Rapport hijackthis, help ! (RESOLU) - Sécurité - Virus
TomsGuide.com : 700 000 inscrits répondent à toutes vos questions high-tech et informatique.
Pour obtenir de l'aide, inscrivez-vous gratuitement !
 

Ajouter une réponse



Mot :   Pseudo :  
 
Bas de page
Auteur
 Sujet : Rapport hijackthis, help ! (RESOLU)
 
poulous
Profil : IDNaute
Plus d'informations
n°130772
20-12-2006 à 18:22:33

bonjours, j'ai besoin de votre aide :bounce: pls que de longs discours, voiçi le rapport d' hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 18:06:19, on 20/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\mHotkey.exe
C:\Program Files\Home Cinema\PowerCinema\PCMService.exe
C:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SpeedFan\speedfan.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\The Bat!\thebat.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\J-PAUL\Bureau\hijackthis\scanner.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {D3819209-73E9-0734-CA1B-02E52D1B14E0} - C:\WINDOWS\system32\csoibmkc.dll (file missing)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1DC94D1E-F311-4488-9A4A-04DD12A81CAE} - C:\WINDOWS\system32\gebcy.dll (file missing)
O2 - BHO: (no name) - {3FD6B99C-A275-46ea-8FD1-3D63986E51E4} - C:\WINDOWS\system32\vybihonb.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {DD73AD9A-FBFF-4D4D-BFB1-A83E5273F2ED} - C:\WINDOWS\system32\ddaya.dll (file missing)
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [EPSON Stylus DX6000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBIE.EXE /FU "C:\WINDOWS\TEMP\E_S91.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Home Cinema\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [{448B1B96-081B-1036-0427-040310140021}] "C:\Program Files\Fichiers communs\{448B1B96-081B-1036-0427-040310140021}\Update.exe" mc-110-12-0000272
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Configuration de la C-BOX] C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe
O4 - HKCU\..\Run: [Udot] "C:\WINDOWS\SSTEM~1\attrib.exe" -vt yazb
O4 - HKCU\..\Run: [Oqdomqn] C:\WINDOWS\?racle\m?iexec.exe
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Steam] "d:\program files\steam\steam.exe" -silent
O4 - Startup: SpeedFan.lnk = C:\Program Files\SpeedFan\speedfan.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/micros [...] 6176978890
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/p [...] wflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: COM+ Messages - Unknown owner - C:\WINDOWS\system32\svchosts.exe" -e mc-110-12-0000272 (file missing)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

merci d'avance.


Message édité par poulous le 22-12-2006 à 18:17:07
Liens sponsorisés


Inscrivez-vous ou connectez-vous pour masquer ceci.

Angeldark
Profil : Helper
Plus d'informations
n°130775
20-12-2006 à 18:41:43

Bonjour,

  • Télécharge combofix.exe (par sUBs) sur ton Bureau
  • Double clique combofix.exe.
  • Tape sur la touche Y (Yes) pour démarrer le scan.
  • Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.


NOTE : Le rapport se trouve également ici : C:\Combofix.txt


Message édité par Angeldark le 20-12-2006 à 18:42:07

---------------
Prévention & Protection|Les logiciels gratuits|L'homme du FLCCF
poulous
Profil : IDNaute
Plus d'informations
n°130879
21-12-2006 à 08:26:58

bonjour, et en plus rapide.

J-PAUL - 06-12-21 7:53:47,71 Service Pack 2
ComboFix 06.11.27 - Running from: "C:\Documents and Settings\J-PAUL\Bureau"

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\Program Files\Fichiers communs\{348B1B96-081B-1036-0427-040310140021}
C:\Program Files\Fichiers communs\{448B1B96-081B-1036-0427-040310140021}

~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

Folders Quarantined:

C:\QooBox\Purity\WINDOWS\RACLE~1
C:\QooBox\Purity\WINDOWS\SSTEM~1
C:\QooBox\Purity\WINDOWS\SSTEM~1\s?stem


((((((((((((((((((((((((((((((( Files Created from 2006-11-21 to 2006-12-21 ))))))))))))))))))))))))))))))))))


