Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

[RESOLU]A l'aide SVP

Gildas Ar Breizh
 Partager

Messages recommandés

Gildas Ar Breizh Member

Gildas Ar Breizh

Posté(e)
Posté(e) (modifié)

Configuration:

-HP Pavilion dv4000(portable)

-Windows XP Familial(mis a jour)

-Internet Explorer 7.0

Bonjours,

 

Voici mon souci;

si je regarde une video ou que je joue a un jeu le PC plante net

J'ai tout essayer et cherché sur tout les forums mais le probleme perciste

Ceci depuis une mise a jour du 1er fevrier 2007 ou j'ai passé l'anti-virus derriere

donc mon souci est que je vois 2 cartes graphiques sur le PC

que je suis infecté

et que je plante tres vite(entre 5 et 10 minutes)

 

j'ai egalement eu un vidage memoire physique cause:

ialmrnt5 (carte graphique)

pilote coissé dans boucle infini

 

Mes essais:

J'ai defragmenter mainte fois

J'ai fait le boot test ram elle est niquel

J'ai fait reinstall-reparation Xp

J'ai fait un: CHKDSK C: /R /P (pas de soucis)

J'ai repassé le CD des drivers d'origine

J'ai pris les pilotes sur le net et le fournisseur

J'ai essayé déinstall des cartes graphique, du IDE principal, etc..

J'ai passé Ad-aware

J'ai passé Avast en boot

J'ai passé Spybot, qui a tendance a me planter le PC au 3/4 de l'analyse

J'ai passé Ccleaner apres chaque recherche

(les trojans et autres reviennent toujours au demarrage)

(est-ce des trojans ou la maj windows ?)

 

Je suis sure que le plantage viens de la carte graphique

 

Comment remettre le regedit d'origine car a force de prendre toutes les astuces d'optimisation j'ai peur de planter mon PC tout seul

 

Ci-dessous rapport Everest et Hijackthis

SVP:dites moi quoi faire et quoi effacer

 

 

--------[ EVEREST Home Edition © 2003-2005 Lavalys, Inc. ]------------------------------------------------------------

 

Version EVEREST v2.20.405/fr

Site web [http://www.lavalys.com/]

Type de rapport Générateur de rapports

Ordinateur modifié

Générateur modifié

Système d'exploitation Microsoft Windows XP Home Edition 5.1.2600 (WinXP Retail)

Date 2007-02-15

Heure 14:12

 

 

--------[ Résumé ]------------------------------------------------------------------------------------------------------

 

Ordinateur:

Type de système PC monoprocesseur ACPI

Système d'exploitation Microsoft Windows XP Home Edition

Service Pack du système Service Pack 2

DirectX 4.09.00.0904 (DirectX 9.0c)

Nom du système modifié

Nom de l'utilisateur modifié

Carte mère:

Type de processeur Mobile Intel Pentium M 725J, 1600 MHz (16 x 100)

Nom de la carte mère Hewlett-Packard Pavilion dv4000 (EH180EA#ABF)

Chipset de la carte mère Intel Alviso-G i915GM

Mémoire système 502 Mo (PC2700 DDR SDRAM)

Type de BIOS Phoenix (04/27/06)

 

Moniteur:

Carte vidéo Mobile Intel® 915GM/GMS,910GML Express Chipset Family (128 Mo)

Carte vidéo Mobile Intel® 915GM/GMS,910GML Express Chipset Family (128 Mo)

Accélérateur 3D Intel GMA 900

Moniteur Écran Plug-and-Play [NoDB]

Moniteur Écran Plug-and-Play [NoDB]

 

Multimédia:

Carte audio Intel 82801FBM ICH6-M - AC'97 Audio Controller [b-2]

 

Stockage:

Contrôleur IDE Intel® 82801FB/FBM Ultra ATA Storage Controllers - 266F

Contrôleur IDE Texas Instruments PCIxx21 Integrated FlashMedia Controller

Disque dur Lecteur de disque (55 Go, IDE)

Lecteur optique Lecteur de CD-ROM

État des disques durs SMART OK

 

Partitions:

C: (NTFS) 57223 Mo (9379 Mo libre)

 

Entrée:

Clavier Quick Launch Buttons

Souris Alps Pointing-device (2-way)

Souris Souris HID

 

Réseau:

Carte réseau Intel® PRO/Wireless 2200BG Network Connection (192.168.0.2)

Modem Agere Systems AC'97 Modem

 

Périphériques:

Imprimante Fax

Imprimante Microsoft XPS Document Writer

Contrôleur FireWire Texas Instruments OHCI Compliant IEEE 1394 Host Controller

Contrôleur USB1 Intel 82801FBM ICH6-M - USB Universal Host Controller [b-2]

Contrôleur USB1 Intel 82801FBM ICH6-M - USB Universal Host Controller [b-2]

Contrôleur USB1 Intel 82801FBM ICH6-M - USB Universal Host Controller [b-2]

Contrôleur USB1 Intel 82801FBM ICH6-M - USB Universal Host Controller [b-2]

Contrôleur USB2 Intel 82801FBM ICH6-M - Enhanced USB2 Controller [b-2]

Périphérique USB Périphérique d'interface utilisateur USB

Batterie Adaptateur secteur Microsoft

Batterie Batterie à méthode de contrôle compatible ACPI Microsoft

 

 

--------[ Debug - PCI ]-------------------------------------------------------------------------------------------------

 

B00 D00 F00: Intel 82915GM Memory Controller Hub

 

Offset 00: 86 80 90 25 06 01 90 20 04 00 00 06 00 00 00 00

Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 E0 00 00 00 00 00 00 00 00 00 00 00

Offset 40: 00 50 00 F0 00 00 00 F0 00 00 00 E0 00 40 00 F0

Offset 50: 00 00 30 00 19 00 00 B8 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 10 11 11 01 30 13 11 00 00 00 00 00 20 0A 39 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 92 01 00 00

Offset E0: 09 00 09 21 02 A2 8B 90 0A 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 00 00 05 00 10 00 00 00

 

B00 D02 F00: Intel 82915GM Graphics Controller 0

 

Offset 00: 86 80 92 25 07 00 90 00 04 00 00 03 00 00 80 00

Offset 10: 00 00 08 B0 01 18 00 00 08 00 00 C0 00 00 00 B0

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 D0 00 00 00 00 00 00 00 10 01 00 00

Offset 40: 00 00 00 00 E0 00 00 00 09 00 09 21 02 A2 8B 90

Offset 50: 0A 00 30 00 19 00 00 B8 00 00 00 00 00 00 80 1F

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 01 00 22 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 11 00 64 34 00 00 00 00 00 00 05 00 00 00 00 00

 

B00 D02 F01: Intel 82915GM Graphics Controller 1

 

Offset 00: 86 80 92 27 07 00 90 00 04 00 80 03 00 00 80 00

Offset 10: 00 00 B0 F2 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 D0 00 00 00 00 00 00 00 00 00 00 00

Offset 40: 00 00 00 00 E0 00 00 00 09 00 09 21 02 A2 8B 90

Offset 50: 0A 00 30 00 19 00 00 B8 00 00 00 00 00 00 80 1F

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 01 00 22 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 11 00 64 34 00 00 00 00 00 00 05 00 00 00 00 00

 

B00 D1C F00: Intel 82801FBM ICH6-M - PCI Express Port 1 [b-2]

 

Offset 00: 86 80 60 26 07 00 10 00 04 00 04 06 08 00 81 00

Offset 10: 00 00 00 00 00 00 00 00 00 02 02 00 F0 F0 00 20

Offset 20: C0 FA B0 FE C1 F6 B1 FA 00 00 00 00 00 00 00 00

Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 11 01 04 00

Offset 40: 10 80 41 01 E0 0F 00 00 00 00 10 00 11 4C 01 01

Offset 50: 00 00 01 10 E0 A0 10 00 08 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 0D A0 00 00 3C 10 81 30 00 00 00 00 00 00 00 00

Offset A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 11 C0 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 80 0F 04 00 00 00 00 00

 

B00 D1D F00: Intel 82801FBM ICH6-M - USB Universal Host Controller [b-2]

 

Offset 00: 86 80 58 26 05 00 80 02 04 00 03 0C 00 00 80 00

Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: 21 18 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 17 01 00 00

Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 27 00 00 00 00 00 00 00 00 01 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 80 0F 04 00 00 00 00 00

 

B00 D1D F01: Intel 82801FBM ICH6-M - USB Universal Host Controller [b-2]

 

Offset 00: 86 80 59 26 05 00 80 02 04 00 03 0C 00 00 00 00

Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: 41 18 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 13 02 00 00

Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 27 00 00 00 00 00 00 00 00 01 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 80 0F 04 00 00 00 00 00

 

B00 D1D F02: Intel 82801FBM ICH6-M - USB Universal Host Controller [b-2]

 

Offset 00: 86 80 5A 26 05 00 80 02 04 00 03 0C 00 00 00 00

Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: 61 18 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 12 03 00 00

Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 27 00 00 00 00 00 00 00 00 01 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 80 0F 04 00 00 00 00 00

 

B00 D1D F03: Intel 82801FBM ICH6-M - USB Universal Host Controller [b-2]

 

Offset 00: 86 80 5B 26 05 00 80 02 04 00 03 0C 00 00 00 00

Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: 81 18 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 10 04 00 00

Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 27 00 00 00 00 00 00 00 00 01 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 80 0F 04 00 00 00 00 00

 

B00 D1D F07: Intel 82801FBM ICH6-M - Enhanced USB2 Controller [b-2]

 

Offset 00: 86 80 5C 26 06 01 90 02 04 20 03 0C 00 00 00 00

Offset 10: 00 00 04 B0 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 17 01 00 00

Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 01 58 C2 C9 00 00 00 00 0A 00 A0 20 00 00 00 00

Offset 60: 20 20 FF 01 00 00 00 00 01 00 00 00 00 00 00 C0

Offset 70: 00 00 C7 3F 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 AA FF 00 55 55 FF 00 20 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 80 00 09 88 8C 40 00 80 0F 04 00 06 17 00 00

 

B00 D1E F00: Intel 82801FBM I/O Controller Hub 6 (ICH6-M) [b-2]

 

Offset 00: 86 80 48 24 07 01 10 00 D4 01 04 06 00 00 81 00

Offset 10: 00 00 00 00 00 00 00 00 00 06 07 80 30 30 80 22

Offset 20: 10 B0 10 B0 F1 FF 01 00 00 00 00 00 00 00 00 00

Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 FF 00 04 00

Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 0D 00 00 00 3C 10 81 30 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 80 0F 04 00 00 00 00 00

