Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

ultimate fixer

Horatio733
 Partager

Messages recommandés

Horatio733 Member

Horatio733

Posté(e)
  • Auteur
Posté(e)

Voici les rapports demandés. J'ai suivi toutes les étapes à la lettre. Comme à chaque fois , un merci au passage pour le temps que tu consacres à mon problème!

 

Logfile of HijackThis v1.99.1

Scan saved at 14:23:51, on 2007-04-08

Platform: Windows XP SP1 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe

C:\Program Files\HP\hpcoretech\hpcmpmgr.exe

C:\Program Files\HPQ\SHARED\HPQWMI.exe

C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe

C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe

C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: NTIECatcher Class - {C56CB6B0-0D96-11D6-8C65-B2868B609932} - C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx

O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe

O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start

O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"

O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKLM\..\Run: [Ashampoo FireWall PRO] "C:\Program Files\Ashampoo\Ashampoo FireWall PRO\FireWall.exe" -TRAY

O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - Global Startup: Adobe Reader Speed Launch.lnk = ?

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html

O8 - Extra context menu item: Add selected links to Link Container - C:\PROGRA~1\GDATA~1\ANTIVI~1\WEBFIL~1\System\Scripts\off_collector_sel.htm

O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000

O8 - Extra context menu item: Show domain links - C:\PROGRA~1\GDATA~1\ANTIVI~1\WEBFIL~1\System\Scripts\off_domain_links.htm

O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\System32\shdocvw.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll

O16 - DPF: {01010E00-5E80-11D8-9E86-0007E96C65AE} - http://www.symantec.com/techsupp/asa/ctrl/tgctlsi.cab

O16 - DPF: {01012101-5E80-11D8-9E86-0007E96C65AE} - http://www.symantec.com/techsupp/asa/ctrl/tgctlsr.cab

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab

O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} - http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)

O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: HP WMI Interface (hpqwmi) - Hewlett Packard Company - C:\Program Files\HPQ\SHARED\HPQWMI.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe

 

 

AVG Anti-Spyware - Rapport d'analyse

---------------------------------------------------------

 

+ Créé à: 14:16:30 2007-04-08

 

+ Résultat de l'analyse:

 

 

 

C:\Documents and Settings\\Local Settings\Temporary Internet Files\Content.IE5ALL01PL\UltimateCleaner_Installer[1].exe -> Adware.Ultimate : Nettoyé.

C:\System Volume Information\_restore{7090118A-A095-4C23-8515-53245B5EE156}\RP4\A0001067.exe -> Adware.Ultimate : Nettoyé.

C:\System Volume Information\_restore{7090118A-A095-4C23-8515-53245B5EE156}\RP6\A0002574.exe -> Adware.Ultimate : Nettoyé.

C:\WINDOWS\system32\itwqojef\itwqojef1.exe -> Adware.Ultimate : Nettoyé.

C:\WINDOWS\system32\itwqojef\itwqojef2.exe -> Adware.Ultimate : Nettoyé.

C:\Documents and Settings\Cookies\[email protected][2].txt -> TrackingCookie.Gemius : Nettoyé.

C:\Documents and Settings\Cookies\[email protected][2].txt -> TrackingCookie.Paypal : Nettoyé.

C:\Documents and Settings\Cookies\[email protected][2].txt -> TrackingCookie.Webtrends : Nettoyé.

 

 

Fin du rapport

Lien vers le commentaire
Partager sur d’autres sites

Horatio733 Member

Horatio733

Posté(e)
  • Auteur
Posté(e)

Et le rapport Malekal.

Ultimate fixer semble avoir disparu en tout cas! Il me reste quelque chose à faire? :P

 

 

 

C:\WINDOWS\System32/drivers\ikhlayer.sys -->2006-11-26 13:43:06

C:\WINDOWS\System32/drivers\AvgAsCln.sys -->2006-09-05 18:03:16

C:\WINDOWS\System32/drivers\pxhelp20.sys -->2006-08-25 05:47:00

C:\WINDOWS\System32/drivers\ikhfile.sys -->2006-07-10 17:38:38

C:\WINDOWS\System32/drivers\HP_CPQ nx9020 (PG684ES AKD)_YN_U_QCNF441_E_4_I3084_SQuanta_V41.09_BF.10_T040818_WXH1_L409_M479_J40_7Intel_8Celeron M_91.4_1_N10EC8139_P104CAC50_Z808624C6_K_A808624C5_U808624C2_G80863582_OTOSHIBA ODD-DVD SD-R6252.MRK -->2006-06-18 10:03:01

C:\WINDOWS\System32/drivers\ASPI32.SYS -->2006-05-22 16:46:45

C:\WINDOWS\System32/drivers\cdralw2k.sys -->2006-05-19 23:16:24

 

C:\WINDOWS\System32\ikhcore.log -->2007-04-08 14:19:12

C:\WINDOWS\System32\tmp.txt -->2007-04-07 18:35:36

C:\WINDOWS\System32\tmp.reg -->2007-04-07 18:35:36

C:\WINDOWS\System32\nscompat.tlb -->2007-04-07 16:40:52

C:\WINDOWS\System32\amcompat.tlb -->2007-04-07 16:40:52

C:\WINDOWS\System32\asdjhweq.exe -->2007-04-07 16:24:37

C:\WINDOWS\System32\wpa.dbl -->2007-04-04 16:53:08

C:\WINDOWS\System32\hnrzfig.dll -->2007-04-01 11:51:53

C:\WINDOWS\System32\SpoonUninstall.exe -->2007-03-28 20:11:11

C:\WINDOWS\System32\SpoonUninstall-dBpowerAMP CD Writer.dat -->2007-03-28 20:11:11

C:\WINDOWS\System32\CDWriterXP.ocx -->2007-03-28 20:11:08

C:\WINDOWS\System32\SpoonUninstall-dBpowerAMP Music Converter.dat -->2007-03-28 20:11:00

C:\WINDOWS\System32\SpoonUninstall-dBpowerAMP Music Converter.bmp -->2007-03-28 20:10:47

C:\WINDOWS\System32\SpoonUninstall-dBpowerAMP CD Writer.bmp -->2007-03-28 20:10:37

C:\WINDOWS\System32\PerfStringBackup.TMP -->2007-03-26 15:24:16

C:\WINDOWS\System32\perfh009.dat -->2007-03-26 15:24:16

C:\WINDOWS\System32\perfc009.dat -->2007-03-26 15:24:16

C:\WINDOWS\System32\jupdate-1.5.0_11-b03.log -->2007-03-01 18:09:53

C:\WINDOWS\System32\sirenacm.dll -->2007-01-19 13:53:04

C:\WINDOWS\System32\jupdate-1.5.0_10-b03.log -->2007-01-01 15:03:08

C:\WINDOWS\System32\jupdate-1.5.0_09-b03.log -->2006-12-01 18:49:02

C:\WINDOWS\System32\swxcacls.exe -->2006-12-01 06:20:32

C:\WINDOWS\System32\javaws.exe -->2006-11-09 16:07:32

C:\WINDOWS\System32\jpicpl32.cpl -->2006-11-09 16:07:28

C:\WINDOWS\System32\javaw.exe -->2006-11-09 14:28:30

 

C:\WINDOWS\wmsetup.log -->2007-04-08 14:21:02

C:\WINDOWS.log -->2007-04-08 14:20:51

C:\WINDOWS\wiadebug.log -->2007-04-08 14:20:48

C:\WINDOWS\wiaservc.log -->2007-04-08 14:20:47

C:\WINDOWS\bootstat.dat -->2007-04-08 14:19:19

C:\WINDOWS\ntbtlog.txt -->2007-04-08 14:17:53

C:\WINDOWS\SchedLgU.Txt -->2007-04-08 11:22:10

C:\WINDOWS\ModemLog_SoftV92 Data Fax Modem with SmartCP.txt -->2007-04-07 22:43:01

C:\WINDOWS\setupapi.log -->2007-04-07 22:04:30

C:\WINDOWS\WMSysPr9.prx -->2007-04-07 16:44:41

C:\WINDOWS\wmsetup10.log -->2007-04-04 16:55:38

C:\WINDOWS\win.ini -->2007-04-04 16:36:08

C:\WINDOWS\system.ini -->2007-04-04 16:36:08

C:\WINDOWS\QTFont.qfn -->2007-04-02 21:05:20

C:\WINDOWS\Sti_Trace.log -->2007-04-02 15:29:00

 

