Aller au contenu

mailme

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    18

  • Inscription

  • Dernière visite

mailme's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. mailme

    client ftp gratuit pour mac

    mailme a répondu à un(e) sujet de mo;mo dans OS alternatifs

    Salut, Il n'y en a pas beaucoup malheureusement, voilà bien un domaine où on est en retard par rapport au monde PC et Linux. Tu peux essayer Cyberduck qui est pas mal mais chez moi avec une utilisation intensive il devient lent et plante de temps en temps (si tu as juste 2 ou 3 sites à gérer tu en sera très satisfait). http://cyberduck.ch/ Sinon il y a aussi RBrowser que je viens de découvrir mais je ne sais pas ce qu'il vaut... je vais l'essayer je pense. http://www.rbrowser.com/ Si tu en découvre d'autres, merci de faire partager tes découvertes A+ Julian
  2. mailme
    Bonjour, J'ai suivi la dernière procédure à la lettre avec Brute Force Uninstall. Je vais maintenant faire un peu de ménage dans tous les programmes installés pour la désinfection puis j'irais rapporter mon infection sur Malware Complaints avec plaisir. Une dernière petite question, puisque Windows 2000 ne propose pas de firewall par défaut, peux-tu me conseiller un bon firewall (gratuit si ça existe) ? Sauf si tu pense qu'un firewall n'est pas utile. Merci encore. A+
  3. mailme
    Hello again, Donc, pour info, si cela peut profiter à quelqu'un d'autre ayant le même problème que moi... Si le service "Service de transfert intelligent en arrière-plan" est manquant dans la liste des services Windows (je suppose que certains virus peuvent être à l'origine de ce problème) il est possible de réinstaller ce service en le téléchargeant à l'adresse suivante : http://www.microsoft.com/downloads/details...;displaylang=fr Ensuite il faut le démarrer manuellement et modifier la configuration pour qu'il se lance automatiquement comme suit : 1 - Menu démarrer, choisir Executer Tapper la ligne suivante puis sur Entrer services.msc 2 - Ensuite, il faut trouver le service "Service de transfert intelligent en arrière-plan" dans la liste et double cliquer dessus. 3 - Cliquer sur le bouton "Démarrer" et dans le menu Type de démarrage choisir "Automatique" 4 - Cliquer sur le bouton "Appliquer" puis "Ok" 5 - Vous pouvez lancer Windows update pour faire les mises à jour. Et le problème de mise à jour windows avec erreur 0x80246008 est résolu Merci encore à Charles pour toute l'aide que tu m'a fourni !!! Je n'y serais jamais arrivé tout seul. A+
  4. mailme
    Bonsoir, Encore une chose intéressante, je tente la procédure indiquée sur cette page : http://support.microsoft.com/kb/910337/fr Hors dans la liste des services installés sur ma machine il manque "Service de transfert intelligent en arrière-plan"... Ne serais-ce pas l'origine de mon problème, est-il possible de ré-installer ce service ? Merci d'avance.
  5. mailme
    Bonjour, Complément d'informations concernant mon problème de mise à jour Windows : J'ai essayé les 3 méthodes proposés dans les forums suivants : http://www.informatruc.com/forum/ftopic17507.php et http://forum.telecharger.01net.com/microhe...messages-1.html Mais cela ne corrige pas mon problème... quelle galère. Est-ce possible qu'un PC soit maudit ? Merci.
  6. mailme
    Salut, Oui, j'ai revérifié et le service de mise à jour est bien configuré. En fait j'ai deux erreurs différentes suivant le type d'installation choisi, voici ce qu'il se passe : 1 - Première méthode, je lance Windows update et tente de faire les mise à jours en ligne. Le processus échoue en me disant que la mise à jour n'a pas été installée, j'ai le message d'erreur suivant : Les mise à jours suivantes n'ont pas été installées Mise à jour pour le Service de transfert intelligent en arrière-plan (BITS) 2.0 et WinHTTP 5.1 (KB842773) En allant voir dans l'historique d'installation, je vois que la mise à jour de Microsoft Windows Installer 3.1 à échouée et retourne un code d'erreur 0x80246008 2 - Deuxième méthode, j'ai téléchargé un fichier de mise à jour Windows2000 SP4 que je lance. Les étapes suivantes se déroulent jusqu'à l'erreur comme suit : Vérification de l'archive SP4 : OK Décompression de l'archive : OK Inspection de la configuration actuelle : OK Vérification de l'espace disque necessaire : OK Inscription des clés du registre : ERREUR : Accès refusé J'ai l'impression que dans les deux cas Windows à un problème pour écrire des infos dans la base de registre mais je sais pas quoi faire pour régler le problème. Merci de ton aide. PS : voici le dernier rapport DiagHelp pour confirmation de l'héradication des virus. C:\WINNT\System32/drivers\aswRdr.sys -->15/01/2007 18:26:08 C:\WINNT\System32/drivers\aswTdi.sys -->15/01/2007 18:25:24 C:\WINNT\System32/drivers\aswmon.sys -->21/12/2006 00:56:13 C:\WINNT\System32/drivers\aswmon2.sys -->21/12/2006 00:56:00 C:\WINNT\System32/drivers\aavmker4.sys -->21/12/2006 00:51:58 C:\WINNT\System32/drivers\Rtnic.sys -->14/12/2006 16:43:46 C:\WINNT\System32/drivers\AvgAsCln.sys -->05/09/2006 17:03:16 C:\WINNT\WindowsUpdate.log -->22/03/2007 10:37:03 C:\WINNT\svcpack.log -->21/03/2007 15:59:02 C:\WINNT\setupapi.log -->21/03/2007 15:58:55 C:\WINNT\win.ini -->21/03/2007 13:25:29 C:\WINNT\cmmixer.ini -->21/03/2007 13:12:50 C:\WINNT\ntbtlog.txt -->21/03/2007 13:06:33 C:\WINNT\SchedLgU.Txt -->21/03/2007 10:44:03 C:\WINNT\ShellIconCache -->21/03/2007 10:43:49 C:\WINNT\WINNT32.LOG -->16/03/2007 19:23:07 C:\WINNT\System.ini -->15/03/2007 19:08:16 C:\WINNT\EventSystem.log -->15/03/2007 14:13:06 C:\WINNT\Windows Update.log -->15/03/2007 12:27:54 C:\WINNT\ModemLog_HSP56 MicroModem.txt -->07/03/2007 10:40:52 C:\WINNT\ModemLog_Olitec PCI 56K Modem.txt -->07/03/2007 10:37:02 C:\WINNT\Papier-peint.bmp d'ACD -->27/02/2007 18:42:29 C:\WINNT\IsUn040c.exe |09/04/2003 15:30:58 C:\WINNT\IsUninst.exe |25/03/2003 17:18:05 C:\WINNT\mixer.exe |25/03/2003 17:07:38 C:\WINNT\mUninstallFR.exe |24/11/2004 19:04:38 C:\WINNT\twunk_16.exe |08/05/2001 01:00:00 C:\WINNT\twunk_32.exe |08/05/2001 01:00:00 C:\WINNT\unin040c.exe |24/11/2004 14:18:17 C:\WINNT\uninst.exe |23/10/2003 19:32:11 C:\WINNT\unvise32qt.exe |30/08/2003 12:13:03 C:\WINNT\twain.dll |08/05/2001 01:00:00 C:\WINNT\twain_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\append.exe |08/05/2001 01:00:00 C:\WINNT\system32\asuninst.exe |21/03/2007 13:22:31 C:\WINNT\system32\aswBoot.exe |13/07/2006 11:12:34 C:\WINNT\system32\CNDNDlg.exe |05/08/2005 19:36:14 C:\WINNT\system32\CreateReg.exe |19/10/2006 19:29:16 C:\WINNT\system32\debug.exe |08/05/2001 01:00:00 C:\WINNT\system32\dfrgfat.exe |15/03/2007 11:49:42 C:\WINNT\system32\dfrgntfs.exe |15/03/2007 11:49:42 C:\WINNT\system32\dmadmin.exe |15/03/2007 11:49:45 C:\WINNT\system32\dmremote.exe |15/03/2007 11:49:46 C:\WINNT\system32\dosx.exe |08/05/2001 01:00:00 C:\WINNT\system32\dumphive.exe |07/03/2007 12:41:22 C:\WINNT\system32\dvdplay.exe |15/12/1999 00:30:38 C:\WINNT\system32\edlin.exe |08/05/2001 01:00:00 C:\WINNT\system32\exe2bin.exe |08/05/2001 01:00:00 C:\WINNT\system32\fastopen.exe |08/05/2001 01:00:00 C:\WINNT\system32\mem.exe |08/05/2001 01:00:00 C:\WINNT\system32\mscdexnt.exe |08/05/2001 01:00:00 C:\WINNT\system32\msswchx.exe |15/03/2007 11:55:06 C:\WINNT\system32\NeroCheck.exe |09/07/2001 11:50:42 C:\WINNT\system32\nlsfunc.exe |08/05/2001 01:00:00 C:\WINNT\system32\nw16.exe |08/05/2001 01:00:00 C:\WINNT\system32\pctptt.exe |27/09/2000 02:15:20 C:\WINNT\system32\pctspk.exe |27/09/2000 07:58:48 C:\WINNT\system32\Process.exe |07/03/2007 12:41:22 C:\WINNT\system32\ptuninst.exe |27/09/2000 02:23:22 C:\WINNT\system32\redir.exe |08/05/2001 01:00:00 C:\WINNT\system32\setver.exe |08/05/2001 01:00:00 C:\WINNT\system32\share.exe |08/05/2001 01:00:00 C:\WINNT\system32\SrchSTS.exe |07/03/2007 12:41:22 C:\WINNT\system32\swreg.exe |07/03/2007 12:41:22 C:\WINNT\system32\swsc.exe |07/03/2007 12:41:22 C:\WINNT\system32\swxcacls.exe |07/03/2007 12:41:22 C:\WINNT\system32\vwipxspx.exe |08/05/2001 01:00:00 C:\WINNT\system32\a3d.dll |25/03/2003 17:07:38 C:\WINNT\system32\agusbsti.dll |09/04/2003 15:31:31 C:\WINNT\system32\amstream.dll |21/08/2006 13:36:53 C:\WINNT\system32\arxexprt.dll |19/10/2006 19:29:15 C:\WINNT\system32\ati2draa.dll |25/03/2003 14:33:25 C:\WINNT\system32\atmfd.dll |15/03/2007 11:49:09 C:\WINNT\system32\atmlib.dll |15/03/2007 11:49:10 C:\WINNT\system32\Audio3D.dll |25/03/2003 17:07:38 C:\WINNT\system32\BCGCB474.dll |19/10/2006 19:29:15 C:\WINNT\system32\BCGCBResFRA.dll |19/10/2006 19:29:16 C:\WINNT\system32\CmdLineExt.dll |19/10/2006 19:45:57 C:\WINNT\system32\CmdLineExt03.dll |19/10/2006 19:50:06 C:\WINNT\system32\cmnprop.dll |25/03/2003 17:07:38 C:\WINNT\system32\cmprop.dll |25/03/2003 17:07:38 C:\WINNT\system32\cncs232.dll |20/02/2002 19:20:50 C:\WINNT\system32\CNDCK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\CNDUK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\ConversApi.dll |19/10/2006 19:29:16 C:\WINNT\system32\CP30FW.DLL |19/10/2006 19:29:16 C:\WINNT\system32\czs_ui.dll |13/05/2002 14:05:32 C:\WINNT\system32\DC210.dll |20/03/2002 22:01:20 C:\WINNT\system32\DC240.dll |20/03/2002 22:01:20 C:\WINNT\system32\DC265.dll |20/03/2002 22:01:06 C:\WINNT\system32\DC280.dll |20/03/2002 22:01:20 C:\WINNT\system32\deimg.dll |13/05/2002 14:05:32 C:\WINNT\system32\deImg010.dll |13/05/2002 14:05:34 C:\WINNT\system32\deImg110.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg301.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg401.dll |13/05/2002 14:05:34 C:\WINNT\system32\deImg404.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg602.dll |13/05/2002 14:05:34 C:\WINNT\system32\Deimg603.dll |13/05/2002 14:05:34 C:\WINNT\system32\dfrgres.dll |08/05/2001 01:00:00 C:\WINNT\system32\dfrgsnap.dll |15/03/2007 11:49:42 C:\WINNT\system32\dfrgui.dll |08/05/2001 01:00:00 C:\WINNT\system32\dgrpsetu.dll |25/03/2003 14:31:51 C:\WINNT\system32\dgsetup.dll |25/03/2003 14:31:51 C:\WINNT\system32\dmconfig.dll |15/03/2007 11:49:46 C:\WINNT\system32\dmintf.dll |15/03/2007 11:49:46 C:\WINNT\system32\dmserver.dll |15/03/2007 12:25:39 C:\WINNT\system32\dmutil.dll |15/03/2007 11:49:46 C:\WINNT\system32\efsadu.dll |08/05/2001 01:00:00 C:\WINNT\system32\ekfpixaudio.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixexif.dll |20/03/2002 22:01:08 C:\WINNT\system32\ekfpixguid.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixio130.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixjpeg.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixpsets.dll |20/03/2002 22:01:20 C:\WINNT\system32\EqnClass.Dll |25/03/2003 14:31:50 C:\WINNT\system32\F210.dll |20/03/2002 22:01:20 C:\WINNT\system32\HHActiveX.dll |20/03/2002 21:01:58 C:\WINNT\system32\hpzcoi04.dll |15/11/2001 18:01:00 C:\WINNT\system32\hpzcon04.dll |15/11/2001 18:01:00 C:\WINNT\system32\hpzlnt04.dll |15/11/2001 18:01:01 C:\WINNT\system32\HTICONS.DLL |15/03/2007 11:50:37 C:\WINNT\system32\hypertrm.dll |25/03/2003 15:04:38 C:\WINNT\system32\iacenc.dll |23/04/2003 10:55:09 C:\WINNT\system32\iccvid.dll |08/05/2001 01:00:00 C:\WINNT\system32\imagr5.dll |21/09/2000 17:02:28 C:\WINNT\system32\imagx5.dll |27/09/2000 16:15:06 C:\WINNT\system32\ImagXpr5.dll |21/09/2000 12:53:00 C:\WINNT\system32\imgcmn.dll |25/03/2003 15:04:43 C:\WINNT\system32\imgshl.dll |25/03/2003 15:04:43 C:\WINNT\system32\Inetwh32.dll |25/03/2003 17:18:29 C:\WINNT\system32\ir32_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir41_qc.dll |08/05/2001 01:00:00 C:\WINNT\system32\IR41_QCX.dll |19/06/2001 11:06:50 C:\WINNT\system32\ir50_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir50_qc.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir50_qcx.dll |08/05/2001 01:00:00 C:\WINNT\system32\irisco32.dll |09/04/2003 15:34:01 C:\WINNT\system32\iyvu9_32.dll |23/04/2003 10:55:09 C:\WINNT\system32\JGA1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAA500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAD500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAU500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGDR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGDW500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGEA500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGED500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGEM500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFS500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGGI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI3500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI5500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGID500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIQ500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIT500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGM1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMC500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGME500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGN1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGOS500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPD500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPL500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGS1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGS3500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGSN500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGST500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\jpeg1x32.dll |25/03/2003 15:04:43 C:\WINNT\system32\jpeg2x32.dll |25/03/2003 15:04:43 C:\WINNT\system32\mciqtz32.dll |21/08/2006 13:36:53 C:\WINNT\system32\msdmo.dll |21/08/2006 13:36:55 C:\WINNT\system32\msencode.dll |30/08/2002 17:24:06 C:\WINNT\system32\msswch.dll |15/03/2007 11:55:06 C:\WINNT\system32\Nmea.dll |19/10/2006 19:29:16 C:\WINNT\system32\Ogc.dll |19/10/2006 19:29:16 C:\WINNT\system32\OgcDrvAvmap.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvGarmin.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvLowrance.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvMagellan.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvMlr.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvPyx.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSena.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSilva.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSuu.dll |19/10/2006 19:30:41 C:\WINNT\system32\oieng400.dll |15/03/2007 11:56:08 C:\WINNT\system32\oiprt400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oislb400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oissq400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oitwa400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oiui400.dll |25/03/2003 15:04:43 C:\WINNT\system32\PCDLIB32.DLL |09/12/1998 02:53:58 C:\WINNT\system32\picn20.dll |21/09/2000 07:47:10 C:\WINNT\system32\PixologyIRISS011.dll |07/11/2003 10:03:34 C:\WINNT\system32\Polyclip.dll |19/10/2006 19:29:16 C:\WINNT\system32\pscAdimg.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscCllct.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscCStUI.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDcd.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDevUI.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDvlp.dll |13/05/2002 14:05:34 C:\WINNT\system32\Pscl2STI.dll |13/05/2002 14:05:34 C:\WINNT\system32\PSCLK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\pscll.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscParse.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscSetup.dll |13/05/2002 14:05:34 C:\WINNT\system32\psdkdll.dll |13/05/2002 14:05:36 C:\WINNT\system32\psdkReg.dll |13/05/2002 14:05:36 C:\WINNT\system32\psisdecd.dll |21/08/2006 13:36:59 C:\WINNT\system32\psParse.dll |13/05/2002 14:05:36 C:\WINNT\system32\ptsetup.dll |27/09/2000 02:11:54 C:\WINNT\system32\Pvmjpg21.dll |21/08/2006 13:35:59 C:\WINNT\system32\qcut.dll |08/05/2001 01:00:00 C:\WINNT\system32\qedwipes.dll |21/08/2006 13:36:56 C:\WINNT\system32\RCalcul.dll |19/10/2006 19:29:16 C:\WINNT\system32\Roboex32.dll |25/03/2003 17:18:28 C:\WINNT\system32\SLIPRT.DLL |31/01/2006 09:34:35 C:\WINNT\system32\spxcoins.dll |25/03/2003 14:31:50 C:\WINNT\system32\tifflt.dll |25/03/2003 15:04:44 C:\WINNT\system32\TransportIrCOMM.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportIrDA.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportSerial.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportUSB.dll |20/03/2002 22:00:20 C:\WINNT\system32\tsbyuv.dll |15/12/1999 00:30:06 C:\WINNT\system32\tsd32.dll |08/05/2001 01:00:00 C:\WINNT\system32\TwnLib20.dll |26/06/2000 10:45:30 C:\WINNT\system32\UNACEV2.DLL |21/03/2002 15:39:02 C:\WINNT\system32\win87em.dll |08/05/2001 01:00:00 C:\WINNT\system32\x9.dll |19/10/2006 19:30:40 C:\WINNT\system32\xiffr3_0.dll |25/03/2003 15:04:44 C:\WINNT\system32\ZPORT4AS.dll |21/03/2007 13:22:31 Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\WINNT\system32 19/06/2003 20:05 5†392 CSRSS.EXE 1 fichier(s) 5†392 octets 0 RÈp(s) 4†274†462†720 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\WINNT\Downloaded Program Files 21/03/2007 13:46 <DIR> . 21/03/2007 13:46 <DIR> .. 24/08/2006 08:28 141†424 asinst.dll 22/08/2006 09:06 537 asinst.inf 17/11/2003 01:00 2†432 catalog.dat 10/09/2004 09:35 620 default.inf 07/06/2005 11:25 65 desktop.ini 02/04/2003 14:40 268 DHTMLAccess.inf 14/10/1997 18:52 697 DirectAnimation Java Classes.osd 13/11/2003 12:13 253 EGDHTML.inf 28/03/2002 15:05 1†268 erma.inf 25/08/2003 17:12 1†096 iuctl.inf 20/01/2000 15:25 1†162 Microsoft XML Parser for Java.osd 12/01/2000 16:07 6†854 navapi.vxd 12/01/2000 15:53 208†896 navapi32.dll 17/11/2003 01:00 120†008 naveng32.dll 17/11/2003 01:00 586†952 navex32a.dll 09/10/2003 09:32 144 QTPlugin.inf 17/11/2003 01:00 73†344 scrauth.dat 19/11/2003 17:37 0 SET13.tmp 02/12/2005 11:55 5†101 swflash.inf 17/11/2003 01:00 7†933 symaveng.cat 17/11/2003 01:00 901 symaveng.inf 17/11/2003 01:00 1†725 tcdefs.dat 17/11/2003 01:00 8†087 tcscan7.dat 17/11/2003 01:00 44†131 tcscan8.dat 17/11/2003 01:00 104†298 tcscan9.dat 08/03/2004 16:28 1†390 teleir_cert.osd 17/11/2003 01:00 453 tinf.dat 17/11/2003 01:00 148 tinfidx.dat 17/11/2003 01:00 1†957 tinfl.dat 17/11/2003 01:00 31†302 tscan1.dat 17/11/2003 01:00 1†179 tscan1hd.dat 17/11/2003 01:00 5†382 v.grd 17/11/2003 01:00 2†225 v.sig 17/11/2003 01:00 106†236 virscan.inf 17/11/2003 01:00 839†778 virscan1.dat 17/11/2003 01:00 583†667 virscan2.dat 17/11/2003 01:00 142†904 virscan3.dat 17/11/2003 01:00 316†348 virscan4.dat 17/11/2003 01:00 70†676 virscan5.dat 17/11/2003 01:00 371†529 virscan6.dat 17/11/2003 01:00 855†367 virscan7.dat 17/11/2003 01:00 938†682 virscan8.dat 17/11/2003 01:00 896†600 virscan9.dat 17/11/2003 01:00 32 virscant.dat 18/11/2003 15:51 2†072 vscanmsx.dat 30/06/2003 21:41 1†689 WMV9VCM.inf 26/05/2005 04:19 291 wuweb.inf 17/11/2003 01:00 224 zdone.dat 48 fichier(s) 6†488†327 octets Total des fichiers listÈs†: 48 fichier(s) 6†488†327 octets 2 RÈp(s) 4†274†462†720 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files 15/03/2007 18:38 <DIR> . 15/03/2007 18:38 <DIR> .. 25/03/2003 15:04 <DIR> Accessoires 28/12/2004 19:17 <DIR> ACD Systems 03/11/2006 14:36 <DIR> Adobe 09/04/2003 15:31 <DIR> Agfa 24/03/2006 10:11 <DIR> AGFAnet 11/09/2004 10:58 <DIR> Ahead 20/04/2005 14:47 <DIR> Alwil Software 24/11/2004 19:26 <DIR> ARC-EN-logiCIEL 24/11/2004 19:21 <DIR> Arkanoid 19/10/2006 19:30 <DIR> Bayo 21/11/2006 16:30 <DIR> Canon 25/03/2003 15:06 <DIR> ComPlus Applications 26/03/2003 08:45 <DIR> denouvel 24/11/2004 19:14 <DIR> Ecole Primaire - ABCDaire 03/11/2006 14:34 <DIR> Fichiers communs 18/06/2005 09:38 <DIR> Fujifilm 14/03/2007 15:40 <DIR> Grisoft 23/12/2003 22:42 <DIR> Heroes2 21/03/2007 13:38 <DIR> Internet Explorer 19/03/2005 09:46 <DIR> Lavasoft 24/11/2004 19:03 <DIR> Lecture 24/11/2004 19:04 <DIR> MemoLine 08/03/2005 12:23 <DIR> Messenger 25/03/2003 15:09 <DIR> microsoft frontpage 23/04/2003 10:53 <DIR> Microsoft Games 25/03/2003 16:33 <DIR> Microsoft Office 15/03/2007 12:01 <DIR> NetMeeting 05/02/2007 18:00 <DIR> Neuf 21/08/2006 13:38 <DIR> OLYMPUS 15/03/2007 12:01 <DIR> Outlook Express 21/08/2006 13:34 <DIR> PIXELA 24/11/2004 19:05 <DIR> Puzzline 25/03/2003 17:18 <DIR> Qualcomm 27/03/2006 07:12 <DIR> QuickTime 14/03/2007 15:05 <DIR> Realtek 28/03/2005 17:54 <DIR> Repair Registry Pro 22/04/2003 10:08 <DIR> SYBEX 07/03/2007 11:31 <DIR> VeriSign 15/03/2007 12:01 <DIR> Windows Media Player 15/03/2007 12:03 <DIR> Windows NT 30/09/2004 20:52 <DIR> WinRAR 0 fichier(s) 0 octets 43 RÈp(s) 4†274†413†568 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files\fichiers communs 03/11/2006 14:34 <DIR> . 03/11/2006 14:34 <DIR> .. 28/12/2004 19:24 <DIR> ACD Systems 03/11/2006 14:33 <DIR> Adobe 03/11/2006 14:34 <DIR> Adobe Systems Shared 25/03/2003 16:34 <DIR> Designer 24/03/2006 10:11 <DIR> FotoWire 01/01/2006 16:16 <DIR> InstallShield 14/03/2007 15:45 <DIR> Microsoft Shared 21/08/2006 13:39 <DIR> MSSoap 25/03/2003 14:32 <DIR> ODBC 07/06/2005 11:26 <DIR> Services 20/04/2005 14:53 <DIR> Symantec Shared 07/06/2005 11:26 <DIR> System 0 fichier(s) 0 octets 14 RÈp(s) 4†274†475†008 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 15/03/2007 12:01 <DIR> . 15/03/2007 12:01 <DIR> .. 14/03/2007 15:45 <DIR> 1033 14/03/2007 15:45 <DIR> 1036 15/02/2001 05:45 1†318†912 MSONSEXT.DLL 13/02/2001 08:23 58†784 MSOSV.DLL 03/06/1999 19:09 122†937 MSOWS409.DLL 14/02/2001 14:36 127†033 MSOWS40c.DLL 06/08/2000 09:04 401†462 MSVCP60.DLL 22/01/2001 03:25 69†632 PKMAXCTL.DLL 22/01/2001 03:25 872†448 PKMCDO.DLL 22/01/2001 03:25 159†744 PKMCORE.DLL 07/02/2001 09:59 106†496 PKMFORMS.DLL 12/02/2001 04:03 684†032 PKMRES.DLL 22/01/2001 03:25 28†672 PKMSSTLB.DLL 22/01/2001 03:25 40†960 PKMTEMPL.DLL 22/01/2001 03:25 24†576 PKMTRACE.DLL 22/01/2001 03:25 86†016 PKMWS.DLL 22/01/2001 03:25 237†568 PROMDEMO.DLL 22/01/2001 03:25 184†320 SECMGR.DLL 22/01/2001 03:25 323†584 VAIDDMGR.DLL 22/01/2001 03:25 32†768 VAIMEM.DLL 18 fichier(s) 4†879†944 octets 4 RÈp(s) 4†274†409†472 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\ 11/11/2001 00:00 68†096 diff.exe 27/08/2006 14:10 103†424 grep.exe 24/05/2001 12:59 162†304 UNWISE.EXE 3 fichier(s) 333†824 octets 0 RÈp(s) 4†274†470†912 octets libres c:\Documents and Settings\bonfill\Bureau\AVAST.exe c:\Documents and Settings\bonfill\Bureau\service-pack-4-windows-2000_service_pack_4_windows_2000_francais_13276.exe c:\Documents and Settings\bonfill\Bureau\ToolbarSetup.exe c:\Documents and Settings\bonfill\Bureau\winpfind3u.exe c:\Documents and Settings\bonfill\Bureau\AV\._CWShredder.exe c:\Documents and Settings\bonfill\Bureau\AV\._HijackThis.exe c:\Documents and Settings\bonfill\Bureau\AV\ATF-Cleaner.exe c:\Documents and Settings\bonfill\Bureau\AV\avgas-setup-7.5.0.50.exe c:\Documents and Settings\bonfill\Bureau\AV\avgas-signatures-full-current.exe c:\Documents and Settings\bonfill\Bureau\AV\blbeta.exe c:\Documents and Settings\bonfill\Bureau\AV\CWShredder.exe c:\Documents and Settings\bonfill\Bureau\AV\HijackThis.exe c:\Documents and Settings\bonfill\Bureau\AV\Look2Me-Destroyer.exe c:\Documents and Settings\bonfill\Bureau\AV\msconfig.exe c:\Documents and Settings\bonfill\Bureau\AV\OTMoveIt.exe c:\Documents and Settings\bonfill\Bureau\AV\AboutBuster\AboutBuster.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\diff.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\dumphive.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\Fport.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\grep.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\LFiles.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\LISTDLLS.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\pslist.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\streams.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\swreg.exe c:\Documents and Settings\bonfill\Bureau\AV\moved-files\GPInstall.exe c:\Documents and Settings\bonfill\Bureau\AV\moved-files\pp.exe.exe c:\Documents and Settings\bonfill\Bureau\Jean-Marie\GEOGRAPHIE\GÈoKid.exe c:\Documents and Settings\bonfill\Bureau\PCI_Install_5663\PCI_Install_5663_20070216\setup.exe c:\Documents and Settings\bonfill\Bureau\WinPFind3u\WinPFind3U.exe c:\Documents and Settings\bonfill\Local Settings\Temp\GLF21GLF21.EXE c:\Documents and Settings\bonfill\Local Settings\Temp\pr_tutor\Glorious_Tutorial.exe c:\Documents and Settings\bonfill\Local Settings\Temp\pr_tutor\Tutorial.exe c:\Documents and Settings\bonfill\Local Settings\Temp\_ISTMP1.DIR\_ISTMP0.DIR\ICOMP.EXE c:\Documents and Settings\bonfill\Local Settings\Temp\_ISTMP1.DIR\_ISTMP0.DIR\WINTDIST.EXE c:\Documents and Settings\bonfill\Mes documents\164 antispyware.exe c:\Documents and Settings\bonfill\Mes documents\acdsee.exe c:\Documents and Settings\bonfill\Mes documents\acdsee-fr.exe c:\Documents and Settings\bonfill\Mes documents\FreeScan.exe c:\Documents and Settings\bonfill\Mes documents\install messenger.exe c:\Documents and Settings\bonfill\Mes documents\pllangs.exe c:\Documents and Settings\bonfill\Mes documents\RepairRegistryPro.exe c:\Documents and Settings\bonfill\Mes documents\rp505fra.exe c:\Documents and Settings\bonfill\Mes documents\setupfre-avast.exe c:\Documents and Settings\bonfill\Mes documents\Windows2000-KB823980-x86-FRA.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Eudora5.2.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\antivirus.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\GÈoKid.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\q290108.exe
  7. mailme
    Salut, Voilà, je viens de suivre tes indications : 1 - Mise à jour d'AVG AS (mise à jour en ligne cette fois puisque ma connexion internet fonctionne (plus de problème de reboot)) 2 - Redémarrage en mode sans echec 3 - Scan AVG AS (rapport ci-dessous) 4 - Fix avec WinPFind3U.exe en copiant les ligne que tu m'as donné = Plantage mais rapport généré voir ci-dessous 5 - Refait le Fix WinPFind3U.exe avec les mêmes lignes = succès (nouveau rapport également ci-dessous) 5 - Scan en ligne avec Panda (rapport ci-dessous Peux-tu me dire ce que tu en pense ? Sinon, dans le répertoire C:\WINNT\inet20002 il n'y a rien, aucun fichier, aucun fichier caché non plus. PS : nouvelle tentative de mise à jour avec Windows Update et toujours la même erreur... Voici les rapports : --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + CrÈÈ â€¡: 12:58:29 21/03/2007 + RÈsultat de l'analyse: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WinOpts -> Proxy.Small : NettoyÈ et sauvegardÈ (mise en quarantaine). C:\Documents and Settings\bonfill\Cookies\bonfill@bluestreak[2].txt -> TrackingCookie.Bluestreak : NettoyÈ. C:\Documents and Settings\bonfill\Cookies\bonfill@com[1].txt -> TrackingCookie.Com : NettoyÈ. C:\Documents and Settings\bonfill\Cookies\[email protected][1].txt -> TrackingCookie.Serving-sys : NettoyÈ. C:\Documents and Settings\bonfill\Cookies\bonfill@serving-sys[1].txt -> TrackingCookie.Serving-sys : NettoyÈ. C:\Documents and Settings\bonfill\Cookies\[email protected][2].txt -> TrackingCookie.Smartadserver : NettoyÈ. C:\Documents and Settings\bonfill\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : NettoyÈ. Fin du rapport --------------------------------- 1er rapport WinPFind3U.exe --------------------------------- Explorer killed successfully [ Extra Files ] DllUnregisterServer procedure not found in C:\WINNT\system32\zAskop.dll C:\WINNT\system32\zAskop.dll NOT unregistered. C:\WINNT\system32\zAskop.dll moved successfully. LoadLibrary failed for C:\WINNT\system32\rpcc.dll C:\WINNT\system32\rpcc.dll NOT unregistered. File move failed. C:\WINNT\system32\rpcc.dll scheduled to be moved on reboot. < End of log > Created on 03/21/2007 13:08:20 ----------------------------------- 2eme rapport WinPFind3U.exe ----------------------------------- Explorer killed successfully [ Extra Files ] File/Folder C:\WINNT\system32\zAskop.dll not found. LoadLibrary failed for C:\WINNT\system32\rpcc.dll C:\WINNT\system32\rpcc.dll NOT unregistered. File move failed. C:\WINNT\system32\rpcc.dll scheduled to be moved on reboot. < End of log > Created on 03/21/2007 13:08:57 ----------------------------------- Rapport Panda Active Scan ----------------------------------- Incident Statut Analyse Virus:Trj/Alanchum.RL DÈsinfectÈ C:\Documents and Settings\bonfill\Bureau\AV\moved-files\ma.exe.exe Virus:Trj/Winopts.AB DÈsinfectÈ C:\Documents and Settings\bonfill\Bureau\WinPFind3u\MovedFiles\WINNT\system32\rpcc.dll Spyware:Cookie/Xiti No DÈsinfectÈ C:\Documents and Settings\bonfill\Cookies\bonfill@xiti[1].txt Outil indÈsirable:Application/Processor No DÈsinfectÈ C:\WINNT\system32\Process.exe Virus:Trj/Clicker.VE DÈsinfectÈ C:\WINNT\Temp\update2.exe
  8. mailme
    Et voici le rapport WinPFind3U.exe... merci de m'éclairer. WinPFind3 logfile created on: 20/03/2007 10:45:40 WinPFind3U by OldTimer - Version 1.0.27 Folder = C:\Documents and Settings\bonfill\Bureau\WinPFind3u\ Microsoft Windows 2000 Service Pack 4 (Version = 5.0.2195) Internet Explorer (Version = 6.0.2800.1106) 191 Mb Total Physical Memory | 67 Mb Available Physical Memory | 35,46% Memory free 459 Mb Paging File | 283 Mb Available in Paging File | 61,83% Paging File free Paging file location(s): C:\pagefile.sys 288 576; %SystemDrive% = C: | %SystemRoot% = C:\WINNT | %ProgramFiles% = C:\Program Files Drive C: | 14 Gb Total Space | 4 Gb Free Space | 28,08% Space Free D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded Computer Name: HOME-7D8EWRHSKV Current User Name: bonfill Logged in as Administrator. Current Boot Mode: Normal [Processes - Non-Microsoft Only] ashdisp.exe -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe -> [Ver = 4, 7, 936, 0 | Size = 108160 bytes | Modified Date = 12/01/2007 12:24:32 | Attr = ] ashserv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> [Ver = 4, 7, 936, 0 | Size = 132736 bytes | Modified Date = 15/01/2007 18:28:52 | Attr = ] aswupdsv.exe -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> [Ver = | Size = 59008 bytes | Modified Date = 15/01/2007 18:18:24 | Attr = ] guard.exe -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\guard.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 47 | Size = 204800 bytes | Modified Date = 28/09/2006 15:13:20 | Attr = ] mixer.exe -> %SystemRoot%\mixer.exe -> C-Media Electronic Inc. [Ver = 1.36 | Size = 1118208 bytes | Modified Date = 24/05/2001 16:22:20 | Attr = R ] monitor.exe -> %ProgramFiles%\OLYMPUS\OLYMPUS Master\Monitor.exe -> OLYMPUS IMAGING CORP. [Ver = 1, 4, 1, 3 | Size = 57344 bytes | Modified Date = 29/11/2005 19:19:00 | Attr = ] pctspk.exe -> %System32%\pctspk.exe -> PCtel, Inc. [Ver = 4.00 | Size = 74752 bytes | Modified Date = 27/09/2000 07:58:48 | Attr = ] qttask.exe -> %ProgramFiles%\QuickTime\qttask.exe -> Apple Computer, Inc. [Ver = 6.4 | Size = 77824 bytes | Modified Date = 27/03/2006 07:12:56 | Attr = ] winpfind3u.exe -> %UserDesktop%\WinPFind3u\WinPFind3U.exe -> Oldtimer Tools [Ver = 1.0.27.0 | Size = 316416 bytes | Modified Date = 19/03/2007 17:58:42 | Attr = ] [Win32 Services - Non-Microsoft Only] (Adobe LM Service) Adobe LM Service [Win32_Own | On_Demand | Stopped] -> %CommonProgramFiles%\Adobe Systems Shared\Service\Adobelmsvc.exe -> [Ver = 2.43.000 | Size = 68096 bytes | Modified Date = 03/11/2006 14:34:02 | Attr = ] (aswUpdSv) avast! iAVS4 Control Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> [Ver = | Size = 59008 bytes | Modified Date = 15/01/2007 18:18:24 | Attr = ] (avast! Antivirus) avast! Antivirus [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> [Ver = 4, 7, 936, 0 | Size = 132736 bytes | Modified Date = 15/01/2007 18:28:52 | Attr = ] (avast! Web Scanner) avast! Web Scanner [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 7, 936, 0 | Size = 370304 bytes | Modified Date = 12/01/2007 12:23:24 | Attr = ] (AVG Anti-Spyware Guard) AVG Anti-Spyware Guard [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\guard.