E9E-0DAD29DC4DEB} - \
O2 - BHO: (no name) - {57FEC964-A5F2-4CC8-B112-981B110B4E0B} - \
O2 - BHO: (no name) - {59C33354-C1F3-43DD-999D-D307084E83A7} - \
O2 - BHO: (no name) - {5BF79144-C03D-43E6-8B0C-FF263A6539D1} - \
O2 - BHO: (no name) - {5CAE3802-1782-4148-9DA8-98EC1DB05643} - \
O2 - BHO: (no name) - {5D0C4503-D95E-4D84-BA4B-36AD1A66FDBD} - \
O2 - BHO: (no name) - {5E319DF2-1A8E-4B83-9894-B1ECB69B6D7E} - \
O2 - BHO: (no name) - {5F07C624-3B1B-411F-A0CD-B1FC87FEBB6D} - \
O2 - BHO: (no name) - {64238DFE-0B2A-49D0-8700-17FA2656691B} - \
O2 - BHO: (no name) - {66470971-E018-484C-B774-4D77CEE9D724} - \
O2 - BHO: (no name) - {676A48FF-0E73-4D35-A64F-4990AF44D7E7} - \
O2 - BHO: (no name) - {6A15B214-F98F-4585-818D-6FB222D6DB85} - \
O2 - BHO: (no name) - {6D24BBD4-4F58-4CF3-8514-37CA1810DF1E} - \
O2 - BHO: (no name) - {6FFABE92-6D1E-4828-B002-02DC47CA641A} - \
O2 - BHO: (no name) - {70ABE135-41A8-462C-B581-A474AA06D80B} - \
O2 - BHO: (no name) - {74D3DD98-B5B8-4924-9120-42B21E4CE6C8} - \
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {77AB3D1D-BC66-47AF-B89E-EBA36D6412D4} - \
O2 - BHO: (no name) - {7A58AAA1-3C22-417E-8A10-7D4440505034} - \
O2 - BHO: (no name) - {7AE139B9-53D4-4C00-93AB-D02F9CCAC088} - \
O2 - BHO: (no name) - {7BE12965-C6E2-48F6-B7B2-58071489AC1F} - \
O2 - BHO: (no name) - {7C3A7C65-91B0-4D7C-BE3B-DA3481C82BEA} - \
O2 - BHO: (no name) - {7D0818D3-EDA9-4776-8B28-954B9195E2B2} - \
O2 - BHO: (no name) - {7F37EB5D-313E-47E0-9BA2-E9F012FDECFA} - \
O2 - BHO: (no name) - {7F496771-ECB4-4655-B976-83413DDB6A6D} - \
O2 - BHO: (no name) - {812AC33C-25B3-4CB5-8768-0E151D963645} - \
O2 - BHO: (no name) - {8396E849-BB9F-4950-BE13-A26D47752ABC} - \
O2 - BHO: (no name) - {83FCD87D-1B16-4AE1-BE70-A5FB0280E3F4} - \
O2 - BHO: (no name) - {856E45F3-9B0D-471B-B884-A6BD1710DA85} - \
O2 - BHO: (no name) - {859BFC86-37E4-458E-84DE-660B157D823D} - \
O2 - BHO: (no name) - {86AC5E43-2358-4E52-A1C1-BAFFF29838F6} - \
O2 - BHO: (no name) - {8981D2EE-EDEC-4104-9872-F67D7FA7335F} - \
O2 - BHO: (no name) - {89EC64B9-F2FE-4787-8E49-8EE1C864955B} - \
O2 - BHO: (no name) - {8B67F037-2714-4DBA-840F-A5335BE1961C} - \
O2 - BHO: (no name) - {8B87A6E3-CB5F-4531-BC39-E36890A69258} - \
O2 - BHO: (no name) - {8C531162-7D0E-4E43-B243-9CE04F41EE95} - \
O2 - BHO: (no name) - {8E0F4792-C893-426C-B1DA-02A9FFB3A82F} - \
O2 - BHO: (no name) - {8F5F9E31-0BF6-4595-8A3C-DF60A5B44125} - \
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {90320B45-D9CD-44C8-A2ED-F459196144B7} - \
O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.0\EasyGifAnimator_Toolbar.dll
O2 - BHO: (no name) - {969C004F-4D12-44E1-B95C-E7A0A6FFE1A0} - \
O2 - BHO: (no name) - {96AC4BF5-DF95-41EB-898B-63D95215F2AC} - \
O2 - BHO: (no name) - {9B457F5D-7F52-43BF-90E9-652560F63A53} - \
O2 - BHO: (no name) - {9CB6B77C-2D48-43E8-9AF8-F6BEE16E9B30} - \
O2 - BHO: (no name) - {9E4DE732-0227-454F-B7A4-F16E52BAA28E} - \
O2 - BHO: (no name) - {9EDCFEC2-94D2-4C9E-A722-C91B1D579033} - \
O2 - BHO: (no name) - {9EEC10AA-1203-4501-A6D2-2EB0297933F6} - \
O2 - BHO: (no name) - {9FC7346C-7B49-45B0-A450-A68656749B32} - \
O2 - BHO: (no name) - {A16CAD5D-5E37-46F9-BCB7-4D6EAE768078} - \
O2 - BHO: (no name) - {A27227DE-3D99-4381-8C6A-F0A5F04749F5} - \
O2 - BHO: (no name) - {A2BAE230-EA4D-4B73-9A54-402D9DAA8BE4} - \
O2 - BHO: (no name) - {A36371E7-CB65-4B9B-B075-1E5052972CAF} - \
O2 - BHO: (no name) - {A590013C-9E95-4B46-8EFA-8688B6FC62AF} - \
O2 - BHO: (no name) - {A7E15C49-FB38-4EE0-B9EC-3E4C1BE82992} - \
O2 - BHO: (no name) - {A85094DB-5FE9-438D-8678-94F711AD9999} - \
O2 - BHO: (no name) - {ABF22855-2AB5-4659-8179-77CB69D49423} - \
O2 - BHO: (no name) - {AC58BBD1-4525-45C0-AFE9-A6F492CA21F5} - \
O2 - BHO: (no name) - {ADB653B1-A760-4D1E-B8A2-47CD7ACF2552} - \
O2 - BHO: (no name) - {AE6212A4-78D2-4D08-BD46-E91A5ED35340} - \
O2 - BHO: (no name) - {AF492940-23DF-472A-B762-C885025603C3} - \
O2 - BHO: (no name) - {AFAAA73A-28BB-4446-B0E3-F57E52B3D5C0} - \
O2 - BHO: (no name) - {B1999188-571D-4368-BD8D-C5E520DBFFF5} - \
O2 - BHO: (no name) - {B1C7DDE3-AAC5-4EF4-A56F-88AA4390861F} - \
O2 - BHO: (no name) - {B2143F00-851F-448B-9C8A-160E58CBB0AB} - \
O2 - BHO: (no name) - {B3A864EA-E40B-4D0B-8BC9-1E9D059BE8D1} - \
O2 - BHO: (no name) - {B417B5E2-1C05-48EF-8A76-15683BC993D4} - \
O2 - BHO: (no name) - {B4C8AC83-2102-4C79-83B8-05D31D1FD1F3} - \
O2 - BHO: (no name) - {B4E1AA31-5F19-4B3F-A0CC-74F891EC3A4B} - \
O2 - BHO: (no name) - {B9A340B7-864C-45A1-9285-AEAEB2FEBC02} - \
O2 - BHO: (no name) - {BF80866F-EA9B-4DFB-BF87-6CA5D0E24C2C} - \
O2 - BHO: (no name) - {C0DFDDB7-96F3-458E-8FBB-3BB14E31075C} - \
O2 - BHO: (no name) - {C15ADF02-6FAC-46AE-AD3E-6AA6289830F8} - \
O2 - BHO: (no name) - {C215B6E1-B860-4141-A497-E2EF8DAE08C1} - \
O2 - BHO: (no name) - {C448D627-A3A1-4788-AE3C-C808191BC749} - \
O2 - BHO: (no name) - {C6A55D31-3778-4EFA-9C1C-071B8001D9C1} - \
O2 - BHO: (no name) - {C97C0F8C-72DB-4120-95B3-2A14DAEFAC30} - \
O2 - BHO: (no name) - {C98C8DE5-97AE-489D-B88D-500F58615789} - \
O2 - BHO: (no name) - {C9C46745-B619-450F-8E48-994BD6B73B17} - \
O2 - BHO: (no name) - {CA441479-453D-43D9-B7D5-E11374E3D555} - \
O2 - BHO: (no name) - {CF0C6091-166D-48F1-A7C2-09089F75CE36} - \
O2 - BHO: (no name) - {CF11BF08-7D8C-48F8-9AEE-B347D867B3CD} - \
O2 - BHO: (no name) - {CF1EE0CF-9AF8-46C1-9815-DF68BD278A8C} - \
O2 - BHO: (no name) - {D17305AA-EAF6-4B1B-BB5A-E36E9FAEBBF1} - \
O2 - BHO: (no name) - {D3E94D5F-2975-49E1-BD27-685DDF09BA19} - \
O2 - BHO: (no name) - {D50BA98A-6AD4-4A19-A2B3-75741064C886} - \
O2 - BHO: (no name) - {D5771924-7036-42B0-9324-228D6D30DB45} - \
O2 - BHO: (no name) - {D587388C-5780-4880-9B0B-6DA0AB9676E0} - \
O2 - BHO: (no name) - {D5DE8CDD-3DC4-4005-B5E7-8AF2EFD59127} - \
O2 - BHO: (no name) - {D68E1246-AD92-465B-9100-5845B4F0B582} - \
O2 - BHO: (no name) - {D714B290-DB56-40CE-8276-04A507AFF830} - \
O2 - BHO: (no name) - {D7F8A4E7-9534-4639-8CFB-BB1F3E418A9C} - \
O2 - BHO: (no name) - {D857C8A0-7555-4EDA-86EC-DB5AF689A551} - \
O2 - BHO: (no name) - {D90864DA-E06F-43F9-9E96-47EED34406FB} - \
O2 - BHO: (no name) - {D97956D4-4F16-415D-A1A0-FA581D7EA513} - \
O2 - BHO: (no name) - {DAC48B05-E9F8-4461-A6BE-6B7A90B883A6} - \
O2 - BHO: (no name) - {DADA06CD-685B-4187-BD1F-CF76A07F2761} - \
O2 - BHO: (no name) - {DCC6AAF3-3CB8-45C4-A9A0-0DBA3B085DFC} - \
O2 - BHO: (no name) - {DEB00362-1E04-447D-8390-CE01C8179AEC} - \
O2 - BHO: (no name) - {E1A35D6A-BB9C-42E2-85D3-D40CA0763267} - \
O2 - BHO: (no name) - {E417759D-7799-4803-987A-450500A15CFE} - \
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O2 - BHO: (no name) - {E71A6E77-A2DC-4DCD-97D3-50915490C150} - \
O2 - BHO: (no name) - {E90F1610-F9E9-4C16-9D9F-874C27AD6B0E} - \
O2 - BHO: (no name) - {E92F5196-8E28-4A4A-8FB7-4D248FFEABE0} - \
O2 - BHO: (no name) - {EA8A5765-B3BB-44C7-8E59-8F54702A39EF} - \
O2 - BHO: (no name) - {EC424831-628C-4B7B-8127-F34D7CA6547D} - \
O2 - BHO: (no name) - {ECAADA80-B271-47F8-8068-C5B6F00A9640} - \
O2 - BHO: (no name) - {ED20CF9F-9A7A-49F4-8BFC-EDF7BBDBB76B} - \
O2 - BHO: (no name) - {EF362487-7D11-4AAF-8AD9-BA98E8900C64} - \
O2 - BHO: (no name) - {F2A87735-11A6-4354-B725-A8E107954773} - \
O2 - BHO: (no name) - {F3CA6BB1-B06C-4C88-97EF-77ED9336A2B6} - \
O2 - BHO: (no name) - {F686D283-9A03-400A-9291-B4F7486CB9D4} - \
O2 - BHO: (no name) - {F776AEF5-AEB7-45B7-93F0-0024EE4A7AF2} - \
O2 - BHO: (no name) - {F81E40EB-504D-4377-9A2E-2D89AFACB733} - \
O2 - BHO: (no name) - {F8333A2E-FE81-43AA-83C0-E67300D2252E} - \
O2 - BHO: (no name) - {FCF6880F-C2A1-46B2-A825-22E0D2F0C163} - \
O3 - Toolbar: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.0\EasyGifAnimator_Toolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {AEF9B8DB-0DEF-4c0b-8209-661C9E82B8C3} - C:\Program Files\WinSysClean 2008 Trial\UDManager\UDManager.exe (file missing)
O9 - Extra button: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost (file missing)
O9 - Extra 'Tools' menuitem: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost (file missing)
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {733A5CA7-C0E1-41D7-9506-F4AA354B4500} (ActiveFormX Control) - file:///C:/Program%20Files/Intelore/AnimatedDesktop/advThemes/WorkDir/83490468/Files/ActiveFormProj1.inf
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-45677db9d513036c.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game07.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F551} (Flatcast Viewer 4.15) - http://www.flatcast.info/objects/NpFv415.dll
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O20 - Winlogon Notify: DfLogon - C:\WINDOWS\SYSTEM32\LogonDll.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: DF5Serv - Faronics Corporation - C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe (file missing)
0
Réponse 12 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 04:16
Voila le rapport COMBO:

ComboFix 08-08-30.01 - Administrateur 2008-08-31 2:53:54.1 - NTFSx86 NETWORK
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.791 [GMT 2:00]
Endroit: C:\Documents and Settings\Administrateur.KOCA\Bureau\ComboFix.exe

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\BM7fa6fc81.txt
C:\WINDOWS\BM7fa6fc81.xml
C:\WINDOWS\system32\ajjeksnt.ini
C:\WINDOWS\system32\bhgiscin.dll
C:\WINDOWS\system32\cbmfjgio.dll
C:\WINDOWS\system32\cdeeg.ini
C:\WINDOWS\system32\cdeeg.ini2
C:\WINDOWS\system32\ceisiqnt.ini
C:\WINDOWS\system32\dqdjswaq.ini
C:\WINDOWS\system32\drivers\npf.sys
C:\WINDOWS\system32\drvtusr.dll
C:\WINDOWS\system32\ehewlcrv.ini
C:\WINDOWS\system32\exxkxqhl.ini
C:\WINDOWS\system32\fgxbtvhv.dll
C:\WINDOWS\system32\gfemchff.dll
C:\WINDOWS\system32\ggjlm.ini2
C:\WINDOWS\system32\hmngmlgx.dll
C:\WINDOWS\system32\iqglbmvo.ini
C:\WINDOWS\system32\jonqakss.ini
C:\WINDOWS\system32\kntufcks.ini
C:\WINDOWS\system32\ksmbsxmg.ini
C:\WINDOWS\system32\kuchelma.ini
C:\WINDOWS\system32\kvcmcvvy.ini
C:\WINDOWS\system32\lgyoblco.ini
C:\WINDOWS\system32\lvgxdeus.ini
C:\WINDOWS\system32\madeetya.ini
C:\WINDOWS\system32\nicsighb.ini
C:\WINDOWS\system32\njtjgtfx.ini
C:\WINDOWS\system32\oquaxaym.ini
C:\WINDOWS\system32\oskwtkoa.ini
C:\WINDOWS\system32\packet.dll
C:\WINDOWS\system32\pfwxdyos.ini
C:\WINDOWS\system32\ponxymac.ini
C:\WINDOWS\system32\psgrhqwi.dll
C:\WINDOWS\system32\pthreadVC.dll
C:\WINDOWS\system32\qqerosid.ini
C:\WINDOWS\system32\qqtss.ini
C:\WINDOWS\system32\qqtss.ini2
C:\WINDOWS\system32\qvriqkjh.ini
C:\WINDOWS\system32\qxkivgbm.dll
C:\WINDOWS\system32\rhenmbcp.dll
C:\WINDOWS\system32\rlsijeog.ini
C:\WINDOWS\system32\rqbkaqca.ini
C:\WINDOWS\system32\rrfdralf.dll
C:\WINDOWS\system32\srqss.ini
C:\WINDOWS\system32\srqss.ini2
C:\WINDOWS\system32\suseiorw.dll
C:\WINDOWS\system32\sutbkham.ini
C:\WINDOWS\system32\tcoutuvp.ini
C:\WINDOWS\system32\umtvrmhy.dll
C:\WINDOWS\system32\uqvqhvto.ini
C:\WINDOWS\system32\vjjvqghq.dll
C:\WINDOWS\system32\vkxyjvkm.ini
C:\WINDOWS\system32\vxpvfgls.ini
C:\WINDOWS\system32\wanpacket.dll
C:\WINDOWS\system32\wbhcynel.dll
C:\WINDOWS\system32\wpcap.dll
C:\WINDOWS\system32\wvjspseg.ini
C:\WINDOWS\system32\wybeg.ini2
C:\WINDOWS\system32\xifoylhq.ini
.
---- Previous Run -------
.
C:\Program Files\Fichiers communs\delsim
C:\WINDOWS\C005_jpg.zip
C:\WINDOWS\Casino.ico
C:\WINDOWS\cookies.ini
C:\WINDOWS\Free Online Dating.ico
C:\WINDOWS\pskt.ini
C:\WINDOWS\Spyware Remover.ico
C:\WINDOWS\system32\bund1
C:\WINDOWS\system32\bund1\ClientBundle1.exe
C:\WINDOWS\system32\bund1\temp.txt
C:\WINDOWS\system32\bvxncbvq.dllbox
C:\WINDOWS\system32\dao350.dll
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\Microsoft\backup.ftp
C:\WINDOWS\system32\Microsoft\backup.tftp
C:\WINDOWS\system32\MSINET.oca
C:\WINDOWS\system32\nvs2.inf
C:\WINDOWS\system32\smpi1
C:\WINDOWS\system32\svehost.exe
C:\WINDOWS\system32\UpMedia
C:\WINDOWS\system32\version69ie7fix.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_NPF
-------\Service_NPF


((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-07-28 to 2008-08-31 ))))))))))))))))))))))))))))))))))))
.

2152-03-02 07:07 . 2152-03-02 07:07 3,120 --a------ C:\WINDOWS\MF_C420.lfa
2031-09-13 16:30 . 2005-11-13 10:46 316,640 --a------ C:\WINDOWS\WMSysPr9.prx
2008-08-31 04:11 . 2008-08-31 04:11 <REP> d----c--- C:\Documents and Settings\Appûø.KOCA
2008-08-31 02:33 . 2008-08-31 02:33 <REP> d-------- C:\Program Files\Trend Micro
2008-08-31 02:25 . 2008-08-31 02:25 <REP> d----c--- C:\Documents and Settings\Appûø
2008-08-30 21:50 . 2008-08-30 21:50 268 --ah-c--- C:\sqmdata00.sqm
2008-08-30 21:50 . 2008-08-30 21:50 244 --ah-c--- C:\sqmnoopt00.sqm
2008-08-30 20:53 . 2008-08-30 20:53 <REP> d-------- C:\WINDOWS\Mozilla

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2031-09-13 14:27 --------- d-----w C:\Program Files\Fichiers communs\IdiomaX Uninstall
2008-08-30 23:45 --------- dc--a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-08-30 19:49 --------- d-----w C:\Program Files\Messenger Plus! Live
2007-10-08 19:23 13 -c-h--w C:\Documents and Settings\All Users\Application Data\1ÌØ13.sys
2008-05-05 23:59 251,392 ----a-w C:\Program Files\opera\program\plugins\dapop.dll
2008-02-15 15:48 56 --sh--r C:\WINDOWS\system32\130F639A6A.sys
2008-02-10 22:54 168 -csh--r C:\WINDOWS\system32\CCAAB69B4E.sys
2008-02-15 15:48 6,112 -csha-w C:\WINDOWS\system32\KGyGaAvL.sys
.
[code]<pre>
----a-w 962,560 2008-02-17 14:57:05 C:\Program Files\Ares\Ares .exe
-c--a-w 962,560 2008-02-17 20:46:26 C:\Program Files\Ares\Ares .exe
----a-w 160,768 2008-01-16 09:13:22 C:\WINDOWS\pchealth\helpctr\binaries\MSConfig .exe
</pre>[/code]