2006-12-20 19:49 9,728 -ra------ C:\WINDOWS\system32\drivers\videX32.sys
2006-12-20 19:48 <REP> d-------- C:\Program Files\VIA
2006-12-20 18:58 520,192 --------- C:\WINDOWS\system32\ati2sgag.exe
2006-12-20 18:41 <REP> d-------- C:\Program Files\ATI Technologies
2006-12-20 18:38 <REP> d-------- C:\ATI
2006-12-20 17:10 <REP> d-------- C:\Program Files\Microsoft Visual Studio
2006-12-20 17:10 <REP> d-------- C:\Program Files\Fichiers communs\Designer
2006-12-20 17:09 <REP> d-------- C:\WINDOWS\ShellNew
2006-12-20 17:08 <REP> d-------- C:\Program Files\Microsoft Office
2006-12-20 17:08 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\Microsoft Web Folders
2006-12-18 19:23 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2006-12-18 19:00 <REP> d-------- C:\Program Files\Symantec
2006-12-18 18:58 <REP> d--h----- C:\WINDOWS\PIF
2006-12-17 21:38 <REP> d-------- C:\WINDOWS\system32\oodag
2006-12-17 21:26 <REP> d-------- C:\Program Files\OO Software
2006-12-17 12:58 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2006-12-17 12:58 <REP> d-------- C:\Program Files\Grisoft
2006-12-16 23:13 <REP> d-------- C:\WINDOWS\Sun
2006-12-16 23:13 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\Sun
2006-12-16 23:12 <REP> d-------- C:\Program Files\Java
2006-12-16 23:12 <REP> d-------- C:\Program Files\Fichiers communs\Java
2006-12-16 21:23 44,052 --a------ C:\WINDOWS\system32\vybihonb.dll
2006-12-16 21:11 <REP> d-------- C:\VundoFix Backups
2006-12-16 20:50 <REP> d-------- C:\Program Files\BeClean
2006-12-16 16:09 22,541 ---hs---- C:\WINDOWS\system32\xxyvwuu.dll
2006-12-16 14:24 <REP> d-------- C:\WINDOWS\WBEM
2006-12-16 14:24 <REP> d-------- C:\WINDOWS\system32\fr-fr
2006-12-16 14:22 <REP> d--h-c--- C:\WINDOWS\ie7
2006-12-16 14:21 121,856 --------- C:\WINDOWS\system32\xmllite.dll
2006-12-16 14:21 <REP> d-------- C:\WINDOWS\network diagnostic
2006-12-16 13:50 42,516 --a------ C:\WINDOWS\system32\eiygcqrs.dll
2006-12-16 12:30 <REP> d-------- C:\Program Files\Spybot - Search & Destroy
2006-12-16 12:30 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2006-12-16 12:05 <REP> d-------- C:\Program Files\Lavasoft
2006-12-16 12:05 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\Lavasoft
2006-12-16 00:48 <REP> d-------- C:\Program Files\Fichiers communs\Adobe
2006-12-16 00:48 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\AdobeUM
2006-12-16 00:48 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\Adobe
2006-12-16 00:37 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\DriveCleaner 2006 Free
2006-12-16 00:27 89,088 --a------ C:\WINDOWS\system32\atl71.dll
2006-12-16 00:27 <REP> d-------- C:\Program Files\Fichiers communs\DriveCleaner 2006 Free
2006-12-16 00:09 2,292 --a------ C:\WINDOWS\system32\tmp.reg
2006-12-15 23:44 <REP> d-------- C:\SDFix
2006-12-15 19:36 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\Macromedia
2006-12-15 17:48 <REP> d-------- C:\Program Files\Microsoft IntelliPoint
2006-12-15 17:46 <REP> d-------- C:\Program Files\Microsoft IntelliPoint 5.5
2006-12-15 16:41 <REP> d-------- C:\Program Files\WinAce
2006-12-15 16:17 <REP> d-------- C:\Program Files\Adobe
2006-12-15 16:17 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Adobe
2006-12-15 16:14 <REP> d-------- C:\WINDOWS\Cache
2006-12-15 15:52 28,256 --a------ C:\WINDOWS\system32\drivers\MxlW2k.sys
2006-12-15 15:51 <REP> d-------- C:\Program Files\MUSICMATCH
2006-12-15 15:45 9,856 --------- C:\WINDOWS\system32\drivers\pfc.sys
2006-12-15 15:44 344,064 --a------ C:\WINDOWS\system32\msvcr70.dll
2006-12-15 15:44 127,184 --a------ C:\WINDOWS\Unwise.exe
2006-12-15 15:44 <REP> d-------- C:\Program Files\X10 Hardware
2006-12-15 15:44 <REP> d-------- C:\Program Files\Common Files
2006-12-15 15:43 <REP> d-------- C:\Program Files\Home Cinema
2006-12-15 15:43 <REP> d-------- C:\Program Files\CyberLink
2006-12-15 15:43 <REP> d-------- C:\Documents and Settings\All Users\Application Data\CyberLink
2006-12-15 15:39 <REP> d-------- C:\Program Files\SuperCopier2
2006-12-15 15:28 <REP> d-------- C:\Program Files\Dictionnaire
2006-12-15 15:25 477,184 --a------ C:\WINDOWS\mHotkey.exe
2006-12-15 15:25 3,333 --a------ C:\WINDOWS\NT4_98.reg
2006-12-15 15:25 3,329 --a------ C:\WINDOWS\2K.reg
2006-12-15 15:25 3,323 --a------ C:\WINDOWS\MeXP.reg
2006-12-15 15:25 24,576 --a------ C:\WINDOWS\HKNTDLL.dll
2006-12-15 15:25 233,472 --a------ C:\WINDOWS\InstIt.exe
2006-12-15 13:40 87,424 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2006-12-15 13:40 85,952 --a------ C:\WINDOWS\system32\drivers\aswmon.sys
2006-12-15 13:40 36,176 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2006-12-15 13:40 24,560 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2006-12-15 13:40 16,352 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2006-12-15 13:17 88,340 --a------ C:\WINDOWS\system32\wpaxrspm.exe
2006-12-15 13:17 42,516 --a------ C:\WINDOWS\system32\ihnqtjvs.dll
2006-12-15 13:17 350,924 ---hs---- C:\WINDOWS\system32\ycbeg.bak1
2006-12-15 13:14 128,744 --a------ C:\WINDOWS\system32\mucltui.dll
2006-12-15 12:44 <REP> d-------- C:\Config.Msi
2006-12-15 12:37 <REP> d-------- C:\Program Files\The Bat!
2006-12-15 12:37 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\The Bat!
2006-12-15 12:33 <REP> d-------- C:\Program Files\SpeedFan
2006-12-15 12:26 9,728 --a------ C:\WINDOWS\system32\RNAPH.DLL
2006-12-15 12:26 48,128 --a------ C:\WINDOWS\system32\SMMSCRPT.DLL
2006-12-15 12:26 <REP> d-------- C:\WINDOWS\Cegetel
2006-12-15 12:26 <REP> d-------- C:\Program Files\Cegetel
2006-12-15 11:45 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\EPSON
2006-12-15 11:38 <REP> d-------- C:\WINDOWS\Prefetch
2006-12-15 11:16 <REP> d-------- C:\WINDOWS\provisioning
2006-12-15 11:16 <REP> d-------- C:\WINDOWS\peernet
2006-12-15 11:15 <REP> d-------- C:\WINDOWS\ServicePackFiles
2006-12-15 11:14 <REP> d-------- C:\WINDOWS\system32\ReinstallBackups
2006-12-15 11:13 <REP> d-------- C:\WINDOWS\EHome
2006-12-15 11:10 11,776 --------- C:\WINDOWS\system32\spnpinst.exe
2006-12-15 10:48 <REP> d--h----- C:\Program Files\InstallShield Installation Information
2006-12-15 10:48 <REP> d-------- C:\Program Files\ABBYY FineReader 6.0 Sprint
2006-12-15 10:48 <REP> d-------- C:\Documents and Settings\All Users\Application Data\UDL
2006-12-15 10:47 77,824 --a------ C:\WINDOWS\system32\PICEntry.dll
2006-12-15 10:47 73,728 --a------ C:\WINDOWS\system32\PICSDK.dll
2006-12-15 10:47 73,216 --a------ C:\WINDOWS\system32\E_FLBBIE.DLL
2006-12-15 10:47 65,536 --a------ C:\WINDOWS\system32\EPPicMgr.dll
