Sujet Précédent Sujet Suivant

Virus win32trojan-gen

evitadas Messages postés 12 Statut Membre -  
sKe69 Messages postés 21955 Statut Contributeur sécurité -
Bonjour,mon antivirus avast a detecté un virus et je n'arrive pas a le supprimer ni a le mettre en quarantaine (action recommandée) s'il vous plait quelqu un de patient peut il m'aider???( je suis archi nulle en informatique....)
merci d'avance !
evita
A voir également:

43 réponses

Précédent
Réponse 21 / 43
evitadas
 
et voila la deuxieme !

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-03-06 7557120]
"Apoint"=C:\Program Files\Apoint\Apoint.exe [2004-11-17 118784]
"ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
"Mouse Suite 98 Daemon"=C:\WINDOWS\system32\ICO.EXE [2002-03-14 45056]
"VAIOCameraUtility"=C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe [2005-12-27 69632]
"SonyPowerCfg"=C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2005-12-13 217088]
"ISBMgr.exe"=C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2004-02-20 32768]
"Switcher.exe"=C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [2006-02-14 176128]
"VAIO Update 2"=C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe [2005-10-11 151552]
"PDService.exe"=C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe [2004-07-06 40960]
"Acrobat Assistant 7.0"=C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2005-03-03 483328]
"SsAAD.exe"=C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe [2006-01-07 81920]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2006-10-01 169472]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-05-16 79224]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2006-11-24 487424]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-09-08 289576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"=C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-06-06 68856]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2008-06-03 21718312]
"eMuleAutoStart"=C:\Program Files\eMule\emule.exe [2007-05-13 5308416]
"AdobeUpdater"=C:\Program Files\Fichiers communs\Adobe\Updater\AdobeUpdater.exe [2006-10-05 976472]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]
C:\WINDOWS\system32\VESWinlogon.dll [2005-05-20 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe"="C:\Program Files\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe:*:Disabled:Adobe Photoshop Elements Media Server"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\Canon\DV Messenger\DV Messenger.exe"="C:\Program Files\Canon\DV Messenger\DV Messenger.exe:*:Disabled:DV Messenger"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe:*:Enabled:Kaspersky Anti-Virus"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\adslTV\adsltv.exe"="C:\Program Files\adslTV\adsltv.exe:*:Enabled:adsltv"
"C:\Program Files\adslTV\vlc.exe"="C:\Program Files\adslTV\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Azureus\Azureus.exe"="C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Documents and Settings\evita\Local Settings\Temp\WZSE0.TMP\SymNRT.exe"="C:\Documents and Settings\evita\Local Settings\Temp\WZSE0.TMP\SymNRT.exe:*:Enabled:Norton Removal Tool"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\I]
shell\AutoRun\command - I:\LaunchU3.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1ecfb8e0-53d9-11db-afae-0002c7ea1358}]
shell\AutoRun\command - H:\LaunchU3.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{771a2083-ef5e-11dc-b293-0013a90a9137}]
shell\AutoRun\command - G:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8a66d9f4-1e71-11dc-b10e-0002c7ea1358}]
shell\AutoRun\command - H:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{919c4763-9f6c-11db-b03d-0002c7ea1358}]
shell\Auto\command - AdobeR.exe e
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e

======List of files/folders created in the last 2 months======

2008-10-28 04:27:20 ----D---- C:\rsit
2008-10-27 21:29:49 ----D---- C:\Documents and Settings\evita\Application Data\Malwarebytes
2008-10-27 21:29:41 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-10-27 21:29:41 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-10-27 16:49:50 ----D---- C:\_OTMoveIt
2008-10-26 23:31:29 ----A---- C:\TB.txt
2008-10-26 23:30:30 ----D---- C:\ToolBar SD
2008-10-26 23:13:14 ----D---- C:\Documents and Settings\All Users\Application Data\NortonInstaller
2008-10-26 20:33:05 ----D---- C:\Program Files\Trend Micro
2008-09-28 23:50:55 ----A---- C:\WINDOWS\system32\cc3270mt.dll
2008-09-27 22:26:29 ----A---- C:\WINDOWS\system32\mpg4c32.dll
2008-09-27 22:26:29 ----A---- C:\WINDOWS\system32\mcdvd_32.dll
2008-09-27 21:59:25 ----D---- C:\Documents and Settings\evita\Application Data\AVS4YOU
2008-09-27 21:59:17 ----D---- C:\Documents and Settings\All Users\Application Data\AVS4YOU
2008-09-27 21:58:21 ----D---- C:\Program Files\Fichiers communs\AVSMedia
2008-09-27 21:58:08 ----A---- C:\WINDOWS\system32\mfc70.dll
2008-09-27 21:58:08 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2008-09-27 21:58:07 ----D---- C:\Program Files\AVS4YOU
2008-09-21 15:39:04 ----A---- C:\WINDOWS\system32\MSVCRTD.DLL
2008-09-21 15:39:04 ----A---- C:\WINDOWS\system32\MSVCP60D.DLL
2008-09-21 15:39:01 ----A---- C:\WINDOWS\system32\WMAFile.dll
2008-09-21 15:39:01 ----A---- C:\WINDOWS\system32\AudPlayer.dll
2008-09-21 15:39:01 ----A---- C:\WINDOWS\system32\AudioVisu.dll
2008-09-21 15:39:01 ----A---- C:\WINDOWS\system32\AudioRecord.dll
2008-09-21 15:39:01 ----A---- C:\WINDOWS\system32\AudioInfos.dll
2008-09-21 15:39:00 ----A---- C:\WINDOWS\system32\TABCTFR.DLL
2008-09-21 15:39:00 ----A---- C:\WINDOWS\system32\AudFile.dll
2008-09-21 15:39:00 ----A---- C:\WINDOWS\system32\AudDisplay.dll
2008-09-21 15:39:00 ----A---- C:\WINDOWS\system32\AudDesign.dll
2008-09-21 15:38:59 ----A---- C:\WINDOWS\system32\MSCMCFR.DLL
2008-09-21 15:38:59 ----A---- C:\WINDOWS\system32\lame_enc.dll
2008-09-21 14:36:06 ----D---- C:\Program Files\Need4 Video Converter 5.7
2008-09-11 18:30:32 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2008-09-11 18:29:58 ----D---- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-09-11 18:29:37 ----D---- C:\Program Files\Bonjour
2008-09-11 18:28:32 ----D---- C:\Program Files\QuickTime
2008-09-11 18:26:58 ----D---- C:\Program Files\Apple Software Update
2008-09-11 18:26:28 ----A---- C:\WINDOWS\system32\usbaaplrc.dll
2008-09-11 18:26:04 ----D---- C:\Program Files\Fichiers communs\Apple
2008-09-11 18:26:03 ----D---- C:\Documents and Settings\All Users\Application Data\Apple
2008-08-29 09:18:58 ----A---- C:\WINDOWS\system32\dns-sd.exe
2008-08-29 08:53:50 ----A---- C:\WINDOWS\system32\dnssd.dll

======List of files/folders modified in the last 2 months======

2008-10-28 04:27:31 ----D---- C:\WINDOWS\Prefetch
2008-10-28 04:24:36 ----D---- C:\WINDOWS\system32\LogFiles
2008-10-28 04:24:36 ----D---- C:\WINDOWS
2008-10-28 04:22:46 ----RD---- C:\Program Files
2008-10-28 01:49:22 ----D---- C:\WINDOWS\Temp
2008-10-28 01:47:49 ----D---- C:\Documents and Settings\evita\Application Data\skypePM
2008-10-28 01:47:03 ----HD---- C:\WINDOWS\inf
2008-10-28 01:46:55 ----A---- C:\WINDOWS\ModemLog_HDAUDIO SoftV92 Data Fax Modem with SmartCP.txt
2008-10-28 01:46:52 ----D---- C:\Program Files\eMule
2008-10-28 01:46:29 ----D---- C:\WINDOWS\Registration
2008-10-27 21:39:19 ----N---- C:\WINDOWS\SchedLgU.Txt
2008-10-27 21:30:23 ----D---- C:\WINDOWS\system32\drivers
2008-10-27 21:21:45 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-27 21:21:06 ----D---- C:\WINDOWS\Debug
2008-10-27 16:58:17 ----D---- C:\Program Files\Fichiers communs
2008-10-26 23:17:46 ----D---- C:\Program Files\Symantec
2008-10-26 23:15:46 ----D---- C:\Program Files\Fichiers communs\Symantec Shared
2008-10-26 20:00:42 ----A---- C:\WINDOWS\NeroDigital.ini
2008-10-26 05:08:46 ----D---- C:\WINDOWS\system32
2008-10-26 05:08:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-10-25 15:30:39 ----D---- C:\WINDOWS\system32\CatRoot2
2008-10-25 14:24:23 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-10-25 14:22:36 ----HD---- C:\WINDOWS\$hf_mig$
2008-10-23 03:27:12 ----D---- C:\Program Files\adslTV
2008-10-20 05:43:30 ----D---- C:\Documents and Settings\evita\Application Data\uTorrent
2008-10-17 02:02:23 ----D---- C:\Program Files\Internet Explorer
2008-10-15 17:59:28 ----A---- C:\WINDOWS\system32\netapi32.dll
2008-10-12 20:49:45 ----D---- C:\Documents and Settings\evita\Application Data\U3
2008-09-27 21:58:21 ----SHD---- C:\WINDOWS\Installer
2008-09-27 21:58:21 ----D---- C:\Config.Msi
2008-09-27 21:58:20 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2008-09-27 21:58:19 ----D---- C:\WINDOWS\WinSxS
2008-09-11 19:08:31 ----D---- C:\Documents and Settings\evita\Application Data\Apple Computer
2008-09-11 18:30:32 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-09-11 18:30:31 ----D---- C:\Program Files\iTunes
2008-09-11 18:30:01 ----D---- C:\Program Files\iPod
2008-09-11 18:28:28 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-09-11 18:27:02 ----SD---- C:\WINDOWS\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2008-05-16 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2008-05-16 78416]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2008-05-16 42912]
R1 DMICall;Sony DMI Call service; C:\WINDOWS\system32\DRIVERS\DMICall.sys [2000-12-05 3952]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-27 40320]
R1 PrivateDisk;PrivateDisk; C:\WINDOWS\System32\Drivers\PrivateDiskM.sys [2004-07-06 45627]
R1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.9.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2006-03-20 21275]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-05-16 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2008-05-16 94416]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544]
R2 s24trans;Transport RLAN; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2005-11-28 13568]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2004-11-22 108767]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-10 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2008-05-16 23152]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
R3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2005-06-13 162816]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-08-12 137728]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-10-18 998656]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2005-10-18 202112]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-10 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-03-06 3644160]
R3 SNC;Sony Notebook Control Device; C:\WINDOWS\System32\Drivers\SonyNC.sys [2000-11-09 48896]
R3 SonyImgF;Sony Image Conversion Filter Driver; C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2005-12-27 29184]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-02-13 1106888]
R3 ti21sony;ti21sony; C:\WINDOWS\system32\drivers\ti21sony.sys [2006-02-21 226304]
R3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2005-11-24 47104]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 usbvm321;Sony Visual Communication Camera VGP-VCC1; C:\WINDOWS\System32\Drivers\usbvm321.sys [2005-12-29 234496]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-10-18 721280]
S3 61883;Pilote d'unité 61883; C:\WINDOWS\system32\DRIVERS\61883.sys [2004-08-03 48128]
S3 Avc;Périphérique AVC; C:\WINDOWS\system32\DRIVERS\avc.sys [2004-08-03 38912]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2005-07-06 176128]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-08-03 51328]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 se44bus;Sony Ericsson Device 068 driver (WDM); C:\WINDOWS\system32\DRIVERS\se44bus.sys [2006-11-30 61536]
S3 se44mdfl;Sony Ericsson Device 068 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se44mdfl.sys [2006-11-30 9360]
S3 se44mdm;Sony Ericsson Device 068 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se44mdm.sys [2006-11-30 97088]
S3 se44mgmt;Sony Ericsson Device 068 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se44mgmt.sys [2006-11-30 88624]
S3 se44nd5;Sony Ericsson Device 068 USB Ethernet Emulation SEMC44 (NDIS); C:\WINDOWS\system32\DRIVERS\se44nd5.sys [2006-11-30 18704]
S3 se44obex;Sony Ericsson Device 068 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se44obex.sys [2006-11-30 86432]
S3 se44unic;Sony Ericsson Device 068 USB Ethernet Emulation SEMC44 (WDM); C:\WINDOWS\system32\DRIVERS\se44unic.sys [2006-11-30 90800]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 toshidpt;TOSHIBA Bluetooth HID port driver; C:\WINDOWS\system32\drivers\Toshidpt.sys [2005-07-11 3712]
S3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2005-11-22 108800]
S3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2005-09-15 36480]
S3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2005-12-01 62848]
S3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:\WINDOWS\system32\drivers\TosRfSnd.sys [2005-11-11 52864]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2005-11-15 36736]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2008-09-05 36864]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 usbsermptxp;Motorola USB Modem Driver for MPT XP; C:\WINDOWS\system32\DRIVERS\usbsermptxp.sys [2006-12-26 25600]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 USBVCD;Canon USB Video; C:\WINDOWS\system32\drivers\USBVCD.sys [2004-08-04 57600]
S3 VCIDRV;Canon USB Video Control; C:\WINDOWS\system32\drivers\VCIDrv.sys [2004-08-04 6528]
S3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2005-12-05 1428096]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 Pdctfr;Pdctfr; C:\WINDOWS\system32\drivers\Pdctfr.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeActiveFileMonitor4.0;Adobe Active File Monitor V4; C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe [2005-09-09 102400]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-05 116040]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-05-16 17272]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-05-16 144760]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
R2 ehSched;Service de planification Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2005-11-28 114753]
R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB; C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe [2002-12-17 7520337]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-03-06 143428]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2005-11-28 217164]
R2 S24EventMonitor;Intel(R) PROSet/Wireless Service; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2005-11-28 540745]
R2 VAIO Event Service;VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [2005-05-20 153600]
R2 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2005-11-28 167936]
R2 VzFw;VAIO Entertainment File Import Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [2005-11-28 135168]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-05-16 247160]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-05-16 349560]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-09-08 536872]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
R3 Vcsw;VAIO Entertainment UPnP Client Adapter; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [2005-11-28 270336]
S2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe []
S2 VCI;VAIO Cooporated Initialisation; C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe [2005-01-04 398336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2006-10-24 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-25 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 Image Converter video recording monitor for VAIO Entertainment;Image Converter video recording monitor for VAIO Entertainment; C:\Program Files\Sony\Image Converter 2\IcVzMon.exe [2005-07-14 32768]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2004-08-10 14336]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe [2005-11-24 53337]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe [2005-11-24 53337]
S3 SPTISRV;Sony SPTI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe [2005-11-24 69718]
S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB; C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE [2002-12-17 311872]
S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe [2006-01-06 69632]
S3 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [2005-11-25 73728]
S3 VAIOMediaPlatform-IntegratedServer-AppServer;VAIO Media Integrated Server; C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe [2006-01-16 2084864]
S3 VAIOMediaPlatform-IntegratedServer-HTTP;VAIO Media Integrated Server (HTTP); C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [2005-10-11 57344]
S3 VAIOMediaPlatform-IntegratedServer-UPnP;VAIO Media Integrated Server (UPnP); C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [2005-10-11 770048]
S3 VAIOMediaPlatform-Mobile-Gateway;VAIO Media Gateway Server; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe [2005-12-21 155648]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-10 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

-----------------EOF-----------------
0
Réponse 22 / 43
evitadas
 
et enfin voici le "info.txt" !
info.txt logfile of random's system information tool 1.04 2008-10-28 04:27:35