((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0130E5C8-9145-485D-AC55-2DBE533D2825}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{03B60C47-A8FC-4009-B2A1-EFE73547860C}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{04ED3FAC-C8AE-4C02-A2AE-B73631A044ED}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0625D0C5-3329-42F9-8521-2D0DAC24C9FE}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{096BAD95-DD57-4D41-B265-8079DDBF31AE}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0AC4EB2D-095F-4348-9F6A-D67DD5E2994C}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0B8F7A4B-69CC-455E-8C7F-A87EBD4C102B}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0C3F6274-33D1-4AC8-B6D7-594C64D6DFF1}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{113D6A19-0152-4CE1-AA67-D74B2E2666DB}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1298BC84-EA4A-4275-ACDE-7C3FA12E7CB5}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{12C642FC-670F-4566-AC88-D535B9F4AD21}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{12D03E97-A906-4E7D-BD1F-C341ED744650}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{14348DD5-0889-474B-ACA8-EAB11965AC3B}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{14982F75-23E9-40EF-B164-8C941461CD05}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{14E1A912-B256-4791-AA76-DF439DF6C0D9}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{15CB173B-74C4-415D-AF0E-55A6EEE2B611}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{17C8CEF9-A179-4EB7-A71F-E3DE00195566}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1B53F997-B6C4-43F5-8794-8172A6750ADF}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1CCFC023-FE17-482B-ADBB-6B3F4FC4B3C4}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1D248F5D-9DA8-47BD-815D-71A8D26FF44E}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1F0203E2-6C10-4C04-B4B8-C3617DA216DC}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20B548E7-2E6E-4C7D-855A-86526A08BFBA}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{21FC5E31-979E-48F5-A1D8-1A4E3A0F59E1}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{22DFC511-DC56-4648-A808-EF69955CF949}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2377B471-A56B-4435-AF5E-9939810402D8}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{26E616CA-16C5-4BF6-A6AF-59EA73B0A019}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{27E3D768-A79F-45C5-B146-E6304A20190E}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{281F1F91-5B79-4937-BEFA-5D5CA262D6B0}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E3B1584-4CD5-40DC-AA50-A0CA25654584}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2F7AFFB0-7418-42A5-A9F3-A410E3F7CF22}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3103C8AE-CBA6-470B-B195-366D0FAE16A4}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{314DF925-79A2-4ADD-BCE5-58AF57C7931D}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{32A428E9-378A-454C-BCAD-CC86CA53CE0E}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{34D75E83-5306-4A51-85AE-C0C12C545831}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{351A178C-A7C5-463D-B883-3D17700DFC1E}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{35BF99DA-B81B-4AF0-9D01-B638290BA3AA}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{35DF685B-F4FB-4E6D-9172-97D7F50E5D84}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{38284B0C-8F62-470C-BAC8-BEC9C1E133B1}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3A68A11F-10FA-4C24-BE59-31270671C3AF}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3CA1D857-4CCD-45F2-A956-0CD6B9372070}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D85C278-4794-4359-947C-847249E2EC84}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3EB51013-0DA2-457E-9D66-F2614016B39B}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3EF7D927-D459-4973-BE08-31D91B486750}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3FB4136C-2136-4198-909C-2599EA37FCC9}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{444C870F-8EA5-4DC1-B378-21733FF0D44D}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45544890-737D-4A0B-B03D-EB9D05C142BB}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45A94654-5CE9-4E95-93CF-B6C90129CBDD}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45AF4313-0AB8-4FFC-98B6-8D95D038F7D6}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{461471A1-8DD9-4777-BF28-EBFA6A8201CE}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{47842C1B-B938-40FC-94B5-7DF595798258}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{48F15D47-FFAB-4BEE-962F-2D060EA2700F}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4A1E35E5-62D2-44B4-B7EC-7422C20BC7E3}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4BEDE203-BB3D-4546-9644-B8E1EE77490F}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E061004-A23C-45ED-A8A9-37D7D51E0B2C}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E600F9A-BE3A-4967-9E8F-3D63D295DC7D}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E6C2CEB-0F81-4000-81F2-C2305AFFE358}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4F73980C-A681-41E2-9744-62B334022656}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{56A4FF7F-E0C9-43B3-86B1-27FB8D538C66}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{56ECD5B1-8808-4F18-B49D-C87BEA257E92}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5720BF8E-91B9-4B32-9E9E-0DAD29DC4DEB}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{57FEC964-A5F2-4CC8-B112-981B110B4E0B}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{59C33354-C1F3-43DD-999D-D307084E83A7}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5BF79144-C03D-43E6-8B0C-FF263A6539D1}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5CAE3802-1782-4148-9DA8-98EC1DB05643}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5D0C4503-D95E-4D84-BA4B-36AD1A66FDBD}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E319DF2-1A8E-4B83-9894-B1ECB69B6D7E}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5F07C624-3B1B-411F-A0CD-B1FC87FEBB6D}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{64238DFE-0B2A-49D0-8700-17FA2656691B}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{66470971-E018-484C-B774-4D77CEE9D724}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{676A48FF-0E73-4D35-A64F-4990AF44D7E7}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6A15B214-F98F-4585-818D-6FB222D6DB85}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6D24BBD4-4F58-4CF3-8514-37CA1810DF1E}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6FFABE92-6D1E-4828-B002-02DC47CA641A}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{70ABE135-41A8-462C-B581-A474AA06D80B}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74D3DD98-B5B8-4924-9120-42B21E4CE6C8}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{77AB3D1D-BC66-47AF-B89E-EBA36D6412D4}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7A58AAA1-3C22-417E-8A10-7D4440505034}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7AE139B9-53D4-4C00-93AB-D02F9CCAC088}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7BE12965-C6E2-48F6-B7B2-58071489AC1F}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7C3A7C65-91B0-4D7C-BE3B-DA3481C82BEA}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7D0818D3-EDA9-4776-8B28-954B9195E2B2}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7F37EB5D-313E-47E0-9BA2-E9F012FDECFA}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7F496771-ECB4-4655-B976-83413DDB6A6D}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{812AC33C-25B3-4CB5-8768-0E151D963645}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8396E849-BB9F-4950-BE13-A26D47752ABC}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{83FCD87D-1B16-4AE1-BE70-A5FB0280E3F4}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{856E45F3-9B0D-471B-B884-A6BD1710DA85}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{859BFC86-37E4-458E-84DE-660B157D823D}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{86AC5E43-2358-4E52-A1C1-BAFFF29838F6}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8981D2EE-EDEC-4104-9872-F67D7FA7335F}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89EC64B9-F2FE-4787-8E49-8EE1C864955B}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B67F037-2714-4DBA-840F-A5335BE1961C}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B87A6E3-CB5F-4531-BC39-E36890A69258}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8C531162-7D0E-4E43-B243-9CE04F41EE95}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8E0F4792-C893-426C-B1DA-02A9FFB3A82F}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8F5F9E31-0BF6-4595-8A3C-DF60A5B44125}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{90320B45-D9CD-44C8-A2ED-F459196144B7}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{969C004F-4D12-44E1-B95C-E7A0A6FFE1A0}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{96AC4BF5-DF95-41EB-898B-63D95215F2AC}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9B457F5D-7F52-43BF-90E9-652560F63A53}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9CB6B77C-2D48-43E8-9AF8-F6BEE16E9B30}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E4DE732-0227-454F-B7A4-F16E52BAA28E}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9EDCFEC2-94D2-4C9E-A722-C91B1D579033}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9EEC10AA-1203-4501-A6D2-2EB0297933F6}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9FC7346C-7B49-45B0-A450-A68656749B32}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A16CAD5D-5E37-46F9-BCB7-4D6EAE768078}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A27227DE-3D99-4381-8C6A-F0A5F04749F5}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A2BAE230-EA4D-4B73-9A54-402D9DAA8BE4}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A36371E7-CB65-4B9B-B075-1E5052972CAF}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A590013C-9E95-4B46-8EFA-8688B6FC62AF}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7E15C49-FB38-4EE0-B9EC-3E4C1BE82992}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A85094DB-5FE9-438D-8678-94F711AD9999}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ABF22855-2AB5-4659-8179-77CB69D49423}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AC58BBD1-4525-45C0-AFE9-A6F492CA21F5}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ADB653B1-A760-4D1E-B8A2-47CD7ACF2552}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AE6212A4-78D2-4D08-BD46-E91A5ED35340}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AF492940-23DF-472A-B762-C885025603C3}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AFAAA73A-28BB-4446-B0E3-F57E52B3D5C0}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B1999188-571D-4368-BD8D-C5E520DBFFF5}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B1C7DDE3-AAC5-4EF4-A56F-88AA4390861F}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B2143F00-851F-448B-9C8A-160E58CBB0AB}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B3A864EA-E40B-4D0B-8BC9-1E9D059BE8D1}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B417B5E2-1C05-48EF-8A76-15683BC993D4}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4C8AC83-2102-4C79-83B8-05D31D1FD1F3}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4E1AA31-5F19-4B3F-A0CC-74F891EC3A4B}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B9A340B7-864C-45A1-9285-AEAEB2FEBC02}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BF80866F-EA9B-4DFB-BF87-6CA5D0E24C2C}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C0DFDDB7-96F3-458E-8FBB-3BB14E31075C}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C15ADF02-6FAC-46AE-AD3E-6AA6289830F8}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C215B6E1-B860-4141-A497-E2EF8DAE08C1}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C448D627-A3A1-4788-AE3C-C808191BC749}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C6A55D31-3778-4EFA-9C1C-071B8001D9C1}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C97C0F8C-72DB-4120-95B3-2A14DAEFAC30}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C98C8DE5-97AE-489D-B88D-500F58615789}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C9C46745-B619-450F-8E48-994BD6B73B17}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CA441479-453D-43D9-B7D5-E11374E3D555}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CF0C6091-166D-48F1-A7C2-09089F75CE36}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CF11BF08-7D8C-48F8-9AEE-B347D867B3CD}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CF1EE0CF-9AF8-46C1-9815-DF68BD278A8C}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D17305AA-EAF6-4B1B-BB5A-E36E9FAEBBF1}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D3E94D5F-2975-49E1-BD27-685DDF09BA19}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D50BA98A-6AD4-4A19-A2B3-75741064C886}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D5771924-7036-42B0-9324-228D6D30DB45}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D587388C-5780-4880-9B0B-6DA0AB9676E0}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D5DE8CDD-3DC4-4005-B5E7-8AF2EFD59127}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D68E1246-AD92-465B-9100-5845B4F0B582}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D714B290-DB56-40CE-8276-04A507AFF830}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D7F8A4E7-9534-4639-8CFB-BB1F3E418A9C}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D857C8A0-7555-4EDA-86EC-DB5AF689A551}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D90864DA-E06F-43F9-9E96-47EED34406FB}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D97956D4-4F16-415D-A1A0-FA581D7EA513}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DAC48B05-E9F8-4461-A6BE-6B7A90B883A6}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DADA06CD-685B-4187-BD1F-CF76A07F2761}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DCC6AAF3-3CB8-45C4-A9A0-0DBA3B085DFC}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DEB00362-1E04-447D-8390-CE01C8179AEC}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E1A35D6A-BB9C-42E2-85D3-D40CA0763267}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E417759D-7799-4803-987A-450500A15CFE}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E71A6E77-A2DC-4DCD-97D3-50915490C150}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E90F1610-F9E9-4C16-9D9F-874C27AD6B0E}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E92F5196-8E28-4A4A-8FB7-4D248FFEABE0}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA8A5765-B3BB-44C7-8E59-8F54702A39EF}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EC424831-628C-4B7B-8127-F34D7CA6547D}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ECAADA80-B271-47F8-8068-C5B6F00A9640}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ED20CF9F-9A7A-49F4-8BFC-EDF7BBDBB76B}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EF362487-7D11-4AAF-8AD9-BA98E8900C64}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F2A87735-11A6-4354-B725-A8E107954773}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F3CA6BB1-B06C-4C88-97EF-77ED9336A2B6}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F686D283-9A03-400A-9291-B4F7486CB9D4}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F776AEF5-AEB7-45B7-93F0-0024EE4A7AF2}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F81E40EB-504D-4377-9A2E-2D89AFACB733}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F8333A2E-FE81-43AA-83C0-E67300D2252E}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FCF6880F-C2A1-46B2-A825-22E0D2F0C163}]
2008-08-31 04:11 0 d--hsc--- \

