Aller au contenu

micka

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    30

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par micka

  1. micka
    bonjour comme prevu je vous passe mon rapport hijackthis , avec les instruction suivi comme conseiller et sa donne sa . mon pc rame toujours il a du mal a demarrer ,et reste sur windows un moment . et mon antivirus passe toujour pas en mode sans echec . Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:43:43, on 03/10/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\PROGRA~1\McAfee\MPS\mps.exe C:\Program Files\McAfee\MSK\MskSrver.exe C:\WINDOWS\system32\oodag.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\McAfee\MPS\mpsevh.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\micka\Bureau\rangement\HijackThis.exe O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'Default user') O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe -- End of file - 4549 bytes MERCI MICKA
  2. micka
    ok deja merci de ta reponse . je vais suivre tes instructions,et te redonnerais mon rapport hijachis . merci bien micka
  3. micka
    bonjour j avais deja poser mon probleme,j ai mon pc qui es au ralentie ,avec peaucoup de saccadement . si j'ecoute de la musique, et ouvre un autre dossier entre temps ma musique saccades pendent 10 seconde . bref mon pc a un probleme . le pire j'ai mcafee mais il ne marche pas en mode sans echec . je vous fait pars ,de mon rapport hitjackthis. mais que faire apres . Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:00:51, on 02/10/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\McAfee\MSK\MskAgent.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\PROGRA~1\McAfee\MPS\mps.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\Program Files\McAfee\MSK\MskSrver.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\McAfee\MPS\mpsevh.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\MSN Messenger\livecall.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Documents and Settings\micka\Bureau\rangement\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [MskAgentexe] C:\Program Files\McAfee\MSK\MskAgent.exe O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user') O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe -- End of file - 6397 bytes merci bien pour votre aides. MICKA
  4. micka
    bonsoir a vous j ai voulu suivre les instructions,pour un prenettoyage de mon pc . mais le probleme c'est que je n'arrive pas a lancer mon antivirus en mode sans echec . merci de m 'eclaicir et mon antivirus et MCAFEE. MERCI A VOUS MICKA
  5. micka

    lenteur

    micka a répondu à un(e) sujet de micka dans Internet & Réseaux

    rebonjour afin d'etre plus clair je vous joint mon rapport de hijackthis. MERCI Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:14:25, on 01/10/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\McAfee\MSK\MskAgent.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\PROGRA~1\McAfee\MPS\mps.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\Program Files\McAfee\MSK\MskSrver.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\McAfee\MPS\mpsevh.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\MSN Messenger\livecall.exe C:\Program Files\The All-Seeing Eye\eye.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Documents and Settings\micka\Bureau\rangement\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [MskAgentexe] C:\Program Files\McAfee\MSK\MskAgent.exe O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user') O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe -- End of file - 6014 bytes voila
  6. micka