======Uninstall list======

-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNNMP.exe /UNINSTALL
-->MsiExec.exe /I{3B55590C-8A9B-4BD6-B489-744B63026A2A}
-->MsiExec.exe /I{C98E5F1B-5C2B-4FD1-BDF9-F3779DCAAA16}
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD836E74-7923-4174-A055-F97CD0F3BB46}\setup.exe" -l0x40c -removeonly
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"C:\Program Files\uTorrent\uninstall.exe"
ABBYY FineReader 6.0 Sprint-->MsiExec.exe /I{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
Adobe Acrobat 7.0 Elements - Français-->msiexec /I {E5E6E687-1036-0000-0000-000000000002}
Adobe Bridge 1.0-->MsiExec.exe /I{B74D4E10-6884-0000-0000-000000000103}
Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5102}
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Help Center 2.0-->MsiExec.exe /I{8FFC924C-ED06-44CB-8867-3CA778ECE903}
Adobe InDesign CS2-->msiexec /I{7F4C8163-F259-49A0-A018-2857A90578BC}
Adobe Photoshop CS2-->msiexec /I {236BB7C4-4419-42FD-040C-1E257A25E34D}
Adobe Photoshop Elements 4.0-->msiexec /I {EBB7C1C1-D439-4D9B-9FDC-954C10F266B0}
Adobe Premiere Elements 2.0-->msiexec /I {11C98E1A-EC91-4B38-B44C-C562292D8453}
Adobe Reader 7.0 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70000000000}
Adobe Reader 7.0.7 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70500000002}
Adobe Stock Photos 1.0-->MsiExec.exe /I{EE0D5DCD-2B97-4473-98DF-E93C0BD92F7A}
adsl TV-->C:\Program Files\adslTV\Uninstal.exe
Apple Mobile Device Support-->MsiExec.exe /I{C7C895CA-331B-4D7D-A0FB-D3BC637949F9}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Avanquest update-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\setup.exe" -l0x40c -removeonly
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Azureus Vuze-->C:\Program Files\Azureus\uninstall.exe
Barre d'outils MSN-->C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\mtbs.exe c
Bluetooth Stack for Windows by Toshiba-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
Canon Camera Support Core Library-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{26BDE7D8-93F0-4A07-AD47-1707DB417941} /l1036
Canon Camera Window for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{B34BE30D-A759-4EC2-B58F-19FE2DEBF651}
Canon Internet Library for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{2F81FBFC-9A37-431F-9050-14B55485DF5A}
Canon MovieEdit Task for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{DE286975-ACF1-45B8-9EF7-34E162B2C817}
Canon PhotoRecord-->MsiExec.exe /X{0878E100-C0BB-41E8-B4C6-C486B61FDA7B}
Canon RAW Image Task for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{16976C6C-F8D5-4317-9DE8-1F6352B66725}
Canon RemoteCapture Task for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{821DC151-4691-4E26-AE7E-522921D0FD54}
Canon Utilities PhotoStitch 3.1-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{EF4C7EB0-D71B-43A3-9552-8053DE4B0401}
Canon Utilities ZoomBrowser EX-->MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Click to DVD 2.0.03 Menu Data-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E407618-D9CD-4F39-9490-9ED45294073D}\setup.exe" -l0x40c -removeonly
Click to DVD 2.5.20-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E809063C-51A3-4269-8984-D1EB742F2151}\setup.exe" -l0x40c -removeonly
Dealio Toolbar 3.4-->MsiExec.exe /X{6105648C-0C3C-481D-8C11-1F4952D6FB53}
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Pro Codec Adware-->C:\Program Files\DivX\DivXProAdwareCodecUninstall.exe /CODEC
DSD Direct-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C27BF761-C499-488D-A964-A3718BC6EC3E}\setup.exe" -l0x40c -removeonly
DSD Playback Plug-in 1.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C89EB8CD-675F-44F4-9729-4C9A8FAC2D4F}\setup.exe" -l0x40c
DV Network Software-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{06A96BA5-577B-406D-9327-B59080BE4F14} /l1036
DVgate Plus-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{685BCC47-B8EC-45EC-BBCE-77DF2451502C}\setup.exe" -l0x40c
eMule-->"C:\Program Files\eMule\Uninstall.exe"
EPSON Attach To Email-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67EDD823-135A-4D59-87BD-950616D6E857}\SETUP.EXE" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BC69DDB8-4840-4D9B-BB31-0D4DB2BA1312}\SETUP.EXE" -l0x40c UNINST
EPSON File Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E86BC406-944E-41F6-ADE6-2C136734C96B}\Setup.exe" -l0x40c UNINST
EPSON Scan Assistant-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\Setup.exe" -l0x40c -u
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
EPSON Web-To-Page-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}\SETUP.EXE" -l0x40c -anything
EPSON-Drucker-Software-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
ESDX5000_CX4900 Guide d’utilisation-->C:\Program Files\EPSON\TPMANUAL\ESDX5000_CX4900\USE_G\DOCUNINS.EXE
Google AFE-->regsvr32 /u /s "C:\PROGRA~1\GOOGLE~1\GoogleAFE.dll"
Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar3.dll"
HDAUDIO SoftV92 Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_20030003\HXFSETUP.EXE -U -ISnyHDANk.inf
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Image Converter 2 Plus-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63B8FB69-A1B6-425D-B67D-5257B7A1F663}\setup.exe" -l0x40c /CONPANE
Inscription en ligne VAIO (Français)-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{668B1BD6-4593-4959-970E-249AFFE6F35C} /l1036
Intel(R) PRO Network Connections Drivers-->Prounstl.exe
InterVideo WinDVD for VAIO-->"C:\Program Files\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL
iPod for Windows 2005-09-23-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{D4936AAF-FFD0-44A1-A7EA-A2DB41CEB5BC} /l1036
iTunes-->MsiExec.exe /I{EA418519-2160-43A0-AABD-6608DDD8D87F}
J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
K-Lite Codec Pack 2.77 Full-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
LAN Setting Utility-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5958CAC6-373E-402F-84FE-0A699AA920B9}\setup.exe" -l0x40c
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Logiciel Intel(R) PROSet/Wireless-->C:\WINDOWS\Installer\iProInst.exe
Macromedia Flash Player 8-->MsiExec.exe /X{6815FCDD-401D-481E-BA88-31B4754C2B46}
Macromedia Flash Player 8-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
mCore-->MsiExec.exe /I{E81667C6-2856-46D6-ABEA-6A2F42166779}
mDriver-->MsiExec.exe /I{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}
Memory Stick Formatter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{27337663-2619-11D4-99DC-0000F49094C7}\Setup.exe" -l0x40c /UNINSTALL
Micro Application - PrintPratic 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B056DB05-BF39-49A0-AAB8-C8FA49D9660C}\Setup.exe" -l0x40c
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft .NET Framework 3.0-->C:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Office Standard Edition 2003-->MsiExec.exe /I{9112040C-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server Desktop Engine (VAIO_VEDB)-->MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Works-->MsiExec.exe /I{A059DE09-1B49-4450-B340-7AE097EC3F04}
mMHouse-->MsiExec.exe /I{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}
Motorola Phone Tools-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAD8CA9C-77C0-4663-B00B-A8D3B13C341B}\setup.exe" -l0x40c -removeonly
Mozilla Firefox (1.0)-->C:\WINDOWS\UninstallFirefox.exe /ua "1.0 (fr-FR)"
mPfMgr-->MsiExec.exe /I{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}
mProSafe-->MsiExec.exe /I{23FB368F-1399-4EAC-817C-4B83ECBE3D83}
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
MUSK Codec Pack v5-->"C:\Program Files\MUSK Codec Pack v5\unins000.exe"
mWlsSafe-->MsiExec.exe /I{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}
mXML-->MsiExec.exe /I{9CC89556-3578-48DD-8408-04E66EBEF401}
My Club VAIO MCE (French) 1.0.1-->"C:\Program Files\Sony\MyClubVAIOMCE\unins000.exe"
Need4 Video Converter 5.7-->C:\Program Files\Need4 Video Converter 5.7\uninst.exe
Nero Suite-->C:\Program Files\Fichiers communs\Ahead\Uninstall\Setup.exe /uninstall
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
Office 2003 Trial Assistant-->MsiExec.exe /I{47D2103B-FD51-4017-9C20-DD408B17D726}
OpenMG Limited Patch 4.4-06-13-19-01-->C:\Program Files\Fichiers communs\Sony Shared\OpenMG\HotFixes\HotFix4.4-06-13-19-01\HotFixSetup\setup.exe /u
OpenMG Secure Module 4.4.00-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{CFB17307-B244-4EAD-AE8E-CDAF440477C2} UNINSTALL
Outil VAIO Media Registration 5.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AF9A04EB-7D8E-41DE-9EDE-4AB9BB2B71B6}\setup.exe" -l0x40c UNINSTALL -removeonly
Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe"
PIF DESIGNER-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B90450DF-E781-46FD-B1F1-0C86DA40E443}\SETUP.EXE" -l0x40c anything
PokerStars-->"C:\Program Files\PokerStars\PokerStarsUninstall.exe" /u:PokerStars
QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB}
Roxio DigitalMedia Audio-->MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382}
Roxio DigitalMedia Copy-->MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629}
Roxio DigitalMedia Data-->MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205}
SafeGuard® PrivateDisk 1.00.6 - Try and Buy Version-->MsiExec.exe /X{48E9DE14-39D1-4974-91A6-D4E1836F648D}
Search Settings 1.2-->MsiExec.exe /X{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}
Setting Utility Series-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{59452470-A902-477F-9338-9B88101681BD}\setup.exe" -l0x40c UNINSTALL
SigmaTel Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x40c -remove -removeonly
Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
SonicStage 3.4-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A0EB195B-5876-48E6-879D-33D4B2102610}\setup.exe" -l0x40c UNINSTALL -removeonly
SonicStage Mastering Studio 2.2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BF3B304B-8A18-452D-A19F-6012CA8418D7}\setup.exe" -l0x40c
SonicStage Mastering Studio Audio Filter Custom Preset-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{013E1BA8-C815-4E27-BCB9-D6B1B2E24094}\setup.exe" -l0x40c
SonicStage Mastering Studio Audio Filter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB467B85-4F52-48C2-AEED-0673D00417B0}\setup.exe" -l0x40c
SonicStage Mastering Studio Plugins-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE7EB179-5AA2-4B28-AC92-5CBAAF82BA7F}\setup.exe" -l0x40c
Sony Ericsson PC Suite-->MsiExec.exe /I{FC906D5C-91F9-4DA4-A765-6DCBB669F317}
Sony MP4 Shared Library-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}\setup.exe" -l0x40c -removeonly
Sony USB Mouse-->Pmuninst.exe MouseSuite98
Sony Utilities DLL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EF3D45BB-2260-4008-88EA-492E7744A9DF}\setup.exe" -l0x9
Sony Video Shared Library-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BE56FEF0-1A0F-4719-B3AD-34B5087AFA6D}\setup.exe" -l0x40c -removeonly
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
VAIO Camera Utility-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1417F599-1DBD-4499-9375-B2813E9F890C}\setup.exe" -l0x40c
VAIO Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FC37C108-821D-4EDE-8F40-D5B497586805}\setup.exe" -l0x40c
VAIO Edit Components 6.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7C03E84-AF46-42F4-809D-D4127D9086D0}\setup.exe" -l0x40c -removeonly
VAIO Entertainment Platform-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}\setup.exe" -l0x40c -removeonly
VAIO Event Service-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0D85ADD-DD61-4B43-87A0-6DA52A211A8B}\setup.exe" -l0x40c
VAIO Hardware Diagnostics-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A947C2B3-7445-42C4-9063-EE704CACCB22}\setup.exe" -l0x40c
VAIO Media 5.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{560F6B2E-F0DF-44E5-8190-A4A161F0E205}\setup.exe" -l0x40c UNINSTALL -removeonly
VAIO Media AC3 Decoder 1.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2063C2E8-3812-4BBD-9998-6610F80C1DD4}\Setup.exe" -l0x40c UNINSTALL
VAIO Media Integrated Server 5.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{785EB1D4-ECEC-4195-99B4-73C47E187721}\setup.exe" -l0x40c UNINSTALL -removeonly
VAIO Media Redistribution 5.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5855C127-1F20-404D-B7FB-1FD84D7EAB5E}\setup.exe" -l0x40c UNINSTALL -removeonly
VAIO Original Screen Saver VAIO Cozy Screen SD Wide Contents-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB714F13-10C9-48DB-91C9-DDBCCCBF9370}\setup.exe" -l0x40c
VAIO Original Screen Saver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1BEF9285-5530-426B-A5F1-5836B95C7EB1}\setup.exe" -l0x40c
VAIO Power Management-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E319E96-ED8E-4B01-9775-C521A1869A25}\setup.exe" -l0x40c UNINSTALL
VAIO Sea Wallpaper-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{00F8608F-BA6A-4B32-843A-1A568ACD1198}\setup.exe" -l0x40c
VAIO Starfish Wallpaper-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ABBD2A2E-2424-4078-966F-F319A88D5F21}\setup.exe" -l0x40c
VAIO Update 2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48820099-ED7D-424B-890C-9A82EF00656D}\Setup.exe" -l0x40c
Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Live Sign-in Assistant-->MsiExec.exe /I{22B3CC30-77B8-419C-AA4B-F571FDF5D66D}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
WinSCP 4.0.7-->"C:\Program Files\WinSCP\unins000.exe"
Wireless LAN Starter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{61D6E4FB-1A62-4EB1-BE56-929B00C155CF}\setup.exe" -l0x40c
Wireless Switch Setting Utility-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5}\Setup.exe" -l0x40c

======Hosts File======

127.0.0.1 007guard.com
127.0.0.1 www.007guard.com
127.0.0.1 008i.com
127.0.0.1 008k.com
127.0.0.1 www.008k.com
127.0.0.1 00hq.com
127.0.0.1 www.00hq.com
127.0.0.1 010402.com
127.0.0.1 032439.com
127.0.0.1 www.032439.com

======Security center information======

AV: avast! antivirus 4.8.1201 [VPS 081027-1]

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Intel\Wireless\Bin\;C:\Program Files\Fichiers communs\Adobe\AGL;C:\Program Files\Microsoft SQL Server\80\Tools\Binn\;C:\Program Files\Fichiers communs\Teleca Shared;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 14 Stepping 8, GenuineIntel
"PROCESSOR_REVISION"=0e08
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"SonicCentral"=C:\Program Files\Fichiers communs\Sonic Shared\Sonic Central\
"CLASSPATH"=.;C:\Program Files\Java\jre1.5.0_06\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.5.0_06\lib\ext\QTJava.zip

-----------------EOF-----------------
0
Réponse 23 / 43
sKe69 Messages postés 21955 Statut Contributeur sécurité 463
 
Bien ... on avance ... mais encore un peu de travail ... ;)

1- Télécharges UsbFix ( de Chiquitine29 et Chimay8 ) sur ton bureau :

http://sd-1.archive-host.com/membres/up/116615172019703188/UsbFix.exe

! Déconnectes toi d'internet et fermes toutes applications en cours !

--> Double-cliques sur l' .exe pour lancer l'installation de l'outil ( ne touche pas aux paramètres d'installe ) .

Impératif :
Branches toutes tes unités externes à ton PC (clé USB, DD externe, flash disk, lecteur MP3, etc...) succeptibles d'avoir été infectés ( mais sans les ouvrir ! ) .

--> Double-cliques sur le raccourci "UsbFix" qui est sur ton bureau pour lancer l'outil et laisses le travailler .

--> Le pc va redémarrer .

--> Une fois de retour à ton bureau , le rapport "UsbFix.txt" s'affiche .
Fais un copier/coller de son contenu dans ta prochaine réponse pour analyse et attends la suite ....

( Note : le rapport UsbFix.txt est sauvegardé a la racine du disque dur > C:\UsbFix.txt )

PS : Si le Bureau ne réapparait pas, presses Ctrl + Alt + Suppr , Onglet "Fichier"-> "Nouvelle tâche":
tapes explorer.exe et valides .

2- une fois ce rapport posté , refais un scan RSIT , postes le nouveau rapport " log.txt " obtenu et attends la suite ...

0
Réponse 24 / 43
evitadas
 
ola!
j ai une question stupide mais je prefere te demander: pour le disc dur externe la clé usb ou l ipod, quand tu dis "ne pas ouvrir", est ce ke ca veut dire aussi ne pas allumer le disc dur externe par exemple? juste je le branche mais je le met pas sur "on"? et l ipod s ouvre automatikement quand je le branche avec itunes...
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 43
sKe69 Messages postés 21955 Statut Contributeur sécurité 463
 
Tu fait bien de poser la question :

tu les branche aux PC ( via les port USB ) , et tu alimentes électriquement ceux qui doivent être alimenter : parcontre n'ouvres aucun d'eux avec le PC , c'est à dire qu'il n'y est pas une fenètre d'ouverte sur le PC consernant l'un d'eux ...

j'attends donc les rapports demandés ... ;)
0
Réponse 26 / 43
evitadas
 
voila le rapport !
j espere que je n ai rien foiré, j ai fermé la fenetre ki c ouverte kan jai branché la clé usb et l ipod.

-------------- UsbFix V2.395 ---------------

* User : evita - EVANSON
* Outils mis a jours le 27/10/2008 par Chiquitine29 et Chimay8
* Recherche effectuée à 20:01:53 le 28/10/2008
* Windows Xp - Internet Explorer 6.0.2900.2180

--------------- [ Processus actifs ] ----------------

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device

Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\eHome\ehRec.exe
C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment

Platform\VCSW\VCSW.exe
C:\DOCUME~1\evita\LOCALS~1\Temp\1.tmp\b2e.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment

Platform\VzCdb\VzCdbSvc.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment

Platform\VzCdb\VzFw.exe

--------------- [ Informations lecteurs ] ----------------

C: - Lecteur fixeD: - Lecteur fixeG: - Lecteur amovible
--------------- [ Registre / Startup ] ----------------

! REG.EXE VERSION 3.0

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
Apoint REG_SZ C:\Program Files\Apoint\Apoint.exe
ehTray REG_SZ C:\WINDOWS\ehome\ehtray.exe
Mouse Suite 98 Daemon REG_SZ ICO.EXE
VAIOCameraUtility REG_SZ "C:\Program Files\Sony\VAIO Camera

Utility\VCUServe.exe"
SonyPowerCfg REG_SZ C:\Program Files\Sony\VAIO Power

Management\SPMgr.exe
ISBMgr.exe REG_SZ C:\Program Files\Sony\ISB Utility\ISBMgr.exe
Switcher.exe REG_SZ C:\Program Files\Sony\Wireless Switch Setting

Utility\Switcher.exe
VAIO Update 2 REG_SZ "C:\Program Files\Sony\VAIO Update

2\VAIOUpdt.exe" /Stationary
PDService.exe REG_SZ C:\Program Files\Utimaco\SafeGuard

PrivateDisk\pdservice.exe
Acrobat Assistant 7.0 REG_SZ "C:\Program Files\Adobe\Acrobat

7.0\Distillr\Acrotray.exe"
SsAAD.exe REG_SZ C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
NeroFilterCheck REG_SZ C:\WINDOWS\system32\NeroCheck.exe
Google Desktop Search REG_SZ "C:\Program Files\Google\Google

Desktop Search\GoogleDesktop.exe" /startup
avast! REG_SZ C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
Sony Ericsson PC Suite REG_SZ "C:\Program Files\Sony

Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
QuickTime Task REG_SZ "C:\Program Files\QuickTime\QTTask.exe"

-atboottime
iTunesHelper REG_SZ "C:\Program Files\iTunes\iTunesHelper.exe"

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComp

onents

! REG.EXE VERSION 3.0

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
MsnMsgr REG_SZ "C:\Program Files\MSN Messenger\MsnMsgr.Exe"

/background
swg REG_SZ C:\Program

Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Skype REG_SZ "C:\Program Files\Skype\Phone\Skype.exe" /nosplash

/minimized
eMuleAutoStart REG_SZ C:\Program Files\eMule\emule.exe -AutoStart

--------------- [ Registre / Mountpoint2 ] ----------------

Supprimé ! -

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoi

nts2\I\Shell\AutoRun\command
Supprimé ! -

HKEY_USERS\S-1-5-21-2220559448-1888455988-3827510161-1006\Software\Microsoft\

Windows\CurrentVersion\Explorer\MountPoints2\I\Shell\AutoRun\command
Supprimé ! -

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoi

nts2\{1ecfb8e0-53d9-11db-afae-0002c7ea1358}\Shell\AutoRun\command
Supprimé ! -

HKEY_USERS\S-1-5-21-2220559448-1888455988-3827510161-1006\Software\Microsoft\

Windows\CurrentVersion\Explorer\MountPoints2\{1ecfb8e0-53d9-11db-afae-0002c7e

a1358}\Shell\AutoRun\command
Supprimé ! -

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoi

nts2\{771a2083-ef5e-11dc-b293-0013a90a9137}\Shell\AutoRun\command
Supprimé ! -

HKEY_USERS\S-1-5-21-2220559448-1888455988-3827510161-1006\Software\Microsoft\

Windows\CurrentVersion\Explorer\MountPoints2\{771a2083-ef5e-11dc-b293-0013a90

a9137}\Shell\AutoRun\command
Supprimé ! -

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoi

nts2\{8a66d9f4-1e71-11dc-b10e-0002c7ea1358}\Shell\AutoRun\command
Supprimé ! -

HKEY_USERS\S-1-5-21-2220559448-1888455988-3827510161-1006\Software\Microsoft\

Windows\CurrentVersion\Explorer\MountPoints2\{8a66d9f4-1e71-11dc-b10e-0002c7e

a1358}\Shell\AutoRun\command
Supprimé ! -

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoi

nts2\{919c4763-9f6c-11db-b03d-0002c7ea1358}\Shell\AutoRun\command
Supprimé ! -

HKEY_USERS\S-1-5-21-2220559448-1888455988-3827510161-1006\Software\Microsoft\

Windows\CurrentVersion\Explorer\MountPoints2\{919c4763-9f6c-11db-b03d-0002c7e

a1358}\Shell\AutoRun\command

--------------- [ Nettoyage des disques ] ----------------

--------------- ! Fin du rapport ! ----------------
0
Réponse 27 / 43
evitadas
 
voila le rapport !
j espere que je n ai rien foiré, j ai fermé la fenetre ki c ouverte kan jai branché la clé usb et l ipod.