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-02-24 08:32 5537792]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoSMMyPictures"= 0 (0x0)
"NoStartMenuMyMusic"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoInstrumentation"= 0 (0x0)
"NoSimpleStartMenu"= 0 (0x0)
"NoFavoritesMenu"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"=hex(2):76,69,73,74,61,75,69,2e,65,78,65,00

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DfLogon]
2008-04-10 14:26 65536 C:\WINDOWS\system32\LogonDll.dll

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Iniciar guiños Messenger.lnk]
backup=C:\WINDOWS\pss\Iniciar guiños Messenger.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Iolo Macro Magic.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Iolo Macro Magic.lnk
backup=C:\WINDOWS\pss\Iolo Macro Magic.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Messenger Power Plus 8.1.lnk]
backup=C:\WINDOWS\pss\Messenger Power Plus 8.1.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Kòcà^Menu Démarrer^Programmes^Démarrage^Y'z Toolbar.lnk]
backup=C:\WINDOWS\pss\Y'z Toolbar.lnkStartup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AntivirusRegistration
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cevuudkdq
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLHomeMediaServer
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\gohhbjcckd
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HomeKeyLogger
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IdiomaX Office
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IdiomaX Product Update
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PMsn Paraiso
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\zzz_ImInstaller_IncrediMail

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\7c95cf1d]
C:\WINDOWS\system32\ayteedam.dll [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced DHTML Enable]
C:\WINDOWS\system32\mlddjir.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer]
-ra------ 2006-11-17 13:41 71216 C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
--a------ 2007-12-31 16:29 962560 C:\Program Files\Ares\Ares.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast!]
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avp]
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flag Owns Live Grim]
C:\Documents and Settings\All Users\Application Data\Software rule flag owns\Comp Acid.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
--a------ 2004-09-13 15:49 49152 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LBTWiz.exe]
C:\WINDOWS\LBTWiz.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate]
--a------ 2005-06-08 14:44 196608 C:\Program Files\Logitech\Video\ManifestEngine.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair]
--a--c--- 2005-06-08 15:24 458752 C:\Program Files\Logitech\Video\ISStart.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]
--a------ 2005-06-08 15:14 217088 C:\Program Files\Logitech\Video\LogiTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lsass]
C:\WINDOWS\lsass.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
--a------ 2005-07-19 18:32 221184 C:\WINDOWS\system32\LVCOMSX.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2001-07-09 11:50 155648 C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2005-02-24 08:32 5537792 C:\WINDOWS\system32\nvcpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RayV]
--a------ 2007-11-20 10:12 4306208 C:\Program Files\RayV\RayV\RayV.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Realtime Monitor]
C:\PROGRA~1\CA\ETRUST~1\realmon.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysMon]
--a--c--- 2007-08-22 13:26 577536 C:\Documents and Settings\All Users\Application Data\SysMon\SysMon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2008-03-30 18:18 185896 C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Winspn]
C:\WINDOWS\system32\mlddjir.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Winupdate Engine]
C:\WINDOWS\system32\wupeng.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XPRepairPro2007]
C:\Program Files\XP Repair Pro 2007\XPRepairPro.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG]
--a------ 2005-03-08 15:53 88203 C:\WINDOWS\AGRSMMSG.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cmaudio]
cmicnfg.cpl [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2005-02-24 08:32 1495040 C:\WINDOWS\system32\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Update]
GooGLed.exe [N/A]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDIAL.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLACSD.exe"=
"C:\\Program Files\\Ares\\Ares.exe"=
"C:\\WINDOWS\\system32\\sessmgr.exe"=
"C:\\WINDOWS\\system32\\fxsclnt.exe"=
"C:\\Program Files\\eMule\\eMule.exe"=
"C:\\Program Files\\LimeWire\\LimeWire.exe"=
"C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\DAP\\DAP.exe"=
"C:\\Program Files\\Messenger\\Msmsgs.exe"=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

R0 DeepFrz;DeepFrz;C:\WINDOWS\system32\drivers\DeepFrz.sys [2008-04-10 14:29]
R2 Dnscache;Client DNS;C:\WINDOWS\system32\svchost.exe [2004-08-05 14:00]
R3 3xHybrid;3xHybrid service;C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2005-06-08 03:35]
R3 cmudax;C-Media High Definition Audio Interface;C:\WINDOWS\system32\drivers\cmudax.sys [2005-05-12 14:39]
S3 PRISM_A00;CREATIX 802.11g Driver;C:\WINDOWS\system32\DRIVERS\PRISMA00.sys [2004-01-16 10:31]
.
Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'

2008-05-06 C:\WINDOWS\Tasks\9F67AFAA9E1C482E.job
- c:\docume~1\mel\applic~1\thismix\Aim Stupid Program.exe []

2008-05-02 C:\WINDOWS\Tasks\Maintenance en 1 clic.job
- C:\Program Files\TuneUp Utilities 2007\SystemOptimizer.exe []
.
- - - - ORPHANS REMOVED - - - -

Notify-bvxncbvq - (no file)
Notify-pmnkhff - pmnkhff.dll


.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page = hxxp://www.carrefour.fr/
O8 -: &Recherche AOL Toolbar - C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 -: {AEF9B8DB-0DEF-4c0b-8209-661C9E82B8C3} - C:\Program Files\WinSysClean 2008 Trial\UDManager\UDManager.exe
O9 -: {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost
O9 -: {ECC5777A-6E88-BFCE-13CE-81F134789E7B}\SOFTWARE
O9 -: {ECC5777A-6E88-BFCE-13CE-81F134789E7B}\SOFTWARE\Karlis Blumentals
O9 -: {ECC5777A-6E88-BFCE-13CE-81F134789E7B}\SOFTWARE\Karlis Blumentals\Easy Gif Animator Extension
O18 -: Name-Space Handler: ftp\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - C:\PROGRA~1\DAP\dapie.dll
O18 -: Name-Space Handler: http\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - C:\PROGRA~1\DAP\dapie.dll

O16 -: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
C:\WINDOWS\Downloaded Program Files\Microsoft XML Parser for Java.osd

O16 -: {733A5CA7-C0E1-41D7-9506-F4AA354B4500} - file:///C:/Program%20Files/Intelore/AnimatedDesktop/advThemes/WorkDir/83490468/Files/ActiveFormProj1.inf
C:\WINDOWS\Downloaded Program Files\ActiveFormProj1.inf
C:\WINDOWS\Downloaded Program Files\ActiveFormProj1.ocx

O16 -: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - hxxp://fichiers.touslesdrivers.com/fichiers/hardwaredetection/hardwaredetection_2_0_4_12.cab
C:\WINDOWS\Downloaded Program Files\hardwaredetection.inf

O16 -: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game07.zylom.com/activex/zylomgamesplayer.cab
C:\WINDOWS\Downloaded Program Files\ZylomGamesPlayer.inf
C:\WINDOWS\Downloaded Program Files\zylomgamesplayer.dll

O16 -: {E55FD215-A32E-43FE-A777-A7E8F165F551} - hxxp://www.flatcast.info/objects/NpFv415.dll
C:\WINDOWS\Downloaded Program Files\NpFv415.dll
.

**************************************************************************
Balayage processus cach‚s ...

Balayage cach‚ autostart entries ...

Balayage des fichiers cach‚s ...

Scan termin‚ avec succŠs
Les fichiers cach‚s:

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\EverestDriver]
"ImagePath"="\??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt"
.
--------------------- DLLs a charg‚ sous des processus courants ---------------------

PROCESS: C:\WINDOWS\system32\winlogon.exe
-> C:\WINDOWS\system32\LogonDll.dll
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\locator.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\msiexec.exe
.
**************************************************************************
.
Temps d'accomplissement: 2008-08-31 4:13:53 - machine was rebooted [Appûø]
ComboFix-quarantined-files.txt 2008-08-31 02:13:49

Pre-Run: 126,497,021,952 octets libres
Post-Run: 126,761,230,336 octets libres

654 --- E O F --- 2008-08-31 02:13:51
0
Réponse 13 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 04:19
Je ne comprend pas apres, "mon log hijackthis" ? c'est le rapport ?
0
Utilisateur anonyme
31 août 2008 à 04:21
Oui : c'est ça.
0
Utilisateur anonyme
31 août 2008 à 04:24
Attends !