2006-12-15 10:47 62,976 --a------ C:\WINDOWS\system32\E_FD4BBIE.DLL
2006-12-15 10:47 495,616 --a------ C:\WINDOWS\system32\PICSDK2.dll
2006-12-15 10:47 49,152 --a------ C:\WINDOWS\system32\E_DCINST.DLL
2006-12-15 10:47 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2006-12-15 10:47 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
2006-12-15 10:47 114,688 --a------ C:\WINDOWS\system32\EpPicPrt.dll
2006-12-15 10:46 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2006-12-15 10:45 63,488 --a------ C:\WINDOWS\system32\escwiad.dll
2006-12-15 10:45 <REP> d-------- C:\Program Files\epson
2006-12-15 10:25 614,912 --a------ C:\WINDOWS\system32\h323msp.dll
2006-12-15 10:25 39,936 --a------ C:\WINDOWS\system32\mf3216.dll
2006-12-15 10:25 332,800 --a------ C:\WINDOWS\system32\ipnathlp.dll
2006-12-15 10:22 1,097,728 --a------ C:\WINDOWS\system32\esent.dll
2006-12-15 10:19 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2006-12-15 09:58 8,192 --------- C:\WINDOWS\system32\bitsprx2.dll
2006-12-15 09:58 7,168 --------- C:\WINDOWS\system32\bitsprx3.dll
2006-12-15 09:58 351,232 --a------ C:\WINDOWS\system32\winhttp.dll
2006-12-15 09:58 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2006-12-15 09:58 18,944 --a------ C:\WINDOWS\system32\qmgrprxy.dll
2006-12-15 09:58 <REP> d--h----- C:\WINDOWS\$hf_mig$
2006-12-15 09:58 <REP> d-------- C:\WINDOWS\system32\PreInstall
2006-12-15 09:58 <REP> d-------- C:\WINDOWS\system32\bits
2006-12-15 09:56 <REP> d--hs---- C:\Documents and Settings\J-PAUL\UserData
2006-12-15 09:46 917,504 --a------ C:\WINDOWS\system\cmids3d.dll
2006-12-15 09:46 784,832 --a------ C:\WINDOWS\system32\drivers\cmuda.sys
2006-12-15 09:46 712,704 --a------ C:\WINDOWS\system32\Audio3D.dll
2006-12-15 09:46 712,704 --a------ C:\WINDOWS\system32\a3d.dll
2006-12-15 09:46 60,288 --a------ C:\WINDOWS\system32\drivers\drmk.sys
2006-12-15 09:46 48,640 --a------ C:\WINDOWS\system32\drivers\stream.sys
2006-12-15 09:46 4,096 --a------ C:\WINDOWS\system32\ksuser.dll
2006-12-15 09:46 32,768 --a------ C:\WINDOWS\system32\udaprop.dll
2006-12-15 09:46 28,672 --a------ C:\WINDOWS\system32\cmirmdrv.dll
2006-12-15 09:46 28,672 --a------ C:\WINDOWS\CMIRmDriver.dll
2006-12-15 09:46 266,240 --a------ C:\WINDOWS\CMIUninstall.exe
2006-12-15 09:46 233,472 --a------ C:\WINDOWS\system32\cmirmdrv.exe
2006-12-15 09:46 225,280 --a------ C:\WINDOWS\CmiRmRedundDir.exe
2006-12-15 09:46 145,792 --a------ C:\WINDOWS\system32\drivers\portcls.sys
2006-12-15 09:46 140,928 --a------ C:\WINDOWS\system32\drivers\ks.sys
2006-12-15 09:46 135,168 --a------ C:\WINDOWS\system32\cmuda.dll
2006-12-15 09:46 1,454,080 --a------ C:\WINDOWS\system\SmWizard.exe
2006-12-15 09:46 <REP> d-------- C:\Program Files\C-Media 3D Audio
2006-12-15 09:45 308,224 --a------ C:\WINDOWS\IsUn040c.exe
2006-12-15 09:36 <REP> d-------- C:\WINDOWS\system32\SoftwareDistribution
2006-12-15 09:33 90,112 --a------ C:\WINDOWS\system32\AVASTSS.scr
2006-12-15 09:33 666,240 --a------ C:\WINDOWS\system32\aswBoot.exe
2006-12-15 09:33 499,712 --a------ C:\WINDOWS\system32\MSVCP71.dll
2006-12-15 09:33 467,224 --a------ C:\WINDOWS\system32\wuapi.dll
2006-12-15 09:33 41,240 --a------ C:\WINDOWS\system32\wups.dll
2006-12-15 09:33 348,160 --a------ C:\WINDOWS\system32\MSVCR71.dll
2006-12-15 09:33 195,352 --a------ C:\WINDOWS\system32\wuaueng1.dll
2006-12-15 09:33 175,896 --a------ C:\WINDOWS\system32\wuauclt1.exe
2006-12-15 09:33 173,536 --a------ C:\WINDOWS\system32\wuweb.dll
2006-12-15 09:33 128,792 --a------ C:\WINDOWS\system32\wucltui.dll
2006-12-15 09:33 1,060,864 --a------ C:\WINDOWS\system32\MFC71.dll
2006-12-15 09:33 <REP> d-------- C:\WINDOWS\SoftwareDistribution
2006-12-15 09:33 <REP> d-------- C:\Program Files\Alwil Software
2006-12-15 02:57 <REP> d-------- C:\Program Files\Fichiers communs\InstallShield
2006-12-15 02:56 <REP> d--hs---- C:\RECYCLER
2006-12-15 02:56 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2006-12-15 02:39 26,112 --a------ C:\WINDOWS\system32\xpsp1hfm.exe
2006-12-15 02:39 <REP> d---s---- C:\WINDOWS\system32\Microsoft
2006-12-15 02:32 <REP> dr-h----- C:\Documents and Settings\J-PAUL\SendTo
2006-12-15 02:32 <REP> dr-h----- C:\Documents and Settings\J-PAUL\Recent
2006-12-15 02:32 <REP> dr-h----- C:\Documents and Settings\J-PAUL\Application Data\.
2006-12-15 02:32 <REP> dr-h----- C:\Documents and Settings\J-PAUL\Application Data
2006-12-15 02:32 <REP> dr------- C:\Documents and Settings\J-PAUL\Mes documents
2006-12-15 02:32 <REP> dr------- C:\Documents and Settings\J-PAUL\Menu D‚marrer
2006-12-15 02:32 <REP> dr------- C:\Documents and Settings\J-PAUL\Favoris
2006-12-15 02:32 <REP> d--hs---- C:\WINDOWS\Installer
2006-12-15 02:32 <REP> d--hs---- C:\Documents and Settings\J-PAUL\Cookies
2006-12-15 02:32 <REP> d--h----- C:\Program Files\Uninstall Information
2006-12-15 02:32 <REP> d--h----- C:\Documents and Settings\J-PAUL\Voisinage r‚seau
2006-12-15 02:32 <REP> d--h----- C:\Documents and Settings\J-PAUL\Voisinage d'impression
2006-12-15 02:32 <REP> d--h----- C:\Documents and Settings\J-PAUL\ModŠles
2006-12-15 02:32 <REP> d--h----- C:\Documents and Settings\J-PAUL\Local Settings
2006-12-15 02:32 <REP> d---s---- C:\Documents and Settings\J-PAUL\Application Data\Microsoft
2006-12-15 02:32 <REP> d-------- C:\Documents and Settings\J-PAUL\Bureau
2006-12-15 02:32 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\Identities
2006-12-15 02:32 <REP> d-------- C:\Documents and Settings\J-PAUL\Application Data\..
2006-12-15 02:32 <REP> d-------- C:\Documents and Settings\J-PAUL\..
2006-12-15 02:32 <REP> d-------- C:\Documents and Settings\J-PAUL\.
2006-12-15 02:30 <REP> d--hs---- C:\System Volume Information
2006-12-15 02:27 112,128 --a------ C:\WINDOWS\system32\mapi32.dll
2006-12-15 02:27 0 -rahs---- C:\MSDOS.SYS
2006-12-15 02:27 0 -rahs---- C:\IO.SYS
2006-12-15 02:27 0 --a------ C:\CONFIG.SYS
2006-12-15 02:27 0 --a------ C:\AUTOEXEC.BAT
2006-12-15 02:27 <REP> dr------- C:\WINDOWS\Offline Web Pages
2006-12-15 02:27 <REP> d--hs---- C:\Documents and Settings\All Users\DRM
2006-12-15 02:27 <REP> d---s---- C:\WINDOWS\Downloaded Program Files
2006-12-15 02:27 <REP> d-------- C:\WINDOWS\system32\xircom
2006-12-15 02:27 <REP> d-------- C:\Program Files\xerox
2006-12-15 02:27 <REP> d-------- C:\Program Files\microsoft frontpage
2006-12-15 02:26 86,016 --a------ C:\WINDOWS\system32\isign32.dll
2006-12-15 02:26 81,920 --a------ C:\WINDOWS\system32\ils.dll
2006-12-15 02:26 73,728 --a------ C:\WINDOWS\system32\icwdial.dll