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 47 | Size = 204800 bytes | Modified Date = 28/09/2006 15:13:20 | Attr = ] (dmadmin) Service d'administration du Gestionnaire de disque logique [Win32_Shared | On_Demand | Stopped] -> %System32%\dmadmin.exe -> VERITAS Software Corp. [Ver = 2195.6624.297.3 | Size = 147728 bytes | Modified Date = 19/06/2003 20:05:04 | Attr = ] (Pctspk) W2K PCtel speaker phone [Win32_Own | Auto | Running] -> %System32%\pctspk.exe -> PCtel, Inc. [Ver = 4.00 | Size = 74752 bytes | Modified Date = 27/09/2000 07:58:48 | Attr = ] [Registry - Non-Microsoft Only] < Run [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run !AVG Anti-Spyware -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\avgas.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 50 | Size = 6266880 bytes | Modified Date = 07/10/2006 13:20:00 | Attr = ] avast! -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe -> [Ver = 4, 7, 936, 0 | Size = 108160 bytes | Modified Date = 12/01/2007 12:24:32 | Attr = ] C-Media Mixer -> %SystemRoot%\mixer.exe -> C-Media Electronic Inc. [Ver = 1.36 | Size = 1118208 bytes | Modified Date = 24/05/2001 16:22:20 | Attr = R ] CountrySelection -> %System32%\pctptt.exe -> PCtel, Inc. [Ver = 1, 0, 0, 0 | Size = 71168 bytes | Modified Date = 27/09/2000 02:15:20 | Attr = ] eBayToolbar -> %ProgramFiles%\eBay\eBay Toolbar2\eBayTBDaemon.exe -> File not found NeroCheck -> %System32%\NeroCheck.exe -> Ahead Software Gmbh [Ver = 1, 0, 0, 2 | Size = 155648 bytes | Modified Date = 09/07/2001 11:50:42 | Attr = ] OM_Monitor -> %ProgramFiles%\OLYMPUS\OLYMPUS Master\FirstStart.exe -> OLYMPUS IMAGING CORP. [Ver = 1, 4, 1, 3 | Size = 40960 bytes | Modified Date = 29/11/2005 19:19:00 | Attr = ] QuickTime Task -> %ProgramFiles%\QuickTime\qttask.exe -> Apple Computer, Inc. [Ver = 6.4 | Size = 77824 bytes | Modified Date = 27/03/2006 07:12:56 | Attr = ] < OptionalComponents [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\ IMAIL -> Installed = 1 -> MAPI -> Installed = 1 -> MSFS -> Installed = 1 -> < Run [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run MC -> %ProgramFiles%\OLYMPUS\OLYMPUS Master\FirstStart.exe -> OLYMPUS IMAGING CORP. [Ver = 1, 4, 1, 3 | Size = 40960 bytes | Modified Date = 29/11/2005 19:19:00 | Attr = ] OM_Monitor -> %ProgramFiles%\OLYMPUS\OLYMPUS Master\Monitor.exe -> OLYMPUS IMAGING CORP. [Ver = 1, 4, 1, 3 | Size = 57344 bytes | Modified Date = 29/11/2005 19:19:00 | Attr = ] Skype -> %ProgramFiles%\Skype\Phone\Skype.exe -> File not found Spamihilator -> %ProgramFiles%\Spamihilator\spamihilator.exe -> File not found < Common Startup > -> C:\Documents and Settings\All Users\Menu DÈmarrer\Programmes\DÈmarrage %AllUsersStartup%\Adobe Gamma Loader.exe.lnk -> %CommonProgramFiles%\Adobe\Calibration\Adobe Gamma Loader.exe -> Adobe Systems, Inc. [Ver = 1, 0, 0, 1 | Size = 110592 bytes | Modified Date = 24/08/2000 15:45:38 | Attr = ] %AllUsersStartup%\Adobe Gamma Loader.lnk -> %CommonProgramFiles%\Adobe\Calibration\Adobe Gamma Loader.exe -> Adobe Systems, Inc. [Ver = 1, 0, 0, 1 | Size = 110592 bytes | Modified Date = 24/08/2000 15:45:38 | Attr = ] < ShellExecuteHooks [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks {57B86673-276A-48B2-BAE7-C6DBB3020EB8} [HKLM] -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll [AVG Anti-Spyware 7.5] -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 47 | Size = 73728 bytes | Modified Date = 28/09/2006 15:13:28 | Attr = ] {EDB0E980-90BD-11D4-8599-0008C7D3B6F8} [HKLM] -> %ProgramFiles%\Qualcomm\Eudora\EuShlExt.dll [Eudora's Shell Extension] -> Qualcomm Inc. [Ver = 1, 0, 1, 1 | Size = 86016 bytes | Modified Date = 23/10/2002 09:22:16 | Attr = ] < SecurityProviders [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders < Winlogon settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon *VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet -> Control_RunDLL -> -> File not found < Winlogon settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon < HOSTS File > (716 bytes) -> C:\WINNT\System32\drivers\etc\Hosts 127.0.0.1 localhost -> -> < Internet Explorer Settings > -> HKLM: Default_Page_URL -> http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome -> HKLM: Main\\Default_Search_URL -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch -> HKLM: Local Page -> C:\WINNT\SYSTEM32\blank.htm -> HKLM: Search Page -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch -> HKLM: Start Page -> http://www.microsoft.com/isapi/redir.dll?p...ER}&ar=home -> HKLM: CustomizeSearch -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm -> HKLM: Search\\Default_Search_URL -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch -> HKLM: SearchAssistant -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm -> HKCU: Default_Search_URL -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch -> HKCU: Local Page -> C:\WINNT\SYSTEM32\blank.htm -> HKCU: Search Page -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch -> HKCU: Start Page -> http://www.google.fr/ -> HKCU: ProxyEnable -> 0 -> < BHO's > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKLM] -> %ProgramFiles%\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [AcroIEHlprObj Class] -> Adobe Systems Incorporated [Ver = 6.0.1.2003110300 | Size = 54248 bytes | Modified Date = 03/11/2003 13:17:44 | Attr = ] < Internet Explorer ToolBars [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ WebBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found < Internet Explorer Menu Extensions [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ &eBay Search -> %ProgramFiles%\eBay\eBay Toolbar2\eBayTb.dll\RCSearch.htm -> File not found E&xporter vers Microsoft Excel -> -> File not found < Internet Explorer Plugins [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\Extension\ .pdf -> %ProgramFiles%\Internet Explorer\PLUGINS\nppdf32.dll [Adobe Acrobat] -> Adobe Systems Inc. [Ver = 6.0.0.2003051500 | Size = 133376 bytes | Modified Date = 14/05/2003 23:01:48 | Attr = ] < DNS Name Servers [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ {6EF55BFE-A5E6-4019-838D-C33105C74C47} -> 212.27.32.176,212.27.32.177 (Carte Realtek RTL8139(A) PCI Fast Ethernet) -> {8354EE15-7D54-4FFC-BE21-874BBEC0348E} -> 212.27.32.176,212.27.32.177 (Realtek RTL8139/810x Family Fast Ethernet NIC) -> {907BC19A-E195-4CE3-A841-94B4313F86AE} -> (Carte Realtek PCI Ethernet ‡ base RTL8029(AS)) -> {F6BB1AA2-9737-4DE4-BCEE-691EE36D481B} -> (Carte Fast Ethernet PCI D-Link DFE-530TX) -> < Protocol Handlers [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ ipp -> Reg Data - Key not found -> File not found msdaipp -> Reg Data - Key not found -> File not found < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} -> QuickTime Object - CodeBase = http://www.apple.com/qtactivex/qtplugin.cab -> {166B1BCA-3F9C-11CF-8075-444553540000} -> Shockwave ActiveX Control - CodeBase = http://download.macromedia.com/pub/shockwa...ector/swdir.cab -> {33564D57-0000-0010-8000-00AA00389B71} -> - CodeBase = http://download.microsoft.com/download/F/6...922/wmv9VCM.CAB -> {6414512B-B978-451D-A0D8-FCFDF33E833C} -> WUWebControl Class - CodeBase = http://update.microsoft.com/windowsupdate/...b?1170694926193 -> {9F1C11AA-197B-4942-BA54-47A8489BB47F} -> - CodeBase = http://v4.windowsupdate.microsoft.com/CAB/...8510.0940972222 -> {D27CDB6E-AE6D-11CF-96B8-444553540000} -> - CodeBase = http://fpdownload.macromedia.com/pub/shock...ash/swflash.cab -> DirectAnimation Java Classes -> - CodeBase = file://C:\WINNT\Java\classes\dajava.cab -> Microsoft XML Parser for Java -> - CodeBase = file://C:\WINNT\Java\classes\xmldso.cab -> teleir_cert -> - CodeBase = https://static.ir.dgi.minefi.gouv.fr/secure...teleir_cert.cab -> [Files/Folders - Created Within 30 days] diff.exe -> %SystemDrive%\diff.exe -> [Ver = | Size = 68096 bytes | Created Date = 14/03/2007 16:55:40 | Attr = ] grep.exe -> %SystemDrive%\grep.exe -> [Ver = | Size = 103424 bytes | Created Date = 14/03/2007 16:55:40 | Attr = ] reboot.cmd -> %SystemDrive%\reboot.cmd -> [Ver = | Size = 853 bytes | Created Date = 14/03/2007 16:55:40 | Attr = ] _OTMoveIt -> %SystemDrive%\_OTMoveIt -> [Folder | Created Date = 14/03/2007 15:59:53 | Attr = ] OPTIONS -> %SystemRoot%\OPTIONS -> [Folder | Created Date = 14/03/2007 15:05:39 | Attr = ] pss -> %SystemRoot%\pss -> [Folder | Created Date = 13/03/2007 19:41:33 | Attr = ] ServicePackFiles -> %SystemRoot%\ServicePackFiles -> [Folder | Created Date = 15/03/2007 12:01:36 | Attr = ] atmfd.dll -> %System32%\atmfd.dll -> Adobe Systems Incorporated [Ver = 5.0 Build 225 | Size = 291888 bytes | Created Date = 15/03/2007 11:49:09 | Attr = ] atmlib.dll -> %System32%\atmlib.dll -> Adobe Systems [Ver = 5.0 Build 225 | Size = 31504 bytes | Created Date = 15/03/2007 11:49:10 | Attr = ] CertSrv -> %System32%\CertSrv -> [Folder | Created Date = 15/03/2007 12:01:35 | Attr = ] command.com -> %System32%\command.com -> [Ver = | Size = 52098 bytes | Created Date = 15/03/2007 11:49:32 | Attr = ] dfrgfat.exe -> %System32%\dfrgfat.exe -> Executive Software International, Inc. [Ver = 5.00.2195.6605 | Size = 62224 bytes | Created Date = 15/03/2007 11:49:42 | Attr = ] dfrgntfs.exe -> %System32%\dfrgntfs.exe -> Executive Software International, Inc. [Ver = 5.00.2195.6605 | Size = 76048 bytes | Created Date = 15/03/2007 11:49:42 | Attr = ] dfrgsnap.dll -> %System32%\dfrgsnap.dll -> Executive Software International, Inc. [Ver = 5.00.2195.6605 | Size = 42768 bytes | Created Date = 15/03/2007 11:49:42 | Attr = ] dmadmin.exe -> %System32%\dmadmin.exe -> VERITAS Software Corp. [Ver = 2195.6624.297.3 | Size = 147728 bytes | Created Date = 15/03/2007 11:49:45 | Attr = ] dmconfig.dll -> %System32%\dmconfig.dll -> VERITAS Software Corp. [Ver = 2195.6605.297.3 | Size = 316176 bytes | Created Date = 15/03/2007 11:49:46 | Attr = ] dmdlgs.dll -> %System32%\dmdlgs.dll -> Microsoft Corp., VERITAS Software [Ver = 2195.6605.297.3 | Size = 174864 bytes | Created Date = 15/03/2007 11:49:46 | Attr = ] dmdskmgr.dll -> %System32%\dmdskmgr.dll -> Microsoft Corp., VERITAS Software [Ver = 2195.6605.297.3 | Size = 163600 bytes | Created Date = 15/03/2007 11:49:46 | Attr = ] dmdskres.dll -> %System32%\dmdskres.dll -> Microsoft Corp., VERITAS Software [Ver = 2195.6605.297.3 | Size = 140288 bytes | Created Date = 15/03/2007 11:49:46 | Attr = ] dmintf.dll -> %System32%\dmintf.dll -> VERITAS Software Corp. [Ver = 2195.6605.297.3 | Size = 13072 bytes | Created Date = 15/03/2007 11:49:46 | Attr = ] dmremote.exe -> %System32%\dmremote.exe -> VERITAS Software Corp. [Ver = 2195.6605.297.3 | Size = 10512 bytes | Created Date = 15/03/2007 11:49:46 | Attr = ] dmserver.dll -> %System32%\dmserver.dll -> VERITAS Software Corp. [Ver = 2195.6605.297.3 | Size = 12048 bytes | Created Date = 15/03/2007 12:25:39 | Attr = ] dmutil.dll -> %System32%\dmutil.dll -> VERITAS Software Corp. [Ver = 2195.6605.297.3 | Size = 50960 bytes | Created Date = 15/03/2007 11:49:46 | Attr = ] dmview.ocx -> %System32%\dmview.ocx -> Microsoft Corp., VERITAS Software [Ver = 2195.6605.297.3 | Size = 61712 bytes | Created Date = 15/03/2007 11:49:46 | Attr = ] dumphive.exe -> %System32%\dumphive.exe -> [Ver = | Size = 51200 bytes | Created Date = 07/03/2007 12:41:22 | Attr = ] extenum.ldf -> %System32%\extenum.ldf -> [Ver = | Size = 353 bytes | Created Date = 15/03/2007 11:55:25 | Attr = ] HTICONS.DLL -> %System32%\HTICONS.DLL -> Hilgraeve, Inc. [Ver = 5.00.2195.6684 | Size = 21776 bytes | Created Date = 15/03/2007 11:50:37 | Attr = ] ie_de -> %System32%\ie_de -> [Folder | Created Date = 15/03/2007 12:01:35 | Attr = ] imgedit.ocx -> %System32%\imgedit.ocx -> Eastman Software, Inc., A Kodak Business [Ver = 5.00.2195.6601 | Size = 311056 bytes | Created Date = 15/03/2007 11:50:44 | Attr = ] instcat.sql -> %System32%\instcat.sql -> [Ver = | Size = 618889 bytes | Created Date = 15/03/2007 11:50:51 | Attr = ] key01.sys -> %System32%\key01.sys -> [Ver = | Size = 42809 bytes | Created Date = 15/03/2007 11:51:19 | Attr = ] KEYBOARD.SYS -> %System32%\KEYBOARD.SYS -> [Ver = | Size = 42537 bytes | Created Date = 15/03/2007 11:51:19 | Attr = ] mac8021x.ldf -> %System32%\mac8021x.ldf -> [Ver = | Size = 4512 bytes | Created Date = 15/03/2007 11:55:27 | Attr = ] msswch.dll -> %System32%\msswch.dll -> Madenta Applications Inc. [Ver = 1, 0, 0, 1 | Size = 14608 bytes | Created Date = 15/03/2007 11:55:06 | Attr = ] msswchx.exe -> %System32%\msswchx.exe -> Madenta Applications Inc. [Ver = 1, 0, 0, 1 | Size = 7440 bytes | Created Date = 15/03/2007 11:55:06 | Attr = ] NTIO.SYS -> %System32%\NTIO.SYS -> [Ver = | Size = 33824 bytes | Created Date = 15/03/2007 12:25:32 | Attr = ] ntio404.sys -> %System32%\ntio404.sys -> [Ver = | Size = 34544 bytes | Created Date = 15/03/2007 12:25:32 | Attr = ] ntio411.sys -> %System32%\ntio411.sys -> [Ver = | Size = 35648 bytes | Created Date = 15/03/2007 12:25:32 | Attr = ] ntio412.sys -> %System32%\ntio412.sys -> [Ver = | Size = 35408 bytes | Created Date = 15/03/2007 12:25:32 | Attr = ] ntio804.sys -> %System32%\ntio804.sys -> [Ver = | Size = 34544 bytes | Created Date = 15/03/2007 12:25:32 | Attr = ] odbcconf.rsp -> %System32%\odbcconf.rsp -> [Ver = | Size = 4296 bytes | Created Date = 15/03/2007 11:56:00 | Attr = ] oieng400.dll -> %System32%\oieng400.dll -> Eastman Software, Inc., A Kodak Business [Ver = 5.00.2195.6601 | Size = 444176 bytes | Created Date = 15/03/2007 11:56:08 | Attr = ] Perflib_Perfdata_1e8.dat -> %System32%\Perflib_Perfdata_1e8.dat -> [Ver = | Size = 16384 bytes | Created Date = 03/03/2007 18:57:07 | Attr = ] Perflib_Perfdata_1ec.dat -> %System32%\Perflib_Perfdata_1ec.dat -> [Ver = | Size = 16384 bytes | Created Date = 14/03/2007 10:20:34 | Attr = ] Perflib_Perfdata_1f0.dat -> %System32%\Perflib_Perfdata_1f0.dat -> [Ver = | Size = 16384 bytes | Created Date = 15/03/2007 11:34:41 | Attr = ] Perflib_Perfdata_1f4.dat -> %System32%\Perflib_Perfdata_1f4.dat -> [Ver = | Size = 16384 bytes | Created Date = 19/03/2007 09:59:35 | Attr = ] Perflib_Perfdata_1f8.dat -> %System32%\Perflib_Perfdata_1f8.dat -> [Ver = | Size = 16384 bytes | Created Date = 15/03/2007 19:09:41 | Attr = ] Perflib_Perfdata_204.dat -> %System32%\Perflib_Perfdata_204.dat -> [Ver = | Size = 16384 bytes | Created Date = 07/03/2007 10:05:03 | Attr = ] Perflib_Perfdata_208.dat -> %System32%\Perflib_Perfdata_208.dat -> [Ver = | Size = 16384 bytes | Created Date = 02/03/2007 18:56:14 | Attr = ] Perflib_Perfdata_20c.dat -> %System32%\Perflib_Perfdata_20c.dat -> [Ver = | Size = 16384 bytes | Created Date = 15/03/2007 12:29:50 | Attr = ] Perflib_Perfdata_214.dat -> %System32%\Perflib_Perfdata_214.dat -> [Ver = | Size = 16384 bytes | Created Date = 07/03/2007 14:32:09 | Attr = ] Perflib_Perfdata_540.dat -> %System32%\Perflib_Perfdata_540.dat -> [Ver = | Size = 16384 bytes | Created Date = 03/03/2007 21:49:07 | Attr = ] Perflib_Perfdata_560.dat -> %System32%\Perflib_Perfdata_560.dat -> [Ver = | Size = 16384 bytes | Created Date = 02/03/2007 20:09:08 | Attr = ] Process.exe -> %System32%\Process.exe -> http://www.beyondlogic.org [Ver = 2, 0, 0, 0 | Size = 53248 bytes | Created Date = 07/03/2007 12:41:22 | Attr = ] rsm.exe -> %System32%\rsm.exe -> Microsoft Corp [Ver = 5, 0, 2074, 0 | Size = 48400 bytes | Created Date = 15/03/2007 12:25:28 | Attr = ] SrchSTS.exe -> %System32%\SrchSTS.exe -> S!Ri [Ver = | Size = 288417 bytes | Created Date = 07/03/2007 12:41:22 | Attr = ] swreg.exe -> %System32%\swreg.exe -> SteelWerX [Ver = 2.0.1.0 | Size = 135168 bytes | Created Date = 07/03/2007 12:41:22 | Attr = ] swsc.exe -> %System32%\swsc.exe -> [Ver = | Size = 40960 bytes | Created Date = 07/03/2007 12:41:22 | Attr = ] swxcacls.exe -> %System32%\swxcacls.exe -> SteelWerX [Ver = 1.0.1.1 | Size = 79360 bytes | Created Date = 07/03/2007 12:41:22 | Attr = ] tcpmon.ini -> %System32%\tcpmon.ini -> [Ver = | Size = 35586 bytes | Created Date = 15/03/2007 11:57:26 | Attr = ] tmp.reg -> %System32%\tmp.reg -> [Ver = | Size = 2162 bytes | Created Date = 07/03/2007 12:41:56 | Attr = ] webfldrs.msi -> %System32%\webfldrs.msi -> [Ver = | Size = 1367552 bytes | Created Date = 15/03/2007 11:58:15 | Attr = ] rtl8029.sys -> %System32%\dllcache\rtl8029.sys -> REALTEK Semiconductor Corp. [Ver = 5.29.98.1230 | Size = 18704 bytes | Created Date = 07/03/2007 14:31:41 | Attr = ] AvgAsCln.sys -> %System32%\drivers\AvgAsCln.sys -> GRISOFT, s.r.o. [Ver = 1.0.0.14 | Size = 3968 bytes | Created Date = 14/03/2007 15:40:16 | Attr = ] fetnd5.sys -> %System32%\drivers\fetnd5.sys -> VIA Technologies, Inc. [Ver = 2.33 | Size = 21264 bytes | Created Date = 07/03/2007 15:07:12 | Attr = ] RTL8029.sys -> %System32%\drivers\RTL8029.sys -> REALTEK Semiconductor Corp. [Ver = 5.29.98.1230 | Size = 18704 bytes | Created Date = 07/03/2007 14:31:41 | Attr = ] Rtnic.sys -> %System32%\drivers\Rtnic.sys -> Realtek Semiconductor Corporation [Ver = 5,663,1212,2006 | Size = 84608 bytes | Created Date = 14/03/2007 15:05:41 | Attr = ] [Files/Folders - Modified Within 30 days] boot.ini -> %SystemDrive%\boot.ini -> [Ver = | Size = 193 bytes | Modified Date = 15/03/2007 19:08:18 | Attr = HS] NTDETECT.COM -> %SystemDrive%\NTDETECT.COM -> [Ver = | Size = 34724 bytes | Modified Date = 15/03/2007 11:59:50 | Attr = RHS] Program Files -> %ProgramFiles% -> [Folder | Modified Date = 15/03/2007 18:38:24 | Attr = ] WINNT -> %SystemRoot% -> [Folder | Modified Date = 20/03/2007 10:03:36 | Attr = ] WUTemp -> %SystemDrive%\WUTemp -> [Folder | Modified Date = 15/03/2007 11:46:36 | Attr = ] _OTMoveIt -> %SystemDrive%\_OTMoveIt -> [Folder | Modified Date = 14/03/2007 15:59:54 | Attr = ] AppPatch -> %SystemRoot%\AppPatch -> [Folder | Modified Date = 15/03/2007 12:01:36 | Attr = ] cmmixer.ini -> %SystemRoot%\cmmixer.ini -> [Ver = | Size = 292 bytes | Modified Date = 16/03/2007 19:35:34 | Attr = ] CSC -> %SystemRoot%\CSC -> [Folder | Modified Date = 15/03/2007 09:41:42 | Attr = HS] Debug -> %SystemRoot%\Debug -> [Folder | Modified Date = 19/03/2007 10:01:22 | Attr = ] Downloaded Program Files -> %SystemRoot%\Downloaded Program Files -> [Folder | Modified Date = 07/03/2007 12:38:38 | Attr = S] Fonts -> %SystemRoot%\Fonts -> [Folder | Modified Date = 15/03/2007 12:01:10 | Attr = R S] Help -> %SystemRoot%\Help -> [Folder | Modified Date = 15/03/2007 17:35:14 | Attr = ] inet20002 -> %SystemRoot%\inet20002 -> [Folder | Modified Date = 03/03/2007 17:46:50 | Attr = ] inf -> %SystemRoot%\inf -> [Folder | Modified Date = 19/03/2007 10:10:18 | Attr = H ] Installer -> %SystemRoot%\Installer -> [Folder | Modified Date = 14/03/2007 15:45:50 | Attr = HS] Minidump -> %SystemRoot%\Minidump -> [Folder | Modified Date = 15/03/2007 09:41:24 | Attr = ] OPTIONS -> %SystemRoot%\OPTIONS -> [Folder | Modified Date = 14/03/2007 15:05:40 | Attr = ] Papier-peint.bmp d'ACD -> %SystemRoot%\Papier-peint.bmp d'ACD -> [Ver = | Size = 1440054 bytes | Modified Date = 27/02/2007 18:42:30 | Attr = ] pss -> %SystemRoot%\pss -> [Folder | Modified Date = 15/03/2007 12:48:22 | Attr = ] security -> %SystemRoot%\security -> [Folder | Modified Date = 15/03/2007 14:03:34 | Attr = ] ServicePackFiles -> %SystemRoot%\ServicePackFiles -> [Folder | Modified Date = 15/03/2007 12:01:38 | Attr = ] SoftwareDistribution -> %SystemRoot%\SoftwareDistribution -> [Folder | Modified Date = 15/03/2007 15:13:16 | Attr = ] system -> %SystemRoot%\system -> [Folder | Modified Date = 15/03/2007 12:01:08 | Attr = ] System.ini -> %SystemRoot%\System.ini -> [Ver = | Size = 302 bytes | Modified Date = 15/03/2007 19:08:18 | Attr = ] system32 -> %System32% -> [Folder | Modified Date = 19/03/2007 10:10:06 | Attr = ] Tasks -> %SystemRoot%\Tasks -> [Folder | Modified Date = 14/03/2007 10:08:58 | Attr = S] Temp -> %SystemRoot%\Temp -> [Folder | Modified Date = 20/03/2007 10:41:10 | Attr = ] Web -> %SystemRoot%\Web -> [Folder | Modified Date = 07/03/2007 09:53:56 | Attr = S] win.ini -> %SystemRoot%\win.ini -> [Ver = | Size = 688 bytes | Modified Date = 15/03/2007 19:08:18 | Attr = ] SA.DAT -> %SystemRoot%\tasks\SA.DAT -> [Ver = | Size = 6 bytes | Modified Date = 19/03/2007 09:59:32 | Attr = H ] CertSrv -> %System32%\CertSrv -> [Folder | Modified Date = 15/03/2007 12:01:36 | Attr = ] Com -> %System32%\Com -> [Folder | Modified Date = 15/03/2007 12:01:18 | Attr = ] dllcache -> %System32%\dllcache -> [Folder | Modified Date = 15/03/2007 14:07:40 | Attr = RHS] drivers -> %System32%\drivers -> [Folder | Modified Date = 15/03/2007 12:29:14 | Attr = ] export -> %System32%\export -> [Folder | Modified Date = 15/03/2007 12:01:16 | Attr = ] extenum.ldf -> %System32%\extenum.ldf -> [Ver = | Size = 353 bytes | Modified Date = 15/03/2007 11:55:26 | Attr = ] FNTCACHE.DAT -> %System32%\FNTCACHE.DAT -> [Ver = | Size = 97456 bytes | Modified Date = 15/03/2007 12:29:24 | Attr = ] ias -> %System32%\ias -> [Folder | Modified Date = 15/03/2007 12:01:12 | Attr = ] ie_de -> %System32%\ie_de -> [Folder | Modified Date = 15/03/2007 12:01:36 | Attr = ] inetsrv -> %System32%\inetsrv -> [Folder | Modified Date = 15/03/2007 12:01:36 | Attr = ] NtmsData -> %System32%\NtmsData -> [Folder | Modified Date = 19/03/2007 10:00:36 | Attr = ] Perflib_Perfdata_1e8.dat -> %System32%\Perflib_Perfdata_1e8.dat -> [Ver = | Size = 16384 bytes | Modified Date = 03/03/2007 18:57:08 | Attr = ] Perflib_Perfdata_1ec.dat -> %System32%\Perflib_Perfdata_1ec.dat -> [Ver = | Size = 16384 bytes | Modified Date = 14/03/2007 10:20:36 | Attr = ] Perflib_Perfdata_1f0.dat -> %System32%\Perflib_Perfdata_1f0.dat -> [Ver = | Size = 16384 bytes | Modified Date = 15/03/2007 11:34:42 | Attr = ] Perflib_Perfdata_1f4.dat -> %System32%\Perflib_Perfdata_1f4.dat -> [Ver = | Size = 16384 bytes | Modified Date = 19/03/2007 09:59:36 | Attr = ] Perflib_Perfdata_1f8.dat -> %System32%\Perflib_Perfdata_1f8.dat -> [Ver = | Size = 16384 bytes | Modified Date = 15/03/2007 19:09:42 | Attr = ] Perflib_Perfdata_204.dat -> %System32%\Perflib_Perfdata_204.dat -> [Ver = | Size = 16384 bytes | Modified Date = 07/03/2007 10:05:04 | Attr = ] Perflib_Perfdata_208.dat -> %System32%\Perflib_Perfdata_208.dat -> [Ver = | Size = 16384 bytes | Modified Date = 02/03/2007 18:56:16 | Attr = ] Perflib_Perfdata_20c.dat -> %System32%\Perflib_Perfdata_20c.dat -> [Ver = | Size = 16384 bytes | Modified Date = 15/03/2007 12:29:52 | Attr = ] Perflib_Perfdata_214.dat -> %System32%\Perflib_Perfdata_214.dat -> [Ver = | Size = 16384 bytes | Modified Date = 07/03/2007 14:32:10 | Attr = ] Perflib_Perfdata_540.dat -> %System32%\Perflib_Perfdata_540.dat -> [Ver = | Size = 16384 bytes | Modified Date = 03/03/2007 21:49:08 | Attr = ] Perflib_Perfdata_560.dat -> %System32%\Perflib_Perfdata_560.dat -> [Ver = | Size = 16384 bytes | Modified Date = 02/03/2007 20:09:10 | Attr = ] Setup -> %System32%\Setup -> [Folder | Modified Date = 15/03/2007 12:01:36 | Attr = ] tmp.reg -> %System32%\tmp.reg -> [Ver = | Size = 2162 bytes | Modified Date = 07/03/2007 12:43:54 | Attr = ] wbem -> %System32%\wbem -> [Folder | Modified Date = 15/03/2007 12:29:14 | Attr = ] etc -> %System32%\drivers\etc -> [Folder | Modified Date = 14/03/2007 10:06:50 | Attr = ] [File String Scan - Non-Microsoft Only] UPX! , UPX0 , -> %System32%\aswBoot.exe -> [Ver = 4, 7, 936, 0 | Size = 689280 bytes | Modified Date = 15/01/2007 18:32:08 | Attr = ] UPX! , UPX0 , -> %System32%\SrchSTS.exe -> S!Ri [Ver = | Size = 288417 bytes | Modified Date = 27/04/2006 16:49:30 | Attr = ] UPX! , UPX0 , -> %System32%\swreg.exe -> SteelWerX [Ver = 2.0.1.0 | Size = 135168 bytes | Modified Date = 29/08/2006 18:43:54 | Attr = ] UPX! , UPX0 , -> %System32%\swsc.exe -> [Ver = | Size = 40960 bytes | Modified Date = 09/01/2006 09:36:06 | Attr = ] UPX! , UPX0 , -> %System32%\swxcacls.exe -> SteelWerX [Ver = 1.0.1.1 | Size = 79360 bytes | Modified Date = 01/12/2006 05:20:34 | Attr = ] winsync , -> %System32%\wbdbase.deu -> [Ver = | Size = 1309184 bytes | Modified Date = 08/05/2001 01:00:00 | Attr = ] PEC2 , -> %System32%\drivers\winacpci.sys -> Conexant [Ver = 2.1.2.164.010 | Size = 900528 bytes | Modified Date = 03/11/1999 16:26:50 | Attr = ] < End of report >
  9. mailme
    Salut, Je me suis emmellé dans les rapports, j'ai posté un ancien rapport DiagHelp . Voici le dernier en date (d'aujourd'hui) ci-dessous. Pour répondre à tes autre questions : - Oui, j'ai bien supprimé les fichiers que tu m'avais indiqué - Oui, j'ai bien fait la mise à jour de AVG AS avec le fichier que tu m'avais indiqué Vraiment désolé de te faire perdre ton précieux temps, et merci encore. PS : Je suis en train de scanner la base de registre avec WinPFind3U.exe et t'envoie le rapport dès que c'est fait. ----------------------------------------------- DiagHelp ----------------------------------------------- C:\WINNT\System32/drivers\aswRdr.sys -->15/01/2007 18:26:08 C:\WINNT\System32/drivers\aswTdi.sys -->15/01/2007 18:25:24 C:\WINNT\System32/drivers\aswmon.sys -->21/12/2006 00:56:13 C:\WINNT\System32/drivers\aswmon2.sys -->21/12/2006 00:56:00 C:\WINNT\System32/drivers\aavmker4.sys -->21/12/2006 00:51:58 C:\WINNT\System32/drivers\Rtnic.sys -->14/12/2006 16:43:46 C:\WINNT\System32/drivers\AvgAsCln.sys -->05/09/2006 17:03:16 C:\WINNT\svcpack.log -->20/03/2007 10:00:45 C:\WINNT\setupapi.log -->19/03/2007 10:10:17 C:\WINNT\WindowsUpdate.log -->19/03/2007 09:59:47 C:\WINNT\SchedLgU.Txt -->16/03/2007 19:35:41 C:\WINNT\cmmixer.ini -->16/03/2007 19:35:32 C:\WINNT\ShellIconCache -->16/03/2007 19:35:24 C:\WINNT\WINNT32.LOG -->16/03/2007 19:23:07 C:\WINNT\win.ini -->15/03/2007 19:08:16 C:\WINNT\System.ini -->15/03/2007 19:08:16 C:\WINNT\ntbtlog.txt -->15/03/2007 17:51:49 C:\WINNT\EventSystem.log -->15/03/2007 14:13:06 C:\WINNT\Windows Update.log -->15/03/2007 12:27:54 C:\WINNT\ModemLog_HSP56 MicroModem.txt -->07/03/2007 10:40:52 C:\WINNT\ModemLog_Olitec PCI 56K Modem.txt -->07/03/2007 10:37:02 C:\WINNT\Papier-peint.bmp d'ACD -->27/02/2007 18:42:29 C:\WINNT\IsUn040c.exe |09/04/2003 15:30:58 C:\WINNT\IsUninst.exe |25/03/2003 17:18:05 C:\WINNT\mixer.exe |25/03/2003 17:07:38 C:\WINNT\mUninstallFR.exe |24/11/2004 19:04:38 C:\WINNT\twunk_16.exe |08/05/2001 01:00:00 C:\WINNT\twunk_32.exe |08/05/2001 01:00:00 C:\WINNT\unin040c.exe |24/11/2004 14:18:17 C:\WINNT\uninst.exe |23/10/2003 19:32:11 C:\WINNT\unvise32qt.exe |30/08/2003 12:13:03 C:\WINNT\twain.dll |08/05/2001 01:00:00 C:\WINNT\twain_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\append.exe |08/05/2001 01:00:00 C:\WINNT\system32\aswBoot.exe |13/07/2006 11:12:34 C:\WINNT\system32\CNDNDlg.exe |05/08/2005 19:36:14 C:\WINNT\system32\CreateReg.exe |19/10/2006 19:29:16 C:\WINNT\system32\debug.exe |08/05/2001 01:00:00 C:\WINNT\system32\dfrgfat.exe |15/03/2007 11:49:42 C:\WINNT\system32\dfrgntfs.exe |15/03/2007 11:49:42 C:\WINNT\system32\dmadmin.exe |15/03/2007 11:49:45 C:\WINNT\system32\dmremote.exe |15/03/2007 11:49:46 C:\WINNT\system32\dosx.exe |08/05/2001 01:00:00 C:\WINNT\system32\dumphive.exe |07/03/2007 12:41:22 C:\WINNT\system32\dvdplay.exe |15/12/1999 00:30:38 C:\WINNT\system32\edlin.exe |08/05/2001 01:00:00 C:\WINNT\system32\exe2bin.exe |08/05/2001 01:00:00 C:\WINNT\system32\fastopen.exe |08/05/2001 01:00:00 C:\WINNT\system32\mem.exe |08/05/2001 01:00:00 C:\WINNT\system32\mscdexnt.exe |08/05/2001 01:00:00 C:\WINNT\system32\msswchx.exe |15/03/2007 11:55:06 C:\WINNT\system32\NeroCheck.exe |09/07/2001 11:50:42 C:\WINNT\system32\nlsfunc.exe |08/05/2001 01:00:00 C:\WINNT\system32\nw16.exe |08/05/2001 01:00:00 C:\WINNT\system32\pctptt.exe |27/09/2000 02:15:20 C:\WINNT\system32\pctspk.exe |27/09/2000 07:58:48 C:\WINNT\system32\Process.exe |07/03/2007 12:41:22 C:\WINNT\system32\ptuninst.exe |27/09/2000 02:23:22 C:\WINNT\system32\redir.exe |08/05/2001 01:00:00 C:\WINNT\system32\setver.exe |08/05/2001 01:00:00 C:\WINNT\system32\share.exe |08/05/2001 01:00:00 C:\WINNT\system32\SrchSTS.exe |07/03/2007 12:41:22 C:\WINNT\system32\swreg.exe |07/03/2007 12:41:22 C:\WINNT\system32\swsc.exe |07/03/2007 12:41:22 C:\WINNT\system32\swxcacls.exe |07/03/2007 12:41:22 C:\WINNT\system32\vwipxspx.exe |08/05/2001 01:00:00 C:\WINNT\system32\a3d.dll |25/03/2003 17:07:38 C:\WINNT\system32\agusbsti.dll |09/04/2003 15:31:31 C:\WINNT\system32\amstream.dll |21/08/2006 13:36:53 C:\WINNT\system32\arxexprt.dll |19/10/2006 19:29:15 C:\WINNT\system32\ati2draa.dll |25/03/2003 14:33:25 C:\WINNT\system32\atmfd.dll |15/03/2007 11:49:09 C:\WINNT\system32\atmlib.dll |15/03/2007 11:49:10 C:\WINNT\system32\Audio3D.dll |25/03/2003 17:07:38 C:\WINNT\system32\BCGCB474.dll |19/10/2006 19:29:15 C:\WINNT\system32\BCGCBResFRA.dll |19/10/2006 19:29:16 C:\WINNT\system32\CmdLineExt.dll |19/10/2006 19:45:57 C:\WINNT\system32\CmdLineExt03.dll |19/10/2006 19:50:06 C:\WINNT\system32\cmnprop.dll |25/03/2003 17:07:38 C:\WINNT\system32\cmprop.dll |25/03/2003 17:07:38 C:\WINNT\system32\cncs232.dll |20/02/2002 19:20:50 C:\WINNT\system32\CNDCK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\CNDUK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\ConversApi.dll |19/10/2006 19:29:16 C:\WINNT\system32\CP30FW.DLL |19/10/2006 19:29:16 C:\WINNT\system32\czs_ui.dll |13/05/2002 14:05:32 C:\WINNT\system32\DC210.dll |20/03/2002 22:01:20 C:\WINNT\system32\DC240.dll |20/03/2002 22:01:20 C:\WINNT\system32\DC265.dll |20/03/2002 22:01:06 C:\WINNT\system32\DC280.dll |20/03/2002 22:01:20 C:\WINNT\system32\deimg.dll |13/05/2002 14:05:32 C:\WINNT\system32\deImg010.dll |13/05/2002 14:05:34 C:\WINNT\system32\deImg110.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg301.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg401.dll |13/05/2002 14:05:34 C:\WINNT\system32\deImg404.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg602.dll |13/05/2002 14:05:34 C:\WINNT\system32\Deimg603.dll |13/05/2002 14:05:34 C:\WINNT\system32\dfrgres.dll |08/05/2001 01:00:00 C:\WINNT\system32\dfrgsnap.dll |15/03/2007 11:49:42 C:\WINNT\system32\dfrgui.dll |08/05/2001 01:00:00 C:\WINNT\system32\dgrpsetu.dll |25/03/2003 14:31:51 C:\WINNT\system32\dgsetup.dll |25/03/2003 14:31:51 C:\WINNT\system32\dmconfig.dll |15/03/2007 11:49:46 C:\WINNT\system32\dmintf.dll |15/03/2007 11:49:46 C:\WINNT\system32\dmserver.dll |15/03/2007 12:25:39 C:\WINNT\system32\dmutil.dll |15/03/2007 11:49:46 C:\WINNT\system32\efsadu.dll |08/05/2001 01:00:00 C:\WINNT\system32\ekfpixaudio.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixexif.dll |20/03/2002 22:01:08 C:\WINNT\system32\ekfpixguid.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixio130.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixjpeg.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixpsets.dll |20/03/2002 22:01:20 C:\WINNT\system32\EqnClass.Dll |25/03/2003 14:31:50 C:\WINNT\system32\F210.dll |20/03/2002 22:01:20 C:\WINNT\system32\HHActiveX.dll |20/03/2002 21:01:58 C:\WINNT\system32\hpzcoi04.dll |15/11/2001 18:01:00 C:\WINNT\system32\hpzcon04.dll |15/11/2001 18:01:00 C:\WINNT\system32\hpzlnt04.dll |15/11/2001 18:01:01 C:\WINNT\system32\HTICONS.DLL |15/03/2007 11:50:37 C:\WINNT\system32\hypertrm.dll |25/03/2003 15:04:38 C:\WINNT\system32\iacenc.dll |23/04/2003 10:55:09 C:\WINNT\system32\iccvid.dll |08/05/2001 01:00:00 C:\WINNT\system32\imagr5.dll |21/09/2000 17:02:28 C:\WINNT\system32\imagx5.dll |27/09/2000 16:15:06 C:\WINNT\system32\ImagXpr5.dll |21/09/2000 12:53:00 C:\WINNT\system32\imgcmn.dll |25/03/2003 15:04:43 C:\WINNT\system32\imgshl.dll |25/03/2003 15:04:43 C:\WINNT\system32\Inetwh32.dll |25/03/2003 17:18:29 C:\WINNT\system32\ir32_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir41_qc.dll |08/05/2001 01:00:00 C:\WINNT\system32\IR41_QCX.dll |19/06/2001 11:06:50 C:\WINNT\system32\ir50_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir50_qc.