Tu es là ?
0
Réponse 14 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 04:22
Ok, voila le rapport HiJacKthis:


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 04:22, on 2008-08-31
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\FlashFXP\FlashFXP.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.carrefour.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {0130E5C8-9145-485D-AC55-2DBE533D2825} - \
O2 - BHO: (no name) - {03B60C47-A8FC-4009-B2A1-EFE73547860C} - \
O2 - BHO: (no name) - {04ED3FAC-C8AE-4C02-A2AE-B73631A044ED} - \
O2 - BHO: (no name) - {0625D0C5-3329-42F9-8521-2D0DAC24C9FE} - \
O2 - BHO: (no name) - {096BAD95-DD57-4D41-B265-8079DDBF31AE} - \
O2 - BHO: (no name) - {0AC4EB2D-095F-4348-9F6A-D67DD5E2994C} - \
O2 - BHO: (no name) - {0B8F7A4B-69CC-455E-8C7F-A87EBD4C102B} - \
O2 - BHO: (no name) - {0C3F6274-33D1-4AC8-B6D7-594C64D6DFF1} - \
O2 - BHO: (no name) - {113D6A19-0152-4CE1-AA67-D74B2E2666DB} - \
O2 - BHO: (no name) - {1298BC84-EA4A-4275-ACDE-7C3FA12E7CB5} - \
O2 - BHO: (no name) - {12C642FC-670F-4566-AC88-D535B9F4AD21} - \
O2 - BHO: (no name) - {12D03E97-A906-4E7D-BD1F-C341ED744650} - \
O2 - BHO: (no name) - {14348DD5-0889-474B-ACA8-EAB11965AC3B} - \
O2 - BHO: (no name) - {14982F75-23E9-40EF-B164-8C941461CD05} - \
O2 - BHO: (no name) - {14E1A912-B256-4791-AA76-DF439DF6C0D9} - \
O2 - BHO: (no name) - {15CB173B-74C4-415D-AF0E-55A6EEE2B611} - \
O2 - BHO: (no name) - {17C8CEF9-A179-4EB7-A71F-E3DE00195566} - \
O2 - BHO: (no name) - {1B53F997-B6C4-43F5-8794-8172A6750ADF} - \
O2 - BHO: (no name) - {1CCFC023-FE17-482B-ADBB-6B3F4FC4B3C4} - \
O2 - BHO: (no name) - {1D248F5D-9DA8-47BD-815D-71A8D26FF44E} - \
O2 - BHO: (no name) - {1F0203E2-6C10-4C04-B4B8-C3617DA216DC} - \
O2 - BHO: (no name) - {20B548E7-2E6E-4C7D-855A-86526A08BFBA} - \
O2 - BHO: (no name) - {21FC5E31-979E-48F5-A1D8-1A4E3A0F59E1} - \
O2 - BHO: (no name) - {22DFC511-DC56-4648-A808-EF69955CF949} - \
O2 - BHO: (no name) - {2377B471-A56B-4435-AF5E-9939810402D8} - \
O2 - BHO: (no name) - {26E616CA-16C5-4BF6-A6AF-59EA73B0A019} - \
O2 - BHO: (no name) - {27E3D768-A79F-45C5-B146-E6304A20190E} - \
O2 - BHO: (no name) - {281F1F91-5B79-4937-BEFA-5D5CA262D6B0} - \
O2 - BHO: (no name) - {2E3B1584-4CD5-40DC-AA50-A0CA25654584} - \
O2 - BHO: (no name) - {2F7AFFB0-7418-42A5-A9F3-A410E3F7CF22} - \
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {3103C8AE-CBA6-470B-B195-366D0FAE16A4} - \
O2 - BHO: (no name) - {314DF925-79A2-4ADD-BCE5-58AF57C7931D} - \
O2 - BHO: (no name) - {32A428E9-378A-454C-BCAD-CC86CA53CE0E} - \
O2 - BHO: (no name) - {34D75E83-5306-4A51-85AE-C0C12C545831} - \
O2 - BHO: (no name) - {351A178C-A7C5-463D-B883-3D17700DFC1E} - \
O2 - BHO: (no name) - {35BF99DA-B81B-4AF0-9D01-B638290BA3AA} - \
O2 - BHO: (no name) - {35DF685B-F4FB-4E6D-9172-97D7F50E5D84} - \
O2 - BHO: (no name) - {38284B0C-8F62-470C-BAC8-BEC9C1E133B1} - \
O2 - BHO: (no name) - {3A68A11F-10FA-4C24-BE59-31270671C3AF} - \
O2 - BHO: (no name) - {3CA1D857-4CCD-45F2-A956-0CD6B9372070} - \
O2 - BHO: (no name) - {3D85C278-4794-4359-947C-847249E2EC84} - \
O2 - BHO: (no name) - {3EB51013-0DA2-457E-9D66-F2614016B39B} - \
O2 - BHO: (no name) - {3EF7D927-D459-4973-BE08-31D91B486750} - \
O2 - BHO: (no name) - {3FB4136C-2136-4198-909C-2599EA37FCC9} - \
O2 - BHO: (no name) - {444C870F-8EA5-4DC1-B378-21733FF0D44D} - \
O2 - BHO: (no name) - {45544890-737D-4A0B-B03D-EB9D05C142BB} - \
O2 - BHO: (no name) - {45A94654-5CE9-4E95-93CF-B6C90129CBDD} - \
O2 - BHO: (no name) - {45AF4313-0AB8-4FFC-98B6-8D95D038F7D6} - \
O2 - BHO: (no name) - {461471A1-8DD9-4777-BF28-EBFA6A8201CE} - \
O2 - BHO: (no name) - {47842C1B-B938-40FC-94B5-7DF595798258} - \
O2 - BHO: (no name) - {48F15D47-FFAB-4BEE-962F-2D060EA2700F} - \
O2 - BHO: (no name) - {4A1E35E5-62D2-44B4-B7EC-7422C20BC7E3} - \
O2 - BHO: (no name) - {4BEDE203-BB3D-4546-9644-B8E1EE77490F} - \
O2 - BHO: (no name) - {4E061004-A23C-45ED-A8A9-37D7D51E0B2C} - \
O2 - BHO: (no name) - {4E600F9A-BE3A-4967-9E8F-3D63D295DC7D} - \
O2 - BHO: (no name) - {4E6C2CEB-0F81-4000-81F2-C2305AFFE358} - \
O2 - BHO: (no name) - {4F73980C-A681-41E2-9744-62B334022656} - \
O2 - BHO: (no name) - {56A4FF7F-E0C9-43B3-86B1-27FB8D538C66} - \
O2 - BHO: (no name) - {56ECD5B1-8808-4F18-B49D-C87BEA257E92} - \
O2 - BHO: (no name) - {5720BF8E-91B9-4B32-9E9E-0DAD29DC4DEB} - \
O2 - BHO: (no name) - {57FEC964-A5F2-4CC8-B112-981B110B4E0B} - \
O2 - BHO: (no name) - {59C33354-C1F3-43DD-999D-D307084E83A7} - \
O2 - BHO: (no name) - {5BF79144-C03D-43E6-8B0C-FF263A6539D1} - \
O2 - BHO: (no name) - {5CAE3802-1782-4148-9DA8-98EC1DB05643} - \
O2 - BHO: (no name) - {5D0C4503-D95E-4D84-BA4B-36AD1A66FDBD} - \
O2 - BHO: (no name) - {5E319DF2-1A8E-4B83-9894-B1ECB69B6D7E} - \
O2 - BHO: (no name) - {5F07C624-3B1B-411F-A0CD-B1FC87FEBB6D} - \
O2 - BHO: (no name) - {64238DFE-0B2A-49D0-8700-17FA2656691B} - \
O2 - BHO: (no name) - {66470971-E018-484C-B774-4D77CEE9D724} - \
O2 - BHO: (no name) - {676A48FF-0E73-4D35-A64F-4990AF44D7E7} - \
O2 - BHO: (no name) - {6A15B214-F98F-4585-818D-6FB222D6DB85} - \
O2 - BHO: (no name) - {6D24BBD4-4F58-4CF3-8514-37CA1810DF1E} - \
O2 - BHO: (no name) - {6FFABE92-6D1E-4828-B002-02DC47CA641A} - \
O2 - BHO: (no name) - {70ABE135-41A8-462C-B581-A474AA06D80B} - \
O2 - BHO: (no name) - {74D3DD98-B5B8-4924-9120-42B21E4CE6C8} - \
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {77AB3D1D-BC66-47AF-B89E-EBA36D6412D4} - \
O2 - BHO: (no name) - {7A58AAA1-3C22-417E-8A10-7D4440505034} - \
O2 - BHO: (no name) - {7AE139B9-53D4-4C00-93AB-D02F9CCAC088} - \
O2 - BHO: (no name) - {7BE12965-C6E2-48F6-B7B2-58071489AC1F} - \
O2 - BHO: (no name) - {7C3A7C65-91B0-4D7C-BE3B-DA3481C82BEA} - \
O2 - BHO: (no name) - {7D0818D3-EDA9-4776-8B28-954B9195E2B2} - \
O2 - BHO: (no name) - {7F37EB5D-313E-47E0-9BA2-E9F012FDECFA} - \
O2 - BHO: (no name) - {7F496771-ECB4-4655-B976-83413DDB6A6D} - \
O2 - BHO: (no name) - {812AC33C-25B3-4CB5-8768-0E151D963645} - \
O2 - BHO: (no name) - {8396E849-BB9F-4950-BE13-A26D47752ABC} - \
O2 - BHO: (no name) - {83FCD87D-1B16-4AE1-BE70-A5FB0280E3F4} - \
O2 - BHO: (no name) - {856E45F3-9B0D-471B-B884-A6BD1710DA85} - \
O2 - BHO: (no name) - {859BFC86-37E4-458E-84DE-660B157D823D} - \
O2 - BHO: (no name) - {86AC5E43-2358-4E52-A1C1-BAFFF29838F6} - \
O2 - BHO: (no name) - {8981D2EE-EDEC-4104-9872-F67D7FA7335F} - \
O2 - BHO: (no name) - {89EC64B9-F2FE-4787-8E49-8EE1C864955B} - \
O2 - BHO: (no name) - {8B67F037-2714-4DBA-840F-A5335BE1961C} - \
O2 - BHO: (no name) - {8B87A6E3-CB5F-4531-BC39-E36890A69258} - \
O2 - BHO: (no name) - {8C531162-7D0E-4E43-B243-9CE04F41EE95} - \
O2 - BHO: (no name) - {8E0F4792-C893-426C-B1DA-02A9FFB3A82F} - \
O2 - BHO: (no name) - {8F5F9E31-0BF6-4595-8A3C-DF60A5B44125} - \
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {90320B45-D9CD-44C8-A2ED-F459196144B7} - \
O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.0\EasyGifAnimator_Toolbar.dll
O2 - BHO: (no name) - {969C004F-4D12-44E1-B95C-E7A0A6FFE1A0} - \
O2 - BHO: (no name) - {96AC4BF5-DF95-41EB-898B-63D95215F2AC} - \
O2 - BHO: (no name) - {9B457F5D-7F52-43BF-90E9-652560F63A53} - \
O2 - BHO: (no name) - {9CB6B77C-2D48-43E8-9AF8-F6BEE16E9B30} - \
O2 - BHO: (no name) - {9E4DE732-0227-454F-B7A4-F16E52BAA28E} - \
O2 - BHO: (no name) - {9EDCFEC2-94D2-4C9E-A722-C91B1D579033} - \
O2 - BHO: (no name) - {9EEC10AA-1203-4501-A6D2-2EB0297933F6} - \
O2 - BHO: (no name) - {9FC7346C-7B49-45B0-A450-A68656749B32} - \
O2 - BHO: (no name) - {A16CAD5D-5E37-46F9-BCB7-4D6EAE768078} - \
O2 - BHO: (no name) - {A27227DE-3D99-4381-8C6A-F0A5F04749F5} - \
O2 - BHO: (no name) - {A2BAE230-EA4D-4B73-9A54-402D9DAA8BE4} - \
O2 - BHO: (no name) - {A36371E7-CB65-4B9B-B075-1E5052972CAF} - \
O2 - BHO: (no name) - {A590013C-9E95-4B46-8EFA-8688B6FC62AF} - \
O2 - BHO: (no name) - {A7E15C49-FB38-4EE0-B9EC-3E4C1BE82992} - \
O2 - BHO: (no name) - {A85094DB-5FE9-438D-8678-94F711AD9999} - \
O2 - BHO: (no name) - {ABF22855-2AB5-4659-8179-77CB69D49423} - \
O2 - BHO: (no name) - {AC58BBD1-4525-45C0-AFE9-A6F492CA21F5} - \
O2 - BHO: (no name) - {ADB653B1-A760-4D1E-B8A2-47CD7ACF2552} - \
O2 - BHO: (no name) - {AE6212A4-78D2-4D08-BD46-E91A5ED35340} - \
O2 - BHO: (no name) - {AF492940-23DF-472A-B762-C885025603C3} - \
O2 - BHO: (no name) - {AFAAA73A-28BB-4446-B0E3-F57E52B3D5C0} - \
O2 - BHO: (no name) - {B1999188-571D-4368-BD8D-C5E520DBFFF5} - \
O2 - BHO: (no name) - {B1C7DDE3-AAC5-4EF4-A56F-88AA4390861F} - \
O2 - BHO: (no name) - {B2143F00-851F-448B-9C8A-160E58CBB0AB} - \
O2 - BHO: (no name) - {B3A864EA-E40B-4D0B-8BC9-1E9D059BE8D1} - \
O2 - BHO: (no name) - {B417B5E2-1C05-48EF-8A76-15683BC993D4} - \
O2 - BHO: (no name) - {B4C8AC83-2102-4C79-83B8-05D31D1FD1F3} - \
O2 - BHO: (no name) - {B4E1AA31-5F19-4B3F-A0CC-74F891EC3A4B} - \
O2 - BHO: (no name) - {B9A340B7-864C-45A1-9285-AEAEB2FEBC02} - \
O2 - BHO: (no name) - {BF80866F-EA9B-4DFB-BF87-6CA5D0E24C2C} - \
O2 - BHO: (no name) - {C0DFDDB7-96F3-458E-8FBB-3BB14E31075C} - \
O2 - BHO: (no name) - {C15ADF02-6FAC-46AE-AD3E-6AA6289830F8} - \
O2 - BHO: (no name) - {C215B6E1-B860-4141-A497-E2EF8DAE08C1} - \
O2 - BHO: (no name) - {C448D627-A3A1-4788-AE3C-C808191BC749} - \
O2 - BHO: (no name) - {C6A55D31-3778-4EFA-9C1C-071B8001D9C1} - \
O2 - BHO: (no name) - {C97C0F8C-72DB-4120-95B3-2A14DAEFAC30} - \
O2 - BHO: (no name) - {C98C8DE5-97AE-489D-B88D-500F58615789} - \
O2 - BHO: (no name) - {C9C46745-B619-450F-8E48-994BD6B73B17} - \
O2 - BHO: (no name) - {CA441479-453D-43D9-B7D5-E11374E3D555} - \
O2 - BHO: (no name) - {CF0C6091-166D-48F1-A7C2-09089F75CE36} - \
O2 - BHO: (no name) - {CF11BF08-7D8C-48F8-9AEE-B347D867B3CD} - \
O2 - BHO: (no name) - {CF1EE0CF-9AF8-46C1-9815-DF68BD278A8C} - \
O2 - BHO: (no name) - {D17305AA-EAF6-4B1B-BB5A-E36E9FAEBBF1} - \
O2 - BHO: (no name) - {D3E94D5F-2975-49E1-BD27-685DDF09BA19} - \
O2 - BHO: (no name) - {D50BA98A-6AD4-4A19-A2B3-75741064C886} - \
O2 - BHO: (no name) - {D5771924-7036-42B0-9324-228D6D30DB45} - \
O2 - BHO: (no name) - {D587388C-5780-4880-9B0B-6DA0AB9676E0} - \
O2 - BHO: (no name) - {D5DE8CDD-3DC4-4005-B5E7-8AF2EFD59127} - \
O2 - BHO: (no name) - {D68E1246-AD92-465B-9100-5845B4F0B582} - \
O2 - BHO: (no name) - {D714B290-DB56-40CE-8276-04A507AFF830} - \
O2 - BHO: (no name) - {D7F8A4E7-9534-4639-8CFB-BB1F3E418A9C} - \
O2 - BHO: (no name) - {D857C8A0-7555-4EDA-86EC-DB5AF689A551} - \
O2 - BHO: (no name) - {D90864DA-E06F-43F9-9E96-47EED34406FB} - \
O2 - BHO: (no name) - {D97956D4-4F16-415D-A1A0-FA581D7EA513} - \
O2 - BHO: (no name) - {DAC48B05-E9F8-4461-A6BE-6B7A90B883A6} - \
O2 - BHO: (no name) - {DADA06CD-685B-4187-BD1F-CF76A07F2761} - \
O2 - BHO: (no name) - {DCC6AAF3-3CB8-45C4-A9A0-0DBA3B085DFC} - \
O2 - BHO: (no name) - {DEB00362-1E04-447D-8390-CE01C8179AEC} - \
O2 - BHO: (no name) - {E1A35D6A-BB9C-42E2-85D3-D40CA0763267} - \
O2 - BHO: (no name) - {E417759D-7799-4803-987A-450500A15CFE} - \
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O2 - BHO: (no name) - {E71A6E77-A2DC-4DCD-97D3-50915490C150} - \
O2 - BHO: (no name) - {E90F1610-F9E9-4C16-9D9F-874C27AD6B0E} - \
O2 - BHO: (no name) - {E92F5196-8E28-4A4A-8FB7-4D248FFEABE0} - \
O2 - BHO: (no name) - {EA8A5765-B3BB-44C7-8E59-8F54702A39EF} - \
O2 - BHO: (no name) - {EC424831-628C-4B7B-8127-F34D7CA6547D} - \
O2 - BHO: (no name) - {ECAADA80-B271-47F8-8068-C5B6F00A9640} - \
O2 - BHO: (no name) - {ED20CF9F-9A7A-49F4-8BFC-EDF7BBDBB76B} - \
O2 - BHO: (no name) - {EF362487-7D11-4AAF-8AD9-BA98E8900C64} - \
O2 - BHO: (no name) - {F2A87735-11A6-4354-B725-A8E107954773} - \
O2 - BHO: (no name) - {F3CA6BB1-B06C-4C88-97EF-77ED9336A2B6} - \
O2 - BHO: (no name) - {F686D283-9A03-400A-9291-B4F7486CB9D4} - \
O2 - BHO: (no name) - {F776AEF5-AEB7-45B7-93F0-0024EE4A7AF2} - \
O2 - BHO: (no name) - {F81E40EB-504D-4377-9A2E-2D89AFACB733} - \
O2 - BHO: (no name) - {F8333A2E-FE81-43AA-83C0-E67300D2252E} - \
O2 - BHO: (no name) - {FCF6880F-C2A1-46B2-A825-22E0D2F0C163} - \
O3 - Toolbar: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.0\EasyGifAnimator_Toolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {AEF9B8DB-0DEF-4c0b-8209-661C9E82B8C3} - C:\Program Files\WinSysClean 2008 Trial\UDManager\UDManager.exe (file missing)
O9 - Extra button: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost (file missing)
O9 - Extra 'Tools' menuitem: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost (file missing)
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {733A5CA7-C0E1-41D7-9506-F4AA354B4500} (ActiveFormX Control) - file:///C:/Program%20Files/Intelore/AnimatedDesktop/advThemes/WorkDir/83490468/Files/ActiveFormProj1.inf
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-45677db9d513036c.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game07.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F551} (Flatcast Viewer 4.15) - http://www.flatcast.info/objects/NpFv415.dll
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O20 - Winlogon Notify: DfLogon - C:\WINDOWS\SYSTEM32\LogonDll.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: DF5Serv - Faronics Corporation - C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe (file missing)
0
Utilisateur anonyme
31 août 2008 à 04:26
Ok,
mais tu n'as pas coché les cases avant ?