C:\WINDOWS\ciaunwdm.exe |18/06/2006 09:43:35

C:\WINDOWS\dla.exe |15/01/2005 23:58:07

C:\WINDOWS\IsUn040c.exe |28/03/2005 20:16:30

C:\WINDOWS\IsUninst.exe |03/05/2005 13:44:38

C:\WINDOWS\slrundll.exe |04/08/2004 09:56:56

C:\WINDOWS\twunk_16.exe |31/03/2003 21:00:00

C:\WINDOWS\twunk_32.exe |31/03/2003 21:00:00

C:\WINDOWS\unin040c.exe |01/10/2006 21:37:50

C:\WINDOWS\uninst.exe |09/10/2006 21:47:45

C:\WINDOWS\libeay32.dll |17/06/2006 13:40:44

C:\WINDOWS\ssleay32.dll |17/06/2006 13:40:44

C:\WINDOWS\twain.dll |31/03/2003 21:00:00

C:\WINDOWS\twain_32.dll |31/03/2003 21:00:00

C:\WINDOWS\WRUninstall.dll |17/06/2006 13:40:44

C:\WINDOWS\system32\append.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\asdjhweq.exe |01/04/2007 11:51:52

C:\WINDOWS\system32\BCMWLD2K.EXE |15/01/2005 22:12:30

C:\WINDOWS\system32\BCMWLU00.EXE |15/01/2005 22:12:30

C:\WINDOWS\system32\debug.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\dosx.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\dumphive.exe |11/01/2007 19:42:26

C:\WINDOWS\system32\dvdplay.exe |18/08/2001 00:36:42

C:\WINDOWS\system32\edlin.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\exe2bin.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\fastopen.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\hkcmd.exe |18/06/2006 09:45:36

C:\WINDOWS\system32\igfxcfg.exe |18/06/2006 09:45:41

C:\WINDOWS\system32\igfxdiag.exe |18/06/2006 09:45:42

C:\WINDOWS\system32\igfxext.exe |18/06/2006 09:45:43

C:\WINDOWS\system32\igfxtray.exe |18/06/2006 09:45:48

C:\WINDOWS\system32\ipdetect.exe |16/07/2005 20:13:55

C:\WINDOWS\system32\java.exe |09/11/2006 14:28:20

C:\WINDOWS\system32\javaw.exe |09/11/2006 14:28:30

C:\WINDOWS\system32\javaws.exe |09/11/2006 16:07:32

C:\WINDOWS\system32\mem.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\mscdexnt.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\NCTAudioConvert.exe |21/05/2005 16:26:27

C:\WINDOWS\system32\nlsfunc.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\Process.exe |02/04/2007 15:25:07

C:\WINDOWS\system32\pxcpya64.exe |23/06/2006 18:40:42

C:\WINDOWS\system32\pxhpinst.exe |23/06/2006 18:40:42

C:\WINDOWS\system32\pxinsa64.exe |23/06/2006 18:40:42

C:\WINDOWS\system32\pxinsi64.exe |20/11/2006 22:55:03

C:\WINDOWS\system32\QlbServr.exe |15/01/2005 22:21:26

C:\WINDOWS\system32\redir.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\setver.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\share.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\slrundll.exe |04/08/2004 09:56:56

C:\WINDOWS\system32\slserv.exe |04/08/2004 09:56:56

C:\WINDOWS\system32\SpoonUninstall.exe |19/02/2006 11:07:53

C:\WINDOWS\system32\SrchSTS.exe |11/01/2007 19:42:26

C:\WINDOWS\system32\swreg.exe |11/01/2007 19:42:26

C:\WINDOWS\system32\swsc.exe |11/01/2007 19:42:26

C:\WINDOWS\system32\swxcacls.exe |11/01/2007 19:42:26

C:\WINDOWS\system32\Synsopos.exe |19/02/2005 18:19:49

C:\WINDOWS\system32\unaddrv.exe |16/07/2005 20:13:46

C:\WINDOWS\system32\uninstall.exe |17/07/2005 22:56:00

C:\WINDOWS\system32\usrmlnka.exe |18/08/2001 00:37:00

C:\WINDOWS\system32\usrprbda.exe |18/08/2001 00:37:00

C:\WINDOWS\system32\usrshuta.exe |18/08/2001 00:37:00

C:\WINDOWS\system32\adadix16.dll |16/07/2005 20:13:46

C:\WINDOWS\system32\adadix2k.dll |16/07/2005 20:13:46

C:\WINDOWS\system32\adadix32.dll |16/07/2005 20:13:55

C:\WINDOWS\system32\amshellext.dll |19/02/2006 11:16:03

C:\WINDOWS\system32\amstream.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\ati2cqag.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ati2dvaa.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ati2dvag.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ati3d1ag.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ati3duag.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ativtmxx.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ativvaxx.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\atmfd.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\atmlib.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\CAUDINST.dll |15/01/2005 22:09:40

C:\WINDOWS\system32\CDDBControl.dll |21/05/2005 16:26:31

C:\WINDOWS\system32\coclassfast.dll |16/07/2005 20:13:49

C:\WINDOWS\system32\compatUI.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\devenum.dll |30/05/2003 10:00:02

C:\WINDOWS\system32\dgrpsetu.dll |15/01/2005 22:50:52

C:\WINDOWS\system32\dgsetup.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\DGVorbis.dll |21/05/2005 16:26:28

C:\WINDOWS\system32\DivX.dll |11/11/2003 17:25:08

C:\WINDOWS\system32\DivXc32.dll |21/05/2005 16:26:31

C:\WINDOWS\system32\DivXc32f.dll |21/05/2005 16:26:31

C:\WINDOWS\system32\dxmasf.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\eabcoins.dll |15/01/2005 22:21:26

C:\WINDOWS\system32\encdec.dll |26/11/2002 14:15:52

C:\WINDOWS\system32\EqnClass.Dll |15/01/2005 22:50:51

C:\WINDOWS\system32\fmod.dll |05/11/2005 18:36:18

C:\WINDOWS\system32\GEARAspi.dll |31/05/2005 11:20:36

C:\WINDOWS\system32\hccutils.dll |18/06/2006 09:45:36

C:\WINDOWS\system32\hnrzfig.dll |01/04/2007 11:51:53

C:\WINDOWS\system32\hpzcoi10.dll |04/03/2004 16:04:54

C:\WINDOWS\system32\hpzcon10.dll |04/03/2004 16:05:56

C:\WINDOWS\system32\hpzlnt10.dll |04/03/2004 16:13:46

C:\WINDOWS\system32\HSFCI009.dll |03/11/2005 17:06:43

C:\WINDOWS\system32\hsfcisp2.dll |04/08/2004 09:56:42

C:\WINDOWS\system32\hticons.dll |15/01/2005 21:57:44

C:\WINDOWS\system32\hypertrm.dll |17/06/2006 14:58:33

C:\WINDOWS\system32\iAlmCoIn_v3712.dll |15/01/2005 22:11:25

C:\WINDOWS\system32\ialmdd5.dll |15/01/2005 22:11:26

C:\WINDOWS\system32\ialmdev5.dll |15/01/2005 22:11:26

C:\WINDOWS\system32\ialmdnt5.dll |15/01/2005 22:11:26

C:\WINDOWS\system32\ialmgdev.dll |18/06/2006 09:45:38

C:\WINDOWS\system32\ialmgicd.dll |18/06/2006 09:45:38

C:\WINDOWS\system32\ialmrem.dll |18/06/2006 09:45:40

C:\WINDOWS\system32\ialmrnt5.dll |15/01/2005 22:11:26

C:\WINDOWS\system32\iccvid.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\id3v23x.dll |05/11/2005 18:36:18

C:\WINDOWS\system32\ieencode.dll |04/08/2004 09:56:42

C:\WINDOWS\system32\igfxdev.dll |18/06/2006 09:45:42

C:\WINDOWS\system32\igfxdgps.dll |18/06/2006 09:45:42

C:\WINDOWS\system32\igfxdo.dll |18/06/2006 09:45:43

C:\WINDOWS\system32\igfxeud.dll |18/06/2006 09:45:43

C:\WINDOWS\system32\igfxexps.dll |18/06/2006 09:45:43

C:\WINDOWS\system32\igfxhk.dll |18/06/2006 09:45:44

C:\WINDOWS\system32\igfxpph.dll |18/06/2006 09:45:44

C:\WINDOWS\system32\igfxres.dll |18/06/2006 10:09:10

C:\WINDOWS\system32\igfxress.dll |18/06/2006 09:45:44

C:\WINDOWS\system32\igfxsrvc.dll |18/06/2006 09:45:47

C:\WINDOWS\system32\ir32_32.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\ir41_qc.dll |04/08/2004 09:56:42

