virus sur msn (Résolu)

Bonjour !?
Merci ?!

- Télécharge Hijackthis (de Merjin).
- Dézippe le dans un dossier ou sur ton bureau.

- Lance l'application.
- Choisis l'option "Do a system scan and save a logfile"
-- Le Bloc-Notes s'ouvre :
-> Edition / Sélectionner Tout
-> Edition / Copier
- Colle le rapport ici.

AIDE : Tuto sur Hijackthis (Malekal)

OK DONC VOILA !

Logfile of HijackThis v1.99.1
Scan saved at 17:28:45, on 29/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchosts.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\icpldrvx.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040021}\Update.exe
C:\Program Files\Ipwindows\ipwins.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\system32\nfomon\nfomon.exe
C:\WINDOWS\system32\vidmon\vidmon.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp2std.exe
C:\WINDOWS\vsnp2std.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Mr D\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: Bar888 - {C1B4DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\FICHIE~1\{30B3F~1\Bar888.dll
O2 - BHO: PEDEV_IEListener Class - {E1412445-4FF8-410e-8D24-F2CF86B171A4} - C:\Program Files\PeDevice\PeDev.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O3 - Toolbar: Bar888 - {C1B4DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\FICHIE~1\{30B3F~1\Bar888.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [Avg Antivirus] C:\WINDOWS\system32\icpldrvx.exe
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [SmartSync - ScheduleSync] C:\PROGRA~1\MOBILE~1\SMARTS~1\SCHEDU~1.EXE
O4 - HKLM\..\Run: [{30B3F81A-07D0-1036-0909-040512040021}] "C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040021}\Update.exe" mc-110-12-0000137
O4 - HKLM\..\Run: [IpWins] C:\Program Files\Ipwindows\ipwins.exe
O4 - HKLM\..\Run: [Nfo] C:\WINDOWS\system32\nfomon\nfomon.exe
O4 - HKLM\..\Run: [vidmon] C:\WINDOWS\system32\vidmon\vidmon.exe
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [FreeBrowser] C:\Program Files\FreeBrowser\FreeBrowser\FreeBrowser.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\Msmsgs.exe" /background
O4 - Global Startup: aMSN Messenger.lnk = C:\Program Files\amsn\amsn.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: COM+ Messages - Unknown owner - C:\WINDOWS\system32\svchosts.exe" -e mc-110-12-0000137 (file missing)
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe

Re,

Télécharge combofix.exe (par sUBs) sur ton Bureau

Double clique combofix.exe.

Tape sur la touche Y (Yes) pour démarrer le scan.

Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

VOILA !

Mr D - 06-12-29 17:43:29,79 Service Pack 2
ComboFix 06.11.27 - Running from: "C:\Documents and Settings\Mr D\Bureau"

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\bszip.dll
C:\WINDOWS\system32\cmd.com
C:\WINDOWS\system32\netstat.com
C:\WINDOWS\system32\ping.com
C:\WINDOWS\system32\regedit.com
C:\WINDOWS\system32\taskkill.com
C:\WINDOWS\system32\tasklist.com
C:\WINDOWS\system32\tracert.com
C:\Program Files\Fichiers communs\Yazzle1122OinAdmin.exe
C:\Program Files\Fichiers communs\Yazzle1122OinUninstaller.exe
C:\Program Files\Inetget2
C:\Program Files\outlook
C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040021}

~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

Folders Quarantined:

C:\QooBox\Purity\Documents and Settings\Mr D\Application Data\SMBOLS~1


((((((((((((((((((((((((((((((( Files Created from 2006-11-29 to 2006-12-29 ))))))))))))))))))))))))))))))))))