Si tu n'as pas encore fais le combo alors attends une seconde avant d'exécuter le script.
Dis moi avant de le faire.

A+
0
Réponse 15 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 04:26
Parconter apres ya un probleme, les fichiers qui faut analiser sur VirusTotal ne sont pas dans mon PC moi.
0
Réponse 16 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 04:28
Ah oui mais DllD, si j'avais coché les cases mais j'ai deepfreeze comme j'tavais dit. Enfaite quand j'ai redemarré l'ordi sa a fait comme si je n'avait pas coché =/, je n'arrive pas a desinstaller deepfreeze.
0
Utilisateur anonyme
31 août 2008 à 04:30
Donc on risque de tourner en rond......

Peux tu me donner le chemin de deepfreeze ? (c:\programme files....)

Tu n'as pas encore fait le combo ? (je le fais pas tout de suite stp).
0
Réponse 17 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 04:32
Chemin de deepfreeze: C:\Program Files\Faronics\
0
Réponse 18 / 108
Utilisateur anonyme
31 août 2008 à 04:37
OK,
alors,
fait ceci stp :

Alors,
> Avec Combofix :
- Crée un nouveau document texte : clic droit de souris sur le bureau => Nouveau => Document Texte, et copie/colle dedans les lignes suivantes : 

Registry::
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\7c95cf1d] 
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced DHTML Enable] 
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Winspn] 
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Winupdate Engine] 

File::
C:\Documents and Settings\All Users\Application Data\1ÌØ13.sys 
C:\WINDOWS\system32\130F639A6A.sys
C:\WINDOWS\system32\CCAAB69B4E.sys 
C:\WINDOWS\system32\ayteedam.dll
C:\WINDOWS\system32\mlddjir.exe
C:\WINDOWS\system32\mlddjir.exe
C:\WINDOWS\system32\wupeng.exe

Folder::
C:\Documents and Settings\Appûø 
C:\Program Files\Faronics\

Driver::
1ÌØ13
130F639A6A
CCAAB69B4E

- Enregistre ce fichier sous le nom CFScript (Type du fichier : tous les fichiers)
- Ferme tous tes navigateurs web (donc copie ou imprime les instructions suivantes avant si besoin est).
- Désactive ton antivirus et tes autres protections résidentes (ex : Spybot) si tu en as (c'est important).
- Fait un glisser/déposer de ce fichier CFScript sur le programme ComboFix.exe comme sur cette image.
(Explications du glisser/coller : Clique sur le fichier CFScript, maintient le doigt enfoncé et glisse la souris pour que l'icône du CFScript vienne recouvrir l'icône de Combofix. Relâche alors le bouton de la souris).
- Combofix va démarrer puis une fenêtre bleue va apparaître. Au message qui s'affiche (Type 1 to continue, or 2 to abort) : tape 1 puis valide.
- Patiente le temps du scan. Le bureau va disparaître à plusieurs reprises: c'est normal !
- Ne touche à rien tant que le scan n'est pas terminé sinon le PC peut planter !
- Une fois le scan achevé, un rapport va s'afficher: poste le stp.
PS : Si le fichier ne s'ouvre pas, il se trouve ici => C:\ComboFix.txt
PS2 : Il peut s'avérer que le rapport Combofix soit trop long pour être supporter par CCM.net. Dans ce cas utilise ce service http://www.cijoint.fr pour me l'envoyer (dépose le fichier puis poste le lien sur le forum).