C:\WINDOWS\system32\ir41_qcx.dll |04/08/2004 09:56:42

C:\WINDOWS\system32\ir50_32.dll |04/08/2004 09:56:42

C:\WINDOWS\system32\isrdbg32.dll |17/06/2006 15:01:59

C:\WINDOWS\system32\Iticheck.dll |11/10/1998 02:07:38

C:\WINDOWS\system32\itidat.dll |22/05/1999 00:37:16

C:\WINDOWS\system32\itidib.dll |22/05/1999 00:37:28

C:\WINDOWS\system32\itiimg2.dll |15/07/1998 23:40:50

C:\WINDOWS\system32\IVIresize.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\IVIresizeA6.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\IVIresizeM6.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\IVIresizeP6.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\IVIresizePX.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\IVIresizeW7.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\jgaw400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\jgdw400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\jgmd400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\jgpl400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\jgsd400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\jgsh400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\lame_enc.dll |21/05/2005 16:26:31

C:\WINDOWS\system32\LIBBZ2.DLL |11/08/1999 16:28:02

C:\WINDOWS\system32\mciqtz32.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\mdmxsdk.dll |18/06/2006 09:44:08

C:\WINDOWS\system32\mdwmdmsp.dll |18/08/2001 00:36:20

C:\WINDOWS\system32\MP3EncX.dll |05/11/2005 18:36:24

C:\WINDOWS\system32\msdmo.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\msdxmlc.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\msencode.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\mtxparhd.dll |04/08/2004 09:56:44

C:\WINDOWS\system32\NCTAudioFile.dll |21/05/2005 16:26:27

C:\WINDOWS\system32\NCTAudioInformation.dll |21/05/2005 16:26:27

C:\WINDOWS\system32\NCTWMAFile.dll |21/05/2005 16:26:28

C:\WINDOWS\system32\nv4_disp.dll |04/08/2004 09:56:44

C:\WINDOWS\system32\oemdspif.dll |18/06/2006 09:45:48

C:\WINDOWS\system32\paqsp.dll |18/08/2001 00:36:28

C:\WINDOWS\system32\PCDLIB32.DLL |08/12/1998 19:53:58

C:\WINDOWS\system32\pncrt.dll |09/07/2005 10:31:42

C:\WINDOWS\system32\pndx5016.dll |09/07/2005 10:31:45

C:\WINDOWS\system32\pndx5032.dll |09/07/2005 10:31:45

C:\WINDOWS\system32\psisdecd.dll |15/01/2005 22:13:22

C:\WINDOWS\system32\px.dll |28/07/2003 02:02:00

C:\WINDOWS\system32\pxafs.dll |20/11/2006 22:55:02

C:\WINDOWS\system32\pxdrv.dll |17/12/2003 02:00:00

C:\WINDOWS\system32\pxmas.dll |28/07/2003 02:02:00

C:\WINDOWS\system32\pxsfs.dll |23/06/2006 18:40:41

C:\WINDOWS\system32\pxwave.dll |28/07/2003 02:02:00

C:\WINDOWS\system32\pxwma.dll |28/07/2003 02:02:00

C:\WINDOWS\system32\qcap.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\qdv.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\qdvd.dll |30/05/2003 10:00:02

C:\WINDOWS\system32\qedit.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\qedwipes.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\quartz.dll |30/05/2003 10:00:02

C:\WINDOWS\system32\rmoc3260.dll |09/07/2005 10:31:57

C:\WINDOWS\system32\s3gnb.dll |04/08/2004 09:56:44

C:\WINDOWS\system32\sbe.dll |26/11/2002 14:15:50

C:\WINDOWS\system32\SkyLt3Pr.dll |21/05/2005 16:26:27

C:\WINDOWS\system32\slbcsp.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\slbiop.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\slbrccsp.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\slcoinst.dll |04/08/2004 09:56:45

C:\WINDOWS\system32\slextspk.dll |04/08/2004 09:56:45

C:\WINDOWS\system32\slgen.dll |04/08/2004 09:56:45

C:\WINDOWS\system32\spnike.dll |18/08/2001 00:36:32

C:\WINDOWS\system32\sprio600.dll |18/08/2001 00:36:32

C:\WINDOWS\system32\sprio800.dll |18/08/2001 00:36:32

C:\WINDOWS\system32\spxcoins.dll |17/06/2006 20:11:19

C:\WINDOWS\system32\SynCOM.dll |15/01/2005 22:11:02

C:\WINDOWS\system32\SynCtrl.dll |15/01/2005 22:11:02

C:\WINDOWS\system32\SYNSOACC.dll |19/02/2005 18:19:47

C:\WINDOWS\system32\SynsoLChk.dll |19/02/2005 18:19:47

C:\WINDOWS\system32\SynTPAPI.dll |15/01/2005 22:11:02

C:\WINDOWS\system32\SynTPCoI.dll |15/01/2005 22:11:03

C:\WINDOWS\system32\SynTPFcs.dll |15/01/2005 22:11:04

C:\WINDOWS\system32\tfswapi.dll |15/01/2005 23:58:07

C:\WINDOWS\system32\tsd32.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\TWAIN32d.dll |14/09/1998 21:43:16

C:\WINDOWS\system32\umloader.dll |19/08/2003 02:01:00

C:\WINDOWS\system32\UNACE.DLL |28/01/1998 01:06:04

C:\WINDOWS\system32\UNRAR.DLL |23/10/1999 19:29:44

C:\WINDOWS\system32\UNZDLL.DLL |29/03/2000 23:00:00

C:\WINDOWS\system32\usrcntra.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrcoina.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrdpa.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrdtea.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrfaxa.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrlbva.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrrtosa.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrsdpia.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrsvpia.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrv42a.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrv80a.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrvoica.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrvpa.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\VorbisEncX.dll |05/11/2005 18:36:21

C:\WINDOWS\system32\VXBLOCK.dll |17/02/2004 02:00:00

C:\WINDOWS\system32\vxdmdcdlg.dll |13/03/2003 16:10:24

C:\WINDOWS\system32\win87em.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\WMAEncX.dll |05/11/2005 18:36:21

C:\WINDOWS\system32\WooDial2000.dll |19/01/2005 12:17:35

C:\WINDOWS\system32\ZIPDLL.DLL |21/05/1999 22:10:00

 

Volume in drive C has no label.

Volume Serial Number is 5831-D524

 

Directory of C:\WINDOWS\system32

 

2003-03-31 21:00 4 096 csrss.exe

1 File(s) 4 096 bytes

0 Dir(s) 1 474 707 456 bytes free

 

Contenu de Downloaded Program Files

Volume in drive C has no label.

Volume Serial Number is 5831-D524

 

Directory of C:\WINDOWS\Downloaded Program Files

 

2007-04-07 22:04 <DIR> .

2007-04-07 22:04 <DIR> ..

2006-06-17 20:40 65 desktop.ini

2006-05-15 18:48 367 LegitCheckControl.inf

2004-10-27 14:10 111 752 LSSupCtl.dll

2004-10-27 14:03 302 LSSupCtl.inf

2000-01-20 15:25 1 162 Microsoft XML Parser for Java.osd

2002-06-03 17:53 144 QTPlugin.inf

2001-09-21 16:28 16 202 sdclicense.txt

2005-11-14 13:40 161 384 SymAData.dll

2005-06-17 01:25 1 069 056 tgctlsi.dll

2005-06-17 00:41 667 tgctlsi.inf

2005-06-17 01:25 413 696 tgctlsr.dll

2005-06-17 00:41 521 tgctlsr.inf

2003-06-30 22:41 1 689 WMV9VCM.inf

13 File(s) 1 777 007 bytes

 

Total Files Listed:

13 File(s) 1 777 007 bytes

2 Dir(s) 1 474 707 456 bytes free

 

Recherche de rootkit! (Merci S!Ri)

 

Recherche d'infections connues

Lien vers le commentaire
Partager sur d’autres sites
Malekal_morte Godlike Member

Malekal_morte

Posté(e)
Posté(e)

C'est pas bon pour DiagHelp, le rapport n'est pas entier.