2006-12-15 02:26 73,600 --a------ C:\WINDOWS\system32\drivers\sr.sys
2006-12-15 02:26 72,192 --a------ C:\WINDOWS\system32\acctres.dll
2006-12-15 02:26 69,632 --a------ C:\WINDOWS\system32\msconf.dll
2006-12-15 02:26 679,424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-12-15 02:26 67,584 --a------ C:\WINDOWS\system32\srclient.dll
2006-12-15 02:26 65,536 --a------ C:\WINDOWS\system32\icwphbk.dll
2006-12-15 02:26 50,688 --a------ C:\WINDOWS\system32\inetres.dll
2006-12-15 02:26 45,568 --a------ C:\WINDOWS\system32\safrslv.dll
2006-12-15 02:26 43,520 --a------ C:\WINDOWS\system32\safrcdlg.dll
2006-12-15 02:26 43,520 --a------ C:\WINDOWS\system32\racpldlg.dll
2006-12-15 02:26 382,464 --a------ C:\WINDOWS\system32\qmgr.dll
2006-12-15 02:26 34,560 --a------ C:\WINDOWS\system32\mnmdd.dll
2006-12-15 02:26 32,768 --a------ C:\WINDOWS\system32\mnmsrvc.exe
2006-12-15 02:26 32,768 --a------ C:\WINDOWS\system32\isrdbg32.dll
2006-12-15 02:26 29,696 --a------ C:\WINDOWS\system32\safrdm.dll
2006-12-15 02:26 282,624 --a------ C:\WINDOWS\system32\inetcfg.dll
2006-12-15 02:26 281,600 --a------ C:\WINDOWS\system32\mstask.dll
2006-12-15 02:26 28,672 --a------ C:\WINDOWS\system32\nmmkcert.dll
2006-12-15 02:26 252,928 --a------ C:\WINDOWS\system32\msoeacct.dll
2006-12-15 02:26 241,664 --a------ C:\WINDOWS\system32\srrstr.dll
2006-12-15 02:26 193,024 --a------ C:\WINDOWS\system32\schedsvc.dll
2006-12-15 02:26 171,008 --a------ C:\WINDOWS\system32\srsvc.dll
2006-12-15 02:26 16,384 --a------ C:\WINDOWS\system32\icfgnt5.dll
2006-12-15 02:26 12,288 --a------ C:\WINDOWS\system32\nmevtmsg.dll
2006-12-15 02:26 12,288 --a------ C:\WINDOWS\system32\mstinit.exe
2006-12-15 02:26 11,264 --a------ C:\WINDOWS\system32\atrace.dll
2006-12-15 02:26 105,984 --a------ C:\WINDOWS\system32\msoert2.dll
2006-12-15 02:26 <REP> d---s---- C:\WINDOWS\Tasks
2006-12-15 02:26 <REP> d-------- C:\WINDOWS\system32\Restore
2006-12-15 02:26 <REP> d-------- C:\WINDOWS\system32\Macromed
2006-12-15 02:26 <REP> d-------- C:\WINDOWS\system32\DirectX
2006-12-15 02:26 <REP> d-------- C:\WINDOWS\srchasst
2006-12-15 02:26 <REP> d-------- C:\WINDOWS\PCHealth
2006-12-15 02:26 <REP> d-------- C:\Program Files\Outlook Express
2006-12-15 02:26 <REP> d-------- C:\Program Files\NetMeeting
2006-12-15 02:26 <REP> d-------- C:\Program Files\Movie Maker
2006-12-15 02:26 <REP> d-------- C:\Program Files\Internet Explorer
2006-12-15 02:26 <REP> d-------- C:\Program Files\Fichiers communs\System
2006-12-15 02:26 <REP> d-------- C:\Program Files\Fichiers communs\Services
2006-12-15 02:26 <REP> d-------- C:\Program Files\Fichiers communs\MSSoap
2006-12-15 02:25 97,792 --a------ C:\WINDOWS\system32\comrepl.dll
2006-12-15 02:25 956,416 --a------ C:\WINDOWS\system32\msdtctm.dll
2006-12-15 02:25 94,208 --a------ C:\WINDOWS\system32\tscfgwmi.dll
2006-12-15 02:25 87,176 --a------ C:\WINDOWS\system32\rdpwsx.dll
2006-12-15 02:25 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll
2006-12-15 02:25 80,896 --a------ C:\WINDOWS\system32\charmap.exe
2006-12-15 02:25 73,216 --a------ C:\WINDOWS\system32\avwav.dll
2006-12-15 02:25 67,072 --a------ C:\WINDOWS\system32\rdshost.exe
2006-12-15 02:25 655,360 --a------ C:\WINDOWS\system32\mstscax.dll
2006-12-15 02:25 634,880 --a------ C:\WINDOWS\system32\getuname.dll
2006-12-15 02:25 62,464 --a------ C:\WINDOWS\system32\rdpclip.exe
2006-12-15 02:25 61,952 --a------ C:\WINDOWS\system32\remotepg.dll
2006-12-15 02:25 6,656 --a------ C:\WINDOWS\system32\wuauserv.dll
2006-12-15 02:25 6,144 --a------ C:\WINDOWS\system32\msdtc.exe
2006-12-15 02:25 58,880 --a------ C:\WINDOWS\system32\msdtclog.dll
2006-12-15 02:25 58,880 --a------ C:\WINDOWS\system32\licwmi.dll
2006-12-15 02:25 57,344 --a------ C:\WINDOWS\system32\sol.exe
2006-12-15 02:25 56,320 --a------ C:\WINDOWS\system32\servdeps.dll
2006-12-15 02:25 55,808 --a------ C:\WINDOWS\system32\freecell.exe
2006-12-15 02:25 540,160 --a------ C:\WINDOWS\system32\comuid.dll
2006-12-15 02:25 54,272 --a------ C:\WINDOWS\system32\stclient.dll
2006-12-15 02:25 539,136 --a------ C:\WINDOWS\system32\spider.exe
2006-12-15 02:25 5,632 --a------ C:\WINDOWS\system32\write.exe
2006-12-15 02:25 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe
2006-12-15 02:25 44,544 --a------ C:\WINDOWS\system32\tscupgrd.exe
2006-12-15 02:25 44,544 --a------ C:\WINDOWS\system32\hticons.dll
2006-12-15 02:25 426,496 --a------ C:\WINDOWS\system32\msdtcprx.dll
2006-12-15 02:25 411,648 --a------ C:\WINDOWS\system32\mstsc.exe
2006-12-15 02:25 4,608 --a------ C:\WINDOWS\system32\rdpcfgex.dll
2006-12-15 02:25 4,096 --a------ C:\WINDOWS\system32\mtxex.dll
2006-12-15 02:25 39,424 --a------ C:\WINDOWS\system32\cfgbkend.dll
2006-12-15 02:25 35,840 --a------ C:\WINDOWS\system32\winchat.exe
2006-12-15 02:25 347,648 --a------ C:\WINDOWS\system32\mspaint.exe
2006-12-15 02:25 33,792 --a------ C:\WINDOWS\system32\regini.exe
2006-12-15 02:25 297,984 --a------ C:\WINDOWS\system32\termsrv.dll
2006-12-15 02:25 25,600 --a------ C:\WINDOWS\system32\comaddin.dll
2006-12-15 02:25 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll
2006-12-15 02:25 232,960 --a------ C:\WINDOWS\system32\avtapi.dll
2006-12-15 02:25 22,528 --a------ C:\WINDOWS\system32\qwinsta.exe
2006-12-15 02:25 22,528 --a------ C:\WINDOWS\system32\msg.exe
2006-12-15 02:25 21,896 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys
2006-12-15 02:25 20,992 --a------ C:\WINDOWS\system32\qprocess.exe
2006-12-15 02:25 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll
2006-12-15 02:25 191,488 --a------ C:\WINDOWS\system32\cmprops.dll
2006-12-15 02:25 19,968 --a------ C:\WINDOWS\system32\rdpsnd.dll
2006-12-15 02:25 189,952 --a------ C:\WINDOWS\system32\accwiz.exe
2006-12-15 02:25 17,920 --a------ C:\WINDOWS\system32\mmfutil.dll
2006-12-15 02:25 17,408 --a------ C:\WINDOWS\system32\tsshutdn.exe
2006-12-15 02:25 17,408 --a------ C:\WINDOWS\system32\qappsrv.exe
2006-12-15 02:25 161,280 --a------ C:\WINDOWS\system32\msdtcuiu.dll
2006-12-15 02:25 16,896 --a------ C:\WINDOWS\system32\tskill.exe
2006-12-15 02:25 16,384 --a------ C:\WINDOWS\system32\rwinsta.exe
2006-12-15 02:25 16,384 --a------ C:\WINDOWS\system32\avmeter.dll
2006-12-15 02:25 15,872 --a------ C:\WINDOWS\system32\logoff.exe
2006-12-15 02:25 15,872 --a------ C:\WINDOWS\system32\cdmodem.dll
2006-12-15 02:25 15,360 --a------ C:\WINDOWS\system32\tscon.exe
2006-12-15 02:25 15,360 --a------ C:\WINDOWS\system32\shadow.exe
2006-12-15 02:25 147,968 --a------ C:\WINDOWS\system32\rdchost.dll