 

B00 D1E F02: Intel 82801FBM ICH6-M - AC'97 Audio Controller [b-2]

 

Offset 00: 86 80 6E 26 07 00 90 02 04 00 01 04 00 00 00 00

Offset 10: 01 1C 00 00 C1 18 00 00 00 08 04 B0 00 04 04 B0

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 11 01 00 00

Offset 40: 09 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 01 00 C2 C9 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 80 0F 04 00 00 00 00 00

 

B00 D1E F03: Intel 82801FBM ICH6-M - AC'97 Modem Controller [b-2]

 

Offset 00: 86 80 6D 26 05 00 90 02 04 00 03 07 00 00 00 00

Offset 10: 01 24 00 00 01 20 00 00 00 00 00 00 00 00 00 00

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 14 02 00 00

Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 01 00 C2 C9 00 01 00 00 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 80 0F 04 00 00 00 00 00

 

B00 D1F F00: Intel 82801FBM ICH6-M - LPC Bridge [b-2]

 

Offset 00: 86 80 41 26 07 00 00 02 04 00 01 06 00 00 80 00

Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 40: 01 10 00 00 80 00 00 00 81 11 00 00 10 00 00 00

Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 80 80 80 80 90 00 00 00 80 80 80 80 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 3F 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 20 06 00 00 01 00 00 00 00 00 00 00 00 03 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 81 08 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 33 22 11 00 67 45 00 00 CF FF 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 01 80 00 F0 00 00 00 00 80 0F 04 00 00 00 00 00

 

B00 D1F F01: Intel 82801FBM ICH6-M - ATA-100 IDE Controller [b-2]

 

Offset 00: 86 80 6F 26 05 00 80 02 04 8A 01 01 00 00 00 00

Offset 10: 01 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00

Offset 20: 11 18 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 FF 01 00 00

Offset 40: 77 E3 00 00 0B 00 00 00 01 00 01 00 00 00 00 00

Offset 50: 00 00 00 00 11 10 00 00 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 03 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 80 0F 04 00 00 00 00 00

 

B00 D1F F03: Intel 82801FBM ICH6-M - SMBus Controller [b-2]

 

Offset 00: 86 80 6A 26 01 01 80 02 04 00 05 0C 00 00 00 00

Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: A1 18 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 0A 02 00 00

Offset 40: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 80 0F 04 00 00 00 00 00

 

B06 D05 F00: HP PRO/Wireless 2200BG 3B Network Connection

 

Offset 00: 86 80 20 42 16 01 90 02 05 00 80 02 08 80 00 00

Offset 10: 00 60 10 B0 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 F6 12

Offset 30: 00 00 00 00 DC 00 00 00 00 00 00 00 14 01 03 18

Offset 40: 80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 01 00 22 C8

Offset E0: 00 20 00 13 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

B06 D06 F00: Texas Instruments PCIxx21/x515 CardBus Controller

 

Offset 00: 4C 10 31 80 07 00 10 02 00 00 07 06 08 00 82 00

Offset 10: 00 70 10 B0 A0 00 00 02 06 07 07 00 00 F0 BF F6

Offset 20: 00 F0 BF F6 00 F0 BF F2 00 E0 BF F6 00 FF 00 00

Offset 30: FC FF 00 00 00 FE 00 00 FC FE 00 00 16 01 C0 00

Offset 40: 3C 10 81 30 01 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 60 10 44 08 19 00 93 02 00 00 0F 00 02 1B AA 01

Offset 90: C0 22 64 60 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 01 00 12 FE 00 00 C0 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

B06 D06 F02: Texas Instruments OHCI Compliant IEEE 1394 Host Controller

 

Offset 00: 4C 10 32 80 16 01 10 02 00 10 00 0C 08 80 80 00

Offset 10: 00 80 10 B0 00 00 10 B0 00 00 00 00 00 00 00 00

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 44 00 00 00 00 00 00 00 15 03 02 04

Offset 40: 00 00 00 00 01 00 02 7E 00 80 00 00 00 00 00 00

Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 08 00 00 00

Offset F0: 10 00 00 00 84 10 00 00 3C 10 81 30 00 00 00 00

 

B06 D06 F03: Texas Instruments PCIxx21 Integrated FlashMedia Controller

 

Offset 00: 4C 10 33 80 06 01 10 02 00 00 80 01 08 80 80 00

Offset 10: 00 40 10 B0 00 00 00 00 00 00 00 00 00 00 00 00

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 44 00 00 00 00 00 00 00 16 01 07 04

Offset 40: 00 00 00 00 01 00 02 7E 00 00 00 00 00 00 00 00

Offset 50: 3C 10 81 30 05 01 00 00 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

B06 D06 F04: Texas Instruments Secure Digital Host Controller

 

Offset 00: 4C 10 34 80 06 01 10 02 00 00 05 08 08 80 80 00

Offset 10: 00 90 10 B0 00 8C 10 B0 00 88 10 B0 00 00 00 00

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 80 00 00 00 00 00 00 00 16 01 07 04

Offset 40: 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 01 00 02 7E 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

B06 D07 F00: Realtek RTL8139 PCI Fast Ethernet Adapter [A/B/C]

 

Offset 00: EC 10 39 81 00 01 90 02 10 00 00 02 00 80 00 00

Offset 10: 01 30 00 00 00 94 10 B0 00 00 00 00 00 00 00 00

Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 81 30

Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 0B 01 20 40

Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 50: 01 00 C2 F7 03 01 00 00 00 00 00 00 00 00 00 00

Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

PCI-8086-2590: Intel i910/915/925/945/955/E7221/E7230 MMR

 

Offset 100: 04 08 0C 10 00 00 00 00 22 22 00 00 1B 00 00 00

Offset 110: A8 20 A8 86 11 61 70 01 30 03 00 00 A6 00 A6 00

Offset 120: 05 8A 00 40 00 19 00 80 F0 01 00 00 00 00 00 00

Offset 130: C4 06 00 00 6D 06 1A 87 01 02 08 00 00 00 00 00

Offset 140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 160: 80 00 00 00 20 80 00 00 00 AA 00 22 98 87 02 00

Offset 170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset 1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

PCI-8086-2590: Intel i910/915/925/945/955/E7221/E7230 MMR

 

Offset 200: 00 04 0F 00 00 00 00 00 00 04 01 00 02 00 00 00

Offset 210: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

PCI-8086-2590: Intel i910/915/925/945/955/E7221/E7230 MMR

 

Offset C00: 10 04 00 00 01 01 01 01 00 00 00 00 00 00 00 00

Offset C10: 00 00 00 00 08 00 80 00 00 00 00 00 00 80 00 00

Offset C20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C30: BC 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset C80: 00 00 00 00 0F 00 00 00 00 00 00 FF 00 00 00 00

Offset C90: 00 00 0F 00 00 00 0F 00 00 00 00 00 00 00 00 00

Offset CA0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset CB0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset CC0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Offset CD0: 00 00 00 00 0C 00 00 00 00 00 00 FF 00 00 00 00

Offset CE0: 00 00 0C 00 00 00 0C 00 00 00 00 00 00 00 00 00

Offset CF0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

 

--------[ Debug - Video BIOS ]------------------------------------------------------------------------------------------

 

C000:0000 U.y.K.000000000000.!.. [@...00IBM VGA Compatible BIOS. .[.k.y...

C000:0040 PCIR...%.................................u.............]........

C000:0080 ....................................d......d......d.....0d......

C000:00C0 d......d......d......d.....0d......d.....0d......d......d......d

C000:0100 ......d.....0d......d......d.....0$......$......d.......... ....

C000:0140 `".......N... ....@............ ...88.......... .1X. (.........V

C000:0180 . .1X. .P.......... .0X. @........d..@A.&0..6.......... A. 0.`.

C000:01C0 ........$.`A.(00`........0*..Q.*@0p.........4..Q.*@...........=.

C000:0200 .Q.0@@.........H?@0b.2@@..........O@0b.2@@..........Y@0b.2@@....

C000:0240 .....h[..r.<P...........t..r.<P..........0.7..2.m..4....8....:..

C000:0280 ..<.E..A.7..C.m..E....I....K....M.E..P 7..R m..T ...X ...Z ...\

C000:02C0 E..`.j..a.j..b j..c....d....e ...f....g....h ...i....j....k ...l

C000:0300 ....m....n ...o....p....q ......................................

C000:0340 .........................................................For Eva

C000:0380 luation Use Only....(........c-'(.+.............................

C000:03C0 ....................(........c-'(.+.............................

 

 

--------[ Debug - Unknown ]---------------------------------------------------------------------------------------------

 

HDD Lecteur de disque

Monitor SEC3345: Écran Plug-and-Play [NoDB]

 

 

------------------------------------------------------------------------------------------------------------------------

 

The names of actual companies and products mentioned herein may be the trademarks of their respective owners.

 

Passons au rapport suivant:

 

Logfile of HijackThis v1.99.1

Scan saved at 15:09:58, on 15/02/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16414)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe

C:\WINDOWS\AGRSMMSG.exe

C:\WINDOWS\system32\igfxtray.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Antipub\antipub.exe

C:\WINDOWS\system32\netdde.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\cisvc.exe

C:\WINDOWS\system32\clipsrv.exe

C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

C:\WINDOWS\System32\snmp.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\system32\cidaemon.exe

C:\Program Files\Lavalys\EVEREST Home Edition\everest.bin

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

 

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = [http://www.google.fr/keyword/%s]

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=pavilion&pf=laptop http://ie.redirect.hp.com/...]

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [http://www.google.fr]

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=Q305&bd=pavilion&pf=laptop http://ie.redirect.hp.com/...]

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [http://go.microsoft.com/fwlink/?LinkId=69157]'>http://go.microsoft.com/fwlink/?LinkId=69157]

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [http://go.microsoft.com/fwlink/?LinkId=54896]'>http://go.microsoft.com/fwlink/?LinkId=54896]

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [http://go.microsoft.com/fwlink/?LinkId=54896]

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [http://go.microsoft.com/fwlink/?LinkId=69157]

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = [http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR]

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O1 - Hosts: AmsServer

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {B6EBEAB9-7B43-46CE-9156-3E58F14FA062} - C:\WINDOWS\system32\gebcb.dll

O2 - BHO: (no name) - {C671A733-A4AA-4B5F-8CEE-006242C457B5} - (no file)

O2 - BHO: (no name) - {E03C740E-BB24-4d3c-B92A-6F84DE1DD99C} - C:\WINDOWS\system32\hafrqwvi.dll

O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe

O4 - HKLM\..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO

O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\MSOFFICE\Office10\EXCEL.EXE/3000

O11 - Options group: [iNTERNATIONAL] International*

O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - [http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab]

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - [http://go.microsoft.com/fwlink/?linkid=39204]

O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - [http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab]

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - [http://modifié.spaces.live.com//PhotoUpload/MsnPUpld.cab]

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - [http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1165441545984 http://update.microsoft.com/...]