    lenteur

    micka a posté un sujet dans Internet & Réseaux

    bonjour a vous voila depuis certain temps, mon ordinateur est au ralentie, meme sur internet . j 'ai un pentieum3 avec 512 de ram et une conection adsl chez free . j ai passer mon antivirus mcafee, il me trouve rien pas de virus ,juste quelqueq cookies . donc si quelqu'un pourrait me donner un coup de main sa serait sympa en vous remerciant micka
  7. micka
    salut charle. effectivement j ai eu un prronleme avec remove .reg. l'icone et bien mais quand j'appuie dessus une fenetre d'erreurs s'ouvre. sa me dit le fichier specifier n 'est pas un registre .pourtant j ai le bon icone. bon jne vais m 'occuper d u reste et je t(envoie les rapports. micka
  8. micka
    bonsoir charle comme d'hab je te rapporte les 3 rapport demander RAPPORT HIJACKHIS Logfile of HijackThis v1.99.1 Scan saved at 02:20:26, on 28/11/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0011) Running processes: F:\WINDOWS\System32\smss.exe F:\WINDOWS\SYSTEM32\winlogon.exe F:\WINDOWS\system32\services.exe F:\WINDOWS\system32\lsass.exe F:\WINDOWS\System32\Ati2evxx.exe F:\WINDOWS\system32\svchost.exe F:\WINDOWS\System32\svchost.exe F:\WINDOWS\system32\spoolsv.exe F:\Program Files\AntiVir PersonalEdition Classic\sched.exe F:\Program Files\AntiVir PersonalEdition Classic\avguard.exe F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe F:\WINDOWS\System32\drivers\CDAC11BA.EXE F:\WINDOWS\System32\oodag.exe F:\WINDOWS\System32\svchost.exe F:\WINDOWS\SYSTEM32\Ati2evxx.exe F:\WINDOWS\Explorer.EXE F:\WINDOWS\system32\ctfmon.exe F:\Program Files\Internet Explorer\IEXPLORE.EXE F:\WINDOWS\system32\NOTEPAD.EXE F:\Program Files\HijackThis);\Vundo.exe.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - F:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - F:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - f:\program files\google\googletoolbar1.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - F:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O2 - BHO: (no name) - {C004DEC2-2623-438e-9CA2-C9043AB28508} - (no file) O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - F:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f:\program files\google\googletoolbar1.dll O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwa...ash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{364D045E-BCA0-495F-A59B-0111D4F8599E}: NameServer = 80.10.246.1,80.10.246.139 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "F:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: winzoa32 - winzoa32.dll (file missing) O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - F:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - F:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - Unknown owner - F:\WINDOWS\System32\Ati2evxx.exe O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Boonty Games - Unknown owner - F:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - F:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - F:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing) O23 - Service: O&O Defrag - O&O Software GmbH - F:\WINDOWS\System32\oodag.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - F:\WINDOWS\system32\ZoneLabs\vsmon.exe RAPPORT COMBO FIX moi - 06-11-28 2:16:44,56 Service Pack 2 ComboFix 06.11.27W - Running from: "F:\Documents and Settings\moi\Bureau" (((((((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Folders Quarantined: F:\QooBox\Purity\Documents and Settings\moi\Application Data\YMANTE~1 F:\QooBox\Purity\Documents and Settings\moi\Application Data\YMANTE~1\?ymantec F:\QooBox\Purity\Documents and Settings\moi\Mes documents\ICROSO~1 ((((((((((((((((((((((((((((((( Files Created from 2006-10-28 to 2006-11-28 )))))))))))))))))))))))))))))))))) 2006-11-27 23:25 <REP> d-------- F:\!KillBox 2006-11-27 20:14 <REP> d-------- F:\WINDOWS\system32\ActiveScan 2006-11-27 12:39 <REP> d-------- F:\VundoFix Backups 2006-11-26 23:31 57,384 --a------ F:\WINDOWS\system32\avsda.dll 2006-11-26 23:31 32,768 --a------ F:\WINDOWS\system32\drivers\avgntdd.sys 2006-11-26 23:31 14,848 --a------ F:\WINDOWS\system32\drivers\avgntmgr.sys 2006-11-26 23:31 <REP> d-------- F:\Program Files\AntiVir PersonalEdition Classic 2006-11-26 23:31 <REP> d-------- F:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic 2006-11-26 22:17 <REP> d-------- F:\Program Files\HijackThis); 2006-11-26 22:06 484 --a------ F:\WINDOWS\system32\tmp.reg 2006-11-26 22:05 53,248 --a------ F:\WINDOWS\system32\Process.exe 2006-11-26 22:05 40,960 --a------ F:\WINDOWS\system32\swsc.exe 2006-11-26 22:05 288,417 --a------ F:\WINDOWS\system32\SrchSTS.exe 2006-11-26 22:05 135,168 --a------ F:\WINDOWS\system32\swreg.exe 2006-11-26 18:44 <REP> d-------- F:\Program Files\xp-AntiSpy 2006-11-25 17:30 <REP> d-------- F:\WINDOWS\Web 2006-11-25 17:27 <REP> d-------- F:\WINDOWS\WBEM 2006-11-25 17:27 <REP> d-------- F:\WINDOWS\system32\fr-fr 2006-11-25 17:26 <REP> d--h-c--- F:\WINDOWS\ie7 2006-11-25 17:25 121,856 --------- F:\WINDOWS\system32\xmllite.dll 2006-11-25 17:24 <REP> d-------- F:\WINDOWS\network diagnostic 2006-11-24 16:22 <REP> d-------- F:\WINDOWS\SxsCaPendDel 2006-11-24 15:59 42,920 --a------ F:\WINDOWS\system32\vsutil_loc040c.dll 2006-11-24 15:58 <REP> d-------- F:\WINDOWS\system32\ZoneLabs 2006-11-24 15:58 <REP> d-------- F:\Program Files\Zone Labs 2006-11-23 22:43 3,968 --a------ F:\WINDOWS\system32\drivers\AvgAsCln.sys 2006-11-23 22:43 <REP> d-------- F:\Program Files\Grisoft 2006-11-23 19:47 5,632 --a------ F:\WINDOWS\system32\Machnm64.sys 2006-11-23 19:47 2,304 --a------ F:\WINDOWS\system32\Machnm32.sys 2006-11-23 19:47 15,840 --a------ F:\WINDOWS\system32\Machnm1.exe 2006-11-23 19:47 <REP> d-------- F:\Program Files\E-Press 2006-11-23 16:27 <REP> d-------- F:\Program Files\Yahoo! 2006-11-23 16:27 <REP> d-------- F:\Documents and Settings\All Users\Application Data\Symantec 2006-11-23 16:22 <REP> d-------- F:\Program Files\Fichiers communs\Symantec Shared 2006-11-20 17:28 <REP> d-------- F:\Program Files\OO Software 2006-11-19 11:19 <REP> dr-h----- F:\Documents and Settings\moi\Recent 2006-11-17 00:34 <REP> d-------- F:\Program Files\Mes Jeux T‚l‚charg‚s 2006-11-14 20:12 <REP> d-------- F:\Program Files\Neuf 2006-11-07 21:03 6,049,280 --------- F:\WINDOWS\system32\ieframe.dll 2006-11-07 21:03 50,688 --------- F:\WINDOWS\system32\msfeedsbs.dll 2006-11-07 21:03 458,752 --------- F:\WINDOWS\system32\msfeeds.dll 2006-11-07 21:03 180,736 --------- F:\WINDOWS\system32\ieui.dll 2006-11-07 03:26 13,312 --a------ F:\WINDOWS\system32\ieudinit.exe 2006-10-30 15:26 98,304 --a------ F:\WINDOWS\system32\CmdLineExt.dll 2006-10-30 15:22 <REP> d-------- F:\Program Files\KONAMI (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2006-11-27 20:23 -------- d-------- F:\Program Files\Spybot - Search & Destroy 2006-11-27 20:23 -------- d-------- F:\Program Files\Internet Explorer 2006-11-27 20:22 -------- d-------- F:\Program Files\Google 2006-11-27 19:24 -------- d-------- F:\Program Files\Fichiers communs 2006-11-26 15:00 -------- d-------- F:\Documents and Settings\moi\Application Data\teamspeak2 2006-11-24 16:24 -------- d-------- F:\Documents and Settings\moi\Application Data\Lavasoft 2006-11-24 16:23 -------- d-------- F:\Program Files\Zoom Player 2006-11-24 16:22 -------- d--h----- F:\Program Files\InstallShield Installation Information 2006-11-23 21:43 -------- d-------- F:\Program Files\Fichiers communs\Microsoft Shared 2006-11-23 19:48 3120 --a------ F:\Documents and Settings\moi\Application Data\117715.29 2006-11-07 21:03 413696 --a------ F:\WINDOWS\system32\vbscript.dll 2006-11-07 21:03 231424 --a------ F:\WINDOWS\system32\webcheck.dll 2006-11-07 21:03 156160 --a------ F:\WINDOWS\system32\msls31.dll 2006-11-07 03:27 382976 --a------ F:\WINDOWS\system32\iedkcs32.dll 2006-11-07 03:27 229376 --a------ F:\WINDOWS\system32\ieaksie.dll 2006-11-07 03:26 71680 --a------ F:\WINDOWS\system32\admparse.dll 2006-11-07 03:26 55296 --a------ F:\WINDOWS\system32\iesetup.dll 2006-11-07 03:26 54784 --a------ F:\WINDOWS\system32\ie4uinit.exe 2006-11-07 03:26 43008 --a------ F:\WINDOWS\system32\iernonce.dll 2006-11-07 03:26 152064 --a------ F:\WINDOWS\system32\ieakeng.dll 2006-11-07 03:26 123904 --a------ F:\WINDOWS\system32\advpack.dll 2006-11-07 03:25 161792 --a------ F:\WINDOWS\system32\ieakui.dll 2006-10-22 16:24 -------- d-------- F:\Program Files\JeffProd 2006-10-21 19:02 30630 --a------ F:\WINDOWS\system32\drivers\Mmc_2k.sys 2006-10-21 19:02 25898 --a------ F:\WINDOWS\system32\drivers\Dvd_2k.sys 2006-10-21 19:02 143834 --a------ F:\WINDOWS\system32\drivers\pwd_2K.sys 2006-10-21 19:02 -------- d-------- F:\Program Files\Fichiers communs\Adaptec Shared 2006-10-21 19:01 -------- d-------- F:\Program Files\Roxio 2006-10-19 18:01 -------- d---s---- F:\Documents and Settings\moi\Application Data\Microsoft 2006-10-18 20:40 -------- d-------- F:\Program Files\Diskeeper Corporation 2006-10-18 16:42 -------- d-------- F:\Program Files\Shareaza 2006-10-18 16:42 -------- d-------- F:\Documents and Settings\moi\Application Data\Shareaza 2006-10-18 16:24 -------- d-------- F:\Documents and Settings\moi\Application Data\Google 2006-10-17 12:06 78336 --a------ F:\WINDOWS\system32\ieencode.dll 2006-10-17 12:05 40960 --a------ F:\WINDOWS\system32\licmgr10.dll 2006-10-17 12:05 206336 --------- F:\WINDOWS\system32\WinFXDocObj.exe 2006-10-17 12:05 105984 --a------ F:\WINDOWS\system32\url.dll 2006-10-17 12:04 101376 --a------ F:\WINDOWS\system32\occache.dll 2006-10-17 12:03 17408 --a------ F:\WINDOWS\system32\corpol.dll 2006-10-17 11:58 61952 --------- F:\WINDOWS\system32\icardie.dll 2006-10-17 11:58 12288 --------- F:\WINDOWS\system32\msfeedssync.exe 2006-10-17 11:57 36352 --a------ F:\WINDOWS\system32\imgutil.dll 2006-10-17 11:57 266752 --------- F:\WINDOWS\system32\iertutil.dll 2006-10-17 11:56 45568 --a------ F:\WINDOWS\system32\mshta.exe 2006-10-17 11:28 48128 --a------ F:\WINDOWS\system32\mshtmler.dll 2006-10-17 11:27 380928 --------- F:\WINDOWS\system32\ieapfltr.dll 2006-10-13 13:36 145920 --a------ F:\WINDOWS\system32\nwprovau.dll 2006-10-06 21:37 -------- d-------- F:\Program Files\Wolfenstein - Enemy Territory 2006-10-05 16:14 -------- d-------- F:\Program Files\RegCleaner 2006-10-02 21:48 -------- d-------- F:\Program Files\The All-Seeing Eye 2006-09-13 06:03 1084416 --a------ F:\WINDOWS\system32\msxml3.dll 2006-09-06 16:43 22752 --a------ F:\WINDOWS\system32\spupdsvc.exe 2006-08-04 11:18 774144 --a------ F:\Program Files\RngInterstitial.dll (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries are not shown [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "ctfmon.exe"="F:\\WINDOWS\\system32\\ctfmon.exe" [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components] "DeskHtmlVersion"=dword:00000110 "DeskHtmlMinorVersion"=dword:00000005 "Settings"=dword:00000001 "GeneralFlags"=dword:00000004 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 "CDRAutoRun"=dword:00000000 [HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 "CDRAutoRun"=dword:00000000 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload] "PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" "CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" "WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" "SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^F-Secure 2006.lnk] "backup"="F:\\WINDOWS\\pss\\F-Secure 2006.lnkCommon Startup" "location"="Common Startup" "item"="F-Secure 2006" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk] "path"="F:\\Documents and Settings\\All Users\\Menu Démarrer\\Programmes\\Démarrage\\Lancement rapide d'Adobe Reader.lnk" "backup"="F:\\WINDOWS\\pss\\Lancement rapide d'Adobe Reader.lnkCommon Startup" "location"="Common Startup" "command"="F:\\PROGRA~1\\Adobe\\ACROBA~1.0\\Reader\\READER~1.EXE " "item"="Lancement rapide d'Adobe Reader" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^ScanPanel.lnk] "backup"="F:\\WINDOWS\\pss\\ScanPanel.lnkCommon Startup" "location"="Common Startup" "item"="ScanPanel" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk] "backup"="F:\\WINDOWS\\pss\\WinZip Quick Pick.lnkCommon Startup" "location"="Common Startup" "item"="WinZip Quick Pick" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^BoontyBox neuf telecom.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\BoontyBox neuf telecom.lnk" "backup"="F:\\WINDOWS\\pss\\BoontyBox neuf telecom.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\Boonty\\BOONTY~1\\BOONTY~1.EXE /boot /nosplash" "item"="BoontyBox neuf telecom" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^Corel Print House Registration.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\Corel Print House Registration.lnk" "backup"="F:\\WINDOWS\\pss\\Corel Print House Registration.lnkStartup" "location"="Startup" "command"="F:\\Fichiers programme\\Corel\\Print House 2000\\Register\\Remind32.exe " "item"="Corel Print House Registration" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^Diskeeper 10 Professional Edition Registration.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\Diskeeper 10 Professional Edition Registration.lnk" "backup"="F:\\WINDOWS\\pss\\Diskeeper 10 Professional Edition Registration.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\DISKEE~1\\DISKEE~3\\ESIREG~1.EXE /remind /language=FRA /PRNM=\"Diskeeper 10 Professional Edition\"" "item"="Diskeeper 10 Professional Edition Registration" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 1.1.4.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\OpenOffice.org 1.1.4.lnk" "backup"="F:\\WINDOWS\\pss\\OpenOffice.org 1.1.4.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\OPENOF~1.4\\program\\QUICKS~1.EXE " "item"="OpenOffice.org 1.1.4" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^RegFreeze.lnk] "backup"="F:\\WINDOWS\\pss\\RegFreeze.lnkStartup" "location"="Startup" "item"="RegFreeze" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="avgas" "hkey"="HKLM" "command"="\"F:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!ewido] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ewido" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdaptecDirectCD] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DirectCD" "hkey"="HKLM" "inimapping"="0" "command"="\"F:\\Program Files\\Roxio\\Easy CD Creator 5\\DirectCD\\DirectCD.exe\"" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="atiptaxx" "hkey"="HKLM" "command"="C:\\ATI-CPanel\\atiptaxx.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="avgcc" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="avgnt" "hkey"="HKLM" "command"="\"F:\\Program Files\\AntiVir PersonalEdition Classic\\avgnt.exe\" /min" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BoontyBox] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BoontyBox" "hkey"="HKCU" "command"="\"F:\\Program Files\\Boonty\\BoontyBox\\BoontyBox.exe\" /boot" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTDrive] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="drvxir" "hkey"="HKLM" "command"="rundll32.exe F:\\WINDOWS\\system32\\drvxir.dll,startup" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ctfmon" "hkey"="HKCU" "command"="F:\\WINDOWS\\system32\\ctfmon.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DiskeeperSystray] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DkIcon" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eMuleAutoStart] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="emule" "hkey"="HKCU" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoEngine] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKLM" "command"="" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoRss] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKLM" "command"="" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ErrorSafe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ers" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Home Theater SchSvr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SchSvr" "hkey"="HKLM" "command"="\"F:\\Program Files\\Fichiers communs\\InterVideo\\SchSvr\\SchSvr.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\I downloaded pirated Software from P2P] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Pro Evolution Soccer 6" "hkey"="HKLM" "command"="Pro Evolution Soccer 6" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LXSUPMON] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="LXSUPMON" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msmsgs" "hkey"="HKCU" "command"="\"F:\\Program Files\\Messenger\\msmsgs.exe\" /background" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msnmsgr" "hkey"="HKCU" "command"="\"F:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyWebSearch Email Plugin] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mwsoemon" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\olzrkn] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="olzrkn" "hkey"="HKLM" "command"="f:\\windows\\system32\\olzrkn.exe olzrkn" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OneClick] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="oneclick" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCDefender-AntiVirus] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Helper" "hkey"="HKCU" "command"="F:\\Program Files\\E-Press\\PC Defender\\bin\\Helper.exe /start" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="qttask" "hkey"="HKLM" "command"="\"F:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\REGSHAVE] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="REGSHAVE" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shareaza] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Shareaza" "hkey"="HKCU" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Startup Manager Scanner] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="StartupScanner" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeUpdateManager" "hkey"="HKCU" "command"="F:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe AcRdB7_0_3" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WINCINEMAMGR] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="WinCinemaMgr" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MSASCui" "hkey"="HKLM" "command"="\"F:\\Program Files\\Windows Defender\\MSASCui.exe\" -hide" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Registry Repair Pro] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RegistryRepairPro" "hkey"="HKCU" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zone Labs Client] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="zlclient" "hkey"="HKLM" "inimapping"="0" HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\winzoa32 [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" Contents of the 'Scheduled Tasks' folder F:\WINDOWS\tasks\At1.job F:\WINDOWS\tasks\At2.job F:\WINDOWS\tasks\At3.job Completion time: 06-11-28 2:17:34.67 F:\ComboFix.txt ... 06-11-28 02:17 F:\ComboFix2.txt ... 06-11-27 21:18 F:\ComboFix3.txt ... 06-11-27 21:16 RAPPORT DIAGHEKLP F:\WINDOWS\System32\wpa.dbl -->28/11/2006 02:06:37 F:\WINDOWS\System32\asfiles.txt -->27/11/2006 20:18:11 F:\WINDOWS\System32\Uninstall.ico -->27/11/2006 20:14:31 F:\WINDOWS\System32\pavas.ico -->27/11/2006 20:14:31 F:\WINDOWS\System32\Help.ico -->27/11/2006 20:14:31 F:\WINDOWS\System32\vsconfig.xml -->27/11/2006 13:39:25 F:\WINDOWS\System32\tmp.txt -->27/11/2006 00:37:40 F:\WINDOWS\System32\tmp.reg -->27/11/2006 00:37:40 F:\WINDOWS\System32\swsc.exe -->26/11/2006 22:05:37 F:\WINDOWS\System32\swreg.exe -->26/11/2006 22:05:37 F:\WINDOWS\System32\SrchSTS.exe -->26/11/2006 22:05:37 F:\WINDOWS\System32\Process.exe -->26/11/2006 22:05:37 F:\WINDOWS\System32\zllictbl.dat -->24/11/2006 16:04:10 F:\WINDOWS\System32\117709.73 -->23/11/2006 19:48:16 F:\WINDOWS\System32\coh.cache -->23/11/2006 18:52:03 F:\WINDOWS\System32\EraserAHS.tlg -->23/11/2006 18:52:00 F:\WINDOWS\System32\EraserAHS.log -->23/11/2006 17:01:32 F:\WINDOWS\System32\MobileSidewalkRON_2.ico -->23/11/2006 16:37:29 F:\WINDOWS\System32\ClickToFindandFixErrors_4.ico -->23/11/2006 16:24:29 F:\WINDOWS\System32\MRT.INI -->18/11/2006 10:26:29 F:\WINDOWS\System32\ieframe.dll.mui -->17/11/2006 19:27:16 F:\WINDOWS\System32\advpack.dll.mui -->17/11/2006 19:26:44 F:\WINDOWS\System32\MRT.exe -->16/11/2006 06:20:39 F:\WINDOWS\System32\wininet.dll -->07/11/2006 21:03:36 F:\WINDOWS\System32\webcheck.dll -->07/11/2006 21:03:36 F:\WINDOWS\0.log -->28/11/2006 02:06:33 F:\WINDOWS\wiadebug.log -->28/11/2006 02:06:32 F:\WINDOWS\WindowsUpdate.log -->28/11/2006 02:06:28 F:\WINDOWS\wiaservc.log -->28/11/2006 02:06:25 F:\WINDOWS\bootstat.dat -->28/11/2006 02:06:19 F:\WINDOWS\SchedLgU.Txt -->28/11/2006 02:05:21 F:\WINDOWS\win.ini -->27/11/2006 21:31:49 F:\WINDOWS\system.ini -->27/11/2006 21:31:49 F:\WINDOWS\setupapi.log -->27/11/2006 20:15:20 F:\WINDOWS\pavsig.txt -->27/11/2006 20:04:37 F:\WINDOWS\ntbtlog.txt -->27/11/2006 18:27:05 F:\WINDOWS\setupact.log -->27/11/2006 00:37:51 F:\WINDOWS\spupdsvc.log -->25/11/2006 17:30:22 F:\WINDOWS\ie7_main.log -->25/11/2006 17:28:16 F:\WINDOWS\tsoc.log -->25/11/2006 17:28:08 F:\WINDOWS\GPlrLanc.exe |Exent Technologies Ltd. |16/10/2005 21:32:54 F:\WINDOWS\IsUn040c.exe |InstallShield Software Corporation |04/03/2006 22:35:51 F:\WINDOWS\IsUninst.exe |InstallShield Software Corporation |05/04/2005 09:38:10 F:\WINDOWS\iun6002.exe |Indigo Rose Corporation |03/08/2005 19:23:36 F:\WINDOWS\SETUP1.EXE |COMPANY |05/04/2005 21:23:39 F:\WINDOWS\slrundll.exe |Smart Link |20/08/2004 00:10:02 F:\WINDOWS\twunk_16.exe |Twain Working Group |30/08/2002 13:00:00 F:\WINDOWS\twunk_32.exe |Twain Working Group |30/08/2002 13:00:00 F:\WINDOWS\uinst001.exe |COMPANY |07/07/2005 17:17:41 F:\WINDOWS\UN16040C.EXE |InstallShield Corporation, Inc. |25/07/2005 14:33:10 F:\WINDOWS\uneng.exe |Roxio |19/03/2005 16:49:33 F:\WINDOWS\unin040c.exe |InstallShield Corporation, Inc. |06/09/2005 17:41:59 F:\WINDOWS\uninst.exe |InstallShield Corporation, Inc. |08/04/2005 17:57:18 F:\WINDOWS\UninstWiFi.exe |TODO: <Nom de la société> |06/07/2005 12:58:03 F:\WINDOWS\unvise32.exe |MindVision Software |07/04/2005 13:50:15 F:\WINDOWS\A4.dll |COMPANY |04/03/2006 23:55:37 F:\WINDOWS\Ausba4.dll |COMPANY |04/03/2006 23:55:37 F:\WINDOWS\GetKey.dll |COMPANY |04/03/2006 23:55:37 F:\WINDOWS\twain.dll |Groupe de travail Twain |30/08/2002 13:00:00 F:\WINDOWS\twain_32.dll |Groupe de travail Twain |30/08/2002 13:00:00 F:\WINDOWS\unacev2.dll |COMPANY |03/07/2005 08:40:49 F:\WINDOWS\WRServices.dll |Webroot Software, Inc |26/01/2006 19:44:14 F:\WINDOWS\system32\append.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\asuninst.exe |Panda Software |27/11/2006 19:58:36 F:\WINDOWS\system32\ati2evxx.exe |COMPANY |14/03/2005 00:39:57 F:\WINDOWS\system32\CoreVorbis-uninstall.exe |COMPANY |19/03/2005 09:56:15 F:\WINDOWS\system32\debug.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\dosx.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\dvdplay.exe |COMPANY |23/08/2001 18:47:34 F:\WINDOWS\system32\edlin.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\exe2bin.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\fastopen.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\Machnm1.exe |COMPANY |23/11/2006 19:47:31 F:\WINDOWS\system32\mem.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\MMAVILNG.exe |COMPANY |19/03/2005 09:55:47 F:\WINDOWS\system32\mscdexnt.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\nlsfunc.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\OggDSuninst.exe |COMPANY |19/03/2005 09:56:11 F:\WINDOWS\system32\oodag.exe |O&O Software GmbH |02/11/2005 14:53:50 F:\WINDOWS\system32\oodbs.exe |O&O Software GmbH |02/11/2005 14:53:50 F:\WINDOWS\system32\pgdfgsvc.exe |Sysinternals - www.sysinternals.com |30/04/2006 22:24:17 F:\WINDOWS\system32\Process.exe |http://www.beyondlogic.org |26/11/2006 22:05:54 F:\WINDOWS\system32\redir.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\Remove48U.exe |ULTIMA ELECTRONICS CORP. |04/03/2006 23:55:34 F:\WINDOWS\system32\setver.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\share.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\slrundll.exe |Smart Link |20/08/2004 00:10:02 F:\WINDOWS\system32\slserv.exe |Smart Link |20/08/2004 00:10:02 F:\WINDOWS\system32\SrchSTS.exe |S!Ri |26/11/2006 22:05:54 F:\WINDOWS\system32\swreg.exe |SteelWerX |26/11/2006 22:05:54 F:\WINDOWS\system32\swsc.exe |COMPANY |26/11/2006 22:05:54 F:\WINDOWS\system32\usrmlnka.exe |U.S. Robotics Corporation |23/08/2001 18:47:48 F:\WINDOWS\system32\usrprbda.exe |U.S. Robotics Corporation |23/08/2001 18:47:48 F:\WINDOWS\system32\usrshuta.exe |U.S. Robotics Corporation |23/08/2001 18:47:48 F:\WINDOWS\system32\3DViewer.dll |Apple Computer, Inc. |25/07/2005 14:34:10 F:\WINDOWS\system32\3ivx.dll |3ivx.com |18/11/2003 13:49:28 F:\WINDOWS\system32\3ivxVfWCodec.dll |3ivx.com |18/11/2003 13:49:44 F:\WINDOWS\system32\48UMicro.dll |ULTIMA ELECTRONICS CORP. |04/03/2006 23:55:37 F:\WINDOWS\system32\amstream.dll |COMPANY |09/04/2005 21:11:00 F:\WINDOWS\system32\ASmartTune.dll |ASUSTek |13/11/2002 21:59:38 F:\WINDOWS\system32\asus_tv_tune.dll |COMPANY |13/11/2002 14:33:22 F:\WINDOWS\system32\ati2cqag.dll |ATI Technologies Inc. |20/08/2004 00:09:19 F:\WINDOWS\system32\ati2dvaa.dll |ATI Technologies Inc. |20/08/2004 00:09:19 F:\WINDOWS\system32\ati2dvag.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ati2edxx.dll |ATI Technologies, Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ati2evxx.dll |COMPANY |14/03/2005 00:39:45 F:\WINDOWS\system32\ati3d1ag.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ati3d2ag.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ati3duag.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ATIDDC.DLL |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\atiiiexx.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\atioglxx.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\atipdlxx.dll |ATI Technologies, Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\atitvo32.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ativcoxx.dll |ATI Technologies, Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ativtmxx.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ativvaxx.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\atmfd.dll |Adobe Systems Incorporated |30/08/2002 13:00:00 F:\WINDOWS\system32\atmlib.dll |Adobe Systems |30/08/2002 13:00:00 F:\WINDOWS\system32\avsda.dll |H+BEDV Datentechnik GmbH |26/11/2006 23:31:21 F:\WINDOWS\system32\bpssc1.1.dll |BulletProofSoft.com |31/01/2006 18:04:31 F:\WINDOWS\system32\ccrpbds6.dll |Common Controls Replacement Project (CCRP) |14/02/2006 19:42:54 F:\WINDOWS\system32\CDDBControlRoxio.dll |Gracenote (formerly CDDB, Inc.) |31/07/2002 12:32:18 F:\WINDOWS\system32\CddbLangFR.dll |COMPANY |10/05/2002 08:58:10 F:\WINDOWS\system32\CDDBUIRoxio.dll |Gracenote |31/07/2002 12:32:18 F:\WINDOWS\system32\cdral.dll |Roxio |17/12/2002 11:32:40 F:\WINDOWS\system32\cdrtc.dll |Roxio |17/12/2002 11:32:54 F:\WINDOWS\system32\CmdLineExt.dll |Sony DADC Austria AG. |30/10/2006 15:26:02 F:\WINDOWS\system32\cncs32.dll |Europress Software |16/03/2006 11:55:07 F:\WINDOWS\system32\compatui.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\cpuinf32.dll |COMPANY |17/09/2001 13:20:02 F:\WINDOWS\system32\dgrpsetu.dll |Digi International, Inc. |13/03/2005 23:54:01 F:\WINDOWS\system32\dgsetup.dll |Digi International |13/03/2005 23:54:01 F:\WINDOWS\system32\DivXc32.dll |Hacked with Joy ! |11/12/2001 13:17:12 F:\WINDOWS\system32\DivXc32f.dll |Hacked with Joy ! |27/11/2001 01:19:54 F:\WINDOWS\system32\divxdec_0407.dll |DivXNetworks, Inc. |04/09/2004 00:34:08 F:\WINDOWS\system32\divxdec_040c.dll |DivXNetworks, Inc. |04/09/2004 00:34:08 F:\WINDOWS\system32\divxdec_0411.dll |DivXNetworks, Inc. |04/09/2004 00:25:12 F:\WINDOWS\system32\encdec.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\EqnClass.Dll |Equinox Systems Inc. |13/03/2005 23:54:00 F:\WINDOWS\system32\FCLKBTN.DLL |FUJIFILM |10/02/2006 11:53:59 F:\WINDOWS\system32\ffJmpWeb.dll |Forefront, Incorporated |06/11/2005 17:44:52 F:\WINDOWS\system32\FFRAFLIB.DLL |FUJI PHOTO FILM CO., LTD. |10/02/2006 11:54:47 F:\WINDOWS\system32\FFTIFF16.dll |FUJI PHOTO FILM CO., LTD. |10/02/2006 11:54:47 F:\WINDOWS\system32\FINFCHECK.dll |FUJIFILM |10/02/2006 11:54:01 F:\WINDOWS\system32\FINFCOPY.dll |FUJIFILM |10/02/2006 11:54:01 F:\WINDOWS\system32\FREGSHEX.DLL |FUJIFILM |10/02/2006 11:53:59 F:\WINDOWS\system32\Hpgdtppg.dll |HP |04/03/2006 22:36:01 F:\WINDOWS\system32\hpgdtt.dll |Hewlett Packard |04/03/2006 22:36:01 F:\WINDOWS\system32\hpgdtuu.dll |Hewlett-Packard |04/03/2006 22:36:01 F:\WINDOWS\system32\hpsjvset.dll |Hewlett-Packard |04/03/2006 22:36:00 F:\WINDOWS\system32\hsfcisp2.dll |Conexant Systems, Inc. |20/08/2004 00:09:27 F:\WINDOWS\system32\hticons.dll |Hilgraeve, Inc. |14/03/2005 00:07:45 F:\WINDOWS\system32\HUFFYUV.DLL |Disappearing Inc. |08/12/2001 21:20:20 F:\WINDOWS\system32\hypertrm.dll |Hilgraeve, Inc. |17/11/2004 18:57:39 F:\WINDOWS\system32\iccvid.dll |Radius Inc. |30/08/2002 13:00:00 F:\WINDOWS\system32\INETWH32.dll |Blue Sky Software Corporation. |04/08/2000 15:25:30 F:\WINDOWS\system32\ir32_32.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\ir41_qc.dll |Intel Corporation. |22/03/1998 15:34:14 F:\WINDOWS\system32\ir41_qcx.dll |Intel Corporation. |22/03/1998 15:34:14 F:\WINDOWS\system32\Ir50_32.dll |Ligos Corporation |02/10/2002 14:23:12 F:\WINDOWS\system32\ir50_lcs.dll |Intel Corporation. |06/11/1997 14:53:30 F:\WINDOWS\system32\Ir50_qc.dll |Ligos Corporation |22/06/2000 16:31:00 F:\WINDOWS\system32\Ir50_qcx.dll |Ligos Corporation |22/06/2000 16:31:46 F:\WINDOWS\system32\isrdbg32.dll |Intel Corporation |14/03/2005 00:09:37 F:\WINDOWS\system32\IVIresize.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\IVIresizeA6.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\IVIresizeM6.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\IVIresizeP6.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\IVIresizePX.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\IVIresizeW7.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\jgaw400.dll |Johnson-Grace Company |30/08/2002 13:00:00 F:\WINDOWS\system32\JGDW400.DLL |America Online |30/08/2002 13:00:00 F:\WINDOWS\system32\jgmd400.dll |Johnson-Grace Company |30/08/2002 13:00:00 F:\WINDOWS\system32\JGPL400.DLL |Johnson-Grace Company |30/08/2002 13:00:00 F:\WINDOWS\system32\jgsd400.dll |America Online |30/08/2002 13:00:00 F:\WINDOWS\system32\jgsh400.dll |Johnson-Grace Company |30/08/2002 13:00:00 F:\WINDOWS\system32\lfbmp11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:12 F:\WINDOWS\system32\LFCMP11n.DLL |LEAD Technologies, Inc. |10/05/2000 11:34:14 F:\WINDOWS\system32\lfeps11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:14 F:\WINDOWS\system32\lffax11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:14 F:\WINDOWS\system32\lfgif11n.dll |LEAD Technologies, Inc. |09/05/2000 18:41:26 F:\WINDOWS\system32\lfpcd11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:16 F:\WINDOWS\system32\lfpcx11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:16 F:\WINDOWS\system32\Lfpng11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:18 F:\WINDOWS\system32\lfpsd11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:20 F:\WINDOWS\system32\lftga11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:20 F:\WINDOWS\system32\lftif11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:22 F:\WINDOWS\system32\lfwmf11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:22 F:\WINDOWS\system32\libeay32_0.9.6l.dll |COMPANY |24/11/2006 15:59:04 F:\WINDOWS\system32\LibPowerMemory_10.dll |Purple-Logistic Systems |30/10/2003 19:48:38 F:\WINDOWS\system32\LTDIS11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:24 F:\WINDOWS\system32\ltfil11n.DLL |LEAD Technologies, Inc. |09/05/2000 18:41:26 F:\WINDOWS\system32\ltimg11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:28 F:\WINDOWS\system32\ltkrn11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:32 F:\WINDOWS\system32\Ltwvc11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:36 F:\WINDOWS\system32\md5.dll |COMPANY |12/09/2006 00:10:58 F:\WINDOWS\system32\mdmxsdk.dll |Conexant |20/08/2004 00:09:30 F:\WINDOWS\system32\mdwmdmsp.dll |RioPort |23/08/2001 18:47:06 F:\WINDOWS\system32\MMSwitch.dll |COMPANY |19/03/2005 09:55:46 F:\WINDOWS\system32\msdmo.dll |COMPANY |09/04/2005 21:11:05 F:\WINDOWS\system32\msencode.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\m
  9. micka

    bon ping pour jeux reseau

    micka a répondu à un(e) sujet de micka dans Internet & Réseaux

    ok deesoler j'espere que la reponse de tes parent sera positive je te le suhaite ses vraiment bien cette option joueur reseau . je l'ai eu je pe te confirmer que ses bien pas de lag,meilleur visee,meilleur presision.meilleur ping. donc je te souhaite bonne chance . mais attention n'oubli pas l 'ecole ................. micka
  10. micka
    bonsoir a vous . voila j'aimerais savoir des astuces pour proteger son ordi de facon que personne puisse y toucher , et savoir les dernier manupulation faites. car je suis le responsable, et defois je le prete ,comme sa je pourrais savoir se qu'on a fait dessus. on faite le securiser et savoir ce que la derneire personne a fait , quelle fenetre elle a ouvert et se quelle a fait . merci a vous et bonne soiree. micka
  11. micka

    bon ping pour jeux reseau

    micka a répondu à un(e) sujet de micka dans Internet & Réseaux

    ok je comprend mieus desoler . moi je te conseille d'investir , et chez orange tu as l 'option ping . tu seras a 50/55de ping quoi q'uil arrive reflechi y. micka
  12. micka

    bon ping pour jeux reseau

    micka a répondu à un(e) sujet de micka dans Internet & Réseaux

    salut alors tu dois avoir une connection plus faible que moi car 200de ping je pete un plomb et je jette tout par la fenetre c('est quoi ta connection ? micka
  13. micka
    tout d'abord tu nas pas a t'escuser tu prend le temps qu'il te faut ,car je suis pas le seul sur le forum. pour shareza , je sais ses risker surtout les point , mais j 'aime me matter des film . JE pense que si je n 'en abuse pas sa peut se gerer . pour les par feu non activer, ses a cause de ma passion le jeu en reseau sa me bouffe ma connection et de en temps je saccade et sa lag. mais sa je le consoi on pourra on discuter plus tard pour voir si y a pas un moyen d'arrangement car je vois la vraiment la difference . mon firewall windows pack 2 activer, et zone alarm activer ,et l 'antivirus activer sa ram et sa me fait saccader c'est vraiment flagrant. j 'attend d'enlever tout mes problememe pour qu'on puisse mieus en discuter . C'est sur que si doit avoir toujour les memes probleme je les activerai,s mais sa me ferait bien chiers, car mon ping serait de 70/80 et ses pas jouable . se qui m'ecoeure le plus jai une connecte entre dix et vingt mega. mais bon chaque chose en son temps . merci a toi charle mais je t'explique juste le pourkoi du parce que . merci beaucoup MICKA
  14. micka
    bonsoir a vous . voila je suis un fan de jeux en reseau ," surtout ennemy territorry". ma connection et neuf telecom, entre 10et 20 mega. je tourne entre 60 et 70 de ping , es ce normal? je sais pas . Donc c'est pour cela ,que je demande a des personnes qui pourrait m 'aider, afin d'ameliorer mon ping. Ou pe etre que 60 /70 cela es normal et qu'il n 'y a rien a faire . merci a vous et en attendant vos reponse je vous dit bonne soiree ,merci a vous
  15. micka
    encore moi desoler, je suis bavard mais pour faire tout sa faut bien se desalterer avec une boisson ,donc forcement sa fait parler. heureusement que je suis en vacanse depuis dimanche ,car ca etait tres longt tout ses manoeuvre surtout en mode sans echec m,ais mon pc a n'avait besoin donc je prend le temps. je tenais aussi a te remercier ,de ta confiance et de ton aide , au moins sa c'est dit . bon be voila promis j arrete l'orange amelioerer MICKA
  16. micka
    encore moi bonsoir charle . je n arrive plus a avoir ma page d'acceuille neuf telecom. sa me mais une autre pages . tu me diras ses qu'un detail.mais sa me pertube. lool merci
  17. micka
    salut charle Effectivement sa commence a aller mieux , mais je pense que ses pas encore sa. je te laisse voir sa tu t'y connais mieux.merci beaucoup de ton aide . micka
  18. micka
    bonsoir charles . comme prevu je te fait par de mes rapport, et te remerci de ton aide . RAPPORT HIJACK THIS Logfile of HijackThis v1.99.1 Scan saved at 20:41, on 06-11-27 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0011) Running processes: F:\WINDOWS\System32\smss.exe F:\WINDOWS\SYSTEM32\winlogon.exe F:\WINDOWS\system32\services.exe F:\WINDOWS\system32\lsass.exe F:\WINDOWS\System32\Ati2evxx.exe F:\WINDOWS\system32\svchost.exe F:\WINDOWS\System32\svchost.exe F:\WINDOWS\system32\spoolsv.exe F:\Program Files\AntiVir PersonalEdition Classic\sched.exe F:\Program Files\AntiVir PersonalEdition Classic\avguard.exe F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe F:\WINDOWS\System32\drivers\CDAC11BA.EXE F:\WINDOWS\System32\oodag.exe F:\WINDOWS\System32\svchost.exe F:\WINDOWS\SYSTEM32\Ati2evxx.exe F:\WINDOWS\Explorer.EXE F:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe F:\WINDOWS\system32\ctfmon.exe F:\WINDOWS\system32\wscntfy.exe F:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe F:\Program Files\Internet Explorer\IEXPLORE.EXE F:\WINDOWS\system32\NOTEPAD.EXE F:\Program Files\HijackThis);\Vundo.exe.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: (no name) - {013A653B-49A6-4f76-8B68-E4875EA6BA54} - F:\WINDOWS\system32\uxobvcjv.dll (file missing) O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: (no name) - {031F120A-BBAF-45d8-B306-375F2A6B9398} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - F:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file) O2 - BHO: (no name) - {755bbd1a-aa59-456c-afeb-b4c42c4dcb6f} - F:\WINDOWS\system32\ixt0.dll (file missing) O2 - BHO: (no name) - {840121111101411911080111101077109114053} - (no file) O2 - BHO: (no name) - {8A0C66A8-B73E-4FF9-BB87-E3438A9DBEB0} - F:\WINDOWS\system32\pmnnm.dll (file missing) O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - F:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - f:\program files\google\googletoolbar1.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - F:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O2 - BHO: (no name) - {C004DEC2-2623-438e-9CA2-C9043AB28508} - (no file) O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: (no name) - {1CE4EE89-2D5C-4361-AF3B-D902AB545381} - (no file) O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - F:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [olzrkn] f:\windows\system32\olzrkn.exe olzrkn O4 - HKLM\..\Run: [avgnt] "F:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZS O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwa...ash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{364D045E-BCA0-495F-A59B-0111D4F8599E}: NameServer = 80.10.246.1,80.10.246.139 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "F:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: 30.dll O20 - Winlogon Notify: WgaLogon - F:\WINDOWS\SYSTEM32\WgaLogon.dll O20 - Winlogon Notify: winzoa32 - winzoa32.dll (file missing) O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - F:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - F:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - Unknown owner - F:\WINDOWS\System32\Ati2evxx.exe O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Boonty Games - Unknown owner - F:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - F:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - F:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing) O23 - Service: O&O Defrag - O&O Software GmbH - F:\WINDOWS\System32\oodag.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - F:\WINDOWS\system32\ZoneLabs\vsmon.exe RAPPORT ACTIVE SCAN Incident Status Location Spyware:Cookie/Advertising Not disinfected F:\Documents and Settings\moi\Cookies\moi@advertising[1].txt Spyware:Cookie/Bluestreak Not disinfected F:\Documents and Settings\moi\Cookies\moi@bluestreak[1].txt Spyware:Cookie/Doubleclick Not disinfected F:\Documents and Settings\moi\Cookies\moi@doubleclick[1].txt Spyware:Cookie/Tradedoubler Not disinfected F:\Documents and Settings\moi\Cookies\moi@tradedoubler[1].txt Spyware:Cookie/Xiti Not disinfected F:\Documents and Settings\moi\Cookies\moi@xiti[1].txt Possible Virus. Not disinfected F:\scaleo.exe Possible Virus. Not disinfected F:\VundoFix Backups\pmnnm.dll.bad Potentially unwanted tool:Application/MyWebSearch Not disinfected F:\WINDOWS\system32\f3pssavr.scr RAPPORT COMBO FIX moi - 06-11-27 21:18:13,40 Service Pack 2 ComboFix 06.11.27W - Running from: "F:\Documents and Settings\moi\Bureau" (((((((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Folders Quarantined: F:\QooBox\Purity\Documents and Settings\moi\Application Data\YMANTE~1 F:\QooBox\Purity\Documents and Settings\moi\Application Data\YMANTE~1\?ymantec F:\QooBox\Purity\Documents and Settings\moi\Mes documents\ICROSO~1 ((((((((((((((((((((((((((((((( Files Created from 2006-10-27 to 2006-11-27 )))))))))))))))))))))))))))))))))) 2006-11-27 20:14 <REP> d-------- F:\WINDOWS\system32\ActiveScan 2006-11-27 19:58 <REP> d-------- F:\WINDOWS\LastGood 2006-11-27 12:39 <REP> d-------- F:\VundoFix Backups 2006-11-26 23:31 57,384 --a------ F:\WINDOWS\system32\avsda.dll 2006-11-26 23:31 32,768 --a------ F:\WINDOWS\system32\drivers\avgntdd.sys 2006-11-26 23:31 14,848 --a------ F:\WINDOWS\system32\drivers\avgntmgr.sys 2006-11-26 23:31 <REP> d-------- F:\Program Files\AntiVir PersonalEdition Classic 2006-11-26 23:31 <REP> d-------- F:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic 2006-11-26 22:17 <REP> d-------- F:\Program Files\HijackThis); 2006-11-26 22:06 484 --a------ F:\WINDOWS\system32\tmp.reg 2006-11-26 22:05 53,248 --a------ F:\WINDOWS\system32\Process.exe 2006-11-26 22:05 40,960 --a------ F:\WINDOWS\system32\swsc.exe 2006-11-26 22:05 288,417 --a------ F:\WINDOWS\system32\SrchSTS.exe 2006-11-26 22:05 135,168 --a------ F:\WINDOWS\system32\swreg.exe 2006-11-26 18:44 <REP> d-------- F:\Program Files\xp-AntiSpy 2006-11-25 17:30 <REP> d-------- F:\WINDOWS\Web 2006-11-25 17:27 <REP> d-------- F:\WINDOWS\WBEM 2006-11-25 17:27 <REP> d-------- F:\WINDOWS\system32\fr-fr 2006-11-25 17:26 <REP> d--h-c--- F:\WINDOWS\ie7 2006-11-25 17:25 121,856 --------- F:\WINDOWS\system32\xmllite.dll 2006-11-25 17:24 <REP> d-------- F:\WINDOWS\network diagnostic 2006-11-24 16:22 <REP> d-------- F:\WINDOWS\SxsCaPendDel 2006-11-24 15:59 42,920 --a------ F:\WINDOWS\system32\vsutil_loc040c.dll 2006-11-24 15:58 <REP> d-------- F:\WINDOWS\system32\ZoneLabs 2006-11-24 15:58 <REP> d-------- F:\Program Files\Zone Labs 2006-11-23 22:43 3,968 --a------ F:\WINDOWS\system32\drivers\AvgAsCln.sys 2006-11-23 22:43 <REP> d-------- F:\Program Files\Grisoft 2006-11-23 19:47 5,632 --a------ F:\WINDOWS\system32\Machnm64.sys 2006-11-23 19:47 2,304 --a------ F:\WINDOWS\system32\Machnm32.sys 2006-11-23 19:47 15,840 --a------ F:\WINDOWS\system32\Machnm1.exe 2006-11-23 19:47 <REP> d-------- F:\Program Files\E-Press 2006-11-23 16:27 <REP> d-------- F:\Program Files\Yahoo! 2006-11-23 16:27 <REP> d-------- F:\Documents and Settings\All Users\Application Data\Symantec 2006-11-23 16:22 <REP> d-------- F:\Program Files\Fichiers communs\Symantec Shared 2006-11-23 11:53 2 --a------ F:\WINDOWS\system32\wnscpcc.exe 2006-11-20 17:28 <REP> d-------- F:\Program Files\OO Software 2006-11-19 15:09 424,136 --a------ F:\WINDOWS\system32\wunauclt.exe 2006-11-19 15:09 424,136 --a------ F:\Program Files\wunauclt.exe 2006-11-19 11:19 <REP> dr-h----- F:\Documents and Settings\moi\Recent 2006-11-17 00:34 <REP> d-------- F:\Program Files\Mes Jeux T‚l‚charg‚s 2006-11-14 20:12 <REP> d-------- F:\Program Files\Neuf 2006-11-07 21:03 6,049,280 --------- F:\WINDOWS\system32\ieframe.dll 2006-11-07 21:03 50,688 --------- F:\WINDOWS\system32\msfeedsbs.dll 2006-11-07 21:03 458,752 --------- F:\WINDOWS\system32\msfeeds.dll 2006-11-07 21:03 180,736 --------- F:\WINDOWS\system32\ieui.dll 2006-11-07 03:26 13,312 --a------ F:\WINDOWS\system32\ieudinit.exe 2006-10-30 15:26 98,304 --a------ F:\WINDOWS\system32\CmdLineExt.dll 2006-10-30 15:22 <REP> d-------- F:\Program Files\KONAMI (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2006-11-27 20:23 -------- d-------- F:\Program Files\Spybot - Search & Destroy 2006-11-27 20:23 -------- d-------- F:\Program Files\Internet Explorer 2006-11-27 20:22 -------- d-------- F:\Program Files\Google 2006-11-27 19:24 -------- d-------- F:\Program Files\Fichiers communs 2006-11-26 15:00 -------- d-------- F:\Documents and Settings\moi\Application Data\teamspeak2 2006-11-24 16:24 -------- d-------- F:\Documents and Settings\moi\Application Data\Lavasoft 2006-11-24 16:23 -------- d-------- F:\Program Files\Zoom Player 2006-11-24 16:22 -------- d--h----- F:\Program Files\InstallShield Installation Information 2006-11-23 21:43 -------- d-------- F:\Program Files\Fichiers communs\Microsoft Shared 2006-11-23 19:48 3120 --a------ F:\Documents and Settings\moi\Application Data\117715.29 2006-11-07 21:03 413696 --a------ F:\WINDOWS\system32\vbscript.dll 2006-11-07 21:03 231424 --a------ F:\WINDOWS\system32\webcheck.dll 2006-11-07 21:03 156160 --a------ F:\WINDOWS\system32\msls31.dll 2006-11-07 03:27 382976 --a------ F:\WINDOWS\system32\iedkcs32.dll 2006-11-07 03:27 229376 --a------ F:\WINDOWS\system32\ieaksie.dll 2006-11-07 03:26 71680 --a------ F:\WINDOWS\system32\admparse.dll 2006-11-07 03:26 55296 --a------ F:\WINDOWS\system32\iesetup.dll 2006-11-07 03:26 54784 --a------ F:\WINDOWS\system32\ie4uinit.exe 2006-11-07 03:26 43008 --a------ F:\WINDOWS\system32\iernonce.dll 2006-11-07 03:26 152064 --a------ F:\WINDOWS\system32\ieakeng.dll 2006-11-07 03:26 123904 --a------ F:\WINDOWS\system32\advpack.dll 2006-11-07 03:25 161792 --a------ F:\WINDOWS\system32\ieakui.dll 2006-10-22 16:24 -------- d-------- F:\Program Files\JeffProd 2006-10-21 19:02 30630 --a------ F:\WINDOWS\system32\drivers\Mmc_2k.sys 2006-10-21 19:02 25898 --a------ F:\WINDOWS\system32\drivers\Dvd_2k.sys 2006-10-21 19:02 143834 --a------ F:\WINDOWS\system32\drivers\pwd_2K.sys 2006-10-21 19:02 -------- d-------- F:\Program Files\Fichiers communs\Adaptec Shared 2006-10-21 19:01 -------- d-------- F:\Program Files\Roxio 2006-10-19 18:01 -------- d---s---- F:\Documents and Settings\moi\Application Data\Microsoft 2006-10-18 20:40 -------- d-------- F:\Program Files\Diskeeper Corporation 2006-10-18 16:42 -------- d-------- F:\Program Files\Shareaza 2006-10-18 16:42 -------- d-------- F:\Documents and Settings\moi\Application Data\Shareaza 2006-10-18 16:24 -------- d-------- F:\Documents and Settings\moi\Application Data\Google 2006-10-17 12:06 78336 --a------ F:\WINDOWS\system32\ieencode.dll 2006-10-17 12:05 40960 --a------ F:\WINDOWS\system32\licmgr10.dll 2006-10-17 12:05 206336 --------- F:\WINDOWS\system32\WinFXDocObj.exe 2006-10-17 12:05 105984 --a------ F:\WINDOWS\system32\url.dll 2006-10-17 12:04 101376 --a------ F:\WINDOWS\system32\occache.dll 2006-10-17 12:03 17408 --a------ F:\WINDOWS\system32\corpol.dll 2006-10-17 11:58 61952 --------- F:\WINDOWS\system32\icardie.dll 2006-10-17 11:58 12288 --------- F:\WINDOWS\system32\msfeedssync.exe 2006-10-17 11:57 36352 --a------ F:\WINDOWS\system32\imgutil.dll 2006-10-17 11:57 266752 --------- F:\WINDOWS\system32\iertutil.dll 2006-10-17 11:56 45568 --a------ F:\WINDOWS\system32\mshta.exe 2006-10-17 11:28 48128 --a------ F:\WINDOWS\system32\mshtmler.dll 2006-10-17 11:27 380928 --------- F:\WINDOWS\system32\ieapfltr.dll 2006-10-13 13:36 145920 --a------ F:\WINDOWS\system32\nwprovau.dll 2006-10-06 21:37 -------- d-------- F:\Program Files\Wolfenstein - Enemy Territory 2006-10-05 16:25 5 --ahs---- F:\WINDOWS\system32\aeccfae_g.dll 2006-10-05 16:14 -------- d-------- F:\Program Files\RegCleaner 2006-10-02 21:48 -------- d-------- F:\Program Files\The All-Seeing Eye 2006-09-13 06:03 1084416 --a------ F:\WINDOWS\system32\msxml3.dll 2006-09-06 16:43 22752 --a------ F:\WINDOWS\system32\spupdsvc.exe 2006-08-27 16:38 1015973 -rahs---- F:\Program Files\serial.zip 2006-08-27 16:38 1015973 -rahs---- F:\Program Files\serial.tde 2006-08-27 16:19 56239 --a------ F:\Program Files\svchosts.tbe 2006-08-04 11:18 774144 --a------ F:\Program Files\RngInterstitial.dll (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries are not shown [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "ctfmon.exe"="F:\\WINDOWS\\system32\\ctfmon.exe" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "olzrkn"="f:\\windows\\system32\\olzrkn.exe olzrkn" "avgnt"="\"F:\\Program Files\\AntiVir PersonalEdition Classic\\avgnt.exe\" /min" [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components] "DeskHtmlVersion"=dword:00000110 "DeskHtmlMinorVersion"=dword:00000005 "Settings"=dword:00000001 "GeneralFlags"=dword:00000004 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 "CDRAutoRun"=dword:00000000 [HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 "CDRAutoRun"=dword:00000000 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload] "PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" "CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" "WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" "SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^F-Secure 2006.lnk] "backup"="F:\\WINDOWS\\pss\\F-Secure 2006.lnkCommon Startup" "location"="Common Startup" "item"="F-Secure 2006" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk] "path"="F:\\Documents and Settings\\All Users\\Menu Démarrer\\Programmes\\Démarrage\\Lancement rapide d'Adobe Reader.lnk" "backup"="F:\\WINDOWS\\pss\\Lancement rapide d'Adobe Reader.lnkCommon Startup" "location"="Common Startup" "command"="F:\\PROGRA~1\\Adobe\\ACROBA~1.0\\Reader\\READER~1.EXE " "item"="Lancement rapide d'Adobe Reader" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^ScanPanel.lnk] "backup"="F:\\WINDOWS\\pss\\ScanPanel.lnkCommon Startup" "location"="Common Startup" "item"="ScanPanel" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk] "backup"="F:\\WINDOWS\\pss\\WinZip Quick Pick.lnkCommon Startup" "location"="Common Startup" "item"="WinZip Quick Pick" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^BoontyBox neuf telecom.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\BoontyBox neuf telecom.lnk" "backup"="F:\\WINDOWS\\pss\\BoontyBox neuf telecom.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\Boonty\\BOONTY~1\\BOONTY~1.EXE /boot /nosplash" "item"="BoontyBox neuf telecom" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^Corel Print House Registration.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\Corel Print House Registration.lnk" "backup"="F:\\WINDOWS\\pss\\Corel Print House Registration.lnkStartup" "location"="Startup" "command"="F:\\Fichiers programme\\Corel\\Print House 2000\\Register\\Remind32.exe " "item"="Corel Print House Registration" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^Diskeeper 10 Professional Edition Registration.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\Diskeeper 10 Professional Edition Registration.lnk" "backup"="F:\\WINDOWS\\pss\\Diskeeper 10 Professional Edition Registration.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\DISKEE~1\\DISKEE~3\\ESIREG~1.EXE /remind /language=FRA /PRNM=\"Diskeeper 10 Professional Edition\"" "item"="Diskeeper 10 Professional Edition Registration" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 1.1.4.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\OpenOffice.org 1.1.4.lnk" "backup"="F:\\WINDOWS\\pss\\OpenOffice.org 1.1.4.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\OPENOF~1.4\\program\\QUICKS~1.EXE " "item"="OpenOffice.org 1.1.4" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^RegFreeze.lnk] "backup"="F:\\WINDOWS\\pss\\RegFreeze.lnkStartup" "location"="Startup" "item"="RegFreeze" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="avgas" "hkey"="HKLM" "command"="\"F:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!ewido] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ewido" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdaptecDirectCD] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DirectCD" "hkey"="HKLM" "inimapping"="0" "command"="\"F:\\Program Files\\Roxio\\Easy CD Creator 5\\DirectCD\\DirectCD.exe\"" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="atiptaxx" "hkey"="HKLM" "command"="C:\\ATI-CPanel\\atiptaxx.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="avgcc" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BoontyBox] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BoontyBox" "hkey"="HKCU" "command"="\"F:\\Program Files\\Boonty\\BoontyBox\\BoontyBox.exe\" /boot" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTDrive] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="drvxir" "hkey"="HKLM" "command"="rundll32.exe F:\\WINDOWS\\system32\\drvxir.dll,startup" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ctfmon" "hkey"="HKCU" "command"="F:\\WINDOWS\\System32\\ctfmon.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DiskeeperSystray] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DkIcon" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eMuleAutoStart] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="emule" "hkey"="HKCU" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoEngine] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKLM" "command"="" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoRss] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKLM" "command"="" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ErrorSafe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ers" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Home Theater SchSvr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SchSvr" "hkey"="HKLM" "command"="\"F:\\Program Files\\Fichiers communs\\InterVideo\\SchSvr\\SchSvr.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\I downloaded pirated Software from P2P] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Pro Evolution Soccer 6" "hkey"="HKLM" "command"="Pro Evolution Soccer 6" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LXSUPMON] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="LXSUPMON" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msmsgs" "hkey"="HKCU" "command"="\"F:\\Program Files\\Messenger\\msmsgs.exe\" /background" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msnmsgr" "hkey"="HKCU" "command"="\"F:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyWebSearch Email Plugin] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mwsoemon" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OneClick] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="oneclick" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCDefender-AntiVirus] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Helper" "hkey"="HKCU" "command"="F:\\Program Files\\E-Press\\PC Defender\\bin\\Helper.exe /start" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="qttask" "hkey"="HKLM" "command"="\"F:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\REGSHAVE] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="REGSHAVE" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shareaza] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Shareaza" "hkey"="HKCU" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Startup Manager Scanner] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="StartupScanner" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeUpdateManager" "hkey"="HKCU" "command"="F:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe AcRdB7_0_3" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WINCINEMAMGR] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="WinCinemaMgr" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MSASCui" "hkey"="HKLM" "command"="\"F:\\Program Files\\Windows Defender\\MSASCui.exe\" -hide" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Registry Repair Pro] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RegistryRepairPro" "hkey"="HKCU" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zone Labs Client] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="zlclient" "hkey"="HKLM" "inimapping"="0" HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\winzoa32 [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" Contents of the 'Scheduled Tasks' folder F:\WINDOWS\tasks\At1.job F:\WINDOWS\tasks\At2.job F:\WINDOWS\tasks\At3.job Completion time: 06-11-27 21:18:41.04 F:\ComboFix.txt ... 06-11-27 21:18 F:\ComboFix2.txt ... 06-11-27 21:16 F:\ComboFix3.txt ... 06-11-27 13:05 RAPPORT BlbTA EXE 11/27/06 21:06:45 [info]: BlackLight Engine 1.0.47 initialized 11/27/06 21:06:45 [info]: OS: 5.1 build 2600 (Service Pack 2) 11/27/06 21:06:45 [Note]: 7019 4 11/27/06 21:06:45 [Note]: 7005 0 11/27/06 21:06:47 [Note]: 7006 0 11/27/06 21:06:47 [Note]: 7011 1216 11/27/06 21:06:47 [Note]: 7026 0 11/27/06 21:06:48 [Note]: 7026 0 11/27/06 21:06:51 [Note]: FSRAW library version 1.7.1020 11/27/06 21:06:52 [Note]: 2000 1012 11/27/06 21:14:46 [Note]: 7007 0 Donc voila ce que tu voulais tien moi au courant et merci encore . J'espere quand a progresser.
  19. micka
    bonjour les amis voici j'ai fait se que tu ma demander charles les 3 rapport VUNDO fIX Checking Java version... Sun Java not detected Scan started at 12:39:40 27/11/2006 Listing files found while scanning.... F:\WINDOWS\system32\pmnnm.dll F:\WINDOWS\system32\mnnmp.ini F:\WINDOWS\system32\mnnmp.bak1 F:\WINDOWS\system32\mnnmp.bak2 F:\WINDOWS\system32\mnnmp.ini2 F:\WINDOWS\system32\pmnnm.dll F:\WINDOWS\system32\mnnmp.ini F:\WINDOWS\system32\mnnmp.bak1 F:\WINDOWS\system32\mnnmp.bak2 F:\WINDOWS\system32\mnnmp.ini2 F:\WINDOWS\system32\mnnmp.ini F:\WINDOWS\system32\mnnmp.bak1 F:\WINDOWS\system32\mnnmp.bak2 F:\WINDOWS\system32\mnnmp.ini2 Beginning removal... Attempting to delete F:\WINDOWS\system32\pmnnm.dll F:\WINDOWS\system32\pmnnm.dll Could not be deleted. Attempting to delete F:\WINDOWS\system32\mnnmp.ini F:\WINDOWS\system32\mnnmp.ini Has been deleted! Attempting to delete F:\WINDOWS\system32\mnnmp.bak1 F:\WINDOWS\system32\mnnmp.bak1 Has been deleted! Attempting to delete F:\WINDOWS\system32\mnnmp.bak2 F:\WINDOWS\system32\mnnmp.bak2 Has been deleted! Attempting to delete F:\WINDOWS\system32\mnnmp.ini2 F:\WINDOWS\system32\mnnmp.ini2 Has been deleted! Attempting to delete F:\WINDOWS\system32\pmnnm.dll F:\WINDOWS\system32\pmnnm.dll Could not be deleted. Performing Repairs to the registry. Done! Beginning removal... Attempting to delete F:\WINDOWS\system32\pmnnm.dll F:\WINDOWS\system32\pmnnm.dll Has been deleted! Performing Repairs to the registry. Done! COMBO FIX RAPPORT moi - 06-11-27 13:04:31,29 Service Pack 2 ComboFix 06.11.27W - Running from: "F:\Documents and Settings\moi\Bureau" (((((((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) F:\WINDOWS\system32\bszip.dll F:\WINDOWS\system32\components F:\Program Files\Fichiers communs\{38290638-095F-1036-1023-020211050021} F:\Program Files\Fichiers communs\{C8290638-095F-1036-1023-020211050021} ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Folders Quarantined: F:\QooBox\Purity\Documents and Settings\moi\Application Data\YMANTE~1 F:\QooBox\Purity\Documents and Settings\moi\Application Data\YMANTE~1\?ymantec F:\QooBox\Purity\Documents and Settings\moi\Mes documents\ICROSO~1 ((((((((((((((((((((((((((((((( Files Created from 2006-10-27 to 2006-11-27 )))))))))))))))))))))))))))))))))) 2006-11-27 12:39 <REP> d-------- F:\VundoFix Backups 2006-11-26 23:31 57,384 --a------ F:\WINDOWS\system32\avsda.dll 2006-11-26 23:31 32,768 --a------ F:\WINDOWS\system32\drivers\avgntdd.sys 2006-11-26 23:31 14,848 --a------ F:\WINDOWS\system32\drivers\avgntmgr.sys 2006-11-26 23:31 <REP> d-------- F:\Program Files\AntiVir PersonalEdition Classic 2006-11-26 23:31 <REP> d-------- F:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic 2006-11-26 22:17 <REP> d-------- F:\Program Files\HijackThis); 2006-11-26 22:06 484 --a------ F:\WINDOWS\system32\tmp.reg 2006-11-26 22:05 53,248 --a------ F:\WINDOWS\system32\Process.exe 2006-11-26 22:05 40,960 --a------ F:\WINDOWS\system32\swsc.exe 2006-11-26 22:05 288,417 --a------ F:\WINDOWS\system32\SrchSTS.exe 2006-11-26 22:05 135,168 --a------ F:\WINDOWS\system32\swreg.exe 2006-11-26 18:44 <REP> d-------- F:\Program Files\xp-AntiSpy 2006-11-25 17:30 <REP> d-------- F:\WINDOWS\Web 2006-11-25 17:27 <REP> d-------- F:\WINDOWS\WBEM 2006-11-25 17:27 <REP> d-------- F:\WINDOWS\system32\fr-fr 2006-11-25 17:26 <REP> d--h-c--- F:\WINDOWS\ie7 2006-11-25 17:25 121,856 --------- F:\WINDOWS\system32\xmllite.dll 2006-11-25 17:24 <REP> d-------- F:\WINDOWS\network diagnostic 2006-11-24 16:22 <REP> d-------- F:\WINDOWS\SxsCaPendDel 2006-11-24 15:59 42,920 --a------ F:\WINDOWS\system32\vsutil_loc040c.dll 2006-11-24 15:58 <REP> d-------- F:\WINDOWS\system32\ZoneLabs 2006-11-24 15:58 <REP> d-------- F:\Program Files\Zone Labs 2006-11-23 22:43 3,968 --a------ F:\WINDOWS\system32\drivers\AvgAsCln.sys 2006-11-23 22:43 <REP> d-------- F:\Program Files\Grisoft 2006-11-23 19:47 5,632 --a------ F:\WINDOWS\system32\Machnm64.sys 2006-11-23 19:47 2,304 --a------ F:\WINDOWS\system32\Machnm32.sys 2006-11-23 19:47 15,840 --a------ F:\WINDOWS\system32\Machnm1.exe 2006-11-23 19:47 <REP> d-------- F:\Program Files\E-Press 2006-11-23 16:27 <REP> d-------- F:\Program Files\Yahoo! 2006-11-23 16:27 <REP> d-------- F:\Documents and Settings\All Users\Application Data\Symantec 2006-11-23 16:22 <REP> d-------- F:\Program Files\Fichiers communs\Symantec Shared 2006-11-23 12:55 <REP> d-------- F:\Program Files\VSAdd-in 2006-11-23 11:53 2 --a------ F:\WINDOWS\system32\wnscpcc.exe 2006-11-20 17:28 <REP> d-------- F:\Program Files\OO Software 2006-11-19 15:09 424,136 --a------ F:\WINDOWS\system32\wunauclt.exe 2006-11-19 15:09 424,136 --a------ F:\Program Files\wunauclt.exe 2006-11-19 11:19 <REP> dr-h----- F:\Documents and Settings\moi\Recent 2006-11-17 00:34 <REP> d-------- F:\Program Files\Mes Jeux T‚l‚charg‚s 2006-11-17 00:33 <REP> d-------- F:\Program Files\BoontyGames 2006-11-17 00:33 <REP> d-------- F:\Program Files\Boonty 2006-11-14 20:12 <REP> d-------- F:\Program Files\Neuf 2006-11-07 21:03 6,049,280 --------- F:\WINDOWS\system32\ieframe.dll 2006-11-07 21:03 50,688 --------- F:\WINDOWS\system32\msfeedsbs.dll 2006-11-07 21:03 458,752 --------- F:\WINDOWS\system32\msfeeds.dll 2006-11-07 21:03 180,736 --------- F:\WINDOWS\system32\ieui.dll 2006-11-07 03:26 13,312 --a------ F:\WINDOWS\system32\ieudinit.exe 2006-10-30 15:26 98,304 --a------ F:\WINDOWS\system32\CmdLineExt.dll 2006-10-30 15:22 <REP> d-------- F:\Program Files\KONAMI (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2006-11-27 13:05 -------- d-------- F:\Program Files\Fichiers communs 2006-11-26 15:00 -------- d-------- F:\Documents and Settings\moi\Application Data\teamspeak2 2006-11-25 17:29 -------- d-------- F:\Program Files\Internet Explorer 2006-11-24 16:24 -------- d-------- F:\Documents and Settings\moi\Application Data\Lavasoft 2006-11-24 16:23 -------- d-------- F:\Program Files\Zoom Player 2006-11-24 16:22 -------- d--h----- F:\Program Files\InstallShield Installation Information 2006-11-23 21:43 -------- d-------- F:\Program Files\Fichiers communs\Microsoft Shared 2006-11-23 20:54 -------- d-------- F:\Program Files\Spybot - Search & Destroy 2006-11-23 19:48 3120 --a------ F:\Documents and Settings\moi\Application Data\117715.29 2006-11-07 21:03 413696 --a------ F:\WINDOWS\system32\vbscript.dll 2006-11-07 21:03 231424 --a------ F:\WINDOWS\system32\webcheck.dll 2006-11-07 21:03 156160 --a------ F:\WINDOWS\system32\msls31.dll 2006-11-07 03:27 382976 --a------ F:\WINDOWS\system32\iedkcs32.dll 2006-11-07 03:27 229376 --a------ F:\WINDOWS\system32\ieaksie.dll 2006-11-07 03:26 71680 --a------ F:\WINDOWS\system32\admparse.dll 2006-11-07 03:26 55296 --a------ F:\WINDOWS\system32\iesetup.dll 2006-11-07 03:26 54784 --a------ F:\WINDOWS\system32\ie4uinit.exe 2006-11-07 03:26 43008 --a------ F:\WINDOWS\system32\iernonce.dll 2006-11-07 03:26 152064 --a------ F:\WINDOWS\system32\ieakeng.dll 2006-11-07 03:26 123904 --a------ F:\WINDOWS\system32\advpack.dll 2006-11-07 03:25 161792 --a------ F:\WINDOWS\system32\ieakui.dll 2006-10-22 16:24 -------- d-------- F:\Program Files\JeffProd 2006-10-21 19:02 30630 --a------ F:\WINDOWS\system32\drivers\Mmc_2k.sys 2006-10-21 19:02 25898 --a------ F:\WINDOWS\system32\drivers\Dvd_2k.sys 2006-10-21 19:02 143834 --a------ F:\WINDOWS\system32\drivers\pwd_2K.sys 2006-10-21 19:02 -------- d-------- F:\Program Files\Fichiers communs\Adaptec Shared 2006-10-21 19:01 -------- d-------- F:\Program Files\Roxio 2006-10-19 18:01 -------- d---s---- F:\Documents and Settings\moi\Application Data\Microsoft 2006-10-18 20:40 -------- d-------- F:\Program Files\Diskeeper Corporation 