-------------- UsbFix V2.395 ---------------

* User : evita - EVANSON
* Outils mis a jours le 27/10/2008 par Chiquitine29 et Chimay8
* Recherche effectuée à 20:01:53 le 28/10/2008
* Windows Xp - Internet Explorer 6.0.2900.2180

--------------- [ Processus actifs ] ----------------

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device

Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\eHome\ehRec.exe
C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment

Platform\VCSW\VCSW.exe
C:\DOCUME~1\evita\LOCALS~1\Temp\1.tmp\b2e.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment

Platform\VzCdb\VzCdbSvc.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment

Platform\VzCdb\VzFw.exe

--------------- [ Informations lecteurs ] ----------------

C: - Lecteur fixeD: - Lecteur fixeG: - Lecteur amovible
--------------- [ Registre / Startup ] ----------------

! REG.EXE VERSION 3.0

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
Apoint REG_SZ C:\Program Files\Apoint\Apoint.exe
ehTray REG_SZ C:\WINDOWS\ehome\ehtray.exe
Mouse Suite 98 Daemon REG_SZ ICO.EXE
VAIOCameraUtility REG_SZ "C:\Program Files\Sony\VAIO Camera

Utility\VCUServe.exe"
SonyPowerCfg REG_SZ C:\Program Files\Sony\VAIO Power

Management\SPMgr.exe
ISBMgr.exe REG_SZ C:\Program Files\Sony\ISB Utility\ISBMgr.exe
Switcher.exe REG_SZ C:\Program Files\Sony\Wireless Switch Setting

Utility\Switcher.exe
VAIO Update 2 REG_SZ "C:\Program Files\Sony\VAIO Update

2\VAIOUpdt.exe" /Stationary
PDService.exe REG_SZ C:\Program Files\Utimaco\SafeGuard

PrivateDisk\pdservice.exe
Acrobat Assistant 7.0 REG_SZ "C:\Program Files\Adobe\Acrobat

7.0\Distillr\Acrotray.exe"
SsAAD.exe REG_SZ C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
NeroFilterCheck REG_SZ C:\WINDOWS\system32\NeroCheck.exe
Google Desktop Search REG_SZ "C:\Program Files\Google\Google

Desktop Search\GoogleDesktop.exe" /startup
avast! REG_SZ C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
Sony Ericsson PC Suite REG_SZ "C:\Program Files\Sony

Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
QuickTime Task REG_SZ "C:\Program Files\QuickTime\QTTask.exe"

-atboottime
iTunesHelper REG_SZ "C:\Program Files\iTunes\iTunesHelper.exe"

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComp

onents

! REG.EXE VERSION 3.0

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
MsnMsgr REG_SZ "C:\Program Files\MSN Messenger\MsnMsgr.Exe"

/background
swg REG_SZ C:\Program

Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Skype REG_SZ "C:\Program Files\Skype\Phone\Skype.exe" /nosplash

/minimized
eMuleAutoStart REG_SZ C:\Program Files\eMule\emule.exe -AutoStart

--------------- [ Registre / Mountpoint2 ] ----------------

Supprimé ! -

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoi

nts2\I\Shell\AutoRun\command
Supprimé ! -

HKEY_USERS\S-1-5-21-2220559448-1888455988-3827510161-1006\Software\Microsoft\

Windows\CurrentVersion\Explorer\MountPoints2\I\Shell\AutoRun\command
Supprimé ! -

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoi

nts2\{1ecfb8e0-53d9-11db-afae-0002c7ea1358}\Shell\AutoRun\command
Supprimé ! -

HKEY_USERS\S-1-5-21-2220559448-1888455988-3827510161-1006\Software\Microsoft\

Windows\CurrentVersion\Explorer\MountPoints2\{1ecfb8e0-53d9-11db-afae-0002c7e

a1358}\Shell\AutoRun\command
Supprimé ! -

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoi

nts2\{771a2083-ef5e-11dc-b293-0013a90a9137}\Shell\AutoRun\command
Supprimé ! -

HKEY_USERS\S-1-5-21-2220559448-1888455988-3827510161-1006\Software\Microsoft\

Windows\CurrentVersion\Explorer\MountPoints2\{771a2083-ef5e-11dc-b293-0013a90

a9137}\Shell\AutoRun\command
Supprimé ! -

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoi

nts2\{8a66d9f4-1e71-11dc-b10e-0002c7ea1358}\Shell\AutoRun\command
Supprimé ! -

HKEY_USERS\S-1-5-21-2220559448-1888455988-3827510161-1006\Software\Microsoft\

Windows\CurrentVersion\Explorer\MountPoints2\{8a66d9f4-1e71-11dc-b10e-0002c7e

a1358}\Shell\AutoRun\command
Supprimé ! -

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoi

nts2\{919c4763-9f6c-11db-b03d-0002c7ea1358}\Shell\AutoRun\command
Supprimé ! -

HKEY_USERS\S-1-5-21-2220559448-1888455988-3827510161-1006\Software\Microsoft\

Windows\CurrentVersion\Explorer\MountPoints2\{919c4763-9f6c-11db-b03d-0002c7e

a1358}\Shell\AutoRun\command

--------------- [ Nettoyage des disques ] ----------------

--------------- ! Fin du rapport ! ----------------
0
Réponse 28 / 43
sKe69 Messages postés 21955 Statut Contributeur sécurité 463
 
refais un scan RSIT , postes le nouveau rapport " log.txt " obtenu et attends la suite ...
( postes en 2 fois si il le faut ;) )
0
Réponse 29 / 43
evitadas
 
voila la premiere partie du log !
Logfile of random's system information tool 1.04 (written by random/random)
Run by evita at 2008-10-28 21:22:20
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 15 GB (20%) free of 76 GB
Total RAM: 1022 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:22:24, on 28/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\evita\Bureau\RSIT.exe
C:\Program Files\trend micro\evita.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com/fr/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-vaio.com/fr/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O2 - BHO: GoogleAFE - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\PROGRA~1\GOOGLE~1\GoogleAFE.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM\..\Run: [VAIOCameraUtility] "C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe"
O4 - HKLM\..\Run: [SonyPowerCfg] C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
O4 - HKLM\..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe
O4 - HKLM\..\Run: [Switcher.exe] C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
O4 - HKLM\..\Run: [VAIO Update 2] "C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe" /Stationary
O4 - HKLM\..\Run: [PDService.exe] C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Transfert par Image Converter 2 Plus - C:\Program Files\Sony\Image Converter 2\menu.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/fr/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\Image Converter 2\IcVzMon.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe
O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
0
Réponse 30 / 43
evitadas
 
et la deuxieme !

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-03-06 7557120]
"Apoint"=C:\Program Files\Apoint\Apoint.exe [2004-11-17 118784]
"ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
"Mouse Suite 98 Daemon"=C:\WINDOWS\system32\ICO.EXE [2002-03-14 45056]
"VAIOCameraUtility"=C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe [2005-12-27 69632]
"SonyPowerCfg"=C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2005-12-13 217088]
"ISBMgr.exe"=C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2004-02-20 32768]
"Switcher.exe"=C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [2006-02-14 176128]
"VAIO Update 2"=C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe [2005-10-11 151552]
"PDService.exe"=C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe [2004-07-06 40960]
"Acrobat Assistant 7.0"=C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2005-03-03 483328]
"SsAAD.exe"=C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe [2006-01-07 81920]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2006-10-01 169472]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-05-16 79224]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2006-11-24 487424]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-09-08 289576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"=C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-06-06 68856]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2008-06-03 21718312]
"eMuleAutoStart"=C:\Program Files\eMule\emule.exe [2007-05-13 5308416]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]
C:\WINDOWS\system32\VESWinlogon.dll [2005-05-20 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe"="C:\Program Files\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe:*:Disabled:Adobe Photoshop Elements Media Server"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\Canon\DV Messenger\DV Messenger.exe"="C:\Program Files\Canon\DV Messenger\DV Messenger.exe:*:Disabled:DV Messenger"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe:*:Enabled:Kaspersky Anti-Virus"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\adslTV\adsltv.exe"="C:\Program Files\adslTV\adsltv.exe:*:Enabled:adsltv"
"C:\Program Files\adslTV\vlc.exe"="C:\Program Files\adslTV\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Azureus\Azureus.exe"="C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Documents and Settings\evita\Local Settings\Temp\WZSE0.TMP\SymNRT.exe"="C:\Documents and Settings\evita\Local Settings\Temp\WZSE0.TMP\SymNRT.exe:*:Enabled:Norton Removal Tool"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

======List of files/folders created in the last 2 months======

2008-10-28 20:01:53 ----A---- C:\UsbFix.txt
2008-10-28 19:59:08 ----D---- C:\Program Files\UsbFix
2008-10-28 04:27:20 ----D---- C:\rsit
2008-10-27 21:29:49 ----D---- C:\Documents and Settings\evita\Application Data\Malwarebytes
2008-10-27 21:29:41 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-10-27 21:29:41 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-10-27 16:49:50 ----D---- C:\_OTMoveIt
2008-10-26 23:31:29 ----A---- C:\TB.txt
2008-10-26 23:30:30 ----D---- C:\ToolBar SD
2008-10-26 23:13:14 ----D---- C:\Documents and Settings\All Users\Application Data\NortonInstaller
2008-10-26 20:33:05 ----D---- C:\Program Files\Trend Micro
2008-09-28 23:50:55 ----A---- C:\WINDOWS\system32\cc3270mt.dll
2008-09-27 22:26:29 ----A---- C:\WINDOWS\system32\mpg4c32.dll
2008-09-27 22:26:29 ----A---- C:\WINDOWS\system32\mcdvd_32.dll
2008-09-27 21:59:25 ----D---- C:\Documents and Settings\evita\Application Data\AVS4YOU
2008-09-27 21:59:17 ----D---- C:\Documents and Settings\All Users\Application Data\AVS4YOU
2008-09-27 21:58:21 ----D---- C:\Program Files\Fichiers communs\AVSMedia
2008-09-27 21:58:08 ----A---- C:\WINDOWS\system32\mfc70.dll
2008-09-27 21:58:08 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2008-09-27 21:58:07 ----D---- C:\Program Files\AVS4YOU
2008-09-21 15:39:04 ----A---- C:\WINDOWS\system32\MSVCRTD.DLL
2008-09-21 15:39:04 ----A---- C:\WINDOWS\system32\MSVCP60D.DLL
2008-09-21 15:39:01 ----A---- C:\WINDOWS\system32\WMAFile.dll
2008-09-21 15:39:01 ----A---- C:\WINDOWS\system32\AudPlayer.dll
2008-09-21 15:39:01 ----A---- C:\WINDOWS\system32\AudioVisu.dll
2008-09-21 15:39:01 ----A---- C:\WINDOWS\system32\AudioRecord.dll
2008-09-21 15:39:01 ----A---- C:\WINDOWS\system32\AudioInfos.dll
2008-09-21 15:39:00 ----A---- C:\WINDOWS\system32\TABCTFR.DLL
2008-09-21 15:39:00 ----A---- C:\WINDOWS\system32\AudFile.dll
2008-09-21 15:39:00 ----A---- C:\WINDOWS\system32\AudDisplay.dll
2008-09-21 15:39:00 ----A---- C:\WINDOWS\system32\AudDesign.dll
2008-09-21 15:38:59 ----A---- C:\WINDOWS\system32\MSCMCFR.DLL
2008-09-21 15:38:59 ----A---- C:\WINDOWS\system32\lame_enc.dll
2008-09-21 14:36:06 ----D---- C:\Program Files\Need4 Video Converter 5.7
2008-09-11 18:30:32 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2008-09-11 18:29:58 ----D---- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-09-11 18:29:37 ----D---- C:\Program Files\Bonjour
2008-09-11 18:28:32 ----D---- C:\Program Files\QuickTime
2008-09-11 18:26:58 ----D---- C:\Program Files\Apple Software Update
2008-09-11 18:26:28 ----A---- C:\WINDOWS\system32\usbaaplrc.dll
2008-09-11 18:26:04 ----D---- C:\Program Files\Fichiers communs\Apple
2008-09-11 18:26:03 ----D---- C:\Documents and Settings\All Users\Application Data\Apple
2008-08-29 09:18:58 ----A---- C:\WINDOWS\system32\dns-sd.exe
2008-08-29 08:53:50 ----A---- C:\WINDOWS\system32\dnssd.dll

======List of files/folders modified in the last 2 months======

2008-10-28 21:21:19 ----RD---- C:\Program Files
2008-10-28 21:07:29 ----A---- C:\WINDOWS\ModemLog_HDAUDIO SoftV92 Data Fax Modem with SmartCP.txt
2008-10-28 20:06:26 ----D---- C:\WINDOWS\Temp
2008-10-28 20:02:49 ----D---- C:\WINDOWS\Prefetch
2008-10-28 20:02:33 ----D---- C:\WINDOWS
2008-10-28 20:02:09 ----D---- C:\WINDOWS\Registration
2008-10-28 20:00:04 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-10-28 19:59:52 ----HD---- C:\WINDOWS\inf
2008-10-28 18:45:37 ----D---- C:\Documents and Settings\evita\Application Data\skypePM
2008-10-28 18:44:43 ----D---- C:\Program Files\eMule
2008-10-28 04:24:36 ----D---- C:\WINDOWS\system32\LogFiles
2008-10-27 21:30:23 ----D---- C:\WINDOWS\system32\drivers
2008-10-27 21:21:45 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-27 21:21:06 ----D---- C:\WINDOWS\Debug
2008-10-27 16:58:17 ----D---- C:\Program Files\Fichiers communs
2008-10-26 23:17:46 ----D---- C:\Program Files\Symantec
2008-10-26 23:15:46 ----D---- C:\Program Files\Fichiers communs\Symantec Shared
2008-10-26 20:00:42 ----A---- C:\WINDOWS\NeroDigital.ini
2008-10-26 05:08:46 ----D---- C:\WINDOWS\system32
2008-10-26 05:08:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-10-25 15:30:39 ----D---- C:\WINDOWS\system32\CatRoot2
2008-10-25 14:24:23 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-10-25 14:22:36 ----HD---- C:\WINDOWS\$hf_mig$
2008-10-23 03:27:12 ----D---- C:\Program Files\adslTV
2008-10-20 05:43:30 ----D---- C:\Documents and Settings\evita\Application Data\uTorrent
2008-10-17 02:02:23 ----D---- C:\Program Files\Internet Explorer
2008-10-15 17:59:28 ----A---- C:\WINDOWS\system32\netapi32.dll
2008-10-12 20:49:45 ----D---- C:\Documents and Settings\evita\Application Data\U3
2008-09-27 21:58:21 ----SHD---- C:\WINDOWS\Installer
2008-09-27 21:58:21 ----D---- C:\Config.Msi
2008-09-27 21:58:20 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2008-09-27 21:58:19 ----D---- C:\WINDOWS\WinSxS
2008-09-11 19:08:31 ----D---- C:\Documents and Settings\evita\Application Data\Apple Computer
2008-09-11 18:30:32 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-09-11 18:30:31 ----D---- C:\Program Files\iTunes
2008-09-11 18:30:01 ----D---- C:\Program Files\iPod
2008-09-11 18:28:28 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-09-11 18:27:02 ----SD---- C:\WINDOWS\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2008-05-16 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2008-05-16 78416]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2008-05-16 42912]
R1 DMICall;Sony DMI Call service; C:\WINDOWS\system32\DRIVERS\DMICall.sys [2000-12-05 3952]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-27 40320]
R1 PrivateDisk;PrivateDisk; C:\WINDOWS\System32\Drivers\PrivateDiskM.sys [2004-07-06 45627]
R1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.9.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2006-03-20 21275]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-05-16 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2008-05-16 94416]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544]
R2 s24trans;Transport RLAN; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2005-11-28 13568]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2004-11-22 108767]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-10 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2008-05-16 23152]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
R3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2005-06-13 162816]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-08-12 137728]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-10-18 998656]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2005-10-18 202112]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-10 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-03-06 3644160]
R3 SNC;Sony Notebook Control Device; C:\WINDOWS\System32\Drivers\SonyNC.sys [2000-11-09 48896]
R3 SonyImgF;Sony Image Conversion Filter Driver; C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2005-12-27 29184]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-02-13 1106888]
R3 ti21sony;ti21sony; C:\WINDOWS\system32\drivers\ti21sony.sys [2006-02-21 226304]
R3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2005-11-24 47104]
R3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2008-09-05 36864]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 usbvm321;Sony Visual Communication Camera VGP-VCC1; C:\WINDOWS\System32\Drivers\usbvm321.sys [2005-12-29 234496]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-10-18 721280]
S3 61883;Pilote d'unité 61883; C:\WINDOWS\system32\DRIVERS\61883.sys [2004-08-03 48128]
S3 Avc;Périphérique AVC; C:\WINDOWS\system32\DRIVERS\avc.sys [2004-08-03 38912]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2005-07-06 176128]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-08-03 51328]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 se44bus;Sony Ericsson Device 068 driver (WDM); C:\WINDOWS\system32\DRIVERS\se44bus.sys [2006-11-30 61536]
S3 se44mdfl;Sony Ericsson Device 068 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se44mdfl.sys [2006-11-30 9360]
S3 se44mdm;Sony Ericsson Device 068 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se44mdm.sys [2006-11-30 97088]
S3 se44mgmt;Sony Ericsson Device 068 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se44mgmt.sys [2006-11-30 88624]
S3 se44nd5;Sony Ericsson Device 068 USB Ethernet Emulation SEMC44 (NDIS); C:\WINDOWS\system32\DRIVERS\se44nd5.sys [2006-11-30 18704]
S3 se44obex;Sony Ericsson Device 068 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se44obex.sys [2006-11-30 86432]
S3 se44unic;Sony Ericsson Device 068 USB Ethernet Emulation SEMC44 (WDM); C:\WINDOWS\system32\DRIVERS\se44unic.sys [2006-11-30 90800]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 toshidpt;TOSHIBA Bluetooth HID port driver; C:\WINDOWS\system32\drivers\Toshidpt.sys [2005-07-11 3712]
S3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2005-11-22 108800]
S3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2005-09-15 36480]
S3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2005-12-01 62848]
S3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:\WINDOWS\system32\drivers\TosRfSnd.sys [2005-11-11 52864]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2005-11-15 36736]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 usbsermptxp;Motorola USB Modem Driver for MPT XP; C:\WINDOWS\system32\DRIVERS\usbsermptxp.sys [2006-12-26 25600]
S3 USBVCD;Canon USB Video; C:\WINDOWS\system32\drivers\USBVCD.sys [2004-08-04 57600]
S3 VCIDRV;Canon USB Video Control; C:\WINDOWS\system32\drivers\VCIDrv.sys [2004-08-04 6528]
S3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2005-12-05 1428096]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 Pdctfr;Pdctfr; C:\WINDOWS\system32\drivers\Pdctfr.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeActiveFileMonitor4.0;Adobe Active File Monitor V4; C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe [2005-09-09 102400]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-05 116040]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-05-16 17272]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-05-16 144760]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
R2 ehSched;Service de planification Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2005-11-28 114753]
R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB; C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe [2002-12-17 7520337]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-03-06 143428]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2005-11-28 217164]
R2 S24EventMonitor;Intel(R) PROSet/Wireless Service; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2005-11-28 540745]
R2 VAIO Event Service;VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [2005-05-20 153600]
R2 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2005-11-28 167936]
R2 VzFw;VAIO Entertainment File Import Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [2005-11-28 135168]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-05-16 247160]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-05-16 349560]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
R3 Vcsw;VAIO Entertainment UPnP Client Adapter; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [2005-11-28 270336]
S2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe []
S2 VCI;VAIO Cooporated Initialisation; C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe [2005-01-04 398336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2006-10-24 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-25 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 Image Converter video recording monitor for VAIO Entertainment;Image Converter video recording monitor for VAIO Entertainment; C:\Program Files\Sony\Image Converter 2\IcVzMon.exe [2005-07-14 32768]
S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-09-08 536872]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2004-08-10 14336]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe [2005-11-24 53337]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe [2005-11-24 53337]
S3 SPTISRV;Sony SPTI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe [2005-11-24 69718]
S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB; C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE [2002-12-17 311872]
S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe [2006-01-06 69632]
S3 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [2005-11-25 73728]
S3 VAIOMediaPlatform-IntegratedServer-AppServer;VAIO Media Integrated Server; C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe [2006-01-16 2084864]
S3 VAIOMediaPlatform-IntegratedServer-HTTP;VAIO Media Integrated Server (HTTP); C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [2005-10-11 57344]
S3 VAIOMediaPlatform-IntegratedServer-UPnP;VAIO Media Integrated Server (UPnP); C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [2005-10-11 770048]
S3 VAIOMediaPlatform-Mobile-Gateway;VAIO Media Gateway Server; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe [2005-12-21 155648]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-10 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

-----------------EOF-----------------
0
sKe69 Messages postés 21955 Statut Contributeur sécurité 463
 
Bien ...

encore quelque vérifs avant de passer ç l'étape suivante :


1- Avoir accès aux fichiers cachés :

Vas dans Menu Démarrer->Poste de travail->Outils->Options des dossiers...->Affichage
* "Afficher les fichiers et dossiers cachés" ---> coché
* "Masquer les extensions des fichiers dont le type est connu" ---> décoché
* "masquer les fichiers du système" ---> décoché
-> valides la modif ( "appliquer" puis "ok" ).
( tu remetteras les paramètres de départ une fois la désinfection terminée , pas avant ... )



2- Rends toi sur ce site :

https://www.virustotal.com/gui/

Copies ce qui suit et colles le dans l'espace pour la recherche :
C:\WINDOWS\system32\cc3270mt.dll

Cliques sur Send File ( = " Envoyer le fichier " ).

Un rapport va s'élaborer ligne à ligne.

Attends bien la fin ... Il doit comprendre la taille du fichier envoyé.

Sauvegarde le rapport avec le bloc-note.

Copies le dans ta prochaine réponse ...

( Si VirusTotal indique que le fichier a déjà été analysé, clique sur le bouton Ré-analyse le fichier maintenant )


Fais de même pour :
C:\WINDOWS\system32\mpg4c32.dll

postes moi donc ces ** rapports ( surtout le début avec le listing des AV , et en précisant bien au début de chacuns à quel fichier ils correspondent ) et attends la suite ...
0
Réponse 31 / 43
evitadas
 
VOILA LE FICHIER C:\WINDOWS\system32\cc3270mt.dll

Fichier cc3270mt.dll_ reçu le 2008.10.28 21:47:38 (CET)
Situation actuelle: en cours de chargement ... mis en file d'attente en attente en cours d'analyse terminé NON TROUVE ARRETE

Résultat: 0/36 (0%)
en train de charger les informations du serveur...
Votre fichier est dans la file d'attente, en position: 45.
L'heure estimée de démarrage est entre 3 et 5 minutes.
Ne fermez pas la fenêtre avant la fin de l'analyse.
L'analyseur qui traitait votre fichier est actuellement stoppé, nous allons attendre quelques secondes pour tenter de récupérer vos résultats.
Si vous attendez depuis plus de cinq minutes, vous devez renvoyer votre fichier.
Votre fichier est, en ce moment, en cours d'analyse par VirusTotal,
les résultats seront affichés au fur et à mesure de leur génération.
Formaté Impression des résultats
Votre fichier a expiré ou n'existe pas.
Le service est en ce moment, stoppé, votre fichier attend d'être analysé (position : ) depuis une durée indéfinie.

