Mamzel stel78

Le fichier ComboFix-quarantined-files.txt : Et le rapport de diaghelp : Le PC est impeccable , il fonctionne parfaitement bien. Merci pour tout.

Voila le rapport : DiagHelp version v1.4 - http://www.malekal.com excute le 2008-02-16 à 11:14:07.94 Liste des derniers fichies modifies/crees dans windir\system32 et prefetch D:\WINDOWS\prefetch\Layout.ini -->2007-08-14 20:50:15 D:\WINDOWS\prefetch\NTOSBOOT-B00DFAAD.pf -->2007-08-14 20:11:01 D:\WINDOWS\prefetch\U2.EXE-34AF7334.pf -->2007-07-10 18:59:49 D:\WINDOWS\prefetch\IMAPI.EXE-201490BB.pf -->2007-07-10 18:59:47 D:\WINDOWS\prefetch\W.EXE-036571AC.pf -->2007-07-10 18:59:45 D:\WINDOWS\prefetch\REGEDIT.EXE-2AE3423E.pf -->2007-07-10 18:59:45 D:\WINDOWS\prefetch\CTFMON.EXE-05E57A5E.pf -->2007-07-10 18:59:43 D:\WINDOWS\prefetch\CMD.EXE-034B0549.pf -->2007-07-10 18:59:43 D:\WINDOWS\prefetch\RUNDLL32.EXE-707D45DF.pf -->2007-07-10 18:59:38 D:\WINDOWS\prefetch\MSIEXEC.EXE-330626DC.pf -->2007-07-10 18:59:37 D:\WINDOWS\System32\drivers\Combo-Fix.sys -->2008-02-14 20:52:50 D:\WINDOWS\System32\drivers\avipbb.sys -->2008-02-14 10:43:53 D:\WINDOWS\System32\drivers\sptd.sys -->2008-02-04 19:37:26 D:\WINDOWS\System32\drivers\fidbox2.idx -->2007-12-28 23:34:58 D:\WINDOWS\System32\drivers\fidbox2.dat -->2007-12-28 23:34:58 D:\WINDOWS\System32\drivers\fidbox.idx -->2007-12-28 23:34:58 D:\WINDOWS\System32\drivers\fidbox.dat -->2007-12-28 23:34:58 D:\WINDOWS\System32\CONFIG.NT -->2008-02-13 15:21:58 D:\WINDOWS\System32\wpa.dbl -->2008-02-12 00:26:43 D:\WINDOWS\System32\FNTCACHE.DAT -->2008-02-04 21:38:53 D:\WINDOWS\System32\NeroCheck.exe -->2008-01-08 00:58:11 D:\WINDOWS\System32\PerfStringBackup.INI -->2008-01-07 06:25:57 D:\WINDOWS\System32\perfh00C.dat -->2008-01-07 06:25:57 D:\WINDOWS\System32\perfh009.dat -->2008-01-07 06:25:57 D:\WINDOWS\System32\perfc00C.dat -->2008-01-07 06:25:57 D:\WINDOWS\System32\perfc009.dat -->2008-01-07 06:25:57 D:\WINDOWS\System32\BASSMOD.dll -->2007-12-30 12:37:42 D:\WINDOWS\System32\CmdLineExt03.dll -->2007-12-25 12:14:21 D:\WINDOWS\System32\ssldivx.dll -->2007-12-11 23:34:44 D:\WINDOWS\System32\libdivx.dll -->2007-12-11 23:34:44 D:\WINDOWS\System32\winskfr.dll -->2007-12-01 23:30:26 D:\WINDOWS\System32\AUTOEXEC.NT -->2007-11-18 16:33:05 D:\WINDOWS\System32\SIntfNT.dll -->2007-11-13 20:12:13 D:\WINDOWS\System32\SIntf32.dll -->2007-11-13 20:12:13 D:\WINDOWS\System32\SIntf16.dll -->2007-11-13 20:12:13 D:\WINDOWS\System32\Thumbs.db -->2007-10-21 15:55:46 D:\WINDOWS\System32\rmoc3260.dll -->2007-10-16 10:54:03 D:\WINDOWS\System32\pndx5032.dll -->2007-10-16 10:53:27 D:\WINDOWS\System32\pndx5016.dll -->2007-10-16 10:53:27 D:\WINDOWS\System32\pncrt.dll -->2007-10-16 10:53:23 D:\WINDOWS\System32\iklog.log -->2007-10-13 09:46:57 D:\WINDOWS\System32\haspvdd.dll -->2007-09-08 20:31:01 D:\WINDOWS\WindowsUpdate.log -->2008-02-16 10:36:43 D:\WINDOWS\NeroDigital.ini -->2008-02-15 22:55:17 D:\WINDOWS\QTFont.qfn -->2008-02-15 10:31:35 D:\WINDOWS.log -->2008-02-15 10:31:14 D:\WINDOWS\bootstat.dat -->2008-02-15 10:30:21 D:\WINDOWS\PSEXESVC.EXE -->2008-02-14 20:52:41 D:\WINDOWS\setupapi.log -->2008-02-14 13:07:13 D:\WINDOWS\system.ini -->2008-02-14 12:52:27 D:\WINDOWS\win.ini -->2008-02-13 21:57:20 D:\WINDOWS\mozver.dat -->2008-02-13 17:22:32 D:\WINDOWS\setupact.log -->2008-02-12 06:33:01 D:\WINDOWS\tsoc.log -->2008-02-12 00:53:23 D:\WINDOWS\ocgen.log -->2008-02-12 00:53:23 D:\WINDOWS\ntdtcsetup.log -->2008-02-12 00:53:23 D:\WINDOWS\imsins.log -->2008-02-12 00:53:23 winlogon.exe Verified: Signed svchost.exe Verified: Signed ws2_32.dll Verified: Signed user32.dll Verified: Signed tcpip.sys Verified: Unsigned ndis.sys Verified: Signed null.sys Verified: Signed ListDLLs v2.25 - DLL lister for Win9x/NT Copyright © 1997-2004 Mark Russinovich Sysinternals - www.sysinternals.com ------------------------------------------------------------------------------ explorer.exe pid: 1904 Command line: D:\WINDOWS\Explorer.EXE Base Size Version Path 0x58b50000 0x9a000 5.82.2900.2527 D:\WINDOWS\system32\comctl32.dll 0x76f80000 0x7f000 2001.12.4414.0258 D:\WINDOWS\system32\CLBCATQ.DLL 0x77000000 0xd4000 2001.12.4414.0258 D:\WINDOWS\system32\COMRes.dll 0x76ac0000 0x11000 3.05.2284.0000 D:\WINDOWS\system32\ATL.DLL 0x745e0000 0x2c6000 3.01.4000.2435 D:\WINDOWS\system32\msi.dll 0x01960000 0x18000 D:\WINDOWS\LC.dll 0x012c0000 0x7000 1.00.0000.0001 D:\PROGRA~1\Wanadoo\Inactivity.dll 0x02020000 0x3000 6.81.0046.0001 D:\PROGRA~1\Nokia\Nokia PC Suite 6\Lang\ConnectionManager_fre.nlr 0x10000000 0x16000 600.00.0000.0002 D:\Program Files\Free Download Manager\FUM\fumshext.dll 0x16200000 0x6000 4.01.0000.0000 D:\PROGRA~1\WINZIP32\WZSHLSTB.DLL 0x00dc0000 0x2c000 D:\Program Files\WinRAR\rarext.dll 0x00df0000 0x11000 7.00.0000.0010 D:\Program Files\Avira\AntiVir PersonalEdition Classic\shlext.dll 0x7c250000 0x102000 7.10.3077.0000 D:\Program Files\Avira\AntiVir PersonalEdition Classic\MFC71U.DLL 0x00e10000 0x56000 7.10.3052.0004 D:\Program Files\Avira\AntiVir PersonalEdition Classic\MSVCR71.dll 0x00e80000 0x23000 2.00.0000.0001 D:\WINDOWS\system32\stlshell.dll 0x1c000000 0x6000 1.02.0001.0000 D:\Program Files\Notepad++\nppcm.dll 0x00ed0000 0x24000 4.42.0000.0000 D:\Program Files\7-Zip\7-zip.dll 0x02400000 0x85000 6.81.0046.0001 D:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll 0x02490000 0x8c000 6.81.0068.0000 D:\Program Files\Nokia\Nokia PC Suite 6\PCSCM.dll 0x01fe0000 0x3f000 6.81.0062.0000 D:\WINDOWS\system32\ConnAPI.DLL 0x7c3a0000 0x7b000 7.10.3077.0000 D:\WINDOWS\system32\MSVCP71.dll 0x017f0000 0xb000 6.81.0029.0000 D:\Program Files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_fre.nlr 0x02520000 0x8b000 6.81.0011.0000 D:\Program Files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr ListDLLs v2.25 - DLL lister for Win9x/NT Copyright © 1997-2004 Mark Russinovich Sysinternals - www.sysinternals.com ------------------------------------------------------------------------------ winlogon.exe pid: 468 Command line: winlogon.exe Base Size Version Path 0x01000000 0x81000 \??