2006-12-29 17:48 <REP> d-------- C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040001}
2006-12-29 12:02 61,440 --a------ C:\WINDOWS\vsnp2std.dll
2006-12-29 12:02 53,248 --a------ C:\WINDOWS\system32\csnp2std.dll
2006-12-29 12:02 349,472 --a------ C:\WINDOWS\WindowsXP-KB822603-x86.exe
2006-12-29 12:02 344,064 --a------ C:\WINDOWS\vsnp2std.exe
2006-12-29 12:02 24,960 --a------ C:\WINDOWS\system32\drivers\sncamd.sys
2006-12-29 12:02 20,480 --a------ C:\WINDOWS\FixCamera.exe
2006-12-29 12:02 147,456 --a------ C:\WINDOWS\rsnp2std.dll
2006-12-29 12:02 110,592 --a------ C:\WINDOWS\tsnp2std.exe
2006-12-29 12:02 10,219,904 --a------ C:\WINDOWS\system32\drivers\snp2sxp.sys
2006-12-29 12:02 <REP> d-------- C:\Program Files\Fichiers communs\snp2std
2006-12-28 20:17 <REP> d--h----- C:\WINDOWS\PIF
2006-12-28 18:31 <REP> d-------- C:\Program Files\Azureus
2006-12-28 18:29 <REP> d-------- C:\Program Files\BitComet
2006-12-28 17:59 <REP> d-------- C:\Program Files\Fichiers communs\Adobe Systems Shared
2006-12-28 17:20 <REP> d-------- C:\Program Files\MSN Messenger
2006-12-28 16:44 2 --a------ C:\WINDOWS\system32\wnstssv.exe
2006-12-28 13:08 <REP> d--h----- C:\WINDOWS\system32\vidmon
2006-12-28 13:08 <REP> d--h----- C:\WINDOWS\system32\nfomon
2006-12-28 13:08 <REP> d--h----- C:\Program Files\Fichiers communs\Uninstall Information
2006-12-28 13:08 <REP> d--h----- C:\Documents and Settings\All Users\Application Data\vidmon
2006-12-28 13:08 <REP> d--h----- C:\Documents and Settings\All Users\Application Data\nfo
2006-12-28 12:52 <REP> d-------- C:\Program Files\PeDevice
2006-12-28 12:37 <REP> d-------- C:\Program Files\Ipwindows
2006-12-28 12:35 93,509 --a------ C:\Documents and Settings\Mr D\install.exe
2006-12-28 12:35 36,864 --a------ C:\WINDOWS\system32\svchosts.exe
2006-12-27 19:38 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Macrovision
2006-12-27 19:26 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\XCPCSync.OEM
2006-12-27 19:22 89,360 --a------ C:\WINDOWS\system32\VB5DB.DLL
2006-12-27 19:20 <REP> d-------- C:\Program Files\Mobile Phone Manager
2006-12-27 19:20 <REP> d-------- C:\Program Files\Fichiers communs\XCPCSync.OEM
2006-12-27 17:34 <REP> d-------- C:\WINDOWS\Sun
2006-12-27 17:31 208,896 --------- C:\WINDOWS\alcupd.exe
2006-12-27 17:31 139,264 --------- C:\WINDOWS\alcrmv.exe
2006-12-27 14:24 86,016 --a------ C:\WINDOWS\system32\lvcoinst.dll
2006-12-27 14:24 57,344 --a------ C:\WINDOWS\system32\LVComC.dll
2006-12-27 14:24 360,448 --a------ C:\WINDOWS\system32\LVUI2RC.dll
2006-12-27 14:24 172,032 --a------ C:\WINDOWS\system32\lvcodec2.dll
2006-12-27 14:24 152,576 --a------ C:\WINDOWS\system32\drivers\LV532AV.SYS
2006-12-27 14:24 135,214 --a------ C:\WINDOWS\system32\LVComS.exe
2006-12-27 14:24 122,880 --a------ C:\WINDOWS\system32\LVUI2.dll
2006-12-27 14:24 12,112 --a------ C:\WINDOWS\system32\drivers\LVUSBSta.sys
2006-12-27 14:24 <REP> d-------- C:\Program Files\Real
2006-12-27 14:24 <REP> d-------- C:\Program Files\Fichiers communs\Real
2006-12-27 14:24 <REP> d-------- C:\Program Files\directx
2006-12-27 14:24 <REP> d-------- C:\My Music
2006-12-27 14:23 308,224 --a------ C:\WINDOWS\IsUn040c.exe
2006-12-27 14:23 <REP> d-------- C:\Program Files\Labtec
2006-12-26 13:11 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2006-12-25 17:55 <REP> d-------- C:\Program Files\MGTEK
2006-12-25 17:54 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2006-12-25 10:57 <REP> d-------- C:\Program Files\Mio Technology
2006-12-25 10:44 104,576 -ra------ C:\WINDOWS\system32\drivers\wceusbsh.sys
2006-12-24 14:16 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\Sun
2006-12-23 09:21 <REP> d--hs---- C:\Documents and Settings\Mr D\Complete
2006-12-23 07:59 <REP> d-------- C:\Documents and Settings\Mr D\amsn
2006-12-23 07:58 <REP> d-------- C:\Program Files\amsn
2006-12-23 07:54 <REP> d-------- C:\Program Files\Google
2006-12-23 07:32 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\FlashFXP
2006-12-22 19:50 <REP> d-------- C:\Documents and Settings\Mr D\Incomplete
2006-12-22 14:29 <REP> d-------- C:\WINDOWS\system32\appmgmt
2006-12-22 14:03 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\vlc
2006-12-22 00:09 <REP> d-------- C:\Program Files\VideoLAN
2006-12-22 00:01 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll
2006-12-22 00:01 <REP> d-------- C:\WINDOWS\system32\DirectX
2006-12-22 00:01 <REP> d-------- C:\Program Files\Microsoft Etudes
2006-12-22 00:01 <REP> d-------- C:\Program Files\Learning Essentials
2006-12-21 21:54 26,496 --a------ C:\WINDOWS\system32\drivers\USBSTOR.SYS
2006-12-19 13:57 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\AdobeUM
2006-12-18 15:10 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\Azureus
2006-12-18 11:26 <REP> d-------- C:\Program Files\WinRAR
2006-12-18 10:34 <REP> d-------- C:\Program Files\Everest Poker
2006-12-17 17:51 <REP> d--hs---- C:\RECYCLER
2006-12-17 17:30 <REP> d-------- C:\Program Files\Fichiers communs\Macromedia Shared
2006-12-17 17:18 <REP> d-------- C:\WINDOWS\system32\updatelinkmsn
2006-12-17 17:16 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Macromedia
2006-12-17 17:15 <REP> d-------- C:\WINDOWS\Downloaded Installations
2006-12-17 17:15 <REP> d-------- C:\Program Files\Macromedia
2006-12-17 17:15 <REP> d-------- C:\Program Files\Fichiers communs\Macromedia
2006-12-17 17:08 <REP> d-------- C:\WINDOWS\system32\openfile
2006-12-17 17:06 1,395,712 --a------ C:\WINDOWS\system32\icpldrvx.exe
2006-12-17 16:01 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\Media Player Classic
2006-12-17 15:43 <REP> d-------- C:\Program Files\Canon
2006-12-17 14:52 17,920 --a------ C:\WINDOWS\system32\mdimon.dll
2006-12-17 14:51 <REP> d-------- C:\Program Files\Fichiers communs\DESIGNER
2006-12-17 14:50 <REP> d-------- C:\WINDOWS\SHELLNEW
2006-12-17 14:50 <REP> d-------- C:\Program Files\Microsoft.NET
2006-12-17 14:47 82,432 -ra------ C:\WINDOWS\system32\MSXML4r.dll
2006-12-17 14:47 626,960 -ra------ C:\WINDOWS\system32\hpvaut32.dll
2006-12-17 14:47 487,424 -ra------ C:\WINDOWS\system32\hpvcp70.dll
2006-12-17 14:47 44,544 -ra------ C:\WINDOWS\system32\MSXML4a.dll
2006-12-17 14:47 344,064 -ra------ C:\WINDOWS\system32\hpvcr70.dll
2006-12-17 14:46 <REP> d-------- C:\Program Files\Hewlett-Packard
2006-12-17 14:45 <REP> d-------- C:\Program Files\HP
2006-12-17 13:37 <REP> d-------- C:\WINDOWS\SxsCaPendDel
2006-12-17 13:36 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\Talkback
2006-12-17 13:36 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\Mozilla
2006-12-17 12:06 85,376 --a------ C:\WINDOWS\system32\drivers\NABTSFEC.sys
2006-12-17 12:06 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys
2006-12-17 12:06 19,328 --a------ C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2006-12-17 12:06 17,024 --a------ C:\WINDOWS\system32\drivers\CCDECODE.sys
2006-12-17 12:06 15,360 --a------ C:\WINDOWS\system32\drivers\StreamIP.sys
2006-12-17 12:06 11,136 --a------ C:\WINDOWS\system32\drivers\SLIP.sys
2006-12-17 12:06 10,880 --a------ C:\WINDOWS\system32\drivers\NdisIP.sys
2006-12-17 12:05 54,784 --a------ C:\WINDOWS\system32\vfwwdm32.dll
2006-12-17 12:04 94,208 --a------ C:\WINDOWS\amcap.exe
2006-12-17 11:49 27,904 --a------ C:\WINDOWS\system32\drivers\VIAAGP1.SYS
2006-12-17 06:01 <REP> d-------- C:\Program Files\ScanSoft
2006-12-17 06:01 <REP> d-------- C:\Program Files\Fichiers communs\ScanSoft Shared
2006-12-17 06:01 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\ScanSoft
2006-12-17 06:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\SSScanWizard
2006-12-17 06:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\SSScanAppDataDir
2006-12-17 05:59 77,312 --a------ C:\WINDOWS\system32\TWAIN_32.DLL
2006-12-17 05:59 212,480 --a------ C:\WINDOWS\system32\PCDLIB32.DLL
2006-12-17 05:59 <REP> d--h----- C:\CanoScan
2006-12-17 05:57 99,328 --a------ C:\WINDOWS\system32\LGUICOM.DLL
2006-12-17 05:57 94,208 --a------ C:\WINDOWS\system32\FEELIT.DLL
2006-12-17 05:57 70,238 --a------ C:\WINDOWS\system32\drivers\LMouFlt2.Sys
2006-12-17 05:57 52,238 --------- C:\WINDOWS\system32\drivers\L8042PR2.SYS
2006-12-17 05:57 41,420 --a------ C:\WINDOWS\system32\drivers\LHidUsb.sys
2006-12-17 05:57 4,524 --------- C:\WINDOWS\system32\LCOINST.DLL
2006-12-17 05:57 322,832 --a------ C:\WINDOWS\system32\MFC30.DLL
2006-12-17 05:57 3,568 --a------ C:\WINDOWS\system32\LMOUSE16.DLL
2006-12-17 05:57 23,838 --a------ C:\WINDOWS\system32\drivers\LHidFlt2.Sys
2006-12-17 05:57 19,968 --------- C:\WINDOWS\LOGI_MWX.EXE
2006-12-17 05:57 16,896 --a------ C:\WINDOWS\system32\LMOUSE32.DLL
2006-12-17 05:57 155,648 --a------ C:\WINDOWS\system32\ifc21.dll
2006-12-17 05:57 152,064 --------- C:\WINDOWS\system32\lmoufrc.dll
2006-12-17 05:57 14,156 --a------ C:\WINDOWS\system32\drivers\LCcfltr.sys
2006-12-17 05:57 12,640 --------- C:\WINDOWS\system32\drivers\itchfltr.sys
2006-12-17 05:57 105,472 --a------ C:\WINDOWS\system32\COMNCTR.DLL
2006-12-17 05:57 <REP> d--h----- C:\Program Files\InstallShield Installation Information
2006-12-17 05:57 <REP> d-------- C:\Program Files\Logitech
2006-12-17 05:57 <REP> d-------- C:\Program Files\Fichiers communs\Logitech
2006-12-17 05:48 82,944 --a------ C:\WINDOWS\system32\drivers\wdmaud.sys
2006-12-17 05:48 765,952 --a------ C:\WINDOWS\system\crlds3d.dll
2006-12-17 05:48 7,552 --a------ C:\WINDOWS\system32\drivers\MSKSSRV.sys
2006-12-17 05:48 7,506,432 --a------ C:\WINDOWS\system32\RTLCPL.EXE
2006-12-17 05:48 67,584 --a------ C:\WINDOWS\SOUNDMAN.EXE
2006-12-17 05:48 65,536 --a------ C:\WINDOWS\system32\Audio3D.dll
2006-12-17 05:48 65,536 --a------ C:\WINDOWS\system32\a3d.dll
2006-12-17 05:48 626,204 --a------ C:\WINDOWS\system32\drivers\ALCXWDM.SYS
2006-12-17 05:48 60,800 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys
2006-12-17 05:48 60,288 --a------ C:\WINDOWS\system32\drivers\drmk.sys
2006-12-17 05:48 6,400 --a------ C:\WINDOWS\system32\drivers\splitter.sys