Vous pouvez attendre une réponse du Web (re-chargement automatique) ou taper votre e-mail dans le formulaire ci-dessous et cliquer "Demande" pour que le système vous envoie une notification quand l'analyse sera terminée.
Email:

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.10.28.3 2008.10.28 -
AntiVir 7.9.0.10 2008.10.28 -
Authentium 5.1.0.4 2008.10.28 -
Avast 4.8.1248.0 2008.10.28 -
AVG 8.0.0.161 2008.10.28 -
BitDefender 7.2 2008.10.28 -
CAT-QuickHeal 9.50 2008.10.28 -
ClamAV 0.93.1 2008.10.28 -
DrWeb 4.44.0.09170 2008.10.28 -
eSafe 7.0.17.0 2008.10.28 -
eTrust-Vet 31.6.6177 2008.10.28 -
Ewido 4.0 2008.10.28 -
F-Prot 4.4.4.56 2008.10.28 -
F-Secure 8.0.14332.0 2008.10.28 -
Fortinet 3.117.0.0 2008.10.28 -
GData 19 2008.10.28 -
Ikarus T3.1.1.44.0 2008.10.28 -
K7AntiVirus 7.10.510 2008.10.28 -
Kaspersky 7.0.0.125 2008.10.28 -
McAfee 5417 2008.10.28 -
Microsoft 1.4005 2008.10.28 -
NOD32 3563 2008.10.28 -
Norman 5.80.02 2008.10.28 -
Panda 9.0.0.4 2008.10.28 -
PCTools 4.4.2.0 2008.10.28 -
Prevx1 V2 2008.10.28 -
Rising 21.01.12.00 2008.10.28 -
SecureWeb-Gateway 6.7.6 2008.10.28 -
Sophos 4.35.0 2008.10.28 -
Sunbelt 3.1.1762.1 2008.10.28 -
Symantec 10 2008.10.28 -
TheHacker 6.3.1.1.132 2008.10.28 -
TrendMicro 8.700.0.1004 2008.10.28 -
VBA32 3.12.8.8 2008.10.28 -
ViRobot 2008.10.28.1441 2008.10.28 -
VirusBuster 4.5.11.0 2008.10.28 -
Information additionnelle
File size: 658432 bytes
MD5...: 155779c88df4e35695efb19e0d7a2366
SHA1..: 0bbebf5d2bb8196241ea84e5cdba0f5574bd7838
SHA256: 9ca024184070e1cab75e242e4ce037e1bc7953a0b4e0bc3f861edce9b805619c
SHA512: 59fae880d8ad3b6f9101ecac33e8014e50a059eee3889008c157d3b45dbf0dc6
0ad00f21df13ddc0f7e20b1b8a315d13b97b2ea0b77b79a1a1aaa57534cbe239
PEiD..: -
TrID..: File type identification
DOS Executable Borland C++ (39.2%)
Win32 Executable Generic (25.7%)
Win32 Dynamic Link Library (generic) (22.8%)
Generic Win/DOS Executable (6.0%)
DOS Executable Generic (6.0%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x3270121c
timedatestamp.....: 0x4418859e (Wed Mar 15 21:22:38 2006)
machinetype.......: 0x14c (I386)

( 7 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x7f000 0x7f000 6.57 4a3ce655178883c036b1649b7a354de9
.data 0x80000 0x14000 0xec00 4.78 d1fc99f306bae1b310637d44d0598aea
.tls 0x94000 0x3000 0x2400 0.00 13a95890b5f0947d6f058ca9c30a3e01
.idata 0x97000 0x2000 0x1400 5.08 44623cb20847af295a1a3cc0b1a332b0
.edata 0x99000 0xa000 0x9400 5.95 11def70770fddd8950d6c62413684355
.rsrc 0xa3000 0x1000 0x1000 3.31 fb9d72f082e1b37db1c2eef430a999b7
.reloc 0xa4000 0x5000 0x4e00 6.66 346b429ce1d3844691c3273b7cd823de

( 4 imports )
> ADVAPI32.DLL: RegCloseKey, RegOpenKeyExA, RegQueryValueExA
> KERNEL32.DLL: Beep, CloseHandle, CompareStringA, CompareStringW, CreateDirectoryA, CreateDirectoryW, CreateFileA, CreateFileW, CreatePipe, CreateProcessA, CreateProcessW, CreateThread, DeleteCriticalSection, DeleteFileA, DeleteFileW, DosDateTimeToFileTime, DuplicateHandle, EnterCriticalSection, EnumCalendarInfoA, ExitProcess, ExitThread, FileTimeToDosDateTime, FileTimeToLocalFileTime, FileTimeToSystemTime, FillConsoleOutputAttribute, FillConsoleOutputCharacterA, FindClose, FindFirstFileA, FindFirstFileW, FindNextFileA, FindNextFileW, FlushConsoleInputBuffer, FlushFileBuffers, FreeLibrary, GetACP, GetCPInfo, GetCommandLineA, GetCommandLineW, GetConsoleMode, GetConsoleScreenBufferInfo, GetCurrentDirectoryA, GetCurrentDirectoryW, GetCurrentProcess, GetCurrentProcessId, GetCurrentThreadId, GetDateFormatA, GetDiskFreeSpaceA, GetDriveTypeA, GetDriveTypeW, GetEnvironmentStrings, GetEnvironmentStringsW, GetEnvironmentVariableA, GetExitCodeProcess, GetFileAttributesA, GetFileAttributesW, GetFileSize, GetFileTime, GetFileType, GetFullPathNameA, GetFullPathNameW, GetLargestConsoleWindowSize, GetLastError, GetLocalTime, GetLocaleInfoA, GetLogicalDrives, GetModuleFileNameA, GetModuleFileNameW, GetModuleHandleA, GetModuleHandleW, GetNumberOfConsoleInputEvents, GetOEMCP, GetProcAddress, GetProcessHeap, GetShortPathNameA, GetShortPathNameW, GetStartupInfoA, GetStartupInfoW, GetStdHandle, GetStringTypeA, GetStringTypeExA, GetStringTypeW, GetSystemDefaultLangID, GetSystemDirectoryA, GetSystemTimeAsFileTime, GetThreadLocale, GetTickCount, GetTimeZoneInformation, GetUserDefaultLCID, GetVersion, GetVersionExA, GetVolumeInformationA, GetVolumeInformationW, GlobalAlloc, GlobalFree, GlobalLock, GlobalMemoryStatus, GlobalReAlloc, GlobalSize, GlobalUnlock, HeapAlloc, HeapFree, HeapReAlloc, InitializeCriticalSection, InterlockedDecrement, InterlockedExchange, InterlockedIncrement, IsBadReadPtr, IsValidLocale, LCMapStringA, LCMapStringW, LeaveCriticalSection, LoadLibraryA, LoadLibraryExA, LoadLibraryW, LocalAlloc, LocalFileTimeToFileTime, LocalFree, LockFile, MoveFileA, MoveFileW, MultiByteToWideChar, PeekConsoleInputA, RaiseException, ReadConsoleInputA, ReadConsoleOutputA, ReadFile, RemoveDirectoryA, RemoveDirectoryW, RtlUnwind, ScrollConsoleScreenBufferA, SetConsoleCtrlHandler, SetConsoleCursorInfo, SetConsoleCursorPosition, SetConsoleMode, SetConsoleScreenBufferSize, SetConsoleWindowInfo, SetCurrentDirectoryA, SetCurrentDirectoryW, SetEndOfFile, SetEnvironmentVariableA, SetEnvironmentVariableW, SetErrorMode, SetFileAttributesA, SetFileAttributesW, SetFilePointer, SetFileTime, SetHandleCount, SetLastError, SetLocalTime, SetStdHandle, SetThreadLocale, Sleep, SystemTimeToFileTime, TlsAlloc, TlsFree, TlsGetValue, TlsSetValue, UnhandledExceptionFilter, UnlockFile, VirtualAlloc, VirtualFree, VirtualQuery, WaitForMultipleObjects, WaitForSingleObject, WideCharToMultiByte, WriteConsoleInputA, WriteConsoleOutputA, WriteFile, lstrcmpiA, lstrcpynA, lstrlenA
> USER32.DLL: CharLowerW, CharNextA, CharUpperW, EnumThreadWindows, GetKeyboardType, LoadStringA, MessageBoxA, wsprintfA, wsprintfW, GetSystemMetrics
> OLEAUT32.DLL: -