\D:\WINDOWS\system32\winlogon.exe 0x58b50000 0x9a000 5.82.2900.2527 D:\WINDOWS\system32\COMCTL32.dll 0x74730000 0x3d000 3.525.1117.0000 D:\WINDOWS\system32\ODBC32.dll 0x20000000 0x18000 3.525.1117.0000 D:\WINDOWS\system32\odbcint.dll 0x77000000 0xd4000 2001.12.4414.0258 D:\WINDOWS\system32\COMRes.dll 0x76f80000 0x7f000 2001.12.4414.0258 D:\WINDOWS\system32\CLBCATQ.DLL 0x76010000 0x65000 6.02.3104.0000 D:\WINDOWS\system32\MSVCP60.dll Le volume dans le lecteur D n'a pas de nom. Le numéro de série du volume est 8886-CF9C Répertoire de D:\WINDOWS\system 1996-08-27 01:12 4,176 QTNOTIFY.EXE 1 fichier(s) 4,176 octets 0 Rép(s) 5,575,684,096 octets libres Le volume dans le lecteur D n'a pas de nom. Le numéro de série du volume est 8886-CF9C Répertoire de D:\WINDOWS\system32 2004-08-19 17:09 6,144 csrss.exe 1 fichier(s) 6,144 octets 0 Rép(s) 5,575,684,096 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur D n'a pas de nom. Le numéro de série du volume est 8886-CF9C Répertoire de D:\WINDOWS\Downloaded Program Files 2008-02-13 21:10 <REP> . 2008-02-13 21:10 <REP> .. 2007-07-10 18:41 65 desktop.ini 2006-05-16 10:58 24,576 dwusplay.dll 2006-05-16 10:58 196,608 dwusplay.exe 2007-04-11 14:55 1,292 erma.inf 2007-11-20 16:04 1,523,536 FP_AX_CAB_INSTALLER.exe 2006-05-16 10:58 484,272 isusweb.dll 2007-11-20 15:50 247 swflash.inf 7 fichier(s) 2,230,596 octets Total des fichiers listés : 7 fichier(s) 2,230,596 octets 2 Rép(s) 5,575,684,096 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues D:\Program Files\Multi_Media_France présent! Possible infection : lop.com Export des clefs sensibles.. Liste des fichiers en exception sur le pare-feu XP SP2 "D:\\Program Files\\eMule\\emule.exe"="D:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule" "D:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"="D:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe:*:Enabled:Veoh Client" "D:\\Program Files\\BitTorrent\\bittorrent.exe"="D:\\Program Files\\BitTorrent\\bittorrent.exe:*:Enabled:bittorrent" "D:\\Program Files\\MSN Messenger\\msnmsgr.exe"="D:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Messenger" "D:\\Program Files\\FlashGet\\flashget.exe"="D:\\Program Files\\FlashGet\\flashget.exe:*:Enabled:FlashGet" Export de la clef SharedTaskScheduler [sharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" exports des policies REGEDIT4 [system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 Export des clefs sensibles.. Rechercher adresses sensibles dans le fichier HOSTS... catchme 0.3.1319 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-02-16 11:17:53 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden services & system hive ... IPC error: 2 Le fichier spécifié est introuvable. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\a347scsi\Config\jdgg40] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] "s1"=dword:c207c505 "s2"=dword:9b5a259c "h0"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "p0"="D:\Program Files\DAEMON Tools\" "h0"=dword:00000000 "khjeh"=hex:6d,da,31,65,83,01,d2,9d,7b,39,66,42,d3,76,38,13,9f,47,a2,c3,59,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4000001] "a0"=hex:20,01,00,00,f2,e1,8c,51,4b,6b,f4,d4,46,ab,3c,76,f2,ff,dc,7c,44,.. "khjeh"=hex:ca,af,ee,fa,c4,0c,5a,4b,1e,df,fe,3f,b8,2b,de,78,42,53,a1,07,a1,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4000001Jf40] "khjeh"=hex:4e,ca,ca,80,61,7a,79,58,09,ab,63,35,4c,c7,ec,b4,e6,c8,b0,5f,0f,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "p0"="D:\Program Files\DAEMON Tools\" "h0"=dword:00000000 "khjeh"=hex:6d,da,31,65,83,01,d2,9d,7b,39,66,42,d3,76,38,13,9f,47,a2,c3,59,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4000001] "a0"=hex:20,01,00,00,f2,e1,8c,51,4b,6b,f4,d4,46,ab,3c,76,f2,ff,dc,7c,44,.. "khjeh"=hex:ca,af,ee,fa,c4,0c,5a,4b,1e,df,fe,3f,b8,2b,de,78,42,53,a1,07,a1,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4000001Jf40] "khjeh"=hex:33,6c,8d,03,95,ae,06,8f,fc,37,52,b6,71,bc,11,7a,cf,cf,f1,50,df,.. scanning hidden registry entries ... [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E9F81423-211E-46B6-9AE0-38568BC5CF6F}] "DisplayName"="Alcohol 120%" source file error: D:\Documents and Settings\Jean-Christophe\ntuser.dat scanning hidden files ... scan completed successfully hidden services: 0 hidden files: 0 KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Process list by traversal of KiWaitListHead 4 - System 444 - csrss.exe 468 - winlogon.exe 512 - services.exe 524 - lsass.exe 680 - svchost.exe 728 - svchost.exe 768 - svchost.exe 800 - svchost.exe 836 - LClock.exe 896 - spoolsv.exe 948 - avguard.exe 1104 - sched.exe 1116 - mDNSResponder.e 1136 - SAgent2.exe 1512 - GestionnaireInt 1548 - alg.exe 1832 - emule.exe 1904 - explorer.exe 2168 - ComComp.exe 2432 - Toaster.exe 2448 - Inactivity.exe 2464 - PollingModule.e 2516 - AlertModule.exe 3160 - Watch.exe 3176 - iPodService.exe 3340 - bittorrent.exe 3696 - avgnt.exe 3920 - taskmgr.exe 4036 - cmd.exe 4972 - firefox.exe Total number of processes = 31 NOTE: Under WinXP, this will not show all processes. KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Driver/Module list by traversal of PsLoadedModuleList 804D7000 - \WINDOWS\system32\ntkrnlpa.exe 806CE000 - \WINDOWS\system32\hal.dll F8B64000 - \WINDOWS\system32\KDCOM.DLL F8A74000 - \WINDOWS\system32\BOOTVID.dll F848C000 - sptd.sys F8B66000 - \WINDOWS\System32\Drivers\WMILIB.SYS F8474000 - \WINDOWS\System32\Drivers\SCSIPORT.SYS F844C000 - a347bus.sys F841D000 - ACPI.sys F8664000 - isapnp.sys F840C000 - pci.sys F8B68000 - viaide.sys F88E4000 - \WINDOWS\system32\DRIVERS\PCIIDEX.SYS F8674000 - MountMgr.sys F83ED000 - ftdisk.sys F8B6A000 - dmload.sys F83C7000 - dmio.sys F88EC000 - PartMgr.sys F8684000 - VolSnap.sys F83AF000 - F8B6C000 - a347scsi.sys F8694000 - disk.sys F86A4000 - \WINDOWS\system32\DRIVERS\CLASSPNP.SYS F8390000 - fltMgr.sys F837E000 - sr.sys F86B4000 - PxHelp20.sys F8367000 - KSecDD.sys F86C4000 - Defrag32b.sys F82DA000 - Ntfs.sys F82AD000 - NDIS.sys F8292000 - Mup.sys F86D4000 - amdagp.sys F87C4000 - \SystemRoot\system32\DRIVERS\processr.sys F802A000 - \SystemRoot\system32\DRIVERS\nv4_mini.sys F8016000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS F87D4000 - \SystemRoot\system32\DRIVERS\cdrom.sys F892C000 - \SystemRoot\System32\Drivers\GEARAspiWDM.sys F8934000 - \SystemRoot\system32\DRIVERS\usbuhci.sys F7FF3000 - \SystemRoot\system32\DRIVERS\USBPORT.SYS F87E4000 - \SystemRoot\system32\drivers\es1371mp.sys F7FCF000 - \SystemRoot\system32\drivers\portcls.sys F87F4000 - \SystemRoot\system32\drivers\drmk.sys F7FAC000 - \SystemRoot\system32\drivers\ks.sys F8944000 - \SystemRoot\system32\DRIVERS\usbohci.sys F894C000 - \SystemRoot\system32\DRIVERS\usbehci.sys F8804000 - \SystemRoot\system32\DRIVERS\AN983.sys F7F62000 - \SystemRoot\System32\Drivers\a8gnfdt2.SYS F899C000 - \SystemRoot\system32\DRIVERS\fdc.sys F7F51000 - \SystemRoot\system32\DRIVERS\serial.sys F824E000 - \SystemRoot\system32\DRIVERS\serenum.sys F7F3D000 - \SystemRoot\system32\DRIVERS\parport.sys F8814000 - \SystemRoot\system32\DRIVERS\i8042prt.sys F89A4000 - \SystemRoot\system32\DRIVERS\kbdclass.sys F8C8E000 - \SystemRoot\system32\DRIVERS\audstub.sys F8824000 - \SystemRoot\system32\DRIVERS\rasl2tp.sys F824A000 - \SystemRoot\system32\DRIVERS\ndistapi.sys F7F26000 - \SystemRoot\system32\DRIVERS\ndiswan.sys F8834000 - \SystemRoot\system32\DRIVERS\raspppoe.sys F8844000 - \SystemRoot\system32\DRIVERS\raspptp.sys F89AC000 - \SystemRoot\system32\DRIVERS\TDI.SYS F89B4000 - \SystemRoot\system32\DRIVERS\ptilink.sys F89BC000 - \SystemRoot\system32\DRIVERS\raspti.sys F7EF5000 - \SystemRoot\system32\DRIVERS\rdpdr.sys F8854000 - \SystemRoot\system32\DRIVERS\termdd.sys F89C4000 - \SystemRoot\system32\DRIVERS\mouclass.sys F8B84000 - \SystemRoot\system32\DRIVERS\swenum.sys F7EC1000 - \SystemRoot\system32\DRIVERS\update.sys F8232000 - \SystemRoot\system32\DRIVERS\mssmbios.sys F8864000 - \SystemRoot\System32\Drivers\NDProxy.SYS F8874000 - \SystemRoot\system32\DRIVERS\usbhub.sys F8B8A000 - \SystemRoot\system32\DRIVERS\USBD.SYS F820A000 - \SystemRoot\system32\DRIVERS\gameenum.sys F8884000 - \SystemRoot\system32\DRIVERS\redbook.sys F89D4000 - \SystemRoot\system32\DRIVERS\flpydisk.sys F8B8C000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS F8DAF000 - \SystemRoot\System32\Drivers\Null.SYS F8B8E000 - \SystemRoot\System32\Drivers\Beep.SYS F89E4000 - \SystemRoot\System32\drivers\vga.sys F8B90000 - \SystemRoot\System32\Drivers\mnmdd.SYS F8B92000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys F89EC000 - \SystemRoot\System32\Drivers\Msfs.SYS F89F4000 - \SystemRoot\System32\Drivers\Npfs.SYS F8B48000 - \SystemRoot\system32\DRIVERS\rasacd.sys F6C9E000 - \SystemRoot\system32\DRIVERS\ipsec.sys F88A4000 - \SystemRoot\system32\DRIVERS\msgpc.sys F6C46000 - \SystemRoot\system32\DRIVERS\tcpip.sys F6C1E000 - \SystemRoot\system32\DRIVERS\netbt.sys F6BFC000 - \SystemRoot\System32\drivers\afd.sys F88B4000 - \SystemRoot\system32\DRIVERS\netbios.sys F8A04000 - \SystemRoot\system32\DRIVERS\ssmdrv.sys F6BDB000 - \SystemRoot\system32\DRIVERS\ipnat.sys F88C4000 - \SystemRoot\system32\DRIVERS\wanarp.sys F6BB0000 - \SystemRoot\system32\DRIVERS\rdbss.sys F6B41000 - \SystemRoot\system32\DRIVERS\mrxsmb.sys F8704000 - \SystemRoot\System32\Drivers\Fips.SYS F8714000 - \SystemRoot\system32\DRIVERS\avipbb.sys F8B94000 - \??\D:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys F825A000 - \SystemRoot\system32\DRIVERS\hidusb.sys F8734000 - \SystemRoot\system32\DRIVERS\HIDCLASS.SYS F8A1C000 - \SystemRoot\system32\DRIVERS\HIDPARSE.SYS F8256000 - \SystemRoot\system32\DRIVERS\mouhid.sys F6AF6000 - \SystemRoot\System32\Drivers\Fastfat.SYS F8744000 - \SystemRoot\System32\Drivers\Cdfs.SYS F6A3E000 - \SystemRoot\System32\Drivers\dump_atapi.sys F8B96000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS BF800000 - \SystemRoot\System32\win32k.sys F7EA9000 - \SystemRoot\System32\drivers\Dxapi.sys F8A2C000 - \SystemRoot\System32\watchdog.sys BF000000 - \SystemRoot\System32\drivers\dxg.sys F8C97000 - \SystemRoot\System32\drivers\dxgthk.sys BF012000 - \SystemRoot\System32\nv4_disp.dll BFFA0000 - \SystemRoot\System32\ATMFD.DLL F509A000 - \??\D:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys F8A4C000 - \SystemRoot\System32\Drivers\Haspnt.SYS F8BB8000 - \SystemRoot\System32\Drivers\ParVdm.SYS F5965000 - \SystemRoot\System32\Drivers\Defrag32.SYS F4E3D000 - \SystemRoot\system32\DRIVERS\srv.sys F50CD000 - \SystemRoot\system32\DRIVERS\secdrv.sys F4DFD000 - \??\D:\WINDOWS\system32\drivers\tmcomm.sys F4340000 - \SystemRoot\system32\drivers\wdmaud.sys F4C2D000 - \SystemRoot\system32\drivers\sysaudio.sys F4123000 - \??