Il faut appuyer sur une touche après le scan catchme, c'est écrit en gros "ATTENTION patati patata".

 

Recommence stp et colle et fais le scan en entier, c'est important pour la désinfection ! :P

Lien vers le commentaire
Partager sur d’autres sites
Horatio733 Member

Horatio733

Posté(e)
  • Auteur
Posté(e)

Oups, sorry, voilà le rapport. Remarque: j'ai même pas dû appuyer à l'endroit dont tu parles, il a continué tout seul :P

 

Voici le rapport en tout cas.

 

Merci à toi aussi :P

 

C:\WINDOWS\System32/drivers\ikhlayer.sys -->2006-11-26 13:43:06

C:\WINDOWS\System32/drivers\AvgAsCln.sys -->2006-09-05 18:03:16

C:\WINDOWS\System32/drivers\pxhelp20.sys -->2006-08-25 05:47:00

C:\WINDOWS\System32/drivers\ikhfile.sys -->2006-07-10 17:38:38

C:\WINDOWS\System32/drivers\HP_CPQ nx9020 (PG684ES AKD)_YN_U_QCNF441_E_4_I3084_SQuanta_V41.09_BF.10_T040818_WXH1_L409_M479_J40_7Intel_8Celeron M_91.4_1_N10EC8139_P104CAC50_Z808624C6_K_A808624C5_U808624C2_G80863582_OTOSHIBA ODD-DVD SD-R6252.MRK -->2006-06-18 10:03:01

C:\WINDOWS\System32/drivers\ASPI32.SYS -->2006-05-22 16:46:45

C:\WINDOWS\System32/drivers\cdralw2k.sys -->2006-05-19 23:16:24

 

C:\WINDOWS\System32\ikhcore.log -->2007-04-08 14:38:55

C:\WINDOWS\System32\tmp.txt -->2007-04-07 18:35:36

C:\WINDOWS\System32\tmp.reg -->2007-04-07 18:35:36

C:\WINDOWS\System32\nscompat.tlb -->2007-04-07 16:40:52

C:\WINDOWS\System32\amcompat.tlb -->2007-04-07 16:40:52

C:\WINDOWS\System32\asdjhweq.exe -->2007-04-07 16:24:37

C:\WINDOWS\System32\wpa.dbl -->2007-04-04 16:53:08

C:\WINDOWS\System32\hnrzfig.dll -->2007-04-01 11:51:53

C:\WINDOWS\System32\SpoonUninstall.exe -->2007-03-28 20:11:11

C:\WINDOWS\System32\SpoonUninstall-dBpowerAMP CD Writer.dat -->2007-03-28 20:11:11

C:\WINDOWS\System32\CDWriterXP.ocx -->2007-03-28 20:11:08

C:\WINDOWS\System32\SpoonUninstall-dBpowerAMP Music Converter.dat -->2007-03-28 20:11:00

C:\WINDOWS\System32\SpoonUninstall-dBpowerAMP Music Converter.bmp -->2007-03-28 20:10:47

C:\WINDOWS\System32\SpoonUninstall-dBpowerAMP CD Writer.bmp -->2007-03-28 20:10:37

C:\WINDOWS\System32\PerfStringBackup.TMP -->2007-03-26 15:24:16

C:\WINDOWS\System32\perfh009.dat -->2007-03-26 15:24:16

C:\WINDOWS\System32\perfc009.dat -->2007-03-26 15:24:16

C:\WINDOWS\System32\jupdate-1.5.0_11-b03.log -->2007-03-01 18:09:53

C:\WINDOWS\System32\sirenacm.dll -->2007-01-19 13:53:04

C:\WINDOWS\System32\jupdate-1.5.0_10-b03.log -->2007-01-01 15:03:08

C:\WINDOWS\System32\jupdate-1.5.0_09-b03.log -->2006-12-01 18:49:02

C:\WINDOWS\System32\swxcacls.exe -->2006-12-01 06:20:32

C:\WINDOWS\System32\javaws.exe -->2006-11-09 16:07:32

C:\WINDOWS\System32\jpicpl32.cpl -->2006-11-09 16:07:28

C:\WINDOWS\System32\javaw.exe -->2006-11-09 14:28:30

 

C:\WINDOWS\wmsetup.log -->2007-04-08 17:10:14

C:\WINDOWS.log -->2007-04-08 14:40:36

C:\WINDOWS\wiadebug.log -->2007-04-08 14:40:33

C:\WINDOWS\wiaservc.log -->2007-04-08 14:40:32

C:\WINDOWS\bootstat.dat -->2007-04-08 14:39:03

C:\WINDOWS\SchedLgU.Txt -->2007-04-08 14:38:30

C:\WINDOWS\ntbtlog.txt -->2007-04-08 14:17:53

C:\WINDOWS\ModemLog_SoftV92 Data Fax Modem with SmartCP.txt -->2007-04-07 22:43:01

C:\WINDOWS\setupapi.log -->2007-04-07 22:04:30

C:\WINDOWS\WMSysPr9.prx -->2007-04-07 16:44:41

C:\WINDOWS\wmsetup10.log -->2007-04-04 16:55:38

C:\WINDOWS\win.ini -->2007-04-04 16:36:08

C:\WINDOWS\system.ini -->2007-04-04 16:36:08

C:\WINDOWS\QTFont.qfn -->2007-04-02 21:05:20

C:\WINDOWS\Sti_Trace.log -->2007-04-02 15:29:00

 

C:\WINDOWS\ciaunwdm.exe |18/06/2006 09:43:35

C:\WINDOWS\dla.exe |15/01/2005 23:58:07

C:\WINDOWS\IsUn040c.exe |28/03/2005 20:16:30

C:\WINDOWS\IsUninst.exe |03/05/2005 13:44:38

C:\WINDOWS\slrundll.exe |04/08/2004 09:56:56

C:\WINDOWS\twunk_16.exe |31/03/2003 21:00:00

C:\WINDOWS\twunk_32.exe |31/03/2003 21:00:00

C:\WINDOWS\unin040c.exe |01/10/2006 21:37:50

C:\WINDOWS\uninst.exe |09/10/2006 21:47:45

C:\WINDOWS\libeay32.dll |17/06/2006 13:40:44

C:\WINDOWS\ssleay32.dll |17/06/2006 13:40:44

C:\WINDOWS\twain.dll |31/03/2003 21:00:00

C:\WINDOWS\twain_32.dll |31/03/2003 21:00:00

C:\WINDOWS\WRUninstall.dll |17/06/2006 13:40:44

C:\WINDOWS\system32\append.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\asdjhweq.exe |01/04/2007 11:51:52

C:\WINDOWS\system32\BCMWLD2K.EXE |15/01/2005 22:12:30

C:\WINDOWS\system32\BCMWLU00.EXE |15/01/2005 22:12:30

C:\WINDOWS\system32\debug.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\dosx.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\dumphive.exe |11/01/2007 19:42:26

C:\WINDOWS\system32\dvdplay.exe |18/08/2001 00:36:42

C:\WINDOWS\system32\edlin.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\exe2bin.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\fastopen.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\hkcmd.exe |18/06/2006 09:45:36

C:\WINDOWS\system32\igfxcfg.exe |18/06/2006 09:45:41

C:\WINDOWS\system32\igfxdiag.exe |18/06/2006 09:45:42

C:\WINDOWS\system32\igfxext.exe |18/06/2006 09:45:43

C:\WINDOWS\system32\igfxtray.exe |18/06/2006 09:45:48

C:\WINDOWS\system32\ipdetect.exe |16/07/2005 20:13:55

C:\WINDOWS\system32\java.exe |09/11/2006 14:28:20

C:\WINDOWS\system32\javaw.exe |09/11/2006 14:28:30

C:\WINDOWS\system32\javaws.exe |09/11/2006 16:07:32

C:\WINDOWS\system32\mem.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\mscdexnt.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\NCTAudioConvert.exe |21/05/2005 16:26:27

C:\WINDOWS\system32\nlsfunc.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\Process.exe |02/04/2007 15:25:07

C:\WINDOWS\system32\pxcpya64.exe |23/06/2006 18:40:42

C:\WINDOWS\system32\pxhpinst.exe |23/06/2006 18:40:42

C:\WINDOWS\system32\pxinsa64.exe |23/06/2006 18:40:42

C:\WINDOWS\system32\pxinsi64.exe |20/11/2006 22:55:03

C:\WINDOWS\system32\QlbServr.exe |15/01/2005 22:21:26

C:\WINDOWS\system32\redir.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\setver.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\share.exe |31/03/2003 21:00:00