( 1433 exports )
@$bdele$qpv, @$bdele$qpvrx13std@nothrow_t, @$bdele$qpvt1, @$bdla$qpv, @$bdla$qpvrx13std@nothrow_t, @$bdla$qpvt1, @$blsh$qr42std@_basic_ostream$c19std@_char_traits$c__rx3bcd, @$bnew$qui, @$bnew$quirx13std@nothrow_t, @$bnwa$qui, @$bnwa$quirx13std@nothrow_t, @$brsh$qr42std@_basic_istream$c19std@_char_traits$c__r3bcd, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@$bctr$qrx12std@_Locinfoui, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@$bctr$qui, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@$bdtr$qv, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@_Getcat$qppx16std@locale@facet, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@do_put$xq48std@_ostreambuf_iterator$b19std@_char_traits$b__r12std@ios_basebpx6std@tmcc, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@id, @TRegexp@$bctr$qpxc, @TRegexp@$bctr$qrx7TRegexp, @TRegexp@$bdtr$qv, @TRegexp@copy_pattern$qrx7TRegexp, @TRegexp@find$xqpxcpuiui, @TRegexp@gen_pattern$qpxc, @TRegexp@maxpat, @_CatchCleanup$qv, @_InitTermAndUnexPtrs$qv, @_ReThrowException$quipuc, @_ThrowExceptionLDTC$qpvt1t1t1uiuiuipuct1, @__DynamicCast$qpvt1t1t1i, @__DynamicCastVCLptr$qqrpvt1, @__DynamicCastVCLref$qqrpvt1, @__GetTypeInfo$qpvt1t1, @__GetTypeInfo$qpvt1t1t1, @__ThrowExceptionName$qv, @__ThrowFileName$qv, @__ThrowLineNumber$qv, @__lockDebuggerData$qv, @__unlockDebuggerData$qv, @_cast_memptr$qpvt1uiuiui, @_vcl_GetHeapStatus$qv, @_vector_apply_$qpvt1uiuiuit1, @_vector_vapply_$qpvt1uiuiuit1, @bcd@$bctr$qgi, @std@_basic_string$c19std@_char_traits$c_17std@_allocator$c__@npos, @std@_codecvt$bci_@$bctr$qrx12std@_Locinfoui, @std@_codecvt$bci_@$bctr$qui, @std@_codecvt$bci_@$bdtr$qv, @std@_codecvt$bci_@_Getcat$qppx16std@locale@facet, @std@_codecvt$bci_@do_always_noconv$xqv, @std@_codecvt$bci_@do_encoding$xqv, @std@_codecvt$bci_@do_in$xqripxct2rpxcpbt5rpb, @std@_codecvt$bci_@do_length$xqrxipxct2ui, @std@_codecvt$bci_@do_max_length$xqv, @std@_codecvt$bci_@do_out$xqripxbt2rpxbpct5rpc, @std@_codecvt$bci_@do_unshift$xqripct2rpc, @std@_codecvt$bci_@id, @std@_codecvt$cci_@id, @std@_collate$b_@id, @std@_collate$c_@id, @std@_ctype$b_@$bctr$qrx12std@_Locinfoui, @std@_ctype$b_@$bctr$qui, @std@_ctype$b_@$bdtr$qv, @std@_ctype$b_@_Getcat$qppx16std@locale@facet, @std@_ctype$b_@do_is$xqpxbt1ps, @std@_ctype$b_@do_is$xqsb, @std@_ctype$b_@do_narrow$xqbc, @std@_ctype$b_@do_narrow$xqpxbt1cpc, @std@_ctype$b_@do_scan_is$xqspxbt2, @std@_ctype$b_@do_scan_not$xqspxbt2, @std@_ctype$b_@do_tolower$xqb, @std@_ctype$b_@do_tolower$xqpbpxb, @std@_ctype$b_@do_toupper$xqb, @std@_ctype$b_@do_toupper$xqpbpxb, @std@_ctype$b_@do_widen$xqc, @std@_ctype$b_@do_widen$xqpxct1pb, @std@_ctype$b_@id, @std@_ctype$c_@$bctr$qpxsoui, @std@_ctype$c_@$bctr$qrx12std@_Locinfoui, @std@_ctype$c_@$bdtr$qv, @std@_ctype$c_@_Getcat$qppx16std@locale@facet, @std@_ctype$c_@do_narrow$xqcc, @std@_ctype$c_@do_narrow$xqpxct1cpc, @std@_ctype$c_@do_tolower$xqc, @std@_ctype$c_@do_tolower$xqpcpxc, @std@_ctype$c_@do_toupper$xqc, @std@_ctype$c_@do_toupper$xqpcpxc, @std@_ctype$c_@do_widen$xqc, @std@_ctype$c_@do_widen$xqpxct1pc, @std@_ctype$c_@id, @std@_ctype$c_@table_size, @std@_messages$b_@id, @std@_messages$c_@id, @std@_money_get$b48std@_istreambuf_iterator$b19std@_char_traits$b___@id, @std@_money_get$c48std@_istreambuf_iterator$c19std@_char_traits$c___@id, @std@_money_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@id, @std@_money_put$c48std@_ostreambuf_iterator$c19std@_char_traits$c___@id, @std@_moneypunct$bo$i0$_@$bctr$qrx12std@_Locinfoui, @std@_moneypunct$bo$i0$_@$bctr$qui, @std@_moneypunct$bo$i0$_@$bdtr$qv, @std@_moneypunct$bo$i0$_@_Getcat$qppx16std@locale@facet, @std@_moneypunct$bo$i0$_@id, @std@_moneypunct$bo$i0$_@intl, @std@_moneypunct$bo$i1$_@$bctr$qrx12std@_Locinfoui, @std@_moneypunct$bo$i1$_@$bctr$qui, @std@_moneypunct$bo$i1$_@$bdtr$qv, @std@_moneypunct$bo$i1$_@_Getcat$qppx16std@locale@facet, @std@_moneypunct$bo$i1$_@id, @std@_moneypunct$bo$i1$_@intl, @std@_moneypunct$co$i0$_@$bctr$qrx12std@_Locinfoui, @std@_moneypunct$co$i0$_@$bctr$qui, @std@_moneypunct$co$i0$_@$bdtr$qv, @std@_moneypunct$co$i0$_@_Getcat$qppx16std@locale@facet, @std@_moneypunct$co$i0$_@id, @std@_moneypunct$co$i0$_@intl, @std@_moneypunct$co$i1$_@$bctr$qrx12std@_Locinfoui, @std@_moneypunct$co$i1$_@$bctr$qui, @std@_moneypunct$co$i1$_@$bdtr$qv, @std@_moneypunct$co$i1$_@_Getcat$qppx16std@locale@facet, @std@_moneypunct$co$i1$_@id, @std@_moneypunct$co$i1$_@intl, @std@_num_get$b48std@_istreambuf_iterator$b19std@_char_traits$b___@id, @std@_num_get$c48std@_istreambuf_iterator$c19std@_char_traits$c___@id, @std@_num_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@id, @std@_num_put$c48std@_ostreambuf_iterator$c19std@_char_traits$c___@id, @std@_numeric_limits$b_@digits, @std@_numeric_limits$b_@digits10, @std@_numeric_limits$b_@is_signed, @std@_numeric_limits$c_@digits, @std@_numeric_limits$c_@digits10, @std@_numeric_limits$c_@is_signed, @std@_numeric_limits$d_@digits, @std@_numeric_limits$d_@digits10, @std@_numeric_limits$d_@max_exponent, @std@_numeric_limits$d_@max_exponent10, @std@_numeric_limits$d_@min_exponent, @std@_numeric_limits$d_@min_exponent10, @std@_numeric_limits$f_@digits, @std@_numeric_limits$f_@digits10, @std@_numeric_limits$f_@max_exponent, @std@_numeric_limits$f_@max_exponent10, @std@_numeric_limits$f_@min_exponent, @std@_numeric_limits$f_@min_exponent10, @std@_numeric_limits$g_@digits, @std@_numeric_limits$g_@digits10, @std@_numeric_limits$g_@max_exponent, @std@_numeric_limits$g_@max_exponent10, @std@_numeric_limits$g_@min_exponent, @std@_numeric_limits$g_@min_exponent10, @std@_numeric_limits$i_@digits, @std@_numeric_limits$i_@digits10, @std@_numeric_limits$i_@is_signed, @std@_numeric_limits$j_@digits, @std@_numeric_limits$j_@digits10, @std@_numeric_limits$j_@is_signed, @std@_numeric_limits$l_@digits, @std@_numeric_limits$l_@digits10, @std@_numeric_limits$l_@is_signed, @std@_numeric_limits$o_@digits, @std@_numeric_limits$o_@digits10, @std@_numeric_limits$o_@is_modulo, @std@_numeric_limits$o_@is_signed, @std@_numeric_limits$s_@digits, @std@_numeric_limits$s_@digits10, @std@_numeric_limits$s_@is_signed, @std@_numeric_limits$uc_@digits, @std@_numeric_limits$uc_@digits10, @std@_numeric_limits$uc_@is_signed, @std@_numeric_limits$ui_@digits, @std@_numeric_limits$ui_@digits10, @std@_numeric_limits$ui_@is_signed, @std@_numeric_limits$uj_@digits, @std@_numeric_limits$uj_@digits10, @std@_numeric_limits$uj_@is_signed, @std@_numeric_limits$ul_@digits, @std@_numeric_limits$ul_@digits10, @std@_numeric_limits$ul_@is_signed, @std@_numeric_limits$us_@digits, @std@_numeric_limits$us_@digits10, @std@_numeric_limits$us_@is_signed, @std@_numeric_limits$zc_@digits, @std@_numeric_limits$zc_@digits10, @std@_numeric_limits$zc_@is_signed, @std@_numpunct$b_@id, @std@_numpunct$c_@id, @std@_time_get$b48std@_istreambuf_iterator$b19std@_char_traits$b___@id, @std@_time_get$c48std@_istreambuf_iterator$c19std@_char_traits$c___@id, @std@_time_put$c48std@_ostreambuf_iterator$c19std@_char_traits$c___@id, @std@_BADOFF, @std@_Debug_message$qpxct1, @std@_Fiopen$qpxb23std@__Iosb$i_@_Openmodei, @std@_Fiopen$qpxc23std@__Iosb$i_@_Openmodei, @std@_Fpz, @std@_Ios_init, @std@_Locinfo@$bctr$qipxc, @std@_Locinfo@$bctr$qpxc, @std@_Locinfo@$bdtr$qv, @std@_Locinfo@_Addcats$qipxc, @std@_Locinfo@_Getcoll$xqv, @std@_Locinfo@_Getctype$xqv, @std@_Locinfo@_Getcvt$xqv, @std@_Locinfo@_Getname$xqv, @std@_Locinfo@_Gettnames$xqv, @std@_Lockit@$bctr$qi, @std@_Lockit@$bdtr$qv, @std@_New_hand, @std@_Nomemory$qv, @std@_Num_base@digits, @std@_Num_base@digits10, @std@_Num_base@has_denorm, @std@_Num_base@has_denorm_loss, @std@_Num_base@has_infinity, @std@_Num_base@has_quiet_NaN, @std@_Num_base@has_signaling_NaN, @std@_Num_base@is_bounded, @std@_Num_base@is_exact, @std@_Num_base@is_iec559, @std@_Num_base@is_integer, @std@_Num_base@is_modulo, @std@_Num_base@is_signed, @std@_Num_base@is_specialized, @std@_Num_base@max_exponent, @std@_Num_base@max_exponent10, @std@_Num_base@min_exponent, @std@_Num_base@min_exponent10, @std@_Num_base@radix, @std@_Num_base@round_style, @std@_Num_base@tinyness_before, @std@_Num_base@traps, @std@_Num_float_base@has_denorm, @std@_Num_float_base@has_denorm_loss, @std@_Num_float_base@has_infinity, @std@_Num_float_base@has_quiet_NaN, @std@_Num_float_base@has_signaling_NaN, @std@_Num_float_base@is_bounded, @std@_Num_float_base@is_exact, @std@_Num_float_base@is_iec559, @std@_Num_float_base@is_integer, @std@_Num_float_base@is_modulo, @std@_Num_float_base@is_signed, @std@_Num_float_base@is_specialized, @std@_Num_float_base@radix, @std@_Num_float_base@round_style, @std@_Num_float_base@tinyness_before, @std@_Num_float_base@traps, @std@_Num_int_base@is_bounded, @std@_Num_int_base@is_exact, @std@_Num_int_base@is_integer, @std@_Num_int_base@is_modulo, @std@_Num_int_base@is_specialized, @std@_Num_int_base@radix, @std@_Raise_handler, @std@_String_base@_Xlen$xqv, @std@_String_base@_Xran$xqv, @std@_Throw$qrx13std@exception, @std@_Winit@$bctr$qv, @std@_Winit@$bdtr$qv, @std@_Winit@_Init_cnt, @std@_Wios_init, @std@cerr, @std@cin, @std@clog, @std@codecvt_base@$bctr$qui, @std@codecvt_base@$bdtr$qv, @std@codecvt_base@always_noconv$xqv, @std@codecvt_base@do_always_noconv$xqv, @std@codecvt_base@do_encoding$xqv, @std@codecvt_base@do_max_length$xqv, @std@cout, @std@ctype_base@$bctr$qui, @std@ctype_base@$bdtr$qv, @std@exception@$bctr$qv, @std@exception@$bdtr$qv, @std@exception@_Set_raise_handler$qpqrx13std@exception$v, @std@exception@what$xqv, @std@ios_base@$bctr$qv, @std@ios_base@$bdtr$qv, @std@ios_base@Init@$bctr$qv, @std@ios_base@Init@$bdtr$qv, @std@ios_base@Init@_Init_cnt, @std@ios_base@_Addstd$qv, @std@ios_base@_Callfns$q18std@ios_base@event, @std@ios_base@_Findarr$qi, @std@ios_base@_Index, @std@ios_base@_Init$qv, @std@ios_base@_Sync, @std@ios_base@_Tidy$qv, @std@ios_base@clear$q22std@__Iosb$i_@_Iostateo, @std@ios_base@copyfmt$qrx12std@ios_base, @std@ios_base@getloc$xqv, @std@ios_base@imbue$qrx10std@locale, @std@ios_base@register_callback$qpq18std@ios_base@eventr12std@ios_basei$vi, @std@istrstream@$bdtr$qv, @std@locale@$basg$qrx10std@locale, @std@locale@$bctr$q18std@_Uninitialized, @std@locale@$bctr$qp18std@locale@_Locimp, @std@locale@$bctr$qpxci, @std@locale@$bctr$qrx10std@locale, @std@locale@$bctr$qrx10std@localepxci, @std@locale@$bctr$qrx10std@localet1i, @std@locale@$bctr$qv, @std@locale@$bdtr$qv, @std@locale@$beql$xqrx10std@locale, @std@locale@_Addfac$qp16std@locale@facetuiui, @std@locale@_Getfacet$xqui, @std@locale@_Init$qv, @std@locale@_Locimp@$bctr$qo, @std@locale@_Locimp@$bctr$qrx18std@locale@_Locimp, @std@locale@_Locimp@$bdtr$qv, @std@locale@_Locimp@_Addfac$qp16std@locale@facetui, @std@locale@classic$qv, @std@locale@empty$qv, @std@locale@facet@$bctr$qui, @std@locale@facet@$bdtr$qv, @std@locale@facet@_Decref$qv, @std@locale@facet@_Incref$qv, @std@locale@facet@_Register$qv, @std@locale@global$qrx10std@locale, @std@locale@id@$bctr$qui, @std@locale@id@$oui$qv, @std@locale@id@_Id_cnt, @std@locale@name$xqv, @std@messages_base@$bctr$qui, @std@money_base@$bctr$qui, @std@nothrow, @std@ostrstream@$bctr$qpci23std@__Iosb$i_@_Openmode, @std@ostrstream@$bdtr$qv, @std@resetiosflags$q23std@__Iosb$i_@_Fmtflags, @std@set_new_handler$qpqv$v, @std@set_terminate$qpqv$v, @std@set_unexpected$qpqv$v, @std@setbase$qi, @std@setiosflags$q23std@__Iosb$i_@_Fmtflags, @std@setprecision$qi, @std@setw$qi, @std@strstream@$bctr$qpci23std@__Iosb$i_@_Openmode, @std@strstream@$bdtr$qv, @std@strstreambuf@$bdtr$qv, @std@strstreambuf@_Init$qipct2i, @std@strstreambuf@_Tidy$qv, @std@strstreambuf@freeze$qo, @std@strstreambuf@overflow$qi, @std@strstreambuf@pbackfail$qi, @std@strstreambuf@seekoff$ql22std@__Iosb$i_@_Seekdir23std@__Iosb$i_@_Openmode, @std@strstreambuf@seekpos$q12std@_fpos$i_23std@__Iosb$i_@_Openmode, @std@strstreambuf@underflow$qv, @std@terminate$qv, @std@time_base@$bctr$qui, @std@type_info@$basg$qrx13std@type_info, @std@type_info@$bctr$qrx13std@type_info, @std@type_info@$bdtr$qv, @std@type_info@$beql$xqrx13std@type_info, @std@type_info@$bneq$xqrx13std@type_info, @std@type_info@_first_base$xqr24std@type_info@_base_info, @std@type_info@_first_vbase$xqr25std@type_info@_vbase_info, @std@type_info@_guid$xqv, @std@type_info@_internal_rtti_cast$xqpvpx13std@type_info, @std@type_info@_next_base$xqr24std@type_info@_base_info, @std@type_info@before$xqrx13std@type_info, @std@type_info@name$xqv, @std@uncaught_exception$qv, @std@unexpected$qv, @std@wcerr, @std@wcin, @std@wclog, @std@wcout, @xmsg@$basg$qrx4xmsg, @xmsg@$bctr$qrx4xmsg, @xmsg@$bctr$qrx60std@_basic_string$c19std@_char_traits$c_17std@_allocator$c__, @xmsg@$bdtr$qv, @xmsg@raise$qv, @xmsg@what$xqv, __8087, __Atan, __Atexit, __Cosh, __CurrExcContext, __Denorm, __Dint, __Dnorm, __Dscale, __Dtest, __Dunscale, __Eps, __ErrorExit, __ErrorMessage, __Exp, __FAtan, __FCosh, __FDenorm, __FDint, __FDnorm, __FDscale, __FDtest, __FDunscale, __FEps, __FExp, __FInf, __FLog, __FNan, __FRteps, __FSin, __FSinh, __FSnan, __FUnloadDelayLoadedDLL, __FXbig, __FZero, __Feraise, __Getctyptab, __Global_unwind, __Hugeval, __Inf, __LCosh, __LDenorm, __LDnorm, __LDscale, __LDtest, __LDunscale, __LEps, __LExp, __LInf, __LNan, __LPoly, __LRteps, __LSin, __LSinh, __LSnan, __LXbig, __LZero, __Local_unwind, __Locksyslock, __Mtxdst, __Mtxinit, __Mtxlock, __Mtxunlock, __Nan, __Once, __Return_unwind, __Rteps, __SetUserHandler, __Sin, __Sinh, __Snan, __Stod, __Stodx, __Stof, __Stoflt, __Stofx, __Stold, __Stoldx, __Stoll, __Stollx, __Stolx, __Stopfx, __Stoull, __Stoullx, __Stoulx, __Stoxflt, __Unlocksyslock, __Xbig, __Zero, ___CPPdebugHook, ___CRTL_MEM_GetBorMemPtrs, ___CRTL_MEM_UseBorMM, ___CRTL_TLS_Alloc, ___CRTL_TLS_ExitThread, ___CRTL_TLS_Free, ___CRTL_TLS_GetInfo, ___CRTL_TLS_GetValue, ___CRTL_TLS_InitThread, ___CRTL_TLS_SetValue, ___CRTL_VCL_Thread_Hook, ___CRTL_VCL_Thread_Unhook, ___ErrorMessage, ____ExceptionHandler, ____wopen, ___access, ___alloca_helper, ___assertfail, ___bcd_log10, ___bcd_pow10, ___bcd_tobinary, ___bcd_todecimal, ___close, ___cputn, ___debuggerDisableTerminateCallback, ___doserrno, ___eof, ___errno, ___flush_win95_keyup_events, ___ftruncate, ___getStream, ___getline, ___ieee_64_n_inf, ___ieee_64_n_nanq, ___ieee_64_n_nans, ___ieee_64_n_zero, ___ieee_64_p_inf, ___ieee_64_p_nanq, ___ieee_64_p_nans, ___ieee_64_p_zero, ___isatty, ___isatty_osfhandle, ___isctype, ___iswctype, ___locale, ___lseek, ___matherr, ___matherrl, ___mb_cur_max, ___movecursor, ___moveline, ___open, ___pfnDliFailureHook, ___pfnDliNotifyHook, ___putline, ___raiseDebuggerException, ___read, ___scroll, ___terminatePTR, ___threadid, ___unexpectdPTR, ___validatexy, ___wcreat, ___wcserror, ___wfindfirst, ___wfindnext, ___wopen, ___write, __adopt_thread, __alloca, __argc, __argv, __argv_default_expand, __assert, __atoi64, __atold, __beginthread, __beginthreadNT, __beginthreadex, __c_exit, __cexit, __chartype, __chdrive, __chgsign, __chgsignl, __chmod, __clear87, __close, __cmdline_escapes, __commit, __control87, __copysign, __copysignl, __creat, __crotl, __crotr, __crtinit, __cwait, __daylight, __default87, __delayLoadHelper, __directvideo, __dos_close, __dos_creat, __dos_creatnew, __dos_findfirst, __dos_findnext, __dos_getdate, __dos_getdiskfree, __dos_getdrive, __dos_getfileattr, __dos_getftime, __dos_gettime, __dos_open, __dos_read, __dos_setdate, __dos_setdrive, __dos_setfileattr, __dos_setftime, __dos_settime, __dos_write, __ecvt, __endthread, __endthreadex, __environ, __envsize, __exit, __exitargv, __exitargv_ptr, __expand, __expand_wild, __fcloseall, __fcvt, __fdopen, __fgetc, __fgetchar, __fgetwc, __fgetwchar, __fileno, __findclose, __findfirst, __findfirsti64, __findnext, __findnexti64, __finite, __finitel, __flushall, __flushout, __fnsplit, __fpclass, __fpclassl, __fpreset, __fputc, __fputchar, __fputwc, __fputwchar, __free_heaps, __fsopen, __ftol, __ftoul, __ftruncate, __fullpath, __futime, __gcvt, __get_heap_redirector_info, __get_osfhandle, __getdcwd, __getdrive, __getdrives, __getmbcp, __getsystime, __getw, __getws, __handle_exitargv, __handle_setargv, __handle_wexitargv, __handle_wsetargv, __heapchk, __heapmin, __heapset, __heapwalk, __huge_dble, __huge_flt, __huge_ldble, __i64toa, __i64tow, __indefinite, __init_handles, __ismbbalnum, __ismbbalpha, __ismbbgraph, __ismbbkalpha, __ismbbkana, __ismbbkpunct, __ismbblead, __ismbbprint, __ismbbpunct, __ismbbtrail, __ismbcalnum, __ismbcalpha, __ismbcdigit, __ismbcgraph, __ismbchira, __ismbckata, __ismbcl0, __ismbcl1, __ismbcl2, __ismbclegal, __ismbclower, __ismbcprint, __ismbcpunct, __ismbcspace, __ismbcsymbol, __ismbcupper, __ismbslead, __ismbstrail, __isnan, __isnanl, __itow, __llocaleconv, __logb, __logbl, __lower, __lrand, __lrotl, __lrotr, __lsetlocale, __lstrcoll, __lstricoll, __lstrlwr, __lstrncoll, __lstrnicoll, __lstrupr, __lstrxfrm, __ltoa, __ltolower, __ltoupper, __ltow, __ltowlower, __ltowupper, __lwcscoll, __lwcsicoll, __lwcslwr, __lwcsncoll, __lwcsnicoll, __lwcsupr, __lwcsxfrm, __lwsetlocale, __makepath, __matherr, __matherrl, __max_dble, __max_flt, __max_ldble, __mbbtombc, __mbbtype, __mbccmp, __mbccpy, __mbcjistojms, __mbcjmstojis, __mbclen, __mbctohira, __mbctokata, __mbctolower, __mbctombb, __mbctoupper, __mbctype, __mbsbtype, __mbscat, __mbschr, __mbscmp, __mbscoll, __mbscpy, __mbscspn, __mbsdec, __mbsdup, __mbsicmp, __mbsicoll, __mbsinc, __mbslen, __mbslwr, __mbsnbcat, __mbsnbcmp, __mbsnbcnt, __mbsnbcoll, __mbsnbcpy, __mbsnbicmp, __mbsnbicoll, __mbsnbset, __mbsncat, __mbsnccnt, __mbsncmp, __mbsncoll, __mbsncpy, __mbsnextc, __mbsnicmp, __mbsnicoll, __mbsninc, __mbsnset, __mbspbrk, __mbsrchr, __mbsrev, __mbsset, __mbsspn, __mbsspnp, __mbsstr, __mbstok, __mbsupr, __messagefile, __messagefunc, __mkdir, __mktemp, __msize, __nextafter, __nextafterl, __nfile, __open, __open_osfhandle, __oscmd, __osenv, __osmajor, __osminor, __osmode, __ostype, __osversion, __pclose, __pcre_compile, __pcre_exec, __pcre_maketables, __pcre_regcomp, __pcre_regerror, __pcre_regexec, __pcre_regfree, __pcre_study, __pcre_version, __pipe, __popen, __putw, __putws, __read, __rmdir, __rmtmp, __rotl, __rotr, __rtl_chmod, __rtl_close, __rtl_creat, __rtl_heapwalk, __rtl_memset, __rtl_memset_, __rtl_mstick, __rtl_open, __rtl_read, __rtl_setUnmangleMode, __rtl_strcmp, __rtl_strcpy, __rtl_unmangle, __rtl_ustick, __rtl_write, __scalb, __scalbl, __searchenv, __searchstr, __set_matherr_handler, __set_matherrl_handler, __setargv, __setargv_ptr, __setcursortype, __seterrormode, __setmbcp, __setsystime, __sleep, __snprintf, __snwprintf, __sopen, __splitpath, __startup, __startupd, __stat, __stati64, __status87, __stkbase, __stkchk, __stpcpy, __strdate, __streams, __strerror, __stricoll, __strncoll, __strnicoll, __strtime, __strtold, __sys_errlist, __sys_nerr, __tccmp, __tccpy, __tclen, __tcschr, __tcsclen, __tcscmp, __tcscoll, __tcscspn, __tcsdec, __tcsicmp, __tcsicoll, __tcsinc, __tcslwr, __tcsnbcnt, __tcsncat, __tcsnccat, __tcsnccmp, __tcsnccnt, __tcsnccoll, __tcsnccpy, __tcsncicmp, __tcsncicoll, __tcsncmp, __tcsncoll, __tcsncpy, __tcsncset, __tcsnextc, __tcsnicmp, __tcsnicoll, __tcsninc, __tcsnset, __tcspbrk, __tcsrchr, __tcsrev, __tcsset, __tcsspn, __tcsspnp, __tcsstr, __tcstok, __tcsupr, __tempnam, __timezone, __tiny_ldble, __tzname, __tzset, __ui64toa, __ui64tow, __ultow, __unadopt_thread, __unlink, __unsetuserhandler, __upper, __utime, __version, __vsnprintf, __vsnwprintf, __waccess, __wargv, __wargv_default_expand, __wasctime, __wchdir, __wchmod, __wcreat, __wcsdup, __wcserror, __wcsicmp, __wcsicoll, __wcslwr, __wcsncoll, __wcsnicmp, __wcsnicoll, __wcsnset, __wcspcpy, __wcsrev, __wcsset, __wcstold, __wcsupr, __wctime, __wenviron, __wenvsize, __wexecl, __wexecle, __wexeclp, __wexeclpe, __wexecv, __wexecve, __wexecvp, __wexecvpe, __wexitargv, __wexitargv_ptr, __wexpand_wild, __wfdopen, __wfindclose, __wfindfirst, __wfindfirsti64, __wfindnext, __wfindnexti64, __wfnmerge, __wfnsplit, __wfopen, __wfreopen, __wfsopen, __wfullpath, __wgetcurdir, __wgetcwd, __wgetdcwd, __wgetenv, __wherex, __wherey, __wmakepath, __wmemchr, __wmemcpy, __wmemset, __wmkdir, __wmktemp, __wopen, __woscmd, __wosenv, __wperror, __wpopen, __wputenv, __wremove, __wrename, __write, __wrmdir, __wrtl_chmod, __wrtl_creat, __wrtl_open, __wscroll, __wsearchenv, __wsearchstr, __wsetargv, __wsetargv_ptr, __wsetlocale, __wsopen, __wspawnl, __wspawnle, __wspawnlp, __wspawnlpe, __wspawnv, __wspawnve, __wspawnvp, __wspawnvpe, __wsplitpath, __wstartup, __wstartupd, __wstat, __wstati64, __wstrdate, __wstrtime, __wsystem, __wtempnam, __wtmpnam, __wtof, __wtoi, __wtoi64, __wtol, __wtold, __wtzname, __wtzset, __wunlink, __wutime, _abort, _abs, _access, _acos, _acosl, _alloca, _asctime, _asin, _asinl, _atan, _atan2, _atan2f, _atan2l, _atanl, _atexit, _atof, _atoi, _atol, _basename, _bsearch, _btowc, _calloc, _ceil, _ceill, _cgets, _chdir, _chmod, _chsize, _clearerr, _clock, _close, _closedir, _clreol, _clrscr, _cos, _cosf, _cosh, _coshl, _cosl, _cprintf, _cputs, _creat, _creatnew, _creattemp, _cscanf, _ctime, _cvprintf, _cvscanf, _cwait, _delline, _difftime, _div, _dostounix, _dup, _dup2, _ecvt, _eof, _execl, _execle, _execlp, _execlpe, _execv, _execve, _execvp, _execvpe, _exit, _exp, _expf, _expl, _fabs, _fabsl, _fclose, _fcloseall, _fcvt, _fdopen, _feof, _ferror, _fflush, _fgetc, _fgetchar, _fgetpos, _fgets, _fgetwc, _fgetws, _filelength, _fileno, _findclose, _findfirst, _findnext, _floor, _floorl, _flushall, _fmod, _fmodl, _fnmerge, _fnsplit, _fopen, _fprintf, _fputc, _fputchar, _fputs, _fputwc, _fputws, _fread, _free, _freopen, _frexp, _frexpl, _fscanf, _fseek, _fsetpos, _fstat, _ftell, _ftime, _fwprintf, _fwrite, _fwscanf, _gcvt, _getc, _getch, _getchar, _getche, _getcurdir, _getcwd, _getdate, _getdfree, _getdisk, _getenv, _getftime, _getpass, _getpid, _gets, _gettext, _gettextinfo, _gettime, _getw, _getwc, _getwchar, _gmtime, _gotoxy, _heapcheck, _heapcheckfree, _heapchecknode, _heapfillfree, _heapwalk, _highvideo, _hypot, _hypotl, _insline, _isalnum, _isalpha, _isascii, _isatty, _iscntrl, _isdigit, _isgraph, _islower, _isprint, _ispunct, _isspace, _isupper, _iswalnum, _iswalpha, _iswascii, _iswcntrl, _iswdigit, _iswgraph, _iswlower, _iswprint, _iswpunct, _iswspace, _iswupper, _iswxdigit, _isxdigit, _itoa, _kbhit, _labs, _ldexp, _ldexpf, _ldexpl, _ldiv, _lfind, _localeconv, _localtime, _lock, _locking, _log, _log10, _log10l, _logf, _logl, _longjmp, _lowvideo, _lsearch, _lseek, _ltoa, _malloc, _mblen, _mbrtowc, _mbstowcs, _mbtowc, _memccpy, _memchr, _memcmp, _memcpy, _memicmp, _memmove, _memset, _mkdir, _mktemp, _mktime, _modf, _modfl, _movetext, _normvideo, _open, _opendir, _pcre_compile, _pcre_exec, _pcre_free, _pcre_info, _pcre_maketables, _pcre_malloc, _pcre_study, _pcre_version, _perror, _poly, _polyl, _pow, _pow10, _pow10l, _powf, _powl, _printf, _putc, _putch, _putchar, _putenv, _puts, _puttext, _putw, _putwc, _putwchar, _qsort, _raise, _rand, _read, _readdir, _realloc, _regcomp, _regerror, _regexec, _regfree, _remove, _rename, _rewind, _rewinddir, _rmdir, _rmtmp, _scanf, _searchpath, _setbuf, _setdate, _setdisk, _setftime, _setjmp, _setlocale, _setmode, _settime, _setvbuf, _signal, _sin, _sinf, _sinh, _sinhl, _sinl, _sleep, _snprintf, _snwprintf, _sopen, _spawnl, _spawnle, _spawnlp, _spawnlpe, _spawnv, _spawnve, _spawnvp, _spawnvpe, _sprintf, _sqrt, _sqrtf, _sqrtl, _srand, _sscanf, _stackavail, _stat, _stime, _stpcpy, _strcat, _strchr, _strcmp, _strcoll, _strcpy, _strcspn, _strdup, _strerror, _strftime, _stricmp, _strirshr, _strishr, _strlen, _strlwr, _strncat, _strncmp, _strncpy, _strnicmp, _strnset, _strpbrk, _strptime, _strrchr, _strrev, _strrshr, _strset, _strshr, _strspn, _strstr, _strtod, _strtok, _strtol, _strtoul, _strupr, _strxfrm, _swab, _swprintf, _swscanf, _system, _tan, _tanf, _tanh, _tanhl, _tanl, _tell, _tempnam, _textattr, _textbackground, _textcolor, _textmode, _time, _tmpfile, _tmpnam, _tolower, _toupper, _towlower, _towupper, _tzset, _ultoa, _umask, _ungetc, _ungetch, _ungetwc, _unixtodos, _unlink, _unlock, _utime, _vfprintf, _vfscanf, _vfwprintf, _vfwscanf, _vprintf, _vscanf, _vsnprintf, _vsnwprintf, _vsprintf, _vsscanf, _vswprintf, _vswscanf, _vwprintf, _vwscanf, _wait, _wclosedir, _wcrtomb, _wcscat, _wcschr, _wcscmp, _wcscoll, _wcscpy, _wcscspn, _wcsftime, _wcslen, _wcsncat, _wcsncmp, _wcsncpy, _wcspbrk, _wcsrchr, _wcsspn, _wcsstr, _wcstod, _wcstok, _wcstol, _wcstombs, _wcstoul, _wcsxfrm, _wctob, _wctomb, _wherex, _wherey, _window, _wmemcmp, _wmemmove, _wopendir, _wprintf, _wreaddir, _wrewinddir, _write, _wscanf, _wsearchpath
0
Réponse 32 / 43
evitadas
 