2006-12-17 05:48 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys
2006-12-17 05:48 52,864 --a------ C:\WINDOWS\system32\drivers\DMusic.sys
2006-12-17 05:48 5,376 --a------ C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2006-12-17 05:48 41,984 -ra------ C:\WINDOWS\system32\drivers\fetnd5b.sys
2006-12-17 05:48 400,384 --a------ C:\WINDOWS\system32\drivers\ALCXSENS.SYS
2006-12-17 05:48 4,992 --a------ C:\WINDOWS\system32\drivers\MSPQM.sys
2006-12-17 05:48 4,096 --a------ C:\WINDOWS\system32\ksuser.dll
2006-12-17 05:48 306,688 --a------ C:\WINDOWS\IsUninst.exe
2006-12-17 05:48 2,944 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys
2006-12-17 05:48 172,416 --a------ C:\WINDOWS\system32\drivers\kmixer.sys
2006-12-17 05:48 155,648 --a------ C:\WINDOWS\system32\RTLCPAPI.dll
2006-12-17 05:48 145,792 --a------ C:\WINDOWS\system32\drivers\portcls.sys
2006-12-17 05:48 142,464 --a------ C:\WINDOWS\system32\drivers\aec.sys
2006-12-17 05:48 <REP> d-------- C:\WINDOWS\system32\ReinstallBackups
2006-12-17 05:48 <REP> d-------- C:\Documents and Settings\Mr D\WINDOWS
2006-12-17 05:46 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\Adobe
2006-12-17 05:44 <REP> d-------- C:\Program Files\SJLabs
2006-12-17 05:44 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2006-12-17 05:43 568,850 --a------ C:\WINDOWS\system32\x264vfw.dll
2006-12-17 05:43 286,720 --a------ C:\WINDOWS\system32\3ivxVfWCodec.dll
2006-12-17 05:43 1,024,000 --a------ C:\WINDOWS\system32\3ivx.dll
2006-12-17 05:43 <REP> d-------- C:\Program Files\Gabest
2006-12-17 05:42 90,112 --a------ C:\WINDOWS\system32\dpl100.dll
2006-12-17 05:42 856,064 --a------ C:\WINDOWS\system32\xvidcore.dll
2006-12-17 05:42 619,156 --a------ C:\WINDOWS\system32\divx.dll
2006-12-17 05:42 5,120 --a------ C:\WINDOWS\system32\ff_vfw.dll
2006-12-17 05:42 3,596,288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2006-12-17 05:42 217,088 --a------ C:\WINDOWS\system32\xvidvfw.dll
2006-12-17 05:42 200,704 --a------ C:\WINDOWS\system32\ssldivx.dll
2006-12-17 05:42 200,704 --a------ C:\WINDOWS\system32\dtu100.dll
2006-12-17 05:42 1,044,480 --a------ C:\WINDOWS\system32\libdivx.dll
2006-12-17 05:42 <REP> d-------- C:\Program Files\K-Lite Codec Pack
2006-12-17 05:42 <REP> d-------- C:\Program Files\iTunes
2006-12-17 05:42 <REP> d-------- C:\Program Files\iPod
2006-12-17 05:42 <REP> d-------- C:\Documents and Settings\Mr D\Contacts
2006-12-17 05:42 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\Apple Computer
2006-12-17 05:41 <REP> d-------- C:\Program Files\QuickTime
2006-12-17 05:41 <REP> d-------- C:\Program Files\Apple Software Update
2006-12-17 05:41 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer
2006-12-17 05:40 <REP> d----c--- C:\WINDOWS\system32\DRVSTORE
2006-12-17 05:39 <REP> d-------- C:\Program Files\FlashFXP
2006-12-17 05:38 <REP> d-------- C:\Program Files\Mozilla Firefox
2006-12-17 05:36 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\Ahead
2006-12-17 05:35 <REP> d-------- C:\Program Files\Nero
2006-12-17 05:35 <REP> d-------- C:\Program Files\Fichiers communs\Ahead
2006-12-17 05:30 <REP> d-------- C:\WINDOWS\system32\SoftwareDistribution
2006-12-17 05:26 <REP> d--h----- C:\Program Files\Uninstall Information
2006-12-17 05:26 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\Identities
2006-12-17 05:25 <REP> d-------- C:\Program Files\Java
2006-12-17 05:25 <REP> d-------- C:\Program Files\Fichiers communs\Java
2006-12-17 05:25 <REP> d-------- C:\Program Files\Fichiers communs\InstallShield
2006-12-17 05:25 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\Macromedia
2006-12-17 05:24 <REP> d-------- C:\Program Files\Fichiers communs\Adobe
2006-12-17 05:24 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Adobe
2006-12-17 05:23 <REP> d-------- C:\Program Files\Photo Story 3 for Windows
2006-12-17 05:23 <REP> d-------- C:\Program Files\Messenger
2006-12-17 05:23 <REP> d-------- C:\Program Files\Adobe
2006-12-17 05:22 <REP> d--h----- C:\WINDOWS\msdownld.tmp
2006-12-17 05:22 <REP> d-------- C:\WINDOWS\system32\windows media
2006-12-17 05:22 <REP> d-------- C:\Program Files\WMV9_VCM
2006-12-17 05:22 <REP> d-------- C:\Program Files\Windows Media Components
2006-12-17 05:21 <REP> d-------- C:\Program Files\Windows Journal Viewer
2006-12-17 05:21 <REP> d-------- C:\Program Files\Microsoft Office
2006-12-17 05:20 <REP> d-------- C:\WINDOWS\system32\URTTEMP
2006-12-17 05:18 <REP> dr--s---- C:\WINDOWS\assembly
2006-12-17 05:17 <REP> d-------- C:\WINDOWS\Microsoft.NET
2006-12-17 05:16 890,987 --a------ C:\WINDOWS\system32\Axialis Aurora.scr
2006-12-17 05:16 86,016 --a------ C:\WINDOWS\system32\Sherlock.exe
2006-12-17 05:16 851,959 --a------ C:\WINDOWS\system32\X64.scr
2006-12-17 05:16 773,120 --a------ C:\WINDOWS\system32\Vista Bubbles.scr
2006-12-17 05:16 749,568 --a------ C:\WINDOWS\system32\Extinction.exe
2006-12-17 05:16 692,224 --a------ C:\WINDOWS\system32\ReallySlick_Skyrocket_v1.scr
2006-12-17 05:16 596,450 --a------ C:\WINDOWS\system32\The Summoning.scr
2006-12-17 05:16 532,480 --a------ C:\WINDOWS\system32\ReallySlick Hyperspace.scr
2006-12-17 05:16 53,248 --a------ C:\WINDOWS\system32\SMPSeesaw.exe
2006-12-17 05:16 507,904 --a------ C:\WINDOWS\system32\Nostalgic.scr
2006-12-17 05:16 483,328 --a------ C:\WINDOWS\system32\ReallySlick Helios.scr
2006-12-17 05:16 450,560 --a------ C:\WINDOWS\system32\ReallySlick Euphoria.scr
2006-12-17 05:16 439,149 --a------ C:\WINDOWS\system32\Tunnel-B12.scr
2006-12-17 05:16 433,152 --a------ C:\WINDOWS\system32\ParticleFountain.scr
2006-12-17 05:16 37,376 --a------ C:\WINDOWS\system32\faview.exe
2006-12-17 05:16 352,256 --a------ C:\WINDOWS\system32\autoruns.exe
2006-12-17 05:16 35,840 --a------ C:\WINDOWS\system32\wul.exe
2006-12-17 05:16 33,280 --a------ C:\WINDOWS\system32\shman.exe
2006-12-17 05:16 3,271,168 --a------ C:\WINDOWS\system32\Pernille.scr
2006-12-17 05:16 28,672 --a------ C:\WINDOWS\system32\jrview.exe
2006-12-17 05:16 274,432 --a------ C:\WINDOWS\system32\ReallySlick Cyclone.scr
2006-12-17 05:16 249,856 --a------ C:\WINDOWS\system32\ReallySlick Flocks.scr
2006-12-17 05:16 245,760 --a------ C:\WINDOWS\system32\ReallySlick Flux.scr
2006-12-17 05:16 237,568 --a------ C:\WINDOWS\system32\ReallySlick Solar Winds.scr
2006-12-17 05:16 237,568 --a------ C:\WINDOWS\system32\ReallySlick Field Lines.scr
2006-12-17 05:16 229,376 --a------ C:\WINDOWS\system32\ReallySlick Plasma.scr
2006-12-17 05:16 155,648 --a------ C:\WINDOWS\system32\Tunnel.scr
2006-12-17 05:16 120,947 --a------ C:\WINDOWS\system32\FlushCode.exe
2006-12-17 05:16 120,832 --a------ C:\WINDOWS\system32\TweakUi.exe
2006-12-17 05:16 119,568 --a------ C:\WINDOWS\system32\VB6FR.DLL
2006-12-17 05:16 118,845 --a------ C:\WINDOWS\system32\Flurry.scr
2006-12-17 05:16 101,888 --a------ C:\WINDOWS\system32\VB6STKIT.DLL
2006-12-17 05:16 1,626,112 --a------ C:\WINDOWS\system32\3D Windows XP.scr
2006-12-17 05:16 1,263,616 --a------ C:\WINDOWS\system32\Vista Aurora.scr
2006-12-17 05:15 <REP> dr-h----- C:\Documents and Settings\Mr D\SendTo
2006-12-17 05:15 <REP> dr-h----- C:\Documents and Settings\Mr D\Recent
2006-12-17 05:15 <REP> dr-h----- C:\Documents and Settings\Mr D\Application Data\.
2006-12-17 05:15 <REP> dr-h----- C:\Documents and Settings\Mr D\Application Data
2006-12-17 05:15 <REP> dr------- C:\Documents and Settings\Mr D\Menu D‚marrer
2006-12-17 05:15 <REP> d-a------ C:\Documents and Settings\Mr D\Mes documents
2006-12-17 05:15 <REP> d-a------ C:\Documents and Settings\Mr D\Favoris
2006-12-17 05:15 <REP> d--h----- C:\Documents and Settings\Mr D\Voisinage r‚seau
2006-12-17 05:15 <REP> d--h----- C:\Documents and Settings\Mr D\Voisinage d'impression
2006-12-17 05:15 <REP> d--h----- C:\Documents and Settings\Mr D\ModŠles
2006-12-17 05:15 <REP> d--h----- C:\Documents and Settings\Mr D\Local Settings
2006-12-17 05:15 <REP> d---s---- C:\Documents and Settings\Mr D\Cookies
2006-12-17 05:15 <REP> d---s---- C:\Documents and Settings\Mr D\Application Data\Microsoft
2006-12-17 05:15 <REP> d-------- C:\Program Files\UTILS
2006-12-17 05:15 <REP> d-------- C:\Program Files\JEUX
2006-12-17 05:15 <REP> d-------- C:\Documents and Settings\Mr D\Bureau
2006-12-17 05:15 <REP> d-------- C:\Documents and Settings\Mr D\Application Data\..
2006-12-17 05:15 <REP> d-------- C:\Documents and Settings\Mr D\..
2006-12-17 05:15 <REP> d-------- C:\Documents and Settings\Mr D\.
2006-12-16 21:55 <REP> d---s---- C:\WINDOWS\system32\Microsoft
2006-12-16 21:55 <REP> d-------- C:\WINDOWS\SoftwareDistribution
2006-12-16 21:55 <REP> d-------- C:\WINDOWS\Prefetch
2006-12-16 21:53 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys
2006-12-16 21:53 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2006-12-16 21:53 21,504 --a------ C:\WINDOWS\system32\hidserv.dll
2006-12-16 21:52 58,496 --a------ C:\WINDOWS\system32\drivers\redbook.sys
2006-12-16 21:52 44,672 --a------ C:\WINDOWS\system32\drivers\UAGP35.SYS
2006-12-16 21:52 4,274,816 --------- C:\WINDOWS\system32\nv4_disp.dll
2006-12-16 21:52 27,165 --a------ C:\WINDOWS\system32\drivers\fetnd5.sys
2006-12-16 21:52 2,459,968 --------- C:\WINDOWS\system32\drivers\nv4_mini.sys
2006-12-16 21:51 77,312 --a------ C:\WINDOWS\system32\usbui.dll
2006-12-16 21:51 <REP> d-------- C:\WINDOWS\system32\xircom
2006-12-16 21:51 <REP> d-------- C:\Program Files\xerox
2006-12-16 21:51 <REP> d-------- C:\Program Files\microsoft frontpage
2006-12-16 21:50 9,936 --a------ C:\WINDOWS\system\LZEXPAND.DLL
2006-12-16 21:50 9,104 --a------ C:\WINDOWS\system\VER.DLL
2006-12-16 21:50 86,044 --a------ C:\WINDOWS\system32\dgsetup.dll
2006-12-16 21:50 83,456 --a------ C:\WINDOWS\system\OLECLI.DLL
2006-12-16 21:50 8,704 --a------ C:\WINDOWS\system32\batt.dll
2006-12-16 21:50 8,192 -ra------ C:\WINDOWS\system32\kbdhept.dll
2006-12-16 21:50 76,800 --a------ C:\WINDOWS\system32\storprop.dll
2006-12-16 21:50 70,688 --a------ C:\WINDOWS\system\MMSYSTEM.DLL