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir50_qcx.dll |08/05/2001 01:00:00 C:\WINNT\system32\irisco32.dll |09/04/2003 15:34:01 C:\WINNT\system32\iyvu9_32.dll |23/04/2003 10:55:09 C:\WINNT\system32\JGA1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAA500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAD500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAU500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGDR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGDW500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGEA500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGED500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGEM500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFS500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGGI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI3500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI5500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGID500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIQ500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIT500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGM1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMC500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGME500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGN1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGOS500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPD500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPL500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGS1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGS3500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGSN500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGST500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\jpeg1x32.dll |25/03/2003 15:04:43 C:\WINNT\system32\jpeg2x32.dll |25/03/2003 15:04:43 C:\WINNT\system32\mciqtz32.dll |21/08/2006 13:36:53 C:\WINNT\system32\msdmo.dll |21/08/2006 13:36:55 C:\WINNT\system32\msencode.dll |30/08/2002 17:24:06 C:\WINNT\system32\msswch.dll |15/03/2007 11:55:06 C:\WINNT\system32\Nmea.dll |19/10/2006 19:29:16 C:\WINNT\system32\Ogc.dll |19/10/2006 19:29:16 C:\WINNT\system32\OgcDrvAvmap.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvGarmin.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvLowrance.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvMagellan.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvMlr.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvPyx.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSena.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSilva.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSuu.dll |19/10/2006 19:30:41 C:\WINNT\system32\oieng400.dll |15/03/2007 11:56:08 C:\WINNT\system32\oiprt400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oislb400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oissq400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oitwa400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oiui400.dll |25/03/2003 15:04:43 C:\WINNT\system32\PCDLIB32.DLL |09/12/1998 02:53:58 C:\WINNT\system32\picn20.dll |21/09/2000 07:47:10 C:\WINNT\system32\PixologyIRISS011.dll |07/11/2003 10:03:34 C:\WINNT\system32\Polyclip.dll |19/10/2006 19:29:16 C:\WINNT\system32\pscAdimg.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscCllct.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscCStUI.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDcd.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDevUI.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDvlp.dll |13/05/2002 14:05:34 C:\WINNT\system32\Pscl2STI.dll |13/05/2002 14:05:34 C:\WINNT\system32\PSCLK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\pscll.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscParse.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscSetup.dll |13/05/2002 14:05:34 C:\WINNT\system32\psdkdll.dll |13/05/2002 14:05:36 C:\WINNT\system32\psdkReg.dll |13/05/2002 14:05:36 C:\WINNT\system32\psisdecd.dll |21/08/2006 13:36:59 C:\WINNT\system32\psParse.dll |13/05/2002 14:05:36 C:\WINNT\system32\ptsetup.dll |27/09/2000 02:11:54 C:\WINNT\system32\Pvmjpg21.dll |21/08/2006 13:35:59 C:\WINNT\system32\qcut.dll |08/05/2001 01:00:00 C:\WINNT\system32\qedwipes.dll |21/08/2006 13:36:56 C:\WINNT\system32\RCalcul.dll |19/10/2006 19:29:16 C:\WINNT\system32\Roboex32.dll |25/03/2003 17:18:28 C:\WINNT\system32\rpcc.dll |16/02/2007 10:29:41 C:\WINNT\system32\SLIPRT.DLL |31/01/2006 09:34:35 C:\WINNT\system32\spxcoins.dll |25/03/2003 14:31:50 C:\WINNT\system32\tifflt.dll |25/03/2003 15:04:44 C:\WINNT\system32\TransportIrCOMM.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportIrDA.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportSerial.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportUSB.dll |20/03/2002 22:00:20 C:\WINNT\system32\tsbyuv.dll |15/12/1999 00:30:06 C:\WINNT\system32\tsd32.dll |08/05/2001 01:00:00 C:\WINNT\system32\TwnLib20.dll |26/06/2000 10:45:30 C:\WINNT\system32\UNACEV2.DLL |21/03/2002 15:39:02 C:\WINNT\system32\win87em.dll |08/05/2001 01:00:00 C:\WINNT\system32\x9.dll |19/10/2006 19:30:40 C:\WINNT\system32\xiffr3_0.dll |25/03/2003 15:04:44 C:\WINNT\system32\zAskop.dll |18/02/2007 09:34:51 Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\WINNT\system32 19/06/2003 20:05 5†392 CSRSS.EXE 1 fichier(s) 5†392 octets 0 RÈp(s) 4†321†165†312 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\WINNT\Downloaded Program Files 07/03/2007 12:38 <DIR> . 07/03/2007 12:38 <DIR> .. 17/11/2003 01:00 2†432 catalog.dat 10/09/2004 09:35 620 default.inf 07/06/2005 11:25 65 desktop.ini 02/04/2003 14:40 268 DHTMLAccess.inf 14/10/1997 18:52 697 DirectAnimation Java Classes.osd 13/11/2003 12:13 253 EGDHTML.inf 28/03/2002 15:05 1†268 erma.inf 25/08/2003 17:12 1†096 iuctl.inf 20/01/2000 15:25 1†162 Microsoft XML Parser for Java.osd 12/01/2000 16:07 6†854 navapi.vxd 12/01/2000 15:53 208†896 navapi32.dll 17/11/2003 01:00 120†008 naveng32.dll 17/11/2003 01:00 586†952 navex32a.dll 09/10/2003 09:32 144 QTPlugin.inf 17/11/2003 01:00 73†344 scrauth.dat 19/11/2003 17:37 0 SET13.tmp 02/12/2005 11:55 5†101 swflash.inf 17/11/2003 01:00 7†933 symaveng.cat 17/11/2003 01:00 901 symaveng.inf 17/11/2003 01:00 1†725 tcdefs.dat 17/11/2003 01:00 8†087 tcscan7.dat 17/11/2003 01:00 44†131 tcscan8.dat 17/11/2003 01:00 104†298 tcscan9.dat 08/03/2004 16:28 1†390 teleir_cert.osd 17/11/2003 01:00 453 tinf.dat 17/11/2003 01:00 148 tinfidx.dat 17/11/2003 01:00 1†957 tinfl.dat 17/11/2003 01:00 31†302 tscan1.dat 17/11/2003 01:00 1†179 tscan1hd.dat 17/11/2003 01:00 5†382 v.grd 17/11/2003 01:00 2†225 v.sig 17/11/2003 01:00 106†236 virscan.inf 17/11/2003 01:00 839†778 virscan1.dat 17/11/2003 01:00 583†667 virscan2.dat 17/11/2003 01:00 142†904 virscan3.dat 17/11/2003 01:00 316†348 virscan4.dat 17/11/2003 01:00 70†676 virscan5.dat 17/11/2003 01:00 371†529 virscan6.dat 17/11/2003 01:00 855†367 virscan7.dat 17/11/2003 01:00 938†682 virscan8.dat 17/11/2003 01:00 896†600 virscan9.dat 17/11/2003 01:00 32 virscant.dat 18/11/2003 15:51 2†072 vscanmsx.dat 30/06/2003 21:41 1†689 WMV9VCM.inf 26/05/2005 04:19 291 wuweb.inf 17/11/2003 01:00 224 zdone.dat 46 fichier(s) 6†346†366 octets Total des fichiers listÈs†: 46 fichier(s) 6†346†366 octets 2 RÈp(s) 4†321†165†312 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files 15/03/2007 18:38 <DIR> . 15/03/2007 18:38 <DIR> .. 25/03/2003 15:04 <DIR> Accessoires 28/12/2004 19:17 <DIR> ACD Systems 03/11/2006 14:36 <DIR> Adobe 09/04/2003 15:31 <DIR> Agfa 24/03/2006 10:11 <DIR> AGFAnet 11/09/2004 10:58 <DIR> Ahead 20/04/2005 14:47 <DIR> Alwil Software 24/11/2004 19:26 <DIR> ARC-EN-logiCIEL 24/11/2004 19:21 <DIR> Arkanoid 19/10/2006 19:30 <DIR> Bayo 21/11/2006 16:30 <DIR> Canon 25/03/2003 15:06 <DIR> ComPlus Applications 26/03/2003 08:45 <DIR> denouvel 24/11/2004 19:14 <DIR> Ecole Primaire - ABCDaire 03/11/2006 14:34 <DIR> Fichiers communs 18/06/2005 09:38 <DIR> Fujifilm 14/03/2007 15:40 <DIR> Grisoft 23/12/2003 22:42 <DIR> Heroes2 07/06/2005 11:24 <DIR> Internet Explorer 19/03/2005 09:46 <DIR> Lavasoft 24/11/2004 19:03 <DIR> Lecture 24/11/2004 19:04 <DIR> MemoLine 08/03/2005 12:23 <DIR> Messenger 25/03/2003 15:09 <DIR> microsoft frontpage 23/04/2003 10:53 <DIR> Microsoft Games 25/03/2003 16:33 <DIR> Microsoft Office 15/03/2007 12:01 <DIR> NetMeeting 05/02/2007 18:00 <DIR> Neuf 21/08/2006 13:38 <DIR> OLYMPUS 15/03/2007 12:01 <DIR> Outlook Express 21/08/2006 13:34 <DIR> PIXELA 24/11/2004 19:05 <DIR> Puzzline 25/03/2003 17:18 <DIR> Qualcomm 27/03/2006 07:12 <DIR> QuickTime 14/03/2007 15:05 <DIR> Realtek 28/03/2005 17:54 <DIR> Repair Registry Pro 22/04/2003 10:08 <DIR> SYBEX 07/03/2007 11:31 <DIR> VeriSign 15/03/2007 12:01 <DIR> Windows Media Player 15/03/2007 12:03 <DIR> Windows NT 30/09/2004 20:52 <DIR> WinRAR 0 fichier(s) 0 octets 43 RÈp(s) 4†321†128†448 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files\fichiers communs 03/11/2006 14:34 <DIR> . 03/11/2006 14:34 <DIR> .. 28/12/2004 19:24 <DIR> ACD Systems 03/11/2006 14:33 <DIR> Adobe 03/11/2006 14:34 <DIR> Adobe Systems Shared 25/03/2003 16:34 <DIR> Designer 24/03/2006 10:11 <DIR> FotoWire 01/01/2006 16:16 <DIR> InstallShield 14/03/2007 15:45 <DIR> Microsoft Shared 21/08/2006 13:39 <DIR> MSSoap 25/03/2003 14:32 <DIR> ODBC 07/06/2005 11:26 <DIR> Services 20/04/2005 14:53 <DIR> Symantec Shared 07/06/2005 11:26 <DIR> System 0 fichier(s) 0 octets 14 RÈp(s) 4†321†189†888 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 15/03/2007 12:01 <DIR> . 15/03/2007 12:01 <DIR> .. 14/03/2007 15:45 <DIR> 1033 14/03/2007 15:45 <DIR> 1036 15/02/2001 05:45 1†318†912 MSONSEXT.DLL 13/02/2001 08:23 58†784 MSOSV.DLL 03/06/1999 19:09 122†937 MSOWS409.DLL 14/02/2001 14:36 127†033 MSOWS40c.DLL 06/08/2000 09:04 401†462 MSVCP60.DLL 22/01/2001 03:25 69†632 PKMAXCTL.DLL 22/01/2001 03:25 872†448 PKMCDO.DLL 22/01/2001 03:25 159†744 PKMCORE.DLL 07/02/2001 09:59 106†496 PKMFORMS.DLL 12/02/2001 04:03 684†032 PKMRES.DLL 22/01/2001 03:25 28†672 PKMSSTLB.DLL 22/01/2001 03:25 40†960 PKMTEMPL.DLL 22/01/2001 03:25 24†576 PKMTRACE.DLL 22/01/2001 03:25 86†016 PKMWS.DLL 22/01/2001 03:25 237†568 PROMDEMO.DLL 22/01/2001 03:25 184†320 SECMGR.DLL 22/01/2001 03:25 323†584 VAIDDMGR.DLL 22/01/2001 03:25 32†768 VAIMEM.DLL 18 fichier(s) 4†879†944 octets 4 RÈp(s) 4†321†189†888 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\ 11/11/2001 00:00 68†096 diff.exe 27/08/2006 14:10 103†424 grep.exe 24/05/2001 12:59 162†304 UNWISE.EXE 3 fichier(s) 333†824 octets 0 RÈp(s) 4†321†124†352 octets libres c:\Documents and Settings\bonfill\Bureau\AVAST.exe c:\Documents and Settings\bonfill\Bureau\service-pack-4-windows-2000_service_pack_4_windows_2000_francais_13276.exe c:\Documents and Settings\bonfill\Bureau\ToolbarSetup.exe c:\Documents and Settings\bonfill\Bureau\AV\._CWShredder.exe c:\Documents and Settings\bonfill\Bureau\AV\._HijackThis.exe c:\Documents and Settings\bonfill\Bureau\AV\ATF-Cleaner.exe c:\Documents and Settings\bonfill\Bureau\AV\avgas-setup-7.5.0.50.exe c:\Documents and Settings\bonfill\Bureau\AV\avgas-signatures-full-current.exe c:\Documents and Settings\bonfill\Bureau\AV\blbeta.exe c:\Documents and Settings\bonfill\Bureau\AV\CWShredder.exe c:\Documents and Settings\bonfill\Bureau\AV\HijackThis.exe c:\Documents and Settings\bonfill\Bureau\AV\Look2Me-Destroyer.exe c:\Documents and Settings\bonfill\Bureau\AV\msconfig.exe c:\Documents and Settings\bonfill\Bureau\AV\OTMoveIt.exe c:\Documents and Settings\bonfill\Bureau\AV\AboutBuster\AboutBuster.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\diff.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\dumphive.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\Fport.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\grep.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\LFiles.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\LISTDLLS.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\pslist.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\streams.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\swreg.exe c:\Documents and Settings\bonfill\Bureau\AV\moved-files\GPInstall.exe c:\Documents and Settings\bonfill\Bureau\AV\moved-files\ma.exe.exe c:\Documents and Settings\bonfill\Bureau\AV\moved-files\pp.exe.exe c:\Documents and Settings\bonfill\Bureau\Jean-Marie\GEOGRAPHIE\GÈoKid.exe c:\Documents and Settings\bonfill\Bureau\PCI_Install_5663\PCI_Install_5663_20070216\setup.exe c:\Documents and Settings\bonfill\Local Settings\Temp\GLF21GLF21.EXE c:\Documents and Settings\bonfill\Local Settings\Temp\pr_tutor\Glorious_Tutorial.exe c:\Documents and Settings\bonfill\Local Settings\Temp\pr_tutor\Tutorial.exe c:\Documents and Settings\bonfill\Local Settings\Temp\_ISTMP1.DIR\_ISTMP0.DIR\ICOMP.EXE c:\Documents and Settings\bonfill\Local Settings\Temp\_ISTMP1.DIR\_ISTMP0.DIR\WINTDIST.EXE c:\Documents and Settings\bonfill\Mes documents\164 antispyware.exe c:\Documents and Settings\bonfill\Mes documents\acdsee.exe c:\Documents and Settings\bonfill\Mes documents\acdsee-fr.exe c:\Documents and Settings\bonfill\Mes documents\FreeScan.exe c:\Documents and Settings\bonfill\Mes documents\install messenger.exe c:\Documents and Settings\bonfill\Mes documents\pllangs.exe c:\Documents and Settings\bonfill\Mes documents\RepairRegistryPro.exe c:\Documents and Settings\bonfill\Mes documents\rp505fra.exe c:\Documents and Settings\bonfill\Mes documents\setupfre-avast.exe c:\Documents and Settings\bonfill\Mes documents\Windows2000-KB823980-x86-FRA.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Eudora5.2.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\antivirus.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\GÈoKid.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\q290108.exe
  10. mailme