2006-10-18 16:42 -------- d-------- F:\Program Files\Shareaza 2006-10-18 16:42 -------- d-------- F:\Documents and Settings\moi\Application Data\Shareaza 2006-10-18 16:24 -------- d-------- F:\Documents and Settings\moi\Application Data\Google 2006-10-18 14:40 -------- d-------- F:\Program Files\Google 2006-10-17 12:06 78336 --a------ F:\WINDOWS\system32\ieencode.dll 2006-10-17 12:05 40960 --a------ F:\WINDOWS\system32\licmgr10.dll 2006-10-17 12:05 206336 --------- F:\WINDOWS\system32\WinFXDocObj.exe 2006-10-17 12:05 105984 --a------ F:\WINDOWS\system32\url.dll 2006-10-17 12:04 101376 --a------ F:\WINDOWS\system32\occache.dll 2006-10-17 12:03 17408 --a------ F:\WINDOWS\system32\corpol.dll 2006-10-17 11:58 61952 --------- F:\WINDOWS\system32\icardie.dll 2006-10-17 11:58 12288 --------- F:\WINDOWS\system32\msfeedssync.exe 2006-10-17 11:57 36352 --a------ F:\WINDOWS\system32\imgutil.dll 2006-10-17 11:57 266752 --------- F:\WINDOWS\system32\iertutil.dll 2006-10-17 11:56 45568 --a------ F:\WINDOWS\system32\mshta.exe 2006-10-17 11:28 48128 --a------ F:\WINDOWS\system32\mshtmler.dll 2006-10-17 11:27 380928 --------- F:\WINDOWS\system32\ieapfltr.dll 2006-10-13 13:36 145920 --a------ F:\WINDOWS\system32\nwprovau.dll 2006-10-07 21:54 390023 -rahs---- F:\Program Files\wunauclt.zip 2006-10-07 21:54 390023 -rahs---- F:\Program Files\wunauclt.tbe 2006-10-06 21:37 -------- d-------- F:\Program Files\Wolfenstein - Enemy Territory 2006-10-05 16:25 5 --ahs---- F:\WINDOWS\system32\aeccfae_g.dll 2006-10-05 16:14 -------- d-------- F:\Program Files\RegCleaner 2006-10-02 21:48 -------- d-------- F:\Program Files\The All-Seeing Eye 2006-09-13 06:03 1084416 --a------ F:\WINDOWS\system32\msxml3.dll 2006-09-06 16:43 22752 --a------ F:\WINDOWS\system32\spupdsvc.exe 2006-08-27 16:38 1015973 -rahs---- F:\Program Files\serial.zip 2006-08-27 16:38 1015973 -rahs---- F:\Program Files\serial.tde 2006-08-27 16:19 56239 --a------ F:\Program Files\svchosts.tbe 2006-08-04 11:18 774144 --a------ F:\Program Files\RngInterstitial.dll (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries are not shown [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "ctfmon.exe"="F:\\WINDOWS\\system32\\ctfmon.exe" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "avgnt"="\"F:\\Program Files\\AntiVir PersonalEdition Classic\\avgnt.exe\" /min" "avgnt"="\"F:\\Program Files\\AntiVir PersonalEdition Classic\\avgnt.exe\" /min" [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components] "DeskHtmlVersion"=dword:00000110 "DeskHtmlMinorVersion"=dword:00000005 "Settings"=dword:00000001 "GeneralFlags"=dword:00000005 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 "CDRAutoRun"=dword:00000000 [HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 "CDRAutoRun"=dword:00000000 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload] "PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" "CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" "WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" "SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^F-Secure 2006.lnk] "backup"="F:\\WINDOWS\\pss\\F-Secure 2006.lnkCommon Startup" "location"="Common Startup" "item"="F-Secure 2006" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk] "path"="F:\\Documents and Settings\\All Users\\Menu Démarrer\\Programmes\\Démarrage\\Lancement rapide d'Adobe Reader.lnk" "backup"="F:\\WINDOWS\\pss\\Lancement rapide d'Adobe Reader.lnkCommon Startup" "location"="Common Startup" "command"="F:\\PROGRA~1\\Adobe\\ACROBA~1.0\\Reader\\READER~1.EXE " "item"="Lancement rapide d'Adobe Reader" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^ScanPanel.lnk] "backup"="F:\\WINDOWS\\pss\\ScanPanel.lnkCommon Startup" "location"="Common Startup" "item"="ScanPanel" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk] "backup"="F:\\WINDOWS\\pss\\WinZip Quick Pick.lnkCommon Startup" "location"="Common Startup" "item"="WinZip Quick Pick" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^BoontyBox neuf telecom.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\BoontyBox neuf telecom.lnk" "backup"="F:\\WINDOWS\\pss\\BoontyBox neuf telecom.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\Boonty\\BOONTY~1\\BOONTY~1.EXE /boot /nosplash" "item"="BoontyBox neuf telecom" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^Corel Print House Registration.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\Corel Print House Registration.lnk" "backup"="F:\\WINDOWS\\pss\\Corel Print House Registration.lnkStartup" "location"="Startup" "command"="F:\\Fichiers programme\\Corel\\Print House 2000\\Register\\Remind32.exe " "item"="Corel Print House Registration" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^Diskeeper 10 Professional Edition Registration.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\Diskeeper 10 Professional Edition Registration.lnk" "backup"="F:\\WINDOWS\\pss\\Diskeeper 10 Professional Edition Registration.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\DISKEE~1\\DISKEE~3\\ESIREG~1.EXE /remind /language=FRA /PRNM=\"Diskeeper 10 Professional Edition\"" "item"="Diskeeper 10 Professional Edition Registration" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 1.1.4.lnk] "path"="F:\\Documents and Settings\\moi\\Menu Démarrer\\Programmes\\Démarrage\\OpenOffice.org 1.1.4.lnk" "backup"="F:\\WINDOWS\\pss\\OpenOffice.org 1.1.4.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\OPENOF~1.4\\program\\QUICKS~1.EXE " "item"="OpenOffice.org 1.1.4" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^moi^Menu Démarrer^Programmes^Démarrage^RegFreeze.lnk] "backup"="F:\\WINDOWS\\pss\\RegFreeze.lnkStartup" "location"="Startup" "item"="RegFreeze" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="avgas" "hkey"="HKLM" "command"="\"F:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!ewido] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ewido" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdaptecDirectCD] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DirectCD" "hkey"="HKLM" "inimapping"="0" "command"="\"F:\\Program Files\\Roxio\\Easy CD Creator 5\\DirectCD\\DirectCD.exe\"" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="atiptaxx" "hkey"="HKLM" "command"="C:\\ATI-CPanel\\atiptaxx.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="avgcc" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BoontyBox] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BoontyBox" "hkey"="HKCU" "command"="\"F:\\Program Files\\Boonty\\BoontyBox\\BoontyBox.exe\" /boot" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTDrive] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="drvxir" "hkey"="HKLM" "command"="rundll32.exe F:\\WINDOWS\\system32\\drvxir.dll,startup" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ctfmon" "hkey"="HKCU" "command"="F:\\WINDOWS\\System32\\ctfmon.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DiskeeperSystray] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DkIcon" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eMuleAutoStart] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="emule" "hkey"="HKCU" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoEngine] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKLM" "command"="" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoRss] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKLM" "command"="" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ErrorSafe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ers" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Home Theater SchSvr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SchSvr" "hkey"="HKLM" "command"="\"F:\\Program Files\\Fichiers communs\\InterVideo\\SchSvr\\SchSvr.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\I downloaded pirated Software from P2P] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Pro Evolution Soccer 6" "hkey"="HKLM" "command"="Pro Evolution Soccer 6" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LXSUPMON] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="LXSUPMON" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msmsgs" "hkey"="HKCU" "command"="\"F:\\Program Files\\Messenger\\msmsgs.exe\" /background" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msnmsgr" "hkey"="HKCU" "command"="\"F:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyWebSearch Email Plugin] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mwsoemon" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OneClick] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="oneclick" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCDefender-AntiVirus] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Helper" "hkey"="HKCU" "command"="F:\\Program Files\\E-Press\\PC Defender\\bin\\Helper.exe /start" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="qttask" "hkey"="HKLM" "command"="\"F:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\REGSHAVE] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="REGSHAVE" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shareaza] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Shareaza" "hkey"="HKCU" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Startup Manager Scanner] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="StartupScanner" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeUpdateManager" "hkey"="HKCU" "command"="F:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe AcRdB7_0_3" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WINCINEMAMGR] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="WinCinemaMgr" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MSASCui" "hkey"="HKLM" "command"="\"F:\\Program Files\\Windows Defender\\MSASCui.exe\" -hide" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Registry Repair Pro] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RegistryRepairPro" "hkey"="HKCU" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zone Labs Client] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="zlclient" "hkey"="HKLM" "inimapping"="0" HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\winzoa32 [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" Contents of the 'Scheduled Tasks' folder F:\WINDOWS\tasks\At1.job F:\WINDOWS\tasks\At2.job F:\WINDOWS\tasks\At3.job Completion time: 06-11-27 13:05:27.51 F:\ComboFix.txt ... 06-11-27 13:05 F SECURE RAPPORT 11/27/06 13:19:42 [info]: BlackLight Engine 1.0.47 initialized 11/27/06 13:19:42 [info]: OS: 5.1 build 2600 (Service Pack 2) 11/27/06 13:19:42 [Note]: 7019 4 11/27/06 13:19:42 [Note]: 7005 0 11/27/06 13:19:45 [Note]: 7006 0 11/27/06 13:19:45 [Note]: 7011 1348 11/27/06 13:19:46 [Note]: 7026 0 11/27/06 13:19:46 [Note]: 7026 0 11/27/06 13:19:46 [Note]: 7024 3 11/27/06 13:19:46 [info]: Hidden process: F:\windows\system32\olzrkn.exe 11/27/06 13:19:46 [Note]: FSRAW library version 1.7.1020 11/27/06 13:21:50 [info]: Hidden file: f:\WINDOWS\Prefetch\OLZRKN.EXE-0CA03DBC.pf 11/27/06 13:21:50 [Note]: 10002 1 11/27/06 13:22:29 [info]: Hidden file: f:\WINDOWS\system32\olzrkn.dat 11/27/06 13:22:29 [Note]: 10002 1 11/27/06 13:22:29 [info]: Hidden file: F:\windows\system32\olzrkn.exe 11/27/06 13:22:29 [Note]: 10002 1 11/27/06 13:22:29 [info]: Hidden file: f:\WINDOWS\system32\olzrkn_nav.dat 11/27/06 13:22:29 [Note]: 10002 1 11/27/06 13:22:30 [info]: Hidden file: f:\WINDOWS\system32\olzrkn_navps.dat 11/27/06 13:22:30 [Note]: 10002 1 11/27/06 13:26:42 [Note]: 7007 0 ETPOUR FINIR HIJACK HIS 11/27/06 13:19:42 [info]: BlackLight Engine 1.0.47 initialized 11/27/06 13:19:42 [info]: OS: 5.1 build 2600 (Service Pack 2) 11/27/06 13:19:42 [Note]: 7019 4 11/27/06 13:19:42 [Note]: 7005 0 11/27/06 13:19:45 [Note]: 7006 0 11/27/06 13:19:45 [Note]: 7011 1348 11/27/06 13:19:46 [Note]: 7026 0 11/27/06 13:19:46 [Note]: 7026 0 11/27/06 13:19:46 [Note]: 7024 3 11/27/06 13:19:46 [info]: Hidden process: F:\windows\system32\olzrkn.exe 11/27/06 13:19:46 [Note]: FSRAW library version 1.7.1020 11/27/06 13:21:50 [info]: Hidden file: f:\WINDOWS\Prefetch\OLZRKN.EXE-0CA03DBC.pf 11/27/06 13:21:50 [Note]: 10002 1 11/27/06 13:22:29 [info]: Hidden file: f:\WINDOWS\system32\olzrkn.dat 11/27/06 13:22:29 [Note]: 10002 1 11/27/06 13:22:29 [info]: Hidden file: F:\windows\system32\olzrkn.exe 11/27/06 13:22:29 [Note]: 10002 1 11/27/06 13:22:29 [info]: Hidden file: f:\WINDOWS\system32\olzrkn_nav.dat 11/27/06 13:22:29 [Note]: 10002 1 11/27/06 13:22:30 [info]: Hidden file: f:\WINDOWS\system32\olzrkn_navps.dat 11/27/06 13:22:30 [Note]: 10002 1 11/27/06 13:26:42 [Note]: 7007 0 DONC VOILA CHARLES C4EST FAIT mrci a toi
  20. micka
    encore moi desoler . behhhhhhh voila ses toujours pareille des fenetre souvre pour me dire que j ai un virus et de faire un analyse avec leur logitiel qu'il faut payé. aussi non sa aussi une fenetre s'ouvre en me disant important la présence d'érreur de registre,ou dans le systeme d'archive peut nuirea votre pc..........bla bla veuillez vous installer winantivirupro. c'est soulant a force merci encore "micka"
  21. micka
    rebonsoir Comme vous pouvez constater je passe la nuit sur se verus et voila e que sa donne. *j'ai nstallé antivir ,j ai pas fait d'analyse car je preferé faire se qu'on ma dit. Mais il ma quand mème trouver un virus ,le probleme c'est qu'il arrètte pas de biper,pour ouvrir un fenètre et e dire qu j'ai un virus. Mème en cochant"effacer" ou "mettre en quarantaine"ou "delète" il continu a bipper. donc je les desactiver pour pouvoir mieux faire se que l'on m'avais dit. **********1ere etapesMODE SANS ECHEC ses fait pas de probleme *********2ème etapes SMITFAUFIX J'ai tout fait comme s'etait ecrit sauf qu'il ma pas poser la question corriger le fichier infecter. voici le rapport Rapport fait à 0:37:35,96, 27/11/2006 Executé à partir de F:\Documents and Settings\moi\Bureau\pes 6\SmitfraudFix[1]\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Fix executé en mode sans echec »»»»»»»»»»»»»»»»»»»»»»»» Avant SmitFraudFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Arret des processus »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix GenericRenosFix by S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés »»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires »»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre Nettoyage terminé. »»»»»»»»»»»»»»»»»»»»»»»» Après SmitFraudFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll J'ai aussi bien fait ATF-Cleaner. Sa ma rien fait e speciale mais ses fait . *******************3eme etapes AVG AS voici le rapport AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 01:54:32 27/11/2006 + Résultat de l'analyse: F:\Documents and Settings\moi\Mes documents\Downloads\Ad - Aware SE Personal Edition 1.06.exe -> Dropper.VB.lu : Nettoyé et sauvegardé (mise en quarantaine). F:\Documents and Settings\moi\Mes documents\Downloads\Ad - Aware SE Personal Edition 1.06.rar/Ad - Aware SE Personal Edition 1.06.exe -> Dropper.VB.lu : Nettoyé et sauvegardé (mise en quarantaine). Fin du rapport ***********************4eme etapeDIAGHELP voici le rapport F:\WINDOWS\System32\mnnmp.ini -->27/11/2006 02:27:03 F:\WINDOWS\System32\wpa.dbl -->27/11/2006 01:58:28 F:\WINDOWS\System32\tmp.txt -->27/11/2006 00:37:40 F:\WINDOWS\System32\tmp.reg -->27/11/2006 00:37:40 F:\WINDOWS\System32\vsconfig.xml -->26/11/2006 23:47:30 F:\WINDOWS\System32\swsc.exe -->26/11/2006 22:05:37 F:\WINDOWS\System32\swreg.exe -->26/11/2006 22:05:37 F:\WINDOWS\System32\SrchSTS.exe -->26/11/2006 22:05:37 F:\WINDOWS\System32\Process.exe -->26/11/2006 22:05:37 F:\WINDOWS\System32\mnnmp.bak2 -->26/11/2006 17:22:06 F:\WINDOWS\System32\mnnmp.ini2 -->24/11/2006 16:35:09 F:\WINDOWS\System32\zllictbl.dat -->24/11/2006 16:04:10 F:\WINDOWS\System32\gmgvfoqh.dll -->24/11/2006 15:07:15 F:\WINDOWS\System32\117709.73 -->23/11/2006 19:48:16 F:\WINDOWS\System32\coh.cache -->23/11/2006 18:52:03 F:\WINDOWS\System32\EraserAHS.tlg -->23/11/2006 18:52:00 F:\WINDOWS\System32\EraserAHS.log -->23/11/2006 17:01:32 F:\WINDOWS\System32\MobileSidewalkRON_2.ico -->23/11/2006 16:37:29 F:\WINDOWS\System32\ClickToFindandFixErrors_4.ico -->23/11/2006 16:24:29 F:\WINDOWS\System32\cawsjuvd.dll -->23/11/2006 11:57:54 F:\WINDOWS\System32\mnnmp.bak1 -->23/11/2006 11:57:53 