Ensuite,
Puis refix les lignes (coche les casses) dans HiJackt.
C'est celles-ci : 
O2 - BHO: (no name) - {0130E5C8-9145-485D-AC55-2DBE533D2825} - \
O2 - BHO: (no name) - {03B60C47-A8FC-4009-B2A1-EFE73547860C} - \
O2 - BHO: (no name) - {04ED3FAC-C8AE-4C02-A2AE-B73631A044ED} - \
O2 - BHO: (no name) - {0625D0C5-3329-42F9-8521-2D0DAC24C9FE} - \
O2 - BHO: (no name) - {096BAD95-DD57-4D41-B265-8079DDBF31AE} - \
O2 - BHO: (no name) - {0AC4EB2D-095F-4348-9F6A-D67DD5E2994C} - \
O2 - BHO: (no name) - {0B8F7A4B-69CC-455E-8C7F-A87EBD4C102B} - \
O2 - BHO: (no name) - {0C3F6274-33D1-4AC8-B6D7-594C64D6DFF1} - \
O2 - BHO: (no name) - {113D6A19-0152-4CE1-AA67-D74B2E2666DB} - \
O2 - BHO: (no name) - {1298BC84-EA4A-4275-ACDE-7C3FA12E7CB5} - \
O2 - BHO: (no name) - {12C642FC-670F-4566-AC88-D535B9F4AD21} - \
O2 - BHO: (no name) - {12D03E97-A906-4E7D-BD1F-C341ED744650} - \
O2 - BHO: (no name) - {14348DD5-0889-474B-ACA8-EAB11965AC3B} - \
O2 - BHO: (no name) - {14982F75-23E9-40EF-B164-8C941461CD05} - \
O2 - BHO: (no name) - {14E1A912-B256-4791-AA76-DF439DF6C0D9} - \
O2 - BHO: (no name) - {15CB173B-74C4-415D-AF0E-55A6EEE2B611} - \
O2 - BHO: (no name) - {17C8CEF9-A179-4EB7-A71F-E3DE00195566} - \
O2 - BHO: (no name) - {1B53F997-B6C4-43F5-8794-8172A6750ADF} - \
O2 - BHO: (no name) - {1CCFC023-FE17-482B-ADBB-6B3F4FC4B3C4} - \
O2 - BHO: (no name) - {1D248F5D-9DA8-47BD-815D-71A8D26FF44E} - \
O2 - BHO: (no name) - {1F0203E2-6C10-4C04-B4B8-C3617DA216DC} - \
O2 - BHO: (no name) - {20B548E7-2E6E-4C7D-855A-86526A08BFBA} - \
O2 - BHO: (no name) - {21FC5E31-979E-48F5-A1D8-1A4E3A0F59E1} - \
O2 - BHO: (no name) - {22DFC511-DC56-4648-A808-EF69955CF949} - \
O2 - BHO: (no name) - {2377B471-A56B-4435-AF5E-9939810402D8} - \
O2 - BHO: (no name) - {26E616CA-16C5-4BF6-A6AF-59EA73B0A019} - \
O2 - BHO: (no name) - {27E3D768-A79F-45C5-B146-E6304A20190E} - \
O2 - BHO: (no name) - {281F1F91-5B79-4937-BEFA-5D5CA262D6B0} - \
O2 - BHO: (no name) - {2E3B1584-4CD5-40DC-AA50-A0CA25654584} - \
O2 - BHO: (no name) - {2F7AFFB0-7418-42A5-A9F3-A410E3F7CF22} - \
O2 - BHO: (no name) - {3103C8AE-CBA6-470B-B195-366D0FAE16A4} - \
O2 - BHO: (no name) - {314DF925-79A2-4ADD-BCE5-58AF57C7931D} - \
O2 - BHO: (no name) - {32A428E9-378A-454C-BCAD-CC86CA53CE0E} - \
O2 - BHO: (no name) - {34D75E83-5306-4A51-85AE-C0C12C545831} - \
O2 - BHO: (no name) - {351A178C-A7C5-463D-B883-3D17700DFC1E} - \
O2 - BHO: (no name) - {35BF99DA-B81B-4AF0-9D01-B638290BA3AA} - \
O2 - BHO: (no name) - {35DF685B-F4FB-4E6D-9172-97D7F50E5D84} - \
O2 - BHO: (no name) - {38284B0C-8F62-470C-BAC8-BEC9C1E133B1} - \
O2 - BHO: (no name) - {3A68A11F-10FA-4C24-BE59-31270671C3AF} - \
O2 - BHO: (no name) - {3CA1D857-4CCD-45F2-A956-0CD6B9372070} - \
O2 - BHO: (no name) - {3D85C278-4794-4359-947C-847249E2EC84} - \
O2 - BHO: (no name) - {3EB51013-0DA2-457E-9D66-F2614016B39B} - \
O2 - BHO: (no name) - {3EF7D927-D459-4973-BE08-31D91B486750} - \
O2 - BHO: (no name) - {3FB4136C-2136-4198-909C-2599EA37FCC9} - \
O2 - BHO: (no name) - {444C870F-8EA5-4DC1-B378-21733FF0D44D} - \
O2 - BHO: (no name) - {45544890-737D-4A0B-B03D-EB9D05C142BB} - \
O2 - BHO: (no name) - {45A94654-5CE9-4E95-93CF-B6C90129CBDD} - \
O2 - BHO: (no name) - {45AF4313-0AB8-4FFC-98B6-8D95D038F7D6} - \
O2 - BHO: (no name) - {461471A1-8DD9-4777-BF28-EBFA6A8201CE} - \
O2 - BHO: (no name) - {47842C1B-B938-40FC-94B5-7DF595798258} - \
O2 - BHO: (no name) - {48F15D47-FFAB-4BEE-962F-2D060EA2700F} - \
O2 - BHO: (no name) - {4A1E35E5-62D2-44B4-B7EC-7422C20BC7E3} - \
O2 - BHO: (no name) - {4BEDE203-BB3D-4546-9644-B8E1EE77490F} - \
O2 - BHO: (no name) - {4E061004-A23C-45ED-A8A9-37D7D51E0B2C} - \
O2 - BHO: (no name) - {4E600F9A-BE3A-4967-9E8F-3D63D295DC7D} - \
O2 - BHO: (no name) - {4E6C2CEB-0F81-4000-81F2-C2305AFFE358} - \
O2 - BHO: (no name) - {4F73980C-A681-41E2-9744-62B334022656} - \
O2 - BHO: (no name) - {56A4FF7F-E0C9-43B3-86B1-27FB8D538C66} - \
O2 - BHO: (no name) - {56ECD5B1-8808-4F18-B49D-C87BEA257E92} - \
O2 - BHO: (no name) - {5720BF8E-91B9-4B32-9E9E-0DAD29DC4DEB} - \
O2 - BHO: (no name) - {57FEC964-A5F2-4CC8-B112-981B110B4E0B} - \
O2 - BHO: (no name) - {59C33354-C1F3-43DD-999D-D307084E83A7} - \
O2 - BHO: (no name) - {5BF79144-C03D-43E6-8B0C-FF263A6539D1} - \
O2 - BHO: (no name) - {5CAE3802-1782-4148-9DA8-98EC1DB05643} - \
O2 - BHO: (no name) - {5D0C4503-D95E-4D84-BA4B-36AD1A66FDBD} - \
O2 - BHO: (no name) - {5E319DF2-1A8E-4B83-9894-B1ECB69B6D7E} - \
O2 - BHO: (no name) - {5F07C624-3B1B-411F-A0CD-B1FC87FEBB6D} - \
O2 - BHO: (no name) - {64238DFE-0B2A-49D0-8700-17FA2656691B} - \
O2 - BHO: (no name) - {66470971-E018-484C-B774-4D77CEE9D724} - \
O2 - BHO: (no name) - {676A48FF-0E73-4D35-A64F-4990AF44D7E7} - \
O2 - BHO: (no name) - {6A15B214-F98F-4585-818D-6FB222D6DB85} - \
O2 - BHO: (no name) - {6D24BBD4-4F58-4CF3-8514-37CA1810DF1E} - \
O2 - BHO: (no name) - {6FFABE92-6D1E-4828-B002-02DC47CA641A} - \
O2 - BHO: (no name) - {70ABE135-41A8-462C-B581-A474AA06D80B} - \
O2 - BHO: (no name) - {74D3DD98-B5B8-4924-9120-42B21E4CE6C8} - \
O2 - BHO: (no name) - {77AB3D1D-BC66-47AF-B89E-EBA36D6412D4} - \
O2 - BHO: (no name) - {7A58AAA1-3C22-417E-8A10-7D4440505034} - \
O2 - BHO: (no name) - {7AE139B9-53D4-4C00-93AB-D02F9CCAC088} - \
O2 - BHO: (no name) - {7BE12965-C6E2-48F6-B7B2-58071489AC1F} - \
O2 - BHO: (no name) - {7C3A7C65-91B0-4D7C-BE3B-DA3481C82BEA} - \
O2 - BHO: (no name) - {7D0818D3-EDA9-4776-8B28-954B9195E2B2} - \
O2 - BHO: (no name) - {7F37EB5D-313E-47E0-9BA2-E9F012FDECFA} - \
O2 - BHO: (no name) - {7F496771-ECB4-4655-B976-83413DDB6A6D} - \
O2 - BHO: (no name) - {812AC33C-25B3-4CB5-8768-0E151D963645} - \
O2 - BHO: (no name) - {8396E849-BB9F-4950-BE13-A26D47752ABC} - \
O2 - BHO: (no name) - {83FCD87D-1B16-4AE1-BE70-A5FB0280E3F4} - \
O2 - BHO: (no name) - {856E45F3-9B0D-471B-B884-A6BD1710DA85} - \
O2 - BHO: (no name) - {859BFC86-37E4-458E-84DE-660B157D823D} - \
O2 - BHO: (no name) - {86AC5E43-2358-4E52-A1C1-BAFFF29838F6} - \
O2 - BHO: (no name) - {8981D2EE-EDEC-4104-9872-F67D7FA7335F} - \
O2 - BHO: (no name) - {89EC64B9-F2FE-4787-8E49-8EE1C864955B} - \
O2 - BHO: (no name) - {8B67F037-2714-4DBA-840F-A5335BE1961C} - \
O2 - BHO: (no name) - {8B87A6E3-CB5F-4531-BC39-E36890A69258} - \
O2 - BHO: (no name) - {8C531162-7D0E-4E43-B243-9CE04F41EE95} - \
O2 - BHO: (no name) - {8E0F4792-C893-426C-B1DA-02A9FFB3A82F} - \
O2 - BHO: (no name) - {8F5F9E31-0BF6-4595-8A3C-DF60A5B44125} - \
O2 - BHO: (no name) - {90320B45-D9CD-44C8-A2ED-F459196144B7} - \
O2 - BHO: (no name) - {969C004F-4D12-44E1-B95C-E7A0A6FFE1A0} - \
O2 - BHO: (no name) - {96AC4BF5-DF95-41EB-898B-63D95215F2AC} - \
O2 - BHO: (no name) - {9B457F5D-7F52-43BF-90E9-652560F63A53} - \
O2 - BHO: (no name) - {9CB6B77C-2D48-43E8-9AF8-F6BEE16E9B30} - \
O2 - BHO: (no name) - {9E4DE732-0227-454F-B7A4-F16E52BAA28E} - \
O2 - BHO: (no name) - {9EDCFEC2-94D2-4C9E-A722-C91B1D579033} - \
O2 - BHO: (no name) - {9EEC10AA-1203-4501-A6D2-2EB0297933F6} - \
O2 - BHO: (no name) - {9FC7346C-7B49-45B0-A450-A68656749B32} - \
O2 - BHO: (no name) - {A16CAD5D-5E37-46F9-BCB7-4D6EAE768078} - \
O2 - BHO: (no name) - {A27227DE-3D99-4381-8C6A-F0A5F04749F5} - \
O2 - BHO: (no name) - {A2BAE230-EA4D-4B73-9A54-402D9DAA8BE4} - \
O2 - BHO: (no name) - {A36371E7-CB65-4B9B-B075-1E5052972CAF} - \
O2 - BHO: (no name) - {A590013C-9E95-4B46-8EFA-8688B6FC62AF} - \
O2 - BHO: (no name) - {A7E15C49-FB38-4EE0-B9EC-3E4C1BE82992} - \
O2 - BHO: (no name) - {A85094DB-5FE9-438D-8678-94F711AD9999} - \
O2 - BHO: (no name) - {ABF22855-2AB5-4659-8179-77CB69D49423} - \
O2 - BHO: (no name) - {AC58BBD1-4525-45C0-AFE9-A6F492CA21F5} - \
O2 - BHO: (no name) - {ADB653B1-A760-4D1E-B8A2-47CD7ACF2552} - \
O2 - BHO: (no name) - {AE6212A4-78D2-4D08-BD46-E91A5ED35340} - \
O2 - BHO: (no name) - {AF492940-23DF-472A-B762-C885025603C3} - \
O2 - BHO: (no name) - {AFAAA73A-28BB-4446-B0E3-F57E52B3D5C0} - \
O2 - BHO: (no name) - {B1999188-571D-4368-BD8D-C5E520DBFFF5} - \
O2 - BHO: (no name) - {B1C7DDE3-AAC5-4EF4-A56F-88AA4390861F} - \
O2 - BHO: (no name) - {B2143F00-851F-448B-9C8A-160E58CBB0AB} - \
O2 - BHO: (no name) - {B3A864EA-E40B-4D0B-8BC9-1E9D059BE8D1} - \
O2 - BHO: (no name) - {B417B5E2-1C05-48EF-8A76-15683BC993D4} - \
O2 - BHO: (no name) - {B4C8AC83-2102-4C79-83B8-05D31D1FD1F3} - \
O2 - BHO: (no name) - {B4E1AA31-5F19-4B3F-A0CC-74F891EC3A4B} - \
O2 - BHO: (no name) - {B9A340B7-864C-45A1-9285-AEAEB2FEBC02} - \
O2 - BHO: (no name) - {BF80866F-EA9B-4DFB-BF87-6CA5D0E24C2C} - \
O2 - BHO: (no name) - {C0DFDDB7-96F3-458E-8FBB-3BB14E31075C} - \
O2 - BHO: (no name) - {C15ADF02-6FAC-46AE-AD3E-6AA6289830F8} - \
O2 - BHO: (no name) - {C215B6E1-B860-4141-A497-E2EF8DAE08C1} - \
O2 - BHO: (no name) - {C448D627-A3A1-4788-AE3C-C808191BC749} - \
O2 - BHO: (no name) - {C6A55D31-3778-4EFA-9C1C-071B8001D9C1} - \
O2 - BHO: (no name) - {C97C0F8C-72DB-4120-95B3-2A14DAEFAC30} - \
O2 - BHO: (no name) - {C98C8DE5-97AE-489D-B88D-500F58615789} - \
O2 - BHO: (no name) - {C9C46745-B619-450F-8E48-994BD6B73B17} - \
O2 - BHO: (no name) - {CA441479-453D-43D9-B7D5-E11374E3D555} - \
O2 - BHO: (no name) - {CF0C6091-166D-48F1-A7C2-09089F75CE36} - \
O2 - BHO: (no name) - {CF11BF08-7D8C-48F8-9AEE-B347D867B3CD} - \
O2 - BHO: (no name) - {CF1EE0CF-9AF8-46C1-9815-DF68BD278A8C} - \
O2 - BHO: (no name) - {D17305AA-EAF6-4B1B-BB5A-E36E9FAEBBF1} - \
O2 - BHO: (no name) - {D3E94D5F-2975-49E1-BD27-685DDF09BA19} - \
O2 - BHO: (no name) - {D50BA98A-6AD4-4A19-A2B3-75741064C886} - \
O2 - BHO: (no name) - {D5771924-7036-42B0-9324-228D6D30DB45} - \
O2 - BHO: (no name) - {D587388C-5780-4880-9B0B-6DA0AB9676E0} - \
O2 - BHO: (no name) - {D5DE8CDD-3DC4-4005-B5E7-8AF2EFD59127} - \
O2 - BHO: (no name) - {D68E1246-AD92-465B-9100-5845B4F0B582} - \
O2 - BHO: (no name) - {D714B290-DB56-40CE-8276-04A507AFF830} - \
O2 - BHO: (no name) - {D7F8A4E7-9534-4639-8CFB-BB1F3E418A9C} - \
O2 - BHO: (no name) - {D857C8A0-7555-4EDA-86EC-DB5AF689A551} - \
O2 - BHO: (no name) - {D90864DA-E06F-43F9-9E96-47EED34406FB} - \
O2 - BHO: (no name) - {D97956D4-4F16-415D-A1A0-FA581D7EA513} - \
O2 - BHO: (no name) - {DAC48B05-E9F8-4461-A6BE-6B7A90B883A6} - \
O2 - BHO: (no name) - {DADA06CD-685B-4187-BD1F-CF76A07F2761} - \
O2 - BHO: (no name) - {DCC6AAF3-3CB8-45C4-A9A0-0DBA3B085DFC} - \
O2 - BHO: (no name) - {DEB00362-1E04-447D-8390-CE01C8179AEC} - \
O2 - BHO: (no name) - {E1A35D6A-BB9C-42E2-85D3-D40CA0763267} - \
O2 - BHO: (no name) - {E417759D-7799-4803-987A-450500A15CFE} - \
O2 - BHO: (no name) - {E71A6E77-A2DC-4DCD-97D3-50915490C150} - \
O2 - BHO: (no name) - {E90F1610-F9E9-4C16-9D9F-874C27AD6B0E} - \
O2 - BHO: (no name) - {E92F5196-8E28-4A4A-8FB7-4D248FFEABE0} - \
O2 - BHO: (no name) - {EA8A5765-B3BB-44C7-8E59-8F54702A39EF} - \
O2 - BHO: (no name) - {EC424831-628C-4B7B-8127-F34D7CA6547D} - \
O2 - BHO: (no name) - {ECAADA80-B271-47F8-8068-C5B6F00A9640} - \
O2 - BHO: (no name) - {ED20CF9F-9A7A-49F4-8BFC-EDF7BBDBB76B} - \
O2 - BHO: (no name) - {EF362487-7D11-4AAF-8AD9-BA98E8900C64} - \
O2 - BHO: (no name) - {F2A87735-11A6-4354-B725-A8E107954773} - \
O2 - BHO: (no name) - {F3CA6BB1-B06C-4C88-97EF-77ED9336A2B6} - \
O2 - BHO: (no name) - {F686D283-9A03-400A-9291-B4F7486CB9D4} - \
O2 - BHO: (no name) - {F776AEF5-AEB7-45B7-93F0-0024EE4A7AF2} - \
O2 - BHO: (no name) - {F81E40EB-504D-4377-9A2E-2D89AFACB733} - \
O2 - BHO: (no name) - {F8333A2E-FE81-43AA-83C0-E67300D2252E} - \
O2 - BHO: (no name) - {FCF6880F-C2A1-46B2-A825-22E0D2F0C163} - \