    Salut Charles, Tout d'abord, merci pour ton aide précieuse jusqu'ici. Grace à toi je pense avoir enfin réussit à me débarasser totalement de ces cochonneries de malware et je n'ai plus le problème de reboot intempestif. Par contre j'ai maintenant un autre problème, je ne sais pas si cela est lié, voici ce qu'il se passe : La première chose que j'ai voulu faire une fois la connexion internet rétablie c'est de mettre à jour Windows (de SP2 à SP4 pour windows 2000). Malheureusement cela est impossible, j'ai un message d'erreur qui semble lié à la base de registre, j'ai essayé de faire les mises à jour avec windows update puis directement en téléchargeant l'archive SP4 mais le problème est le même (en mode sans echec idem). Voici les phases de l'installation jusqu'au moment de l'erreur : Tout d'abord, je desactive Avast et AVG AS et je ferme tout les programme en cours d'execution (j'ai aussi essayé en mode sans echec). Vérification de l'archive SP4 : OK Décompression de l'archive : OK Inspection de la configuration actuelle : OK Vérification de l'espace disque necessaire : OK Inscription des clés du registre : ERREUR : Accès refusé As-tu une idée, est-ce lié au problème de malware précédent. Merci. Si cela peut aider, voici les derniers rapports AVG AS et Diaghelp : --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + CrÈÈ â€¡: 16:45:17 14/03/2007 + RÈsultat de l'analyse: HKLM\SOFTWARE\Classes\NaviPromo.EGNaviScoring -> Adware.NaviPromo : NettoyÈ et sauvegardÈ (mise en quarantaine). HKLM\SOFTWARE\Classes\NaviPromo.EGNaviScoring.1 -> Adware.NaviPromo : NettoyÈ et sauvegardÈ (mise en quarantaine). HKLM\SOFTWARE\Classes\NaviPromo.EGNaviScoring\CLSID -> Adware.NaviPromo : NettoyÈ et sauvegardÈ (mise en quarantaine). C:\WINNT\system32\ia.dll -> Dialer.EGroup.r : NettoyÈ et sauvegardÈ (mise en quarantaine). Fin du rapport -------------------------------------------------------- DiagHelp -------------------------------------------------------- C:\WINNT\System32/drivers\aswRdr.sys -->15/01/2007 18:26:08 C:\WINNT\System32/drivers\aswTdi.sys -->15/01/2007 18:25:24 C:\WINNT\System32/drivers\aswmon.sys -->21/12/2006 00:56:13 C:\WINNT\System32/drivers\aswmon2.sys -->21/12/2006 00:56:00 C:\WINNT\System32/drivers\aavmker4.sys -->21/12/2006 00:51:58 C:\WINNT\System32/drivers\Rtnic.sys -->14/12/2006 16:43:46 C:\WINNT\System32/drivers\AvgAsCln.sys -->05/09/2006 17:03:16 C:\WINNT\ntbtlog.txt -->14/03/2007 15:52:34 C:\WINNT\SchedLgU.Txt -->14/03/2007 15:47:59 C:\WINNT\cmmixer.ini -->14/03/2007 15:35:15 C:\WINNT\setupapi.log -->14/03/2007 15:06:11 C:\WINNT\win.ini -->14/03/2007 10:12:48 C:\WINNT\System.ini -->14/03/2007 10:12:48 C:\WINNT\ModemLog_HSP56 MicroModem.txt -->07/03/2007 10:40:52 C:\WINNT\ModemLog_Olitec PCI 56K Modem.txt -->07/03/2007 10:37:02 C:\WINNT\pcdhyso.dll -->28/02/2007 18:28:24 C:\WINNT\Papier-peint.bmp d'ACD -->27/02/2007 18:42:29 C:\WINNT\ODBC.INI -->09/12/2006 19:38:47 C:\WINNT\wcpx_.dat -->20/11/2006 19:33:13 C:\WINNT\KB823980.log -->18/11/2006 19:02:38 C:\WINNT\~TempMui.inf -->19/10/2006 19:30:25 C:\WINNT\muisetup.log -->19/10/2006 19:30:25 C:\WINNT\GPInstall.exe |26/03/2003 08:45:25 C:\WINNT\IsUn040c.exe |09/04/2003 15:30:58 C:\WINNT\IsUninst.exe |25/03/2003 17:18:05 C:\WINNT\mixer.exe |25/03/2003 17:07:38 C:\WINNT\mUninstallFR.exe |24/11/2004 19:04:38 C:\WINNT\twunk_16.exe |08/05/2001 01:00:00 C:\WINNT\twunk_32.exe |08/05/2001 01:00:00 C:\WINNT\unin040c.exe |24/11/2004 14:18:17 C:\WINNT\uninst.exe |23/10/2003 19:32:11 C:\WINNT\unvise32qt.exe |30/08/2003 12:13:03 C:\WINNT\twain.dll |08/05/2001 01:00:00 C:\WINNT\twain_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\append.exe |08/05/2001 01:00:00 C:\WINNT\system32\aswBoot.exe |13/07/2006 11:12:34 C:\WINNT\system32\CNDNDlg.exe |05/08/2005 19:36:14 C:\WINNT\system32\CreateReg.exe |19/10/2006 19:29:16 C:\WINNT\system32\dd.exe |24/02/2007 17:50:56 C:\WINNT\system32\debug.exe |08/05/2001 01:00:00 C:\WINNT\system32\dfrgfat.exe |08/05/2001 01:00:00 C:\WINNT\system32\dfrgntfs.exe |08/05/2001 01:00:00 C:\WINNT\system32\dmadmin.exe |08/05/2001 01:00:00 C:\WINNT\system32\dmremote.exe |08/05/2001 01:00:00 C:\WINNT\system32\dosx.exe |08/05/2001 01:00:00 C:\WINNT\system32\dumphive.exe |07/03/2007 12:41:22 C:\WINNT\system32\dvdplay.exe |15/12/1999 00:30:38 C:\WINNT\system32\edlin.exe |08/05/2001 01:00:00 C:\WINNT\system32\exe2bin.exe |08/05/2001 01:00:00 C:\WINNT\system32\fastopen.exe |08/05/2001 01:00:00 C:\WINNT\system32\ma.exe.exe |16/02/2007 10:34:20 C:\WINNT\system32\mem.exe |08/05/2001 01:00:00 C:\WINNT\system32\mscdexnt.exe |08/05/2001 01:00:00 C:\WINNT\system32\msmmi.exe |16/02/2007 10:34:38 C:\WINNT\system32\msswchx.exe |08/05/2001 01:00:00 C:\WINNT\system32\NeroCheck.exe |09/07/2001 11:50:42 C:\WINNT\system32\nlsfunc.exe |08/05/2001 01:00:00 C:\WINNT\system32\nw16.exe |08/05/2001 01:00:00 C:\WINNT\system32\pctptt.exe |27/09/2000 02:15:20 C:\WINNT\system32\pctspk.exe |27/09/2000 07:58:48 C:\WINNT\system32\pp.exe.exe |16/02/2007 10:34:22 C:\WINNT\system32\Process.exe |07/03/2007 12:41:22 C:\WINNT\system32\ptuninst.exe |27/09/2000 02:23:22 C:\WINNT\system32\redir.exe |08/05/2001 01:00:00 C:\WINNT\system32\setver.exe |08/05/2001 01:00:00 C:\WINNT\system32\share.exe |08/05/2001 01:00:00 C:\WINNT\system32\sm.exe |24/02/2007 17:50:55 C:\WINNT\system32\SrchSTS.exe |07/03/2007 12:41:22 C:\WINNT\system32\swreg.exe |07/03/2007 12:41:22 C:\WINNT\system32\swsc.exe |07/03/2007 12:41:22 C:\WINNT\system32\swxcacls.exe |07/03/2007 12:41:22 C:\WINNT\system32\uvnx.exe |18/02/2007 09:41:13 C:\WINNT\system32\vwipxspx.exe |08/05/2001 01:00:00 C:\WINNT\system32\a3d.dll |25/03/2003 17:07:38 C:\WINNT\system32\agusbsti.dll |09/04/2003 15:31:31 C:\WINNT\system32\alldr.dll |08/05/2001 01:00:00 C:\WINNT\system32\amstream.dll |21/08/2006 13:36:53 C:\WINNT\system32\arxexprt.dll |19/10/2006 19:29:15 C:\WINNT\system32\ati2draa.dll |25/03/2003 14:33:25 C:\WINNT\system32\atmfd.dll |08/05/2001 01:00:00 C:\WINNT\system32\atmlib.dll |08/05/2001 01:00:00 C:\WINNT\system32\Audio3D.dll |25/03/2003 17:07:38 C:\WINNT\system32\BCGCB474.dll |19/10/2006 19:29:15 C:\WINNT\system32\BCGCBResFRA.dll |19/10/2006 19:29:16 C:\WINNT\system32\CmdLineExt.dll |19/10/2006 19:45:57 C:\WINNT\system32\CmdLineExt03.dll |19/10/2006 19:50:06 C:\WINNT\system32\cmnprop.dll |25/03/2003 17:07:38 C:\WINNT\system32\cmprop.dll |25/03/2003 17:07:38 C:\WINNT\system32\cncs232.dll |20/02/2002 19:20:50 C:\WINNT\system32\CNDCK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\CNDUK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\ConversApi.dll |19/10/2006 19:29:16 C:\WINNT\system32\CP30FW.DLL |19/10/2006 19:29:16 C:\WINNT\system32\czs_ui.dll |13/05/2002 14:05:32 C:\WINNT\system32\DC210.dll |20/03/2002 22:01:20 C:\WINNT\system32\DC240.dll |20/03/2002 22:01:20 C:\WINNT\system32\DC265.dll |20/03/2002 22:01:06 C:\WINNT\system32\DC280.dll |20/03/2002 22:01:20 C:\WINNT\system32\deimg.dll |13/05/2002 14:05:32 C:\WINNT\system32\deImg010.dll |13/05/2002 14:05:34 C:\WINNT\system32\deImg110.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg301.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg401.dll |13/05/2002 14:05:34 C:\WINNT\system32\deImg404.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg602.dll |13/05/2002 14:05:34 C:\WINNT\system32\Deimg603.dll |13/05/2002 14:05:34 C:\WINNT\system32\dfrgres.dll |08/05/2001 01:00:00 C:\WINNT\system32\dfrgsnap.dll |08/05/2001 01:00:00 C:\WINNT\system32\dfrgui.dll |08/05/2001 01:00:00 C:\WINNT\system32\dgrpsetu.dll |25/03/2003 14:31:51 C:\WINNT\system32\dgsetup.dll |25/03/2003 14:31:51 C:\WINNT\system32\dmconfig.dll |08/05/2001 01:00:00 C:\WINNT\system32\dmintf.dll |08/05/2001 01:00:00 C:\WINNT\system32\dmserver.dll |08/05/2001 01:00:00 C:\WINNT\system32\dmutil.dll |08/05/2001 01:00:00 C:\WINNT\system32\efsadu.dll |08/05/2001 01:00:00 C:\WINNT\system32\ekfpixaudio.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixexif.dll |20/03/2002 22:01:08 C:\WINNT\system32\ekfpixguid.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixio130.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixjpeg.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixpsets.dll |20/03/2002 22:01:20 C:\WINNT\system32\EqnClass.Dll |25/03/2003 14:31:50 C:\WINNT\system32\F210.dll |20/03/2002 22:01:20 C:\WINNT\system32\HHActiveX.dll |20/03/2002 21:01:58 C:\WINNT\system32\hpzcoi04.dll |15/11/2001 18:01:00 C:\WINNT\system32\hpzcon04.dll |15/11/2001 18:01:00 C:\WINNT\system32\hpzlnt04.dll |15/11/2001 18:01:01 C:\WINNT\system32\hticons.dll |25/03/2003 15:04:52 C:\WINNT\system32\hypertrm.dll |25/03/2003 15:04:38 C:\WINNT\system32\iacenc.dll |23/04/2003 10:55:09 C:\WINNT\system32\iccvid.dll |08/05/2001 01:00:00 C:\WINNT\system32\imagr5.dll |21/09/2000 17:02:28 C:\WINNT\system32\imagx5.dll |27/09/2000 16:15:06 C:\WINNT\system32\ImagXpr5.dll |21/09/2000 12:53:00 C:\WINNT\system32\imgcmn.dll |25/03/2003 15:04:43 C:\WINNT\system32\imgshl.dll |25/03/2003 15:04:43 C:\WINNT\system32\Inetwh32.dll |25/03/2003 17:18:29 C:\WINNT\system32\ir32_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir41_qc.dll |08/05/2001 01:00:00 C:\WINNT\system32\IR41_QCX.dll |19/06/2001 11:06:50 C:\WINNT\system32\ir50_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir50_qc.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir50_qcx.dll |08/05/2001 01:00:00 C:\WINNT\system32\irisco32.dll |09/04/2003 15:34:01 C:\WINNT\system32\iyvu9_32.dll |23/04/2003 10:55:09 C:\WINNT\system32\JGA1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAA500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAD500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAU500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGDR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGDW500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGEA500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGED500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGEM500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFS500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGGI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI3500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI5500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGID500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIQ500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIT500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGM1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMC500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGME500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGN1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGOS500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPD500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPL500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGS1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGS3500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGSN500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGST500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\jpeg1x32.dll |25/03/2003 15:04:43 C:\WINNT\system32\jpeg2x32.dll |25/03/2003 15:04:43 C:\WINNT\system32\mciqtz32.dll |21/08/2006 13:36:53 C:\WINNT\system32\msdmo.dll |21/08/2006 13:36:55 C:\WINNT\system32\msencode.dll |30/08/2002 17:24:06 C:\WINNT\system32\msswch.dll |08/05/2001 01:00:00 C:\WINNT\system32\Nmea.dll |19/10/2006 19:29:16 C:\WINNT\system32\Ogc.dll |19/10/2006 19:29:16 C:\WINNT\system32\OgcDrvAvmap.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvGarmin.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvLowrance.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvMagellan.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvMlr.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvPyx.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSena.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSilva.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSuu.dll |19/10/2006 19:30:41 C:\WINNT\system32\oieng400.dll |25/03/2003 15:04:38 C:\WINNT\system32\oiprt400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oislb400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oissq400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oitwa400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oiui400.dll |25/03/2003 15:04:43 C:\WINNT\system32\PCDLIB32.DLL |09/12/1998 02:53:58 C:\WINNT\system32\picn20.dll |21/09/2000 07:47:10 C:\WINNT\system32\PixologyIRISS011.dll |07/11/2003 10:03:34 C:\WINNT\system32\Polyclip.dll |19/10/2006 19:29:16 C:\WINNT\system32\pscAdimg.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscCllct.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscCStUI.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDcd.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDevUI.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDvlp.dll |13/05/2002 14:05:34 C:\WINNT\system32\Pscl2STI.dll |13/05/2002 14:05:34 C:\WINNT\system32\PSCLK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\pscll.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscParse.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscSetup.dll |13/05/2002 14:05:34 C:\WINNT\system32\psdkdll.dll |13/05/2002 14:05:36 C:\WINNT\system32\psdkReg.dll |13/05/2002 14:05:36 C:\WINNT\system32\psisdecd.dll |21/08/2006 13:36:59 C:\WINNT\system32\psParse.dll |13/05/2002 14:05:36 C:\WINNT\system32\ptsetup.dll |27/09/2000 02:11:54 C:\WINNT\system32\Pvmjpg21.dll |21/08/2006 13:35:59 C:\WINNT\system32\qcut.dll |08/05/2001 01:00:00 C:\WINNT\system32\qedwipes.dll |21/08/2006 13:36:56 C:\WINNT\system32\RCalcul.dll |19/10/2006 19:29:16 C:\WINNT\system32\Roboex32.dll |25/03/2003 17:18:28 C:\WINNT\system32\rpcc.dll |16/02/2007 10:29:41 C:\WINNT\system32\sliprt.dll |31/01/2006 09:34:35 C:\WINNT\system32\spxcoins.dll |25/03/2003 14:31:50 C:\WINNT\system32\tifflt.dll |25/03/2003 15:04:44 C:\WINNT\system32\TransportIrCOMM.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportIrDA.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportSerial.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportUSB.dll |20/03/2002 22:00:20 C:\WINNT\system32\tsbyuv.dll |15/12/1999 00:30:06 C:\WINNT\system32\tsd32.dll |08/05/2001 01:00:00 C:\WINNT\system32\TwnLib20.dll |26/06/2000 10:45:30 C:\WINNT\system32\UNACEV2.DLL |21/03/2002 15:39:02 C:\WINNT\system32\win87em.dll |08/05/2001 01:00:00 C:\WINNT\system32\x9.dll |19/10/2006 19:30:40 C:\WINNT\system32\xiffr3_0.dll |25/03/2003 15:04:44 C:\WINNT\system32\zAskop.dll |18/02/2007 09:34:51 Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\WINNT\system32 08/05/2001 01:00 5†392 csrss.exe 1 fichier(s) 5†392 octets 0 RÈp(s) 4†619†857†920 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\WINNT\Downloaded Program Files 07/03/2007 12:38 <DIR> . 07/03/2007 12:38 <DIR> .. 17/11/2003 01:00 2†432 catalog.dat 10/09/2004 09:35 620 default.inf 07/06/2005 11:25 65 desktop.ini 02/04/2003 14:40 268 DHTMLAccess.inf 14/10/1997 18:52 697 DirectAnimation Java Classes.osd 13/11/2003 12:13 253 EGDHTML.inf 28/03/2002 15:05 1†268 erma.inf 25/08/2003 17:12 1†096 iuctl.inf 20/01/2000 15:25 1†162 Microsoft XML Parser for Java.osd 12/01/2000 16:07 6†854 navapi.vxd 12/01/2000 15:53 208†896 navapi32.dll 17/11/2003 01:00 120†008 naveng32.dll 17/11/2003 01:00 586†952 navex32a.dll 09/10/2003 09:32 144 QTPlugin.inf 17/11/2003 01:00 73†344 scrauth.dat 19/11/2003 17:37 0 SET13.tmp 02/12/2005 11:55 5†101 swflash.inf 17/11/2003 01:00 7†933 symaveng.cat 17/11/2003 01:00 901 symaveng.inf 17/11/2003 01:00 1†725 tcdefs.dat 17/11/2003 01:00 8†087 tcscan7.dat 17/11/2003 01:00 44†131 tcscan8.dat 17/11/2003 01:00 104†298 tcscan9.dat 08/03/2004 16:28 1†390 teleir_cert.osd 17/11/2003 01:00 453 tinf.dat 17/11/2003 01:00 148 tinfidx.dat 17/11/2003 01:00 1†957 tinfl.dat 17/11/2003 01:00 31†302 tscan1.dat 17/11/2003 01:00 1†179 tscan1hd.dat 17/11/2003 01:00 5†382 v.grd 17/11/2003 01:00 2†225 v.sig 17/11/2003 01:00 106†236 virscan.inf 17/11/2003 01:00 839†778 virscan1.dat 17/11/2003 01:00 583†667 virscan2.dat 17/11/2003 01:00 142†904 virscan3.dat 17/11/2003 01:00 316†348 virscan4.dat 17/11/2003 01:00 70†676 virscan5.dat 17/11/2003 01:00 371†529 virscan6.dat 17/11/2003 01:00 855†367 virscan7.dat 17/11/2003 01:00 938†682 virscan8.dat 17/11/2003 01:00 896†600 virscan9.dat 17/11/2003 01:00 32 virscant.dat 18/11/2003 15:51 2†072 vscanmsx.dat 30/06/2003 21:41 1†689 WMV9VCM.inf 26/05/2005 04:19 291 wuweb.inf 17/11/2003 01:00 224 zdone.dat 46 fichier(s) 6†346†366 octets Total des fichiers listÈs†: 46 fichier(s) 6†346†366 octets 2 RÈp(s) 4†619†857†920 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files 14/03/2007 15:40 <DIR> . 14/03/2007 15:40 <DIR> .. 