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - [http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1165352115765 http://update.microsoft.com/...]

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - [http://config.zebulon.fr/plugins/hardwaredetection.cab]

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - [http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab]

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - [http://messenger.zone.msn.com/binary/ZIntro.cab53083.cab]

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O20 - Winlogon Notify: byxvwww - byxvwww.dll (file missing)

O20 - Winlogon Notify: gebcb - C:\WINDOWS\system32\gebcb.dll

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O20 - Winlogon Notify: winjvd32 - winjvd32.dll (file missing)

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)

O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)

O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

 

Un grand merci a tous ceux qui se seront penché sur ce sujet

 

Configuration:

-HP Pavilion dv4000(portable)

-Windows XP Familial(mis a jour)

-Internet Explorer 7.0

Modifié par Gildas Ar Breizh

papo Godlike Member

papo

Posté(e)
Posté(e)

salut et bienvenue sur Zébulon,

Tu le dis toi-même, ton PC abrite des intrus; dans un premier temps, je t'engage à faire ceci :

http://forum.zebulon.fr/index.php?showtopic=83986

Puis tu iras posté les rapports antivir et Hijackthis, là :

http://forum.zebulon.fr/index.php?act=SF&s=&f=51

 

S'agissant de l'écran bleu, il serait utile de donner sa teneur exacte, surtout pour

la partie "Infos techniques"

Thanos Devil Member !

Thanos

Posté(e)
Posté(e)

salut angélique :P Gildas Ar Breizh

 

Stp Gildas Ar Breizh, fais ceci >

 

Télécharge VundoFix.exe (par Atribune) sur ton Bureau.

  • Double-clique VundoFix.exe afin de le lancer
  • Clique sur le bouton Scan for Vundo
  • Lorsque le scan est complété, clique sur le bouton Remove Vundo
  • Une invite te demandera si tu veux supprimer les fichiers, clique YES
  • Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers
  • Tu verras une invite qui t'annonce que ton PC va redémarrer; clique OK
  • Copie/colle le contenu du rapport situé dans C:\vundofix.txt ainsi qu'un nouveau rapport HijackThis! dans ta prochaine réponse

Note: Il est possible que VundoFix soit confronté à un fichier qu'il ne peut supprimer. Si tel est le cas, l'outil se lancera au prochain redémarrage; il faut simplement suivre les instructions ci-haut, à partir de "clique sur le bouton Scan for Vundo".

 

Télécharge et lance DiagHelp comme montré dans ce tutoriel> http://www.malekal.com/DiagHelp/DiagHelp.php

Ne lance que l'option 1 et poste le rapport stp.

 

@+

Gildas Ar Breizh Member

Gildas Ar Breizh

Posté(e)
  • Auteur
Posté(e) (modifié)

Configuration:

-HP Pavilion dv4000(portable)

-Windows XP Familial(mis a jour)

-Internet Explorer 7.0

 

Me voici enfin de retour

Cela ma pris un temps fou

Surtout que le PC a planter a 75% du premier scan

 

Donc voici le resultat de 3 rapport:

-Le rapport Antivir en mode sans echec (presque rien :P )

-Celui de Hijackthis redemarré mode normal mais non connecté

-Encore Hijackthis redemarré en mode normal connecté ce coup-ci (on y remarque quelques variantes)

A noter que demarrant connecté Avast m'a signalé un intru:

-C:\DOCUME~1\modifié\LOCALS~1\Temp\gwrdpqco.dll

2eme demarrage il signale:

-C:\DOCUME~1\modifié\LOCALS~1\Temp\twplmfon.dll

supprimé effectué les 2 fois

 

Désolé Charles mais il est tard(tot) et je suis trop fatigué, d'autant que je me leve demain, pour ta demande (sinceres regrets)

Nous verons cela, dès que possible

 

Et encore merci (je crois que j'ai pas fini d'inscrire cette phrase)

 

AntiVir PersonalEdition Classic

Report file date: jeudi 15 février 2007 23:32

 

Scanning for 672524 virus strains and unwanted programs.

 

Licensed to: Avira AntiVir PersonalEdition Classic

Serial number: 0000149996-ADJIE-0001

Platform: Windows XP

Windows version: (Service Pack 2) [5.1.2600]

Username: modifié

Computer name: modifié

Version information:

BUILD.DAT : 217 12749 Bytes 05/12/2006 17:00:00

AVSCAN.EXE : 7.0.3.5 208936 Bytes 15/02/2007 20:26:20

AVSCAN.DLL : 7.0.3.1 35880 Bytes 05/12/2006 16:00:22

LUKE.DLL : 7.0.3.2 143400 Bytes 31/10/2006 16:07:46

LUKERES.DLL : 7.0.2.0 9256 Bytes 05/12/2006 16:00:22

ANTIVIR0.VDF : 6.35.0.1 7371264 Bytes 31/05/2006 15:30:06

ANTIVIR1.VDF : 6.37.0.153 3131392 Bytes 12/01/2007 20:26:21

ANTIVIR2.VDF : 6.37.1.85 598016 Bytes 14/02/2007 20:26:21

ANTIVIR3.VDF : 6.37.1.99 20480 Bytes 15/02/2007 20:26:21

AVEWIN32.DLL : 7.3.1.37 2306560 Bytes 15/02/2007 20:26:22

AVPREF.DLL : 7.0.2.0 23592 Bytes 03/11/2006 10:53:44

AVREP.DLL : 6.37.1.1 1105960 Bytes 15/02/2007 20:26:22

AVRPBASE.DLL : 7.0.0.0 2162728 Bytes 30/03/2006 08:43:31

AVPACK32.DLL : 7.2.0.5 368680 Bytes 23/10/2006 15:21:31

AVREG.DLL : 7.0.1.2 30760 Bytes 15/02/2007 20:26:19

NETNT.DLL : No Information!

RCIMAGE.DLL : 7.0.1.3 2097192 Bytes 08/11/2006 12:26:26

RCTEXT.DLL : 7.0.12.1 77864 Bytes 05/12/2006 16:00:21

 

Configuration settings for the scan:

Jobname..........................: Manual Selection

Configuration file...............: C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\PROFILES\folder.avp

Logging..........................: low

Primary action...................: delete

Secondary action.................: ignore

Scan master boot sector..........: off

Scan boot sector.................: on

Boot sectors.....................: C:,

Scan memory......................: on

Process scan.....................: on

Scan registry....................: on

Scan all files...................: All files

Scan archives....................: on

Recursion depth..................: 20

Smart extensions.................: on

Skipped archive types............: BSD Mailbox, Netscape/Mozilla Mailbox, Eudora Mailbox, Squid cache, Pegasus Mailbox, MS Outlook Mailbox,

Macro heuristic..................: on

File heuristic...................: high

Different risk categories........: +GAME,+JOKE,+PCK,+SPR,

 

Start of the scan: jeudi 15 février 2007 23:32

 

The scan of running processes will be started

Scan process 'avscan.exe' - '1' Modules have been scanned

Scan process 'avcenter.exe' - '1' Modules have been scanned

Scan process 'taskmgr.exe' - '1' Modules have been scanned

Scan process 'svchost.exe' - '1' Modules have been scanned

Scan process 'svchost.exe' - '1' Modules have been scanned

Scan process 'svchost.exe' - '1' Modules have been scanned

Scan process 'lsass.exe' - '1' Modules have been scanned

Scan process 'services.exe' - '1' Modules have been scanned

Scan process 'winlogon.exe' - '1' Modules have been scanned

Scan process 'csrss.exe' - '1' Modules have been scanned

Scan process 'smss.exe' - '1' Modules have been scanned

11 processes with 11 modules were scanned

 

Start scanning boot sectors:

Boot sector 'C:\'

[NOTE] No virus was found!

 

Starting to scan the registry.

The registry was scanned ( 18 files ).

 

 

Starting the file scan:

 

Begin scan in 'C:\'

C:\pagefile.sys

[WARNING] The file could not be opened!

C:\Program Files\VSAdd-in\VSAdd-in.dll

[DETECTION] Is the Trojan horse TR/Agent.ACL

[iNFO] The file was deleted!

C:\WINDOWS\system32\ajxvhudj.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\arhxiqce.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\awwalifs.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\bastktqq.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\bglglpgw.dll

[DETECTION] Is the Trojan horse TR/Virtumod.DG

[iNFO] The file was deleted!

C:\WINDOWS\system32\bgywdygu.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\calwrflj.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\chfgovqh.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\dvpsxqqd.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\ffkbnfkw.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\ftfmkqet.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\gadukxvo.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\gebcb.dll

[DETECTION] Is the Trojan horse TR/Vundo.H.DLL

[WARNING] The file could not be deleted!

C:\WINDOWS\system32\gnpucnsr.dll

[DETECTION] Contains suspicious code HEUR/Malware

[iNFO] The file was moved to '46450230.qua'!

C:\WINDOWS\system32\gpqjxfyb.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\hafrqwvi.dll

[DETECTION] Contains suspicious code HEUR/Malware

[iNFO] The file was moved to '463b0225.qua'!

C:\WINDOWS\system32\hamieneh.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\hmbyyege.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\hxnsymkx.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\hyoyshgp.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\ifienqxk.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\ilpkqqvv.exe

[DETECTION] Is the Trojan horse TR/Agent.ACL.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\khbranww.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\kirfpyqv.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\krsohxri.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\kwlrojae.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\mlijrvsr.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\mnfwajfo.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\nwrjhrbt.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\olampvcf.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\pvrckimf.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\qaiwqncd.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\qedlhikt.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\qkuljsgq.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\qppnpbpp.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\qrntdclw.exe

[DETECTION] Is the Trojan horse TR/Agent.ACL.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\qrsepjek.dll

[DETECTION] Is the Trojan horse TR/Virtumod.DG

[iNFO] The file was deleted!