C:\WINDOWS\system32\slrundll.exe |04/08/2004 09:56:56

C:\WINDOWS\system32\slserv.exe |04/08/2004 09:56:56

C:\WINDOWS\system32\SpoonUninstall.exe |19/02/2006 11:07:53

C:\WINDOWS\system32\SrchSTS.exe |11/01/2007 19:42:26

C:\WINDOWS\system32\swreg.exe |11/01/2007 19:42:26

C:\WINDOWS\system32\swsc.exe |11/01/2007 19:42:26

C:\WINDOWS\system32\swxcacls.exe |11/01/2007 19:42:26

C:\WINDOWS\system32\Synsopos.exe |19/02/2005 18:19:49

C:\WINDOWS\system32\unaddrv.exe |16/07/2005 20:13:46

C:\WINDOWS\system32\uninstall.exe |17/07/2005 22:56:00

C:\WINDOWS\system32\usrmlnka.exe |18/08/2001 00:37:00

C:\WINDOWS\system32\usrprbda.exe |18/08/2001 00:37:00

C:\WINDOWS\system32\usrshuta.exe |18/08/2001 00:37:00

C:\WINDOWS\system32\adadix16.dll |16/07/2005 20:13:46

C:\WINDOWS\system32\adadix2k.dll |16/07/2005 20:13:46

C:\WINDOWS\system32\adadix32.dll |16/07/2005 20:13:55

C:\WINDOWS\system32\amshellext.dll |19/02/2006 11:16:03

C:\WINDOWS\system32\amstream.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\ati2cqag.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ati2dvaa.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ati2dvag.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ati3d1ag.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ati3duag.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ativtmxx.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\ativvaxx.dll |04/08/2004 09:56:41

C:\WINDOWS\system32\atmfd.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\atmlib.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\CAUDINST.dll |15/01/2005 22:09:40

C:\WINDOWS\system32\CDDBControl.dll |21/05/2005 16:26:31

C:\WINDOWS\system32\coclassfast.dll |16/07/2005 20:13:49

C:\WINDOWS\system32\compatUI.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\devenum.dll |30/05/2003 10:00:02

C:\WINDOWS\system32\dgrpsetu.dll |15/01/2005 22:50:52

C:\WINDOWS\system32\dgsetup.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\DGVorbis.dll |21/05/2005 16:26:28

C:\WINDOWS\system32\DivX.dll |11/11/2003 17:25:08

C:\WINDOWS\system32\DivXc32.dll |21/05/2005 16:26:31

C:\WINDOWS\system32\DivXc32f.dll |21/05/2005 16:26:31

C:\WINDOWS\system32\dxmasf.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\eabcoins.dll |15/01/2005 22:21:26

C:\WINDOWS\system32\encdec.dll |26/11/2002 14:15:52

C:\WINDOWS\system32\EqnClass.Dll |15/01/2005 22:50:51

C:\WINDOWS\system32\fmod.dll |05/11/2005 18:36:18

C:\WINDOWS\system32\GEARAspi.dll |31/05/2005 11:20:36

C:\WINDOWS\system32\hccutils.dll |18/06/2006 09:45:36

C:\WINDOWS\system32\hnrzfig.dll |01/04/2007 11:51:53

C:\WINDOWS\system32\hpzcoi10.dll |04/03/2004 16:04:54

C:\WINDOWS\system32\hpzcon10.dll |04/03/2004 16:05:56

C:\WINDOWS\system32\hpzlnt10.dll |04/03/2004 16:13:46

C:\WINDOWS\system32\HSFCI009.dll |03/11/2005 17:06:43

C:\WINDOWS\system32\hsfcisp2.dll |04/08/2004 09:56:42

C:\WINDOWS\system32\hticons.dll |15/01/2005 21:57:44

C:\WINDOWS\system32\hypertrm.dll |17/06/2006 14:58:33

C:\WINDOWS\system32\iAlmCoIn_v3712.dll |15/01/2005 22:11:25

C:\WINDOWS\system32\ialmdd5.dll |15/01/2005 22:11:26

C:\WINDOWS\system32\ialmdev5.dll |15/01/2005 22:11:26

C:\WINDOWS\system32\ialmdnt5.dll |15/01/2005 22:11:26

C:\WINDOWS\system32\ialmgdev.dll |18/06/2006 09:45:38

C:\WINDOWS\system32\ialmgicd.dll |18/06/2006 09:45:38

C:\WINDOWS\system32\ialmrem.dll |18/06/2006 09:45:40

C:\WINDOWS\system32\ialmrnt5.dll |15/01/2005 22:11:26

C:\WINDOWS\system32\iccvid.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\id3v23x.dll |05/11/2005 18:36:18

C:\WINDOWS\system32\ieencode.dll |04/08/2004 09:56:42

C:\WINDOWS\system32\igfxdev.dll |18/06/2006 09:45:42

C:\WINDOWS\system32\igfxdgps.dll |18/06/2006 09:45:42

C:\WINDOWS\system32\igfxdo.dll |18/06/2006 09:45:43

C:\WINDOWS\system32\igfxeud.dll |18/06/2006 09:45:43

C:\WINDOWS\system32\igfxexps.dll |18/06/2006 09:45:43

C:\WINDOWS\system32\igfxhk.dll |18/06/2006 09:45:44

C:\WINDOWS\system32\igfxpph.dll |18/06/2006 09:45:44

C:\WINDOWS\system32\igfxres.dll |18/06/2006 10:09:10

C:\WINDOWS\system32\igfxress.dll |18/06/2006 09:45:44

C:\WINDOWS\system32\igfxsrvc.dll |18/06/2006 09:45:47

C:\WINDOWS\system32\ir32_32.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\ir41_qc.dll |04/08/2004 09:56:42

C:\WINDOWS\system32\ir41_qcx.dll |04/08/2004 09:56:42

C:\WINDOWS\system32\ir50_32.dll |04/08/2004 09:56:42

C:\WINDOWS\system32\isrdbg32.dll |17/06/2006 15:01:59

C:\WINDOWS\system32\Iticheck.dll |11/10/1998 02:07:38

C:\WINDOWS\system32\itidat.dll |22/05/1999 00:37:16

C:\WINDOWS\system32\itidib.dll |22/05/1999 00:37:28

C:\WINDOWS\system32\itiimg2.dll |15/07/1998 23:40:50

C:\WINDOWS\system32\IVIresize.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\IVIresizeA6.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\IVIresizeM6.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\IVIresizeP6.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\IVIresizePX.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\IVIresizeW7.dll |04/03/2007 15:12:37

C:\WINDOWS\system32\jgaw400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\jgdw400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\jgmd400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\jgpl400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\jgsd400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\jgsh400.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\lame_enc.dll |21/05/2005 16:26:31

C:\WINDOWS\system32\LIBBZ2.DLL |11/08/1999 16:28:02

C:\WINDOWS\system32\mciqtz32.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\mdmxsdk.dll |18/06/2006 09:44:08

C:\WINDOWS\system32\mdwmdmsp.dll |18/08/2001 00:36:20

C:\WINDOWS\system32\MP3EncX.dll |05/11/2005 18:36:24

C:\WINDOWS\system32\msdmo.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\msdxmlc.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\msencode.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\mtxparhd.dll |04/08/2004 09:56:44

C:\WINDOWS\system32\NCTAudioFile.dll |21/05/2005 16:26:27

C:\WINDOWS\system32\NCTAudioInformation.dll |21/05/2005 16:26:27

C:\WINDOWS\system32\NCTWMAFile.dll |21/05/2005 16:26:28

C:\WINDOWS\system32\nv4_disp.dll |04/08/2004 09:56:44

C:\WINDOWS\system32\oemdspif.dll |18/06/2006 09:45:48

C:\WINDOWS\system32\paqsp.dll |18/08/2001 00:36:28

C:\WINDOWS\system32\PCDLIB32.DLL |08/12/1998 19:53:58

C:\WINDOWS\system32\pncrt.dll |09/07/2005 10:31:42

C:\WINDOWS\system32\pndx5016.dll |09/07/2005 10:31:45

C:\WINDOWS\system32\pndx5032.dll |09/07/2005 10:31:45

C:\WINDOWS\system32\psisdecd.dll |15/01/2005 22:13:22

C:\WINDOWS\system32\px.dll |28/07/2003 02:02:00

C:\WINDOWS\system32\pxafs.dll |20/11/2006 22:55:02

C:\WINDOWS\system32\pxdrv.dll |17/12/2003 02:00:00

C:\WINDOWS\system32\pxmas.dll |28/07/2003 02:02:00

C:\WINDOWS\system32\pxsfs.dll |23/06/2006 18:40:41

C:\WINDOWS\system32\pxwave.dll |28/07/2003 02:02:00

C:\WINDOWS\system32\pxwma.dll |28/07/2003 02:02:00

C:\WINDOWS\system32\qcap.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\qdv.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\qdvd.dll |30/05/2003 10:00:02

C:\WINDOWS\system32\qedit.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\qedwipes.dll |12/12/2002 01:14:32

C:\WINDOWS\system32\quartz.dll |30/05/2003 10:00:02

C:\WINDOWS\system32\rmoc3260.dll |09/07/2005 10:31:57

C:\WINDOWS\system32\s3gnb.dll |04/08/2004 09:56:44

C:\WINDOWS\system32\sbe.dll |26/11/2002 14:15:50

C:\WINDOWS\system32\SkyLt3Pr.dll |21/05/2005 16:26:27

C:\WINDOWS\system32\slbcsp.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\slbiop.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\slbrccsp.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\slcoinst.dll |04/08/2004 09:56:45

C:\WINDOWS\system32\slextspk.dll |04/08/2004 09:56:45

C:\WINDOWS\system32\slgen.dll |04/08/2004 09:56:45

C:\WINDOWS\system32\spnike.dll |18/08/2001 00:36:32

C:\WINDOWS\system32\sprio600.dll |18/08/2001 00:36:32

C:\WINDOWS\system32\sprio800.dll |18/08/2001 00:36:32

C:\WINDOWS\system32\spxcoins.dll |17/06/2006 20:11:19

C:\WINDOWS\system32\SynCOM.dll |15/01/2005 22:11:02

C:\WINDOWS\system32\SynCtrl.dll |15/01/2005 22:11:02

C:\WINDOWS\system32\SYNSOACC.dll |19/02/2005 18:19:47

C:\WINDOWS\system32\SynsoLChk.dll |19/02/2005 18:19:47

C:\WINDOWS\system32\SynTPAPI.dll |15/01/2005 22:11:02

C:\WINDOWS\system32\SynTPCoI.dll |15/01/2005 22:11:03

C:\WINDOWS\system32\SynTPFcs.dll |15/01/2005 22:11:04

C:\WINDOWS\system32\tfswapi.dll |15/01/2005 23:58:07

C:\WINDOWS\system32\tsd32.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\TWAIN32d.dll |14/09/1998 21:43:16

C:\WINDOWS\system32\umloader.dll |19/08/2003 02:01:00

C:\WINDOWS\system32\UNACE.DLL |28/01/1998 01:06:04

C:\WINDOWS\system32\UNRAR.DLL |23/10/1999 19:29:44

C:\WINDOWS\system32\UNZDLL.DLL |29/03/2000 23:00:00

C:\WINDOWS\system32\usrcntra.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrcoina.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrdpa.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrdtea.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrfaxa.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrlbva.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrrtosa.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrsdpia.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrsvpia.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrv42a.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrv80a.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrvoica.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\usrvpa.dll |18/08/2001 00:36:34

C:\WINDOWS\system32\VorbisEncX.dll |05/11/2005 18:36:21

C:\WINDOWS\system32\VXBLOCK.dll |17/02/2004 02:00:00

C:\WINDOWS\system32\vxdmdcdlg.dll |13/03/2003 16:10:24

C:\WINDOWS\system32\win87em.dll |31/03/2003 21:00:00

C:\WINDOWS\system32\WMAEncX.dll |05/11/2005 18:36:21

C:\WINDOWS\system32\WooDial2000.dll |19/01/2005 12:17:35

C:\WINDOWS\system32\ZIPDLL.DLL |21/05/1999 22:10:00

 

Volume in drive C has no label.

Volume Serial Number is 5831-D524

 

Directory of C:\WINDOWS\system32

 

2003-03-31 21:00 4 096 csrss.exe

1 File(s) 4 096 bytes

0 Dir(s) 1 734 582 272 bytes free

 

Contenu de Downloaded Program Files

Volume in drive C has no label.

Volume Serial Number is 5831-D524

 

Directory of C:\WINDOWS\Downloaded Program Files

 

2007-04-07 22:04 <DIR> .

2007-04-07 22:04 <DIR> ..

2006-06-17 20:40 65 desktop.ini

2006-05-15 18:48 367 LegitCheckControl.inf

2004-10-27 14:10 111 752 LSSupCtl.dll

2004-10-27 14:03 302 LSSupCtl.inf

2000-01-20 15:25 1 162 Microsoft XML Parser for Java.osd

2002-06-03 17:53 144 QTPlugin.inf

2001-09-21 16:28 16 202 sdclicense.txt

2005-11-14 13:40 161 384 SymAData.dll

2005-06-17 01:25 1 069 056 tgctlsi.dll

2005-06-17 00:41 667 tgctlsi.inf

2005-06-17 01:25 413 696 tgctlsr.dll

2005-06-17 00:41 521 tgctlsr.inf

2003-06-30 22:41 1 689 WMV9VCM.inf

13 File(s) 1 777 007 bytes

 

Total Files Listed:

13 File(s) 1 777 007 bytes

2 Dir(s) 1 734 582 272 bytes free

 

Recherche de rootkit! (Merci S!Ri)

 

Recherche d'infections connues

 

 

 

catchme 0.2 W2K/XP/Vista - userland rootkit detector by Gmer, 17 October 2006

http://www.gmer.net

 

scanning hidden processes ...

 

scanning hidden services ...

 

scanning hidden autostart entries ...

 

HKLM\Software\Microsoft\Windows\CurrentVersion\Run

Cpqset = C:\Program Files\HPQ\Default Settings\cpqset.exe????????)??p?????????? ???B???????????????B? ??????

 

scanning hidden files ...

 

scan completed successfully

hidden processes: 0

hidden services: 0

hidden files: 0

 

Liste des programmes installes

 

Ad-Aware SE Personal

Adobe Flash Player 9 ActiveX

Adobe Photoshop 7.0

Adobe Reader 7.0

Advanced WMA Workshop version 2.1

ALSong

Apple Software Update

Archiveur WinRAR

Ashampoo AntiSpyWare 1.50

Ashampoo FireWall PRO 1.14

AVG Anti-Spyware 7.5

Broadcom 802.11 Driver

CCleaner (remove only)

Conexant AC-Link Audio

dBpowerAMP CD Writer

dBpowerAMP Music Converter

Diagnostics for Windows

DivX Codec 3.1alpha release

DivX Pro Codec Adware

eMule

Free Mp3 Wma Converter V 1.5.4

Gadu-Gadu 7.6

HighMAT Extension to Microsoft Windows XP CD Writing Wizard

HijackThis 1.99.1

Hitman Pro

HP Deskjet 5700

HP Help and Support

HP Software Update

Intel® Extreme Graphics 2 Driver

InterVideo WinDVD

InterVideo WinDVD Creator 2

iTunes

iTunes

J2SE Runtime Environment 5.0 Update 10

J2SE Runtime Environment 5.0 Update 6

J2SE Runtime Environment 5.0 Update 9

Java 2 Runtime Environment, SE v1.4.2_03

Java 2 Runtime Environment, SE v1.4.2_07

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 Hotfix (KB886903)

Microsoft ActiveX Control Pad

Microsoft Office Professional Edition 2003

Microsoft Office XP Professional with FrontPage

Microsoft Windows Journal Viewer

MixVibes PRO 5 uninstall

Movie Player Pro ActiveX Control

Mozilla Firefox (1.5.0.10)

MP3 CD Converter Professional 5.0

MP3 CD Converter Professional 5.02

MSN Music Assistant

Net Transport 1.94.279

Pochette Express 2

PowerArchiver

PowerDVD

Quick Launch Buttons 5.00 A5

QuickTime

QuickTime

RealPlayer

REALTEK Gigabit and Fast Ethernet NIC Driver

RecordNow!