31/01/2006 09:34 <DIR> AccÈlÈrateur de dÈbit Alice 25/03/2003 15:04 <DIR> Accessoires 28/12/2004 19:17 <DIR> ACD Systems 03/11/2006 14:36 <DIR> Adobe 09/04/2003 15:31 <DIR> Agfa 24/03/2006 10:11 <DIR> AGFAnet 11/09/2004 10:58 <DIR> Ahead 20/04/2005 14:47 <DIR> Alwil Software 24/11/2004 19:26 <DIR> ARC-EN-logiCIEL 24/11/2004 19:21 <DIR> Arkanoid 19/10/2006 19:30 <DIR> Bayo 21/11/2006 16:30 <DIR> Canon 25/03/2003 15:06 <DIR> ComPlus Applications 26/03/2003 08:45 <DIR> denouvel 01/01/2006 16:17 <DIR> eBay 24/11/2004 19:14 <DIR> Ecole Primaire - ABCDaire 03/11/2006 14:34 <DIR> Fichiers communs 18/06/2005 09:38 <DIR> Fujifilm 14/03/2007 15:40 <DIR> Grisoft 23/12/2003 22:42 <DIR> Heroes2 07/06/2005 11:24 <DIR> Internet Explorer 19/03/2005 09:46 <DIR> Lavasoft 24/11/2004 19:03 <DIR> Lecture 24/11/2004 19:04 <DIR> MemoLine 08/03/2005 12:23 <DIR> Messenger 25/03/2003 15:09 <DIR> microsoft frontpage 23/04/2003 10:53 <DIR> Microsoft Games 25/03/2003 16:33 <DIR> Microsoft Office 25/03/2003 15:06 <DIR> NetMeeting 05/02/2007 18:00 <DIR> Neuf 21/08/2006 13:38 <DIR> OLYMPUS 07/06/2005 11:26 <DIR> Outlook Express 21/08/2006 13:34 <DIR> PIXELA 24/11/2004 19:05 <DIR> Puzzline 25/03/2003 17:18 <DIR> Qualcomm 27/03/2006 07:12 <DIR> QuickTime 14/03/2007 15:05 <DIR> Realtek 28/03/2005 17:54 <DIR> Repair Registry Pro 22/04/2003 10:08 <DIR> SYBEX 07/03/2007 11:31 <DIR> VeriSign 11/09/2004 10:58 <DIR> Windows Media Player 25/03/2003 15:05 <DIR> Windows NT 07/06/2005 10:15 <DIR> WindowsUpdate 30/09/2004 20:52 <DIR> WinRAR 0 fichier(s) 0 octets 46 RÈp(s) 4†619†620†352 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files\fichiers communs 03/11/2006 14:34 <DIR> . 03/11/2006 14:34 <DIR> .. 28/12/2004 19:24 <DIR> ACD Systems 03/11/2006 14:33 <DIR> Adobe 03/11/2006 14:34 <DIR> Adobe Systems Shared 25/03/2003 16:34 <DIR> Designer 24/03/2006 10:11 <DIR> FotoWire 01/01/2006 16:16 <DIR> InstallShield 14/03/2007 15:45 <DIR> Microsoft Shared 21/08/2006 13:39 <DIR> MSSoap 25/03/2003 14:32 <DIR> ODBC 07/06/2005 11:26 <DIR> Services 20/04/2005 14:53 <DIR> Symantec Shared 07/06/2005 11:26 <DIR> System 0 fichier(s) 0 octets 14 RÈp(s) 4†619†681†792 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 25/03/2003 16:34 <DIR> . 25/03/2003 16:34 <DIR> .. 14/03/2007 15:45 <DIR> 1033 14/03/2007 15:45 <DIR> 1036 15/02/2001 05:45 1†318†912 MSONSEXT.DLL 13/02/2001 08:23 58†784 MSOSV.DLL 03/06/1999 19:09 122†937 MSOWS409.DLL 14/02/2001 14:36 127†033 MSOWS40c.DLL 06/08/2000 09:04 401†462 MSVCP60.DLL 22/01/2001 03:25 69†632 PKMAXCTL.DLL 22/01/2001 03:25 872†448 PKMCDO.DLL 22/01/2001 03:25 159†744 PKMCORE.DLL 07/02/2001 09:59 106†496 PKMFORMS.DLL 12/02/2001 04:03 684†032 PKMRES.DLL 22/01/2001 03:25 28†672 PKMSSTLB.DLL 22/01/2001 03:25 40†960 PKMTEMPL.DLL 22/01/2001 03:25 24†576 PKMTRACE.DLL 22/01/2001 03:25 86†016 PKMWS.DLL 22/01/2001 03:25 237†568 PROMDEMO.DLL 22/01/2001 03:25 184†320 SECMGR.DLL 22/01/2001 03:25 323†584 VAIDDMGR.DLL 22/01/2001 03:25 32†768 VAIMEM.DLL 18 fichier(s) 4†879†944 octets 4 RÈp(s) 4†619†616†256 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\ 11/11/2001 00:00 68†096 diff.exe 27/08/2006 14:10 103†424 grep.exe 24/05/2001 12:59 162†304 UNWISE.EXE 3 fichier(s) 333†824 octets 0 RÈp(s) 4†619†677†696 octets libres c:\Documents and Settings\bonfill\Bureau\AVAST.exe c:\Documents and Settings\bonfill\Bureau\ToolbarSetup.exe c:\Documents and Settings\bonfill\Bureau\AV\._CWShredder.exe c:\Documents and Settings\bonfill\Bureau\AV\._HijackThis.exe c:\Documents and Settings\bonfill\Bureau\AV\ATF-Cleaner.exe c:\Documents and Settings\bonfill\Bureau\AV\avgas-setup-7.5.0.50.exe c:\Documents and Settings\bonfill\Bureau\AV\blbeta.exe c:\Documents and Settings\bonfill\Bureau\AV\CWShredder.exe c:\Documents and Settings\bonfill\Bureau\AV\HijackThis.exe c:\Documents and Settings\bonfill\Bureau\AV\Look2Me-Destroyer.exe c:\Documents and Settings\bonfill\Bureau\AV\msconfig.exe c:\Documents and Settings\bonfill\Bureau\AV\OTMoveIt.exe c:\Documents and Settings\bonfill\Bureau\AV\AboutBuster\AboutBuster.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\diff.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\dumphive.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\Fport.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\grep.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\LFiles.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\LISTDLLS.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\pslist.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\streams.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\swreg.exe c:\Documents and Settings\bonfill\Bureau\Jean-Marie\GEOGRAPHIE\GÈoKid.exe c:\Documents and Settings\bonfill\Bureau\PCI_Install_5663\PCI_Install_5663_20070216\setup.exe c:\Documents and Settings\bonfill\Local Settings\Temp\pr_tutor\Glorious_Tutorial.exe c:\Documents and Settings\bonfill\Local Settings\Temp\pr_tutor\Tutorial.exe c:\Documents and Settings\bonfill\Local Settings\Temp\_ISTMP1.DIR\_ISTMP0.DIR\ICOMP.EXE c:\Documents and Settings\bonfill\Local Settings\Temp\_ISTMP1.DIR\_ISTMP0.DIR\WINTDIST.EXE c:\Documents and Settings\bonfill\Mes documents\164 antispyware.exe c:\Documents and Settings\bonfill\Mes documents\acdsee.exe c:\Documents and Settings\bonfill\Mes documents\acdsee-fr.exe c:\Documents and Settings\bonfill\Mes documents\FreeScan.exe c:\Documents and Settings\bonfill\Mes documents\install messenger.exe c:\Documents and Settings\bonfill\Mes documents\pllangs.exe c:\Documents and Settings\bonfill\Mes documents\RepairRegistryPro.exe c:\Documents and Settings\bonfill\Mes documents\rp505fra.exe c:\Documents and Settings\bonfill\Mes documents\setupfre-avast.exe c:\Documents and Settings\bonfill\Mes documents\Windows2000-KB823980-x86-FRA.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Eudora5.2.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\antivirus.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\GÈoKid.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\q290108.exe
  11. mailme
    Salut, J'ai suivi toutes tes instructions à la lettre. Par contre à la fin je n'ai aucun rapport OTMoveIt dans le répertoire C:\_OTMoveIt\MovedFiles, j'ai juste un répertoir WINNT qui est vide. Je me demande si OTMoveIt à bien fait son boulot, sinon est-ce qu'il faut que j'aille supprimer les fichiers suivants à la main ? C:\WINNT\pcdhyso.dll C:\WINNT\GPInstall.exe C:\WINNT\system32\ma.exe.exe C:\WINNT\system32\pp.exe.exe C:\WINNT\system32\uvnx.exe C:\WINNT\system32\rpcc.dll Autre chose aussi je ne peux pas me connecter à internet (ça reboot immédiatement) donc aucun moyen de faire la mise à jour de AVG AS, je l'ai donc passé sans faire la mise à jour. Pour le reste, voici les rapports d'AVG AS et DiagHelp : --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + CrÈÈ â€¡: 16:45:17 14/03/2007 + RÈsultat de l'analyse: HKLM\SOFTWARE\Classes\NaviPromo.EGNaviScoring -> Adware.NaviPromo : NettoyÈ et sauvegardÈ (mise en quarantaine). HKLM\SOFTWARE\Classes\NaviPromo.EGNaviScoring.1 -> Adware.NaviPromo : NettoyÈ et sauvegardÈ (mise en quarantaine). HKLM\SOFTWARE\Classes\NaviPromo.EGNaviScoring\CLSID -> Adware.NaviPromo : NettoyÈ et sauvegardÈ (mise en quarantaine). C:\WINNT\system32\ia.dll -> Dialer.EGroup.r : NettoyÈ et sauvegardÈ (mise en quarantaine). Fin du rapport ---------------------------------------------- Rapport DiagHelp ---------------------------------------------- C:\WINNT\System32/drivers\aswRdr.sys -->15/01/2007 18:26:08 C:\WINNT\System32/drivers\aswTdi.sys -->15/01/2007 18:25:24 C:\WINNT\System32/drivers\aswmon.sys -->21/12/2006 00:56:13 C:\WINNT\System32/drivers\aswmon2.sys -->21/12/2006 00:56:00 C:\WINNT\System32/drivers\aavmker4.sys -->21/12/2006 00:51:58 C:\WINNT\System32/drivers\Rtnic.sys -->14/12/2006 16:43:46 C:\WINNT\System32/drivers\AvgAsCln.sys -->05/09/2006 17:03:16 C:\WINNT\ntbtlog.txt -->14/03/2007 15:52:34 C:\WINNT\SchedLgU.Txt -->14/03/2007 15:47:59 C:\WINNT\cmmixer.ini -->14/03/2007 15:35:15 C:\WINNT\setupapi.log -->14/03/2007 15:06:11 C:\WINNT\win.ini -->14/03/2007 10:12:48 C:\WINNT\System.ini -->14/03/2007 10:12:48 C:\WINNT\ModemLog_HSP56 MicroModem.txt -->07/03/2007 10:40:52 C:\WINNT\ModemLog_Olitec PCI 56K Modem.txt -->07/03/2007 10:37:02 C:\WINNT\pcdhyso.dll -->28/02/2007 18:28:24 C:\WINNT\Papier-peint.bmp d'ACD -->27/02/2007 18:42:29 C:\WINNT\ODBC.INI -->09/12/2006 19:38:47 C:\WINNT\wcpx_.dat -->20/11/2006 19:33:13 C:\WINNT\KB823980.log -->18/11/2006 19:02:38 C:\WINNT\~TempMui.inf -->19/10/2006 19:30:25 C:\WINNT\muisetup.log -->19/10/2006 19:30:25 C:\WINNT\GPInstall.exe |26/03/2003 08:45:25 C:\WINNT\IsUn040c.exe |09/04/2003 15:30:58 C:\WINNT\IsUninst.exe |25/03/2003 17:18:05 C:\WINNT\mixer.exe |25/03/2003 17:07:38 C:\WINNT\mUninstallFR.exe |24/11/2004 19:04:38 C:\WINNT\twunk_16.exe |08/05/2001 01:00:00 C:\WINNT\twunk_32.exe |08/05/2001 01:00:00 C:\WINNT\unin040c.exe |24/11/2004 14:18:17 C:\WINNT\uninst.exe |23/10/2003 19:32:11 C:\WINNT\unvise32qt.exe |30/08/2003 12:13:03 C:\WINNT\twain.dll |08/05/2001 01:00:00 C:\WINNT\twain_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\append.exe |08/05/2001 01:00:00 C:\WINNT\system32\aswBoot.exe |13/07/2006 11:12:34 C:\WINNT\system32\CNDNDlg.exe |05/08/2005 19:36:14 C:\WINNT\system32\CreateReg.exe |19/10/2006 19:29:16 C:\WINNT\system32\dd.exe |24/02/2007 17:50:56 C:\WINNT\system32\debug.exe |08/05/2001 01:00:00 C:\WINNT\system32\dfrgfat.exe |08/05/2001 01:00:00 C:\WINNT\system32\dfrgntfs.exe |08/05/2001 01:00:00 C:\WINNT\system32\dmadmin.exe |08/05/2001 01:00:00 C:\WINNT\system32\dmremote.exe |08/05/2001 01:00:00 C:\WINNT\system32\dosx.exe |08/05/2001 01:00:00 C:\WINNT\system32\dumphive.exe |07/03/2007 12:41:22 C:\WINNT\system32\dvdplay.exe |15/12/1999 00:30:38 C:\WINNT\system32\edlin.exe |08/05/2001 01:00:00 C:\WINNT\system32\exe2bin.exe |08/05/2001 01:00:00 C:\WINNT\system32\fastopen.exe |08/05/2001 01:00:00 C:\WINNT\system32\ma.exe.exe |16/02/2007 10:34:20 C:\WINNT\system32\mem.exe |08/05/2001 01:00:00 C:\WINNT\system32\mscdexnt.exe |08/05/2001 01:00:00 C:\WINNT\system32\msmmi.exe |16/02/2007 10:34:38 C:\WINNT\system32\msswchx.exe |08/05/2001 01:00:00 C:\WINNT\system32\NeroCheck.exe |09/07/2001 11:50:42 C:\WINNT\system32\nlsfunc.exe |08/05/2001 01:00:00 C:\WINNT\system32\nw16.exe |08/05/2001 01:00:00 C:\WINNT\system32\pctptt.exe |27/09/2000 02:15:20 C:\WINNT\system32\pctspk.exe |27/09/2000 07:58:48 C:\WINNT\system32\pp.exe.exe |16/02/2007 10:34:22 C:\WINNT\system32\Process.exe |07/03/2007 12:41:22 C:\WINNT\system32\ptuninst.exe |27/09/2000 02:23:22 C:\WINNT\system32\redir.exe |08/05/2001 01:00:00 C:\WINNT\system32\setver.exe |08/05/2001 01:00:00 C:\WINNT\system32\share.exe |08/05/2001 01:00:00 C:\WINNT\system32\sm.exe |24/02/2007 17:50:55 C:\WINNT\system32\SrchSTS.exe |07/03/2007 12:41:22 C:\WINNT\system32\swreg.exe |07/03/2007 12:41:22 C:\WINNT\system32\swsc.exe |07/03/2007 12:41:22 C:\WINNT\system32\swxcacls.exe |07/03/2007 12:41:22 C:\WINNT\system32\uvnx.exe |18/02/2007 09:41:13 C:\WINNT\system32\vwipxspx.exe |08/05/2001 01:00:00 C:\WINNT\system32\a3d.dll |25/03/2003 17:07:38 C:\WINNT\system32\agusbsti.dll |09/04/2003 15:31:31 C:\WINNT\system32\alldr.dll |08/05/2001 01:00:00 C:\WINNT\system32\amstream.dll |21/08/2006 13:36:53 C:\WINNT\system32\arxexprt.dll |19/10/2006 19:29:15 C:\WINNT\system32\ati2draa.dll |25/03/2003 14:33:25 C:\WINNT\system32\atmfd.dll |08/05/2001 01:00:00 C:\WINNT\system32\atmlib.dll |08/05/2001 01:00:00 C:\WINNT\system32\Audio3D.dll |25/03/2003 17:07:38 C:\WINNT\system32\BCGCB474.dll |19/10/2006 19:29:15 C:\WINNT\system32\BCGCBResFRA.dll |19/10/2006 19:29:16 C:\WINNT\system32\CmdLineExt.dll |19/10/2006 19:45:57 C:\WINNT\system32\CmdLineExt03.dll |19/10/2006 19:50:06 C:\WINNT\system32\cmnprop.dll |25/03/2003 17:07:38 C:\WINNT\system32\cmprop.dll |25/03/2003 17:07:38 C:\WINNT\system32\cncs232.dll |20/02/2002 19:20:50 C:\WINNT\system32\CNDCK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\CNDUK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\ConversApi.dll |19/10/2006 19:29:16 C:\WINNT\system32\CP30FW.DLL |19/10/2006 19:29:16 C:\WINNT\system32\czs_ui.dll |13/05/2002 14:05:32 C:\WINNT\system32\DC210.dll |20/03/2002 22:01:20 C:\WINNT\system32\DC240.dll |20/03/2002 22:01:20 C:\WINNT\system32\DC265.dll |20/03/2002 22:01:06 C:\WINNT\system32\DC280.dll |20/03/2002 22:01:20 C:\WINNT\system32\deimg.dll |13/05/2002 14:05:32 C:\WINNT\system32\deImg010.dll |13/05/2002 14:05:34 C:\WINNT\system32\deImg110.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg301.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg401.dll |13/05/2002 14:05:34 C:\WINNT\system32\deImg404.dll |13/05/2002 14:05:34 C:\WINNT\system32\deimg602.dll |13/05/2002 14:05:34 C:\WINNT\system32\Deimg603.dll |13/05/2002 14:05:34 C:\WINNT\system32\dfrgres.dll |08/05/2001 01:00:00 C:\WINNT\system32\dfrgsnap.dll |08/05/2001 01:00:00 C:\WINNT\system32\dfrgui.dll |08/05/2001 01:00:00 C:\WINNT\system32\dgrpsetu.dll |25/03/2003 14:31:51 C:\WINNT\system32\dgsetup.dll |25/03/2003 14:31:51 C:\WINNT\system32\dmconfig.dll |08/05/2001 01:00:00 C:\WINNT\system32\dmintf.dll |08/05/2001 01:00:00 C:\WINNT\system32\dmserver.dll |08/05/2001 01:00:00 C:\WINNT\system32\dmutil.dll |08/05/2001 01:00:00 C:\WINNT\system32\efsadu.dll |08/05/2001 01:00:00 C:\WINNT\system32\ekfpixaudio.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixexif.dll |20/03/2002 22:01:08 C:\WINNT\system32\ekfpixguid.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixio130.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixjpeg.dll |20/03/2002 22:01:20 C:\WINNT\system32\ekfpixpsets.dll |20/03/2002 22:01:20 C:\WINNT\system32\EqnClass.Dll |25/03/2003 14:31:50 C:\WINNT\system32\F210.dll |20/03/2002 22:01:20 C:\WINNT\system32\HHActiveX.dll |20/03/2002 21:01:58 C:\WINNT\system32\hpzcoi04.dll |15/11/2001 18:01:00 C:\WINNT\system32\hpzcon04.dll |15/11/2001 18:01:00 C:\WINNT\system32\hpzlnt04.dll |15/11/2001 18:01:01 C:\WINNT\system32\hticons.dll |25/03/2003 15:04:52 C:\WINNT\system32\hypertrm.dll |25/03/2003 15:04:38 C:\WINNT\system32\iacenc.dll |23/04/2003 10:55:09 C:\WINNT\system32\iccvid.dll |08/05/2001 01:00:00 C:\WINNT\system32\imagr5.dll |21/09/2000 17:02:28 C:\WINNT\system32\imagx5.dll |27/09/2000 16:15:06 C:\WINNT\system32\ImagXpr5.dll |21/09/2000 12:53:00 C:\WINNT\system32\imgcmn.dll |25/03/2003 15:04:43 C:\WINNT\system32\imgshl.dll |25/03/2003 15:04:43 C:\WINNT\system32\Inetwh32.dll |25/03/2003 17:18:29 C:\WINNT\system32\ir32_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir41_qc.dll |08/05/2001 01:00:00 C:\WINNT\system32\IR41_QCX.dll |19/06/2001 11:06:50 C:\WINNT\system32\ir50_32.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir50_qc.dll |08/05/2001 01:00:00 C:\WINNT\system32\ir50_qcx.dll |08/05/2001 01:00:00 C:\WINNT\system32\irisco32.dll |09/04/2003 15:34:01 C:\WINNT\system32\iyvu9_32.dll |23/04/2003 10:55:09 C:\WINNT\system32\JGA1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAA500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAD500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGAU500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGDR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGDW500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGEA500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGED500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGEM500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFR500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGFS500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGGI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI3500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGI5500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGID500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIQ500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGIT500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGM1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMC500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGME500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMI500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGMP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGN1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGOS500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPD500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPL500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGPP500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGS1500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGS3500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGSN500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\JGST500.DLL |13/05/2002 15:13:58 C:\WINNT\system32\jpeg1x32.dll |25/03/2003 15:04:43 C:\WINNT\system32\jpeg2x32.dll |25/03/2003 15:04:43 C:\WINNT\system32\mciqtz32.dll |21/08/2006 13:36:53 C:\WINNT\system32\msdmo.dll |21/08/2006 13:36:55 C:\WINNT\system32\msencode.dll |30/08/2002 17:24:06 C:\WINNT\system32\msswch.dll |08/05/2001 01:00:00 C:\WINNT\system32\Nmea.dll |19/10/2006 19:29:16 C:\WINNT\system32\Ogc.dll |19/10/2006 19:29:16 C:\WINNT\system32\OgcDrvAvmap.