VOILA LA PREMIERE PARTIE DU RAPPORT DU FICHIER C:\WINDOWS\system32\cc3270mt.dll

Fichier cc3270mt.dll_ reçu le 2008.10.28 21:47:38 (CET)
Situation actuelle: en cours de chargement ... mis en file d'attente en attente en cours d'analyse terminé NON TROUVE ARRETE

Résultat: 0/36 (0%)
en train de charger les informations du serveur...
Votre fichier est dans la file d'attente, en position: 45.
L'heure estimée de démarrage est entre 3 et 5 minutes.
Ne fermez pas la fenêtre avant la fin de l'analyse.
L'analyseur qui traitait votre fichier est actuellement stoppé, nous allons attendre quelques secondes pour tenter de récupérer vos résultats.
Si vous attendez depuis plus de cinq minutes, vous devez renvoyer votre fichier.
Votre fichier est, en ce moment, en cours d'analyse par VirusTotal,
les résultats seront affichés au fur et à mesure de leur génération.
Formaté Impression des résultats
Votre fichier a expiré ou n'existe pas.
Le service est en ce moment, stoppé, votre fichier attend d'être analysé (position : ) depuis une durée indéfinie.

Vous pouvez attendre une réponse du Web (re-chargement automatique) ou taper votre e-mail dans le formulaire ci-dessous et cliquer "Demande" pour que le système vous envoie une notification quand l'analyse sera terminée.
Email:

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.10.28.3 2008.10.28 -
AntiVir 7.9.0.10 2008.10.28 -
Authentium 5.1.0.4 2008.10.28 -
Avast 4.8.1248.0 2008.10.28 -
AVG 8.0.0.161 2008.10.28 -
BitDefender 7.2 2008.10.28 -
CAT-QuickHeal 9.50 2008.10.28 -
ClamAV 0.93.1 2008.10.28 -
DrWeb 4.44.0.09170 2008.10.28 -
eSafe 7.0.17.0 2008.10.28 -
eTrust-Vet 31.6.6177 2008.10.28 -
Ewido 4.0 2008.10.28 -
F-Prot 4.4.4.56 2008.10.28 -
F-Secure 8.0.14332.0 2008.10.28 -
Fortinet 3.117.0.0 2008.10.28 -
GData 19 2008.10.28 -
Ikarus T3.1.1.44.0 2008.10.28 -
K7AntiVirus 7.10.510 2008.10.28 -
Kaspersky 7.0.0.125 2008.10.28 -
McAfee 5417 2008.10.28 -
Microsoft 1.4005 2008.10.28 -
NOD32 3563 2008.10.28 -
Norman 5.80.02 2008.10.28 -
Panda 9.0.0.4 2008.10.28 -
PCTools 4.4.2.0 2008.10.28 -
Prevx1 V2 2008.10.28 -
Rising 21.01.12.00 2008.10.28 -
SecureWeb-Gateway 6.7.6 2008.10.28 -
Sophos 4.35.0 2008.10.28 -
Sunbelt 3.1.1762.1 2008.10.28 -
Symantec 10 2008.10.28 -
TheHacker 6.3.1.1.132 2008.10.28 -
TrendMicro 8.700.0.1004 2008.10.28 -
VBA32 3.12.8.8 2008.10.28 -
ViRobot 2008.10.28.1441 2008.10.28 -
VirusBuster 4.5.11.0 2008.10.28 -
Information additionnelle
File size: 658432 bytes
MD5...: 155779c88df4e35695efb19e0d7a2366
SHA1..: 0bbebf5d2bb8196241ea84e5cdba0f5574bd7838
SHA256: 9ca024184070e1cab75e242e4ce037e1bc7953a0b4e0bc3f861edce9b805619c
SHA512: 59fae880d8ad3b6f9101ecac33e8014e50a059eee3889008c157d3b45dbf0dc6
0ad00f21df13ddc0f7e20b1b8a315d13b97b2ea0b77b79a1a1aaa57534cbe239
PEiD..: -
TrID..: File type identification
DOS Executable Borland C++ (39.2%)
Win32 Executable Generic (25.7%)
Win32 Dynamic Link Library (generic) (22.8%)
Generic Win/DOS Executable (6.0%)
DOS Executable Generic (6.0%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x3270121c
timedatestamp.....: 0x4418859e (Wed Mar 15 21:22:38 2006)
machinetype.......: 0x14c (I386)

( 7 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x7f000 0x7f000 6.57 4a3ce655178883c036b1649b7a354de9
.data 0x80000 0x14000 0xec00 4.78 d1fc99f306bae1b310637d44d0598aea
.tls 0x94000 0x3000 0x2400 0.00 13a95890b5f0947d6f058ca9c30a3e01
.idata 0x97000 0x2000 0x1400 5.08 44623cb20847af295a1a3cc0b1a332b0
.edata 0x99000 0xa000 0x9400 5.95 11def70770fddd8950d6c62413684355
.rsrc 0xa3000 0x1000 0x1000 3.31 fb9d72f082e1b37db1c2eef430a999b7
.reloc 0xa4000 0x5000 0x4e00 6.66 346b429ce1d3844691c3273b7cd823de

( 4 imports )
> ADVAPI32.DLL: RegCloseKey, RegOpenKeyExA, RegQueryValueExA
> KERNEL32.DLL: Beep, CloseHandle, CompareStringA, CompareStringW, CreateDirectoryA, CreateDirectoryW, CreateFileA, CreateFileW, CreatePipe, CreateProcessA, CreateProcessW, CreateThread, DeleteCriticalSection, DeleteFileA, DeleteFileW, DosDateTimeToFileTime, DuplicateHandle, EnterCriticalSection, EnumCalendarInfoA, ExitProcess, ExitThread, FileTimeToDosDateTime, FileTimeToLocalFileTime, FileTimeToSystemTime, FillConsoleOutputAttribute, FillConsoleOutputCharacterA, FindClose, FindFirstFileA, FindFirstFileW, FindNextFileA, FindNextFileW, FlushConsoleInputBuffer, FlushFileBuffers, FreeLibrary, GetACP, GetCPInfo, GetCommandLineA, GetCommandLineW, GetConsoleMode, GetConsoleScreenBufferInfo, GetCurrentDirectoryA, GetCurrentDirectoryW, GetCurrentProcess, GetCurrentProcessId, GetCurrentThreadId, GetDateFormatA, GetDiskFreeSpaceA, GetDriveTypeA, GetDriveTypeW, GetEnvironmentStrings, GetEnvironmentStringsW, GetEnvironmentVariableA, GetExitCodeProcess, GetFileAttributesA, GetFileAttributesW, GetFileSize, GetFileTime, GetFileType, GetFullPathNameA, GetFullPathNameW, GetLargestConsoleWindowSize, GetLastError, GetLocalTime, GetLocaleInfoA, GetLogicalDrives, GetModuleFileNameA, GetModuleFileNameW, GetModuleHandleA, GetModuleHandleW, GetNumberOfConsoleInputEvents, GetOEMCP, GetProcAddress, GetProcessHeap, GetShortPathNameA, GetShortPathNameW, GetStartupInfoA, GetStartupInfoW, GetStdHandle, GetStringTypeA, GetStringTypeExA, GetStringTypeW, GetSystemDefaultLangID, GetSystemDirectoryA, GetSystemTimeAsFileTime, GetThreadLocale, GetTickCount, GetTimeZoneInformation, GetUserDefaultLCID, GetVersion, GetVersionExA, GetVolumeInformationA, GetVolumeInformationW, GlobalAlloc, GlobalFree, GlobalLock, GlobalMemoryStatus, GlobalReAlloc, GlobalSize, GlobalUnlock, HeapAlloc, HeapFree, HeapReAlloc, InitializeCriticalSection, InterlockedDecrement, InterlockedExchange, InterlockedIncrement, IsBadReadPtr, IsValidLocale, LCMapStringA, LCMapStringW, LeaveCriticalSection, LoadLibraryA, LoadLibraryExA, LoadLibraryW, LocalAlloc, LocalFileTimeToFileTime, LocalFree, LockFile, MoveFileA, MoveFileW, MultiByteToWideChar, PeekConsoleInputA, RaiseException, ReadConsoleInputA, ReadConsoleOutputA, ReadFile, RemoveDirectoryA, RemoveDirectoryW, RtlUnwind, ScrollConsoleScreenBufferA, SetConsoleCtrlHandler, SetConsoleCursorInfo, SetConsoleCursorPosition, SetConsoleMode, SetConsoleScreenBufferSize, SetConsoleWindowInfo, SetCurrentDirectoryA, SetCurrentDirectoryW, SetEndOfFile, SetEnvironmentVariableA, SetEnvironmentVariableW, SetErrorMode, SetFileAttributesA, SetFileAttributesW, SetFilePointer, SetFileTime, SetHandleCount, SetLastError, SetLocalTime, SetStdHandle, SetThreadLocale, Sleep, SystemTimeToFileTime, TlsAlloc, TlsFree, TlsGetValue, TlsSetValue, UnhandledExceptionFilter, UnlockFile, VirtualAlloc, VirtualFree, VirtualQuery, WaitForMultipleObjects, WaitForSingleObject, WideCharToMultiByte, WriteConsoleInputA, WriteConsoleOutputA, WriteFile, lstrcmpiA, lstrcpynA, lstrlenA
> USER32.DLL: CharLowerW, CharNextA, CharUpperW, EnumThreadWindows, GetKeyboardType, LoadStringA, MessageBoxA, wsprintfA, wsprintfW, GetSystemMetrics
> OLEAUT32.DLL: -
0
Réponse 33 / 43
evitadas
 