C:\WINDOWS\system32\rghvrpqr.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\rnowodqs.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\roegxulr.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\rrkfbfgp.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\sabmtpym.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\sexucfsl.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\stvlsnai.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\ujdgcock.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\ukeqekay.exe

[DETECTION] Is the Trojan horse TR/Agent.ACL.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\urbiltot.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\vqtpttyi.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\wdysrlhx.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\wesdpbwn.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\wewlacwn.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\wfjcpogm.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\wfjgxmmq.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\woiyddfq.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\yboxtlku.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\yjkeutfc.dll

[DETECTION] Is the Trojan horse TR/Juan.E

[iNFO] The file was deleted!

C:\WINDOWS\system32\ypfvtudj.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

C:\WINDOWS\system32\ysycmbgm.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[iNFO] The file was deleted!

 

 

End of the scan: vendredi 16 février 2007 02:09

Used time: 2:36:28 min

 

The scan has been done completely.

 

6943 Scanning directories

251212 Files were scanned

59 viruses and/or unwanted programs were found

56 files were deleted

0 files were repaired

2 files were moved to quarantine

0 files were renamed

1 Files cannot be scanned

251152 Files not concerned

8196 Archives were scanned

2 Warnings

10 Notes

 

Logfile of HijackThis v1.99.1

Scan saved at 02:58:55, on 16/02/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16414)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\netdde.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\cisvc.exe

C:\WINDOWS\system32\clipsrv.exe

C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe

C:\WINDOWS\System32\snmp.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\AGRSMMSG.exe

C:\WINDOWS\system32\igfxtray.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Antipub\antipub.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\system32\cidaemon.exe

C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

 

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.google.fr/keyword/%s

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: AmsServer

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {46A4E9D9-B30E-452A-8157-DBBEC8573B03} - (no file)

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {A8534DDD-3C93-49B0-B8F0-0B0C7883F986} - C:\WINDOWS\system32\gebcb.dll

O2 - BHO: (no name) - {C671A733-A4AA-4B5F-8CEE-006242C457B5} - (no file)

O2 - BHO: (no name) - {E03C740E-BB24-4d3c-B92A-6F84DE1DD99C} - (no file)

O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll

O3 - Toolbar: (no name) - {74DD705D-6834-439C-A735-A6DBE2677452} - (no file)

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe

O4 - HKLM\..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO

O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe

O4 - Startup: JkDefrag.lnk = C:\Program Files\JkDefrag\JkDefrag.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\MSOFFICE\Office10\EXCEL.EXE/3000

O11 - Options group: [iNTERNATIONAL] International*

O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - modifié[/i].spaces.live.com//PhotoUpload/MsnPUpld.cab"]http://modifié.spaces.live.com//P...ad/MsnPUpld.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1165441545984

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1165352115765

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://config.zebulon.fr/plugins/hardwaredetection.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab53083.cab

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O20 - Winlogon Notify: byxvwww - byxvwww.dll (file missing)

O20 - Winlogon Notify: gebcb - C:\WINDOWS\system32\gebcb.dll

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O20 - Winlogon Notify: winjvd32 - winjvd32.dll (file missing)

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)

O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)

O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

 

Logfile of HijackThis v1.99.1

Scan saved at 03:11:05, on 16/02/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16414)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe

C:\WINDOWS\AGRSMMSG.exe

C:\WINDOWS\system32\igfxtray.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Antipub\antipub.exe

C:\WINDOWS\system32\netdde.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\cisvc.exe

C:\WINDOWS\system32\clipsrv.exe

C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

C:\WINDOWS\System32\snmp.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

 

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.google.fr/keyword/%s

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: AmsServer

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {17D1EEBE-6678-4B40-B85D-2DE1D3182E50} - C:\WINDOWS\system32\gebcb.dll

O2 - BHO: (no name) - {46A4E9D9-B30E-452A-8157-DBBEC8573B03} - (no file)

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {C671A733-A4AA-4B5F-8CEE-006242C457B5} - (no file)

O2 - BHO: (no name) - {E03C740E-BB24-4d3c-B92A-6F84DE1DD99C} - (no file)

O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll

O3 - Toolbar: (no name) - {74DD705D-6834-439C-A735-A6DBE2677452} - (no file)

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe

O4 - HKLM\..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO

O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe

O4 - Startup: JkDefrag.lnk = C:\Program Files\JkDefrag\JkDefrag.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\MSOFFICE\Office10\EXCEL.EXE/3000

O11 - Options group: [iNTERNATIONAL] International*

O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - modifié[/i].spaces.live.com//PhotoUpload/MsnPUpld.cab"]http://modifié.spaces.live.com//P...ad/MsnPUpld.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1165441545984

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1165352115765

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://config.zebulon.fr/plugins/hardwaredetection.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab53083.cab

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O20 - Winlogon Notify: byxvwww - byxvwww.dll (file missing)

O20 - Winlogon Notify: gebcb - C:\WINDOWS\system32\gebcb.dll

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O20 - Winlogon Notify: winjvd32 - winjvd32.dll (file missing)

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)

O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)

O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

 

Configuration:

-HP Pavilion dv4000(portable)

-Windows XP Familial(mis a jour)

-Internet Explorer 7.0

Modifié par Gildas Ar Breizh
Thanos Devil Member !

Thanos

Posté(e)
Posté(e)

salut;)

 

-Le rapport Antivir en mode sans echec (presque rien icon_rolleyes.gif )

Je ne sais pas ce qu'il te faut, Antivir a quand même éliminé 56 fichiers infectés!! lol

 

Il n'a pas réussi par contre à éliminer une composante de Vundo.. Aussi stp, lance Vundofix comme je te disait et poste le rapport dès que possible :P

Gildas Ar Breizh Member

Gildas Ar Breizh

Posté(e)
  • Auteur
Posté(e) (modifié)

Configuration:

-HP Pavilion dv4000(portable)

-Windows XP Familial(mis a jour)

-Internet Explorer 7.0

 

Encore merci de l'aide que vous m'apportez

 

Dommage que le rapport Antivir soit faussé (il avait deja supprimé des intrus lors du plantage)

 

Au troisieme demarrage Avast detecte:

-C:\DOCUME~1\modifié\LOCALS~1\Temp\thftxwfh.dll

Passage de VundoFix

Quatrieme demarrage aucune detection

 

VundoFix V6.3.6

 

Checking Java version...

 

Java version is 1.5.0.2

 

Java version is 1.5.0.6

 

Scan started at 14:17:57 16/02/2007

 

Listing files found while scanning....

 

C:\Documents and settings\modifié\Application Data\SearchToolbarCorp\Toolbar Vision\PageHistory.txt

C:\Documents and settings\modifié\Application Data\SearchToolbarCorp\Toolbar Vision\WebHistory.txt

C:\WINDOWS\system32\bcbeg.bak1

C:\WINDOWS\system32\bcbeg.bak2

C:\WINDOWS\system32\bcbeg.ini

C:\WINDOWS\system32\bcbeg.ini2

C:\WINDOWS\system32\bcbeg.tmp

C:\WINDOWS\system32\gebcb.dll

 

Beginning removal...

 

Attempting to delete C:\Documents and settings\modifié\Application Data\SearchToolbarCorp\Toolbar Vision\PageHistory.txt

C:\Documents and settings\modifié\Application Data\SearchToolbarCorp\Toolbar Vision\PageHistory.txt Has been deleted!

 

Attempting to delete C:\Documents and settings\modifié\Application Data\SearchToolbarCorp\Toolbar Vision\WebHistory.txt

C:\Documents and settings\modifié\Application Data\SearchToolbarCorp\Toolbar Vision\WebHistory.txt Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\bcbeg.bak1

C:\WINDOWS\system32\bcbeg.bak1 Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\bcbeg.bak2

C:\WINDOWS\system32\bcbeg.bak2 Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\bcbeg.ini

C:\WINDOWS\system32\bcbeg.ini Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\bcbeg.ini2

C:\WINDOWS\system32\bcbeg.ini2 Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\bcbeg.tmp

C:\WINDOWS\system32\bcbeg.tmp Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\gebcb.dll

C:\WINDOWS\system32\gebcb.dll Has been deleted!

 

Performing Repairs to the registry.

Done!

 

Logfile of HijackThis v1.99.1

Scan saved at 14:41:33, on 16/02/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16414)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe

C:\WINDOWS\AGRSMMSG.exe

C:\WINDOWS\system32\igfxtray.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Antipub\antipub.exe

C:\WINDOWS\system32\netdde.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\cisvc.exe

C:\WINDOWS\system32\clipsrv.exe

C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

C:\WINDOWS\System32\snmp.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\system32\NOTEPAD.EXE

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\WINDOWS\system32\cidaemon.exe

C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

 

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.google.fr/keyword/%s

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?

 

TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=pavilion&pf=laptop

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?

 

TYPE=3&tp=iehome&locale=FR_FR&c=Q305&bd=pavilion&pf=laptop

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?

 

LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: AmsServer

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat

 

7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {46A4E9D9-B30E-452A-8157-DBBEC8573B03} - (no file)

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: (no name) - {85C52756-321A-4C21-9C38-895001A91B23} - C:\WINDOWS\system32\gebcb.dll (file missing)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers

 

communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {C671A733-A4AA-4B5F-8CEE-006242C457B5} - (no file)

O2 - BHO: (no name) - {E03C740E-BB24-4d3c-B92A-6F84DE1DD99C} - (no file)

O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll

O3 - Toolbar: (no name) - {74DD705D-6834-439C-A735-A6DBE2677452} - (no file)

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe

O4 - HKLM\..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO

O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe

O4 - Startup: JkDefrag.lnk = C:\Program Files\JkDefrag\JkDefrag.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\MSOFFICE\Office10\EXCEL.EXE/3000

O11 - Options group: [iNTERNATIONAL] International*

O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) -

 

http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -

 

http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) -

 

http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) -

 

http://modifié.spaces.live.com//PhotoUpload/MsnPUpld.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -

 

http://update.microsoft.com/windowsupdate/...b?1165441545984

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -

 

http://update.microsoft.com/microsoftupdat...b?1165352115765

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) -

 

http://config.zebulon.fr/plugins/hardwaredetection.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) -

 

http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) -

 

http://messenger.zone.msn.com/binary/ZIntro.cab53083.cab

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O20 - Winlogon Notify: byxvwww - byxvwww.dll (file missing)

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O20 - Winlogon Notify: winjvd32 - winjvd32.dll (file missing)

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4

 

\aswUpdSv.exe

O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service

 

(file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service

 

(file missing)

O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:\Program Files\Fichiers communs\Symantec

 

Shared\ccSvcHst.exe" /h ccCommon (file missing)

O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:\Program Files\Fichiers communs\Symantec

 

Shared\ccSvcHst.exe" /h ccCommon (file missing)

O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program

 

Files\HPQ\SHARED\HPQWMI.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers

 

communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program

 

Files\Fichiers communs\LightScribe\LSSrvc.exe

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program

 

Files\Analog Devices\SoundMAX\SMAgent.exe

 

Configuration:

-HP Pavilion dv4000(portable)

-Windows XP Familial(mis a jour)

-Internet Explorer 7.0

Modifié par Gildas Ar Breizh
Gildas Ar Breizh Member

Gildas Ar Breizh

Posté(e)
  • Auteur
Posté(e) (modifié)

Qu'est ce que le programme AutoUpdate ?