SAGEM F@st 800-840

Small WMA MP3 Converter 2.0

SoftV92 Data Fax Modem with SmartCP

Sonic DLA

Sonic Update Manager

Spybot - Search & Destroy 1.4

Spyware Doctor 4.0

SpywareBlaster v3.5.1

Synaptics Pointing Device Driver

Syncrosoft's License Control

Total Commander (Remove or Repair)

WAV to MP3 Encoder

WebFldrs XP

Winamp (remove only)

Windows Genuine Advantage Notifications (KB905474)

Windows Live Messenger

Windows Live Sign-in Assistant

Windows Movie Maker 2.0

Windows XP Hotfix - KB822603

Windows XP Hotfix (SP2) q329623

Windows XP Hotfix (SP2) Q815485

WinZip

 

 

 

Volume in drive C has no label.

Volume Serial Number is 5831-D524

 

Directory of C:\Program Files

 

2007-04-07 16:43 <DIR> .

2007-04-07 16:43 <DIR> ..

2006-02-22 16:37 <DIR> 4Musics Multiformat Converter

2005-03-30 13:54 2 636 408 aawsepersonal.exe

2006-01-06 14:23 <DIR> Acoustica Mixcraft

2005-10-02 10:58 <DIR> Acoustica Mp3 To Wave Converter Plus

2005-05-03 13:46 <DIR> Adobe

2007-03-13 16:34 <DIR> Apple Software Update

2007-04-08 11:22 <DIR> Ashampoo

2005-05-21 16:09 <DIR> Audio MP3 Maker

2006-02-22 16:35 <DIR> AV Music Morpher Gold

2007-04-02 14:36 <DIR> CCleaner

2005-05-21 16:01 <DIR> CD Audio MP3 Converter

2005-07-13 21:00 <DIR> CD-Cover Editor

2005-05-21 16:26 <DIR> CDH Productions

2006-06-22 14:56 <DIR> Common Files

2005-01-15 21:58 <DIR> ComPlus Applications

2006-06-18 09:44 <DIR> CONEXANT

2007-03-10 14:59 <DIR> CyberLink

2006-11-08 20:35 <DIR> Dictionnaire

2005-01-15 23:35 <DIR> DivX

2007-04-08 17:08 <DIR> eMule

2006-11-20 23:32 <DIR> ESTsoft

2007-02-26 13:08 <DIR> ewido anti-spyware 4.0

2005-03-25 18:15 <DIR> FLStudio4

2007-03-08 18:50 <DIR> Free Audio Pack

2006-11-08 20:37 <DIR> FruityLoops3

2006-06-17 21:43 <DIR> G DATA

2007-03-19 11:47 <DIR> Gadu-Gadu

2007-01-12 00:08 <DIR> Google

2007-04-02 14:19 <DIR> Grisoft

2005-10-05 14:14 <DIR> Hewlett-Packard

2005-01-17 15:22 <DIR> HighMAT CD Writing Wizard

2007-04-07 16:56 <DIR> Hitman Pro

2005-02-01 21:03 <DIR> HP

2006-06-18 09:47 <DIR> HPQ

2006-07-04 21:28 <DIR> Illustrate

2005-05-13 18:29 <DIR> iMesh

2005-05-13 18:29 <DIR> iMeshBar

2006-02-01 21:08 <DIR> Incomplete

2006-02-22 16:33 <DIR> IncrediMail

2005-01-15 22:27 <DIR> Intel

2006-06-17 21:45 <DIR> InterActual

2006-11-08 20:41 <DIR> Internet Explorer

2007-03-04 15:11 <DIR> InterVideo

2005-11-04 11:18 <DIR> iPod

2006-11-08 20:41 <DIR> iTunes

2007-03-01 18:09 <DIR> Java

2006-06-22 14:58 <DIR> Kaspersky Lab

2005-01-22 18:18 <DIR> Kazaa

2005-05-13 19:52 <DIR> Kazaa K++

2006-11-08 20:46 <DIR> Kazaa Lite

2007-03-05 14:33 <DIR> Kingdia CD Extractor

2006-09-16 17:13 <DIR> Lavasoft

2006-07-01 13:18 12 303 LICENSE.TXT

2006-11-08 20:46 <DIR> LimeWire

2006-06-27 21:59 <DIR> LitexMedia

2006-11-08 20:46 <DIR> Messenger

2005-01-19 22:53 <DIR> Microsoft ActiveSync

2005-01-15 22:02 <DIR> microsoft frontpage

2005-02-09 17:33 <DIR> Microsoft Office

2005-02-09 17:32 <DIR> Microsoft.NET

2006-11-08 20:51 <DIR> MixVibesPro5

2006-06-17 20:50 <DIR> Movie Maker

2006-11-08 20:51 <DIR> Movie Player Pro ActiveX Control

2007-04-04 15:15 <DIR> Mozilla Firefox

2007-03-08 18:33 <DIR> MP3 CD Converter Professional

2005-05-13 20:20 <DIR> MP3Finder

2005-01-15 21:58 <DIR> MSN

2005-01-15 21:57 <DIR> MSN Gaming Zone

2007-03-02 15:56 <DIR> MSN Messenger

2006-02-22 16:34 <DIR> MSN Spy 2004

2005-01-22 22:15 <DIR> MsnMusic

2006-06-17 18:23 <DIR> MyWay

2007-04-07 16:42 <DIR> Neostrada TP

2006-06-17 15:01 <DIR> NetMeeting

2006-11-08 20:52 <DIR> NewLive All Media To Mp3 Converter

2005-05-21 15:57 <DIR> NO1 CD Ripper

2005-10-13 19:35 <DIR> Nokia

2006-06-18 19:11 <DIR> Norton AntiVirus

2006-06-22 14:57 <DIR> Oberon Media

2005-01-15 22:00 <DIR> Online Services

2007-04-07 16:42 <DIR> Outlook Express

2006-11-25 21:26 <DIR> PCFriendly

2006-07-01 13:18 24 274 PED.CNT

2006-07-01 13:18 831 224 PED.HLP

2006-11-11 17:24 <DIR> phonostar

2005-02-19 18:22 <DIR> Pinnacle

2006-11-08 20:53 <DIR> Pochette Express 2

2006-11-08 20:53 <DIR> PowerArchiver

2006-11-08 20:53 <DIR> QuickTime

2006-07-01 13:18 8 564 README.TXT

2005-07-09 10:31 <DIR> Real

2006-11-08 20:54 <DIR> RecordNow!

2006-07-01 13:18 <DIR> Refdocs

2006-11-11 17:21 <DIR> RegistrySmart

2005-07-16 20:13 <DIR> SAGEM

2006-07-01 13:18 223 744 SCRWIZ.DLL

2006-11-08 20:54 <DIR> Setup

2005-09-30 19:12 <DIR> Skype

2005-01-15 23:58 <DIR> Sonic

2007-04-03 09:51 <DIR> Spybot - Search & Destroy

2007-04-07 12:47 <DIR> Spyware Doctor

2007-04-03 09:55 <DIR> SpywareBlaster

2005-07-11 17:43 <DIR> Steinberg

2006-06-22 19:16 <DIR> Symantec

2005-01-15 22:11 <DIR> Synaptics

2005-02-19 18:20 <DIR> Syncrosoft

2005-01-16 13:32 <DIR> totalcmd

2007-04-02 20:11 <DIR> vanBasco's Karaoke Player

2006-06-07 10:44 <DIR> VocoderGUI

2006-10-15 17:02 <DIR> WAV to MP3 Encoder

2006-06-22 14:53 <DIR> WebWall

2007-01-11 22:54 <DIR> Winamp

2005-01-17 15:22 <DIR> Windows Journal Viewer

2007-02-28 22:36 <DIR> Windows Live Toolbar

2007-04-08 11:22 <DIR> Windows Media Player

2006-06-17 14:58 <DIR> Windows NT

2006-09-26 18:58 <DIR> WinRAR

2005-07-06 20:30 <DIR> winupdate

2006-09-16 17:30 <DIR> WinZip

2005-01-15 22:02 <DIR> xerox

2006-11-20 22:29 <DIR> Xi

2007-04-02 14:36 <DIR> Yahoo!

6 File(s) 3 736 517 bytes

118 Dir(s) 1 734 680 576 bytes free

Volume in drive C has no label.

Volume Serial Number is 5831-D524

 

Directory of C:\Program Files\common files

 

2006-06-22 14:56 <DIR> .

