Aller au contenu

volvo850btcc

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    26

  • Inscription

  • Dernière visite

À propos de volvo850btcc

  • Date de naissance 09/09/1983

Contact Methods

Profile Information

  • Sexe
    Male
  • Localisation
    libin
  • Intérêts
    tous ce qui vien de la suede<br />volvo scania saab

Autres informations

  • Mes langues
    français

volvo850btcc's Achievements

Member

Member (4/12)

0

Réputation sur la communauté

  1. volvo850btcc
    bien le bonsoir desoler du retard mais j'ai pas ete prevenu que y avait eu une reponse alors voila HP dv6239eu normalment vista mais je l'ai formater y as quoi 3 semaine en xp et j'ai mit la mise a jours de xp pack2 et apres sa iren d'autre j'ai beau faire se que je veut le gestionnaire de pheripherique ne trouve rien aucune cam a l'horizon celle ci es integre au pc voila espere avoir ete bonne eleve et repondu a bientot
  2. volvo850btcc
    bien le bonjour voila comme bcp de gens je n'arrive pas a faire aller ma cam moi je suis sous xp fraichement formater et c'est depuis que je la vit plus dans mon gestionnaire de peripherique elle n'es meme pas dans l'onglet imagerie alors ou se trouve t'elle qd je demar le pc rien ne se passe comme quoi j'ai connecter un new materiel et comme elle es incorporer je ne sait pas la brancher rebrancher si quelqu'un aurai une idee sa me serrai utile merci a bientot
  3. volvo850btcc
    voila thanos espere que se coup si c'est bon car mon rame grave la et je peut pas formater car et pres de giga de donnee et mon portable es en reparation chez hp pfff la galere enfin soit voila le rapport ComboFix 08-04-11.7 - HP_Propriétaire 2008-04-12 12:25:38.4 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.33.1036.18.153 [GMT 2:00] Endroit: C:\Documents and Settings\HP_Propriétaire\Bureau\ComboFix.exe Command switches used :: C:\Documents and Settings\HP_Propri‚taire\Bureau\CFScript.txt * Création d'un nouveau point de restauration . ((((((((((((((((((((((((((((( Fichiers créés 2008-03-12 to 2008-04-12 )))))))))))))))))))))))))))))))))))) . 2008-04-10 13:51 . 2008-04-10 13:51 <REP> d-------- C:\Program Files\Sony 2008-04-10 13:49 . 2008-04-10 13:49 <REP> d-------- C:\Program Files\Sony Setup 2008-04-10 12:38 . 2008-04-12 11:40 <REP> d-------- C:\Program Files\Panda Security 2008-04-09 19:28 . 2008-04-09 19:28 197 --a------ C:\WINDOWS\system32\MRT.INI 2008-04-08 17:57 . 2008-04-08 17:57 98,304 --a------ C:\WINDOWS\system32\xkhudihw.exe 2008-04-07 19:49 . 2008-04-07 19:49 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-04-07 19:38 . 2008-04-07 19:45 <REP> d-------- C:\MSNFix 2008-04-07 17:32 . 2008-03-29 19:31 75,856 --a------ C:\WINDOWS\system32\drivers\aswSP.sys 2008-04-07 17:32 . 2008-03-29 19:35 20,560 --a------ C:\WINDOWS\system32\drivers\aswFsBlk.sys 2008-04-03 18:18 . 2008-04-12 11:41 <REP> d-------- C:\Program Files\SPYWAREfighter 2008-04-03 18:18 . 2008-04-03 18:18 <REP> d-------- C:\Program Files\Fichiers communs\Application 2008-04-03 18:00 . 2008-04-03 18:03 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab 2008-04-03 13:07 . 2008-04-03 14:10 <REP> d-------- C:\WINDOWS\BDOSCAN8 2008-04-01 18:06 . 2008-04-09 20:18 <REP> d-------- C:\Temp 2008-04-01 12:14 . 2008-04-01 12:14 <REP> d-------- C:\Program Files\Alwil 2008-03-31 12:56 . 2008-03-31 19:41 2,550 --a------ C:\WINDOWS\system32\Uninstall.ico 2008-03-31 12:56 . 2008-03-31 19:41 1,406 --a------ C:\WINDOWS\system32\Help.ico 2008-03-30 20:44 . 2008-03-30 20:44 4,096 --a------ C:\WINDOWS\a.MSNFix 2008-03-30 20:43 . 2008-04-09 19:28 <REP> d-------- C:\Documents and Settings\All Users\Application Data\yfsdexyz 2008-03-29 17:39 . 2008-03-29 17:40 <REP> d-------- C:\Program Files\PartyPoker 2008-03-27 19:09 . 2008-03-27 19:09 <REP> d-------- C:\Program Files\GenerateurMotPasse20 2008-03-23 14:29 . 2008-03-23 14:29 <REP> d-------- C:\Program Files\Alwil Software 2008-03-23 14:29 . 2008-03-29 19:45 1,146,232 --a------ C:\WINDOWS\system32\aswBoot.exe 2008-03-23 14:29 . 2004-01-09 11:13 380,928 --a------ C:\WINDOWS\system32\actskin4.ocx 2008-03-23 14:29 . 2008-03-29 19:23 95,608 --a------ C:\WINDOWS\system32\AVASTSS.scr 2008-03-23 14:29 . 2008-03-29 19:35 94,544 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys 2008-03-23 14:29 . 2008-01-17 17:34 93,264 --a------ C:\WINDOWS\system32\drivers\aswmon.sys 2008-03-23 14:29 . 2008-03-29 19:27 42,912 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys 2008-03-23 14:29 . 2008-03-29 19:26 26,944 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys 2008-03-23 14:29 . 2008-03-29 19:29 23,152 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys 2008-03-22 21:37 . 2008-03-22 21:37 7,168 --ahs---- C:\WINDOWS\Thumbs.db 2008-03-22 21:02 . 2007-04-23 16:54 108,680 -ra------ C:\WINDOWS\system32\drivers\s115mdm.sys 2008-03-22 21:02 . 2007-04-23 16:54 100,488 -ra------ C:\WINDOWS\system32\drivers\s115mgmt.sys 2008-03-22 21:02 . 2007-04-23 16:54 98,568 -ra------ C:\WINDOWS\system32\drivers\s115obex.sys 2008-03-22 21:02 . 2007-04-23 16:54 83,208 -ra------ C:\WINDOWS\system32\drivers\s115bus.sys 2008-03-22 21:02 . 2007-04-23 16:54 15,112 -ra------ C:\WINDOWS\system32\drivers\s115mdfl.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115whnt.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115wh.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115cmnt.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115cm.sys 2008-03-22 21:01 . 2008-03-22 21:01 <REP> d-------- C:\Documents and Settings\HP_Propriétaire\Application Data\Teleca 2008-03-22 20:58 . 2008-03-31 21:34 <REP> d-------- C:\Program Files\Fichiers communs\Teleca Shared 2008-03-22 20:58 . 2008-03-31 21:34 <REP> d-------- C:\Program Files\Fichiers communs\Sony Ericsson Shared 2008-03-22 20:58 . 2008-03-22 20:58 <REP> d-------- C:\Documents and Settings\HP_Propriétaire\Application Data\Sony Ericsson 2008-03-22 20:56 . 2008-03-22 20:58 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Teleca 2008-03-20 15:50 . 2008-03-20 15:50 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2008-03-20 15:50 . 2008-03-20 15:50 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_ggsemc_01005.Wdf 2008-03-20 15:47 . 2008-03-22 20:56 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Sony Ericsson 2008-03-20 15:47 . 2008-03-20 15:47 1,419,232 --a------ C:\WINDOWS\system32\wdfcoinstaller01005.dll 2008-03-20 15:47 . 2008-03-20 15:47 20,520 --a------ C:\WINDOWS\system32\drivers\ggsemc.sys 2008-03-20 15:47 . 2008-03-20 15:47 13,352 --a------ C:\WINDOWS\system32\drivers\ggflt.sys 2008-03-20 15:45 . 2008-03-27 19:13 <REP> d-------- C:\Program Files\Sony Ericsson . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-04-11 16:25 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater 2008-04-10 14:01 --------- d-----w C:\Program Files\eMule 2008-04-09 17:34 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-03-31 19:46 --------- d-----w C:\Program Files\Sonic RecordNow! 2008-03-31 19:46 --------- d-----w C:\Program Files\QuickTime 2008-03-31 19:44 --------- d-----w C:\Program Files\MSN Messenger 2008-03-31 19:39 --------- d-----w C:\Program Files\Messenger Plus! Live 2008-03-31 19:38 --------- d-----w C:\Program Files\iTunes 2008-03-31 19:34 --------- d-----w C:\Program Files\Google 2008-03-31 19:21 278,528 ----a-w C:\Program Files\Fichiers communs\FDEUnInstaller.exe 2008-03-30 12:47 --------- d-----w C:\Documents and Settings\HP_Propriétaire\Application Data\MyPhoneExplorer 2008-03-29 15:42 --------- d-----w C:\Program Files\Xilisoft 2008-03-27 17:13 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-03-21 15:23 --------- d-----w C:\Documents and Settings\HP_Propriétaire\Application Data\BitTorrent DNA 2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys 2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\dllcache\win32k.sys 2008-03-01 16:28 3,591,680 ----a-w C:\WINDOWS\system32\dllcache\mshtml.dll 2008-02-29 08:57 625,664 ----a-w C:\WINDOWS\system32\dllcache\iexplore.exe 2008-02-29 08:56 70,656 ----a-w C:\WINDOWS\system32\dllcache\ie4uinit.exe 2008-02-22 10:00 13,824 ----a-w C:\WINDOWS\system32\dllcache\ieudinit.exe 2008-02-21 13:38 946,832 ----a-w C:\WINDOWS\system32\_ISource30.dll 2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll 2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\dllcache\gdi32.dll 2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll 2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dllcache\dnsrslvr.dll 2008-02-20 05:35 148,992 ----a-w C:\WINDOWS\system32\dllcache\dnsapi.dll 2008-02-15 05:44 161,792 ----a-w C:\WINDOWS\system32\dllcache\ieakui.dll 2008-01-31 14:20 119,568 ----a-w C:\WINDOWS\system32\VB6FR.DLL 2008-01-31 14:20 1,392,671 ----a-w C:\WINDOWS\system32\msvbvm60.dll . <pre> ----a-w 39,424 2008-03-31 11:13:49 C:\Documents and Settings\HP_Propriétaire\Bureau\AAA programme guy\solsuite\SolSuite 2006 v6.1 + Patch + Keygen\Patch\SS2004-patch .exe </pre> ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D5F536B7-2822-4736-87D3-414DF1BF1E8C}] C:\WINDOWS\svpekgonrlo.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 20:00 15360] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-09-06 23:10 68856] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [2005-10-28 16:25 94208] "xuywjzrv"="C:\WINDOWS\system32\xkhudihw.exe" [2008-04-08 17:57 98304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 18:04 52736] "AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 19:06 88363 C:\WINDOWS\AGRSMMSG.exe] "HPHUPD06"="c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe" [2004-06-07 20:53 49152] "HPHmon06"="C:\WINDOWS\system32\hphmon06.exe" [2004-06-07 20:43 659456] "KBD"="C:\HP\KBD\KBD.EXE" [2003-02-11 21:02 61440] "Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [2004-04-14 22:43 233472] "PS2"="C:\WINDOWS\system32\ps2.exe" [2004-10-25 23:17 90112] "ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-11-04 05:10 344064] "AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 22:47 57344 C:\WINDOWS\ALCXMNTR.EXE] "LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2004-10-14 23:54 253952] "Reminder"="C:\Windows\Creator\Remind_XP.exe" [2004-12-14 02:23 663552] "GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 00:47 31016] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 20:51 39792] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-09-26 15:42 267064] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-06-29 07:24 286720] "Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 09:16 528384] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2008-03-29 19:37 79224] "spywarefighterguard"="C:\Program Files\SPYWAREfighter\spftray.exe" [2008-02-21 15:37 115344] C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2004-11-05 03:28:24 258048] Outil de mise … jour Google.lnk - C:\Program Files\Google\Google Updater\GoogleUpdater.exe [2007-09-06 23:10:17 126136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] --a------ 2007-09-26 15:42 267064 C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] --a------ 2001-07-09 10:50 155648 C:\WINDOWS\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] --a------ 2007-06-29 07:24 286720 C:\Program Files\QuickTime\QTTask.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\eMule\\emule.exe"= "C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"= "C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"= "C:\\Program Files\\Internet Explorer\\iexplore.exe"= "C:\\Program Files\\iTunes\\iTunes.exe"= R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-03-29 19:31] R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-03-29 19:35] R3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 23:58] R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 07:08] S3 ggflt;SEMC USB Flash Driver Filter;C:\WINDOWS\system32\DRIVERS\ggflt.sys [2008-03-20 15:47] S3 s115bus;Sony Ericsson Device 115 driver (WDM);C:\WINDOWS\system32\DRIVERS\s115bus.sys [2007-04-23 16:54] S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\s115mdfl.sys [2007-04-23 16:54] S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\s115mdm.sys [2007-04-23 16:54] S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\s115mgmt.sys [2007-04-23 16:54] S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\s115obex.sys [2007-04-23 16:54] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e35c655c-f0f2-11dc-abed-000b6ba130c7}] \Shell\Auto\command - L:\autorunx.exe \Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL autorunx.exe . ************************************************************************** catchme 0.3.1351 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-12 12:27:52 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cachés ... Balayage caché autostart entries ... Balayage des fichiers cachés ... Scan terminé avec succès Les fichiers cachés: 0 ************************************************************************** . Temps d'accomplissement: 2008-04-12 12:28:39 ComboFix-quarantined-files.txt 2008-04-12 10:28:30 Pre-Run: 27,550,216,192 octets libres Post-Run: 27,546,288,128 octets libres . 2008-04-09 17:34:36 --- E O F ---
  4. volvo850btcc
    salut thanos j'ai effectuer le premiere scan voici le rapport de combofix ComboFix 08-04-09.8 - HP_Propriétaire 2008-04-10 12:31:34.2 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.33.1036.18.161 [GMT 2:00] Endroit: C:\Documents and Settings\HP_Propriétaire\Bureau\ComboFix.exe Command switches used :: C:\Documents and Settings\HP_Propri‚taire\Bureau\CFScript.txt * Création d'un nouveau point de restauration . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Program Files\PC-Cleaner . ((((((((((((((((((((((((((((( Fichiers créés 2008-03-10 to 2008-04-10 )))))))))))))))))))))))))))))))))))) . 2008-04-09 19:28 . 2008-04-09 19:28 197 --a------ C:\WINDOWS\system32\MRT.INI 2008-04-08 17:57 . 2008-04-08 17:57 98,304 --a------ C:\WINDOWS\system32\xkhudihw.exe 2008-04-07 19:49 . 2008-04-07 19:49 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-04-07 19:38 . 2008-04-07 19:45 <REP> d-------- C:\MSNFix 2008-04-07 19:17 . 2008-04-07 19:46 <REP> d-------- C:\Deckard 2008-04-07 17:32 . 2008-03-29 19:31 75,856 --a------ C:\WINDOWS\system32\drivers\aswSP.sys 2008-04-07 17:32 . 2008-03-29 19:35 20,560 --a------ C:\WINDOWS\system32\drivers\aswFsBlk.sys 2008-04-03 18:18 . 2008-04-03 18:20 <REP> d-------- C:\Program Files\SPYWAREfighter 2008-04-03 18:18 . 2008-04-03 18:18 <REP> d-------- C:\Program Files\Fichiers communs\Application 2008-04-03 18:00 . 2008-04-03 18:03 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab 2008-04-03 13:07 . 2008-04-03 14:10 <REP> d-------- C:\WINDOWS\BDOSCAN8 2008-04-01 18:06 . 2008-04-09 20:18 <REP> d-------- C:\Temp 2008-04-01 12:14 . 2008-04-01 12:14 <REP> d-------- C:\Program Files\Alwil 2008-03-31 12:56 . 2008-04-01 12:08 <REP> d-------- C:\WINDOWS\system32\ActiveScan 2008-03-31 12:56 . 2008-03-31 19:41 30,590 --a------ C:\WINDOWS\system32\pavas.ico 2008-03-31 12:56 . 2008-03-31 19:41 2,550 --a------ C:\WINDOWS\system32\Uninstall.ico 2008-03-31 12:56 . 2008-03-31 19:41 1,406 --a------ C:\WINDOWS\system32\Help.ico 2008-03-30 20:44 . 2008-03-30 20:44 4,096 --a------ C:\WINDOWS\a.MSNFix 2008-03-30 20:43 . 2008-04-09 19:28 <REP> d-------- C:\Documents and Settings\All Users\Application Data\yfsdexyz 2008-03-29 17:39 . 2008-03-29 17:40 <REP> d-------- C:\Program Files\PartyPoker 2008-03-27 19:09 . 2008-03-27 19:09 <REP> d-------- C:\Program Files\GenerateurMotPasse20 2008-03-23 14:29 . 2008-03-23 14:29 <REP> d-------- C:\Program Files\Alwil Software 2008-03-23 14:29 . 2008-03-29 19:45 1,146,232 --a------ C:\WINDOWS\system32\aswBoot.exe 2008-03-23 14:29 . 2004-01-09 11:13 380,928 --a------ C:\WINDOWS\system32\actskin4.ocx 2008-03-23 14:29 . 2008-03-29 19:23 95,608 --a------ C:\WINDOWS\system32\AVASTSS.scr 2008-03-23 14:29 . 2008-03-29 19:35 94,544 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys 2008-03-23 14:29 . 2008-01-17 17:34 93,264 --a------ C:\WINDOWS\system32\drivers\aswmon.sys 2008-03-23 14:29 . 2008-03-29 19:27 42,912 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys 2008-03-23 14:29 . 2008-03-29 19:26 26,944 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys 2008-03-23 14:29 . 2008-03-29 19:29 23,152 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys 2008-03-22 21:37 . 2008-03-22 21:37 7,168 --ahs---- C:\WINDOWS\Thumbs.db 2008-03-22 21:02 . 2007-04-23 16:54 108,680 -ra------ C:\WINDOWS\system32\drivers\s115mdm.sys 2008-03-22 21:02 . 2007-04-23 16:54 100,488 -ra------ C:\WINDOWS\system32\drivers\s115mgmt.sys 2008-03-22 21:02 . 2007-04-23 16:54 98,568 -ra------ C:\WINDOWS\system32\drivers\s115obex.sys 2008-03-22 21:02 . 2007-04-23 16:54 83,208 -ra------ C:\WINDOWS\system32\drivers\s115bus.sys 2008-03-22 21:02 . 2007-04-23 16:54 15,112 -ra------ C:\WINDOWS\system32\drivers\s115mdfl.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115whnt.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115wh.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115cmnt.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115cm.sys 2008-03-22 21:01 . 2008-03-22 21:01 <REP> d-------- C:\Documents and Settings\HP_Propriétaire\Application Data\Teleca 2008-03-22 20:58 . 2008-03-31 21:34 <REP> d-------- C:\Program Files\Fichiers communs\Teleca Shared 2008-03-22 20:58 . 2008-03-31 21:34 <REP> d-------- C:\Program Files\Fichiers communs\Sony Ericsson Shared 2008-03-22 20:58 . 2008-03-22 20:58 <REP> d-------- C:\Documents and Settings\HP_Propriétaire\Application Data\Sony Ericsson 2008-03-22 20:56 . 2008-03-22 20:58 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Teleca 2008-03-20 15:50 . 2008-03-20 15:50 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2008-03-20 15:50 . 2008-03-20 15:50 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_ggsemc_01005.Wdf 2008-03-20 15:47 . 2008-03-22 20:56 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Sony Ericsson 2008-03-20 15:47 . 2008-03-20 15:47 1,419,232 --a------ C:\WINDOWS\system32\wdfcoinstaller01005.dll 2008-03-20 15:47 . 2008-03-20 15:47 20,520 --a------ C:\WINDOWS\system32\drivers\ggsemc.sys 2008-03-20 15:47 . 2008-03-20 15:47 13,352 --a------ C:\WINDOWS\system32\drivers\ggflt.sys 2008-03-20 15:45 . 2008-03-27 19:13 <REP> d-------- C:\Program Files\Sony Ericsson . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-04-09 17:34 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-04-09 14:25 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater 2008-04-02 15:15 --------- d-----w C:\Program Files\eMule 2008-03-31 19:46 --------- d-----w C:\Program Files\Sonic RecordNow! 2008-03-31 19:46 --------- d-----w C:\Program Files\QuickTime 2008-03-31 19:44 --------- d-----w C:\Program Files\MSN Messenger 2008-03-31 19:39 --------- d-----w C:\Program Files\Messenger Plus! Live 2008-03-31 19:38 --------- d-----w C:\Program Files\iTunes 2008-03-31 19:34 --------- d-----w C:\Program Files\Google 2008-03-31 19:21 278,528 ----a-w C:\Program Files\Fichiers communs\FDEUnInstaller.exe 2008-03-30 12:47 --------- d-----w C:\Documents and Settings\HP_Propriétaire\Application Data\MyPhoneExplorer 2008-03-29 15:42 --------- d-----w C:\Program Files\Xilisoft 2008-03-27 17:13 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-03-21 15:23 --------- d-----w C:\Documents and Settings\HP_Propriétaire\Application Data\BitTorrent DNA 2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys 2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\dllcache\win32k.sys 2008-03-01 16:28 3,591,680 ----a-w C:\WINDOWS\system32\dllcache\mshtml.dll 2008-02-29 08:57 625,664 ----a-w C:\WINDOWS\system32\dllcache\iexplore.exe 2008-02-29 08:56 70,656 ----a-w C:\WINDOWS\system32\dllcache\ie4uinit.exe 2008-02-22 10:00 13,824 ----a-w C:\WINDOWS\system32\dllcache\ieudinit.exe 2008-02-21 13:38 946,832 ----a-w C:\WINDOWS\system32\_ISource30.dll 2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll 2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\dllcache\gdi32.dll 2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll 2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dllcache\dnsrslvr.dll 2008-02-20 05:35 148,992 ----a-w C:\WINDOWS\system32\dllcache\dnsapi.dll 2008-02-15 05:44 161,792 ----a-w C:\WINDOWS\system32\dllcache\ieakui.dll 2008-01-31 14:20 119,568 ----a-w C:\WINDOWS\system32\VB6FR.DLL 2008-01-31 14:20 1,392,671 ----a-w C:\WINDOWS\system32\msvbvm60.dll . <pre> ----a-w 39,424 2008-03-31 11:13:49 C:\Documents and Settings\HP_Propriétaire\Bureau\AAA programme guy\solsuite\SolSuite 2006 v6.1 + Patch + Keygen\Patch\SS2004-patch .exe </pre> ((((((((((((((((((((((((((((( snapshot@2008-04-08_17.50.44,03 ))))))))))))))))))))))))))))))))))))))))) . + 2006-06-20 13:44:04 379,704 ----a-w C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll + 2006-06-20 13:44:02 117,560 ----a-w C:\WINDOWS\Downloaded Program Files\PURen-us.dll + 2007-01-09 06:30:14 110,592 ----a-w C:\WINDOWS\Downloaded Program Files\PURfr-be.dll + 2007-12-07 02:08:32 124,928 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\advpack.dll + 2007-12-19 22:53:23 347,136 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\dxtmsft.dll + 2007-12-07 02:08:32 214,528 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\dxtrans.dll + 2007-12-07 02:08:32 133,120 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\extmgr.dll + 2007-12-07 02:08:32 63,488 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\icardie.dll + 2007-12-06 11:02:31 70,656 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\ie4uinit.exe + 2007-12-07 02:08:32 153,088 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\ieakeng.dll + 2007-12-07 02:08:32 230,400 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\ieaksie.dll + 2007-12-06 04:59:51 161,792 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\ieakui.dll + 2007-12-07 02:08:32 383,488 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\ieapfltr.dll + 2007-12-07 02:08:32 384,512 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\iedkcs32.dll + 2007-12-07 02:08:33 6,066,176 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\ieframe.dll + 2007-12-07 02:08:33 44,544 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\iernonce.dll + 2007-12-07 02:08:33 267,776 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\iertutil.dll + 2007-12-06 11:00:58 13,824 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\ieudinit.exe + 2007-12-06 11:03:16 625,664 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\iexplore.exe + 2007-12-07 02:08:33 27,648 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\jsproxy.dll + 2007-12-07 02:08:33 459,264 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\msfeeds.dll + 2007-12-07 02:08:33 52,224 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\msfeedsbs.dll + 2007-12-08 05:08:36 3,592,192 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\mshtml.dll + 2007-12-07 02:08:34 478,208 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\mshtmled.dll + 2007-12-07 02:08:34 193,024 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\msrating.dll + 2007-12-07 02:08:34 671,232 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\mstime.dll + 2007-12-07 02:08:34 102,912 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\occache.dll + 2008-01-11 05:36:55 44,544 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\pngfilt.dll + 2007-03-06 01:34:38 216,800 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe + 2007-03-06 01:35:48 394,976 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\updspapi.dll + 2007-12-07 02:08:34 105,984 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\url.dll + 2007-12-07 02:08:34 1,159,680 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\urlmon.dll + 2007-12-07 02:08:34 233,472 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\webcheck.dll + 2007-12-07 02:08:34 824,832 -c----w C:\WINDOWS\ie7updates\KB947864-IE7\wininet.dll + 2006-10-26 21:00:12 1,841,984 ----a-r C:\WINDOWS\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\VVIEWDWG.DLL - 2008-03-14 09:26:20 1,165,584 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe + 2008-04-09 17:34:27 1,165,584 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe - 2008-03-14 09:26:22 20,240 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe + 2008-04-09 17:34:29 20,240 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe - 2008-03-14 09:26:20 159,504 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe + 2008-04-09 17:34:27 159,504 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe - 2008-03-14 09:26:20 184,080 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe + 2008-04-09 17:34:27 184,080 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe - 2008-03-14 09:26:21 217,864 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe + 2008-04-09 17:34:29 217,864 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe - 2008-03-14 09:26:22 18,704 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe + 2008-04-09 17:34:29 18,704 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe - 2008-03-14 09:26:23 35,088 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe + 2008-04-09 17:34:30 35,088 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe - 2008-03-14 09:26:21 845,584 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe + 2008-04-09 17:34:28 845,584 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe - 2008-03-14 09:26:21 922,384 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe + 2008-04-09 17:34:28 922,384 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe - 2008-03-14 09:26:21 272,648 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe + 2008-04-09 17:34:29 272,648 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe - 2008-03-14 09:26:22 888,080 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe + 2008-04-09 17:34:29 888,080 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe - 2008-03-14 09:26:20 1,172,240 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe + 2008-04-09 17:34:27 1,172,240 ----a-r C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe + 2008-04-10 10:34:10 53,248 ----a-w C:\WINDOWS\PSEXESVC.EXE - 2007-12-07 02:08:32 124,928 ----a-w C:\WINDOWS\system32\advpack.dll + 2008-03-01 12:58:06 124,928 ----a-w C:\WINDOWS\system32\advpack.dll - 2007-12-07 02:08:32 124,928 ----a-w C:\WINDOWS\system32\dllcache\advpack.dll + 2008-03-01 12:58:06 124,928 ----a-w C:\WINDOWS\system32\dllcache\advpack.dll - 2007-12-19 22:53:23 347,136 ----a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll + 2008-03-01 12:58:06 347,136 ----a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll - 2007-12-07 02:08:32 214,528 ----a-w C:\WINDOWS\system32\dllcache\dxtrans.dll + 2008-03-01 12:58:06 214,528 ----a-w C:\WINDOWS\system32\dllcache\dxtrans.dll - 2007-12-07 02:08:32 133,120 ----a-w C:\WINDOWS\system32\dllcache\extmgr.dll + 2008-03-01 12:58:06 133,120 ----a-w C:\WINDOWS\system32\dllcache\extmgr.dll - 2007-12-07 02:08:32 63,488 ----a-w C:\WINDOWS\system32\dllcache\icardie.dll + 2008-03-01 12:58:06 63,488 ----a-w C:\WINDOWS\system32\dllcache\icardie.dll - 2007-12-07 02:08:32 153,088 ----a-w C:\WINDOWS\system32\dllcache\ieakeng.dll + 2008-03-01 12:58:06 153,088 ----a-w C:\WINDOWS\system32\dllcache\ieakeng.dll - 2007-12-07 02:08:32 230,400 ----a-w C:\WINDOWS\system32\dllcache\ieaksie.dll + 2008-03-01 12:58:06 230,400 ----a-w C:\WINDOWS\system32\dllcache\ieaksie.dll - 2007-12-07 02:08:32 383,488 ----a-w C:\WINDOWS\system32\dllcache\ieapfltr.dll + 2008-03-01 12:58:07 383,488 ----a-w C:\WINDOWS\system32\dllcache\ieapfltr.dll - 2007-12-07 02:08:32 384,512 ----a-w C:\WINDOWS\system32\dllcache\iedkcs32.dll + 2008-03-01 12:58:07 384,512 ----a-w C:\WINDOWS\system32\dllcache\iedkcs32.dll - 2007-12-07 02:08:33 6,066,176 ----a-w C:\WINDOWS\system32\dllcache\ieframe.dll + 2008-03-01 12:58:08 6,066,176 ----a-w C:\WINDOWS\system32\dllcache\ieframe.dll - 2007-12-07 02:08:33 44,544 ----a-w C:\WINDOWS\system32\dllcache\iernonce.dll + 2008-03-01 12:58:08 44,544 ----a-w C:\WINDOWS\system32\dllcache\iernonce.dll - 2007-12-07 02:08:33 267,776 ----a-w C:\WINDOWS\system32\dllcache\iertutil.dll + 2008-03-01 12:58:08 267,776 ----a-w C:\WINDOWS\system32\dllcache\iertutil.dll - 2007-12-07 02:08:33 27,648 ----a-w C:\WINDOWS\system32\dllcache\jsproxy.dll + 2008-03-01 12:58:08 27,648 ----a-w C:\WINDOWS\system32\dllcache\jsproxy.dll - 2007-12-07 02:08:33 459,264 ----a-w C:\WINDOWS\system32\dllcache\msfeeds.dll + 2008-03-01 12:58:08 459,264 ----a-w C:\WINDOWS\system32\dllcache\msfeeds.dll - 2007-12-07 02:08:33 52,224 ----a-w C:\WINDOWS\system32\dllcache\msfeedsbs.dll + 2008-03-01 12:58:08 52,224 ----a-w C:\WINDOWS\system32\dllcache\msfeedsbs.dll - 2007-12-07 02:08:34 478,208 ----a-w C:\WINDOWS\system32\dllcache\mshtmled.dll + 2008-03-01 12:58:09 478,208 ----a-w C:\WINDOWS\system32\dllcache\mshtmled.dll - 2007-12-07 02:08:34 193,024 ----a-w C:\WINDOWS\system32\dllcache\msrating.dll + 2008-03-01 12:58:10 193,024 ----a-w C:\WINDOWS\system32\dllcache\msrating.dll - 2007-12-07 02:08:34 671,232 ----a-w C:\WINDOWS\system32\dllcache\mstime.dll + 2008-03-01 12:58:10 671,232 ----a-w C:\WINDOWS\system32\dllcache\mstime.dll - 2007-12-07 02:08:34 102,912 ----a-w C:\WINDOWS\system32\dllcache\occache.dll + 2008-03-01 12:58:10 102,912 ----a-w C:\WINDOWS\system32\dllcache\occache.dll - 2008-01-11 05:36:55 44,544 ----a-w C:\WINDOWS\system32\dllcache\pngfilt.dll + 2008-03-01 12:58:10 44,544 ----a-w C:\WINDOWS\system32\dllcache\pngfilt.dll - 2007-12-07 02:08:34 105,984 ----a-w C:\WINDOWS\system32\dllcache\url.dll + 2008-03-01 12:58:10 105,984 ----a-w C:\WINDOWS\system32\dllcache\url.dll - 2007-12-07 02:08:34 1,159,680 ----a-w C:\WINDOWS\system32\dllcache\urlmon.dll + 2008-03-01 12:58:10 1,159,680 ----a-w C:\WINDOWS\system32\dllcache\urlmon.dll - 2007-12-07 02:08:34 233,472 ----a-w C:\WINDOWS\system32\dllcache\webcheck.dll + 2008-03-01 12:58:11 233,472 ----a-w C:\WINDOWS\system32\dllcache\webcheck.dll - 2007-12-07 02:08:34 824,832 ----a-w C:\WINDOWS\system32\dllcache\wininet.dll + 2008-03-01 12:58:11 826,368 ----a-w C:\WINDOWS\system32\dllcache\wininet.dll - 2006-06-26 17:41:32 148,480 ----a-w C:\WINDOWS\system32\dnsapi.dll + 2008-02-20 05:35:05 148,992 ----a-w C:\WINDOWS\system32\dnsapi.dll - 2007-12-19 22:53:23 347,136 ----a-w C:\WINDOWS\system32\dxtmsft.dll + 2008-03-01 12:58:06 347,136 ----a-w C:\WINDOWS\system32\dxtmsft.dll - 2007-12-07 02:08:32 214,528 ----a-w C:\WINDOWS\system32\dxtrans.dll + 2008-03-01 12:58:06 214,528 ----a-w C:\WINDOWS\system32\dxtrans.dll - 2007-12-07 02:08:32 133,120 ----a-w C:\WINDOWS\system32\extmgr.dll + 2008-03-01 12:58:06 133,120 ----a-w C:\WINDOWS\system32\extmgr.dll - 2007-09-12 00:39:20 279,744 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT + 2008-04-10 09:02:51 279,744 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT - 2007-12-07 02:08:32 63,488 ----a-w C:\WINDOWS\system32\icardie.dll + 2008-03-01 12:58:06 63,488 ----a-w C:\WINDOWS\system32\icardie.dll - 2007-12-06 11:02:31 70,656 ----a-w C:\WINDOWS\system32\ie4uinit.exe + 2008-02-29 08:56:41 70,656 ----a-w C:\WINDOWS\system32\ie4uinit.exe - 2007-12-07 02:08:32 153,088 ----a-w C:\WINDOWS\system32\ieakeng.dll + 2008-03-01 12:58:06 153,088 ----a-w C:\WINDOWS\system32\ieakeng.dll - 2007-12-07 02:08:32 230,400 ----a-w C:\WINDOWS\system32\ieaksie.dll + 2008-03-01 12:58:06 230,400 ----a-w C:\WINDOWS\system32\ieaksie.dll - 2007-12-06 04:59:51 161,792 ----a-w C:\WINDOWS\system32\ieakui.dll + 2008-02-15 05:44:25 161,792 ----a-w C:\WINDOWS\system32\ieakui.dll - 2007-12-07 02:08:32 383,488 ----a-w C:\WINDOWS\system32\ieapfltr.dll + 2008-03-01 12:58:07 383,488 ----a-w C:\WINDOWS\system32\ieapfltr.dll - 2007-12-07 02:08:32 384,512 ----a-w C:\WINDOWS\system32\iedkcs32.dll + 2008-03-01 12:58:07 384,512 ----a-w C:\WINDOWS\system32\iedkcs32.dll - 2007-12-07 02:08:33 6,066,176 ----a-w C:\WINDOWS\system32\ieframe.dll + 2008-03-01 12:58:08 6,066,176 ----a-w C:\WINDOWS\system32\ieframe.dll - 2007-12-07 02:08:33 44,544 ----a-w C:\WINDOWS\system32\iernonce.dll + 2008-03-01 12:58:08 44,544 ----a-w C:\WINDOWS\system32\iernonce.dll - 2007-12-07 02:08:33 267,776 ----a-w C:\WINDOWS\system32\iertutil.dll + 2008-03-01 12:58:08 267,776 ----a-w C:\WINDOWS\system32\iertutil.dll - 2007-12-06 11:00:58 13,824 ----a-w C:\WINDOWS\system32\ieudinit.exe + 2008-02-22 10:00:51 13,824 ----a-w C:\WINDOWS\system32\ieudinit.exe - 2007-12-07 02:08:33 27,648 ----a-w C:\WINDOWS\system32\jsproxy.dll + 2008-03-01 12:58:08 27,648 ----a-w C:\WINDOWS\system32\jsproxy.dll - 2008-03-05 16:30:54 19,148,408 ----a-w C:\WINDOWS\system32\MRT.exe + 2008-04-06 05:56:20 19,836,024 ----a-w C:\WINDOWS\system32\MRT.exe - 2007-12-07 02:08:33 459,264 ----a-w C:\WINDOWS\system32\msfeeds.dll + 2008-03-01 12:58:08 459,264 ----a-w C:\WINDOWS\system32\msfeeds.dll - 2007-12-07 02:08:33 52,224 ----a-w C:\WINDOWS\system32\msfeedsbs.dll + 2008-03-01 12:58:08 52,224 ----a-w C:\WINDOWS\system32\msfeedsbs.dll - 2007-12-08 05:08:36 3,592,192 ----a-w C:\WINDOWS\system32\mshtml.dll + 2008-03-01 16:28:10 3,591,680 ----a-w C:\WINDOWS\system32\mshtml.dll - 2007-12-07 02:08:34 478,208 ----a-w C:\WINDOWS\system32\mshtmled.dll + 2008-03-01 12:58:09 478,208 ----a-w C:\WINDOWS\system32\mshtmled.dll - 2007-12-07 02:08:34 193,024 ----a-w C:\WINDOWS\system32\msrating.dll + 2008-03-01 12:58:10 193,024 ----a-w C:\WINDOWS\system32\msrating.dll - 2007-12-07 02:08:34 671,232 ----a-w C:\WINDOWS\system32\mstime.dll + 2008-03-01 12:58:10 671,232 ----a-w C:\WINDOWS\system32\mstime.dll - 2007-12-07 02:08:34 102,912 ----a-w C:\WINDOWS\system32\occache.dll + 2008-03-01 12:58:10 102,912 ----a-w C:\WINDOWS\system32\occache.dll - 2008-01-11 05:36:55 44,544 ----a-w C:\WINDOWS\system32\pngfilt.dll + 2008-03-01 12:58:10 44,544 ----a-w C:\WINDOWS\system32\pngfilt.dll - 2007-12-07 02:08:34 105,984 ----a-w C:\WINDOWS\system32\url.dll + 2008-03-01 12:58:10 105,984 ----a-w C:\WINDOWS\system32\url.dll - 2007-12-07 02:08:34 1,159,680 ----a-w C:\WINDOWS\system32\urlmon.dll + 2008-03-01 12:58:10 1,159,680 ----a-w C:\WINDOWS\system32\urlmon.dll - 2007-12-07 02:08:34 233,472 ----a-w C:\WINDOWS\system32\webcheck.dll + 2008-03-01 12:58:11 233,472 ----a-w C:\WINDOWS\system32\webcheck.dll - 2007-12-07 02:08:34 824,832 ----a-w C:\WINDOWS\system32\wininet.dll + 2008-03-01 12:58:11 826,368 ----a-w C:\WINDOWS\system32\wininet.dll + 2008-04-10 10:27:03 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_538.dat . -- Snapshot reset to current date -- . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D5F536B7-2822-4736-87D3-414DF1BF1E8C}] C:\WINDOWS\svpekgonrlo.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 20:00 15360] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-09-06 23:10 68856] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [2005-10-28 16:25 94208] "xuywjzrv"="C:\WINDOWS\system32\xkhudihw.exe" [2008-04-08 17:57 98304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 18:04 52736] "AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 19:06 88363 C:\WINDOWS\AGRSMMSG.exe] "HPHUPD06"="c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe" [2004-06-07 20:53 49152] "HPHmon06"="C:\WINDOWS\system32\hphmon06.exe" [2004-06-07 20:43 659456] "KBD"="C:\HP\KBD\KBD.EXE" [2003-02-11 21:02 61440] "Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [2004-04-14 22:43 233472] "PS2"="C:\WINDOWS\system32\ps2.exe" [2004-10-25 23:17 90112] "ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-11-04 05:10 344064] "AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 22:47 57344 C:\WINDOWS\ALCXMNTR.EXE] "LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2004-10-14 23:54 253952] "Reminder"="C:\Windows\Creator\Remind_XP.exe" [2004-12-14 02:23 663552] "GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 00:47 31016] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 20:51 39792] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-09-26 15:42 267064] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-06-29 07:24 286720] "Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 09:16 528384] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2008-03-29 19:37 79224] "spywarefighterguard"="C:\Program Files\SPYWAREfighter\spftray.exe" [2008-02-21 15:37 115344] C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2004-11-05 03:28:24 258048] Outil de mise … jour Google.lnk - C:\Program Files\Google\Google Updater\GoogleUpdater.exe [2007-09-06 23:10:17 126136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] --a------ 2007-09-26 15:42 267064 C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] --a------ 2001-07-09 10:50 155648 C:\WINDOWS\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] --a------ 2007-06-29 07:24 286720 C:\Program Files\QuickTime\QTTask.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\eMule\\emule.exe"= "C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"= "C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"= "C:\\Program Files\\Internet Explorer\\iexplore.exe"= "C:\\Program Files\\iTunes\\iTunes.exe"= R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-03-29 19:31] R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-03-29 19:35] R3 SpyFighter;SpyFighter Guard Device;C:\Program Files\SPYWAREfighter\spyfighter.sys [2008-02-21 15:38] R3 SPYWAREfighterRP;SPYWAREfighterRP;"C:\Program Files\SPYWAREfighter\spfprc.exe" [2008-02-21 15:37] R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 07:08] S3 ggflt;SEMC USB Flash Driver Filter;C:\WINDOWS\system32\DRIVERS\ggflt.sys [2008-03-20 15:47] S3 s115bus;Sony Ericsson Device 115 driver (WDM);C:\WINDOWS\system32\DRIVERS\s115bus.sys [2007-04-23 16:54] S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\s115mdfl.sys [2007-04-23 16:54] S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\s115mdm.sys [2007-04-23 16:54] S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\s115mgmt.sys [2007-04-23 16:54] S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\s115obex.sys [2007-04-23 16:54] S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 23:58] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e35c655c-f0f2-11dc-abed-000b6ba130c7}] \Shell\Auto\command - L:\autorunx.exe \Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL autorunx.exe *Newly Created Service* - CATCHME . ************************************************************************** catchme 0.3.1351 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-10 12:34:22 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cachés ... Balayage caché autostart entries ... Balayage des fichiers cachés ... Scan terminé avec succès Les fichiers cachés: 0 ************************************************************************** . --------------------- DLLs a chargé sous des processus courants --------------------- PROCESS: C:\WINDOWS\explorer.exe -> C:\Program Files\Fichiers communs\Teleca Shared\boost_log-vc71-mt-1_33.dll . Temps d'accomplissement: 2008-04-10 12:35:41 ComboFix-quarantined-files.txt 2008-04-10 10:35:31 Pre-Run: 25,278,636,032 octets libres Post-Run: 25,274,740,736 octets libres . 2008-04-09 17:34:36 --- E O F --- ai juste un probleme pour les deuxieme scan c'est que j'arrive tout suite sur la page de panda scan en ligne et je n'ai pas l'option que tu dit avec quick scan et full scan je fait quoi
  5. volvo850btcc
    sa correspond a mon lecteur de carte memoire en facade sur ma tour et la lettre k et mon gsm oki je fait tout sa
  6. volvo850btcc
    je veut bien thanos mais j'ai pas de clu usb
  7. volvo850btcc
    voila lol ai enfin arriver voila le rapport ComboFix 08-04-07.5 - HP_Propriétaire 2008-04-08 17:46:29.1 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.33.1036.18.173 [GMT 2:00] Endroit: C:\Documents and Settings\HP_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\0C4Q8UXM\ComboFix[1].exe * Création d'un nouveau point de restauration . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\HP_Propriétaire\Bureaublackbird.jpg C:\Documents and Settings\HP_Propriétaire\Bureauvirii C:\Program Files\Inet Delivery C:\Program Files\Inet Delivery\inetdl.exe C:\Program Files\Inet Delivery\intdel.exe C:\WINDOWS\base64.tmp C:\WINDOWS\bdn.com C:\WINDOWS\FVProtect.exe C:\WINDOWS\iTunesMusic.exe C:\WINDOWS\mslagent C:\WINDOWS\mslagent\2_mslagent.dll C:\WINDOWS\mslagent\mslagent.exe C:\WINDOWS\mslagent\uninstall.exe C:\WINDOWS\mssecu.exe C:\WINDOWS\system32akttzn.exe C:\WINDOWS\system32anticipator.dll C:\WINDOWS\system32awtoolb.dll C:\WINDOWS\system32bdn.com C:\WINDOWS\system32bsva-egihsg52.exe C:\WINDOWS\system32dpcproxy.exe C:\WINDOWS\system32emesx.dll C:\WINDOWS\system32h@tkeysh@@k.dll C:\WINDOWS\system32hoproxy.dll C:\WINDOWS\system32hxiwlgpm.dat C:\WINDOWS\system32hxiwlgpm.exe C:\WINDOWS\system32medup012.dll C:\WINDOWS\system32medup020.dll C:\WINDOWS\system32msgp.exe C:\WINDOWS\system32msnbho.dll C:\WINDOWS\system32mssecu.exe C:\WINDOWS\system32msvchost.exe C:\WINDOWS\system32mtr2.exe C:\WINDOWS\system32mwin32.exe C:\WINDOWS\system32netode.exe C:\WINDOWS\system32newsd32.exe C:\WINDOWS\system32ps1.exe C:\WINDOWS\system32psof1.exe C:\WINDOWS\system32psoft1.exe C:\WINDOWS\system32regc64.dll C:\WINDOWS\system32regm64.dll C:\WINDOWS\system32Rundl1.exe C:\WINDOWS\system32smp C:\WINDOWS\system32smp\msrc.exe C:\WINDOWS\system32sncntr.exe C:\WINDOWS\system32ssurf022.dll C:\WINDOWS\system32ssvchost.com C:\WINDOWS\system32ssvchost.exe C:\WINDOWS\system32sysreq.exe C:\WINDOWS\system32taack.dat C:\WINDOWS\system32taack.exe C:\WINDOWS\system32temp#01.exe C:\WINDOWS\system32thun.dll C:\WINDOWS\system32thun32.dll C:\WINDOWS\system32VBIEWER.OCX C:\WINDOWS\system32vbsys2.dll C:\WINDOWS\system32vcatchpi.dll C:\WINDOWS\system32winlogonpc.exe C:\WINDOWS\system32winsystem.exe C:\WINDOWS\system32WINWGPX.EXE C:\WINDOWS\userconfig9x.dll C:\WINDOWS\Web\def.htm C:\WINDOWS\winsystem.exe C:\WINDOWS\zip1.tmp C:\WINDOWS\zip2.tmp C:\WINDOWS\zip3.tmp C:\WINDOWS\zipped.tmp D:\Autorun.inf . ((((((((((((((((((((((((((((( Fichiers créés 2008-03-08 to 2008-04-08 )))))))))))))))))))))))))))))))))))) . 2008-04-07 19:49 . 2008-04-07 19:49 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-04-07 19:38 . 2008-04-07 19:45 <REP> d-------- C:\MSNFix 2008-04-07 19:17 . 2008-04-07 19:46 <REP> d-------- C:\Deckard 2008-04-07 17:32 . 2008-03-29 19:31 75,856 --a------ C:\WINDOWS\system32\drivers\aswSP.sys 2008-04-07 17:32 . 2008-03-29 19:35 20,560 --a------ C:\WINDOWS\system32\drivers\aswFsBlk.sys 2008-04-03 18:18 . 2008-04-03 18:20 <REP> d-------- C:\Program Files\SPYWAREfighter 2008-04-03 18:18 . 2008-04-03 18:18 <REP> d-------- C:\Program Files\Fichiers communs\Application 2008-04-03 18:00 . 2008-04-03 18:03 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab 2008-04-03 13:07 . 2008-04-03 14:10 <REP> d-------- C:\WINDOWS\BDOSCAN8 2008-04-01 18:06 . 2008-04-01 18:06 <REP> d-------- C:\Temp 2008-04-01 12:14 . 2008-04-01 12:14 <REP> d-------- C:\Program Files\Alwil 2008-04-01 11:41 . 2008-04-01 11:41 <REP> d-------- C:\Program Files\PC-Cleaner 2008-03-31 12:56 . 2008-04-01 12:08 <REP> d-------- C:\WINDOWS\system32\ActiveScan 2008-03-31 12:56 . 2008-03-31 19:41 30,590 --a------ C:\WINDOWS\system32\pavas.ico 2008-03-31 12:56 . 2008-03-31 19:41 2,550 --a------ C:\WINDOWS\system32\Uninstall.ico 2008-03-31 12:56 . 2008-03-31 19:41 1,406 --a------ C:\WINDOWS\system32\Help.ico 2008-03-30 20:44 . 2008-03-30 20:44 4,096 --a------ C:\WINDOWS\a.MSNFix 2008-03-30 20:43 . 2008-03-31 19:35 <REP> d-------- C:\Documents and Settings\All Users\Application Data\yfsdexyz 2008-03-30 20:43 . 2008-03-30 20:43 110,592 --a------ C:\WINDOWS\system32\krihsbyj.exe 2008-03-29 17:39 . 2008-03-29 17:40 <REP> d-------- C:\Program Files\PartyPoker 2008-03-27 19:09 . 2008-03-27 19:09 <REP> d-------- C:\Program Files\GenerateurMotPasse20 2008-03-23 14:29 . 2008-03-23 14:29 <REP> d-------- C:\Program Files\Alwil Software 2008-03-23 14:29 . 2008-03-29 19:45 1,146,232 --a------ C:\WINDOWS\system32\aswBoot.exe 2008-03-23 14:29 . 2004-01-09 11:13 380,928 --a------ C:\WINDOWS\system32\actskin4.ocx 2008-03-23 14:29 . 2008-03-29 19:23 95,608 --a------ C:\WINDOWS\system32\AVASTSS.scr 2008-03-23 14:29 . 2008-03-29 19:35 94,544 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys 2008-03-23 14:29 . 2008-01-17 17:34 93,264 --a------ C:\WINDOWS\system32\drivers\aswmon.sys 2008-03-23 14:29 . 2008-03-29 19:27 42,912 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys 2008-03-23 14:29 . 2008-03-29 19:26 26,944 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys 2008-03-23 14:29 . 2008-03-29 19:29 23,152 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys 2008-03-22 21:37 . 2008-03-22 21:37 7,168 --ahs---- C:\WINDOWS\Thumbs.db 2008-03-22 21:02 . 2007-04-23 16:54 108,680 -ra------ C:\WINDOWS\system32\drivers\s115mdm.sys 2008-03-22 21:02 . 2007-04-23 16:54 100,488 -ra------ C:\WINDOWS\system32\drivers\s115mgmt.sys 2008-03-22 21:02 . 2007-04-23 16:54 98,568 -ra------ C:\WINDOWS\system32\drivers\s115obex.sys 2008-03-22 21:02 . 2007-04-23 16:54 83,208 -ra------ C:\WINDOWS\system32\drivers\s115bus.sys 2008-03-22 21:02 . 2007-04-23 16:54 15,112 -ra------ C:\WINDOWS\system32\drivers\s115mdfl.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115whnt.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115wh.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115cmnt.sys 2008-03-22 21:02 . 2007-04-23 16:54 12,424 -ra------ C:\WINDOWS\system32\drivers\s115cm.sys 2008-03-22 21:01 . 2008-03-22 21:01 <REP> d-------- C:\Documents and Settings\HP_Propriétaire\Application Data\Teleca 2008-03-22 20:58 . 2008-03-31 21:34 <REP> d-------- C:\Program Files\Fichiers communs\Teleca Shared 2008-03-22 20:58 . 2008-03-31 21:34 <REP> d-------- C:\Program Files\Fichiers communs\Sony Ericsson Shared 2008-03-22 20:58 . 2008-03-22 20:58 <REP> d-------- C:\Documents and Settings\HP_Propriétaire\Application Data\Sony Ericsson 2008-03-22 20:56 . 2008-03-22 20:58 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Teleca 2008-03-20 15:50 . 2008-03-20 15:50 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2008-03-20 15:50 . 2008-03-20 15:50 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_ggsemc_01005.Wdf 2008-03-20 15:47 . 2008-03-22 20:56 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Sony Ericsson 2008-03-20 15:47 . 2008-03-20 15:47 1,419,232 --a------ C:\WINDOWS\system32\wdfcoinstaller01005.dll 2008-03-20 15:47 . 2008-03-20 15:47 20,520 --a------ C:\WINDOWS\system32\drivers\ggsemc.sys 2008-03-20 15:47 . 2008-03-20 15:47 13,352 --a------ C:\WINDOWS\system32\drivers\ggflt.sys 2008-03-20 15:45 . 2008-03-27 19:13 <REP> d-------- C:\Program Files\Sony Ericsson . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-04-07 15:28 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater 2008-04-02 15:15 --------- d-----w C:\Program Files\eMule 2008-03-31 19:46 --------- d-----w C:\Program Files\Sonic RecordNow! 2008-03-31 19:46 --------- d-----w C:\Program Files\QuickTime 2008-03-31 19:44 --------- d-----w C:\Program Files\MSN Messenger 2008-03-31 19:39 --------- d-----w C:\Program Files\Messenger Plus! Live 2008-03-31 19:38 --------- d-----w C:\Program Files\iTunes 2008-03-31 19:34 --------- d-----w C:\Program Files\Google 2008-03-31 19:21 278,528 ----a-w C:\Program Files\Fichiers communs\FDEUnInstaller.exe 2008-03-30 12:47 --------- d-----w C:\Documents and Settings\HP_Propriétaire\Application Data\MyPhoneExplorer 2008-03-29 15:42 --------- d-----w C:\Program Files\Xilisoft 2008-03-27 17:13 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-03-21 15:23 --------- d-----w C:\Documents and Settings\HP_Propriétaire\Application Data\BitTorrent DNA 2008-03-14 09:26 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-02-21 13:38 946,832 ----a-w C:\WINDOWS\system32\_ISource30.dll 2008-01-31 14:20 119,568 ----a-w C:\WINDOWS\system32\VB6FR.DLL 2008-01-31 14:20 1,392,671 ----a-w C:\WINDOWS\system32\msvbvm60.dll 2008-01-11 05:36 44,544 ----a-w C:\WINDOWS\system32\dllcache\pngfilt.dll . <pre> ----a-w 39,424 2008-03-31 11:13:49 C:\Documents and Settings\HP_Propriétaire\Bureau\AAA programme guy\solsuite\SolSuite 2006 v6.1 + Patch + Keygen\Patch\SS2004-patch .exe </pre> ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D5F536B7-2822-4736-87D3-414DF1BF1E8C}] C:\WINDOWS\svpekgonrlo.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 20:00 15360] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-09-06 23:10 68856] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [2005-10-28 16:25 94208] "ttffsxrm"="C:\WINDOWS\system32\krihsbyj.exe" [2008-03-30 20:43 110592] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 18:04 52736] "AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 19:06 88363 C:\WINDOWS\AGRSMMSG.exe] "HPHUPD06"="c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe" [2004-06-07 20:53 49152] "HPHmon06"="C:\WINDOWS\system32\hphmon06.exe" [2004-06-07 20:43 659456] "KBD"="C:\HP\KBD\KBD.EXE" [2003-02-11 21:02 61440] "Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [2004-04-14 22:43 233472] "PS2"="C:\WINDOWS\system32\ps2.exe" [2004-10-25 23:17 90112] "ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-11-04 05:10 344064] "AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 22:47 57344 C:\WINDOWS\ALCXMNTR.EXE] "LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2004-10-14 23:54 253952] "Reminder"="C:\Windows\Creator\Remind_XP.exe" [2004-12-14 02:23 663552] "GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 00:47 31016] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 20:51 39792] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-09-26 15:42 267064] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-06-29 07:24 286720] "Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 09:16 528384] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2008-03-29 19:37 79224] "spywarefighterguard"="C:\Program Files\SPYWAREfighter\spftray.exe" [2008-02-21 15:37 115344] C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2004-11-05 03:28:24 258048] Outil de mise … jour Google.lnk - C:\Program Files\Google\Google Updater\GoogleUpdater.exe [2007-09-06 23:10:17 126136] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\run] "cNFmbbHfOz"= C:\Documents and Settings\All Users\Application Data\yfsdexyz\srudofcj.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] --a------ 2007-09-26 15:42 267064 C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] --a------ 2001-07-09 10:50 155648 C:\WINDOWS\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] --a------ 2007-06-29 07:24 286720 C:\Program Files\QuickTime\QTTask.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\eMule\\emule.exe"= "C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"= "C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"= "C:\\Program Files\\Internet Explorer\\iexplore.exe"= "C:\\Program Files\\iTunes\\iTunes.exe"= R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-03-29 19:31] R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-03-29 19:35] R3 SpyFighter;SpyFighter Guard Device;C:\Program Files\SPYWAREfighter\spyfighter.sys [2008-02-21 15:38] R3 SPYWAREfighterRP;SPYWAREfighterRP;"C:\Program Files\SPYWAREfighter\spfprc.exe" [2008-02-21 15:37] R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 07:08] S3 ggflt;SEMC USB Flash Driver Filter;C:\WINDOWS\system32\DRIVERS\ggflt.sys [2008-03-20 15:47] S3 s115bus;Sony Ericsson Device 115 driver (WDM);C:\WINDOWS\system32\DRIVERS\s115bus.sys [2007-04-23 16:54] S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\s115mdfl.sys [2007-04-23 16:54] S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\s115mdm.sys [2007-04-23 16:54] S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\s115mgmt.sys [2007-04-23 16:54] S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\s115obex.sys [2007-04-23 16:54] S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 23:58] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e35c655c-f0f2-11dc-abed-000b6ba130c7}] \Shell\Auto\command - L:\autorunx.exe \Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL autorunx.exe . ************************************************************************** catchme 0.3.1351 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-08 17:50:10 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cachés ... Balayage caché autostart entries ... Balayage des fichiers cachés ... Scan terminé avec succès Les fichiers cachés: 0 ************************************************************************** . Temps d'accomplissement: 2008-04-08 17:51:30 ComboFix-quarantined-files.txt 2008-04-08 15:51:11 Pre-Run: 25,414,909,952 octets libres Post-Run: 25,412,206,592 octets libres . 2008-04-02 15:30:27 --- E O F ---
  8. volvo850btcc
    re je veut bien thanos mais ton combofix.exe y fait rien je veut dire pas la que qd je le lance rien ne se passe y me demande rien du tout juste un avertisement de securiter comme tout les programme en general puis une petite barre d'avancement puis plus rien tous sa es bien normal ????
  9. volvo850btcc
    hello thanos desoler du retard mais j'ai pas ete prevenu par mail de ta reponse lol c'est bon que j'allai voir si tu avait repondu que j'ai vu ta reponse pour commencer moi je preferai charles sa faisait moin peur mdr alors je vais mettre tout se que tu ma demander je commence : 1 le rapport de DSS Deckard's System Scanner v20071014.68 Run by HP_Propriétaire on 2008-04-07 19:24:11 Computer is in Normal Mode. -------------------------------------------------------------------------------- -- System Restore -------------------------------------------------------------- -- Last 5 Restore Point(s) -- 46: 2008-04-07 17:18:28 UTC - RP135 - Deckard's System Scanner Restore Point 45: 2008-04-05 13:50:46 UTC - RP134 - Point de vérification système 44: 2008-04-03 16:18:04 UTC - RP133 - Installed SPYWAREfighter. 43: 2008-04-02 15:26:55 UTC - RP132 - Software Distribution Service 3.0 42: 2008-04-02 14:24:39 UTC - RP131 - Point de vérification système -- First Restore Point -- 1: 2008-01-09 10:18:17 UTC - RP90 - Point de vérification système Backed up registry hives. Performed disk cleanup. -- HijackThis Clone ------------------------------------------------------------ Emulating logfile of Trend Micro HijackThis v2.0.2 Scan saved at 2008-04-07 19:31:04 Platform: Windows XP Service Pack 2 (5.01.2600) MSIE: Internet Explorer (7.00.6000.16608) Boot mode: Normal Running processes: C:\WINDOWS\system32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ati2evxx.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\WINDOWS\explorer.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Documents and Settings\All Users\Application Data\yfsdexyz\srudofcj.exe C:\WINDOWS\system\hpsysdrv.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\system32\hphmon06.exe C:\hp\KBD\kbd.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\ALCXMNTR.EXE C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Program Files\SPYWAREfighter\spftray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe C:\WINDOWS\system32\krihsbyj.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\SPYWAREfighter\spfprc.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Sony Ericsson\Mobile2\File Manager\FMObexServer.exe C:\WINDOWS\system32\svchost.exe C:\Documents and Settings\HP_Propriétaire\Bureau\dss.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gogle.com/ R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://192.168.1.254/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\GoogleToolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O2 - BHO: GNX Bingo - {D5F536B7-2822-4736-87D3-414DF1BF1E8C} - C:\WINDOWS\svpekgonrlo.dll (file missing) O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll O3 - Toolbar: (no name) - - (no file) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\GoogleToolbar1.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [spywarefighterguard] C:\Program Files\SPYWAREfighter\spftray.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [ttffsxrm] C:\WINDOWS\system32\krihsbyj.exe O4 - HKLM\..\Policies\Explorer\Run: [cNFmbbHfOz] C:\Documents and Settings\All Users\Application Data\yfsdexyz\srudofcj.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableTaskMgr=1 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (file missing) O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing) O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - http://ipgweb.cce.hp.com/rdqemea/downloads/sysinfo.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab O16 - DPF: {54BE6B6F-3056-470B-97E1-BB92E051B6C4} (DeviceEnum Class) - http://h30155.www3.hp.com/ediags/dd/instal...nosticsxp2k.cab O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} () - http://www.eset.eu/buxus/docs/OnlineScanner.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://volvosaab.spaces.live.com/PhotoUpload/MsnPUpld.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secur...loadManager.ocx O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll O18 - Protocol: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: SPYWAREfighterRP - SpamFighter APS - C:\Program Files\SPYWAREfighter\spfprc.exe -- End of file - 10631 bytes -- File Associations ----------------------------------------------------------- All associations okay. -- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------- R3 Iviaspi (IVI ASPI Shell) - c:\windows\system32\drivers\iviaspi.sys <Not Verified; InterVideo, Inc.; InterVideo ASPI Shell> R3 Pfc (Padus ASPI Shell) - c:\windows\system32\drivers\pfc.sys <Not Verified; Padus, Inc.; Padus® ASPI Shell> S1 InCDPass - c:\windows\system32\drivers\incdpass.sys (file missing) S1 InCDRm (InCD Reader) - c:\windows\system32\drivers\incdrm.sys (file missing) S1 intelppm (Pilote de processeur Intel) - c:\windows\system32\drivers\intelppm.sys (file missing) S4 InCDFs (InCD File System) - c:\windows\system32\drivers\incdfs.sys (file missing) -- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled -------------------- All services whitelisted. -- Device Manager: Disabled ---------------------------------------------------- Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318} Description: Carte réseau 1394 Device ID: V1394\NIC1394\1938C511D800 Manufacturer: Microsoft Name: Carte réseau 1394 PNP Device ID: V1394\NIC1394\1938C511D800 Service: NIC1394 -- Files created between 2008-03-07 and 2008-04-07 ----------------------------- 2008-04-03 18:18:23 0 d-------- C:\Program Files\Fichiers communs\Application 2008-04-03 18:18:09 0 d-------- C:\Program Files\SPYWAREfighter 2008-04-03 18:00:43 0 d-------- C:\WINDOWS\system32\Kaspersky Lab 2008-04-03 13:07:35 0 d-------- C:\WINDOWS\BDOSCAN8 2008-04-01 18:06:27 0 d-------- C:\Temp 2008-04-01 12:14:45 0 d-------- C:\Program Files\Alwil 2008-04-01 11:41:16 0 d-------- C:\Program Files\PC-Cleaner 2008-03-31 12:56:33 0 d-------- C:\WINDOWS\system32\ActiveScan 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\userconfig9x.dll 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32winlogonpc.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32temp#01.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32taack.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32taack.dat 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32ssvchost.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32ssvchost.com 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32ssurf022.dll 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32sncntr.exe 2008-03-30 20:44:03 0 d-------- C:\WINDOWS\system32smp 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32regm64.dll 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32regc64.dll 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32psoft1.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32psof1.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32ps1.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32netode.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32mwin32.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32mtr2.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32msvchost.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32msnbho.dll 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32msgp.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32medup020.dll 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32medup012.dll 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32hxiwlgpm.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32hxiwlgpm.dat 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32hoproxy.dll 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32h@tkeysh@@k.dll 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32dpcproxy.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\system32bsva-egihsg52.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\iTunesMusic.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\FVProtect.exe 2008-03-30 20:44:03 4096 --a------ C:\WINDOWS\a.bat 2008-03-30 20:44:03 0 d-------- C:\Program Files\Inet Delivery 2008-03-30 20:44:03 0 d-------- C:\Documents and Settings\HP_Propriétaire\Bureauvirii 2008-03-30 20:44:03 4096 --a------ C:\Documents and Settings\HP_Propriétaire\Bureaufilemanagerclient.exe 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\winsystem.exe 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32WINWGPX.EXE 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32winsystem.exe 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32vcatchpi.dll 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32thun32.dll 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32thun.dll 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32sysreq.exe 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32Rundl1.exe 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32newsd32.exe 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32mssecu.exe 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32emesx.dll 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32bdn.com 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32awtoolb.dll 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32anticipator.dll 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\system32akttzn.exe 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\mssecu.exe 2008-03-30 20:44:02 4096 --a------ C:\WINDOWS\bdn.com 2008-03-30 20:44:02 4096 --a------ C:\Documents and Settings\HP_Propriétaire\BureauFWebdEditor.exe 2008-03-30 20:44:02 4096 --a------ C:\Documents and Settings\HP_Propriétaire\Bureaufwebd.exe 2008-03-30 20:44:01 4096 --a------ C:\WINDOWS\system32vbsys2.dll 2008-03-30 20:44:01 0 d-------- C:\WINDOWS\mslagent 2008-03-30 20:43:48 0 d-------- C:\Documents and Settings\All Users\Application Data\yfsdexyz 2008-03-30 20:43:47 110592 --a------ C:\WINDOWS\system32\krihsbyj.exe 2008-03-29 20:20:37 1376 --a------ C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache 2008-03-29 17:39:55 0 d-------- C:\Program Files\PartyPoker 2008-03-27 19:09:10 0 d-------- C:\Program Files\GenerateurMotPasse20 2008-03-23 14:29:47 0 d-------- C:\Program Files\Alwil Software 2008-03-22 21:01:54 0 d-------- C:\Documents and Settings\HP_Propriétaire\Application Data\Teleca 2008-03-22 20:58:34 0 d-------- C:\Documents and Settings\HP_Propriétaire\Application Data\Sony Ericsson 2008-03-22 20:58:16 0 d-------- C:\Program Files\Fichiers communs\Sony Ericsson Shared 2008-03-22 20:58:14 0 d-------- C:\Program Files\Fichiers communs\Teleca Shared 2008-03-22 20:56:18 0 d-------- C:\Documents and Settings\All Users\Application Data\Teleca 2008-03-20 15:47:22 0 d-------- C:\Documents and Settings\All Users\Application Data\Sony Ericsson 2008-03-20 15:45:47 0 d-------- C:\Program Files\Sony Ericsson -- Find3M Report --------------------------------------------------------------- 2008-04-03 18:18:23 0 d-------- C:\Program Files\Fichiers communs 2008-04-02 17:15:23 0 d-------- C:\Program Files\eMule 2008-03-31 21:46:32 0 d-------- C:\Program Files\Sonic RecordNow! 2008-03-31 21:46:25 0 d-------- C:\Program Files\QuickTime 2008-03-31 21:44:24 0 d-------- C:\Program Files\MSN Messenger 2008-03-31 21:39:35 0 d-------- C:\Program Files\Messenger Plus! Live 2008-03-31 21:38:28 0 d-------- C:\Program Files\iTunes 2008-03-31 21:34:45 0 d-------- C:\Program Files\Google 2008-03-31 21:21:33 278528 --a------ C:\Program Files\Fichiers communs\FDEUnInstaller.exe <Not Verified; ; FDEUninstaller> 2008-03-30 14:47:18 0 d-------- C:\Documents and Settings\HP_Propriétaire\Application Data\MyPhoneExplorer 2008-03-30 11:40:20 472796 --a------ C:\WINDOWS\system32\perfh00C.dat 2008-03-30 11:40:20 77254 --a------ C:\WINDOWS\system32\perfc00C.dat 2008-03-29 17:42:00 0 d-------- C:\Program Files\Xilisoft 2008-03-27 19:13:47 0 d--h----- C:\Program Files\InstallShield Installation Information 2008-03-21 17:23:38 0 d-------- C:\Documents and Settings\HP_Propriétaire\Application Data\BitTorrent DNA 2008-01-31 16:20:33 119568 --a------ C:\WINDOWS\system32\VB6FR.DLL <Not Verified; Microsoft Corporation; Environnement Visual Basic> -- Registry Dump --------------------------------------------------------------- *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D5F536B7-2822-4736-87D3-414DF1BF1E8C}] C:\WINDOWS\svpekgonrlo.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [07/05/1998 18:04] "AGRSMMSG"="AGRSMMSG.exe" [29/06/2004 19:06 C:\WINDOWS\AGRSMMSG.exe] "HPHUPD06"="c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe" [07/06/2004 20:53] "HPHmon06"="C:\WINDOWS\system32\hphmon06.exe" [07/06/2004 20:43] "KBD"="C:\HP\KBD\KBD.EXE" [11/02/2003 21:02] "Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [14/04/2004 22:43] "PS2"="C:\WINDOWS\system32\ps2.exe" [25/10/2004 23:17] "ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [04/11/2004 05:10] "AlcxMonitor"="ALCXMNTR.EXE" [07/09/2004 22:47 C:\WINDOWS\ALCXMNTR.EXE] "LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [14/10/2004 23:54] "Reminder"="C:\Windows\Creator\Remind_XP.exe" [14/12/2004 02:23] "GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [27/10/2006 00:47] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [10/10/2007 20:51] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [26/09/2007 15:42] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [29/06/2007 07:24] "Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [13/06/2007 09:16] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [29/03/2008 19:37] "spywarefighterguard"="C:\Program Files\SPYWAREfighter\spftray.exe" [21/02/2008 15:37] "@"="" [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [05/08/2004 20:00] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [06/09/2007 23:10] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [28/10/2005 16:25] "ttffsxrm"="C:\WINDOWS\system32\krihsbyj.exe" [30/03/2008 20:43] C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [5/11/2004 3:28:24] Outil de mise … jour Google.lnk - C:\Program Files\Google\Google Updater\GoogleUpdater.exe [6/09/2007 23:10:17] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "DisableTaskMgr"=1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\Run] "cNFmbbHfOz"=C:\Documents and Settings\All Users\Application Data\yfsdexyz\srudofcj.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e35c655c-f0f2-11dc-abed-000b6ba130c7}] Auto\command- L:\autorunx.exe AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL autorunx.exe *Newly Created Service* - ASWFSBLK *Newly Created Service* - ASWSP -- End of Deckard's System Scanner: finished at 2008-04-07 19:32:24 ----------- 2 le rapport de MSNFix.zip MSNFix 1.700 C:\MSNFix Fix exécuté le lun. 07/04/2008 - 19:39:19,01 By HP_Propri‚taire mode normal ************************ Recherche les fichiers présents ... C:\??????.exe ... C:\Documents and Settings\HP_Propri‚taire\????????.exe ... C:\WINDOWS\a.bat ************************ Recherche les dossiers présents ... \TEMP\ ************************ Suppression des fichiers .. OK ... C:\??????.exe /!\ ... C:\Documents and Settings\HP_Propri‚taire\????????.exe .. OK ... C:\WINDOWS\a.bat ************************ Suppression des dossiers /!