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvGarmin.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvLowrance.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvMagellan.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvMlr.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvPyx.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSena.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSilva.dll |19/10/2006 19:30:40 C:\WINNT\system32\OgcDrvSuu.dll |19/10/2006 19:30:41 C:\WINNT\system32\oieng400.dll |25/03/2003 15:04:38 C:\WINNT\system32\oiprt400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oislb400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oissq400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oitwa400.dll |25/03/2003 15:04:43 C:\WINNT\system32\oiui400.dll |25/03/2003 15:04:43 C:\WINNT\system32\PCDLIB32.DLL |09/12/1998 02:53:58 C:\WINNT\system32\picn20.dll |21/09/2000 07:47:10 C:\WINNT\system32\PixologyIRISS011.dll |07/11/2003 10:03:34 C:\WINNT\system32\Polyclip.dll |19/10/2006 19:29:16 C:\WINNT\system32\pscAdimg.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscCllct.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscCStUI.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDcd.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDevUI.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscDvlp.dll |13/05/2002 14:05:34 C:\WINNT\system32\Pscl2STI.dll |13/05/2002 14:05:34 C:\WINNT\system32\PSCLK170.dll |05/08/2005 19:36:14 C:\WINNT\system32\pscll.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscParse.dll |13/05/2002 14:05:34 C:\WINNT\system32\pscSetup.dll |13/05/2002 14:05:34 C:\WINNT\system32\psdkdll.dll |13/05/2002 14:05:36 C:\WINNT\system32\psdkReg.dll |13/05/2002 14:05:36 C:\WINNT\system32\psisdecd.dll |21/08/2006 13:36:59 C:\WINNT\system32\psParse.dll |13/05/2002 14:05:36 C:\WINNT\system32\ptsetup.dll |27/09/2000 02:11:54 C:\WINNT\system32\Pvmjpg21.dll |21/08/2006 13:35:59 C:\WINNT\system32\qcut.dll |08/05/2001 01:00:00 C:\WINNT\system32\qedwipes.dll |21/08/2006 13:36:56 C:\WINNT\system32\RCalcul.dll |19/10/2006 19:29:16 C:\WINNT\system32\Roboex32.dll |25/03/2003 17:18:28 C:\WINNT\system32\rpcc.dll |16/02/2007 10:29:41 C:\WINNT\system32\sliprt.dll |31/01/2006 09:34:35 C:\WINNT\system32\spxcoins.dll |25/03/2003 14:31:50 C:\WINNT\system32\tifflt.dll |25/03/2003 15:04:44 C:\WINNT\system32\TransportIrCOMM.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportIrDA.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportSerial.dll |20/03/2002 22:00:20 C:\WINNT\system32\TransportUSB.dll |20/03/2002 22:00:20 C:\WINNT\system32\tsbyuv.dll |15/12/1999 00:30:06 C:\WINNT\system32\tsd32.dll |08/05/2001 01:00:00 C:\WINNT\system32\TwnLib20.dll |26/06/2000 10:45:30 C:\WINNT\system32\UNACEV2.DLL |21/03/2002 15:39:02 C:\WINNT\system32\win87em.dll |08/05/2001 01:00:00 C:\WINNT\system32\x9.dll |19/10/2006 19:30:40 C:\WINNT\system32\xiffr3_0.dll |25/03/2003 15:04:44 C:\WINNT\system32\zAskop.dll |18/02/2007 09:34:51 Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\WINNT\system32 08/05/2001 01:00 5†392 csrss.exe 1 fichier(s) 5†392 octets 0 RÈp(s) 4†619†857†920 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\WINNT\Downloaded Program Files 07/03/2007 12:38 <DIR> . 07/03/2007 12:38 <DIR> .. 17/11/2003 01:00 2†432 catalog.dat 10/09/2004 09:35 620 default.inf 07/06/2005 11:25 65 desktop.ini 02/04/2003 14:40 268 DHTMLAccess.inf 14/10/1997 18:52 697 DirectAnimation Java Classes.osd 13/11/2003 12:13 253 EGDHTML.inf 28/03/2002 15:05 1†268 erma.inf 25/08/2003 17:12 1†096 iuctl.inf 20/01/2000 15:25 1†162 Microsoft XML Parser for Java.osd 12/01/2000 16:07 6†854 navapi.vxd 12/01/2000 15:53 208†896 navapi32.dll 17/11/2003 01:00 120†008 naveng32.dll 17/11/2003 01:00 586†952 navex32a.dll 09/10/2003 09:32 144 QTPlugin.inf 17/11/2003 01:00 73†344 scrauth.dat 19/11/2003 17:37 0 SET13.tmp 02/12/2005 11:55 5†101 swflash.inf 17/11/2003 01:00 7†933 symaveng.cat 17/11/2003 01:00 901 symaveng.inf 17/11/2003 01:00 1†725 tcdefs.dat 17/11/2003 01:00 8†087 tcscan7.dat 17/11/2003 01:00 44†131 tcscan8.dat 17/11/2003 01:00 104†298 tcscan9.dat 08/03/2004 16:28 1†390 teleir_cert.osd 17/11/2003 01:00 453 tinf.dat 17/11/2003 01:00 148 tinfidx.dat 17/11/2003 01:00 1†957 tinfl.dat 17/11/2003 01:00 31†302 tscan1.dat 17/11/2003 01:00 1†179 tscan1hd.dat 17/11/2003 01:00 5†382 v.grd 17/11/2003 01:00 2†225 v.sig 17/11/2003 01:00 106†236 virscan.inf 17/11/2003 01:00 839†778 virscan1.dat 17/11/2003 01:00 583†667 virscan2.dat 17/11/2003 01:00 142†904 virscan3.dat 17/11/2003 01:00 316†348 virscan4.dat 17/11/2003 01:00 70†676 virscan5.dat 17/11/2003 01:00 371†529 virscan6.dat 17/11/2003 01:00 855†367 virscan7.dat 17/11/2003 01:00 938†682 virscan8.dat 17/11/2003 01:00 896†600 virscan9.dat 17/11/2003 01:00 32 virscant.dat 18/11/2003 15:51 2†072 vscanmsx.dat 30/06/2003 21:41 1†689 WMV9VCM.inf 26/05/2005 04:19 291 wuweb.inf 17/11/2003 01:00 224 zdone.dat 46 fichier(s) 6†346†366 octets Total des fichiers listÈs†: 46 fichier(s) 6†346†366 octets 2 RÈp(s) 4†619†857†920 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files 14/03/2007 15:40 <DIR> . 14/03/2007 15:40 <DIR> .. 31/01/2006 09:34 <DIR> AccÈlÈrateur de dÈbit Alice 25/03/2003 15:04 <DIR> Accessoires 28/12/2004 19:17 <DIR> ACD Systems 03/11/2006 14:36 <DIR> Adobe 09/04/2003 15:31 <DIR> Agfa 24/03/2006 10:11 <DIR> AGFAnet 11/09/2004 10:58 <DIR> Ahead 20/04/2005 14:47 <DIR> Alwil Software 24/11/2004 19:26 <DIR> ARC-EN-logiCIEL 24/11/2004 19:21 <DIR> Arkanoid 19/10/2006 19:30 <DIR> Bayo 21/11/2006 16:30 <DIR> Canon 25/03/2003 15:06 <DIR> ComPlus Applications 26/03/2003 08:45 <DIR> denouvel 01/01/2006 16:17 <DIR> eBay 24/11/2004 19:14 <DIR> Ecole Primaire - ABCDaire 03/11/2006 14:34 <DIR> Fichiers communs 18/06/2005 09:38 <DIR> Fujifilm 14/03/2007 15:40 <DIR> Grisoft 23/12/2003 22:42 <DIR> Heroes2 07/06/2005 11:24 <DIR> Internet Explorer 19/03/2005 09:46 <DIR> Lavasoft 24/11/2004 19:03 <DIR> Lecture 24/11/2004 19:04 <DIR> MemoLine 08/03/2005 12:23 <DIR> Messenger 25/03/2003 15:09 <DIR> microsoft frontpage 23/04/2003 10:53 <DIR> Microsoft Games 25/03/2003 16:33 <DIR> Microsoft Office 25/03/2003 15:06 <DIR> NetMeeting 05/02/2007 18:00 <DIR> Neuf 21/08/2006 13:38 <DIR> OLYMPUS 07/06/2005 11:26 <DIR> Outlook Express 21/08/2006 13:34 <DIR> PIXELA 24/11/2004 19:05 <DIR> Puzzline 25/03/2003 17:18 <DIR> Qualcomm 27/03/2006 07:12 <DIR> QuickTime 14/03/2007 15:05 <DIR> Realtek 28/03/2005 17:54 <DIR> Repair Registry Pro 22/04/2003 10:08 <DIR> SYBEX 07/03/2007 11:31 <DIR> VeriSign 11/09/2004 10:58 <DIR> Windows Media Player 25/03/2003 15:05 <DIR> Windows NT 07/06/2005 10:15 <DIR> WindowsUpdate 30/09/2004 20:52 <DIR> WinRAR 0 fichier(s) 0 octets 46 RÈp(s) 4†619†620†352 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files\fichiers communs 03/11/2006 14:34 <DIR> . 03/11/2006 14:34 <DIR> .. 28/12/2004 19:24 <DIR> ACD Systems 03/11/2006 14:33 <DIR> Adobe 03/11/2006 14:34 <DIR> Adobe Systems Shared 25/03/2003 16:34 <DIR> Designer 24/03/2006 10:11 <DIR> FotoWire 01/01/2006 16:16 <DIR> InstallShield 14/03/2007 15:45 <DIR> Microsoft Shared 21/08/2006 13:39 <DIR> MSSoap 25/03/2003 14:32 <DIR> ODBC 07/06/2005 11:26 <DIR> Services 20/04/2005 14:53 <DIR> Symantec Shared 07/06/2005 11:26 <DIR> System 0 fichier(s) 0 octets 14 RÈp(s) 4†619†681†792 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 25/03/2003 16:34 <DIR> . 25/03/2003 16:34 <DIR> .. 14/03/2007 15:45 <DIR> 1033 14/03/2007 15:45 <DIR> 1036 15/02/2001 05:45 1†318†912 MSONSEXT.DLL 13/02/2001 08:23 58†784 MSOSV.DLL 03/06/1999 19:09 122†937 MSOWS409.DLL 14/02/2001 14:36 127†033 MSOWS40c.DLL 06/08/2000 09:04 401†462 MSVCP60.DLL 22/01/2001 03:25 69†632 PKMAXCTL.DLL 22/01/2001 03:25 872†448 PKMCDO.DLL 22/01/2001 03:25 159†744 PKMCORE.DLL 07/02/2001 09:59 106†496 PKMFORMS.DLL 12/02/2001 04:03 684†032 PKMRES.DLL 22/01/2001 03:25 28†672 PKMSSTLB.DLL 22/01/2001 03:25 40†960 PKMTEMPL.DLL 22/01/2001 03:25 24†576 PKMTRACE.DLL 22/01/2001 03:25 86†016 PKMWS.DLL 22/01/2001 03:25 237†568 PROMDEMO.DLL 22/01/2001 03:25 184†320 SECMGR.DLL 22/01/2001 03:25 323†584 VAIDDMGR.DLL 22/01/2001 03:25 32†768 VAIMEM.DLL 18 fichier(s) 4†879†944 octets 4 RÈp(s) 4†619†616†256 octets libres Le volume dans le lecteur C n'a pas de nom. Le numÈro de sÈrie du volume est 08B1-E9F5 RÈpertoire de C:\ 11/11/2001 00:00 68†096 diff.exe 27/08/2006 14:10 103†424 grep.exe 24/05/2001 12:59 162†304 UNWISE.EXE 3 fichier(s) 333†824 octets 0 RÈp(s) 4†619†677†696 octets libres c:\Documents and Settings\bonfill\Bureau\AVAST.exe c:\Documents and Settings\bonfill\Bureau\ToolbarSetup.exe c:\Documents and Settings\bonfill\Bureau\AV\._CWShredder.exe c:\Documents and Settings\bonfill\Bureau\AV\._HijackThis.exe c:\Documents and Settings\bonfill\Bureau\AV\ATF-Cleaner.exe c:\Documents and Settings\bonfill\Bureau\AV\avgas-setup-7.5.0.50.exe c:\Documents and Settings\bonfill\Bureau\AV\blbeta.exe c:\Documents and Settings\bonfill\Bureau\AV\CWShredder.exe c:\Documents and Settings\bonfill\Bureau\AV\HijackThis.exe c:\Documents and Settings\bonfill\Bureau\AV\Look2Me-Destroyer.exe c:\Documents and Settings\bonfill\Bureau\AV\msconfig.exe c:\Documents and Settings\bonfill\Bureau\AV\OTMoveIt.exe c:\Documents and Settings\bonfill\Bureau\AV\AboutBuster\AboutBuster.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\diff.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\dumphive.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\Fport.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\grep.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\LFiles.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\LISTDLLS.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\pslist.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\streams.exe c:\Documents and Settings\bonfill\Bureau\AV\DiagHelp\swreg.exe c:\Documents and Settings\bonfill\Bureau\Jean-Marie\GEOGRAPHIE\GÈoKid.exe c:\Documents and Settings\bonfill\Bureau\PCI_Install_5663\PCI_Install_5663_20070216\setup.exe c:\Documents and Settings\bonfill\Local Settings\Temp\pr_tutor\Glorious_Tutorial.exe c:\Documents and Settings\bonfill\Local Settings\Temp\pr_tutor\Tutorial.exe c:\Documents and Settings\bonfill\Local Settings\Temp\_ISTMP1.DIR\_ISTMP0.DIR\ICOMP.EXE c:\Documents and Settings\bonfill\Local Settings\Temp\_ISTMP1.DIR\_ISTMP0.DIR\WINTDIST.EXE c:\Documents and Settings\bonfill\Mes documents\164 antispyware.exe c:\Documents and Settings\bonfill\Mes documents\acdsee.exe c:\Documents and Settings\bonfill\Mes documents\acdsee-fr.exe c:\Documents and Settings\bonfill\Mes documents\FreeScan.exe c:\Documents and Settings\bonfill\Mes documents\install messenger.exe c:\Documents and Settings\bonfill\Mes documents\pllangs.exe c:\Documents and Settings\bonfill\Mes documents\RepairRegistryPro.exe c:\Documents and Settings\bonfill\Mes documents\rp505fra.exe c:\Documents and Settings\bonfill\Mes documents\setupfre-avast.exe c:\Documents and Settings\bonfill\Mes documents\Windows2000-KB823980-x86-FRA.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Eudora5.2.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\antivirus.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\GÈoKid.exe c:\Documents and Settings\bonfill\Mes documents\aGraver-JM\Backup-JM\mesdocuments-backup\Mes documents\q290108.exe
  12. mailme
    PS : Le problème de reboot est toujours d'actualité. Toujours avec le même message d'erreur. Il y a autre chose a faire ? Merci.
  13. mailme
    Bonjour, Après la manipulation que tu m'as indiqué, voici le rapport Look2Me-Destroyer.txt : -------------------------------------------------------------------------- Look2Me-Destroyer V1.0.12 Scanning for infected files..... Scan started at 14/03/2007 10:04:16 Attempting to delete infected files... Making registry repairs. Restoring Windows certificates. Replaced hosts file with default windows hosts file Restoring SeDebugPrivilege for Administrateurs - Succeeded -------------------------------------------------------------------------- Et le nouveau rapport HijackThis : -------------------------------------------------------------------------- Logfile of HijackThis v1.99.1 Scan saved at 10:10:19, on 14/03/2007 Platform: Windows 2000 SP2 (WinNT 5.00.2195) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINNT\System32\smss.exe C:\WINNT\system32\winlogon.exe C:\WINNT\system32\services.exe C:\WINNT\system32\lsass.exe C:\WINNT\system32\svchost.exe C:\WINNT\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINNT\System32\svchost.exe C:\WINNT\System32\pctspk.exe C:\WINNT\system32\regsvc.exe C:\WINNT\system32\MSTask.exe C:\WINNT\system32\stisvc.exe C:\WINNT\System32\WBEM\WinMgmt.exe C:\WINNT\System32\svchost.exe C:\WINNT\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINNT\Mixer.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Messenger\msmsgs.exe C:\Documents and Settings\bonfill\Bureau\AV\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: eBay Toolbar Helper - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx O3 - Toolbar: eBay Toolbar - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll O4 - HKLM\..\Run: [synchronization Manager] mobsync.exe /logon O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup O4 - HKLM\..\Run: [CountrySelection] pctptt.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe -NoStart O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure...teleir_cert.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1170694926193 O17 - HKLM\System\CCS\Services\Tcpip\..\{5004BD58-7AC4-4B2E-9285-0D13E600FDF5}: NameServer = 212.27.32.176,212.27.32.177 O17 - HKLM\System\CCS\Services\Tcpip\..\{6EF55BFE-A5E6-4019-838D-C33105C74C47}: NameServer = 212.27.32.176,212.27.32.177 O17 - HKLM\System\CS1\Services\Tcpip\..\{5004BD58-7AC4-4B2E-9285-0D13E600FDF5}: NameServer = 212.27.32.176,212.27.32.177 O17 - HKLM\System\CS2\Services\Tcpip\..\{5004BD58-7AC4-4B2E-9285-0D13E600FDF5}: NameServer = 212.27.32.176,212.27.32.177 O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe O23 - Service: W2K PCtel speaker phone (Pctspk) - PCtel, Inc. - C:\WINNT\System32\pctspk.exe -------------------------------------------------------------------------- Merci.
  14. mailme
    Ok, voici le rapport Black light : 03/13/07 14:15:22 [info]: BlackLight Engine 1.0.55 initialized 03/13/07 14:15:22 [info]: OS: 5.0 build 2195 (Service Pack 2) 03/13/07 14:15:22 [Note]: 7019 4 03/13/07 14:15:22 [Note]: 7005 0 03/13/07 14:15:27 [Note]: 7006 0 03/13/07 14:15:27 [Note]: 7011 224 03/13/07 14:15:28 [Note]: 7026 0 03/13/07 14:15:29 [Note]: 7026 0 03/13/07 14:15:42 [Note]: FSRAW library version 1.7.1021 03/13/07 14:17:36 [Note]: 2000 1012 03/13/07 14:17:52 [Note]: 7007 0
  15. mailme
    Salut, Oui, effectivement ça a rebooté et j'ai réussi à obtenir le message d'erreur suivant : "*** STOP: 0x0000001E (0xC0000005, 0x00000000, 0x00000000, 0x00000000) KMODE_EXEPTION_NOT_HANDLED Début du vidage de la mémoire physique. Vidage de la mémoire physique terminé. Contactez votre administrateur, etc..." Sinon, j'ai passé le F-Secure Black light qui n'a pas l'air de trouver quoi que ce soit d'anormal, voici le rapport (cf message suivant) :
×
×
  • Créer...