2006-12-16 21:50 70,352 --a------ C:\WINDOWS\system\AVICAP.DLL
2006-12-16 21:50 7,168 -ra------ C:\WINDOWS\system32\kbdcz.dll
2006-12-16 21:50 6,656 -ra------ C:\WINDOWS\system32\kbdycl.dll
2006-12-16 21:50 6,656 -ra------ C:\WINDOWS\system32\kbdsl1.dll
2006-12-16 21:50 6,656 -ra------ C:\WINDOWS\system32\kbdsl.dll
2006-12-16 21:50 6,656 -ra------ C:\WINDOWS\system32\kbdpl.dll
2006-12-16 21:50 6,656 -ra------ C:\WINDOWS\system32\kbdhu.dll
2006-12-16 21:50 6,656 -ra------ C:\WINDOWS\system32\kbdhela3.dll
2006-12-16 21:50 6,656 -ra------ C:\WINDOWS\system32\kbdcz2.dll
2006-12-16 21:50 6,656 -ra------ C:\WINDOWS\system32\kbdcz1.dll
2006-12-16 21:50 6,656 -ra------ C:\WINDOWS\system32\kbdcr.dll
2006-12-16 21:50 6,656 -ra------ C:\WINDOWS\system32\KBDAL.DLL
2006-12-16 21:50 6,144 -ra------ C:\WINDOWS\system32\kbdtuq.dll
2006-12-16 21:50 6,144 -ra------ C:\WINDOWS\system32\kbdtuf.dll
2006-12-16 21:50 6,144 -ra------ C:\WINDOWS\system32\kbdlv1.dll
2006-12-16 21:50 6,144 -ra------ C:\WINDOWS\system32\kbdlv.dll
2006-12-16 21:50 6,144 -ra------ C:\WINDOWS\system32\kbdhela2.dll
2006-12-16 21:50 6,144 -ra------ C:\WINDOWS\system32\kbdgkl.dll
2006-12-16 21:50 6,144 -ra------ C:\WINDOWS\system32\kbdest.dll
2006-12-16 21:50 577,536 --a------ C:\WINDOWS\notepad.exe
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdycc.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbduzb.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdur.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdtat.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdru1.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdru.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdro.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdpl1.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdmon.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdlt1.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdlt.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdkyr.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdkaz.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdhu1.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdhe319.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdhe220.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdhe.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdbu.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdblr.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdazel.dll
2006-12-16 21:50 5,632 -ra------ C:\WINDOWS\system32\kbdaze.dll
2006-12-16 21:50 5,120 --a------ C:\WINDOWS\system\SHELL.DLL
2006-12-16 21:50 33,904 --a------ C:\WINDOWS\system\COMMDLG.DLL
2006-12-16 21:50 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll
2006-12-16 21:50 24,064 --a------ C:\WINDOWS\system\OLESVR.DLL
2006-12-16 21:50 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2006-12-16 21:50 19,200 --a------ C:\WINDOWS\system\TAPI.DLL
2006-12-16 21:50 176,157 --a------ C:\WINDOWS\system32\dgrpsetu.dll
2006-12-16 21:50 15,872 --a------ C:\WINDOWS\TASKMAN.EXE
2006-12-16 21:50 13,312 --a------ C:\WINDOWS\system32\irclass.dll
2006-12-16 21:50 127,168 --a------ C:\WINDOWS\system\MSVIDEO.DLL
2006-12-16 21:50 112,128 --a------ C:\WINDOWS\system32\mapi32.dll
2006-12-16 21:50 11,264 --a------ C:\WINDOWS\system32\drivers\irenum.sys
2006-12-16 21:50 109,568 --a------ C:\WINDOWS\system\AVIFILE.DLL
2006-12-16 21:50 103,424 --a------ C:\WINDOWS\system32\EqnClass.Dll
2006-12-16 21:50 0 -rahs---- C:\MSDOS.SYS
2006-12-16 21:50 0 -rahs---- C:\IO.SYS
2006-12-16 21:50 0 --a------ C:\CONFIG.SYS
2006-12-16 21:50 0 --a------ C:\AUTOEXEC.BAT
2006-12-16 21:50 <REP> dr------- C:\Program Files\Fichiers communs\..
2006-12-16 21:50 <REP> dr------- C:\Program Files\.
2006-12-16 21:50 <REP> dr------- C:\Program Files
2006-12-16 21:50 <REP> dr------- C:\Documents and Settings\All Users\Menu D‚marrer
2006-12-16 21:50 <REP> dr------- C:\Documents and Settings\All Users\Documents
2006-12-16 21:50 <REP> d--hs---- C:\WINDOWS\Installer
2006-12-16 21:50 <REP> d--hs---- C:\Program Files\..
2006-12-16 21:50 <REP> d--h----- C:\WINDOWS\$hf_mig$
2006-12-16 21:50 <REP> d--h----- C:\Documents and Settings\All Users\ModŠles
2006-12-16 21:50 <REP> d-------- C:\WINDOWS\RegisteredPackages
2006-12-16 21:50 <REP> d-------- C:\Program Files\Windows Media Connect 2
2006-12-16 21:50 <REP> d-------- C:\Program Files\Fichiers communs\SpeechEngines
2006-12-16 21:50 <REP> d-------- C:\Program Files\Fichiers communs\ODBC
2006-12-16 21:50 <REP> d-------- C:\Program Files\Fichiers communs\Microsoft Shared
2006-12-16 21:50 <REP> d-------- C:\Program Files\Fichiers communs\.
2006-12-16 21:50 <REP> d-------- C:\Program Files\Fichiers communs
2006-12-16 21:50 <REP> d-------- C:\Documents and Settings\All Users\Favoris
2006-12-16 21:50 <REP> d-------- C:\Documents and Settings\All Users\Bureau
2006-12-16 21:49 <REP> d--hs---- C:\Documents and Settings\All Users\DRM
2006-12-16 21:48 72,192 --a------ C:\WINDOWS\system32\acctres.dll
2006-12-16 21:48 16,384 --a------ C:\WINDOWS\system32\icfgnt5.dll
2006-12-16 21:48 12,288 --a------ C:\WINDOWS\system32\nmevtmsg.dll
2006-12-16 21:48 11,264 --a------ C:\WINDOWS\system32\atrace.dll
2006-12-16 21:48 <REP> dr-h----- C:\Documents and Settings\All Users\Application Data\.
2006-12-16 21:48 <REP> dr-h----- C:\Documents and Settings\All Users\Application Data
2006-12-16 21:48 <REP> dr------- C:\WINDOWS\Offline Web Pages
2006-12-16 21:48 <REP> d--h----- C:\Program Files\WindowsUpdate
2006-12-16 21:48 <REP> d---s---- C:\WINDOWS\Tasks
2006-12-16 21:48 <REP> d---s---- C:\WINDOWS\Downloaded Program Files
2006-12-16 21:48 <REP> d-------- C:\WINDOWS\system32\CatRoot2
2006-12-16 21:48 <REP> d-------- C:\WINDOWS\system32\CatRoot
2006-12-16 21:48 <REP> d-------- C:\Program Files\Fichiers communs\Services
2006-12-16 21:48 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Microsoft
2006-12-16 21:48 <REP> d-------- C:\Documents and Settings\All Users\Application Data\..
2006-12-16 21:47 86,016 --a------ C:\WINDOWS\system32\isign32.dll
2006-12-16 21:47 81,920 --a------ C:\WINDOWS\system32\ils.dll
2006-12-16 21:47 8,192 --a------ C:\WINDOWS\system32\bitsprx2.dll
2006-12-16 21:47 73,728 --a------ C:\WINDOWS\system32\icwdial.dll
2006-12-16 21:47 73,600 --a------ C:\WINDOWS\system32\drivers\sr.sys
2006-12-16 21:47 7,168 --a------ C:\WINDOWS\system32\bitsprx3.dll
2006-12-16 21:47 69,632 --a------ C:\WINDOWS\system32\msconf.dll
2006-12-16 21:47 679,424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-12-16 21:47 67,584 --a------ C:\WINDOWS\system32\srclient.dll
2006-12-16 21:47 65,536 --a------ C:\WINDOWS\system32\icwphbk.dll
2006-12-16 21:47 6,656 --a------ C:\WINDOWS\system32\wuauserv.dll
2006-12-16 21:47 50,688 --a------ C:\WINDOWS\system32\inetres.dll
2006-12-16 21:47 467,224 --a------ C:\WINDOWS\system32\wuapi.dll
2006-12-16 21:47 45,568 --a------ C:\WINDOWS\system32\safrslv.dll
2006-12-16 21:47 43,520 --a------ C:\WINDOWS\system32\safrcdlg.dll
2006-12-16 21:47 43,520 --a------ C:\WINDOWS\system32\racpldlg.dll
2006-12-16 21:47 41,240 --a------ C:\WINDOWS\system32\wups.dll
2006-12-16 21:47 382,464 --a------ C:\WINDOWS\system32\qmgr.dll
2006-12-16 21:47 34,560 --a------ C:\WINDOWS\system32\mnmdd.dll
2006-12-16 21:47 32,768 --a------ C:\WINDOWS\system32\mnmsrvc.exe
2006-12-16 21:47 32,768 --a------ C:\WINDOWS\system32\isrdbg32.dll
2006-12-16 21:47 29,696 --a------ C:\WINDOWS\system32\safrdm.dll
2006-12-16 21:47 282,624 --a------ C:\WINDOWS\system32\inetcfg.dll
2006-12-16 21:47 281,600 --a------ C:\WINDOWS\system32\mstask.dll
2006-12-16 21:47 28,672 --a------ C:\WINDOWS\system32\nmmkcert.dll
2006-12-16 21:47 252,928 --a------ C:\WINDOWS\system32\msoeacct.dll
2006-12-16 21:47 241,664 --a------ C:\WINDOWS\system32\srrstr.dll
2006-12-16 21:47 23,040 --a------ C:\WINDOWS\system32\fltmc.exe
2006-12-16 21:47 195,352 --a------ C:\WINDOWS\system32\wuaueng1.dll
2006-12-16 21:47 193,024 --a------ C:\WINDOWS\system32\schedsvc.dll
2006-12-16 21:47 18,944 --a------ C:\WINDOWS\system32\qmgrprxy.dll
2006-12-16 21:47 175,896 --a------ C:\WINDOWS\system32\wuauclt1.exe
2006-12-16 21:47 173,536 --a------ C:\WINDOWS\system32\wuweb.dll
2006-12-16 21:47 171,008 --a------ C:\WINDOWS\system32\srsvc.dll
2006-12-16 21:47 16,896 --a------ C:\WINDOWS\system32\fltlib.dll
2006-12-16 21:47 128,896 --a------ C:\WINDOWS\system32\drivers\fltmgr.sys
2006-12-16 21:47 128,792 --a------ C:\WINDOWS\system32\wucltui.dll
2006-12-16 21:47 125,720 --a------ C:\WINDOWS\system32\wuauclt.exe
2006-12-16 21:47 12,288 --a------ C:\WINDOWS\system32\mstinit.exe
2006-12-16 21:47 105,984 --a------ C:\WINDOWS\system32\msoert2.dll
2006-12-16 21:47 1,343,768 --a------ C:\WINDOWS\system32\wuaueng.dll
2006-12-16 21:47 <REP> d--hs---- C:\System Volume Information
2006-12-16 21:47 <REP> d-------- C:\WINDOWS\system32\Restore
2006-12-16 21:47 <REP> d-------- C:\WINDOWS\system32\Macromed
2006-12-16 21:47 <REP> d-------- C:\Program Files\Outlook Express
2006-12-16 21:47 <REP> d-------- C:\Program Files\NetMeeting
2006-12-16 21:47 <REP> d-------- C:\Program Files\Movie Maker
2006-12-16 21:47 <REP> d-------- C:\Program Files\Internet Explorer
2006-12-16 21:47 <REP> d-------- C:\Program Files\Fichiers communs\System
2006-12-16 21:47 <REP> d-------- C:\Program Files\Fichiers communs\MSSoap
2006-12-16 21:47 <REP> d-------- C:\Documents and Settings\All Users\..
2006-12-16 21:47 <REP> d-------- C:\Documents and Settings\All Users\.
2006-12-16 21:47 <REP> d-------- C:\Documents and Settings
2006-12-16 21:46 970,000 --a------ C:\WINDOWS\system32\calc.exe
2006-12-16 21:46 97,792 --a------ C:\WINDOWS\system32\comrepl.dll
2006-12-16 21:46 80,896 --a------ C:\WINDOWS\system32\charmap.exe
2006-12-16 21:46 73,216 --a------ C:\WINDOWS\system32\avwav.dll
2006-12-16 21:46 634,880 --a------ C:\WINDOWS\system32\getuname.dll
2006-12-16 21:46 57,344 --a------ C:\WINDOWS\system32\sol.exe
2006-12-16 21:46 55,808 --a------ C:\WINDOWS\system32\freecell.exe