2006-12-15 02:25 147,456 --a------ C:\WINDOWS\system32\comsnap.dll
2006-12-15 02:25 142,336 --a------ C:\WINDOWS\system32\sessmgr.exe
2006-12-15 02:25 14,848 --a------ C:\WINDOWS\system32\tsdiscon.exe
2006-12-15 02:25 139,528 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys
2006-12-15 02:25 139,264 --a------ C:\WINDOWS\system32\sndvol32.exe
2006-12-15 02:25 133,120 --a------ C:\WINDOWS\system32\sndrec32.exe
2006-12-15 02:25 13,824 --a------ C:\WINDOWS\system32\rdsaddin.exe
2006-12-15 02:25 128,000 --a------ C:\WINDOWS\system32\mshearts.exe
2006-12-15 02:25 125,720 --a------ C:\WINDOWS\system32\wuauclt.exe
2006-12-15 02:25 124,928 --a------ C:\WINDOWS\system32\mplay32.exe
2006-12-15 02:25 12,040 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys
2006-12-15 02:25 119,808 --a------ C:\WINDOWS\system32\winmine.exe
2006-12-15 02:25 115,200 --a------ C:\WINDOWS\system32\calc.exe
2006-12-15 02:25 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll
2006-12-15 02:25 11,776 --a------ C:\WINDOWS\system32\xolehlp.dll
2006-12-15 02:25 11,264 --a------ C:\WINDOWS\system32\icaapi.dll
2006-12-15 02:25 104,448 --a------ C:\WINDOWS\system32\clipbrd.exe
2006-12-15 02:25 10,240 --a------ C:\WINDOWS\system32\reset.exe
2006-12-15 02:25 1,343,768 --a------ C:\WINDOWS\system32\wuaueng.dll
2006-12-15 02:25 1,263 --a------ C:\WINDOWS\system32\usrlogon.cmd
2006-12-15 02:25 <REP> d--h----- C:\Program Files\WindowsUpdate
2006-12-15 02:25 <REP> d-------- C:\WINDOWS\system32\MsDtc
2006-12-15 02:25 <REP> d-------- C:\WINDOWS\system32\Com
2006-12-15 02:25 <REP> d-------- C:\WINDOWS\Registration
2006-12-15 02:25 <REP> d-------- C:\Program Files\Windows NT
2006-12-15 02:25 <REP> d-------- C:\Program Files\Windows Media Player
2006-12-15 02:25 <REP> d-------- C:\Program Files\Services en ligne
2006-12-15 02:25 <REP> d-------- C:\Program Files\MSN Gaming Zone
2006-12-15 02:25 <REP> d-------- C:\Program Files\MSN
2006-12-15 02:25 <REP> d-------- C:\Program Files\Messenger
2006-12-15 02:25 <REP> d-------- C:\Program Files\ComPlus Applications
2006-12-15 02:24 40,840 --a------ C:\WINDOWS\system32\drivers\termdd.sys
2006-12-15 02:24 196,864 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys
2006-12-15 02:17 82,944 --a------ C:\WINDOWS\system32\drivers\wdmaud.sys
2006-12-15 02:17 7,552 --a------ C:\WINDOWS\system32\drivers\mskssrv.sys
2006-12-15 02:17 60,800 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys
2006-12-15 02:17 6,400 --a------ C:\WINDOWS\system32\drivers\splitter.sys
2006-12-15 02:17 58,496 --a------ C:\WINDOWS\system32\drivers\redbook.sys
2006-12-15 02:17 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys
2006-12-15 02:17 52,864 --a------ C:\WINDOWS\system32\drivers\dmusic.sys
2006-12-15 02:17 5,376 --a------ C:\WINDOWS\system32\drivers\mspclock.sys
2006-12-15 02:17 4,992 --a------ C:\WINDOWS\system32\drivers\mspqm.sys
2006-12-15 02:17 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys
2006-12-15 02:17 21,504 --a------ C:\WINDOWS\system32\hidserv.dll
2006-12-15 02:17 2,944 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys
2006-12-15 02:17 172,416 --a------ C:\WINDOWS\system32\drivers\kmixer.sys
2006-12-15 02:17 142,464 --a------ C:\WINDOWS\system32\drivers\aec.sys
2006-12-15 02:16 77,312 --a------ C:\WINDOWS\system32\usbui.dll
2006-12-15 02:16 6,400 --a------ C:\WINDOWS\system32\drivers\enum1394.sys
2006-12-15 02:16 27,165 --a------ C:\WINDOWS\system32\drivers\fetnd5.sys
2006-12-15 02:16 2,944 --a------ C:\WINDOWS\system32\drivers\msmpu401.sys
2006-12-15 02:16 10,624 --a------ C:\WINDOWS\system32\drivers\gameenum.sys
2006-12-15 02:08 <REP> dr-hsc--- C:\WINDOWS\system32\dllcache
2006-12-15 02:08 <REP> dr--s---- C:\WINDOWS\Fonts
2006-12-15 02:08 <REP> dr------- C:\WINDOWS\Web
2006-12-15 02:08 <REP> d-ahs---- C:\WINDOWS\..
2006-12-15 02:08 <REP> d--h----- C:\WINDOWS\inf
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\WinSxS
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\twain_32
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\Temp
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\wins
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\wbem
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\usmt
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\spool
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\ShellExt
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\Setup
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\ras
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\oobe
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\npp
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\mui
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\inetsrv
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\IME
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\icsxml
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\ias
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\export
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\drivers\etc
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\drivers\disdn
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\drivers\..
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\drivers\.
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\drivers
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\dhcp
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\config
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\3com_dmi
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\3076
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\2052
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\1054
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\1042
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\1041
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\1037
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\1036
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\1033
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\1031
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\1028
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\1025
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\..
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32\.
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system32
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system\..
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system\.
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\system
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\security
