Aller au contenu

MOULOUD

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    2

  • Inscription

  • Dernière visite

Autres informations

  • Mes langues
    FRANCAIS

MOULOUD's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. MOULOUD
    TEST - 06-12-12 18:13:28,19 Service Pack 2 ComboFix 06.11.27W - Running from: "E:\UTILITAIRES\Antivirus" (((((((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) C:\WINDOWS\system32\wintsvsu.exe C:\Program Files\Fichiers communs\Yazzle1122OinUninstaller.exe C:\Program Files\Fichiers communs\{545AE1C5-0958-1036-0831-060623060021} ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Folders Quarantined: C:\QooBox\Purity\Documents and Settings\TEST.ZEPHIR\Application Data\CROSOF~1 C:\QooBox\Purity\Documents and Settings\TEST.ZEPHIR\Mes documents\SSEMBL~1 C:\QooBox\Purity\Documents and Settings\TEST.ZEPHIR\Mes documents\YSTEM~1 C:\QooBox\Purity\Documents and Settings\TEST.ZEPHIR\Mes documents\SSEMBL~1\t?skmgr.exe C:\QooBox\Purity\WINDOWS\RACLE~1 C:\QooBox\Purity\WINDOWS\RACLE~1\nopdb.exe C:\QooBox\Purity\WINDOWS\RACLE~1\RACLE~1 ((((((((((((((((((((((((((((((( Files Created from 2006-11-12 to 2006-12-12 )))))))))))))))))))))))))))))))))) 2006-12-12 09:52 58,880 --a------ C:\WINDOWS\system32\dfgu.dll 2006-12-11 16:59 2,560 --------- C:\WINDOWS\system32\drivers\cdralw2k.sys 2006-12-11 16:59 2,432 --------- C:\WINDOWS\system32\drivers\cdr4_xp.sys 2006-12-11 16:59 <REP> d-------- C:\WINDOWS\system32\IOSUBSYS 2006-12-11 09:27 <REP> d--h-c--- C:\WINDOWS\ie7 2006-12-08 10:44 <REP> d-------- C:\Program Files\Fichiers communs\Altova 2006-12-07 14:58 <REP> dr-h----- C:\Documents and Settings\TEST.ZEPHIR\Recent 2006-12-01 15:42 <REP> d-------- C:\Program Files\Hijackthis Version Fran‡aise 2006-12-01 10:03 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys 2006-12-01 09:58 <REP> d-------- C:\Program Files\HijackThis 2006-11-29 09:53 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2006-11-28 12:43 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\PHP Designer 2007 2006-11-28 10:56 <REP> d-------- C:\WINDOWS\SxsCaPendDel 2006-11-27 12:16 <REP> d-------- C:\WINDOWS\Sun 2006-11-27 12:16 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Sun 2006-11-24 09:15 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\My Documents 2006-11-24 09:14 <REP> d--h----- C:\Program Files\Zero G Registry 2006-11-24 09:14 <REP> d--h----- C:\Documents and Settings\TEST.ZEPHIR\InstallAnywhere 2006-11-23 09:02 <REP> d-------- C:\WINDOWS\pss 2006-11-17 13:50 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll 2006-11-17 13:45 5,248 --a------ C:\WINDOWS\system32\drivers\d344prt.sys 2006-11-17 13:45 137,216 --a------ C:\WINDOWS\system32\drivers\d344bus.sys 2006-11-17 13:45 <REP> d-------- C:\Program Files\D-Tools 2006-11-17 11:12 <REP> d-------- C:\Program Files\VERITAS 2006-11-17 09:35 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Ahead 2006-11-17 09:34 <REP> d-------- C:\Program Files\Fichiers communs\Ahead 2006-11-17 09:30 96,256 --a------ C:\WINDOWS\system32\VB5FR.dll 2006-11-17 09:30 73,216 --a------ C:\WINDOWS\ST5UNST.EXE 2006-11-17 09:30 29,696 --a------ C:\WINDOWS\system32\VB5StKit.dll 2006-11-16 17:02 <REP> d-------- C:\Program Files\Fichiers communs\VERITAS Shared 2006-11-16 15:18 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Quest Software 2006-11-16 13:33 <REP> d-------- C:\WINDOWS\system32\QuickTime 2006-11-16 12:30 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\IDMComp 2006-11-16 12:18 <REP> d-------- C:\Program Files\Adobe 2006-11-16 12:16 <REP> d-------- C:\Program Files\Fichiers communs\Adobe Systems Shared 2006-11-16 12:16 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Adobe Systems 2006-11-16 10:09 <REP> d-------- C:\Program Files\Fichiers communs\Macromedia 2006-11-16 10:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Macromedia 2006-11-16 09:28 <REP> d-------- C:\Program Files\Windows Media Connect 2 2006-11-16 09:27 <REP> d-------- C:\WINDOWS\system32\LogFiles 2006-11-16 09:27 <REP> d-------- C:\WINDOWS\system32\drivers\UMDF 2006-11-15 17:23 1,396,736 --a------ C:\WINDOWS\system32\php4ts.dll 2006-11-15 17:18 <REP> d-------- C:\Program Files\WinRAR 2006-11-15 15:41 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Contacts 2006-11-15 15:40 <REP> d----c--- C:\WINDOWS\system32\DRVSTORE 2006-11-15 15:40 <REP> d-------- C:\Program Files\MSN Messenger 2006-11-15 15:06 <REP> d-------- C:\j2sdk1.4.2 2006-11-15 14:26 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\AdobeUM 2006-11-15 14:25 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Adobe 2006-11-15 14:24 <REP> d-------- C:\Program Files\Fichiers communs\Adobe 2006-11-15 14:24 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Adobe 2006-11-15 12:25 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Macromedia 2006-11-15 12:06 <REP> d-------- C:\WINDOWS\WBEM 2006-11-15 12:06 <REP> d-------- C:\WINDOWS\system32\fr-fr 2006-11-15 12:05 121,856 --------- C:\WINDOWS\system32\xmllite.dll 2006-11-15 12:05 <REP> d-------- C:\WINDOWS\network diagnostic 2006-11-15 11:56 <REP> d-------- C:\Program Files\V9 2006-11-15 11:47 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Thunderbird 2006-11-15 11:41 107,132 --a------ C:\WINDOWS\UninstallThunderbird.exe 2006-11-15 11:40 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Mozilla 2006-11-15 11:39 <REP> d-------- C:\Mozilla Thunderbird 2006-11-15 10:50 <REP> d-------- C:\Prod 2006-11-15 10:48 <REP> d-------- C:\Program Files\Microsoft Visual Studio 2006-11-15 10:48 <REP> d-------- C:\Program Files\Fichiers communs\Designer 2006-11-15 10:46 <REP> d-------- C:\WINDOWS\ShellNew 2006-11-15 10:44 <REP> d-------- C:\WINDOWS\Twain32 2006-11-15 10:44 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Microsoft Web Folders 2006-11-15 10:36 <REP> d-------- C:\V9 2006-11-15 10:34 <REP> d-------- C:\Program Files\MSXML 4.0 2006-11-15 10:34 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Software 2006-11-15 10:33 378,880 --a------ C:\WINDOWS\system32\KXauth.dll 2006-11-15 10:33 135,168 --a------ C:\WINDOWS\system32\KXproc.dll 2006-11-15 10:32 <REP> d-------- C:\WINDOWS\logs 2006-11-15 10:23 <REP> d-------- C:\Program Files\Oracle 2006-11-15 09:10 <REP> d-------- C:\WINDOWS\SchCache 2006-11-14 17:52 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Google 2006-11-14 17:51 83,168 --a------ C:\WINDOWS\system32\S32EVNT1.DLL 2006-11-14 17:51 82,832 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.SYS 2006-11-14 17:51 <REP> d-------- C:\Program Files\Symantec AntiVirus 2006-11-14 17:51 <REP> d-------- C:\Program Files\Symantec 2006-11-14 17:51 <REP> d-------- C:\Program Files\Fichiers communs\Symantec Shared 2006-11-14 17:51 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Symantec 2006-11-14 17:16 <REP> d-------- C:\PartitionMagic 8.0 2006-11-14 17:10 <REP> dr-h----- C:\Documents and Settings\TEST.ZEPHIR\SendTo 2006-11-14 17:10 <REP> dr-h----- C:\Documents and Settings\TEST.ZEPHIR\Application Data\. 