 

Voici le rapport DialHelp go.cmd option 1:

 

C:\WINDOWS\System32\wpa.dbl -->16/02/2007 14:29:39

C:\WINDOWS\System32\wgplglgb.ini -->15/02/2007 22:50:43

C:\WINDOWS\System32\mcrh.tmp -->15/02/2007 20:47:10

C:\WINDOWS\System32\JkDefragScreenSaver.log -->15/02/2007 18:52:36

C:\WINDOWS\System32\ftuxooir.ini -->15/02/2007 18:43:59

C:\WINDOWS\System32\d3d8caps.dat -->15/02/2007 17:17:18

C:\WINDOWS\System32\d3d9caps.dat -->15/02/2007 17:17:17

C:\WINDOWS\System32\TZLog.log -->14/02/2007 17:39:10

C:\WINDOWS\System32\rgyuqgiw.ini -->14/02/2007 16:58:54

C:\WINDOWS\System32\jqcvdaus.ini -->12/02/2007 03:56:02

C:\WINDOWS\System32\CONFIG.NT -->12/02/2007 02:24:00

C:\WINDOWS\System32\perfh00C.dat -->12/02/2007 00:53:54

C:\WINDOWS\System32\perfh009.dat -->12/02/2007 00:53:54

C:\WINDOWS\System32\perfc00C.dat -->12/02/2007 00:53:54

C:\WINDOWS\System32\perfc009.dat -->12/02/2007 00:53:53

C:\WINDOWS\System32\PerfStringBackup.INI -->12/02/2007 00:53:49

C:\WINDOWS\System32\nscompat.tlb -->12/02/2007 00:52:42

C:\WINDOWS\System32\amcompat.tlb -->12/02/2007 00:52:42

C:\WINDOWS\System32\odqnoupk.ini -->11/02/2007 19:34:40

C:\WINDOWS\System32\FNTCACHE.DAT -->11/02/2007 15:58:10

C:\WINDOWS\System32\rlcnudee.ini -->11/02/2007 14:39:56

C:\WINDOWS\System32\asfiles.txt -->11/02/2007 08:25:02

C:\WINDOWS\System32\Uninstall.ico -->11/02/2007 08:23:26

C:\WINDOWS\System32\Help.ico -->11/02/2007 08:23:25

C:\WINDOWS\System32\$winnt$.inf -->11/02/2007 04:42:01

 

C:\WINDOWS\ModemLog_Agere Systems AC'97 Modem.txt -->16/02/2007 14:29:33

C:\WINDOWS\WindowsUpdate.log -->16/02/2007 14:29:10

C:\WINDOWS\wiadebug.log -->16/02/2007 14:29:06

C:\WINDOWS\wiaservc.log -->16/02/2007 14:29:05

C:\WINDOWS\bootstat.dat -->16/02/2007 14:28:52

C:\WINDOWS\SchedLgU.Txt -->16/02/2007 05:28:29

C:\WINDOWS\Sti_Trace.log -->16/02/2007 02:48:34

C:\WINDOWS\WMSysPr9.prx -->12/02/2007 00:48:47

C:\WINDOWS\zzzzzzzz.zzz -->11/02/2007 23:59:04

C:\WINDOWS\win.ini -->11/02/2007 19:49:31

C:\WINDOWS\system.ini -->11/02/2007 19:49:31

C:\WINDOWS\pavsig.txt -->11/02/2007 08:24:18

C:\WINDOWS\ODBCINST.INI -->11/02/2007 04:33:06

C:\WINDOWS\WindowsShell.Manifest -->11/02/2007 04:31:34

C:\WINDOWS\UPGRADE.TXT -->10/02/2007 16:11:54

 

C:\WINDOWS\agrsmdel.exe |24/08/2004 12:20:10

C:\WINDOWS\AGRSMMSG.exe |24/08/2004 12:20:10

C:\WINDOWS\IsUn040c.exe |13/11/1998 07:16:44

C:\WINDOWS\twunk_16.exe |05/08/2004 13:00:00

C:\WINDOWS\twunk_32.exe |05/08/2004 13:00:00

C:\WINDOWS\unin040c.exe |14/05/2006 21:55:58

C:\WINDOWS\UninstallFirefox.exe |03/12/2005 13:26:11

C:\WINDOWS\unvise32qt.exe |21/10/2006 13:57:02

C:\WINDOWS\PCDLIB32.DLL |03/12/2005 00:15:05

C:\WINDOWS\twain.dll |05/08/2004 13:00:00

C:\WINDOWS\twain_32.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\append.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\asuninst.exe |11/02/2007 08:23:58

C:\WINDOWS\system32\aswBoot.exe |12/02/2007 02:23:48

C:\WINDOWS\system32\bcmwlD2K.EXE |24/11/2005 07:53:01

C:\WINDOWS\system32\bcmwlu00.EXE |24/11/2005 07:53:02

C:\WINDOWS\system32\CleanUp.exe |20/05/2005 01:59:07

C:\WINDOWS\system32\debug.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\DivXsm.exe |23/11/2005 05:00:00

C:\WINDOWS\system32\dosx.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\DSndUp.exe |20/05/2005 01:59:07

C:\WINDOWS\system32\dvdplay.exe |23/08/2001 18:47:34

C:\WINDOWS\system32\edlin.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\exe2bin.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\fastopen.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\hkcmd.exe |13/12/2004 15:38:52

C:\WINDOWS\system32\igfxcfg.exe |13/12/2004 15:40:48

C:\WINDOWS\system32\igfxdiag.exe |13/12/2004 15:41:36

C:\WINDOWS\system32\igfxext.exe |13/12/2004 15:43:36

C:\WINDOWS\system32\igfxtray.exe |13/12/2004 15:43:26

C:\WINDOWS\system32\igfxzoom.exe |13/12/2004 15:44:00

C:\WINDOWS\system32\java.exe |26/10/2006 02:10:49

C:\WINDOWS\system32\javaw.exe |26/10/2006 02:10:49

C:\WINDOWS\system32\javaws.exe |26/10/2006 02:10:49

C:\WINDOWS\system32\JkDefragScreenSaver.exe |15/02/2007 18:30:03

C:\WINDOWS\system32\mem.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\mscdexnt.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\nlsfunc.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\NSIS.Library.RegTool.v2.{9BED7506-25B3-4382-853A-D9A3D6C85F37}.exe |04/03/2006 18:01:36

C:\WINDOWS\system32\pxcpya64.exe |04/03/2006 14:38:28

C:\WINDOWS\system32\pxcpyi64.exe |04/03/2006 14:38:28

C:\WINDOWS\system32\pxhpinst.exe |04/12/2005 15:34:01

C:\WINDOWS\system32\pxinsa64.exe |04/03/2006 14:38:28

C:\WINDOWS\system32\pxinsi64.exe |04/03/2006 14:38:28

C:\WINDOWS\system32\redir.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\rzqpgxhbk.exe |19/10/2006 19:13:19

C:\WINDOWS\system32\setver.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\share.exe |05/08/2004 13:00:00

C:\WINDOWS\system32\usrmlnka.exe |23/08/2001 18:47:48

C:\WINDOWS\system32\usrprbda.exe |23/08/2001 18:47:48

C:\WINDOWS\system32\usrshuta.exe |23/08/2001 18:47:48

C:\WINDOWS\system32\UxThemeReplacer.exe |05/09/2004 15:55:40

C:\WINDOWS\system32\3ivx.dll |04/12/2005 15:47:51

C:\WINDOWS\system32\a3d.dll |19/08/2003 20:36:16

C:\WINDOWS\system32\amstream.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\atmfd.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\atmlib.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\Audio3d.dll |20/05/2005 01:59:08

C:\WINDOWS\system32\BASSMOD.dll |27/02/2006 04:59:13

C:\WINDOWS\system32\borlndmm.dll |09/02/1998 01:00:00

C:\WINDOWS\system32\btw_ci.dll |18/01/2005 17:52:16

C:\WINDOWS\system32\cc3250mt.dll |31/01/2000 04:00:00

C:\WINDOWS\system32\CmdLineExt.dll |23/11/2006 19:31:41

C:\WINDOWS\system32\compatUI.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\cpqinfo.dll |20/05/2005 02:37:15

C:\WINDOWS\system32\cpuinf32.dll |04/12/2005 15:47:46

C:\WINDOWS\system32\dgrpsetu.dll |05/08/2004 09:00:00

C:\WINDOWS\system32\dgsetup.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\DivX.dll |26/01/2006 19:36:01

C:\WINDOWS\system32\DivXWMPExtType.dll |24/01/2006 19:08:29

C:\WINDOWS\system32\divx_xx07.dll |26/01/2006 19:35:58

C:\WINDOWS\system32\divx_xx0c.dll |26/01/2006 19:35:58

C:\WINDOWS\system32\divx_xx11.dll |26/01/2006 19:35:58

C:\WINDOWS\system32\dpl100.dll |09/01/2006 20:32:01

C:\WINDOWS\system32\dpu10.dll |09/01/2006 20:32:00

C:\WINDOWS\system32\dpu11.dll |09/01/2006 20:32:00

C:\WINDOWS\system32\dpuGUI10.dll |27/10/2005 20:37:47

C:\WINDOWS\system32\dpuGUI11.dll |09/01/2006 20:32:01

C:\WINDOWS\system32\dpus11.dll |09/01/2006 20:32:01

C:\WINDOWS\system32\dpv11.dll |09/01/2006 20:32:01

C:\WINDOWS\system32\dtu100.dll |09/01/2006 20:32:01

C:\WINDOWS\system32\eabhbrn8.dll |20/05/2005 02:37:16

C:\WINDOWS\system32\encdec.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\EqnClass.Dll |05/08/2004 09:00:00