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\Resources
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\repair
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\mui
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\msapps
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\msagent
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\Media
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\java
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\ime
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\Help
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\Driver Cache
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\Debug
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\Cursors
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\Connection Wizard
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\Config
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\AppPatch
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\addins
2006-12-15 02:08 <REP> d-------- C:\WINDOWS\.
2006-12-15 02:08 <REP> d-------- C:\WINDOWS
2006-12-15 01:12 9,936 --a------ C:\WINDOWS\system\LZEXPAND.DLL
2006-12-15 01:12 9,104 --a------ C:\WINDOWS\system\VER.DLL
2006-12-15 01:12 86,044 --a------ C:\WINDOWS\system32\dgsetup.dll
2006-12-15 01:12 83,456 --a------ C:\WINDOWS\system\OLECLI.DLL
2006-12-15 01:12 8,704 --a------ C:\WINDOWS\system32\batt.dll
2006-12-15 01:12 8,192 -ra------ C:\WINDOWS\system32\kbdhept.dll
2006-12-15 01:12 76,800 --a------ C:\WINDOWS\system32\storprop.dll
2006-12-15 01:12 70,688 --a------ C:\WINDOWS\system\mmsystem.dll
2006-12-15 01:12 70,656 --a------ C:\WINDOWS\notepad.exe
2006-12-15 01:12 70,352 --a------ C:\WINDOWS\system\AVICAP.DLL
2006-12-15 01:12 7,168 -ra------ C:\WINDOWS\system32\kbdcz.dll
2006-12-15 01:12 6,656 -ra------ C:\WINDOWS\system32\kbdycl.dll
2006-12-15 01:12 6,656 -ra------ C:\WINDOWS\system32\kbdsl1.dll
2006-12-15 01:12 6,656 -ra------ C:\WINDOWS\system32\kbdsl.dll
2006-12-15 01:12 6,656 -ra------ C:\WINDOWS\system32\kbdpl.dll
2006-12-15 01:12 6,656 -ra------ C:\WINDOWS\system32\kbdhu.dll
2006-12-15 01:12 6,656 -ra------ C:\WINDOWS\system32\kbdhela3.dll
2006-12-15 01:12 6,656 -ra------ C:\WINDOWS\system32\kbdcz2.dll
2006-12-15 01:12 6,656 -ra------ C:\WINDOWS\system32\kbdcz1.dll
2006-12-15 01:12 6,656 -ra------ C:\WINDOWS\system32\kbdcr.dll
2006-12-15 01:12 6,656 -ra------ C:\WINDOWS\system32\KBDAL.DLL
2006-12-15 01:12 6,144 -ra------ C:\WINDOWS\system32\kbdtuq.dll
2006-12-15 01:12 6,144 -ra------ C:\WINDOWS\system32\kbdtuf.dll
2006-12-15 01:12 6,144 -ra------ C:\WINDOWS\system32\kbdlv1.dll
2006-12-15 01:12 6,144 -ra------ C:\WINDOWS\system32\kbdlv.dll
2006-12-15 01:12 6,144 -ra------ C:\WINDOWS\system32\kbdhela2.dll
2006-12-15 01:12 6,144 -ra------ C:\WINDOWS\system32\kbdgkl.dll
2006-12-15 01:12 6,144 -ra------ C:\WINDOWS\system32\kbdest.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdycc.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbduzb.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdur.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdtat.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdru1.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdru.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdro.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdpl1.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdmon.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdlt1.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdlt.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdkyr.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdkaz.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdhu1.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdhe319.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdhe220.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdhe.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdbu.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdblr.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdazel.dll
2006-12-15 01:12 5,632 -ra------ C:\WINDOWS\system32\kbdaze.dll
2006-12-15 01:12 5,120 --a------ C:\WINDOWS\system\SHELL.DLL
2006-12-15 01:12 33,904 --a------ C:\WINDOWS\system\COMMDLG.DLL
2006-12-15 01:12 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll
2006-12-15 01:12 24,064 --a------ C:\WINDOWS\system\OLESVR.DLL
2006-12-15 01:12 19,200 --a------ C:\WINDOWS\system\TAPI.DLL
2006-12-15 01:12 176,157 --a------ C:\WINDOWS\system32\dgrpsetu.dll
2006-12-15 01:12 15,872 --a------ C:\WINDOWS\TASKMAN.EXE
2006-12-15 01:12 13,312 --a------ C:\WINDOWS\system32\irclass.dll
2006-12-15 01:12 127,168 --a------ C:\WINDOWS\system\MSVIDEO.DLL
2006-12-15 01:12 11,264 --a------ C:\WINDOWS\system32\drivers\irenum.sys
2006-12-15 01:12 109,568 --a------ C:\WINDOWS\system\AVIFILE.DLL
2006-12-15 01:12 103,424 --a------ C:\WINDOWS\system32\EqnClass.Dll
2006-12-15 01:12 <REP> dr-h----- C:\Documents and Settings\All Users\Application Data\.
2006-12-15 01:12 <REP> dr-h----- C:\Documents and Settings\All Users\Application Data
2006-12-15 01:12 <REP> dr------- C:\Documents and Settings\All Users\Menu D‚marrer
2006-12-15 01:12 <REP> dr------- C:\Documents and Settings\All Users\Documents
2006-12-15 01:12 <REP> d-ahs---- C:\Program Files\..
2006-12-15 01:12 <REP> d-a------ C:\Program Files\Fichiers communs\..
2006-12-15 01:12 <REP> d-a------ C:\Program Files\.
2006-12-15 01:12 <REP> d-a------ C:\Program Files
2006-12-15 01:12 <REP> d--h----- C:\Documents and Settings\All Users\ModŠles
2006-12-15 01:12 <REP> d---s---- C:\Documents and Settings\All Users\Application Data\Microsoft
2006-12-15 01:12 <REP> d-------- C:\WINDOWS\system32\CatRoot2
2006-12-15 01:12 <REP> d-------- C:\WINDOWS\system32\CatRoot
2006-12-15 01:12 <REP> d-------- C:\Program Files\Fichiers communs\SpeechEngines
2006-12-15 01:12 <REP> d-------- C:\Program Files\Fichiers communs\ODBC
2006-12-15 01:12 <REP> d-------- C:\Program Files\Fichiers communs\Microsoft Shared
2006-12-15 01:12 <REP> d-------- C:\Program Files\Fichiers communs\.
2006-12-15 01:12 <REP> d-------- C:\Program Files\Fichiers communs
2006-12-15 01:12 <REP> d-------- C:\Documents and Settings\All Users\Favoris
2006-12-15 01:12 <REP> d-------- C:\Documents and Settings\All Users\Bureau
2006-12-15 01:12 <REP> d-------- C:\Documents and Settings\All Users\Application Data\..
2006-12-15 01:11 <REP> d-------- C:\Documents and Settings\All Users\..
2006-12-15 01:11 <REP> d-------- C:\Documents and Settings\All Users\.
2006-12-15 01:11 <REP> d-------- C:\Documents and Settings


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))




(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"Configuration de la C-BOX"="C:\\Program Files\\Cegetel\\C-BOX\\Wizard\\QuickAccess.exe"
"Udot"="\"C:\\WINDOWS\\SSTEM~1\\attrib.exe\" -vt yazb"
"Oqdomqn"="C:\\WINDOWS\\?racle\\m?iexec.exe"
"SuperCopier2.exe"="C:\\Program Files\\SuperCopier2\\SuperCopier2.exe"
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
"Steam"="\"d:\\program files\\steam\\steam.exe\" -silent"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"Cmaudio"="RunDll32 cmicnfg.cpl,CMICtrlWnd"
"EPSON Stylus DX6000 Series"="C:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\E_FATIBIE.EXE /FU \"C:\\WINDOWS\\TEMP\\E_S91.tmp\" /EF \"HKLM\""
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"CHotkey"="mHotkey.exe"
"PCMService"="\"C:\\Program Files\\Home Cinema\\PowerCinema\\PCMService.exe\""
"mmtask"="c:\\Program Files\\MusicMatch\\MusicMatch Jukebox\\mmtask.exe"
"IntelliPoint"="\"C:\\Program Files\\Microsoft IntelliPoint\\ipoint.exe\""
"{448B1B96-081B-1036-0427-040310140021}"="\"C:\\Program Files\\Fichiers communs\\{448B1B96-081B-1036-0427-040310140021}\\Update.exe\" mc-110-12-0000272"
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"NoChange"="1"
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000000