2006-12-16 21:46 54,272 --a------ C:\WINDOWS\system32\stclient.dll
2006-12-16 21:46 5,632 --a------ C:\WINDOWS\system32\write.exe
2006-12-16 21:46 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe
2006-12-16 21:46 44,544 --a------ C:\WINDOWS\system32\hticons.dll
2006-12-16 21:46 4,608 --a------ C:\WINDOWS\system32\rdpcfgex.dll
2006-12-16 21:46 4,096 --a------ C:\WINDOWS\system32\mtxex.dll
2006-12-16 21:46 35,840 --a------ C:\WINDOWS\system32\winchat.exe
2006-12-16 21:46 33,792 --a------ C:\WINDOWS\system32\regini.exe
2006-12-16 21:46 25,600 --a------ C:\WINDOWS\system32\comaddin.dll
2006-12-16 21:46 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll
2006-12-16 21:46 232,960 --a------ C:\WINDOWS\system32\avtapi.dll
2006-12-16 21:46 22,528 --a------ C:\WINDOWS\system32\qwinsta.exe
2006-12-16 21:46 22,528 --a------ C:\WINDOWS\system32\msg.exe
2006-12-16 21:46 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll
2006-12-16 21:46 17,408 --a------ C:\WINDOWS\system32\tsshutdn.exe
2006-12-16 21:46 17,408 --a------ C:\WINDOWS\system32\qappsrv.exe
2006-12-16 21:46 16,896 --a------ C:\WINDOWS\system32\tskill.exe
2006-12-16 21:46 16,384 --a------ C:\WINDOWS\system32\rwinsta.exe
2006-12-16 21:46 16,384 --a------ C:\WINDOWS\system32\avmeter.dll
2006-12-16 21:46 15,872 --a------ C:\WINDOWS\system32\logoff.exe
2006-12-16 21:46 15,872 --a------ C:\WINDOWS\system32\cdmodem.dll
2006-12-16 21:46 15,360 --a------ C:\WINDOWS\system32\tscon.exe
2006-12-16 21:46 15,360 --a------ C:\WINDOWS\system32\shadow.exe
2006-12-16 21:46 147,456 --a------ C:\WINDOWS\system32\comsnap.dll
2006-12-16 21:46 14,848 --a------ C:\WINDOWS\system32\tsdiscon.exe
2006-12-16 21:46 139,264 --a------ C:\WINDOWS\system32\sndvol32.exe
2006-12-16 21:46 128,000 --a------ C:\WINDOWS\system32\mshearts.exe
2006-12-16 21:46 119,808 --a------ C:\WINDOWS\system32\winmine.exe
2006-12-16 21:46 10,240 --a------ C:\WINDOWS\system32\reset.exe
2006-12-16 21:46 1,263 --a------ C:\WINDOWS\system32\usrlogon.cmd
2006-12-16 21:46 <REP> d-------- C:\WINDOWS\Registration
2006-12-16 21:46 <REP> d-------- C:\Program Files\Windows Media Player
2006-12-16 21:46 <REP> d-------- C:\Program Files\MSN Gaming Zone
2006-12-16 21:46 <REP> d-------- C:\Program Files\ComPlus Applications
2006-12-16 21:45 956,416 --a------ C:\WINDOWS\system32\msdtctm.dll
2006-12-16 21:45 94,208 --a------ C:\WINDOWS\system32\tscfgwmi.dll
2006-12-16 21:45 91,136 --a------ C:\WINDOWS\system32\mtxoci.dll
2006-12-16 21:45 87,176 --a------ C:\WINDOWS\system32\rdpwsx.dll
2006-12-16 21:45 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll
2006-12-16 21:45 67,072 --a------ C:\WINDOWS\system32\rdshost.exe
2006-12-16 21:45 655,360 --a------ C:\WINDOWS\system32\mstscax.dll
2006-12-16 21:45 625,152 --a------ C:\WINDOWS\system32\catsrvut.dll
2006-12-16 21:45 62,464 --a------ C:\WINDOWS\system32\rdpclip.exe
2006-12-16 21:45 61,952 --a------ C:\WINDOWS\system32\remotepg.dll
2006-12-16 21:45 60,416 --a------ C:\WINDOWS\system32\colbact.dll
2006-12-16 21:45 6,144 --a------ C:\WINDOWS\system32\msdtc.exe
2006-12-16 21:45 58,880 --a------ C:\WINDOWS\system32\msdtclog.dll
2006-12-16 21:45 58,880 --a------ C:\WINDOWS\system32\licwmi.dll
2006-12-16 21:45 56,320 --a------ C:\WINDOWS\system32\servdeps.dll
2006-12-16 21:45 540,160 --a------ C:\WINDOWS\system32\comuid.dll
2006-12-16 21:45 539,136 --a------ C:\WINDOWS\system32\spider.exe
2006-12-16 21:45 498,688 --a------ C:\WINDOWS\system32\clbcatq.dll
2006-12-16 21:45 44,544 --a------ C:\WINDOWS\system32\tscupgrd.exe
2006-12-16 21:45 426,496 --a------ C:\WINDOWS\system32\msdtcprx.dll
2006-12-16 21:45 411,648 --a------ C:\WINDOWS\system32\mstsc.exe
2006-12-16 21:45 40,840 --a------ C:\WINDOWS\system32\drivers\termdd.sys
2006-12-16 21:45 39,424 --a------ C:\WINDOWS\system32\cfgbkend.dll
2006-12-16 21:45 354,304 --a------ C:\WINDOWS\system32\hypertrm.dll
2006-12-16 21:45 347,648 --a------ C:\WINDOWS\system32\mspaint.exe
2006-12-16 21:45 297,984 --a------ C:\WINDOWS\system32\termsrv.dll
2006-12-16 21:45 225,792 --a------ C:\WINDOWS\system32\catsrv.dll
2006-12-16 21:45 21,896 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys
2006-12-16 21:45 20,992 --a------ C:\WINDOWS\system32\qprocess.exe
2006-12-16 21:45 196,864 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys
2006-12-16 21:45 191,488 --a------ C:\WINDOWS\system32\cmprops.dll
2006-12-16 21:45 19,968 --a------ C:\WINDOWS\system32\rdpsnd.dll
2006-12-16 21:45 189,952 --a------ C:\WINDOWS\system32\accwiz.exe
2006-12-16 21:45 17,920 --a------ C:\WINDOWS\system32\mmfutil.dll
2006-12-16 21:45 161,280 --a------ C:\WINDOWS\system32\msdtcuiu.dll
2006-12-16 21:45 147,968 --a------ C:\WINDOWS\system32\rdchost.dll
2006-12-16 21:45 142,336 --a------ C:\WINDOWS\system32\sessmgr.exe
2006-12-16 21:45 139,528 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys
2006-12-16 21:45 133,120 --a------ C:\WINDOWS\system32\sndrec32.exe
2006-12-16 21:45 13,824 --a------ C:\WINDOWS\system32\rdsaddin.exe
2006-12-16 21:45 124,928 --a------ C:\WINDOWS\system32\mplay32.exe
2006-12-16 21:45 12,040 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys
2006-12-16 21:45 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll
2006-12-16 21:45 11,776 --a------ C:\WINDOWS\system32\xolehlp.dll
2006-12-16 21:45 11,264 --a------ C:\WINDOWS\system32\icaapi.dll
2006-12-16 21:45 104,448 --a------ C:\WINDOWS\system32\clipbrd.exe
2006-12-16 21:45 1,267,200 --a------ C:\WINDOWS\system32\comsvcs.dll
2006-12-16 21:45 <REP> d-------- C:\WINDOWS\system32\MsDtc
2006-12-16 21:45 <REP> d-------- C:\WINDOWS\system32\Com
2006-12-16 21:45 <REP> d-------- C:\Program Files\Windows NT
2006-12-16 21:42 <REP> dr-hsc--- C:\WINDOWS\system32\dllcache
2006-12-16 21:42 <REP> dr--s---- C:\WINDOWS\Fonts
2006-12-16 21:42 <REP> dr------- C:\WINDOWS\Web
2006-12-16 21:42 <REP> d--hs---- C:\WINDOWS\system32\drivers\..
2006-12-16 21:42 <REP> d--hs---- C:\WINDOWS\system32\.
2006-12-16 21:42 <REP> d--hs---- C:\WINDOWS\system32
2006-12-16 21:42 <REP> d--hs---- C:\WINDOWS\..
2006-12-16 21:42 <REP> d--h----- C:\WINDOWS\inf
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\WinSxS
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\twain_32
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\Temp
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\wins
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\wbem
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\usmt
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\spool
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\ShellExt
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\Setup
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\ras
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\PreInstall
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\oobe
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\npp
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\mui
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\inetsrv
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\IME
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\icsxml
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\ias
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\export
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\en
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\drivers\etc
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\drivers\disdn
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\drivers\.
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\drivers
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\dhcp
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\config
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\3com_dmi
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\3076
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\2052
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\1054
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\1042
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\1041
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\1037
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\1036
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\1033
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\1031
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\1028
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\1025
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system32\..
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system\..
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system\.
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\system
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\security
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\Resources
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\repair
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\Provisioning
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\PeerNet
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\pchealth
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\mui
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\msapps
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\Media
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\java
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\ime
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\Help
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\ehome
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\Driver Cache
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\Debug
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\Cursors
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\Connection Wizard
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\Config
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\AppPatch
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\addins
2006-12-16 21:42 <REP> d-------- C:\WINDOWS\.
2006-12-16 21:42 <REP> d-------- C:\WINDOWS