C:\WINDOWS\system32\execryptorvb.dll |17/01/2006 20:50:28

C:\WINDOWS\system32\fmod.dll |26/09/2006 20:29:03

C:\WINDOWS\system32\frapsvid.dll |21/10/2006 01:59:56

C:\WINDOWS\system32\GEARAspi.dll |31/05/2005 10:20:36

C:\WINDOWS\system32\hccutils.dll |13/12/2004 15:37:50

C:\WINDOWS\system32\HPODXPAT.DLL |11/06/2004 12:27:32

C:\WINDOWS\system32\hpqactn.dll |20/05/2005 02:37:16

C:\WINDOWS\system32\hpqPres.dll |20/05/2005 02:37:16

C:\WINDOWS\system32\hticons.dll |05/08/2004 09:00:00

C:\WINDOWS\system32\hypertrm.dll |05/08/2004 09:00:00

C:\WINDOWS\system32\iAlmCoIn_v3984.dll |13/12/2004 16:02:50

C:\WINDOWS\system32\ialmdd5(2).dll |13/12/2004 16:10:52

C:\WINDOWS\system32\ialmdd5(3).dll |13/12/2004 16:10:52

C:\WINDOWS\system32\ialmdd5.dll |13/12/2004 16:10:52

C:\WINDOWS\system32\ialmdev5(2).dll |13/12/2004 16:02:36

C:\WINDOWS\system32\ialmdev5(3).dll |13/12/2004 16:02:36

C:\WINDOWS\system32\ialmdev5.dll |13/12/2004 16:02:36

C:\WINDOWS\system32\ialmdnt5(2).dll |13/12/2004 16:02:48

C:\WINDOWS\system32\ialmdnt5(3).dll |13/12/2004 16:02:48

C:\WINDOWS\system32\ialmdnt5.dll |13/12/2004 16:02:48

C:\WINDOWS\system32\ialmgdev.dll |13/12/2004 16:01:58

C:\WINDOWS\system32\ialmgicd.dll |13/12/2004 15:59:48

C:\WINDOWS\system32\ialmrem.dll |13/12/2004 16:02:50

C:\WINDOWS\system32\ialmrnt5(2).dll |13/12/2004 16:02:54

C:\WINDOWS\system32\ialmrnt5(3).dll |13/12/2004 16:02:54

C:\WINDOWS\system32\ialmrnt5.dll |13/12/2004 16:02:54

C:\WINDOWS\system32\iccvid.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\igfxdev.dll |13/12/2004 15:37:40

C:\WINDOWS\system32\igfxdgps.dll |13/12/2004 15:41:38

C:\WINDOWS\system32\igfxdo.dll |13/12/2004 15:37:24

C:\WINDOWS\system32\igfxeud.dll |13/12/2004 15:42:24

C:\WINDOWS\system32\igfxexps.dll |13/12/2004 15:43:36

C:\WINDOWS\system32\igfxhk.dll |13/12/2004 15:38:38

C:\WINDOWS\system32\igfxpph.dll |13/12/2004 15:43:00

C:\WINDOWS\system32\igfxres.dll |15/02/2007 13:37:07

C:\WINDOWS\system32\igfxress.dll |13/12/2004 15:38:02

C:\WINDOWS\system32\igfxsrvc.dll |13/12/2004 15:38:28

C:\WINDOWS\system32\ijl11.dll |08/09/2006 13:07:57

C:\WINDOWS\system32\ir32_32.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\ir41_qc.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\ir41_qcx.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\ir50_32.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\ir50_qc.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\ir50_qcx.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\isrdbg32.dll |05/08/2004 09:00:00

C:\WINDOWS\system32\IVIresize.dll |05/12/2006 22:55:05

C:\WINDOWS\system32\IVIresizeA6.dll |05/12/2006 22:55:05

C:\WINDOWS\system32\IVIresizeM6.dll |05/12/2006 22:55:05

C:\WINDOWS\system32\IVIresizeP6.dll |05/12/2006 22:55:06

C:\WINDOWS\system32\IVIresizePX.dll |05/12/2006 22:55:06

C:\WINDOWS\system32\IVIresizeW7.dll |05/12/2006 22:55:06

C:\WINDOWS\system32\jgaw400.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\jgdw400.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\jgmd400.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\jgpl400.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\jgsd400.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\jgsh400.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\lfbmp11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\lfbmp13n.dll |08/01/2007 21:07:25

C:\WINDOWS\system32\LFCMP11n.DLL |06/06/2002 19:02:00

C:\WINDOWS\system32\lfcmp13n.dll |08/01/2007 21:07:25

C:\WINDOWS\system32\lfeps11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\lffax11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\lfgif11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\lfgif13n.dll |08/01/2007 21:07:26

C:\WINDOWS\system32\lfpcd11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\lfpcx11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\Lfpng11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\lfpsd11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\lftga11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\lftif11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\lfwmf11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\libdivx.dll |28/09/2005 19:50:04

C:\WINDOWS\system32\LTDIS11n.dll |06/06/2002 19:02:00

C:\WINDOWS\system32\ltdis13n.dll |08/01/2007 21:07:24

C:\WINDOWS\system32\ltefx13n.dll |08/01/2007 21:07:25

C:\WINDOWS\system32\ltfil11n.DLL |06/06/2002 19:02:00

C:\WINDOWS\system32\ltfil13n.dll |08/01/2007 21:07:24

C:\WINDOWS\system32\ltimg11n.dll |06/06/2002 19:02:02

C:\WINDOWS\system32\ltimg13n.dll |08/01/2007 21:07:24

C:\WINDOWS\system32\ltkrn11n.dll |06/06/2002 19:02:02

C:\WINDOWS\system32\ltkrn13n.dll |08/01/2007 21:07:24

C:\WINDOWS\system32\Ltwvc11n.dll |06/06/2002 19:02:02

C:\WINDOWS\system32\mdwmdmsp.dll |23/08/2001 18:47:06

C:\WINDOWS\system32\msdmo.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\msencode.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\Netw2c32.dll |30/06/2006 02:26:00

C:\WINDOWS\system32\Netw2r32.dll |30/06/2006 02:27:00

C:\WINDOWS\system32\oemdspif.dll |13/12/2004 15:44:06

C:\WINDOWS\system32\ogg.dll |04/12/2005 15:47:50

C:\WINDOWS\system32\OggDS.dll |04/12/2005 15:47:50

C:\WINDOWS\system32\OPENFRA.DLL |20/02/1996 00:00:00

C:\WINDOWS\system32\OpenQuicktimeLib.dll |04/12/2005 15:47:51

C:\WINDOWS\system32\paqsp.dll |23/08/2001 18:47:16

C:\WINDOWS\system32\PCDLIB32.DLL |06/06/2002 19:02:02

C:\WINDOWS\system32\pncrt.dll |17/04/2006 14:03:33

C:\WINDOWS\system32\pndx5016.dll |17/04/2006 14:03:39

C:\WINDOWS\system32\pndx5032.dll |17/04/2006 14:03:40

C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll |20/10/2006 21:29:52

C:\WINDOWS\system32\Px.dll |26/01/2005 13:36:00

C:\WINDOWS\system32\pxdrv.dll |04/02/2005 00:01:00

C:\WINDOWS\system32\PxMas.dll |26/01/2005 13:35:08

C:\WINDOWS\system32\PxSFS.DLL |26/01/2005 13:39:04

C:\WINDOWS\system32\PxWave.dll |26/01/2005 13:34:40

C:\WINDOWS\system32\pxwma.dll |26/01/2005 13:36:48

C:\WINDOWS\system32\qedwipes.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\qt-dx331.dll |12/08/2005 22:57:09

C:\WINDOWS\system32\rmoc3260.dll |17/04/2006 14:03:57

C:\WINDOWS\system32\RTELM.dll |03/12/2005 02:27:46

C:\WINDOWS\system32\S32EVNT1.DLL |06/12/2006 00:12:17

C:\WINDOWS\system32\sbe.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\SHW32.DLL |18/03/2006 18:17:45

C:\WINDOWS\system32\slbcsp.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\slbiop.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\slbrccsp.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\SmartMenuXP.dll |14/10/2001 08:48:34

C:\WINDOWS\system32\SMMedia.dll |20/05/2005 01:59:09

C:\WINDOWS\system32\spnike.dll |23/08/2001 18:47:18

C:\WINDOWS\system32\sprio600.dll |23/08/2001 18:47:18

C:\WINDOWS\system32\sprio800.dll |23/08/2001 18:47:18

C:\WINDOWS\system32\spxcoins.dll |11/02/2007 04:06:07

C:\WINDOWS\system32\ssldivx.dll |28/09/2005 19:50:03

C:\WINDOWS\system32\SymNeti.dll |02/09/2006 20:35:16

C:\WINDOWS\system32\SymRedir.dll |02/09/2006 20:35:10

C:\WINDOWS\system32\tsd32.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\TTEMB32.DLL |20/02/1996 00:00:00

C:\WINDOWS\system32\UMLoader.dll |16/09/2004 00:00:00

C:\WINDOWS\system32\unrar.dll |04/12/2005 15:47:51

C:\WINDOWS\system32\usrcntra.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrcoina.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrdpa.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrdtea.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrfaxa.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrlbva.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrrtosa.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrsdpia.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrsvpia.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrv42a.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrv80a.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrvoica.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\usrvpa.dll |23/08/2001 18:47:20

C:\WINDOWS\system32\vbzip11.dll |27/01/2003 00:48:58

C:\WINDOWS\system32\virtear.dll |20/05/2005 01:59:07

C:\WINDOWS\system32\vorbis.dll |04/12/2005 15:47:50

C:\WINDOWS\system32\vorbisenc.dll |04/12/2005 15:47:50

C:\WINDOWS\system32\vp6vfw.dll |18/03/2006 18:17:46

C:\WINDOWS\system32\vsfilter.dll |04/12/2005 15:47:51

C:\WINDOWS\system32\VXBLOCK.dll |12/01/2005 00:00:00

C:\WINDOWS\system32\Vxdif.dll |20/05/2005 02:02:34

C:\WINDOWS\system32\W29MLRES.DLL |08/12/2006 23:38:18

C:\WINDOWS\system32\w29NCPA.dll |22/11/2004 11:41:10

C:\WINDOWS\system32\wdmioctl.dll |20/05/2005 01:59:09

C:\WINDOWS\system32\win87em.dll |05/08/2004 13:00:00

C:\WINDOWS\system32\WNASPI32.DLL |10/09/1999 12:06:00

C:\WINDOWS\system32\x264vfw.dll |25/02/2006 17:50:20

C:\WINDOWS\system32\xvid.dll |02/05/2002 09:31:35

C:\WINDOWS\system32\xvidcore.dll |27/02/2006 00:57:56

 

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est modifié3

 

Répertoire de C:\WINDOWS\system

 

10/09/1999 12:06 4 672 WOWPOST.EXE

1 fichier(s) 4 672 octets

0 Rép(s) 9 982 222 336 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est modifié3

 

Répertoire de C:\WINDOWS\system32

 

05/08/2004 13:00 6 144 csrss.exe

1 fichier(s) 6 144 octets

0 Rép(s) 9 982 222 336 octets libres

 

Contenu de Downloaded Program Files

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est modifié3

 

Répertoire de C:\WINDOWS\Downloaded Program Files

 

12/02/2007 15:07 <REP> .

12/02/2007 15:07 <REP> ..

11/02/2007 04:31 65 desktop.ini

25/07/2002 17:13 24 576 dwusplay.dll

25/07/2002 17:13 196 608 dwusplay.exe

17/01/2007 12:21 1 564 hardwaredetection.inf

09/08/2004 05:02 327 680 isusweb.dll

03/11/2005 20:24 495 LegitCheckControl.inf

29/05/2003 15:00 160 864 messengerstatsclient.dll

06/04/2004 19:03 172 072 MessengerStatsPAClient.dll

29/05/2003 15:00 84 064 minesweeper.dll

20/06/2006 15:44 379 704 MsnPUpld.dll

19/06/2006 14:40 393 MsnPUpld.inf

26/05/2005 04:19 293 muweb.inf

20/06/2006 15:44 117 560 PURen-us.dll

31/05/2002 09:20 117 328 purfr-fr.dll

09/11/2006 14:36 5 019 swflash.inf

26/05/2005 04:19 291 wuweb.inf

27/11/2006 16:03 151 080 ZIntro.ocx

17 fichier(s) 1 739 656 octets

 

Total des fichiers listés :

17 fichier(s) 1 739 656 octets

2 Rép(s) 9 982 222 336 octets libres

 

Recherche de rootkit! (Merci S!Ri)

infection possible Magic.Control : un scan F-Secure BlackLight est recommandé

 

Recherche d'infections connues

 

 

 

 

Liste des programmes installes

 

Ad-Aware SE Personal

Adobe Flash Player 9 ActiveX

Adobe Reader 7.0.9 - Français

Adobe Shockwave Player

Adobe® Photoshop® Album Edition Découverte 3.0

Agere Systems AC'97 Modem

AIDA32 v3.93

ALPS Touch Pad Driver

Anti-Pub 2003.03

Archiveur WinRAR

ArcSoft PhotoImpression 4

µTorrent 1.6 (Build 474)

AutoUpdate

avast! Antivirus

Broadcom 802.11 Wireless LAN Adapter

ccCommon

ccCommon

CCleaner (remove only)

Client Windows Rights Management avec Service Pack 2

Compaq Presario v4000 User Guides

CP_AtenaShokunin1Config

cp_dwSharkTaleAlbums1

cp_dwSharkTaleCards1

cp_dwShrek2Albums1

cp_dwShrek2Cards1

CP_PLSBusinessFlyers

CreativeProjects

CreativeProjectsTemplates

CueTour

Destinations

Director

DivX

DivX Player

DivX Web Player

Dragon NaturallySpeaking 8

eMule

eMusic - 100 Free MP3 offer

GdiplusUpgrade

Google Video Player

GUILD WARS

HardwareDetection

HijackThis 1.99.1

Hijackthis Version Française

HP Help and Support

HP Image Zone 4.8.5

HP Image Zone Plus 4.8.5

HP Pavillion dv4000 User Guides

HP Software Update

HP Wireless Assistant 1.01 A3

HPIZplus450

HpSdpAppCoreApp

InstantShare

Intel® Graphics Media Accelerator Driver for Mobile

InterVideo WinDVD

iTunes

iTunes

J2SE Runtime Environment 5.0 Update 2

J2SE Runtime Environment 5.0 Update 6

JkDefrag 3.6 Fr

K-Lite Codec Pack 2.70 Full

KaraFun 1.01b

Lecteur Windows Media 11

LS_HSI

Macromedia Shockwave Player

Media Player Classic fr

Messenger Plus! 3

Messenger Plus! Live

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 French Language Pack

Microsoft .NET Framework 1.1 Hotfix (KB886903)

Microsoft .NET Framework 2.0

Microsoft .NET Framework 2.0

Microsoft .NET Framework 2.0 Language Pack - FRA

Microsoft .NET Framework 3.0

Microsoft .NET Framework 3.0

Microsoft .NET Framework 3.0 French Language Pack

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft Internationalized Domain Names Mitigation APIs

Microsoft National Language Support Downlevel APIs

Microsoft Office XP - Autoformation Interactive

Microsoft Office XP Media Content

Microsoft Office XP Professional avec FrontPage

Microsoft Reader

Microsoft Works

Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)

Mise à jour de sécurité pour Windows XP (KB918118)

Mise à jour de sécurité pour Windows XP (KB924667)

Mise à jour de sécurité pour Windows XP (KB926436)

Mise à jour de sécurité pour Windows XP (KB927779)

Mise à jour de sécurité pour Windows XP (KB927802)

Mise à jour de sécurité pour Windows XP (KB928255)

Mise à jour de sécurité pour Windows XP (KB928843)

Mise à jour pour Windows XP (KB925720)

Mise à jour pour Windows XP (KB931836)

Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA

Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0

Mozilla Firefox (1.5.0.9)

MP3 Player Utilities

MSRedist

MSXML 4.0 SP2 (KB925672)

MSXML 4.0 SP2 (KB927978)

MSXML 6.0 Parser (KB927977)

MyDSC2

NeoDivx 2005

Norton AntiSpam

Norton Internet Security

Norton Internet Security

Norton Internet Security

Norton Internet Security

Norton Internet Security

Norton Internet Security

Norton Internet Security

Norton Internet Security

Norton WMI Update

Norton WMI Update

Nvu 1.0

Panoramide 1.2

PanoStandAlone

PhotoGallery

Picasa 2

Plus de 300 Applications pour Excel

Poker

PowerArchiver 2004 v9.20 French

Pro Evolution Soccer 6

Pro Evolution Soccer 6

QFolder

Quick Launch Buttons 5.10 A2

QuickTime

RealPlayer

REALTEK Gigabit and Fast Ethernet NIC Driver

Sandlot Games Client Services

Security Update for Microsoft .NET Framework 2.0 (KB917283)

Security Update pour Microsoft .NET Framework 2.0 (KB922770)

SkinsHP1

Sonic Audio Module

Sonic Copy Module

Sonic Data Module

Sonic Express Labeler

Sonic MyDVD Plus

Sonic Update Manager

SoundMAX

SP2 de compatibilité descendante du client Windows Rights Management

SymNet

SymNet

TeamSpeak 2 RC2

Total Commander (Remove or Repair)

TrayApp

Unload

UserGuides

VideoLAN VLC media player 0.8.4

VSAdd-in for Internet Explorer

WebFldrs XP

WebReg

Winamp (remove only)

Windows Communication Foundation

Windows Communication Foundation Language Pack - FRA

Windows Genuine Advantage Notifications (KB905474)

Windows Genuine Advantage v1.3.0254.0

Windows Genuine Advantage Validation Tool (KB892130)

Windows Internet Explorer 7

Windows Live Messenger

Windows Live Sign-in Assistant

Windows Media Format 11 runtime

Windows Media Format 11 runtime

Windows Media Player 11

Windows Presentation Foundation

Windows Presentation Foundation Language Pack (FRA)

Windows Workflow Foundation

Windows Workflow Foundation FR Language Pack

WinISO 5.3

XML Paper Specification Shared Components Language Pack 1.0

XML Paper Specification Shared Components Pack 1.0

Zeb-Utility 1.2

 

 

 

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est modifié3

 

Répertoire de C:\Program Files

 

16/02/2007 03:04 <REP> .

16/02/2007 03:04 <REP> ..

04/12/2005 19:31 <REP> Adobe

28/05/2006 13:45 <REP> Ahead

11/12/2006 21:24 <REP> AIDA32 - Enterprise System Information

10/01/2007 15:48 <REP> Alwil Software

20/05/2005 01:59 <REP> Analog Devices

24/12/2005 21:17 <REP> Anti-Blaxx

11/02/2007 08:31 <REP> Antipub

11/02/2007 08:31 <REP> Apoint2K

03/12/2005 00:14 <REP> ArcSoft

15/01/2007 11:48 <REP> CamStudio

11/12/2006 01:08 <REP> Capturino 1.4

10/10/2006 20:28 <REP> CCleaner

16/12/2006 00:57 <REP> ComPlus Applications

10/02/2007 20:00 <REP> CPQ

10/12/2006 04:50 <REP> DAEMON Tools

11/12/2006 00:22 <REP> DebugMode

03/12/2005 00:06 <REP> directx

06/04/2006 18:19 <REP> DivX

26/11/2006 19:55 <REP> EA SPORTS

13/09/2006 17:20 <REP> Easy Internet signup

13/02/2007 03:36 <REP> eMule

09/02/2007 15:48 <REP> Fichiers communs

05/06/2006 12:59 <REP> Formation interactive Microsoft

15/01/2007 11:06 <REP> Game Cam Lite v1.4

10/02/2007 17:12 <REP> GCC4243N_fw

01/02/2007 18:50 <REP> Google

01/03/2006 20:11 <REP> Grisoft

12/02/2007 01:42 <REP> GUILD WARS

11/02/2007 00:27 <REP> HardwareDetection

20/05/2005 02:26 <REP> Hewlett-Packard

16/02/2007 14:41 <REP> Hijackthis Version Française

24/11/2005 20:56 <REP> Hp

10/02/2007 20:39 <REP> HPQ

11/02/2007 01:20 <REP> Intel

14/02/2007 17:51 <REP> Internet Explorer

10/02/2007 20:12 <REP> InterVideo

05/12/2006 22:56 <REP> iPod

05/12/2006 22:56 <REP> iTunes

26/10/2006 02:10 <REP> Java

16/02/2007 14:28 <REP> JkDefrag

12/09/2006 23:57 <REP> KaraFun

12/02/2007 02:22 <REP> Kaspersky Lab

27/02/2006 07:12 <REP> K-Lite Codec Pack

12/02/2007 13:16 <REP> Kodak

28/11/2006 13:03 <REP> KONAMI

07/12/2006 21:35 <REP> Lavalys

11/02/2007 16:12 <REP> Lavasoft

10/10/2006 20:31 <REP> MailSkinner

29/11/2006 15:44 <REP> Media Player Classic

06/04/2006 18:19 <REP> Messenger

12/12/2006 08:53 <REP> Messenger Plus! Live

26/09/2006 02:09 <REP> MessengerPlus! 3

24/02/2006 21:32 <REP> Micro Application

20/05/2005 09:47 <REP> microsoft frontpage

27/12/2005 10:51 <REP> Microsoft Office

10/02/2007 14:30 <REP> Microsoft Reader

06/04/2006 18:19 <REP> Microsoft Works

20/05/2005 09:47 <REP> Movie Maker

13/02/2007 03:36 <REP> Mozilla Firefox

24/12/2005 21:19 <REP> Mozilla Thunderbird

12/05/2006 16:49 <REP> MP3 Player Utilities

01/02/2007 16:07 <REP> MSBuild

20/05/2005 09:47 <REP> MSN

20/05/2005 09:47 <REP> MSN Gaming Zone

12/12/2006 08:53 <REP> MSN Messenger

09/11/2006 17:48 <REP> MSXML 4.0

25/02/2006 17:54 <REP> neodivx

20/10/2006 20:01 <REP> NetMeeting

26/09/2006 23:44 <REP> Netscape

13/02/2007 03:36 <REP> Nvu

23/09/2006 01:19 <REP> Oberon Media

20/05/2005 09:47 <REP> Online Services

10/02/2007 14:30 <REP> Optimisation Windows

04/12/2005 15:51 <REP> OutilsTITAN

11/02/2007 15:31 <REP> Outlook Express

23/04/2006 23:16 <REP> Panoramide

11/12/2006 01:09 <REP> PFConfig

23/04/2006 23:17 <REP> Picasa2

13/02/2007 03:36 <REP> PowerArchiver

05/12/2006 22:57 <REP> QuickTime

17/04/2006 14:03 <REP> Real

01/02/2007 15:14 <REP> Reference Assemblies

05/06/2006 16:59 <REP> ScanSoft

16/12/2006 00:58 <REP> Services en ligne

20/05/2005 02:41 <REP> Sonic

27/01/2007 17:56 <REP> Spybot - Search & Destroy

18/03/2006 17:36 <REP> SuperCopier2

12/02/2007 15:09 <REP> Symantec

27/02/2006 06:34 <REP> TagRename

21/01/2006 03:37 <REP> Teamspeak2_RC2

25/03/2006 18:03 <REP> USB Super Link

12/11/2006 14:18 <REP> utorrent

04/12/2005 21:40 <REP> VideoLAN

16/02/2007 01:14 <REP> VSAdd-in

20/11/2006 20:47 <REP> Winamp

17/10/2006 06:27 <REP> Windows Live Toolbar

10/12/2006 03:29 <REP> Windows Media Connect 2

12/02/2007 00:50 <REP> Windows Media Player

20/05/2005 09:47 <REP> Windows NT

06/04/2006 18:19 <REP> WinISO

16/02/2007 01:15 <REP> WinRAR

20/05/2005 09:47 <REP> xerox

11/02/2007 19:16 <REP> Zeb-Utility

0 fichier(s) 0 octets

105 Rép(s) 9 981 698 048 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est modifié3

 

Répertoire de C:\Program Files\fichiers communs

 

09/02/2007 15:48 <REP> .

09/02/2007 15:48 <REP> ..

25/01/2007 12:21 <REP> Adobe

05/06/2006 12:48 <REP> Designer

05/02/2006 17:49 <REP> DirectX

24/11/2005 20:59 <REP> HP

20/05/2005 02:40 <REP> InstallShield

20/05/2005 02:03 <REP> Java

12/01/2007 20:05 <REP> Kaspersky Lab

12/02/2007 13:13 <REP> KODAK

09/02/2007 15:48 <REP> L&H

11/02/2007 08:32 <REP> LightScribe

09/02/2007 15:47 <REP> Microsoft Shared

20/05/2005 09:47 <REP> MSSoap

20/11/2006 20:46 <REP> NSV

05/06/2006 12:46 <REP> ODBC

17/04/2006 14:04 <REP> Real

13/09/2006 17:25 <REP> Sandlot Shared

05/06/2006 17:00 <REP> Scansoft Shared

26/05/2006 19:09 <REP> Services

26/02/2006 20:34 <REP> Softwin

20/05/2005 02:38 <REP> Sonic Shared

20/05/2005 09:47 <REP> SpeechEngines

20/05/2005 02:41 <REP> SureThing Shared

11/02/2007 13:39 <REP> Symantec Shared

11/02/2007 15:31 <REP> System

21/05/2006 18:56 <REP> TiVo Shared

17/04/2006 14:04 <REP> xing shared

0 fichier(s) 0 octets

28 Rép(s) 9 981 698 048 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est modifié3

 

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

 

10/12/2006 03:56 <REP> .

10/12/2006 03:56 <REP> ..

05/06/2006 12:48 <REP> 1033

10/12/2006 03:56 <REP> 1036

29/01/2004 15:08 1 277 952 MSONSEXT.DLL

13/02/2001 07:23 58 784 MSOSV.DLL

03/06/1999 06:09 122 937 MSOWS409.DLL

07/03/2001 01:00 127 033 MSOWS40c.DLL

06/08/2000 08:04 401 462 MSVCP60.DLL

29/01/2004 15:08 69 632 PKMAXCTL.DLL

29/01/2004 15:08 868 352 PKMCDO.DLL

29/01/2004 15:08 53 248 PKMCORE.DLL

29/01/2004 15:08 102 400 PKMFORMS.DLL

29/01/2004 15:38 634 880 PKMRES.DLL

29/01/2004 15:08 28 672 PKMSSTLB.DLL

22/01/2001 02:25 40 960 PKMTEMPL.DLL

29/01/2004 15:08 24 576 PKMTRACE.DLL

29/01/2004 15:08 86 016 PKMWS.DLL

29/01/2004 15:08 237 568 PROMDEMO.DLL

29/01/2004 15:08 184 320 SECMGR.DLL

29/01/2004 15:08 315 392 VAIDDMGR.DLL

29/01/2004 15:08 32 768 VAIMEM.DLL

18 fichier(s) 4 666 952 octets

4 Rép(s) 9 981 698 048 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est modifié3

 

Répertoire de C:\

 

11/11/2001 00:00 68 096 diff.exe

27/08/2006 14:10 103 424 grep.exe

24/05/2001 12:59 162 304 UNWISE.EXE

3 fichier(s) 333 824 octets

0 Rép(s) 9 981 698 048 octets libres

c:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage\AutoTBar.exe

c:\Documents and Settings\Administrateur.modifié2\.housecall6.6\getMac.exe

c:\Documents and Settings\Administrateur.modifié2\.housecall6.6\patch.exe

c:\Documents and Settings\Administrateur.modifié2\.housecall6.6\tsc.exe

c:\Documents and Settings\Administrateur.modifié2\Bureau\everesthome220.exe

c:\Documents and Settings\Administrateur.modifié2\Bureau\WGAPluginInstall.exe

c:\Documents and Settings\Administrateur.modifié2\Local Settings\Temp\eauninstall.exe

c:\Documents and Settings\Default User\Menu Démarrer\Programmes\Démarrage\AutoTBar.exe

c:\Documents and Settings\modifié\.housecall6.6\getMac.exe

c:\Documents and Settings\modifié\.housecall6.6\patch.exe

c:\Documents and Settings\modifié\.housecall6.6\tsc.exe

c:\Documents and Settings\modifié\Application Data\Adobe\Acrobat\7.0\Updater\AdbeRdr709_fr_FR.exe

c:\Documents and Settings\modifié\Bureau\Ad-Aware_SE_1.x_Personal_Plus_Pro_FR.exe

c:\Documents and Settings\modifié\Bureau\antivir_workstation_win7u_en_h.exe

c:\Documents and Settings\modifié\Bureau\TCPOptimizer.exe

c:\Documents and Settings\modifié\Bureau\Tcpview.exe

c:\Documents and Settings\modifié\Bureau\VundoFix.exe

c:\Documents and Settings\modifié\Bureau\win2k_xp14103.exe

c:\Documents and Settings\modifié\Bureau\ZebProtect.exe

c:\Documents and Settings\modifié\Bureau\DiagHelp\diff.exe

c:\Documents and Settings\modifié\Bureau\DiagHelp\FilesInfoCmd.exe

c:\Documents and Settings\modifié\Bureau\DiagHelp\Fport.exe

c:\Documents and Settings\modifié\Bureau\DiagHelp\grep.exe

c:\Documents and Settings\modifié\Bureau\DiagHelp\LFiles.exe

c:\Documents and Settings\modifié\Bureau\DiagHelp\LISTDLLS.exe

c:\Documents and Settings\modifié\Bureau\DiagHelp\pslist.exe

c:\Documents and Settings\modifié\Bureau\DiagHelp\streams.exe

c:\Documents and Settings\modifié\Bureau\DiagHelp\swreg.exe

c:\Documents and Settings\modifié\Bureau\Gildas\antipub.exe

c:\Documents and Settings\modifié\Bureau\Gildas\GWSETUP.EXE

c:\Documents and Settings\modifié\Bureau\Gildas\HijackThisFR.exe

c:\Documents and Settings\modifié\Bureau\Gildas\JkDefrag_3.6_Fr_full.exe

c:\Documents and Settings\modifié\Bureau\Gildas\setupfre.exe

c:\Documents and Settings\modifié\Mes documents\tiger woods 3 images\bin\CourseUtilities.exe

c:\Documents and Settings\modifié\Mes documents\video blagues\Preserv_hatif.exe

c:\Documents and Settings\modifié\Mes documents\wrar\wrar351fr.exe

c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll

c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll

c:\Documents and Settings\modifié\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll

 

Et encore merci

Modifié par Gildas Ar Breizh
Gildas Ar Breizh Member

Gildas Ar Breizh

Posté(e)
  • Auteur
Posté(e) (modifié)

Et ceci est-il normal:

capture012dq6.jpg

Merci de vos reponses

 

En effet je plante moins souvent sur programme

Mais pour se qui est des jeux et video online, la je plante en moins d'une minute

Modifié par Gildas Ar Breizh

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...