F:\WINDOWS\System32\pmnnm.dll -->23/11/2006 11:57:48 F:\WINDOWS\System32\wnscpcc.exe -->23/11/2006 11:53:05 F:\WINDOWS\System32\MRT.INI -->18/11/2006 10:26:29 F:\WINDOWS\System32\bszip.dll -->17/11/2006 20:17:55 F:\WINDOWS\WindowsUpdate.log -->27/11/2006 01:59:43 F:\WINDOWS\SchedLgU.Txt -->27/11/2006 01:59:43 F:\WINDOWS\0.log -->27/11/2006 01:58:08 F:\WINDOWS\wiadebug.log -->27/11/2006 01:57:59 F:\WINDOWS\wiaservc.log -->27/11/2006 01:57:48 F:\WINDOWS\bootstat.dat -->27/11/2006 01:56:56 F:\WINDOWS\ntbtlog.txt -->27/11/2006 01:47:37 F:\WINDOWS\setupact.log -->27/11/2006 00:37:51 F:\WINDOWS\spupdsvc.log -->25/11/2006 17:30:22 F:\WINDOWS\ie7_main.log -->25/11/2006 17:28:16 F:\WINDOWS\tsoc.log -->25/11/2006 17:28:08 F:\WINDOWS\ocmsn.log -->25/11/2006 17:28:08 F:\WINDOWS\ntdtcsetup.log -->25/11/2006 17:28:08 F:\WINDOWS\imsins.log -->25/11/2006 17:28:08 F:\WINDOWS\iis6.log -->25/11/2006 17:28:08 F:\WINDOWS\GPlrLanc.exe |Exent Technologies Ltd. |16/10/2005 21:32:54 F:\WINDOWS\IsUn040c.exe |InstallShield Software Corporation |04/03/2006 22:35:51 F:\WINDOWS\IsUninst.exe |InstallShield Software Corporation |05/04/2005 09:38:10 F:\WINDOWS\iun6002.exe |Indigo Rose Corporation |03/08/2005 19:23:36 F:\WINDOWS\patcher.exe |COMPANY |19/11/2006 15:09:26 F:\WINDOWS\SETUP1.EXE |COMPANY |05/04/2005 21:23:39 F:\WINDOWS\slrundll.exe |Smart Link |20/08/2004 00:10:02 F:\WINDOWS\twunk_16.exe |Twain Working Group |30/08/2002 13:00:00 F:\WINDOWS\twunk_32.exe |Twain Working Group |30/08/2002 13:00:00 F:\WINDOWS\uinst001.exe |COMPANY |07/07/2005 17:17:41 F:\WINDOWS\UN16040C.EXE |InstallShield Corporation, Inc. |25/07/2005 14:33:10 F:\WINDOWS\uneng.exe |Roxio |19/03/2005 16:49:33 F:\WINDOWS\unin040c.exe |InstallShield Corporation, Inc. |06/09/2005 17:41:59 F:\WINDOWS\unins000.exe |COMPANY |17/11/2006 00:34:08 F:\WINDOWS\uninst.exe |InstallShield Corporation, Inc. |08/04/2005 17:57:18 F:\WINDOWS\UninstWiFi.exe |TODO: <Nom de la société> |06/07/2005 12:58:03 F:\WINDOWS\unvise32.exe |MindVision Software |07/04/2005 13:50:15 F:\WINDOWS\A4.dll |COMPANY |04/03/2006 23:55:37 F:\WINDOWS\Ausba4.dll |COMPANY |04/03/2006 23:55:37 F:\WINDOWS\GetKey.dll |COMPANY |04/03/2006 23:55:37 F:\WINDOWS\twain.dll |Groupe de travail Twain |30/08/2002 13:00:00 F:\WINDOWS\twain_32.dll |Groupe de travail Twain |30/08/2002 13:00:00 F:\WINDOWS\unacev2.dll |COMPANY |03/07/2005 08:40:49 F:\WINDOWS\WRServices.dll |Webroot Software, Inc |26/01/2006 19:44:14 F:\WINDOWS\system32\append.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\ati2evxx.exe |COMPANY |14/03/2005 00:39:57 F:\WINDOWS\system32\CoreVorbis-uninstall.exe |COMPANY |19/03/2005 09:56:15 F:\WINDOWS\system32\debug.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\dosx.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\dvdplay.exe |COMPANY |23/08/2001 18:47:34 F:\WINDOWS\system32\edlin.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\exe2bin.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\fastopen.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\Machnm1.exe |COMPANY |23/11/2006 19:47:31 F:\WINDOWS\system32\mem.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\MMAVILNG.exe |COMPANY |19/03/2005 09:55:47 F:\WINDOWS\system32\mscdexnt.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\nlsfunc.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\OggDSuninst.exe |COMPANY |19/03/2005 09:56:11 F:\WINDOWS\system32\oodag.exe |O&O Software GmbH |02/11/2005 14:53:50 F:\WINDOWS\system32\oodbs.exe |O&O Software GmbH |02/11/2005 14:53:50 F:\WINDOWS\system32\pgdfgsvc.exe |Sysinternals - www.sysinternals.com |30/04/2006 22:24:17 F:\WINDOWS\system32\Process.exe |http://www.beyondlogic.org |26/11/2006 22:05:54 F:\WINDOWS\system32\redir.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\Remove48U.exe |ULTIMA ELECTRONICS CORP. |04/03/2006 23:55:34 F:\WINDOWS\system32\setver.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\share.exe |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\slrundll.exe |Smart Link |20/08/2004 00:10:02 F:\WINDOWS\system32\slserv.exe |Smart Link |20/08/2004 00:10:02 F:\WINDOWS\system32\SrchSTS.exe |S!Ri |26/11/2006 22:05:54 F:\WINDOWS\system32\swreg.exe |SteelWerX |26/11/2006 22:05:54 F:\WINDOWS\system32\swsc.exe |COMPANY |26/11/2006 22:05:54 F:\WINDOWS\system32\usrmlnka.exe |U.S. Robotics Corporation |23/08/2001 18:47:48 F:\WINDOWS\system32\usrprbda.exe |U.S. Robotics Corporation |23/08/2001 18:47:48 F:\WINDOWS\system32\usrshuta.exe |U.S. Robotics Corporation |23/08/2001 18:47:48 F:\WINDOWS\system32\wnscpcc.exe |COMPANY |23/11/2006 11:53:05 F:\WINDOWS\system32\3DViewer.dll |Apple Computer, Inc. |25/07/2005 14:34:10 F:\WINDOWS\system32\3ivx.dll |3ivx.com |18/11/2003 13:49:28 F:\WINDOWS\system32\3ivxVfWCodec.dll |3ivx.com |18/11/2003 13:49:44 F:\WINDOWS\system32\48UMicro.dll |ULTIMA ELECTRONICS CORP. |04/03/2006 23:55:37 F:\WINDOWS\system32\aeccfae_g.dll |COMPANY |05/10/2006 16:25:39 F:\WINDOWS\system32\amstream.dll |COMPANY |09/04/2005 21:11:00 F:\WINDOWS\system32\ASmartTune.dll |ASUSTek |13/11/2002 21:59:38 F:\WINDOWS\system32\asus_tv_tune.dll |COMPANY |13/11/2002 14:33:22 F:\WINDOWS\system32\ati2cqag.dll |ATI Technologies Inc. |20/08/2004 00:09:19 F:\WINDOWS\system32\ati2dvaa.dll |ATI Technologies Inc. |20/08/2004 00:09:19 F:\WINDOWS\system32\ati2dvag.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ati2edxx.dll |ATI Technologies, Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ati2evxx.dll |COMPANY |14/03/2005 00:39:45 F:\WINDOWS\system32\ati3d1ag.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ati3d2ag.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ati3duag.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ATIDDC.DLL |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\atiiiexx.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\atioglxx.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\atipdlxx.dll |ATI Technologies, Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\atitvo32.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ativcoxx.dll |ATI Technologies, Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ativtmxx.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\ativvaxx.dll |ATI Technologies Inc. |14/03/2005 00:39:45 F:\WINDOWS\system32\atmfd.dll |Adobe Systems Incorporated |30/08/2002 13:00:00 F:\WINDOWS\system32\atmlib.dll |Adobe Systems |30/08/2002 13:00:00 F:\WINDOWS\system32\avsda.dll |H+BEDV Datentechnik GmbH |26/11/2006 23:31:21 F:\WINDOWS\system32\bpssc1.1.dll |BulletProofSoft.com |31/01/2006 18:04:31 F:\WINDOWS\system32\bszip.dll |BigSpeedSoft |17/11/2006 20:17:55 F:\WINDOWS\system32\cawsjuvd.dll |COMPANY |23/11/2006 11:57:54 F:\WINDOWS\system32\ccrpbds6.dll |Common Controls Replacement Project (CCRP) |14/02/2006 19:42:54 F:\WINDOWS\system32\CDDBControlRoxio.dll |Gracenote (formerly CDDB, Inc.) |31/07/2002 12:32:18 F:\WINDOWS\system32\CddbLangFR.dll |COMPANY |10/05/2002 08:58:10 F:\WINDOWS\system32\CDDBUIRoxio.dll |Gracenote |31/07/2002 12:32:18 F:\WINDOWS\system32\cdral.dll |Roxio |17/12/2002 11:32:40 F:\WINDOWS\system32\cdrtc.dll |Roxio |17/12/2002 11:32:54 F:\WINDOWS\system32\CmdLineExt.dll |Sony DADC Austria AG. |30/10/2006 15:26:02 F:\WINDOWS\system32\cncs32.dll |Europress Software |16/03/2006 11:55:07 F:\WINDOWS\system32\compatui.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\cpuinf32.dll |COMPANY |17/09/2001 13:20:02 F:\WINDOWS\system32\dgrpsetu.dll |Digi International, Inc. |13/03/2005 23:54:01 F:\WINDOWS\system32\dgsetup.dll |Digi International |13/03/2005 23:54:01 F:\WINDOWS\system32\DivXc32.dll |Hacked with Joy ! |11/12/2001 13:17:12 F:\WINDOWS\system32\DivXc32f.dll |Hacked with Joy ! |27/11/2001 01:19:54 F:\WINDOWS\system32\divxdec_0407.dll |DivXNetworks, Inc. |04/09/2004 00:34:08 F:\WINDOWS\system32\divxdec_040c.dll |DivXNetworks, Inc. |04/09/2004 00:34:08 F:\WINDOWS\system32\divxdec_0411.dll |DivXNetworks, Inc. |04/09/2004 00:25:12 F:\WINDOWS\system32\encdec.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\EqnClass.Dll |Equinox Systems Inc. |13/03/2005 23:54:00 F:\WINDOWS\system32\FCLKBTN.DLL |FUJIFILM |10/02/2006 11:53:59 F:\WINDOWS\system32\ffJmpWeb.dll |Forefront, Incorporated |06/11/2005 17:44:52 F:\WINDOWS\system32\FFRAFLIB.DLL |FUJI PHOTO FILM CO., LTD. |10/02/2006 11:54:47 F:\WINDOWS\system32\FFTIFF16.dll |FUJI PHOTO FILM CO., LTD. |10/02/2006 11:54:47 F:\WINDOWS\system32\FINFCHECK.dll |FUJIFILM |10/02/2006 11:54:01 F:\WINDOWS\system32\FINFCOPY.dll |FUJIFILM |10/02/2006 11:54:01 F:\WINDOWS\system32\FREGSHEX.DLL |FUJIFILM |10/02/2006 11:53:59 F:\WINDOWS\system32\gmgvfoqh.dll |COMPANY |24/11/2006 15:07:14 F:\WINDOWS\system32\Hpgdtppg.dll |HP |04/03/2006 22:36:01 F:\WINDOWS\system32\hpgdtt.dll |Hewlett Packard |04/03/2006 22:36:01 F:\WINDOWS\system32\hpgdtuu.dll |Hewlett-Packard |04/03/2006 22:36:01 F:\WINDOWS\system32\hpsjvset.dll |Hewlett-Packard |04/03/2006 22:36:00 F:\WINDOWS\system32\hsfcisp2.dll |Conexant Systems, Inc. |20/08/2004 00:09:27 F:\WINDOWS\system32\hticons.dll |Hilgraeve, Inc. |14/03/2005 00:07:45 F:\WINDOWS\system32\HUFFYUV.DLL |Disappearing Inc. |08/12/2001 21:20:20 F:\WINDOWS\system32\hypertrm.dll |Hilgraeve, Inc. |17/11/2004 18:57:39 F:\WINDOWS\system32\iccvid.dll |Radius Inc. |30/08/2002 13:00:00 F:\WINDOWS\system32\INETWH32.dll |Blue Sky Software Corporation. |04/08/2000 15:25:30 F:\WINDOWS\system32\ir32_32.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\ir41_qc.dll |Intel Corporation. |22/03/1998 15:34:14 F:\WINDOWS\system32\ir41_qcx.dll |Intel Corporation. |22/03/1998 15:34:14 F:\WINDOWS\system32\Ir50_32.dll |Ligos Corporation |02/10/2002 14:23:12 F:\WINDOWS\system32\ir50_lcs.dll |Intel Corporation. |06/11/1997 14:53:30 F:\WINDOWS\system32\Ir50_qc.dll |Ligos Corporation |22/06/2000 16:31:00 F:\WINDOWS\system32\Ir50_qcx.dll |Ligos Corporation |22/06/2000 16:31:46 F:\WINDOWS\system32\isrdbg32.dll |Intel Corporation |14/03/2005 00:09:37 F:\WINDOWS\system32\IVIresize.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\IVIresizeA6.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\IVIresizeM6.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\IVIresizeP6.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\IVIresizePX.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\IVIresizeW7.dll |COMPANY |28/05/2005 17:51:52 F:\WINDOWS\system32\jgaw400.dll |Johnson-Grace Company |30/08/2002 13:00:00 F:\WINDOWS\system32\JGDW400.DLL |America Online |30/08/2002 13:00:00 F:\WINDOWS\system32\jgmd400.dll |Johnson-Grace Company |30/08/2002 13:00:00 F:\WINDOWS\system32\JGPL400.DLL |Johnson-Grace Company |30/08/2002 13:00:00 F:\WINDOWS\system32\jgsd400.dll |America Online |30/08/2002 13:00:00 F:\WINDOWS\system32\jgsh400.dll |Johnson-Grace Company |30/08/2002 13:00:00 F:\WINDOWS\system32\lfbmp11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:12 F:\WINDOWS\system32\LFCMP11n.DLL |LEAD Technologies, Inc. |10/05/2000 11:34:14 F:\WINDOWS\system32\lfeps11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:14 F:\WINDOWS\system32\lffax11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:14 F:\WINDOWS\system32\lfgif11n.dll |LEAD Technologies, Inc. |09/05/2000 18:41:26 F:\WINDOWS\system32\lfpcd11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:16 F:\WINDOWS\system32\lfpcx11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:16 F:\WINDOWS\system32\Lfpng11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:18 F:\WINDOWS\system32\lfpsd11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:20 F:\WINDOWS\system32\lftga11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:20 F:\WINDOWS\system32\lftif11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:22 F:\WINDOWS\system32\lfwmf11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:22 F:\WINDOWS\system32\libeay32_0.9.6l.dll |COMPANY |24/11/2006 15:59:04 F:\WINDOWS\system32\LibPowerMemory_10.dll |Purple-Logistic Systems |30/10/2003 19:48:38 F:\WINDOWS\system32\LTDIS11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:24 F:\WINDOWS\system32\ltfil11n.DLL |LEAD Technologies, Inc. |09/05/2000 18:41:26 F:\WINDOWS\system32\ltimg11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:28 F:\WINDOWS\system32\ltkrn11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:32 F:\WINDOWS\system32\Ltwvc11n.dll |LEAD Technologies, Inc. |10/05/2000 11:34:36 F:\WINDOWS\system32\md5.dll |COMPANY |12/09/2006 00:10:58 F:\WINDOWS\system32\mdmxsdk.dll |Conexant |20/08/2004 00:09:30 F:\WINDOWS\system32\mdwmdmsp.dll |RioPort |23/08/2001 18:47:06 F:\WINDOWS\system32\MMSwitch.dll |COMPANY |19/03/2005 09:55:46 F:\WINDOWS\system32\msdmo.dll |COMPANY |09/04/2005 21:11:05 F:\WINDOWS\system32\msencode.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\mtxparhd.dll |Matrox Graphics Inc. |20/08/2004 00:09:35 F:\WINDOWS\system32\nv4_disp.dll |NVIDIA Corporation |20/08/2004 00:09:36 F:\WINDOWS\system32\Oemdspif.dll |ATI Technologies, Inc. |14/03/2005 00:39:57 F:\WINDOWS\system32\ogg.dll |COMPANY |05/10/2002 00:04:17 F:\WINDOWS\system32\OggDS.dll |COMPANY |06/10/2002 19:42:57 F:\WINDOWS\system32\oodagmg.dll |O&O Software GmbH |02/11/2005 14:53:52 F:\WINDOWS\system32\oodagrs.dll |O&O Software GmbH |02/11/2005 14:53:52 F:\WINDOWS\system32\oodbsrs.dll |O&O Software GmbH |02/11/2005 14:53:52 F:\WINDOWS\system32\ootmapi.dll |O&O Software GmbH |02/11/2005 14:53:52 F:\WINDOWS\system32\OpenQuicktimeLib.dll |COMPANY |18/11/2003 13:50:24 F:\WINDOWS\system32\PandoraCtrl.dll |Boonty |17/11/2006 00:34:08 F:\WINDOWS\system32\paqsp.dll |COMPANY |23/08/2001 18:47:16 F:\WINDOWS\system32\pmnnm.dll |COMPANY |23/11/2006 11:57:47 F:\WINDOWS\system32\Prop713x.dll |Philips Semiconductors |28/05/2005 17:41:58 F:\WINDOWS\system32\psisdecd.dll |COMPANY |12/07/2006 18:48:16 F:\WINDOWS\system32\qd3d.dll |Apple Computer Inc. |25/07/2005 14:34:09 F:\WINDOWS\system32\qedwipes.dll |COMPANY |09/04/2005 21:11:06 F:\WINDOWS\system32\rave.dll |Apple Computer, Inc. |25/07/2005 14:34:09 F:\WINDOWS\system32\Roboex32.dll |eHelp Corporation. |07/11/2000 17:36:14 F:\WINDOWS\system32\s3gnb.dll |S3 Graphics, Inc. |20/08/2004 00:09:39 F:\WINDOWS\system32\SaiC040B.Dll |Saitek |24/06/2006 14:11:00 F:\WINDOWS\system32\SaiC040B_07.dll |Saitek |24/06/2006 14:11:00 F:\WINDOWS\system32\SaiC040B_09.dll |Saitek |24/06/2006 14:11:00 F:\WINDOWS\system32\SaiC040B_0A.dll |Saitek |24/06/2006 14:11:00 F:\WINDOWS\system32\SaiC040B_0C.dll |Saitek |24/06/2006 14:11:00 F:\WINDOWS\system32\SaiC040B_10.dll |Saitek |24/06/2006 14:11:00 F:\WINDOWS\system32\SaiD040B.Dll |Saitek |24/06/2006 14:11:00 F:\WINDOWS\system32\sbe.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\sh33w32.dll |COMPANY |04/03/2006 22:39:32 F:\WINDOWS\system32\slbcsp.dll |Schlumberger Technology Corporation |30/08/2002 13:00:00 F:\WINDOWS\system32\slbiop.dll |Schlumberger Technology Corporation |30/08/2002 13:00:00 F:\WINDOWS\system32\slbrccsp.dll |Schlumberger Technology Corporation |30/08/2002 13:00:00 F:\WINDOWS\system32\slcoinst.dll |Smart Link |20/08/2004 00:09:41 F:\WINDOWS\system32\slextspk.dll |Smart Link |20/08/2004 00:09:41 F:\WINDOWS\system32\slgen.dll |Smart Link |20/08/2004 00:09:41 F:\WINDOWS\system32\spnike.dll |S3/Diamond Multimedia |23/08/2001 18:47:18 F:\WINDOWS\system32\sprio600.dll |S3/Diamond Multimedia |23/08/2001 18:47:18 F:\WINDOWS\system32\sprio800.dll |S3/Diamond Multimedia |23/08/2001 18:47:18 F:\WINDOWS\system32\spxcoins.dll |Perle Systems Ltd. |13/03/2005 23:54:00 F:\WINDOWS\system32\ssubtmr6.dll |vbAccelerator |06/05/2005 15:46:26 F:\WINDOWS\system32\tsd32.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\unzip32.dll |Info-ZIP |19/06/2005 14:52:46 F:\WINDOWS\system32\usrcntra.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrcoina.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrdpa.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrdtea.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrfaxa.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrlbva.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrrtosa.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrsdpia.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrsvpia.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrv42a.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrv80a.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrvoica.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\usrvpa.dll |U.S. Robotics Corporation |23/08/2001 18:47:20 F:\WINDOWS\system32\vbalicom6.dll |vbAccelerator |06/05/2005 15:46:26 F:\WINDOWS\system32\VbiCallback.dll |Philips Semiconductors |28/05/2005 17:51:54 F:\WINDOWS\system32\vobsub.dll |Gabest |11/12/2002 10:19:34 F:\WINDOWS\system32\vorbis.dll |COMPANY |05/10/2002 00:04:24 F:\WINDOWS\system32\vorbisenc.dll |COMPANY |05/10/2002 00:04:25 F:\WINDOWS\system32\vp31vfw.dll |On2.com |14/02/2002 11:48:12 F:\WINDOWS\system32\vp6vfw.dll |On2.com |21/10/2003 10:49:20 F:\WINDOWS\system32\vsdata.dll |Zone Labs, LLC |24/11/2006 15:57:55 F:\WINDOWS\system32\vsfilter.dll |Gabest |08/03/2004 00:07:06 F:\WINDOWS\system32\vsinit.dll |Zone Labs, LLC |24/11/2006 15:57:55 F:\WINDOWS\system32\vsmonapi.dll |Zone Labs, LLC |24/11/2006 15:58:52 F:\WINDOWS\system32\vspubapi.dll |Zone Labs, LLC |24/11/2006 15:58:52 F:\WINDOWS\system32\vsregexp.dll |Zone Labs, LLC |24/11/2006 15:59:04 F:\WINDOWS\system32\vsutil.dll |Zone Labs, LLC |24/11/2006 15:57:55 F:\WINDOWS\system32\vsutil_loc040c.dll |Zone Labs Inc. |24/11/2006 15:59:07 F:\WINDOWS\system32\vswmi.dll |Zone Labs, LLC |24/11/2006 15:58:54 F:\WINDOWS\system32\vsxml.dll |Zone Labs, LLC |24/11/2006 15:58:54 F:\WINDOWS\system32\W32N50.dll |Printing Communications Assoc., Inc. (PCAUSA) |06/07/2005 12:58:15 F:\WINDOWS\system32\win87em.dll |COMPANY |30/08/2002 13:00:00 F:\WINDOWS\system32\WLANUTL.dll |COMPANY |06/07/2005 12:58:16 F:\WINDOWS\system32\WooDial2000.dll |France Télécom R&D |14/03/2005 00:48:00 F:\WINDOWS\system32\WSTDEC.dll |Philips Semiconductors |28/05/2005 17:51:54 F:\WINDOWS\system32\XceedBkp.dll |Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com |12/09/2006 00:10:59 F:\WINDOWS\system32\XceedCry.dll |Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com |12/09/2006 00:10:59 F:\WINDOWS\system32\xvid.dll |COMPANY |04/10/2002 07:01:42 F:\WINDOWS\system32\xvidcore.dll |COMPANY |20/12/2004 11:03:26 F:\WINDOWS\system32\xvidvfw.dll |COMPANY |20/12/2004 11:08:28 F:\WINDOWS\system32\zlcomm.dll |Zone Labs, LLC |24/11/2006 15:59:02 F:\WINDOWS\system32\zlcommdb.dll |Zone Labs, LLC |24/11/2006 15:59:02 Le volume dans le lecteur F n'a pas de nom. Le numéro de série du volume est C829-0638 Répertoire de F:\WINDOWS\system32 20/08/2004 00:09 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 24 377 065 472 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur F n'a pas de nom. Le numéro de série du volume est C829-0638 Répertoire de F:\WINDOWS\Downloaded Program Files 06/10/2006 15:12 <REP> . 06/10/2006 15:12 <REP> .. 14/03/2005 00:10 65 desktop.ini 14/10/1997 18:52 697 DirectAnimation Java Classes.osd 05/04/2005 20:30 243 hyplug.inf 05/04/2005 20:30 454 656 hyplug.ocx 20/01/2000 15:25 1 162 Microsoft XML Parser for Java.osd 22/06/2006 10:41 5 032 swflash.inf 6 fichier(s) 461 855 octets Total des fichiers listés : 6 fichier(s) 461 855 octets 2 Rép(s) 24 377 065 472 octets libres Recherche de rootkit! (Merci S!Ri) infection possible Magic.Control : un scan F-Secure BlackLight est recommandé Recherche d'infections connues Liste des programmes installes 888Bar Adobe Flash Player 9 ActiveX Adobe Reader 7.0.8 - Français Archiveur WinRAR ASUS TV FM CARD ASUS TV FM CARD ATI Control Panel ATI Display Driver AVG Anti-Spyware 7.5 Avira AntiVir PersonalEdition Classic Barre d'outils MSN BoontyBox 2.1 C-Major Audio CoreVorbis Audio Decoder (remove only) Correctif Lecteur Windows Media 9 [Voir KB885492 pour plus d'informations] Correctif pour Windows XP (KB914440) Correctif Windows XP - KB873333 Correctif Windows XP - KB873339 Correctif Windows XP - KB885250 Correctif Windows XP - KB885835 Correctif Windows XP - KB885836 Correctif Windows XP - KB886185 Correctif Windows XP - KB887472 Correctif Windows XP - KB888113 Correctif Windows XP - KB888302 Correctif Windows XP - KB890047 Correctif Windows XP - KB890175 Correctif Windows XP - KB890859 Correctif Windows XP - KB891781 Correctif Windows XP - KB893066 Correctif Windows XP - KB893086 Direct Show Ogg Vorbis Filter (remove only) DivX Player DriverGuide Toolkit e+ 48U Easy CD Creator 5 Basic FUJIFILM USB Driver Google Toolbar for Internet Explorer HijackThis 1.99.1 Hotfix for Windows XP (KB915865) Huffyuv AVI lossless video codec (Remove Only) Internet Explorer Q903235 InterVideo Home Theater jv16 PowerTools 1.2 L&H TTS3000 Français Lecteur Windows Media 10 Macromedia Shockwave Player Mega Bloc Notes 5.2.0 Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Mise à jour de sécurité pour Lecteur Windows Media (KB911564) Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565) Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) Mise à jour de sécurité pour Windows XP (KB890046) Mise à jour de sécurité pour Windows XP (KB893756) Mise à jour de sécurité pour Windows XP (KB896358) Mise à jour de sécurité pour Windows XP (KB896422) Mise à jour de sécurité pour Windows XP (KB896423) Mise à jour de sécurité pour Windows XP (KB896424) Mise à jour de sécurité pour Windows XP (KB896428) Mise à jour de sécurité pour Windows XP (KB899587) Mise à jour de sécurité pour Windows XP (KB899588) Mise à jour de sécurité pour Windows XP (KB899591) Mise à jour de sécurité pour Windows XP (KB900725) Mise à jour de sécurité pour Windows XP (KB901017) Mise à jour de sécurité pour Windows XP (KB901214) Mise à jour de sécurité pour Windows XP (KB902400) Mise à jour de sécurité pour Windows XP (KB904706) Mise à jour de sécurité pour Windows XP (KB905414) Mise à jour de sécurité pour Windows XP (KB905749) Mise à jour de sécurité pour Windows XP (KB908519) Mise à jour de sécurité pour Windows XP (KB908531) Mise à jour de sécurité pour Windows XP (KB911280) Mise à jour de sécurité pour Windows XP (KB911562) Mise à jour de sécurité pour Windows XP (KB911567) Mise à jour de sécurité pour Windows XP (KB911927) Mise à jour de sécurité pour Windows XP (KB912919) Mise à jour de sécurité pour Windows XP (KB913446) Mise à jour de sécurité pour Windows XP (KB913580) Mise à jour de sécurité pour Windows XP (KB914388) Mise à jour de sécurité pour Windows XP (KB914389) Mise à jour de sécurité pour Windows XP (KB916281) Mise à jour de sécurité pour Windows XP (KB917159) Mise à jour de sécurité pour Windows XP (KB917344) Mise à jour de sécurité pour Windows XP (KB917422) Mise à jour de sécurité pour Windows XP (KB917953) Mise à jour de sécurité pour Windows XP (KB918899) Mise à jour de sécurité pour Windows XP (KB919007) Mise à jour de sécurité pour Windows XP (KB920213) Mise à jour de sécurité pour Windows XP (KB920214) Mise à jour de sécurité pour Windows XP (KB920670) Mise à jour de sécurité pour Windows XP (KB920683) Mise à jour de sécurité pour Windows XP (KB920685) Mise à jour de sécurité pour Windows XP (KB921398) Mise à jour de sécurité pour Windows XP (KB921883) Mise à jour de sécurité pour Windows XP (KB922616) Mise à jour de sécurité pour Windows XP (KB922760) Mise à jour de sécurité pour Windows XP (KB922819) Mise à jour de sécurité pour Windows XP (KB923191) Mise à jour de sécurité pour Windows XP (KB923414) Mise à jour de sécurité pour Windows XP (KB923980) Mise à jour de sécurité pour Windows XP (KB924191) Mise à jour de sécurité pour Windows XP (KB924270) Mise à jour de sécurité pour Windows XP (KB924496) Mise à jour de sécurité pour Windows XP (KB925486) Mise à jour pour Windows XP (KB894391) Mise à jour pour Windows XP (KB898461) Mise à jour pour Windows XP (KB900485) Mise à jour pour Windows XP (KB910437) Mise à jour pour Windows XP (KB916595) Mise à jour pour Windows XP (KB920872) Mise à jour pour Windows XP (KB922582) MSN Messenger 7.0 MSN Messenger 7.5 Neuf - Kit de connexion O&O Defrag Professional Edition OIN Pro Evolution Soccer 6 Pro Evolution Soccer 6 SafeCast Shared Components Safety Alert 2006 Shareaza version 2.2.1.0 Shockwave Spybot - Search & Destroy 1.4 TeamSpeak 2 RC2 TeamSpeak 2 Server RC2 WebFldrs XP Windows Genuine Advantage Notifications (KB905474) Windows Installer 3.1 (KB893803) Windows Installer 3.1 (KB893803) Windows Internet Explorer 7 Windows Media Format Runtime Windows XP Service Pack 2 Wolfenstein - Enemy Territory xp-AntiSpy 3.96-4 Yahoo! Toolbar Yahoo! Toolbar avec bloqueur de fenêtres pop-up ZoneAlarm Le volume dans le lecteur F n'a pas de nom. Le numéro de série du volume est C829-0638 Répertoire de F:\Program Files 27/11/2006 02:00 <REP> . 27/11/2006 02:00 <REP> .. 31/08/2006 05:41 <REP> 7-Zip 28/09/2005 10:56 185 856 7za.exe 07/06/2006 14:41 <REP> Adobe 06/06/2006 21:46 <REP> Alcohol Soft 26/11/2006 23:31 <REP> AntiVir PersonalEdition Classic 17/11/2006 00:34 <REP> Boonty 17/11/2006 00:33 <REP> BoontyGames 15/03/2005 13:36 <REP> Common Files 23/06/2006 22:28 <REP> directx 18/10/2006 20:40 <REP> Diskeeper Corporation 18/01/2006 17:57 <REP> DivX 14/02/2006 20:04 <REP> DriverGuide Toolkit 23/11/2006 19:47 <REP> E-Press 24/11/2006 16:20 <REP> Fichiers communs 18/10/2006 14:40 <REP> Google 23/11/2006 22:43 <REP> Grisoft 26/11/2006 23:12 <REP> HijackThis); 25/11/2006 17:29 <REP> Internet Explorer 22/10/2006 16:24 <REP> JeffProd 31/01/2006 20:09 <REP> jv16 PowerTools 2005 30/10/2006 15:22 <REP> KONAMI 04/03/2006 21:19 <REP> MB Softs 17/11/2006 15:18 <REP> Mes Jeux Téléchargés 08/08/2006 15:06 <REP> Messenger 14/03/2005 00:12 <REP> microsoft frontpage 09/04/2006 17:21 <REP> Microsoft Picture It! PhotoPub 06/08/2006 21:48 <REP> Movie Maker 14/03/2005 00:08 <REP> MSN 25/07/2006 13:51 <REP> MSN Apps 14/03/2005 00:07 <REP> MSN Gaming Zone 07/08/2006 09:05 <REP> MSN Messenger 06/08/2006 21:44 <REP> NetMeeting 14/11/2006 20:12 <REP> Neuf 20/11/2006 17:28 <REP> OO Software 01/01/2006 12:24 <REP> OpenOffice.org 2.0 08/08/2006 14:30 <REP> Outlook Express 05/10/2006 16:14 <REP> RegCleaner 04/08/2006 11:18 774 144 RngInterstitial.dll 21/10/2006 19:01 <REP> Roxio 14/03/2005 00:10 <REP> Services en ligne 18/10/2006 16:42 <REP> Shareaza 23/11/2006 20:54 <REP> Spybot - Search & Destroy 27/08/2006 16:19 56 239 svchosts.tbe 06/02/2006 21:06 <REP> Teamspeak2_RC2 02/10/2006 21:48 <REP> The All-Seeing Eye 23/11/2006 17:16 <REP> VSAdd-in 06/08/2006 21:48 <REP> Windows Media Player 06/08/2006 21:44 <REP> Windows NT 10/07/2005 09:19 <REP> WinRAR 07/05/2005 12:17 <REP> WinZip 06/10/2006 21:37 <REP> Wolfenstein - Enemy Territory 07/10/2006 21:44 424 136 wunauclt.exe 14/03/2005 00:12 <REP> xerox 26/11/2006 18:44 <REP> xp-AntiSpy 23/11/2006 16:27 <REP> Yahoo! 24/11/2006 15:58 <REP> Zone Labs 24/11/2006 16:23 <REP> Zoom Player 4 fichier(s) 1 440 375 octets 55 Rép(s) 24 377 057 280 octets libres Le volume dans le lecteur F n'a pas de nom. Le numéro de série du volume est C829-0638 Répertoire de F:\Program Files\fichiers communs 24/11/2006 16:20 <REP> . 24/11/2006 16:20 <REP> .. 21/10/2006 19:02 <REP> Adaptec Shared 31/08/2006 05:41 <REP> Adobe 31/05/2005 13:47 <REP> BOONTY Shared 05/04/2005 20:30 <REP> Hypnotizer 19/06/2005 14:51 <REP> InstallShield 28/05/2005 17:51 <REP> InterVideo 21/03/2005 19:56 <REP> Macrovision Shared 23/11/2006 21:43 <REP> Microsoft Shared 14/03/2005 00:09 <REP> MSSoap 22/10/2005 18:55 <REP> Oberon Media 13/03/2005 23:54 <REP> ODBC 29/05/2006 15:57 <REP> Panda Software 31/08/2006 05:43 <REP> Real 14/03/2005 00:09 <REP> Services 13/03/2005 23:54 <REP> SpeechEngines 23/11/2006 22:01 <REP> Symantec Shared 08/08/2006 14:30 <REP> System 23/11/2006 17:26 <REP> {38290638-095F-1036-1023-020211050021} 23/11/2006 17:01 <REP> {C8290638-095F-1036-1023-020211050021} 0 fichier(s) 0 octets 21 Rép(s) 24 377 057 280 octets libres Le volume dans le lecteur F n'a pas de nom. Le numéro de série du volume est C829-0638 Répertoire de F:\Program Files\fichiers communs\Microsoft Shared\Web Folders 01/01/2006 12:21 <REP> . 01/01/2006 12:21 <REP> .. 16/07/2005 15:03 <REP> 1033 01/01/2006 12:21 <REP> 1036 11/07/2003 09:15 1 292 872 MSONSEXT.DLL 03/06/1999 14:09 122 937 MSOWS409.DLL 07/03/2001 09:00 127 033 MSOWS40c.DLL 11/07/2003 01:25 80 448 PKMWS.DLL 4 fichier(s) 1 623 290 octets 4 Rép(s) 24 377 057 280 octets libres Le volume dans le lecteur F n'a pas de nom. Le numéro de série du volume est C829-0638 Répertoire de F:\Program Files\common files 15/03/2005 13:36 <REP> . 15/03/2005 13:36 <REP> .. 08/09/2005 17:11 <REP> System 0 fichier(s) 0 octets 3 Rép(s) 24 377 057 280 octets libres Le volume dans le lecteur F n'a pas de nom. Le numéro de série du volume est C829-0638 Répertoire de F:\ 27/02/2004 09:00 234 016 scaleo.exe 1 fichier(s) 234 016 octets 0 Rép(s) 24 377 057 280 octets libres donc voila tout es fait apres reste a savoir si ses bien fait, j'espere a ne pas le refaire car faire l 'analyse avec avg as en mode sans echec ma pris 1h30 donc ses chiant je compe encore sur vous pour m aider a fignoler mon probleme. merci de votre patience MICKA
  22. micka
    ok bien recu je me jette dessus,et hoppppppp
  23. micka
    bonsoir j 'attend de vos nouvelle meci
  24. micka
    rebonsoir a vous voici dite moi si je l ai bien mis en vundo.exe et si c'est bon Voici Logfile of HijackThis v1.99.1 Scan saved at 23:12:11, on 26/11/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0011) Running processes: F:\WINDOWS\System32\smss.exe F:\WINDOWS\SYSTEM32\winlogon.exe F:\WINDOWS\system32\services.exe F:\WINDOWS\system32\lsass.exe F:\WINDOWS\System32\Ati2evxx.exe F:\WINDOWS\system32\svchost.exe F:\WINDOWS\System32\svchost.exe F:\WINDOWS\system32\spoolsv.exe F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe F:\WINDOWS\System32\drivers\CDAC11BA.EXE F:\WINDOWS\System32\oodag.exe F:\WINDOWS\System32\svchost.exe F:\WINDOWS\SYSTEM32\Ati2evxx.exe F:\WINDOWS\Explorer.EXE F:\WINDOWS\system32\ctfmon.exe F:\WINDOWS\system32\wscntfy.exe F:\Program Files\Internet Explorer\IEXPLORE.EXE F:\Program Files\The All-Seeing Eye\eye.exe F:\Program Files\HijackThis);\Vundo.exe.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: (no name) - {013A653B-49A6-4f76-8B68-E4875EA6BA54} - F:\WINDOWS\system32\uxobvcjv.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: (no name) - {031F120A-BBAF-45d8-B306-375F2A6B9398} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - F:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file) O2 - BHO: (no name) - {755bbd1a-aa59-456c-afeb-b4c42c4dcb6f} - F:\WINDOWS\system32\ixt0.dll (file missing) O2 - BHO: (no name) - {840121111101411911080111101077109114053} - (no file) O2 - BHO: (no name) - {8E6A05AC-EB55-4BC6-87F2-072FF779449A} - F:\WINDOWS\system32\pmnnm.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - F:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - f:\program files\google\googletoolbar1.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - F:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O2 - BHO: (no name) - {C004DEC2-2623-438e-9CA2-C9043AB28508} - (no file) O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: (no name) - {1CE4EE89-2D5C-4361-AF3B-D902AB545381} - (no file) O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - F:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f:\program files\google\googletoolbar1.dll O3 - Toolbar: (no name) - {C004DEC2-2623-438e-9CA2-C9043AB28508} - (no file) O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZS O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwa...ash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{364D045E-BCA0-495F-A59B-0111D4F8599E}: NameServer = 80.10.246.1,80.10.246.139 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "F:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: 30.dll O20 - Winlogon Notify: pmnnm - F:\WINDOWS\system32\pmnnm.dll O20 - Winlogon Notify: WgaLogon - F:\WINDOWS\SYSTEM32\WgaLogon.dll O20 - Winlogon Notify: winzoa32 - winzoa32.dll (file missing) O23 - Service: Ati HotKey Poller - Unknown owner - F:\WINDOWS\System32\Ati2evxx.exe O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Boonty Games - BOONTY - F:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: C-DillaCdaC11BA - Macrovision - F:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - F:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing) O23 - Service: O&O Defrag - O&O Software GmbH - F:\WINDOWS\System32\oodag.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - F:\WINDOWS\system32\ZoneLabs\vsmon.exe
  25. micka
    ok ses repartis je vais sa ,merci a vous
×
×
  • Créer...