et voila la deuxieme partie du fichier C:\WINDOWS\system32\cc3270mt.dll

1433 exports )
@$bdele$qpv, @$bdele$qpvrx13std@nothrow_t, @$bdele$qpvt1, @$bdla$qpv, @$bdla$qpvrx13std@nothrow_t, @$bdla$qpvt1, @$blsh$qr42std@_basic_ostream$c19std@_char_traits$c__rx3bcd, @$bnew$qui, @$bnew$quirx13std@nothrow_t, @$bnwa$qui, @$bnwa$quirx13std@nothrow_t, @$brsh$qr42std@_basic_istream$c19std@_char_traits$c__r3bcd, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@$bctr$qrx12std@_Locinfoui, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@$bctr$qui, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@$bdtr$qv, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@_Getcat$qppx16std@locale@facet, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@do_put$xq48std@_ostreambuf_iterator$b19std@_char_traits$b__r12std@ios_basebpx6std@tmcc, @_time_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@id, @TRegexp@$bctr$qpxc, @TRegexp@$bctr$qrx7TRegexp, @TRegexp@$bdtr$qv, @TRegexp@copy_pattern$qrx7TRegexp, @TRegexp@find$xqpxcpuiui, @TRegexp@gen_pattern$qpxc, @TRegexp@maxpat, @_CatchCleanup$qv, @_InitTermAndUnexPtrs$qv, @_ReThrowException$quipuc, @_ThrowExceptionLDTC$qpvt1t1t1uiuiuipuct1, @__DynamicCast$qpvt1t1t1i, @__DynamicCastVCLptr$qqrpvt1, @__DynamicCastVCLref$qqrpvt1, @__GetTypeInfo$qpvt1t1, @__GetTypeInfo$qpvt1t1t1, @__ThrowExceptionName$qv, @__ThrowFileName$qv, @__ThrowLineNumber$qv, @__lockDebuggerData$qv, @__unlockDebuggerData$qv, @_cast_memptr$qpvt1uiuiui, @_vcl_GetHeapStatus$qv, @_vector_apply_$qpvt1uiuiuit1, @_vector_vapply_$qpvt1uiuiuit1, @bcd@$bctr$qgi, @std@_basic_string$c19std@_char_traits$c_17std@_allocator$c__@npos, @std@_codecvt$bci_@$bctr$qrx12std@_Locinfoui, @std@_codecvt$bci_@$bctr$qui, @std@_codecvt$bci_@$bdtr$qv, @std@_codecvt$bci_@_Getcat$qppx16std@locale@facet, @std@_codecvt$bci_@do_always_noconv$xqv, @std@_codecvt$bci_@do_encoding$xqv, @std@_codecvt$bci_@do_in$xqripxct2rpxcpbt5rpb, @std@_codecvt$bci_@do_length$xqrxipxct2ui, @std@_codecvt$bci_@do_max_length$xqv, @std@_codecvt$bci_@do_out$xqripxbt2rpxbpct5rpc, @std@_codecvt$bci_@do_unshift$xqripct2rpc, @std@_codecvt$bci_@id, @std@_codecvt$cci_@id, @std@_collate$b_@id, @std@_collate$c_@id, @std@_ctype$b_@$bctr$qrx12std@_Locinfoui, @std@_ctype$b_@$bctr$qui, @std@_ctype$b_@$bdtr$qv, @std@_ctype$b_@_Getcat$qppx16std@locale@facet, @std@_ctype$b_@do_is$xqpxbt1ps, @std@_ctype$b_@do_is$xqsb, @std@_ctype$b_@do_narrow$xqbc, @std@_ctype$b_@do_narrow$xqpxbt1cpc, @std@_ctype$b_@do_scan_is$xqspxbt2, @std@_ctype$b_@do_scan_not$xqspxbt2, @std@_ctype$b_@do_tolower$xqb, @std@_ctype$b_@do_tolower$xqpbpxb, @std@_ctype$b_@do_toupper$xqb, @std@_ctype$b_@do_toupper$xqpbpxb, @std@_ctype$b_@do_widen$xqc, @std@_ctype$b_@do_widen$xqpxct1pb, @std@_ctype$b_@id, @std@_ctype$c_@$bctr$qpxsoui, @std@_ctype$c_@$bctr$qrx12std@_Locinfoui, @std@_ctype$c_@$bdtr$qv, @std@_ctype$c_@_Getcat$qppx16std@locale@facet, @std@_ctype$c_@do_narrow$xqcc, @std@_ctype$c_@do_narrow$xqpxct1cpc, @std@_ctype$c_@do_tolower$xqc, @std@_ctype$c_@do_tolower$xqpcpxc, @std@_ctype$c_@do_toupper$xqc, @std@_ctype$c_@do_toupper$xqpcpxc, @std@_ctype$c_@do_widen$xqc, @std@_ctype$c_@do_widen$xqpxct1pc, @std@_ctype$c_@id, @std@_ctype$c_@table_size, @std@_messages$b_@id, @std@_messages$c_@id, @std@_money_get$b48std@_istreambuf_iterator$b19std@_char_traits$b___@id, @std@_money_get$c48std@_istreambuf_iterator$c19std@_char_traits$c___@id, @std@_money_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@id, @std@_money_put$c48std@_ostreambuf_iterator$c19std@_char_traits$c___@id, @std@_moneypunct$bo$i0$_@$bctr$qrx12std@_Locinfoui, @std@_moneypunct$bo$i0$_@$bctr$qui, @std@_moneypunct$bo$i0$_@$bdtr$qv, @std@_moneypunct$bo$i0$_@_Getcat$qppx16std@locale@facet, @std@_moneypunct$bo$i0$_@id, @std@_moneypunct$bo$i0$_@intl, @std@_moneypunct$bo$i1$_@$bctr$qrx12std@_Locinfoui, @std@_moneypunct$bo$i1$_@$bctr$qui, @std@_moneypunct$bo$i1$_@$bdtr$qv, @std@_moneypunct$bo$i1$_@_Getcat$qppx16std@locale@facet, @std@_moneypunct$bo$i1$_@id, @std@_moneypunct$bo$i1$_@intl, @std@_moneypunct$co$i0$_@$bctr$qrx12std@_Locinfoui, @std@_moneypunct$co$i0$_@$bctr$qui, @std@_moneypunct$co$i0$_@$bdtr$qv, @std@_moneypunct$co$i0$_@_Getcat$qppx16std@locale@facet, @std@_moneypunct$co$i0$_@id, @std@_moneypunct$co$i0$_@intl, @std@_moneypunct$co$i1$_@$bctr$qrx12std@_Locinfoui, @std@_moneypunct$co$i1$_@$bctr$qui, @std@_moneypunct$co$i1$_@$bdtr$qv, @std@_moneypunct$co$i1$_@_Getcat$qppx16std@locale@facet, @std@_moneypunct$co$i1$_@id, @std@_moneypunct$co$i1$_@intl, @std@_num_get$b48std@_istreambuf_iterator$b19std@_char_traits$b___@id, @std@_num_get$c48std@_istreambuf_iterator$c19std@_char_traits$c___@id, @std@_num_put$b48std@_ostreambuf_iterator$b19std@_char_traits$b___@id, @std@_num_put$c48std@_ostreambuf_iterator$c19std@_char_traits$c___@id, @std@_numeric_limits$b_@digits, @std@_numeric_limits$b_@digits10, @std@_numeric_limits$b_@is_signed, @std@_numeric_limits$c_@digits, @std@_numeric_limits$c_@digits10, @std@_numeric_limits$c_@is_signed, @std@_numeric_limits$d_@digits, @std@_numeric_limits$d_@digits10, @std@_numeric_limits$d_@max_exponent, @std@_numeric_limits$d_@max_exponent10, @std@_numeric_limits$d_@min_exponent, @std@_numeric_limits$d_@min_exponent10, @std@_numeric_limits$f_@digits, @std@_numeric_limits$f_@digits10, @std@_numeric_limits$f_@max_exponent, @std@_numeric_limits$f_@max_exponent10, @std@_numeric_limits$f_@min_exponent, @std@_numeric_limits$f_@min_exponent10, @std@_numeric_limits$g_@digits, @std@_numeric_limits$g_@digits10, @std@_numeric_limits$g_@max_exponent, @std@_numeric_limits$g_@max_exponent10, @std@_numeric_limits$g_@min_exponent, @std@_numeric_limits$g_@min_exponent10, @std@_numeric_limits$i_@digits, @std@_numeric_limits$i_@digits10, @std@_numeric_limits$i_@is_signed, @std@_numeric_limits$j_@digits, @std@_numeric_limits$j_@digits10, @std@_numeric_limits$j_@is_signed, @std@_numeric_limits$l_@digits, @std@_numeric_limits$l_@digits10, @std@_numeric_limits$l_@is_signed, @std@_numeric_limits$o_@digits, @std@_numeric_limits$o_@digits10, @std@_numeric_limits$o_@is_modulo, @std@_numeric_limits$o_@is_signed, @std@_numeric_limits$s_@digits, @std@_numeric_limits$s_@digits10, @std@_numeric_limits$s_@is_signed, @std@_numeric_limits$uc_@digits, @std@_numeric_limits$uc_@digits10, @std@_numeric_limits$uc_@is_signed, @std@_numeric_limits$ui_@digits, @std@_numeric_limits$ui_@digits10, @std@_numeric_limits$ui_@is_signed, @std@_numeric_limits$uj_@digits, @std@_numeric_limits$uj_@digits10, @std@_numeric_limits$uj_@is_signed, @std@_numeric_limits$ul_@digits, @std@_numeric_limits$ul_@digits10, @std@_numeric_limits$ul_@is_signed, @std@_numeric_limits$us_@digits, @std@_numeric_limits$us_@digits10, @std@_numeric_limits$us_@is_signed, @std@_numeric_limits$zc_@digits, @std@_numeric_limits$zc_@digits10, @std@_numeric_limits$zc_@is_signed, @std@_numpunct$b_@id, @std@_numpunct$c_@id, @std@_time_get$b48std@_istreambuf_iterator$b19std@_char_traits$b___@id, @std@_time_get$c48std@_istreambuf_iterator$c19std@_char_traits$c___@id, @std@_time_put$c48std@_ostreambuf_iterator$c19std@_char_traits$c___@id, @std@_BADOFF, @std@_Debug_message$qpxct1, @std@_Fiopen$qpxb23std@__Iosb$i_@_Openmodei, @std@_Fiopen$qpxc23std@__Iosb$i_@_Openmodei, @std@_Fpz, @std@_Ios_init, @std@_Locinfo@$bctr$qipxc, @std@_Locinfo@$bctr$qpxc, @std@_Locinfo@$bdtr$qv, @std@_Locinfo@_Addcats$qipxc, @std@_Locinfo@_Getcoll$xqv, @std@_Locinfo@_Getctype$xqv, @std@_Locinfo@_Getcvt$xqv, @std@_Locinfo@_Getname$xqv, @std@_Locinfo@_Gettnames$xqv, @std@_Lockit@$bctr$qi, @std@_Lockit@$bdtr$qv, @std@_New_hand, @std@_Nomemory$qv, @std@_Num_base@digits, @std@_Num_base@digits10, @std@_Num_base@has_denorm, @std@_Num_base@has_denorm_loss, @std@_Num_base@has_infinity, @std@_Num_base@has_quiet_NaN, @std@_Num_base@has_signaling_NaN, @std@_Num_base@is_bounded, @std@_Num_base@is_exact, @std@_Num_base@is_iec559, @std@_Num_base@is_integer, @std@_Num_base@is_modulo, @std@_Num_base@is_signed, @std@_Num_base@is_specialized, @std@_Num_base@max_exponent, @std@_Num_base@max_exponent10, @std@_Num_base@min_exponent, @std@_Num_base@min_exponent10, @std@_Num_base@radix, @std@_Num_base@round_style, @std@_Num_base@tinyness_before, @std@_Num_base@traps, @std@_Num_float_base@has_denorm, @std@_Num_float_base@has_denorm_loss, @std@_Num_float_base@has_infinity, @std@_Num_float_base@has_quiet_NaN, @std@_Num_float_base@has_signaling_NaN, @std@_Num_float_base@is_bounded, @std@_Num_float_base@is_exact, @std@_Num_float_base@is_iec559, @std@_Num_float_base@is_integer, @std@_Num_float_base@is_modulo, @std@_Num_float_base@is_signed, @std@_Num_float_base@is_specialized, @std@_Num_float_base@radix, @std@_Num_float_base@round_style, @std@_Num_float_base@tinyness_before, @std@_Num_float_base@traps, @std@_Num_int_base@is_bounded, @std@_Num_int_base@is_exact, @std@_Num_int_base@is_integer, @std@_Num_int_base@is_modulo, @std@_Num_int_base@is_specialized, @std@_Num_int_base@radix, @std@_Raise_handler, @std@_String_base@_Xlen$xqv, @std@_String_base@_Xran$xqv, @std@_Throw$qrx13std@exception, @std@_Winit@$bctr$qv, @std@_Winit@$bdtr$qv, @std@_Winit@_Init_cnt, @std@_Wios_init, @std@cerr, @std@cin, @std@clog, @std@codecvt_base@$bctr$qui, @std@codecvt_base@$bdtr$qv, @std@codecvt_base@always_noconv$xqv, @std@codecvt_base@do_always_noconv$xqv, @std@codecvt_base@do_encoding$xqv, @std@codecvt_base@do_max_length$xqv, @std@cout, @std@ctype_base@$bctr$qui, @std@ctype_base@$bdtr$qv, @std@exception@$bctr$qv, @std@exception@$bdtr$qv, @std@exception@_Set_raise_handler$qpqrx13std@exception$v, @std@exception@what$xqv, @std@ios_base@$bctr$qv, @std@ios_base@$bdtr$qv, @std@ios_base@Init@$bctr$qv, @std@ios_base@Init@$bdtr$qv, @std@ios_base@Init@_Init_cnt, @std@ios_base@_Addstd$qv, @std@ios_base@_Callfns$q18std@ios_base@event, @std@ios_base@_Findarr$qi, @std@ios_base@_Index, @std@ios_base@_Init$qv, @std@ios_base@_Sync, @std@ios_base@_Tidy$qv, @std@ios_base@clear$q22std@__Iosb$i_@_Iostateo, @std@ios_base@copyfmt$qrx12std@ios_base, @std@ios_base@getloc$xqv, @std@ios_base@imbue$qrx10std@locale, @std@ios_base@register_callback$qpq18std@ios_base@eventr12std@ios_basei$vi, @std@istrstream@$bdtr$qv, @std@locale@$basg$qrx10std@locale, @std@locale@$bctr$q18std@_Uninitialized, @std@locale@$bctr$qp18std@locale@_Locimp, @std@locale@$bctr$qpxci, @std@locale@$bctr$qrx10std@locale, @std@locale@$bctr$qrx10std@localepxci, @std@locale@$bctr$qrx10std@localet1i, @std@locale@$bctr$qv, @std@locale@$bdtr$qv, @std@locale@$beql$xqrx10std@locale, @std@locale@_Addfac$qp16std@locale@facetuiui, @std@locale@_Getfacet$xqui, @std@locale@_Init$qv, @std@locale@_Locimp@$bctr$qo, @std@locale@_Locimp@$bctr$qrx18std@locale@_Locimp, @std@locale@_Locimp@$bdtr$qv, @std@locale@_Locimp@_Addfac$qp16std@locale@facetui, @std@locale@classic$qv, @std@locale@empty$qv, @std@locale@facet@$bctr$qui, @std@locale@facet@$bdtr$qv, @std@locale@facet@_Decref$qv, @std@locale@facet@_Incref$qv, @std@locale@facet@_Register$qv, @std@locale@global$qrx10std@locale, @std@locale@id@$bctr$qui, @std@locale@id@$oui$qv, @std@locale@id@_Id_cnt, @std@locale@name$xqv, @std@messages_base@$bctr$qui, @std@money_base@$bctr$qui, @std@nothrow, @std@ostrstream@$bctr$qpci23std@__Iosb$i_@_Openmode, @std@ostrstream@$bdtr$qv, @std@resetiosflags$q23std@__Iosb$i_@_Fmtflags, @std@set_new_handler$qpqv$v, @std@set_terminate$qpqv$v, @std@set_unexpected$qpqv$v, @std@setbase$qi, @std@setiosflags$q23std@__Iosb$i_@_Fmtflags, @std@setprecision$qi, @std@setw$qi, @std@strstream@$bctr$qpci23std@__Iosb$i_@_Openmode, @std@strstream@$bdtr$qv, @std@strstreambuf@$bdtr$qv, @std@strstreambuf@_Init$qipct2i, @std@strstreambuf@_Tidy$qv, @std@strstreambuf@freeze$qo, @std@strstreambuf@overflow$qi, @std@strstreambuf@pbackfail$qi, @std@strstreambuf@seekoff$ql22std@__Iosb$i_@_Seekdir23std@__Iosb$i_@_Openmode, @std@strstreambuf@seekpos$q12std@_fpos$i_23std@__Iosb$i_@_Openmode, @std@strstreambuf@underflow$qv, @std@terminate$qv, @std@time_base@$bctr$qui, @std@type_info@$basg$qrx13std@type_info, @std@type_info@$bctr$qrx13std@type_info, @std@type_info@$bdtr$qv, @std@type_info@$beql$xqrx13std@type_info, @std@type_info@$bneq$xqrx13std@type_info, @std@type_info@_first_base$xqr24std@type_info@_base_info, @std@type_info@_first_vbase$xqr25std@type_info@_vbase_info, @std@type_info@_guid$xqv, @std@type_info@_internal_rtti_cast$xqpvpx13std@type_info, @std@type_info@_next_base$xqr24std@type_info@_base_info, @std@type_info@before$xqrx13std@type_info, @std@type_info@name$xqv, @std@uncaught_exception$qv, @std@unexpected$qv, @std@wcerr, @std@wcin, @std@wclog, @std@wcout, @xmsg@$basg$qrx4xmsg, @xmsg@$bctr$qrx4xmsg, @xmsg@$bctr$qrx60std@_basic_string$c19std@_char_traits$c_17std@_allocator$c__, @xmsg@$bdtr$qv, @xmsg@raise$qv, @xmsg@what$xqv, __8087, __Atan, __Atexit, __Cosh, __CurrExcContext, __Denorm, __Dint, __Dnorm, __Dscale, __Dtest, __Dunscale, __Eps, __ErrorExit, __ErrorMessage, __Exp, __FAtan, __FCosh, __FDenorm, __FDint, __FDnorm, __FDscale, __FDtest, __FDunscale, __FEps, __FExp, __FInf, __FLog, __FNan, __FRteps, __FSin, __FSinh, __FSnan, __FUnloadDelayLoadedDLL, __FXbig, __FZero, __Feraise, __Getctyptab, __Global_unwind, __Hugeval, __Inf, __LCosh, __LDenorm, __LDnorm, __LDscale, __LDtest, __LDunscale, __LEps, __LExp, __LInf, __LNan, __LPoly, __LRteps, __LSin, __LSinh, __LSnan, __LXbig, __LZero, __Local_unwind, __Locksyslock, __Mtxdst, __Mtxinit, __Mtxlock, __Mtxunlock, __Nan, __Once, __Return_unwind, __Rteps, __SetUserHandler, __Sin, __Sinh, __Snan, __Stod, __Stodx, __Stof, __Stoflt, __Stofx, __Stold, __Stoldx, __Stoll, __Stollx, __Stolx, __Stopfx, __Stoull, __Stoullx, __Stoulx, __Stoxflt, __Unlocksyslock, __Xbig, __Zero, ___CPPdebugHook, ___CRTL_MEM_GetBorMemPtrs, ___CRTL_MEM_UseBorMM, ___CRTL_TLS_Alloc, ___CRTL_TLS_ExitThread, ___CRTL_TLS_Free, ___CRTL_TLS_GetInfo, ___CRTL_TLS_GetValue, ___CRTL_TLS_InitThread, ___CRTL_TLS_SetValue, ___CRTL_VCL_Thread_Hook, ___CRTL_VCL_Thread_Unhook, ___ErrorMessage, ____ExceptionHandler, ____wopen, ___access, ___alloca_helper, ___assertfail, ___bcd_log10, ___bcd_pow10, ___bcd_tobinary, ___bcd_todecimal, ___close, ___cputn, ___debuggerDisableTerminateCallback, ___doserrno, ___eof, ___errno, ___flush_win95_keyup_events, ___ftruncate, ___getStream, ___getline, ___ieee_64_n_inf, ___ieee_64_n_nanq, ___ieee_64_n_nans, ___ieee_64_n_zero, ___ieee_64_p_inf, ___ieee_64_p_nanq, ___ieee_64_p_nans, ___ieee_64_p_zero, ___isatty, ___isatty_osfhandle, ___isctype, ___iswctype, ___locale, ___lseek, ___matherr, ___matherrl, ___mb_cur_max, ___movecursor, ___moveline, ___open, ___pfnDliFailureHook, ___pfnDliNotifyHook, ___putline, ___raiseDebuggerException, ___read, ___scroll, ___terminatePTR, ___threadid, ___unexpectdPTR, ___validatexy, ___wcreat, ___wcserror, ___wfindfirst, ___wfindnext, ___wopen, ___write, __adopt_thread, __alloca, __argc, __argv, __argv_default_expand, __assert, __atoi64, __atold, __beginthread, __beginthreadNT, __beginthreadex, __c_exit, __cexit, __chartype, __chdrive, __chgsign, __chgsignl, __chmod, __clear87, __close, __cmdline_escapes, __commit, __control87, __copysign, __copysignl, __creat, __crotl, __crotr, __crtinit, __cwait, __daylight, __default87, __delayLoadHelper, __directvideo, __dos_close, __dos_creat, __dos_creatnew, __dos_findfirst, __dos_findnext, __dos_getdate, __dos_getdiskfree, __dos_getdrive, __dos_getfileattr, __dos_getftime, __dos_gettime, __dos_open, __dos_read, __dos_setdate, __dos_setdrive, __dos_setfileattr, __dos_setftime, __dos_settime, __dos_write, __ecvt, __endthread, __endthreadex, __environ, __envsize, __exit, __exitargv, __exitargv_ptr, __expand, __expand_wild, __fcloseall, __fcvt, __fdopen, __fgetc, __fgetchar, __fgetwc, __fgetwchar, __fileno, __findclose, __findfirst, __findfirsti64, __findnext, __findnexti64, __finite, __finitel, __flushall, __flushout, __fnsplit, __fpclass, __fpclassl, __fpreset, __fputc, __fputchar, __fputwc, __fputwchar, __free_heaps, __fsopen, __ftol, __ftoul, __ftruncate, __fullpath, __futime, __gcvt, __get_heap_redirector_info, __get_osfhandle, __getdcwd, __getdrive, __getdrives, __getmbcp, __getsystime, __getw, __getws, __handle_exitargv, __handle_setargv, __handle_wexitargv, __handle_wsetargv, __heapchk, __heapmin, __heapset, __heapwalk, __huge_dble, __huge_flt, __huge_ldble, __i64toa, __i64tow, __indefinite, __init_handles, __ismbbalnum, __ismbbalpha, __ismbbgraph, __ismbbkalpha, __ismbbkana, __ismbbkpunct, __ismbblead, __ismbbprint, __ismbbpunct, __ismbbtrail, __ismbcalnum, __ismbcalpha, __ismbcdigit, __ismbcgraph, __ismbchira, __ismbckata, __ismbcl0, __ismbcl1, __ismbcl2, __ismbclegal, __ismbclower, __ismbcprint, __ismbcpunct, __ismbcspace, __ismbcsymbol, __ismbcupper, __ismbslead, __ismbstrail, __isnan, __isnanl, __itow, __llocaleconv, __logb, __logbl, __lower, __lrand, __lrotl, __lrotr, __lsetlocale, __lstrcoll, __lstricoll, __lstrlwr, __lstrncoll, __lstrnicoll, __lstrupr, __lstrxfrm, __ltoa, __ltolower, __ltoupper, __ltow, __ltowlower, __ltowupper, __lwcscoll, __lwcsicoll, __lwcslwr, __lwcsncoll, __lwcsnicoll, __lwcsupr, __lwcsxfrm, __lwsetlocale, __makepath, __matherr, __matherrl, __max_dble, __max_flt, __max_ldble, __mbbtombc, __mbbtype, __mbccmp, __mbccpy, __mbcjistojms, __mbcjmstojis, __mbclen, __mbctohira, __mbctokata, __mbctolower, __mbctombb, __mbctoupper, __mbctype, __mbsbtype, __mbscat, __mbschr, __mbscmp, __mbscoll, __mbscpy, __mbscspn, __mbsdec, __mbsdup, __mbsicmp, __mbsicoll, __mbsinc, __mbslen, __mbslwr, __mbsnbcat, __mbsnbcmp, __mbsnbcnt, __mbsnbcoll, __mbsnbcpy, __mbsnbicmp, __mbsnbicoll, __mbsnbset, __mbsncat, __mbsnccnt, __mbsncmp, __mbsncoll, __mbsncpy, __mbsnextc, __mbsnicmp, __mbsnicoll, __mbsninc, __mbsnset, __mbspbrk, __mbsrchr, __mbsrev, __mbsset, __mbsspn, __mbsspnp, __mbsstr, __mbstok, __mbsupr, __messagefile, __messagefunc, __mkdir, __mktemp, __msize, __nextafter, __nextafterl, __nfile, __open, __open_osfhandle, __oscmd, __osenv, __osmajor, __osminor, __osmode, __ostype, __osversion, __pclose, __pcre_compile, __pcre_exec, __pcre_maketables, __pcre_regcomp, __pcre_regerror, __pcre_regexec, __pcre_regfree, __pcre_study, __pcre_version, __pipe, __popen, __putw, __putws, __read, __rmdir, __rmtmp, __rotl, __rotr, __rtl_chmod, __rtl_close, __rtl_creat, __rtl_heapwalk, __rtl_memset, __rtl_memset_, __rtl_mstick, __rtl_open, __rtl_read, __rtl_setUnmangleMode, __rtl_strcmp, __rtl_strcpy, __rtl_unmangle, __rtl_ustick, __rtl_write, __scalb, __scalbl, __searchenv, __searchstr, __set_matherr_handler, __set_matherrl_handler, __setargv, __setargv_ptr, __setcursortype, __seterrormode, __setmbcp, __setsystime, __sleep, __snprintf, __snwprintf, __sopen, __splitpath, __startup, __startupd, __stat, __stati64, __status87, __stkbase, __stkchk, __stpcpy, __strdate, __streams, __strerror, __stricoll, __strncoll, __strnicoll, __strtime, __strtold, __sys_errlist, __sys_nerr, __tccmp, __tccpy, __tclen, __tcschr, __tcsclen, __tcscmp, __tcscoll, __tcscspn, __tcsdec, __tcsicmp, __tcsicoll, __tcsinc, __tcslwr, __tcsnbcnt, __tcsncat, __tcsnccat, __tcsnccmp, __tcsnccnt, __tcsnccoll, __tcsnccpy, __tcsncicmp, __tcsncicoll, __tcsncmp, __tcsncoll, __tcsncpy, __tcsncset, __tcsnextc, __tcsnicmp, __tcsnicoll, __tcsninc, __tcsnset, __tcspbrk, __tcsrchr, __tcsrev, __tcsset, __tcsspn, __tcsspnp, __tcsstr, __tcstok, __tcsupr, __tempnam, __timezone, __tiny_ldble, __tzname, __tzset, __ui64toa, __ui64tow, __ultow, __unadopt_thread, __unlink, __unsetuserhandler, __upper, __utime, __version, __vsnprintf, __vsnwprintf, __waccess, __wargv, __wargv_default_expand, __wasctime, __wchdir, __wchmod, __wcreat, __wcsdup, __wcserror, __wcsicmp, __wcsicoll, __wcslwr, __wcsncoll, __wcsnicmp, __wcsnicoll, __wcsnset, __wcspcpy, __wcsrev, __wcsset, __wcstold, __wcsupr, __wctime, __wenviron, __wenvsize, __wexecl, __wexecle, __wexeclp, __wexeclpe, __wexecv, __wexecve, __wexecvp, __wexecvpe, __wexitargv, __wexitargv_ptr, __wexpand_wild, __wfdopen, __wfindclose, __wfindfirst, __wfindfirsti64, __wfindnext, __wfindnexti64, __wfnmerge, __wfnsplit, __wfopen, __wfreopen, __wfsopen, __wfullpath, __wgetcurdir, __wgetcwd, __wgetdcwd, __wgetenv, __wherex, __wherey, __wmakepath, __wmemchr, __wmemcpy, __wmemset, __wmkdir, __wmktemp, __wopen, __woscmd, __wosenv, __wperror, __wpopen, __wputenv, __wremove, __wrename, __write, __wrmdir, __wrtl_chmod, __wrtl_creat, __wrtl_open, __wscroll, __wsearchenv, __wsearchstr, __wsetargv, __wsetargv_ptr, __wsetlocale, __wsopen, __wspawnl, __wspawnle, __wspawnlp, __wspawnlpe, __wspawnv, __wspawnve, __wspawnvp, __wspawnvpe, __wsplitpath, __wstartup, __wstartupd, __wstat, __wstati64, __wstrdate, __wstrtime, __wsystem, __wtempnam, __wtmpnam, __wtof, __wtoi, __wtoi64, __wtol, __wtold, __wtzname, __wtzset, __wunlink, __wutime, _abort, _abs, _access, _acos, _acosl, _alloca, _asctime, _asin, _asinl, _atan, _atan2, _atan2f, _atan2l, _atanl, _atexit, _atof, _atoi, _atol, _basename, _bsearch, _btowc, _calloc, _ceil, _ceill, _cgets, _chdir, _chmod, _chsize, _clearerr, _clock, _close, _closedir, _clreol, _clrscr, _cos, _cosf, _cosh, _coshl, _cosl, _cprintf, _cputs, _creat, _creatnew, _creattemp, _cscanf, _ctime, _cvprintf, _cvscanf, _cwait, _delline, _difftime, _div, _dostounix, _dup, _dup2, _ecvt, _eof, _execl, _execle, _execlp, _execlpe, _execv, _execve, _execvp, _execvpe, _exit, _exp, _expf, _expl, _fabs, _fabsl, _fclose, _fcloseall, _fcvt, _fdopen, _feof, _ferror, _fflush, _fgetc, _fgetchar, _fgetpos, _fgets, _fgetwc, _fgetws, _filelength, _fileno, _findclose, _findfirst, _findnext, _floor, _floorl, _flushall, _fmod, _fmodl, _fnmerge, _fnsplit, _fopen, _fprintf, _fputc, _fputchar, _fputs, _fputwc, _fputws, _fread, _free, _freopen, _frexp, _frexpl, _fscanf, _fseek, _fsetpos, _fstat, _ftell, _ftime, _fwprintf, _fwrite, _fwscanf, _gcvt, _getc, _getch, _getchar, _getche, _getcurdir, _getcwd, _getdate, _getdfree, _getdisk, _getenv, _getftime, _getpass, _getpid, _gets, _gettext, _gettextinfo, _gettime, _getw, _getwc, _getwchar, _gmtime, _gotoxy, _heapcheck, _heapcheckfree, _heapchecknode, _heapfillfree, _heapwalk, _highvideo, _hypot, _hypotl, _insline, _isalnum, _isalpha, _isascii, _isatty, _iscntrl, _isdigit, _isgraph, _islower, _isprint, _ispunct, _isspace, _isupper, _iswalnum, _iswalpha, _iswascii, _iswcntrl, _iswdigit, _iswgraph, _iswlower, _iswprint, _iswpunct, _iswspace, _iswupper, _iswxdigit, _isxdigit, _itoa, _kbhit, _labs, _ldexp, _ldexpf, _ldexpl, _ldiv, _lfind, _localeconv, _localtime, _lock, _locking, _log, _log10, _log10l, _logf, _logl, _longjmp, _lowvideo, _lsearch, _lseek, _ltoa, _malloc, _mblen, _mbrtowc, _mbstowcs, _mbtowc, _memccpy, _memchr, _memcmp, _memcpy, _memicmp, _memmove, _memset, _mkdir, _mktemp, _mktime, _modf, _modfl, _movetext, _normvideo, _open, _opendir, _pcre_compile, _pcre_exec, _pcre_free, _pcre_info, _pcre_maketables, _pcre_malloc, _pcre_study, _pcre_version, _perror, _poly, _polyl, _pow, _pow10, _pow10l, _powf, _powl, _printf, _putc, _putch, _putchar, _putenv, _puts, _puttext, _putw, _putwc, _putwchar, _qsort, _raise, _rand, _read, _readdir, _realloc, _regcomp, _regerror, _regexec, _regfree, _remove, _rename, _rewind, _rewinddir, _rmdir, _rmtmp, _scanf, _searchpath, _setbuf, _setdate, _setdisk, _setftime, _setjmp, _setlocale, _setmode, _settime, _setvbuf, _signal, _sin, _sinf, _sinh, _sinhl, _sinl, _sleep, _snprintf, _snwprintf, _sopen, _spawnl, _spawnle, _spawnlp, _spawnlpe, _spawnv, _spawnve, _spawnvp, _spawnvpe, _sprintf, _sqrt, _sqrtf, _sqrtl, _srand, _sscanf, _stackavail, _stat, _stime, _stpcpy, _strcat, _strchr, _strcmp, _strcoll, _strcpy, _strcspn, _strdup, _strerror, _strftime, _stricmp, _strirshr, _strishr, _strlen, _strlwr, _strncat, _strncmp, _strncpy, _strnicmp, _strnset, _strpbrk, _strptime, _strrchr, _strrev, _strrshr, _strset, _strshr, _strspn, _strstr, _strtod, _strtok, _strtol, _strtoul, _strupr, _strxfrm, _swab, _swprintf, _swscanf, _system, _tan, _tanf, _tanh, _tanhl, _tanl, _tell, _tempnam, _textattr, _textbackground, _textcolor, _textmode, _time, _tmpfile, _tmpnam, _tolower, _toupper, _towlower, _towupper, _tzset, _ultoa, _umask, _ungetc, _ungetch, _ungetwc, _unixtodos, _unlink, _unlock, _utime, _vfprintf, _vfscanf, _vfwprintf, _vfwscanf, _vprintf, _vscanf, _vsnprintf, _vsnwprintf, _vsprintf, _vsscanf, _vswprintf, _vswscanf, _vwprintf, _vwscanf, _wait, _wclosedir, _wcrtomb, _wcscat, _wcschr, _wcscmp, _wcscoll, _wcscpy, _wcscspn, _wcsftime, _wcslen, _wcsncat, _wcsncmp, _wcsncpy, _wcspbrk, _wcsrchr, _wcsspn, _wcsstr, _wcstod, _wcstok, _wcstol, _wcstombs, _wcstoul, _wcsxfrm, _wctob, _wctomb, _wherex, _wherey, _window, _wmemcmp, _wmemmove, _wopendir, _wprintf, _wreaddir, _wrewinddir, _write, _wscanf, _wsearchpath
0
Réponse 34 / 43
evitadas
 