\ ... \TEMP\ ************************ Nettoyage du registre Les fichiers encore présents seront supprimés au prochain redémarrage ************************ Suppression des fichiers .. OK ... C:\Documents and Settings\HP_Propri‚taire\????????.exe ************************ Fichiers suspects Aucun Fichier trouvé Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier lun. 07042008_19450210.zip ************************ HKLM\...\Winlogon\Userinit Userinit = C:\WINDOWS\system32\userinit.exe, ------------------------------------------------------------------------ Auteur : !aur3n7 Contact: http://changelog.fr ------------------------------------------------------------------------ --------------------------------------------- END --------------------------------------------- 3 le rapport de kaspersky en ligne ------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER REPORT Tuesday, April 08, 2008 9:57:35 AM Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600) Kaspersky Online Scanner version: 5.0.98.0 Kaspersky Anti-Virus database last update: 7/04/2008 Kaspersky Anti-Virus database records: 688619 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: extended Scan Archives: true Scan Mail Bases: true Scan Target - My Computer: C:\ D:\ E:\ F:\ G:\ H:\ I:\ J:\ Scan Statistics: Total number of scanned objects: 103726 Number of viruses found: 6 Number of infected objects: 9 Number of suspicious objects: 0 Duration of the scan process: 03:00:48 Infected Object Name / Virus Name / Last Action C:\Deckard\System Scanner\backup\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\a0ae3ccf.exe Infected: not-a-virus:Downloader.Win32.UltimateFix.n skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\DM_log.txt Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\HookStarter_log.txt Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\SpecificUSB_log.txt Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Cookies\index.dat Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Local Settings\Historique\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Local Settings\Historique\History.IE5\MSHist012008040720080408\index.dat Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\hpodvd09.log Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped C:\Documents and Settings\HP_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\HP_Propriétaire\NTUSER.DAT Object is locked skipped C:\Documents and Settings\HP_Propriétaire\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt Object is locked skipped C:\Program Files\SPYWAREfighter\spf.dat Object is locked skipped C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP129\A0020259.exe Infected: Virus.Win32.Downloader.av skipped C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP129\A0020311.dll Infected: not-a-virus:AdWare.Win32.Vapsup.dhv skipped C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP129\A0020312.dll Infected: not-a-virus:AdWare.Win32.Vapsup.dhu skipped C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP135\change.log Object is locked skipped C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP92\A0010463.exe/WISE0015.BIN Infected: not-a-virus:AdWare.Win32.Shopper.r skipped C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP92\A0010463.exe WiseSFX: infected - 1 skipped C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP92\A0010464.exe/WISE0007.BIN Infected: not-a-virus:AdWare.Win32.Shopper.r skipped C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP92\A0010464.exe WiseSFX: infected - 1 skipped C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped C:\WINDOWS\SchedLgU.Txt Object is locked skipped C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped C:\WINDOWS\Sti_Trace.log Object is locked skipped C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\default Object is locked skipped C:\WINDOWS\system32\config\default.LOG Object is locked skipped C:\WINDOWS\system32\config\Internet.evt Object is locked skipped C:\WINDOWS\system32\config\ODiag.evt Object is locked skipped C:\WINDOWS\system32\config\OSession.evt Object is locked skipped C:\WINDOWS\system32\config\SAM Object is locked skipped C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\SECURITY Object is locked skipped C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped C:\WINDOWS\system32\config\software Object is locked skipped C:\WINDOWS\system32\config\software.LOG Object is locked skipped C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\system Object is locked skipped C:\WINDOWS\system32\config\system.LOG Object is locked skipped C:\WINDOWS\system32\h323log.txt Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped C:\WINDOWS\Temp\Perflib_Perfdata_558.dat Object is locked skipped C:\WINDOWS\Temp\_avast4_\Webshlock.txt Object is locked skipped C:\WINDOWS\Web\def.htm Infected: not-virus:Hoax.HTML.Secureinvites.c skipped C:\WINDOWS\wiadebug.log Object is locked skipped C:\WINDOWS\wiaservc.log Object is locked skipped C:\WINDOWS\WindowsUpdate.log Object is locked skipped Scan process completed. voila thanos espere avoir ete bonne eleve et de t'avoir donnee tout se dont tu as besoin pour que tu puisse m'aider car ma machine mais une etherniter a demarrer maintenant a bientot
  10. volvo850btcc
    bonjours a tous j'ai de nouveau un probleme avec internet je ne sait pas comme c'est arriver mais je commence a me bcp de question sur les gens qui se dise mes ami car c'est depuis que je leur ai perter le pc que j'ai des probleme alors voila je vous met le rapport de hijackthis quer j'ai reussi a trouver en francais espere que vous pourrez m'aider Logfile of HijackThis v1.99.1 Scan saved at 13:32:07, on 3/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16608) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Documents and Settings\All Users\Application Data\yfsdexyz\srudofcj.exe C:\windows\system\hpsysdrv.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\system32\hphmon06.exe C:\HP\KBD\KBD.EXE C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\ALCXMNTR.EXE C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\WINDOWS\system32\krihsbyj.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Sony Ericsson\Mobile2\File Manager\FMObexServer.exe C:\Program Files\Sony Ericsson\Mobile2\Sync Manager\synccontroller.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe C:\Documents and Settings\HP_Propriétaire\Bureau\AAA programme guy\HijackThis-fr-Colok.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gogle.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://192.168.1.254/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: -Sans nom - {7E853D72-626A-48EC-A868-BA8D5E23E045} - -Manquant O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O2 - BHO: GNX Bingo - {D5F536B7-2822-4736-87D3-414DF1BF1E8C} - C:\WINDOWS\svpekgonrlo.dll (file missing) O3 -BarreOut. Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll O3 -BarreOut. &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [ttffsxrm] C:\WINDOWS\system32\krihsbyj.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O8 - Extra du menu contextuel E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Bouton Extra: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Outil Extra du menu : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Bouton Extra: -Sans nom - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Outil Extra du menu : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Bouton Extra: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Bouton Extra: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing) O9 - Outil Extra du menu : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing) O9 - Bouton Extra: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Outil Extra du menu : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - http://ipgweb.cce.hp.com/rdqemea/downloads/sysinfo.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab O16 - DPF: {54BE6B6F-3056-470B-97E1-BB92E051B6C4} (DeviceEnum Class) - http://h30155.www3.hp.com/ediags/dd/instal...nosticsxp2k.cab O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://volvosaab.spaces.live.com/PhotoUpload/MsnPUpld.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secur...loadManager.ocx O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe merci a bientot ( charles n'est plus la ???)
  11. volvo850btcc
    bonjours charles j'ai denouveau un probleme moteur avec ma volvo lol non voila je sait pas comment mais j'ai denouveau des fenetre cid qui aparaise tou le temps mais ne sait plus comment ai fait la premeire fois pour arriver a les foutre vouille si tu pouvait recommencer comme avant car j'ai pu remarquer que le rapport hijack es acahque fois different merci bcp charles
  12. volvo850btcc
    ha non charles je vien de voir se qui me demandai y me demande de prend viewpoint y me dit que c'est pas un spyrware mais bon je prefere demander avant
  13. volvo850btcc
    bonsoir charles dit moi comment je fait car pour ne plus faire de betise j'ai refuser les bup d'un site et maintenant je ne sait plus faire se que je voulais faire je t'explique j'etai sur le site volvotruck et je voulais faire un petit camion en 3D y ma demander de toujours autoriser les bup mais je fait refuser et voila qui dit qui as une erreur sur la page j'ai beau recommencer y me dit toujours qu'il y as une erreur j'aimerai bien mettre une image de ma page mais je sait pas comment faire car qd je vais dans inserer une image y me demande un URL
  14. volvo850btcc
    bonjour charles merci de ton aide je prend note a bientot qui sait pour un futur probleme
  15. volvo850btcc
    dit charles comment tu as fait pour mettre ta foto enfin celle de la petite maison dans la prairie
×
×
  • Créer...