\D:\WINDOWS\system32\PCANDIS5.SYS F8C85000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys Total number of drivers = 123 Liste des programmes installes 1st Light 7-Zip 4.42 Adobe Acrobat 5.0 Adobe Anchor Service CS3 Adobe Asset Services CS3 Adobe Bridge CS3 Adobe Bridge Start Meeting Adobe Camera Raw 4.0 Adobe CMaps Adobe Color - Photoshop Specific Adobe Color Common Settings Adobe Color EU Recommended Settings Adobe Color JA Extra Settings Adobe Color NA Extra Settings Adobe Default Language CS3 Adobe Device Central CS3 Adobe ExtendScript Toolkit 2 Adobe Flash Player ActiveX Adobe Fonts All Adobe Help Viewer CS3 Adobe Linguistics CS3 Adobe PDF Library Files Adobe Photoshop CS3 Adobe Photoshop CS3 Adobe Setup Adobe Shockwave Player Adobe Stock Photos CS3 Adobe Type Support Adobe Update Manager CS3 Adobe Version Cue CS3 Client Adobe WinSoft Linguistics Plugin Adobe XMP Panels CS3 Apple Software Update ArcSoft PhotoImpression Avira AntiVir PersonalEdition Classic AVS Video Converter 4.3.1.371 BitTorrent 5.0.9 BS.Player FREE powered by AdVantage Carbide.ui Theme Edition 3.2 Commande ECHO désactivée. Correctif pour Windows XP (KB893357) Correctif Windows XP - KB834707 Correctif Windows XP - KB867282 Correctif Windows XP - KB873333 Correctif Windows XP - KB873339 Correctif Windows XP - KB884020 Correctif Windows XP - KB884883 Correctif Windows XP - KB885222 Correctif Windows XP - KB885250 Correctif Windows XP - KB885523 Correctif Windows XP - KB885626 Correctif Windows XP - KB885835 Correctif Windows XP - KB885836 Correctif Windows XP - KB885894 Correctif Windows XP - KB886185 Correctif Windows XP - KB886677 Correctif Windows XP - KB886716 Correctif Windows XP - KB887742 Correctif Windows XP - KB888113 Correctif Windows XP - KB888302 Correctif Windows XP - KB890047 Correctif Windows XP - KB890175 Correctif Windows XP - KB890831 Correctif Windows XP - KB890859 Correctif Windows XP - KB890923 Correctif Windows XP - KB891781 Correctif Windows XP - KB893086 Correctif Windows XP - KB896626 Counter-Strike: Source DivX Content Uploader DivX Web Player eMule Encyclopédie Microsoft Encarta 97 EPSON Copy Utility EPSON Logiciel imprimante EPSON Photo Print EPSON PhotoQuicker3.2 EPSON Smart Panel EPSON TWAIN 5 Eurobarre FlashGet 1.9.0.1012 FLV Player Free Download Manager 2.5 Gestionnaire Internet GIF Movie Gear 4.0.1 Hero Editor V0.96 HijackThis 2.0.2 iPod for Windows 2006-06-28 iPod for Windows 2006-06-28 iTunes Java 6 Update 2 Java SE Runtime Environment 6 Update 1 Jeux et Parties - 4624 Language pack for Ad-Aware SE LG PC Suite LG USB Modem driver livebox Macromedia Extension Manager Macromedia Flash 8 Macromedia Flash 8 Video Encoder Macromedia Flash Player 8 Microsoft Office 2000 SR-1 Professional Microsoft Visual C++ 2005 Redistributable Microsoft Works 4.0 Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) Mise à jour de sécurité pour Windows XP (KB883939) Mise à jour de sécurité pour Windows XP (KB890046) Mise à jour de sécurité pour Windows XP (KB893066) Mise à jour de sécurité pour Windows XP (KB896358) Mise à jour de sécurité pour Windows XP (KB896422) Mise à jour de sécurité pour Windows XP (KB896428) Mise à jour de sécurité pour Windows XP (KB901214) Mise à jour de sécurité pour Windows XP (KB903235) Mise à jour pour Windows XP (KB894391) Mise à jour pour Windows XP (KB898461) Mise à jour pour Windows XP (KB900930) Motorola Phone Tools Mozilla Firefox (2.0.0.11) Mozilla Firefox (2.0.0.12) MSRuntime Libraries MSXML4 Parser Navigateur Orange Nero Suite Nokia Connectivity Cable Driver Nokia Lifeblog 2.1 Nokia MTP driver Nokia PC Connectivity Solution Nokia PC Suite Nokia Software Launcher Norton 360 Notepad++ NVIDIA Drivers Oxilog Video Library PDF Settings PerfectDisk PhotoFiltre Studio PROjectMT 98 (Anglais-Français,Français-Anglais) Trial PSP ISO Compressor PSP Video Converter 3 QuickSnooker QuickTime RealPlayer Rich Video Codec v1.6 SAGEM F@st 800-908 ScanToWeb Source Dedicated Server SPAMfighter SPAMfighter SpeedTouch USB Software Spy Sweeper 4.x.x FIX Steam Ultimate Jewel Utilitaire de réinitialisation iPod VBSoftwareBuilder VDMSound 2.0.4 VeohTV BETA VeohTV BETA VideoLAN VLC media player 0.8.6c WebFldrs XP Windows Driver Package - Nokia Modem (06/12/2006 6.81.0.21) Windows Installer 3.1 (KB893803) Windows Live Messenger Windows Live Sign-in Assistant Windows Media Format Runtime Windows Media Player Firefox Plugin WinRAR archiver WinZip Le volume dans le lecteur D n'a pas de nom. Le numéro de série du volume est 8886-CF9C Répertoire de D:\Program Files 2008-02-16 11:04 <REP> . 2008-02-16 11:04 <REP> .. 2007-11-29 22:18 <REP> 7-Zip 2007-10-21 18:49 <REP> Adobe 2008-02-08 21:08 <REP> AdVantage 2007-07-10 19:42 <REP> Ahead 2007-12-31 01:47 <REP> Alcohol Soft 2008-02-08 18:52 <REP> Alwil Software 2008-02-13 15:51 <REP> Angel Destiny's 2007-07-13 14:49 <REP> Apple Software Update 2007-07-23 16:50 <REP> ArcSoft 2008-02-13 15:25 <REP> Avira 2008-02-16 11:02 <REP> AVS4YOU 2008-02-16 11:04 <REP> AVSMedia 2007-10-15 07:45 <REP> BitTorrent 2007-10-21 18:47 <REP> Bonjour 2007-05-13 15:35 250,259 changelog.ger.txt 2007-05-13 12:48 277,862 changelog.txt 2007-09-08 20:20 <REP> Common Files 2007-07-10 18:38 <REP> ComPlus Applications 2008-01-21 23:05 <REP> config 2007-10-21 21:45 <REP> Controle Parental 2007-10-28 16:04 <REP> Dactylo 2008-02-04 19:40 <REP> DAEMON Tools 2008-01-03 00:30 <REP> danny_kay1710 2008-02-13 15:40 <REP> Diablo II 2007-11-20 20:27 <REP> DIFX 2007-12-16 16:40 <REP> DivX 2008-02-10 00:27 622 downloads.bak 2008-02-10 00:33 344 downloads.txt 2008-02-16 10:57 <REP> eMule 2007-04-30 17:47 72,220 eMule Light.tmpl 2006-08-30 15:51 638,125 eMule.chm 2007-05-14 11:40 5,304,320 emule.exe 2006-07-03 12:26 115,247 eMule.tmpl 2007-07-23 16:51 <REP> EPSON 2007-12-01 23:30 <REP> Eurobarre 2008-02-04 23:15 <REP> Fichiers communs 2008-02-15 23:35 <REP> FlashGet 2008-02-15 22:56 <REP> FLV Player 2007-10-15 07:23 <REP> Free Download Manager 2008-02-10 22:54 <REP> GameHouse 2007-11-16 21:50 <REP> GIF Movie Gear 2007-11-16 21:51 <REP> Gif Movie Gear v4.0.1 Full (By King-Alp) 2007-09-06 20:17 560 Global.sw 2007-11-14 01:36 <REP> Hero Editor 2008-01-07 07:08 <REP> Incoming 2007-10-14 18:39 <REP> Internet Download Manager 2007-07-10 18:47 <REP> Internet Explorer 2007-11-07 22:21 <REP> iPod 2007-07-13 14:51 <REP> iTunes 2007-08-03 09:02 <REP> Java 2007-12-12 22:21 <REP> lang 2007-10-14 15:53 165 lastgame.ini 2007-12-15 13:24 <REP> Lavasoft 2007-10-14 15:53 205 league.txt 2008-01-07 06:23 <REP> LG Electronics 2008-01-07 06:22 <REP> LG PC Suite 2 2002-10-08 17:10 14,971 license.txt 2002-10-08 17:10 18,401 license-GER.txt 2006-03-22 22:12 270,336 LinkCreator.exe 2007-11-21 17:36 <REP> Macromedia 2007-08-29 10:10 <REP> Micro Application 2008-02-04 19:45 <REP> Microsoft Games 2007-08-19 21:34 <REP> Microsoft Office 2007-09-08 20:20 <REP> Microsoft Référence 2007-09-13 19:21 <REP> Motorola Phone Tools 2008-02-12 00:24 <REP> Mozilla Firefox 2007-12-16 16:40 <REP> Mozilla Firefox 3 Beta 1 2007-08-14 21:28 <REP> MSI 2007-11-15 21:42 <REP> MSN Messenger 2007-08-25 11:45 <REP> MSWorks 2007-07-21 15:43 <REP> Multi_Media_France 2007-12-09 22:59 <REP> NetMeeting 2007-12-18 19:24 <REP> Nokia 2008-01-04 18:52 <REP> Notepad++ 2007-07-10 18:48 <REP> Outlook Express 2007-07-27 16:18 <REP> Oxilog 2008-02-13 15:43 <REP> Panda Security 2007-07-15 12:28 <REP> PhotoFiltre Studio 2007-12-15 13:35 <REP> PROMT98 2007-09-18 21:25 <REP> quicksnooker 2007-07-13 14:51 <REP> QuickTime 2007-12-30 12:33 <REP> Raxco 2007-03-25 14:24 13,046 readme.txt 2007-10-16 10:53 <REP> Real 2008-02-10 22:47 <REP> ReflexiveArcade 2008-02-15 08:25 <REP> RichVideoCodec 2007-10-31 20:25 <REP> SAGEM 2007-10-31 20:24 <REP> Securitoo 2007-07-10 18:41 <REP> Services en ligne 2007-12-15 13:25 <REP> skins 2007-09-05 14:56 <REP> SoftwrapLicense 2007-07-23 14:21 <REP> SPAMfighter 2008-02-13 15:35 <REP> Steam 2008-02-04 23:17 <REP> SurfRobot 2008-01-08 01:27 <REP> Symantec 2008-02-13 11:11 <REP> Temp 2007-05-13 12:30 15,146 Template.eMuleSkin.ini 2007-09-18 19:44 <REP> TerraGame 2008-02-06 15:37 <REP> The All-Seeing Eye 2008-01-20 17:30 <REP> Ultimate Jewel 2008-02-13 15:39 <REP> Valve Lan 2008-01-22 19:44 <REP> VDMSound 2007-11-25 16:35 <REP> Veoh Networks 2007-09-12 21:09 <REP> VIA Technologies, INC 2007-07-11 07:59 <REP> VideoLAN 2008-02-15 10:32 <REP> Wanadoo 2007-12-12 22:21 <REP> webserver 2008-01-20 15:09 <REP> Webteh 2007-11-03 13:25 <REP> Winamp 2007-12-29 21:23 <REP> WinAVI MP4 Converter 2007-07-29 15:45 <REP> Windows Media Player 2007-07-10 18:37 <REP> Windows NT 2007-07-21 02:18 <REP> WinRAR 2007-08-25 12:28 <REP> WinZip 2007-12-15 23:17 <REP> WinZip32 2007-12-30 02:03 <REP> Xilisoft 2008-02-14 21:26 <REP> Zango 16 fichier(s) 6,991,829 octets 103 Rép(s) 4,953,481,216 octets libres Le volume dans le lecteur D n'a pas de nom. Le numéro de série du volume est 8886-CF9C Répertoire de D:\Program Files\fichiers communs 2008-02-04 23:15 <REP> . 2008-02-04 23:15 <REP> .. 2007-10-21 18:47 <REP> Adobe 2007-07-10 19:37 <REP> Ahead 2007-07-23 14:21 <REP> Ankiro 2007-07-23 14:20 <REP> Application 2008-02-16 11:05 <REP> AVSMedia 2007-07-11 17:48 <REP> Designer 2007-09-03 17:06 <REP> DirectX 2007-07-23 16:41 <REP> EPSON 2007-12-17 22:58 <REP> InstallShield 2007-07-13 17:13 <REP> Java 2007-11-21 17:37 <REP> Macromedia 2007-10-21 18:31 <REP> Macrovision Shared 2007-08-25 11:45 <REP> Microsoft communs 2008-02-16 00:58 <REP> Microsoft Shared 2007-07-10 18:40 <REP> MSSoap 2007-07-10 19:40 <REP> Nero 2007-11-20 20:26 <REP> Nokia 2007-07-10 20:31 <REP> ODBC 2007-11-20 20:26 <REP> PCSuite 2007-07-23 16:49 <REP> Python 2007-12-30 12:33 <REP> Raxco 2007-10-16 10:54 <REP> Real 2007-07-10 18:40 <REP> Services 2007-07-10 20:31 <REP> SpeechEngines 2008-01-08 01:27 <REP> Symantec Shared 2007-07-11 17:48 <REP> System 2007-10-16 10:55 <REP> xing shared 0 fichier(s) 0 octets 29 Rép(s) 4,953,489,408 octets libres Le volume dans le lecteur D n'a pas de nom. Le numéro de série du volume est 8886-CF9C Répertoire de D:\Program Files\fichiers communs\Microsoft Shared\Web Folders 2008-02-08 16:17 <REP> . 2008-02-08 16:17 <REP> .. 2001-05-18 14:57 561,209 MSONSEXT.DLL 1999-06-03 11:09 122,937 MSOWS409.DLL 2001-03-07 06:00 127,033 MSOWS40c.DLL 1999-03-18 04:37 593,977 RAGENT.DLL 4 fichier(s) 1,405,156 octets 2 Rép(s) 4,953,489,408 octets libres Le volume dans le lecteur D n'a pas de nom. Le numéro de série du volume est 8886-CF9C Répertoire de D:\Program Files\common files 2007-09-08 20:20 <REP> . 2007-09-08 20:20 <REP> .. 2007-09-08 20:20 <REP> Microsoft Shared 0 fichier(s) 0 octets 3 Rép(s) 4,953,489,408 octets libres ****** Fin du rapport DiagHelp

Voila le rapport de DrWeb : Et voila le rapport HiJackThis:

C'est le seul ComboFix.txt que je trouve.J'ai fait une recherche et il se trouve dans D:\ComboFix. Il n'y a aucun autre fichier ComboFix.txt. Quand je glisse le fichier CF script sur ComboFix.exe une fenêtre bleue s'ouvre mais passe directement au scan et ne demande pas de taper 1 ou 2.

ComboFix 08-02-14.2 - Jean-Christophe 2008-02-14 19:21:53.2 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.89 [GMT 1:00] Endroit: D:\Documents and Settings\Jean-Christophe\Bureau\ComboFix.exe Command switches used :: D:\Documents and Settings\Jean-Christophe\Bureau\CFScript.txt * Création d'un nouveau point de restauration AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! FILE C:\Windows\xpupdate.exe D:\DOCUME~1\Jean-Christophe\Local Settings\Temp\svchost.exe D:\WINDOWS\Installer\{638dd954-4a90-4c3e-bce9-12abee47b2f3}\zip.dll D:\WINDOWS\system32\4fdw.dll D:\WINDOWS\system32\adduser32.dll D:\WINDOWS\system32\byxyawt.dll D:\WINDOWS\system32\byxyawt.VIR D:\WINDOWS\system32\drivers\symavc32.sys D:\WINDOWS\system32\fseoiwoe.tmp D:\WINDOWS\system32\mzqligwk.dll D:\WINDOWS\system32\n2ewma1xxsv234.exe D:\WINDOWS\system32\osa9.exe D:\WINDOWS\system32\runtime.exe D:\WINDOWS\system32\ruomvajc.dll D:\WINDOWS\System32\srvwin.dll D:\WINDOWS\system32\taskmon.sys D:\WINDOWS\system32\vedxg6ame4.exe D:\WINDOWS\system32\winykz32.dll D:\WINDOWS\system32\wmedia32.exe .

Merci beaucoup de prendre du temps sur toi pour m'aider.