2006-11-14 17:10 <REP> dr-h----- C:\Documents and Settings\TEST.ZEPHIR\Application Data 2006-11-14 17:10 <REP> dr------- C:\Documents and Settings\TEST.ZEPHIR\Mes documents 2006-11-14 17:10 <REP> dr------- C:\Documents and Settings\TEST.ZEPHIR\Menu D‚marrer 2006-11-14 17:10 <REP> dr------- C:\Documents and Settings\TEST.ZEPHIR\Favoris 2006-11-14 17:10 <REP> d--hs---- C:\Documents and Settings\TEST.ZEPHIR\Cookies 2006-11-14 17:10 <REP> d--h----- C:\Documents and Settings\TEST.ZEPHIR\Voisinage r‚seau 2006-11-14 17:10 <REP> d--h----- C:\Documents and Settings\TEST.ZEPHIR\Voisinage d'impression 2006-11-14 17:10 <REP> d--h----- C:\Documents and Settings\TEST.ZEPHIR\ModŠles 2006-11-14 17:10 <REP> d--h----- C:\Documents and Settings\TEST.ZEPHIR\Local Settings 2006-11-14 17:10 <REP> d---s---- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Microsoft 2006-11-14 17:10 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Bureau 2006-11-14 17:10 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\Identities 2006-11-14 17:10 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\ATI 2006-11-14 17:10 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\Application Data\.. 2006-11-14 17:10 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\.. 2006-11-14 17:10 <REP> d-------- C:\Documents and Settings\TEST.ZEPHIR\. 2006-11-14 17:06 <REP> d--hs---- C:\WINDOWS\CSC 2006-11-14 16:52 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage 2006-11-14 16:51 <REP> d-------- C:\WINDOWS\system32\PreInstall 2006-11-14 16:50 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Google 2006-11-14 16:49 <REP> d-------- C:\WINDOWS\system32\SoftwareDistribution 2006-11-14 16:46 <REP> d-------- C:\WINDOWS\system32\appmgmt 2006-11-14 16:38 9,600 --a------ C:\WINDOWS\system32\drivers\hidusb.sys 2006-11-14 16:38 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys 2006-11-14 16:38 21,504 --a------ C:\WINDOWS\system32\hidserv.dll 2006-11-14 16:38 14,848 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys 2006-11-14 16:38 12,288 --a------ C:\WINDOWS\system32\drivers\mouhid.sys (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2006-12-12 18:13 -------- d-------- C:\Program Files\Fichiers communs 2006-12-11 16:59 -------- d-------- C:\Program Files\Google 2006-12-11 09:28 -------- d-------- C:\Program Files\Internet Explorer 2006-11-16 12:32 -------- d--h----- C:\Program Files\InstallShield Installation Information 2006-11-16 12:26 -------- d-------- C:\Program Files\Java 2006-11-16 09:28 -------- d-------- C:\Program Files\Windows Media Player 2006-11-15 15:40 -------- d-------- C:\Program Files\Fichiers communs\Microsoft Shared 2006-11-15 10:44 -------- d-------- C:\Program Files\microsoft frontpage 2006-11-14 16:47 -------- d-------- C:\Program Files\Fichiers communs\InstallShield 2006-11-14 16:46 -------- d-------- C:\Program Files\Roxio 2006-11-09 19:44 -------- d-------- C:\Program Files\CyberLink 2006-11-09 19:44 -------- d-------- C:\Program Files\Broadcom 2006-11-09 19:44 -------- d-------- C:\Program Files\BAE 2006-11-09 19:43 -------- d-------- C:\Program Files\ATI Technologies 2006-11-09 19:41 -------- d-------- C:\Program Files\Outlook Express 2006-11-09 19:41 -------- d-------- C:\Program Files\Fichiers communs\System 2006-11-09 19:41 -------- d-------- C:\Program Files\Analog Devices 2006-11-09 19:40 -------- d-------- C:\Program Files\Messenger 2006-11-09 19:39 -------- d-------- C:\Program Files\Fichiers communs\Java 2006-11-09 19:27 77824 --a------ C:\WINDOWS\setpwr32.exe 2006-11-07 21:03 6049280 --------- C:\WINDOWS\system32\ieframe.dll 2006-11-07 21:03 50688 --------- C:\WINDOWS\system32\msfeedsbs.dll 2006-11-07 21:03 458752 --------- C:\WINDOWS\system32\msfeeds.dll 2006-11-07 21:03 413696 --a------ C:\WINDOWS\system32\vbscript.dll 2006-11-07 21:03 231424 --a------ C:\WINDOWS\system32\webcheck.dll 2006-11-07 21:03 180736 --------- C:\WINDOWS\system32\ieui.dll 2006-11-07 21:03 156160 --a------ C:\WINDOWS\system32\msls31.dll 2006-11-07 03:27 382976 --a------ C:\WINDOWS\system32\iedkcs32.dll 2006-11-07 03:27 229376 --a------ C:\WINDOWS\system32\ieaksie.dll 2006-11-07 03:26 71680 --a------ C:\WINDOWS\system32\admparse.dll 2006-11-07 03:26 55296 --a------ C:\WINDOWS\system32\iesetup.dll 2006-11-07 03:26 54784 --a------ C:\WINDOWS\system32\ie4uinit.exe 2006-11-07 03:26 43008 --a------ C:\WINDOWS\system32\iernonce.dll 2006-11-07 03:26 152064 --a------ C:\WINDOWS\system32\ieakeng.dll 2006-11-07 03:26 13312 --a------ C:\WINDOWS\system32\ieudinit.exe 2006-11-07 03:26 123904 --a------ C:\WINDOWS\system32\advpack.dll 2006-11-07 03:25 161792 --a------ C:\WINDOWS\system32\ieakui.dll 2006-11-04 14:14 1245696 --a------ C:\WINDOWS\system32\msxml4.dll 2006-10-24 20:35 8292352 --a------ C:\WINDOWS\system32\wmploc.dll 2006-10-24 20:14 99840 --a------ C:\WINDOWS\system32\wmpshell.dll 2006-10-24 20:14 272384 --a------ C:\WINDOWS\system32\wmerror.dll 2006-10-24 20:12 7680 --a------ C:\WINDOWS\system32\asferror.dll 2006-10-18 23:04 44032 --------- C:\WINDOWS\system32\wpdshextres.dll 2006-10-18 22:58 8704 --------- C:\WINDOWS\system32\wdfmgr.exe 2006-10-18 22:58 8704 --------- C:\WINDOWS\system32\uwdf.exe 2006-10-18 22:47 991744 --a------ C:\WINDOWS\system32\drmv2clt.dll 2006-10-18 22:47 937984 --a------ C:\WINDOWS\system32\WMNetMgr.dll 2006-10-18 22:47 767488 --------- C:\WINDOWS\system32\WMVSENCD.dll 2006-10-18 22:47 757248 --a------ C:\WINDOWS\system32\WMADMOD.dll 2006-10-18 22:47 656896 --------- C:\WINDOWS\system32\WMVXENCD.dll 2006-10-18 22:47 63488 --------- C:\WINDOWS\system32\wpdmtpus.dll 2006-10-18 22:47 629760 --------- C:\WINDOWS\system32\wpd_ci.dll 2006-10-18 22:47 613376 --------- C:\WINDOWS\system32\wmpmde.dll 2006-10-18 22:47 603648 --a------ C:\WINDOWS\system32\WMSPDMOD.dll 2006-10-18 22:47 542720 --a------ C:\WINDOWS\system32\blackbox.dll 2006-10-18 22:47 535040 --------- C:\WINDOWS\system32\wmdrmsdk.dll 2006-10-18 22:47 429056 --------- C:\WINDOWS\system32\wmdrmdev.dll 2006-10-18 22:47 414208 --a------ C:\WINDOWS\system32\msscp.dll 2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmvdmoe2.dll 2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmvdmod.dll 2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmsdmoe2.dll 2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmsdmod.dll 2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\MPG4DMOD.dll 2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\MP4SDMOD.dll 2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\MP43DMOD.dll 2006-10-18 22:47 4096 --------- C:\WINDOWS\system32\WMVADVE.DLL 2006-10-18 22:47 4096 --------- C:\WINDOWS\system32\WMVADVD.dll 2006-10-18 22:47 4096 --------- C:\WINDOWS\system32\wdfapi.dll 2006-10-18 22:47 37376 --a------ C:\WINDOWS\system32\wmdmps.dll 2006-10-18 22:47 35840 --------- C:\WINDOWS\system32\wpdconns.dll 2006-10-18 22:47 356352 --------- C:\WINDOWS\system32\wpdsp.dll 2006-10-18 22:47 348672 --------- C:\WINDOWS\system32\wmdrmnet.dll 2006-10-18 22:47 33792 --a------ C:\WINDOWS\system32\wmdmlog.dll 2006-10-18 22:47 321536 --a------ C:\WINDOWS\system32\mswmdm.dll 2006-10-18 22:47 317440 --------- C:\WINDOWS\system32\MP4SDECD.dll 2006-10-18 22:47 314880 --a------ C:\WINDOWS\system32\wmpdxm.dll 2006-10-18 22:47 295936 --------- C:\WINDOWS\system32\wmpeffects.dll 2006-10-18 22:47 284160 --------- C:\WINDOWS\system32\PortableDeviceApi.dll 2006-10-18 22:47 276992 --------- C:\WINDOWS\system32\audiodev.dll 2006-10-18 22:47 27136 --a------ C:\WINDOWS\system32\mspmsnsv.dll 2006-10-18 22:47 2603008 --------- C:\WINDOWS\system32\WpdShext.dll 2006-10-18 22:47 259072 --------- C:\WINDOWS\system32\MPG4DECD.dll 2006-10-18 22:47 259072 --------- C:\WINDOWS\system32\MP43DECD.dll 2006-10-18 22:47 2450944 --a------ C:\WINDOWS\system32\wmvcore.dll 2006-10-18 22:47 242688 --a------ C:\WINDOWS\system32\wmpasf.dll 2006-10-18 22:47 229376 --a------ C:\WINDOWS\system32\cewmdm.dll 2006-10-18 22:47 222208 --a------ C:\WINDOWS\system32\WMASF.dll 2006-10-18 22:47 212992 --------- C:\WINDOWS\system32\MFPLAT.dll 2006-10-18 22:47 211456 --a------ C:\WINDOWS\system32\qasf.dll 2006-10-18 22:47 204288 --------- C:\WINDOWS\system32\wmpsrcwp.dll 2006-10-18 22:47 199168 --------- C:\WINDOWS\system32\PortableDeviceWMDRM.dll 2006-10-18 22:47 179712 --a------ C:\WINDOWS\system32\msnetobj.dll 2006-10-18 22:47 175616 --a------ C:\WINDOWS\system32\mspmsp.dll 2006-10-18 22:47 166912 --------- C:\WINDOWS\system32\PortableDeviceTypes.dll 2006-10-18 22:47 1661440 --------- C:\WINDOWS\system32\wmpencen.dll 2006-10-18 22:47 1574912 --------- C:\WINDOWS\system32\WMVENCOD.dll 2006-10-18 22:47 157184 --a------ C:\WINDOWS\system32\wmidx.dll 2006-10-18 22:47 154624 --------- C:\WINDOWS\system32\wpdmtp.dll 2006-10-18 22:47 1543680 --------- C:\WINDOWS\system32\WMVDECOD.dll 2006-10-18 22:47 1382912 --------- C:\WINDOWS\system32\WMVSDECD.dll 2006-10-18 22:47 133632 --------- C:\WINDOWS\system32\WPDShServiceObj.dll 2006-10-18 22:47 1329152 --a------ C:\WINDOWS\system32\WMSPDMOE.dll 2006-10-18 22:47 132096 --------- C:\WINDOWS\system32\PortableDeviceWiaCompat.dll 2006-10-18 22:47 130048 --------- C:\WINDOWS\system32\wmpps.dll 2006-10-18 22:47 11264 --a------ C:\WINDOWS\system32\LAPRXY.dll 2006-10-18 22:47 1117696 --a------ C:\WINDOWS\system32\WMADMOE.dll 2006-10-18 22:47 101888 --------- C:\WINDOWS\system32\PortableDeviceClassExtension.dll 2006-10-18 21:03 100864 --a------ C:\WINDOWS\system32\logagent.exe 2006-10-18 21:00 38528 --------- C:\WINDOWS\system32\drivers\wpdusb.sys 2006-10-18 21:00 249856 --------- C:\WINDOWS\system32\drmupgds.exe 2006-10-18 21:00 17408 --------- C:\WINDOWS\system32\wpdshextautoplay.exe 2006-10-17 12:06 78336 --a------ C:\WINDOWS\system32\ieencode.dll 2006-10-17 12:05 40960 --a------ C:\WINDOWS\system32\licmgr10.dll 2006-10-17 12:05 206336 --------- C:\WINDOWS\system32\WinFXDocObj.exe 2006-10-17 12:05 105984 --a------ C:\WINDOWS\system32\url.dll 2006-10-17 12:04 101376 --a------ C:\WINDOWS\system32\occache.dll 2006-10-17 12:03 17408 --a------ C:\WINDOWS\system32\corpol.dll 2006-10-17 11:58 61952 --------- C:\WINDOWS\system32\icardie.dll 2006-10-17 11:58 12288 --------- C:\WINDOWS\system32\msfeedssync.exe 2006-10-17 11:57 36352 --a------ C:\WINDOWS\system32\imgutil.dll 2006-10-17 11:57 266752 --------- C:\WINDOWS\system32\iertutil.dll 2006-10-17 11:56 45568 --a------ C:\WINDOWS\system32\mshta.exe 2006-10-17 11:28 48128 --a------ C:\WINDOWS\system32\mshtmler.dll 2006-10-17 11:27 380928 --------- C:\WINDOWS\system32\ieapfltr.dll 2006-10-13 13:36 65536 --a------ C:\WINDOWS\system32\nwwks.dll 2006-10-13 13:36 64000 --a------ C:\WINDOWS\system32\nwapi32.dll 2006-10-13 13:36 145920 --a------ C:\WINDOWS\system32\nwprovau.dll 2006-10-13 11:23 163584 --a------ C:\WINDOWS\system32\drivers\nwrdr.sys 2006-10-02 15:28 312128 --------- C:\WINDOWS\system32\msdelta.dll 2006-09-28 20:13 95344 --------- C:\WINDOWS\system32\WUDFCoinstaller.dll 2006-09-28 18:56 55808 --------- C:\WINDOWS\system32\WudfSvc.dll 2006-09-28 18:56 316416 --------- C:\WINDOWS\system32\WUDFx.dll 2006-09-28 18:56 165376 --------- C:\WINDOWS\system32\WudfPlatform.dll 2006-09-28 18:56 146432 --------- C:\WINDOWS\system32\WudfHost.exe 2006-09-25 17:58 23856 --a------ C:\WINDOWS\system32\spupdsvc.exe 2006-09-13 06:03 1084416 --a------ C:\WINDOWS\system32\msxml3.dll (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries are not shown [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.908.5008\\GoogleToolbarNotifier.exe" "ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe" "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="\"C:\\Program Files\\Fichiers communs\\Ahead\\Lib\\NMBgMonitor.exe\"" "Toae"="\"C:\\WINDOWS\\RACLE~1\\nopdb.exe\" -vt ndrv" "Wlizvt"="C:\\Documents and Settings\\TEST.ZEPHIR\\Mes documents\\?ssembly\\t?skmgr.exe" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_09\\bin\\jusched.exe\"" "SoundMAXPnP"="C:\\Program Files\\Analog Devices\\Core\\smax4pnp.exe" "ATICCC"="\"C:\\Program Files\\ATI Technologies\\ATI.ACE\\cli.exe\" runtime -Delay" "ISUSPM Startup"="C:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\UPDATE~1\\ISUSPM.exe -startup" "Google Desktop Search"="\"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup" "ccApp"="\"C:\\Program Files\\Fichiers communs\\Symantec Shared\\ccApp.exe\"" "vptray"="C:\\PROGRA~1\\SYMANT~1\\VPTray.exe" "Picasa Media Detector"="D:\\Picasa2\\PicasaMediaDetector.exe" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL] "Installed"="1" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI] "NoChange"="1" "Installed"="1" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS] "Installed"="1" [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components] "DeskHtmlVersion"=dword:00000110 "DeskHtmlMinorVersion"=dword:00000005 "Settings"=dword:00000001 "GeneralFlags"=dword:00000001 [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Ma page d'accueil" "Flags"=dword:00000002 "Position"=hex:2c,00,00,00,aa,00,00,00,00,00,00,00,56,04,00,00,de,03,00,00,00,\ 00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00 "CurrentState"=hex:04,00,00,40 "OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\ ff,ff,04,00,00,00 "RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\ 00,00,01,00,00,00 [HKEY_USERS\.default\software\microsoft\windows\currentversion\run] "CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EXE" [HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run] "CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EXE" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload] "PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" "CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" "WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" "SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" "WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DVDLauncher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DVDLauncher" "hkey"="HKLM" "command"="\"C:\\Program Files\\CyberLink\\PowerDVD\\DVDLauncher.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="issch" "hkey"="HKLM" "command"="\"C:\\Program Files\\Fichiers communs\\InstallShield\\UpdateService\\issch.exe\" -start" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NeroCheck" "hkey"="HKLM" "command"="C:\\Program Files\\Fichiers communs\\Ahead\\Lib\\NeroCheck.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" Completion time: 06-12-12 18:13:55.58 C:\ComboFix.txt ... 06-12-12 18:13 merci d'avance pour ton aide
  2. MOULOUD
    Salut à tous. Mon pc est infecté par ...jenesaisquoi mais c est lourd. Le problème : lancement d'une fenetre IE intempestive proposant soit system doctor 2006, soit Winantivirus pro 2006 (ad oinadserver.com) J'ai donc effectué une analyse avec antivir en mode sans échec et une analyse hijackthis comme s'est expliqué sur le site. Je vous fais donc part du rapport. Logfile of HijackThis v1.99.1 Scan saved at 14:57:17, on 05/12/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5700.0007) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\spoolsv.exe D:\AntiVir PersonalEdition Classic\sched.exe D:\AntiVir PersonalEdition Classic\avguard.exe D:\Apache Group\Apache2\bin\Apache.exe C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe D:\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Symantec AntiVirus\DefWatch.exe D:\MySQL\MySQL Server 4.1\bin\mysqld-nt.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Symantec AntiVirus\SavRoam.exe C:\Program Files\Symantec AntiVirus\Rtvscan.exe C:\Program Files\VERITAS\Backup Exec\RANT\beremote.exe C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\PROGRA~1\SYMANT~1\VPTray.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe D:\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe D:\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe D:\Apache Group\Apache2\bin\ApacheMonitor.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe D:\Apache Group\Apache2\bin\Apache.exe C:\Mozilla Thunderbird\thunderbird.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.fr/ig/dell?hl=fr&client=dell-row-rel&channel=fr&ibd=6061109 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ig/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54729 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=552...cid={SUB_CLCID} R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.fr/ig/dell?hl=fr&client=dell-row-rel&channel=fr&ibd=6061109 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {A89DBFE2-2029-57FB-2735-21D74E0D66B0} - C:\WINDOWS\system32\apoi.dll R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O2 - BHO: (no name) - {A89DBFE2-2029-57FB-2735-21D74E0D66B0} - C:\WINDOWS\system32\apoi.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - D:\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe" O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe O4 - HKLM\..\Run: [ipWins] C:\Program Files\ipwins\ipwins.exe O4 - HKLM\..\Run: [!AVG Anti-Spyware] "D:\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKLM\..\Run: [avgnt] "D:\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [Toae] "C:\WINDOWS\RACLE~1\nopdb.exe" -vt ndrv O4 - HKCU\..\Run: [Wlizvt] C:\Documents and Settings\X.ZEPHIR\Mes documents\?ssembly\t?skmgr.exe O4 - Global Startup: Monitor Apache Servers.lnk = D:\Apache Group\Apache2\bin\ApacheMonitor.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = zephir.local O17 - HKLM\Software\..\Telephony: DomainName = zephir.local O17 - HKLM\System\CCS\Services\Tcpip\..\{47136A4B-6421-40B5-88F6-15CACFEA01BE}: NameServer = 192.168.0.2 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = zephir.local O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: qrev - {9DE24BAC-FC3C-42C4-9FC4-76B3FAFDBD90} - D:\TOADFO~1\RNetPin.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - D:\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - D:\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apache Tomcat 4.1 - Alexandria Software Consulting - d:\Apache Group\Tomcat 4.1\bin\tomcat.exe O23 - Service: Apache2 - Unknown owner - D:\Apache Group\Apache2\bin\Apache.exe" -k runservice (file missing) O23 - Service: Broadcom ASF IP Monitor (ASFIPmon) - Unknown owner - C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe" -service (file missing) O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - D:\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Backup Exec Remote Agent for Windows Servers (BackupExecAgentAccelerator) - VERITAS Software Corporation - C:\Program Files\VERITAS\Backup Exec\RANT\beremote.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe O23 - Service: MySQL - Unknown owner - D:\MySQL\MySQL.exe (file missing) O23 - Service: NBService - Nero AG - D:\Nero 7\Nero BackItUp\NBService.exe O23 - Service: OracleOraHome92ClientCache - Unknown owner - D:\oracle\ora92\BIN\ONRSD.EXE O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe Merci d'avance surtout
×
×
  • Créer...