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))




(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="\"C:\\Program Files\\Fichiers communs\\Ahead\\Lib\\NMBgMonitor.exe\""
"FreeBrowser"="C:\\Program Files\\FreeBrowser\\FreeBrowser\\FreeBrowser.exe"
"MsnMsgr"="\"C:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\" /background"
"MSMSGS"="\"C:\\Program Files\\Messenger\\Msmsgs.exe\" /background"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"NeroFilterCheck"="C:\\Program Files\\Fichiers communs\\Ahead\\Lib\\NeroCheck.exe"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""
"zBrowser Launcher"="C:\\Program Files\\Logitech\\iTouch\\iTouch.exe"
"Logitech Utility"="Logi_MwX.Exe"
"Omnipage"="C:\\Program Files\\ScanSoft\\OmniPageSE\\opware32.exe"
"HP Component Manager"="\"C:\\Program Files\\HP\\hpcoretech\\hpcmpmgr.exe\""
"HPDJ Taskbar Utility"="C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\hpztsb10.exe"
"HP Software Update"="\"C:\\Program Files\\Hewlett-Packard\\HP Software Update\\HPWuSchd2.exe\""
"Avg Antivirus"="C:\\WINDOWS\\system32\\icpldrvx.exe"
"LVCOMS"="C:\\Program Files\\Fichiers communs\\Logitech\\QCDriver2\\LVCOMS.EXE"
"RealTray"="C:\\Program Files\\Real\\RealPlayer\\RealPlay.exe SYSTEMBOOTHIDEPLAYER"
"SoundMan"="SOUNDMAN.EXE"
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_10\\bin\\jusched.exe\""
"SmartSync - ScheduleSync"="C:\\PROGRA~1\\MOBILE~1\\SMARTS~1\\SCHEDU~1.EXE"
"{30B3F81A-07D0-1036-0909-040512040021}"="\"C:\\Program Files\\Fichiers communs\\{30B3F81A-07D0-1036-0909-040512040021}\\Update.exe\" mc-110-12-0000137"
"Nfo"="C:\\WINDOWS\\system32\\nfomon\\nfomon.exe"
"vidmon"="C:\\WINDOWS\\system32\\vidmon\\vidmon.exe"
"FixCamera"="C:\\WINDOWS\\FixCamera.exe"
"tsnp2std"="C:\\WINDOWS\\tsnp2std.exe"
"snp2std"="C:\\WINDOWS\\vsnp2std.exe"
"{30B3F81A-07D0-1036-0909-040512040001}"="\"C:\\Program Files\\Fichiers communs\\{30B3F81A-07D0-1036-0909-040512040001}\\Update.exe\" mc-110-12-0000137"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,00,01,00,00,00,00,00,00,00,04,00,00,da,03,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:000000db
"CDRAutoRun"=dword:00000001
"NoStrCmpLogical"=dword:00000001
"NoSaveSettings"=dword:00000000
"NoTrayItemsDisplay"=dword:00000000
"NoToolbarsOnTaskbar"=dword:00000000
"NoResolveTrack"=dword:00000000
"NoResolveSearch"=dword:00000000
"NoNetworkConnections"=dword:00000000
"NoRun"=dword:00000000
"NoControlPanel"=dword:00000000
"NoSMHelp"=dword:00000000
"NoRecentDocsMenu"=dword:00000000
"NoFind"=dword:00000000
"NoSMMyPictures"=dword:00000000
"NoRecentDocsHistory"=dword:00000000
"NoStartMenuMFUprogramsList"=dword:00000000
"NoUserNameInStartMenu"=dword:00000000
"NoStartMenuMorePrograms"=dword:00000000
"ClearRecentDocsOnExit"=dword:00000000
"MaxRecentDocs"=dword:0000000f
"NoInstrumentation"=dword:00000000
"NoCDBurning"=dword:00000001
"MemCheckBoxInRunDlg"=dword:00000001
"NoSMBalloonTip"=dword:00000000
"DisallowCpl"=dword:00000001
"NoLowDiskSpaceChecks"=dword:00000001