Merci beaucoup de m'aider si rapidement.Je tiens juste a dire que je ne m'y connait pas trop en informatique mais j'apprends et pour la version de windows c'est en fait un ami qui m'as donné cet ordinateur donc peut être est ce lui qui a installé cette version. ComboFix 08-02-14.2 - Jean-Christophe 2008-02-14 12:38:37.1 - NTFSx86 DSREPAIR Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.226 [GMT 1:00] Endroit: D:\Documents and Settings\Jean-Christophe\Bureau\ComboFix.exe AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . D:\WINDOWS\system32\efccy.dll D:\Documents and Settings\Jean-Christophe\Application Data\install.dat D:\WINDOWS\cookies.ini D:\WINDOWS\system32\8192074441.dll D:\WINDOWS\system32\awtqnkh.dll D:\WINDOWS\system32\burito.ini D:\WINDOWS\system32\burito3121-5087.sys D:\WINDOWS\system32\drivers\KCKO48.sys D:\WINDOWS\system32\drivers\symavc32.sys . . . . Echec de suppression D:\WINDOWS\system32\drvrowr.dll D:\WINDOWS\system32\efccy.dll D:\WINDOWS\system32\fgykdovp.ini D:\WINDOWS\system32\gwxnnlao.ini D:\WINDOWS\system32\iifgghg.dll D:\WINDOWS\system32\kr_done1 D:\WINDOWS\system32\mcrh.tmp D:\WINDOWS\system32\mzqligwk.dllbox D:\WINDOWS\system32\qqjboike.dll D:\WINDOWS\system32\svcp.csv D:\WINDOWS\system32\vx.tll D:\WINDOWS\system32\winsub.xml D:\WINDOWS\system32\yccfe.ini D:\WINDOWS\system32\yccfe.ini2 . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\LEGACY_KCKO48 -------\LEGACY_NDISWON -------\LEGACY_ROSA -------\LEGACY_SROSA -------\LEGACY_SYMAVC32 -------\NdisWon -------\nm -------\burito3121-5087 ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-01-14 to 2008-02-14 )))))))))))))))))))))))))))))))))))) . 2008-02-14 10:33 . 2008-02-14 10:33 167,936 --a------ D:\WINDOWS\system32\drivers\symavc32.sys 2008-02-13 22:11 . 2008-02-13 22:11 <REP> d--h----- D:\WINDOWS\system32\GroupPolicy 2008-02-13 15:25 . 2008-02-13 15:25 <REP> d-------- D:\Program Files\Avira 2008-02-13 15:25 . 2008-02-13 15:25 <REP> d-------- D:\Documents and Settings\All Users\Application Data\Avira 2008-02-11 09:08 . 2008-02-12 18:27 18,368 --a------ D:\WINDOWS\system32\taskmon.sys 2008-02-10 23:01 . 2008-02-10 23:01 0 --a------ D:\WINDOWS\Pool.INI 2008-02-10 22:57 . 2008-02-10 22:57 <REP> d-------- D:\Documents and Settings\All Users\Application Data\n7-89-o9-3r-4t-r9 2008-02-10 22:54 . 2008-02-10 22:54 <REP> d-------- D:\Program Files\GameHouse 2008-02-10 22:54 . 2008-02-10 22:54 <REP> d-------- D:\Documents and Settings\Jean-Christophe\Application Data\GameHouse 2008-02-10 22:51 . 2008-02-10 22:51 0 --a------ D:\WINDOWS\LiveBilliards.INI 2008-02-10 22:47 . 2008-02-10 22:47 <REP> d-------- D:\Program Files\ReflexiveArcade 2008-02-10 17:55 . 2008-02-10 17:55 <REP> d-------- D:\Program Files\SysCleaner 2008-02-08 21:40 . 2008-02-08 21:40 0 --a------ D:\WINDOWS\tpp1 2008-02-08 16:17 . 2008-02-08 16:17 29 --a------ D:\WINDOWS\system32\fseoiwoe.tmp 2008-02-08 16:08 . 2008-02-08 16:08 54,764 --a------ D:\WINDOWS\system32\4fdw.dll 2008-02-08 16:07 . 2008-02-08 16:07 26,624 --a------ D:\WINDOWS\system32\byxyawt.VIR 2008-02-08 07:52 . 2007-04-05 12:16 626,688 --a------ D:\WINDOWS\system\msvcr80.dll 2008-02-06 11:39 . 1998-05-18 02:06 368,912 --a------ D:\WINDOWS\system32\vbar332.dll 2008-02-04 19:45 . 2008-02-04 19:45 <REP> d-------- D:\Program Files\Microsoft Games 2008-02-04 19:42 . 2008-02-08 22:36 <REP> d-------- D:\Program Files\Save 2008-02-04 19:41 . 2008-02-08 19:08 <REP> d-------- D:\Program Files\DaemonTools_WhenUSave_Installer 2008-02-04 19:41 . 2008-02-08 22:18 <REP> d-------- D:\Program Files\DAEMON Tools SearchBar 2008-02-04 19:40 . 2008-02-04 19:40 <REP> d-------- D:\Program Files\DAEMON Tools 2008-02-04 19:37 . 2008-02-04 19:37 639,224 --a------ D:\WINDOWS\system32\drivers\sptd.sys 2008-02-04 19:29 . 2005-07-16 02:39 374,272 --a------ D:\WINDOWS\system\mss32.dll 2008-02-04 19:27 . 2004-01-22 02:20 491,520 --a------ D:\WINDOWS\system\GRANNY.DLL 2008-02-04 19:22 . 2004-01-22 01:24 82,000 --a------ D:\WINDOWS\system\rockalldll.dll 2008-02-03 21:46 . 2008-02-13 15:39 <REP> d-------- D:\Program Files\Valve Lan 2008-02-01 11:00 . 2008-02-06 15:37 <REP> d-------- D:\Program Files\The All-Seeing Eye 2008-01-26 19:36 . 2008-01-30 22:59 <REP> d-------- D:\Documents and Settings\Jean-Christophe\Application Data\.ABC 2008-01-23 23:14 . 2008-01-26 13:27 <REP> d-------- D:\Documents and Settings\Jean-Christophe\Application Data\Podmailing 2008-01-22 19:44 . 2008-01-22 19:44 <REP> d-------- D:\Program Files\VDMSound 2008-01-22 19:26 . 2008-01-22 19:26 <REP> d-------- D:\Documents and Settings\Jean-Christophe\Application Data\GibbHill Properties Ltd 2008-01-20 17:30 . 2008-01-20 17:30 <REP> d-------- D:\Program Files\Ultimate Jewel 2008-01-20 15:09 . 2008-01-20 15:09 <REP> d-------- D:\Program Files\Webteh 2008-01-20 15:09 . 2008-02-08 21:08 <REP> d-------- D:\Program Files\AdVantage 2008-01-20 15:09 . 2008-01-20 15:09 <REP> d-------- D:\Documents and Settings\Jean-Christophe\Application Data\BSplayer Pro 2008-01-20 15:09 . 2008-01-23 08:23 <REP> d-------- D:\Documents and Settings\Jean-Christophe\Application Data\BSplayer 2008-01-16 16:21 . 2008-02-13 15:51 <REP> d-------- D:\Program Files\Angel Destiny's . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-02-14 09:44 --------- d-----w D:\Program Files\eMule 2008-02-14 09:34 --------- d-----w D:\Program Files\Wanadoo 2008-02-13 14:47 --------- d--h--w D:\Program Files\InstallShield Installation Information 2008-02-13 14:47 --------- d-----w D:\Documents and Settings\All Users\Application Data\BVRP Software 2008-02-13 14:43 --------- d-----w D:\Program Files\Panda Security 2008-02-13 14:40 --------- d-----w D:\Program Files\Diablo II 2008-02-13 14:35 --------- d-----w D:\Program Files\Steam 2008-02-13 10:11 --------- d-----w D:\Program Files\Temp 2008-02-12 05:55 --------- d-----w D:\Program Files\FlashGet 2008-02-09 23:33 344 ----a-w D:\Program Files\downloads.txt 2008-02-09 23:27 622 ----a-w D:\Program Files\downloads.bak 2008-02-08 17:52 --------- d-----w D:\Program Files\Alwil Software 2008-02-04 22:17 --------- d-----w D:\Program Files\SurfRobot 2008-02-04 22:15 --------- d-----w D:\Program Files\Fichiers communs\AVSMedia 2008-01-31 18:45 --------- d-----w D:\Documents and Settings\Jean-Christophe\Application Data\BitTorrent 2008-01-30 21:59 --------- d-----w D:\Documents and Settings\Jean-Christophe\Application Data\.ABC 2008-01-27 12:09 --------- d-----w D:\Documents and Settings\Jean-Christophe\Application Data\Free Download Manager 2008-01-21 22:05 --------- d-----w D:\Program Files\config 2008-01-08 00:27 --------- d-----w D:\Program Files\Symantec 2008-01-08 00:27 --------- d-----w D:\Program Files\Fichiers communs\Symantec Shared 2008-01-08 00:27 --------- d-----w D:\Documents and Settings\All Users\Application Data\Symantec 2008-01-08 00:26 --------- d-----w D:\Documents and Settings\Jean-Christophe\Application Data\Symantec 2008-01-07 06:08 --------- d-----w D:\Program Files\Incoming 2008-01-07 05:25 --------- d-----w D:\Documents and Settings\Jean-Christophe\Application Data\LG Electronics 2008-01-07 05:23 --------- d-----w D:\Program Files\LG Electronics 2008-01-07 05:22 --------- d-----w D:\Program Files\LG PC Suite 2 2008-01-04 17:52 --------- d-----w D:\Program Files\Notepad++ 2008-01-04 17:52 --------- d-----w D:\Documents and Settings\Jean-Christophe\Application Data\Notepad++ 2008-01-02 23:30 --------- d-----w D:\Program Files\danny_kay1710 2008-01-01 21:11 737,280 ----a-w D:\WINDOWS\iun6002.exe 2007-12-31 00:47 --------- d-----w D:\Program Files\Alcohol Soft 2007-12-30 11:38 --------- d-----w D:\Documents and Settings\All Users\Application Data\Raxco 2007-12-30 11:33 --------- d-----w D:\Program Files\Raxco 2007-12-30 11:33 --------- d-----w D:\Program Files\Fichiers communs\Raxco 2007-12-30 01:03 --------- d-----w D:\Program Files\Xilisoft 2007-12-29 20:23 --------- d-----w D:\Program Files\WinAVI MP4 Converter 2007-12-28 22:34 5,852 --sha-w D:\WINDOWS\system32\drivers\fidbox.idx 2007-12-28 22:34 407,584 --sha-w D:\WINDOWS\system32\drivers\fidbox.dat 2007-12-28 22:34 2,276 --sha-w D:\WINDOWS\system32\drivers\fidbox2.idx 2007-12-28 22:34 12,832 --sha-w D:\WINDOWS\system32\drivers\fidbox2.dat 2007-12-21 16:21 --------- d-----w D:\Documents and Settings\Jean-Christophe\Application Data\Yahoo! 