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

Completion time: 06-12-21 7:54:56.93
C:\ComboFix.txt ... 06-12-21 07:54

Angeldark
Profil : Helper
Plus d'informations
n°130910
21-12-2006 à 16:12:41

Reposte un rapport Hijackthis stp.


---------------
Prévention & Protection|Les logiciels gratuits|L'homme du FLCCF
poulous
Profil : IDNaute
Plus d'informations
n°130951
21-12-2006 à 19:09:17

:hello: que voiçi que voila.

Logfile of HijackThis v1.99.1
Scan saved at 19:06:36, on 21/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\mHotkey.exe
C:\Program Files\Home Cinema\PowerCinema\PCMService.exe
C:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\Program Files\SpeedFan\speedfan.exe
C:\Documents and Settings\J-PAUL\Bureau\hijackthis\scanner.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {D3819209-73E9-0734-CA1B-02E52D1B14E0} - C:\WINDOWS\system32\csoibmkc.dll (file missing)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1DC94D1E-F311-4488-9A4A-04DD12A81CAE} - C:\WINDOWS\system32\gebcy.dll (file missing)
O2 - BHO: (no name) - {3FD6B99C-A275-46ea-8FD1-3D63986E51E4} - C:\WINDOWS\system32\vybihonb.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {DD73AD9A-FBFF-4D4D-BFB1-A83E5273F2ED} - C:\WINDOWS\system32\ddaya.dll (file missing)
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [EPSON Stylus DX6000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBIE.EXE /FU "C:\WINDOWS\TEMP\E_S91.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Home Cinema\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [{448B1B96-081B-1036-0427-040310140021}] "C:\Program Files\Fichiers communs\{448B1B96-081B-1036-0427-040310140021}\Update.exe" mc-110-12-0000272
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Configuration de la C-BOX] C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe
O4 - HKCU\..\Run: [Udot] "C:\WINDOWS\SSTEM~1\attrib.exe" -vt yazb
O4 - HKCU\..\Run: [Oqdomqn] C:\WINDOWS\?racle\m?iexec.exe
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Steam] "d:\program files\steam\steam.exe" -silent
O4 - Startup: SpeedFan.lnk = C:\Program Files\SpeedFan\speedfan.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/micros [...] 6176978890
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/p [...] wflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: COM+ Messages - Unknown owner - C:\WINDOWS\system32\svchosts.exe" -e mc-110-12-0000272 (file missing)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

Angeldark
Profil : Helper
Plus d'informations
n°130955
21-12-2006 à 19:28:28

Re,

- Lance Hijackthis ->Do a system scan only
->Coche les lignes ci-dessous :

R3 - URLSearchHook: (no name) - {D3819209-73E9-0734-CA1B-02E52D1B14E0} - C:\WINDOWS\system32\csoibmkc.dll (file missing)
O2 - BHO: (no name) - {1DC94D1E-F311-4488-9A4A-04DD12A81CAE} - C:\WINDOWS\system32\gebcy.dll (file missing)
O2 - BHO: (no name) - {3FD6B99C-A275-46ea-8FD1-3D63986E51E4} - C:\WINDOWS\system32\vybihonb.dll
O2 - BHO: (no name) - {DD73AD9A-FBFF-4D4D-BFB1-A83E5273F2ED} - C:\WINDOWS\system32\ddaya.dll (file missing)
O4 - HKCU\..\Run: [Udot] "C:\WINDOWS\SSTEM~1\attrib.exe" -vt yazb
O4 - HKCU\..\Run: [Oqdomqn] C:\WINDOWS\?racle\m?iexec.exe

Clique sur Fix checked (en bas à gauche)

Télécharge KillBox d'Option^Explicit.

Dézippe le dans un dossier ou sur ton bureau (Clique droit puis Extraire Tout).
Selectionne le texte dans le cadre :

Citation :

C:\WINDOWS\system32\vybihonb.dll
C:\WINDOWS\system32\xxyvwuu.dll
C:\WINDOWS\system32\eiygcqrs.dll
C:\Documents and Settings\J-PAUL\Application Data\DriveCleaner 2006 Free
C:\Program Files\Fichiers communs\DriveCleaner 2006 Free
C:\WINDOWS\system32\wpaxrspm.exe
C:\WINDOWS\system32\ihnqtjvs.dll
C:\WINDOWS\system32\ycbeg.bak1



---> Clique Droit puis Copier.
----------

--