2006-06-22 14:56 <DIR> ..

2005-05-03 13:46 <DIR> Adobe

2005-01-17 10:25 <DIR> bamqmpan

2005-01-19 22:52 <DIR> Designer

2005-01-17 16:15 <DIR> InstallShield

2005-01-15 22:25 <DIR> Java

2007-03-02 15:57 <DIR> Microsoft Shared

2005-01-15 21:59 <DIR> MSSoap

2005-01-15 22:51 <DIR> ODBC

2005-07-09 10:32 <DIR> Real

2005-01-15 21:59 <DIR> Services

2005-01-15 23:57 <DIR> Sonic

2005-01-15 22:51 <DIR> SpeechEngines

2005-01-15 23:57 <DIR> SureThing Shared

2006-06-22 19:12 <DIR> Symantec Shared

2006-06-17 15:01 <DIR> System

2005-07-09 10:32 <DIR> xing shared

0 File(s) 0 bytes

18 Dir(s) 1 734 684 672 bytes free

Volume in drive C has no label.

Volume Serial Number is 5831-D524

 

Directory of C:\

 

2006-10-11 14:28 6 469 352 avgas-setup-7.5.0.50.exe

2007-03-07 10:54 2 685 104 ccleaner_ccleaner_1.38.435_francais_14492.exe

2001-11-11 00:00 68 096 diff.exe

2006-08-27 14:10 103 424 grep.exe

2007-03-23 05:52 1 308 216 HiJackThis_v2.exe

2007-01-31 17:13 4 011 208 hitman-pro_hitman_pro_2.6.0_anglais_13745.exe

2005-01-28 23:42 12 814 336 mp10setup.exe

2007-03-23 23:51 208 896 OTMoveIt.exe

2007-04-06 10:12 870 552 SmitfraudFix.exe

2001-05-24 12:59 162 304 UNWISE.EXE

2007-04-01 11:51 53 760 videosaccess.exe

2006-10-30 20:39 25 840 688 windows-media-player-11_windows_media_player_11.0_francais_20085.exe

2007-01-04 16:06 25 755 448 wmp11-windowsxp-x86-enu.exe

2007-01-04 16:07 25 839 688 wmp11-windowsxp-x86-FR-FR.exe

14 File(s) 106 191 072 bytes

0 Dir(s) 1 734 684 672 bytes free

c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem1040_navnt_10.00.10_english\SPA.EXE

c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3263_symnet$20consumer_5.4.4_english\Message.exe

c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3263_symnet$20consumer_5.4.4_english\setup.exe

c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem5085_symnet_4.7.3_english\Message.exe

c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem5085_symnet_4.7.3_english\setup.exe

c:\Documents and Settings\All Users\Start Menu\Programs\Télécharger des logiciels.exe

c:\Documents and Settings\.limewire\.NetworkShare\LimeWireWin4.12.11.exe

c:\Documents and Settings\.limewire\.NetworkShare\Incomplete\T-3098160-LimeWireWin4.12.9.exe

c:\Documents and Settings\Application Data\phonostar-Player\update.exe

c:\Documents and Settings\Application Data\phonostar-Player\update2.exe

c:\Documents and Settings\Desktop\catapult.exe

c:\Documents and Settings\Desktop\eMule0.47c-Installer.exe

c:\Documents and Settings\Desktop\french_translated.exe

c:\Documents and Settings\Desktop\HijackThis.exe

c:\Documents and Settings\Desktop\iTunesSetup.exe

c:\Documents and Settings\Desktop\VundoFix.exe

c:\Documents and Settings\Desktop\winamp531_full_bundle_emusic-7plus.exe

c:\Documents and Settings\Desktop\DiagHelp\catchme.exe

c:\Documents and Settings\Desktop\DiagHelp\diff.exe

c:\Documents and Settings\Desktop\DiagHelp\dumphive.exe

c:\Documents and Settings\Desktop\DiagHelp\FilesInfoCmd.exe

c:\Documents and Settings\Desktop\DiagHelp\Fport.exe

c:\Documents and Settings\Desktop\DiagHelp\grep.exe

c:\Documents and Settings\Desktop\DiagHelp\LFiles.exe

c:\Documents and Settings\Desktop\DiagHelp\LISTDLLS.exe

c:\Documents and Settings\Desktop\DiagHelp\pslist.exe

c:\Documents and Settings\Desktop\DiagHelp\streams.exe

c:\Documents and Settings\Desktop\DiagHelp\swreg.exe

c:\Documents and Settings\Desktop\SmitfraudFix\dumphive.exe

c:\Documents and Settings\Desktop\SmitfraudFix\GenericRenosFix.exe

c:\Documents and Settings\Desktop\SmitfraudFix\HostsChk.exe

c:\Documents and Settings\Desktop\SmitfraudFix\Process.exe

c:\Documents and Settings\Desktop\SmitfraudFix\Reboot.exe

c:\Documents and Settings\Desktop\SmitfraudFix\restart.exe

c:\Documents and Settings\Desktop\SmitfraudFix\SmiUpdate.exe

c:\Documents and Settings\Desktop\SmitfraudFix\SrchSTS.exe

c:\Documents and Settings\Desktop\SmitfraudFix\swreg.exe

c:\Documents and Settings\Desktop\SmitfraudFix\swsc.exe

c:\Documents and Settings\Desktop\SmitfraudFix\swxcacls.exe

c:\Documents and Settings\Desktop\SmitfraudFix\unzip.exe

c:\Documents and Settings\Desktop\Vendrediii\dBpowerAMPCDWriter-Unregistered-r2.exe

c:\Documents and Settings\Local Settings\Temporary Internet Files\Content.IE5\UH9JYLNS\VundoFix[1].exe

c:\Documents and Settings\My Documents\My shared files\ashampoo_antispyware150_sm.exe

c:\Documents and Settings\My Documents\My shared files\ashampoo_firewall110_sm.exe

c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll

c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll

c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3263_symnet$20consumer_5.4.4_english\SymStore.dll

c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem5085_symnet_4.7.3_english\SymStore.dll

c:\Documents and Settings\Application Data\Microsoft\IdentityCRL\PROD\ppcrlconfig.dll

Lien vers le commentaire
Partager sur d’autres sites
bruce lee Devil Member !

bruce lee

Posté(e)
Posté(e)

Bonjour,

 

1/affiche tout les fichiers:

 

Démarrer, Poste de travail ou autre dossier, Menu Outils, Option des dossiers, onglet Affichage :

Cocher la case : Afficher les fichiers et dossiers cachés

Décocher la case : Masquer les extensions des fichiers dont le type est connu

Décocher la case : Masquer les fichiers protégés du système d'exploitation

cliquer sur "Appliquer"

cliquer sur le bouton "Appliquer à tous les dossiers" / OK

 

 

 

2/rend toi ensuite sur ce site http://virusscan.jotti.org/ et fait analyser edlin.exe qui se trouve ici:

 

C:\WINDOWS\system32\edlin.exe

 

et post le resultat.

 

@+

Lien vers le commentaire
Partager sur d’autres sites
Malekal_morte Godlike Member

Malekal_morte

Posté(e)
Posté(e)

Si tu pouvais envoyer aussi ces fichiers sur http://upload.malekal.com ce serait cool :

C:\WINDOWS\System32\asdjhweq.exe

C:\WINDOWS\System32\hnrzfig.dll

 

Tu saurais pas où tu as eu l'infection par hasard ?

Lien vers le commentaire
Partager sur d’autres sites
Horatio733 Member

Horatio733

Posté(e)
  • Auteur
Posté(e)

Salut!

 

Voici le rapport demandé: Service load: 0% 100%

 

File: edlin.exe

Status: OK

MD5 b7a0aa49cbb604b2c3a42a49c36d8a4f

Packers detected: EXEPACK

AntiVir Found nothing

ArcaVir Found nothing

Avast Found nothing

AVG Antivirus Found nothing

BitDefender Found nothing

ClamAV Found nothing

Dr.Web Found nothing

F-Prot Antivirus Found nothing

F-Secure Anti-Virus Found nothing

Fortinet Found nothing

Kaspersky Anti-Virus Found nothing

NOD32 Found nothing

Norman Virus Control Found nothing

Panda Antivirus Found nothing

Rising Antivirus Found nothing

VirusBuster Found nothing

VBA32 Found nothing

Lien vers le commentaire
Partager sur d’autres sites

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...