2007-12-18 18:24 --------- d-----w D:\Program Files\Nokia 2007-12-18 18:23 --------- d-----w D:\Documents and Settings\Jean-Christophe\Application Data\InstallShield 2007-12-17 22:01 --------- d-----w D:\Documents and Settings\All Users\Application Data\InstallShield 2007-12-17 21:58 --------- d-----w D:\Program Files\Fichiers communs\InstallShield 2007-12-16 15:40 --------- d-----w D:\Program Files\Mozilla Firefox 3 Beta 1 2007-12-16 15:40 --------- d-----w D:\Program Files\DivX 2007-12-15 22:17 --------- d-----w D:\Program Files\WinZip32 2007-12-15 12:35 --------- d-----w D:\Program Files\PROMT98 2007-12-15 12:25 --------- d-----w D:\Program Files\skins 2007-12-15 12:24 --------- d-----w D:\Program Files\Lavasoft 2007-11-16 20:50 286,720 ----a-w D:\WINDOWS\iun506.exe 2007-11-14 00:35 73,216 ----a-w D:\WINDOWS\ST6UNST.EXE 2007-11-14 00:35 249,856 ------w D:\WINDOWS\Setup1.exe 2007-10-14 14:53 205 ----a-w D:\Program Files\league.txt 2007-10-14 14:53 165 ----a-w D:\Program Files\lastgame.ini 2007-09-06 19:17 560 ----a-w D:\Program Files\Global.sw 2007-07-27 14:43 25,600 ----a-w D:\Documents and Settings\Senderr\usbsermptxp.sys 2007-07-27 14:43 22,768 ----a-w D:\Documents and Settings\Senderr\usbsermpt.sys 2007-05-14 10:40 5,304,320 ----a-w D:\Program Files\emule.exe 2007-05-13 14:35 250,259 ----a-w D:\Program Files\changelog.ger.txt 2007-05-13 11:48 277,862 ----a-w D:\Program Files\changelog.txt 2007-05-13 11:30 15,146 ----a-w D:\Program Files\Template.eMuleSkin.ini 2007-04-30 16:47 72,220 ----a-w D:\Program Files\eMule Light.tmpl 2007-03-25 13:24 13,046 ----a-w D:\Program Files\readme.txt 2006-08-30 14:51 638,125 ----a-w D:\Program Files\eMule.chm 2006-07-03 11:26 115,247 ----a-w D:\Program Files\eMule.tmpl 2006-03-22 21:12 270,336 ----a-w D:\Program Files\LinkCreator.exe 2002-10-08 16:10 18,401 ----a-w D:\Program Files\license-GER.txt 2002-10-08 16:10 14,971 ----a-w D:\Program Files\license.txt . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0614d14b-05bf-4607-9194-2db5cdb0d0e7}] D:\WINDOWS\system32\ruomvajc.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9DB30F1E-538B-4395-9E49-37C1429AB459}] D:\WINDOWS\system32\byxyawt.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WOOKIT"="D:\Program Files\Wanadoo\Shell.exe" [2004-08-23 13:50 122880] "NBJ"="D:\Program Files\Ahead\Nero BackItUp\NBJ.exe" [2005-10-11 17:25 1961984] "LClock"="lclock.exe" [2004-12-08 17:06 65536 D:\WINDOWS\LClock.exe] "IDMan"="D:\Program Files\Internet Download Manager\IDMan.exe" [ ] "CTFMON.EXE"="D:\WINDOWS\system32\ctfmon.exe" [2004-08-19 17:09 15360] "msnmsgr"="D:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 12:55 5674352] "BitTorrent"="D:\Program Files\BitTorrent\bittorrent.exe" [2007-09-08 00:01 43008] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="D:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 03:00 132496] "SpySweeper"="D:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" [ ] "Office SturtUp"="osa9.exe" [] "NeroFilterCheck"="D:\WINDOWS\system32\NeroCheck.exe" [2008-01-08 00:58 155648] "iTunesHelper"="D:\Program Files\iTunes\iTunesHelper.exe" [2007-07-10 08:18 270648] "avgnt"="D:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-02-14 10:43 249896] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="D:\WINDOWS\system32\CTFMON.EXE" [2004-08-19 17:09 15360] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "LSD_III"="D:\WINDOWS\LSD\end.cmd" [2005-07-14 16:39 2310] "tscuninstall"="D:\WINDOWS\system32\tscupgrd.exe" [2004-08-19 16:52 44544] [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{9DB30F1E-538B-4395-9E49-37C1429AB459}"= D:\WINDOWS\system32\byxyawt.dll [ ] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] "SrvWin"= {81bef527-973e-4f73-aa8e-6e49939000c1} - D:\WINDOWS\Installer\{81bef527-973e-4f73-aa8e-6e49939000c1}\SrvWin.dll [ ] "zip"= {638dd954-4a90-4c3e-bce9-12abee47b2f3} - D:\WINDOWS\Installer\{638dd954-4a90-4c3e-bce9-12abee47b2f3}\zip.dll [2008-02-11 09:37 39462] "WinMain"= {C231CF11-134F-3552-44AC-E685D962C63C} - D:\WINDOWS\system32\adduser32.dll [ ] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\byxyawt] byxyawt.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\mzqligwk] mzqligwk.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\winykz32] winykz32.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools] --a------ 2006-11-12 11:48 157592 D:\Program Files\DAEMON Tools\daemon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flashget] --a------ 2007-06-29 12:44 1990704 D:\Program Files\FlashGet\flashget.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Free Uploader Oe Integration] --a------ 2007-06-10 18:02 40960 D:\Program Files\Free Download Manager\FUM\fumoei.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan] D:\Program Files\Internet Download Manager\IDMan.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck] D:\WINDOWS\system32\dumprep 0 -k [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] --a------ 2007-01-19 12:55 5674352 D:\Program Files\MSN Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher] --a------ 2006-11-28 01:12 2658304 D:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OPTENET_GUI] D:\PROGRA~1\Controle Parental\bin\optgui.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] --a------ 2007-06-29 05:24 286720 D:\Program Files\QuickTime\qttask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Service Pack 1] D:\WINDOWS\system32\vedxg6ame4.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedTouch USB Diagnostics] D:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemSv121] D:\WINDOWS\system32\n2ewma1xxsv234.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] --a------ 2007-10-16 10:53 185632 D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows update loader] C:\Windows\xpupdate.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WindowsServicesStartup] D:\DOCUME~1\Jean-Christophe\Local Settings\Temp\svchost.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOKIT] --a------ 2004-08-23 13:50 122880 D:\Program Files\Wanadoo\Shell.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOTASKBARICON] --------- 2004-10-14 15:55 32768 D:\PROGRA~1\Wanadoo\GestMaj.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOWATCH] --a------ 2004-08-23 13:49 20480 D:\PROGRA~1\Wanadoo\Watch.exe R0 Defrag32b;Defrag32Boot;D:\WINDOWS\system32\drivers\Defrag32b.sys [2005-06-28 10:17] R2 Defrag32;Defrag32;D:\WINDOWS\system32\drivers\Defrag32.sys [2005-06-28 10:17] R3 AN983;Carte Fast Ethernet 10/100 Mbps ADMtek AN983/AN985/ADM951X;D:\WINDOWS\system32\DRIVERS\AN983.sys [2004-08-03 23:31] S2 PDSched;PDScheduler;"D:\Program Files\Raxco\PerfectDisk\PDSched.exe" [2005-06-28 14:07] S3 AdWatchDrv;AW Realtime Driver;D:\WINDOWS\system32\drivers\AWRTPD.sys [] S3 MSControlService;Microsoft cache control;D:\WINDOWS\system32\windows [] S3 PPPoEWin;PPPoEWin Miniport;D:\WINDOWS\system32\DRIVERS\PPPoEWin.SYS [] S3 ST330;ST330;D:\WINDOWS\system32\drivers\st330.sys [2007-09-28 16:12] S3 STBUS;STBUS;D:\WINDOWS\system32\drivers\stbus.sys [2007-09-28 16:12] S3 STETH;SpeedTouch Ethernet Adapter NT Driver;D:\WINDOWS\system32\DRIVERS\steth.sys [2007-09-28 16:12] S3 stppp;Speedtouch PPP Adapter Adapter;D:\WINDOWS\system32\DRIVERS\stppp.sys [2007-09-28 17:20] S3 taskmon.sys;taskmon.sys;D:\WINDOWS\system32\taskmon.sys [2008-02-12 18:27] *Newly Created Service* - A347SCSI . ************************************************************************** catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-02-14 12:52:29 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cach‚s ... Balayage cach‚ autostart entries ... Balayage des fichiers cach‚s ... Scan termin‚ avec succŠs Les fichiers cach‚s: 0 ************************************************************************** . ------------------------ Other Running Processes ------------------------ . D:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe D:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe D:\Program Files\Bonjour\mDNSResponder.exe D:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe D:\WINDOWS\System32\FTRTSVC.exe D:\WINDOWS\system32\wdfmgr.exe . ************************************************************************** . Temps d'accomplissement: 2008-02-14 12:54:21 - machine was rebooted ComboFix-quarantined-files.txt 2008-02-14 11:54:16