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowCpl]
"1"="Polices"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000001
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"SynchronousMachineGroupPolicy"=dword:00000000
"SynchronousUserGroupPolicy"=dword:00000000

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:000000db
"CDRAutoRun"=dword:00000001
"NoRemoteRecursiveEvents"=dword:00000001
"ForceClassicControlPanel"=dword:00000001
"NoSimpleStartMenu"=dword:00000000

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\NoDriveTypeAutoRun]
"NoDriveTypeAutoRun"=dword:000000db

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\run]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"


Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\AppleSoftwareUpdate.job

Completion time: 06-12-29 17:48:18.15
C:\ComboFix.txt ... 06-12-29 17:48

Re,

Télécharge puis installe AVG Anti-Spyware (AVG AS)
Une fois AVG AS lancé, clique sur "Mise à jour"
Ferme le programme.
AIDE : Tuto sur AVG Antispyware (Malekal)

Redémarre en mode sans échec

Relance AVG AS puis choisis l'onglet "Analyse"
Puis l'onglet "Paramètres"
Sous la question "Comment réagir ?", clique sur "Actions recommandées" et choisis "Quarantaine"
Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"

/!\ Si un fichier est infecté en fin d'analyse /!\
Clique sur "Appliquer toutes les actions "

Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous"
Enregistre ce fichier texte sur ton bureau.

Redémarre normalement
Copie/Colle le rapport AVG AS ainsi qu'un rapport Hijackthis.

comment redémarre t on en mode sans échec ?

Clique sur "Redémarre..."

oups ! j'ai redémarré avant de sauvegarder le rapport. Y'a t il un moyen de le retrouver sans recommencer l'analyse ?

Il est dans la section Rapports du logiciel.

je te remet donc le rapport Hijackthis. Et AVG AS

Logfile of HijackThis v1.99.1
Scan saved at 17:28:45, on 29/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchosts.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\icpldrvx.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040021}\Update.exe
C:\Program Files\Ipwindows\ipwins.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\system32\nfomon\nfomon.exe
C:\WINDOWS\system32\vidmon\vidmon.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp2std.exe
C:\WINDOWS\vsnp2std.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Mr D\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: Bar888 - {C1B4DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\FICHIE~1\{30B3F~1\Bar888.dll
O2 - BHO: PEDEV_IEListener Class - {E1412445-4FF8-410e-8D24-F2CF86B171A4} - C:\Program Files\PeDevice\PeDev.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O3 - Toolbar: Bar888 - {C1B4DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\FICHIE~1\{30B3F~1\Bar888.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [Avg Antivirus] C:\WINDOWS\system32\icpldrvx.exe
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [SmartSync - ScheduleSync] C:\PROGRA~1\MOBILE~1\SMARTS~1\SCHEDU~1.EXE
O4 - HKLM\..\Run: [{30B3F81A-07D0-1036-0909-040512040021}] "C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040021}\Update.exe" mc-110-12-0000137
O4 - HKLM\..\Run: [IpWins] C:\Program Files\Ipwindows\ipwins.exe
O4 - HKLM\..\Run: [Nfo] C:\WINDOWS\system32\nfomon\nfomon.exe
O4 - HKLM\..\Run: [vidmon] C:\WINDOWS\system32\vidmon\vidmon.exe
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [FreeBrowser] C:\Program Files\FreeBrowser\FreeBrowser\FreeBrowser.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\Msmsgs.exe" /background
O4 - Global Startup: aMSN Messenger.lnk = C:\Program Files\amsn\amsn.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: COM+ Messages - Unknown owner - C:\WINDOWS\system32\svchosts.exe" -e mc-110-12-0000137 (file missing)
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe

___________________________________________________________

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 23:38:30 29/12/2006

+ Résultat de l'analyse:



:mozilla.153:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.154:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.155:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.265:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.266:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.268:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.339:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.380:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.381:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.429:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.20:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.21:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.22:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.23:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.24:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.343:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.42:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.16:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.131:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyé.
:mozilla.132:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyé.
:mozilla.136:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyé.
:mozilla.241:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.242:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.243:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.244:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.270:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Com : Nettoyé.
:mozilla.83:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.84:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.41:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.483:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Esomniture : Nettoyé.
:mozilla.81:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.82:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.85:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.86:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.47:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.48:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.49:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.50:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.227:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.255:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.281:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.354:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.358:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.490:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.491:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.245:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.246:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.247:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.248:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Mr D\Cookies\mr d@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.545:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.546:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.94:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.95:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.96:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.146:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.147:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.148:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.149:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.150:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.151:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.367:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.17:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.18:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.19:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.327:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Spylog : Nettoyé.
:mozilla.130:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.133:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.134:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.135:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.319:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Targetnet : Nettoyé.
:mozilla.320:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Targetnet : Nettoyé.
:mozilla.321:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Targetnet : Nettoyé.
:mozilla.189:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.190:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.191:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.192:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.193:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.122:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Trafic : Nettoyé.
:mozilla.260:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.120:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.121:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.123:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.261:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.
:mozilla.262:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.
:mozilla.424:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.
:mozilla.125:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.128:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.129:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.74:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.75:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.76:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.77:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.78:C:\Documents and Settings\Mr D\Application Data\Mozilla\Firefox\Profiles\xjibxs5j.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Mr D\Cookies\mr d@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé.


Fin du rapport

voilà

angeldark je t'attend, s'il te plait

Sois patient...

Suis cette procédure à la lettre.
Saute l'étape sur AVG, fais un scan en ligne Panda.
Poste moi les rapports ensuite.

ok merci

Voilà c'est fais !! mais tu veux quel rapport celui de "clean" ? parce que y'a que celui la de nouveau je pense. Avec les scannage il n'y a plus de trace de virus. Donc je te met ce rapport :

Rapport clean par Malekal_morte - http://www.malekal.com
Option 1, executee le 30/12/2006 a 19:33:02,37

*** Recherche de fichiers sur C:

*** Recherche des fichiers dans C:\WINDOWS\

*** Recherche des fichiers dans C:\WINDOWS\system32

"C:\Program Files\Everest Poker\" FOUND
"C:\Program Files\PeDevice\" FOUND
*** Fin du rapport !


et sinon comment faire pour vérifier qu'il n'y a plus le virus ?

j'attend t'a réponse avec impatience et tu peux répondre ce soir car je suis pas près de dormir !!!  

angeldark ! where are you ?

Pateinte !

Redémarre en mode sans échec

Ouvre le dossier clean, double-clique sur clean.cmd.
Choisis l'option 2 puis patiente.

Redémarre normalement

- Le rapport clean : Poste de travail / double clic sur disque C / double-clic sur rapport_clean.txt et copier/coller le contenu ici C:\rapport_clean.txt

Script execute en mode sans echec
Rapport clean par Malekal_morte - http://www.malekal.com
Option 2, executee le 31/12/2006 a 14:46:42,67

Microsoft Windows XP [version 5.1.2600]

*** Suppression de fichiers sur C:

*** Suppression des fichiers dans C:\WINDOWS\

*** Suppression des fichiers dans C:\WINDOWS\system32
tentative de suppression de C:\WINDOWS\system32\vidmon\vidmon.exe

tentative de suppression de "C:\Program Files\Everest Poker\"
tentative de suppression de "C:\Program Files\InetGet2\"
tentative de suppression de "C:\Program Files\PeDevice\"

*** Suppression des clefs du registre effectuee..
*** Fin du rapport !


VOILA

Reposte un rapport Hijackthis stp.

Logfile of HijackThis v1.99.1
Scan saved at 15:08:36, on 31/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp2std.exe
C:\WINDOWS\vsnp2std.exe
C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040001}\Update.exe
C:\WINDOWS\system32\nfomon\nfomon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Mr D\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: Bar888 - {C1B4DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\FICHIE~1\{30B3F~1\Bar888.dll (file missing)
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O3 - Toolbar: Bar888 - {C1B4DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\FICHIE~1\{30B3F~1\Bar888.dll (file missing)
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [SmartSync - ScheduleSync] C:\PROGRA~1\MOBILE~1\SMARTS~1\SCHEDU~1.EXE
O4 - HKLM\..\Run: [{30B3F81A-07D0-1036-0909-040512040021}] "C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040021}\Update.exe" mc-110-12-0000137
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [{30B3F81A-07D0-1036-0909-040512040001}] "C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040001}\Update.exe" mc-110-12-0000137
O4 - HKLM\..\Run: [Nfo] C:\WINDOWS\system32\nfomon\nfomon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [FreeBrowser] C:\Program Files\FreeBrowser\FreeBrowser\FreeBrowser.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\Msmsgs.exe" /background
O4 - Global Startup: aMSN Messenger.lnk = C:\Program Files\amsn\amsn.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: COM+ Messages - Unknown owner - C:\WINDOWS\system32\svchosts.exe" -e mc-110-12-0000137 (file missing)
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe

Re,

- Lance Hijackthis ->Do a system scan only
->Coche les lignes ci-dessous :

O2 - BHO: Bar888 - {C1B4DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\FICHIE~1\{30B3F~1\Bar888.dll (file missing)
O3 - Toolbar: Bar888 - {C1B4DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\FICHIE~1\{30B3F~1\Bar888.dll (file missing)
O4 - HKLM\..\Run: [Nfo] C:\WINDOWS\system32\nfomon\nfomon.exe

Clique sur Fix checked (en bas à gauche)

- Assure toi d'avoir accès aux dossiers/fichiers cachés
-> Démarrer
-> Panneau de configuration
-> Options des Dossiers, onglet Affichage :
. Clique sur Afficher les dossiers cachés
. Décoche Masquer les extensions des fichiers dont le type est connu
. Décoche Masquer les fichiers protégés du système d'exploitation

- Suppime ce dossier s'il existe encore :

C:\WINDOWS\system32\nfomon\

Redémarre normalement.

- Poste un nouveau rapport Hijackthis

Logfile of HijackThis v1.99.1
Scan saved at 15:27:24, on 31/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp2std.exe
C:\WINDOWS\vsnp2std.exe
C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040001}\Update.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\mspaint.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Mr D\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [SmartSync - ScheduleSync] C:\PROGRA~1\MOBILE~1\SMARTS~1\SCHEDU~1.EXE
O4 - HKLM\..\Run: [{30B3F81A-07D0-1036-0909-040512040021}] "C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040021}\Update.exe" mc-110-12-0000137
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [{30B3F81A-07D0-1036-0909-040512040001}] "C:\Program Files\Fichiers communs\{30B3F81A-07D0-1036-0909-040512040001}\Update.exe" mc-110-12-0000137
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [FreeBrowser] C:\Program Files\FreeBrowser\FreeBrowser\FreeBrowser.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\Msmsgs.exe" /background
O4 - Global Startup: aMSN Messenger.lnk = C:\Program Files\amsn\amsn.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: COM+ Messages - Unknown owner - C:\WINDOWS\system32\svchosts.exe" -e mc-110-12-0000137 (file missing)
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe

D'autres problèmes ?

merci bcp ! t'es le meilleur !!! et bon réveillon

Re,

Edite ton premier message avec puis ajoute (Résolu) au titre.

Dénonce ton infection (Virus MSN) pour faire condamner les auteurs, ça serait sympa.
Crée un message pour faire avancer les choses sur Malware-Complaints, nous devons être le plus nombreux possibles, alors rends compte de ton infection.
AIDE : Comment rapporter son infection sur Malware-Complaints ?

Consulte cette page pour éviter que ces problèmes ne réapparaissent.

Bon réveillon