O3 - Toolbar: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) 

O9 - Extra button: (no name) - {AEF9B8DB-0DEF-4c0b-8209-661C9E82B8C3} - C:\Program Files\WinSysClean 2008 Trial\UDManager\UDManager.exe (file missing)
O9 - Extra button: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost (file missing)
O9 - Extra 'Tools' menuitem: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_2\Ghost (file missing) 

O16 - DPF: {733A5CA7-C0E1-41D7-9506-F4AA354B4500} (ActiveFormX Control) - file:///C:/Program%20Files/Intelore/AnimatedDesktop/advThemes/WorkDir/83490468/F iles/ActiveFormProj1.inf




Poste alors le nouveau rapport stp.


Bon courage.
0
Réponse 19 / 108
Prate Messages postés 711 Date d'inscription mardi 15 janvier 2008 Statut Membre Dernière intervention 7 septembre 2016 66
31 août 2008 à 04:41
Quand je glisse le fichier CFScript.txt dans Combofix.exe sa demarre normalement, c'est a dire que sa ne me demande pas de tape 1 etc...
0
Réponse 20 / 108
Utilisateur anonyme
31 août 2008 à 04:42
PS : en fait le deuxième rapport combofix que tu m'as envoyé est le même que le premier : C'est le combofix(1).txt qu'il m'aurait fallut...

Là ce sera le combofix(2).txt

Poste les deux dernier si possible.

A+
0

Discussions similaires

Live tiktok
Dialmari -
PouletAffectueux12 -

10 réponses