Voila mon rapport Hijackthis , je remercie ceux qui pourront m'éclaircir sur les éventuels problème de mon PC qui a était infecté par des trojans qui changeaient les configuration de mon système : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:53:54, on 13/02/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: D:\WINDOWS\System32\smss.exe D:\WINDOWS\system32\winlogon.exe D:\WINDOWS\system32\services.exe D:\WINDOWS\system32\lsass.exe D:\WINDOWS\system32\svchost.exe D:\WINDOWS\System32\svchost.exe D:\WINDOWS\system32\spoolsv.exe D:\Program Files\Bonjour\mDNSResponder.exe D:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe D:\WINDOWS\System32\FTRTSVC.exe D:\Documents and Settings\Jean-Christophe\Bureau\Mozilla Firefox\firefox.exe D:\Program Files\Alwil Software\Avast4\ashSimpl.exe D:\WINDOWS\explorer.exe D:\Program Files\Real\RealPlayer\realplay.exe D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe D:\Documents and Settings\Jean-Christophe\Bureau\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://login.live.com/ppsecure/md5auth.srf?lc=1036 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - D:\PROGRA~1\Wanadoo\SearchPageURL.dll O1 - Hosts: 124.217.252.77 www.bravesentry.com O1 - Hosts: 124.217.252.77 bravesentry.com O1 - Hosts: 124.217.252.78 secure.isoftpay.com O1 - Hosts: 124.217.252.77 www.bravesentry.com O1 - Hosts: 124.217.252.77 bravesentry.com O1 - Hosts: 124.217.252.78 secure.isoftpay.com O1 - Hosts: 124.217.252.77 www.bravesentry.com O1 - Hosts: 124.217.252.77 bravesentry.com O1 - Hosts: 124.217.252.78 secure.isoftpay.com O1 - Hosts: 124.217.252.77 www.bravesentry.com O1 - Hosts: 124.217.252.77 bravesentry.com O1 - Hosts: 124.217.252.78 secure.isoftpay.com O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [WOOWATCH] D:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] D:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [WMedia32] wmedia32.exe O4 - HKLM\..\Run: [WindowsServicesStartup] D:\DOCUME~1\Jean-Christophe\Local Settings\Temp\svchost.exe 1 O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [taskmon] D:\WINDOWS\taskmon.exe O4 - HKLM\..\Run: [systemSv121] D:\WINDOWS\system32\n2ewma1xxsv234.exe O4 - HKLM\..\Run: [system] D:\WINDOWS\system32\wind32.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "D:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKLM\..\Run: [spySweeper] "D:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "D:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [sPAMfighter Agent] "D:\Program Files\SPAMfighter\SFAgent.exe" update delay 60 O4 - HKLM\..\Run: [runtime.exe] D:\WINDOWS\system32\runtime.exe O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [OPTENET_GUI] D:\PROGRA~1\Controle Parental\bin\optgui.exe O4 - HKLM\..\Run: [Office SturtUp] osa9.exe O4 - HKLM\..\Run: [NSLauncher] D:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Flashget] D:\Program Files\FlashGet\flashget.exe /min O4 - HKLM\..\Run: [DAEMON Tools] "D:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [avast!] "D:\Program Files\Alwil Software\Avast4\ashDisp.exe" O4 - HKCU\..\Run: [WOOKIT] D:\Program Files\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx O4 - HKCU\..\Run: [NBJ] "D:\Program Files\Ahead\Nero BackItUp\NBJ.exe" O4 - HKCU\..\Run: [LClock] lclock.exe O4 - HKCU\..\Run: [iDMan] D:\Program Files\Internet Download Manager\IDMan.exe /onboot O4 - HKCU\..\Run: [Free Uploader Oe Integration] D:\Program Files\Free Download Manager\FUM\fumoei.exe O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [OuterinfoUpdate] "D:\Program Files\Outerinfo\OuterinfoUpdate.exe" O4 - HKCU\..\Run: [msnmsgr] "D:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [bitTorrent] "D:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized O4 - HKCU\..\Run: [Windows update loader] C:\Windows\xpupdate.exe O4 - HKCU\..\Run: [service Pack 1] D:\WINDOWS\system32\vedxg6ame4.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'Default user') O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: Spy Sweeper Fix.lnk = D:\Program Files\Webroot\Spy Sweeper\SpySweeperFix.bat O4 - Global Startup: WinZip Quick Pick.lnk = D:\Program Files\WinZip32\WZQKPICK.EXE O8 - Extra context menu item: &Tout télécharger avec FlashGet - D:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: &Télécharger avec FlashGet - D:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: Download all links with IDM - D:\Program Files\Internet Download Manager\IEGetAll.htm O8 - Extra context menu item: Download FLV video content with IDM - D:\Program Files\Internet Download Manager\IEGetVL.htm O8 - Extra context menu item: Download with IDM - D:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://D:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Télécharger avec Free Download Manager - file://D:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://D:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://D:\Program Files\Free Download Manager\dlfvideo.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Traduction - {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} - D:\Program Files\PROMT98\promtie4\promtie5.htm O9 - Extra 'Tools' menuitem: Traduire - {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} - D:\Program Files\PROMT98\promtie4\promtie5.htm O9 - Extra button: (no name) - {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} - D:\Program Files\PROMT98\promtie4\options.htm O9 - Extra 'Tools' menuitem: Personnalisez traduction - {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} - D:\Program Files\PROMT98\promtie4\options.htm O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\Program Files\FlashGet\FlashGet.exe O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\Program Files\FlashGet\FlashGet.exe O9 - Extra button: Upload - {FD4E2FF8-973C-4A19-89BD-8E86B3CFCFE1} - D:\Program Files\Free Download Manager\FUM\fumiebtn.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{7C6BEDCB-1DE0-469E-9722-616C2FFA9BD7}: NameServer = 192.168.1.1 O21 - SSODL: SrvWin - {81bef527-973e-4f73-aa8e-6e49939000c1} - D:\WINDOWS\Installer\{81bef527-973e-4f73-aa8e-6e49939000c1}\SrvWin.dll O21 - SSODL: zip - {638dd954-4a90-4c3e-bce9-12abee47b2f3} - D:\WINDOWS\Installer\{638dd954-4a90-4c3e-bce9-12abee47b2f3}\zip.dll O21 - SSODL: WinMain - {C231CF11-134F-3552-44AC-E685D962C63C} - D:\WINDOWS\system32\adduser32.dll O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - D:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: EpsonBidirectionalService - Unknown owner - D:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe (file missing) O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - D:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - D:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - D:\WINDOWS\System32\FTRTSVC.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe O23 - Service: Microsoft cache control (MSControlService) - Unknown owner - D:\WINDOWS\system32\windows O23 - Service: PDEngine - Raxco Software, Inc. - D:\Program Files\Raxco\PerfectDisk\PDEngine.exe O23 - Service: PDScheduler (PDSched) - Raxco Software, Inc. - D:\Program Files\Raxco\PerfectDisk\PDSched.exe O23 - Service: ServiceLayer - Nokia. - D:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe -- End of file - 9988 bytes