voila le rapport du fichier C:\WINDOWS\system32\mpg4c32.dll

Fichier mpg4c32.dll_ reçu le 2008.10.28 21:57:21 (CET)
Situation actuelle: en cours de chargement ... mis en file d'attente en attente en cours d'analyse terminé NON TROUVE ARRETE

Résultat: 0/36 (0%)
en train de charger les informations du serveur...
Votre fichier est dans la file d'attente, en position: ___.
L'heure estimée de démarrage est entre ___ et ___ .
Ne fermez pas la fenêtre avant la fin de l'analyse.
L'analyseur qui traitait votre fichier est actuellement stoppé, nous allons attendre quelques secondes pour tenter de récupérer vos résultats.
Si vous attendez depuis plus de cinq minutes, vous devez renvoyer votre fichier.
Votre fichier est, en ce moment, en cours d'analyse par VirusTotal,
les résultats seront affichés au fur et à mesure de leur génération.
Formaté Impression des résultats
Votre fichier a expiré ou n'existe pas.
Le service est en ce moment, stoppé, votre fichier attend d'être analysé (position : ) depuis une durée indéfinie.

Vous pouvez attendre une réponse du Web (re-chargement automatique) ou taper votre e-mail dans le formulaire ci-dessous et cliquer "Demande" pour que le système vous envoie une notification quand l'analyse sera terminée.
Email:

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.10.28.3 2008.10.28 -
AntiVir 7.9.0.10 2008.10.28 -
Authentium 5.1.0.4 2008.10.28 -
Avast 4.8.1248.0 2008.10.28 -
AVG 8.0.0.161 2008.10.28 -
BitDefender 7.2 2008.10.28 -
CAT-QuickHeal 9.50 2008.10.28 -
ClamAV 0.93.1 2008.10.28 -
DrWeb 4.44.0.09170 2008.10.28 -
eSafe 7.0.17.0 2008.10.28 -
eTrust-Vet 31.6.6177 2008.10.28 -
Ewido 4.0 2008.10.28 -
F-Prot 4.4.4.56 2008.10.28 -
F-Secure 8.0.14332.0 2008.10.28 -
Fortinet 3.117.0.0 2008.10.28 -
GData 19 2008.10.28 -
Ikarus T3.1.1.44.0 2008.10.28 -
K7AntiVirus 7.10.510 2008.10.28 -
Kaspersky 7.0.0.125 2008.10.28 -
McAfee 5417 2008.10.28 -
Microsoft 1.4005 2008.10.28 -
NOD32 3563 2008.10.28 -
Norman 5.80.02 2008.10.28 -
Panda 9.0.0.4 2008.10.28 -
PCTools 4.4.2.0 2008.10.28 -
Prevx1 V2 2008.10.28 -
Rising 21.01.12.00 2008.10.28 -
SecureWeb-Gateway 6.7.6 2008.10.28 -
Sophos 4.35.0 2008.10.28 -
Sunbelt 3.1.1762.1 2008.10.28 -
Symantec 10 2008.10.28 -
TheHacker 6.3.1.1.132 2008.10.28 -
TrendMicro 8.700.0.1004 2008.10.28 -
VBA32 3.12.8.8 2008.10.28 -
ViRobot 2008.10.28.1441 2008.10.28 -
VirusBuster 4.5.11.0 2008.10.28 -
Information additionnelle
File size: 413760 bytes
MD5...: 016be824802f3869a7da2f2b6329b563
SHA1..: b585d5e18183e8f7f108b0c7991ed65303354898
SHA256: 69460070f8dfb18470a4b78b959bbea293cba53e8446fd1f3ed1d067bccbb37b
SHA512: 6f4fa5872c95b1842fe14ca309d014556610e02ff07ce7bedb9013f7f378d572
f1bcd23ad032239a54f919f6475b36dab20393415a0469b79b39aa85cf2a0d92
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x1c2180f0
timedatestamp.....: 0x3c992a55 (Thu Mar 21 00:33:25 2002)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x38db9 0x38e00 6.83 0a0e5547e55b644e721814ab9c213e3a
.data 0x3a000 0x74560 0x28200 3.36 64f2f1ea39cc5860e40f8d34852e3b31
.rsrc 0xaf000 0x958 0xa00 3.26 ab80ce22aa27a046045e5dad236a7f61
.reloc 0xb0000 0x2860 0x2a00 6.18 1a39dac04f496c079d6178211b77ce12

( 6 imports )
> MSVCRT.dll: _except_handler3, _adjust_fdiv, malloc, _initterm, __3@YAXPAX@Z, __2@YAPAXI@Z, free
> USER32.dll: GetScrollPos, GetWindowLongA, SetScrollPos, wsprintfA, SetDlgItemTextA, IsDlgButtonChecked, CheckDlgButton, GetDlgItemInt, MessageBoxA, LoadStringA, DialogBoxParamA, EndDialog, SetDlgItemInt, GetDlgItem, SetScrollRange, GetDesktopWindow, GetDC, ReleaseDC
> GDI32.dll: GetSystemPaletteEntries
> KERNEL32.dll: GetSystemInfo, CreateEventA, DisableThreadLibraryCalls, SetEvent, WaitForSingleObject, CloseHandle, IsBadReadPtr, Sleep, IsBadWritePtr, CreateThread, MultiByteToWideChar
> WINMM.dll: DefDriverProc, GetDriverModuleHandle
> ADVAPI32.dll: RegQueryValueExA, RegSetValueExA, RegCreateKeyA, RegOpenKeyA, RegCloseKey

( 1 exports )
DriverProc
0
Réponse 35 / 43
sKe69 Messages postés 21955 Statut Contributeur sécurité 463
 
Bien ....

A- Vas sur "démarrer" / cliques sur la commande "Exécuter" .
Ou appuies simultanement sur la touche "Windows" et sur R > la boite de commande "Executer" va s´ouvrir...

Là tu tapes ou copies/colles exactement ceci :

sc stop Pdctfr ---> puis tapes sur [Entrée]

Puis recommences avec
sc delete Pdctfr ---> puis tapes sur [Entrée]

B-Pour nettoyer UsbFix :

* Vas sur " démarrer " / "tous les programmes" / "UsbFix" --> cliques sur "Uninstal Usbfix" .

* Ou bien rends toi dans ce dossier > C:\Program Files\UsbFix .
là tu double-cliques sur le fichier " Uninstal.exe " pour désinstaller proprement l'outil ...

C - fais ce qui suit dans l'ordre :

1-Télécharges ToolsCleaner (de A.Rothstein) sur ton Bureau.
http://pc-system.fr/

Déconnectes toi et fermes bien toutes tes applications en cours .

Lances le .
*Cliques sur Recherche et laisses le scan se terminer (cela peut être long).
*Cliques sur Suppression pour finaliser.
*Cliques sur "quitter" pour générer un rapport ( et pas sur la croix rouge !) :
--> Postes ce rapport : il se trouve à la racine de ton disque dur -> C:\TCleaner.txt .

Note : Ce petit soft va te nettoyer tout les trucs dont on c'est servi pour la désinfection .
Supprimes tout les outils , dossiers ou rapports consernant la désinfection que Toolscleaner2 n'a pas supprimé .

( gardes CCleaner et Malwarebytes : très utiles ! )

2- Refais un coup de CCleaner ( registre compris ) .

3- Retélécharges et réinstalles hijackthis ( car supprimé par Toolscleaner2 ) ,

Télécharges et installes le logiciel HijackThis :

ici ftp://ftp.commentcamarche.com/download/HJTInstall.exe
ou ici http://www.trendsecure.com/portal/en-US/_download/HJTInstall.exe
ou ici https://www.clubic.com/telecharger-fiche17891-hijackthis.html

-> Cliques sur le setup pour lancer l'installe : laisses toi guider et ne modifies pas les paramètres d'installation .
A la fin de l'installe , le prg ce lance automatiquement : fermes le en cliquant sur la croix rouge .
Au final, tu dois avoir un raccourci sur ton bureau et aussi un cheminement comme :
"C:\ program files\Trend Micro\HijackThis\HijackThis.exe " .

( ne fais pas de scan pour le moment )

4- Purge de la restauration système
*Désactives ta restauration :
Cliques droit sur poste de travail/propriétés/Restauration système/coche la case désactiver la restauration, appliquer, OK
--->Redémarres ton PC
*Réactives ta restauration :
Cliques droit sur poste de travail/propriétés/Restauration système/décoche la case désactiver la restauration, appliquer, OK
--->Redémarres ton PC
( Note : tu peux aussi y accéder via panneau de configuration->" système "->" restauration système " ).

5- Fais ce scan en ligne pour vérifier :

Fais un scan en ligne avec Kaspersky : https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
- Sous Démonstration en ligne, on t'explique la marche à suivre, et pour lancer le scan il faut sélectionner < Exécuter l'analyse en ligne >.
Le scan ne marche que sous Internet Explorer(et pas sous firefox ou autre...).
- On va te demander de télécharger un contôle active x, accepte .
- Dans le menu Choisissez la cible de l'analyse, sélectionne Poste de travail. Le scan va commencer.
- Sauvegardes le rapport qui sera généré, puis copies/colles le dans ta prochaine réponse pour analyse et attends la suite ...

--> tuto :
https://www.malekal.com/scan-antivirus-ligne-nod32/#mozTocId291566

Note :
*Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte-toi sur le site de Kaspersky pour retenter le scan en ligne.

*S'il y a un problème, assure toi que les contrôles active x sont bien configurés dans les options internet comme décrit sur ce lien : http://www.inoculer.com/activex.php3
Rappel : le scan est à faire sous Internet Explorer !
0
Réponse 36 / 43
evitadas
 
voici le rapport Tcleaner

[ Rapport ToolsCleaner version 2.2.4 (par A.Rothstein & dj QUIOU) ]

-->- Recherche:

C:\TB.txt: trouvé !
C:\UsbFix.txt: trouvé !
C:\_OtMoveIt: trouvé !
C:\Toolbar SD: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\evita\Bureau\OtMoveIt2.exe: trouvé !
C:\Documents and Settings\evita\Bureau\ToolBarSD.exe: trouvé !
C:\Documents and Settings\evita\Bureau\UsbFix.exe: trouvé !
C:\Documents and Settings\evita\Bureau\UsbFix.txt: trouvé !
C:\Program Files\UsbFix: trouvé !
C:\Program Files\Trend Micro\HijackThis.exe: trouvé !
C:\Program Files\Trend Micro\hijackthis.log: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé !

---------------------------------
-->- Suppression:

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\evita\Bureau\OtMoveIt2.exe: supprimé !
C:\Documents and Settings\evita\Bureau\ToolBarSD.exe: supprimé !
C:\Program Files\Trend Micro\HijackThis.exe: supprimé !
C:\TB.txt: supprimé !
C:\UsbFix.txt: supprimé !
C:\Documents and Settings\evita\Bureau\UsbFix.exe: supprimé !
C:\Documents and Settings\evita\Bureau\UsbFix.txt: supprimé !
C:\Program Files\Trend Micro\hijackthis.log: supprimé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé !
C:\_OtMoveIt: supprimé !
C:\Toolbar SD: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Program Files\UsbFix: ERREUR DE SUPPRESSION !!
C:\Program Files\Trend Micro\HijackThis: supprimé !
0
Réponse 37 / 43
sKe69 Messages postés 21955 Statut Contributeur sécurité 463
 
Bien ... continues =)
0
Réponse 38 / 43
sKe69 Messages postés 21955 Statut Contributeur sécurité 463
 
re,

là tu navigues avec FireFox .... et le scan en ligne , il faut le faire en utilisant le navigateur Internet Exploreur ! sinon cela ne marchera pas ^^'

( Internet Exploreur correspond à cette icône sur ton PC ...)

j'attends le résultat ... ;)
0
Réponse 39 / 43
evitadas
 
Alors quand j essaie de me connecter avec internet explorer ils me demandent si je veux conserver mon fournisseur de recherche par defaut actuel ou si je veux en choisir un autre, je coche "conserver" la ils me disent que l application des parametres est en cours mais ca fait 15 mn je crois bien ke ca bug...
0
Réponse 40 / 43
sKe69 Messages postés 21955 Statut Contributeur sécurité 463
 
arrêtes pour le moment et fais ceci :

1- Télécharges se petit soft , ZEB_RESTORE :

ici http://telechargement.zebulon.fr/zeb-restore.html
ou https://forum.zebulon.fr/index.php?act=attach&type=blogentry&id=1153

Enregistres ce fichier sur ton bureau.

-Clic droit Zeb-Restore.zip ==> "Extraire tout" choisis comme lieu d'enregistrement le bureau.
-Ouvre le dossier ZR_1.0.0.37 ==> double clic sur Zeb-Restore.exe
---> Coches les cases devant ( et uniquement celles-ci ! ) :

* Réparation IE : répare Internet Exploreur (pages de recherche)
* Sites de confiance et sensibles : efface le contenu de ces zones (à utiliser si vous êtes infecté par des malwares)
* Préfixes et Protocoles Internet : restore les clés des protocoles Internet (ZoneMap etc.)

-Cliques sur : " Restaurer " et laisses faire ....

--> Une fois finit, redémarres ton PC .

2- re-tentes le scan en ligne avec Internet Exploreur ... si cela ne marche toujours pas , dis le moi ... ;)
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Win64 malware gen
jules555 -
bazfile -

1 réponse
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses