virus virtumonde.dll et virtumonde

laure888

11 Juin 2008 00:04:30

Bonjour,

Je suis désespérée, j'ai suivi les deux premières étapes pour me débarasser du virtumonde.dll mais je n'arrive pas à appliquer la dernière étape : la suppression des virus.

Je ne trouve pas Download_mbam-setup.exe dans le logiciel MalwareByle's Anti-Madware.

Je lance un SOS

Merci de me répondre

Autres pages sur : virus virtumonde dll virtumonde

| Etre averti des réponses
| Alerter

Répondre à laure888

Egwene

11 Juin 2008 09:42:45

Bonjour,

1) Téléchargez ATF Cleaner sur votre Bureau.

Faites un double clic sur ATF-Cleaner.exe pour lancer le programme.

Cliquez sur Select All situé en bas de la liste.

Cliquez sur le bouton Empty Selected.

Si vous utilisez le navigateur Firefox, faites aussi ceci :

Cliquez sur Firefox en haut et choisissez Select All dans la liste.

Cliquez sur le bouton Empty Selected.

NOTE : Si vous désirez conserver vos mots de passe enregistrés, cliquez sur No dans le message d'avertissement.

Si vous utilisez le navigateur Opera, faites aussi ceci :

Cliquez sur Opera en haut et choisissez Select All dans la liste.

Fermez TOUS les navigateurs Internet (très important).

Cliquez sur le bouton Empty Selected.

NOTE : Si vous désirez conserver vos mots de passe enregistrés, cliquez sur No dans le message d'avertissement.
Cliquez sur Exit dans le menu principal pour fermer le programme.

2) Ensuite, téléchargez OTScanIt.exe sur votre Bureau, et faites un double clic dessus pour extraire les fichiers. Ceci va créer un dossier nommé OTScanIt sur votre Bureau.

N.B : Si pendant le téléchargement et/ou l’installation tu reçois une alerte de ton antivirus, ignore-là. Certains composants de OTscanIT peuvent être détectés comme un virus par certains antivirus. Pense aussi à désactiver tes protections résidentes durant la procédure.

Note : Vous devez avoir ouvert une session avec un compte ayant les droits Administrateur pour exécuter ce programme.

Fermez TOUS LES AUTRES PROGRAMMES.

Ouvrez le dossier OTScanIt et faites un double clic sur OTScanIt.exe pour lancer le programme (si vous êtes sous Windows Vista, faites un clic droit sur le programme et choisissez Exécuter en tant qu'Administrateur).

Dans la section Drivers cliquez sur Non-Microsoft.

Sous Additional Scans cochez la case située devant les éléments suivants afin de les sélectionner :

Reg - BotCheck
File - Additional Folder Scans

Ne modifiez aucun autre paramètre.

Ensuite, cliquez sur le bouton Run Scan dans la barre d'outils.

Laissez le programme tourner sans intervenir.

Lorsque l'analyse est terminée le Bloc-notes va s'ouvrir pour afficher le fichier rapport.

Cliquez sur le menu Format et vérifiez que Retour automatique à la ligne n'est pas coché. S'il l'est, cliquez dessus afin de le décocher.
Utilisez le bouton Répondre et faites un copier/coller de ces informations ici. Je les examinerai dès leur arrivée. Vérifiez que la première ligne est code entouré de crochets [] et que la dernière ligne est /code entouré de crochets [].

Si, après avoir envoyé votre message, la dernière ligne n'est pas <End of Report> cela signifie que le rapport est trop long pour tenir dans un seul message, et vous devez dans ce cas le découper en plusieurs messages, ou le mettre sur Mediafire : http://www.mediafire.com

| Alerter

Répondre à Egwene

dobermann24

20 Juin 2008 18:11:44

| Alerter

Répondre à dobermann24

dobermann24

20 Juin 2008 18:23:13

| Alerter

Répondre à dobermann24

dobermann24

20 Juin 2008 18:27:30

Ne pas tenir compte du 1er rapport je n'avais exécuté ATF cleaner.
Merci par avance si tu arrive a me décoincer de cette situation.
Je reste dispo pour tous rensignement complémentaire.

| Alerter

Répondre à dobermann24

dobermann24

20 Juin 2008 18:39:00

Et pardon je viens de voir qu'il n'y a pas la fin alors je la place dans un nouveau message.
Vraiment dsl et encore merci.

| Alerter

Répondre à dobermann24

dobermann24

20 Juin 2008 18:51:40

AudioInfos.dll -> %SystemRoot%\System32\AudioInfos.dll -> NCT Company Ltd. [Ver = 2,6,1,254 | Size = 1212416 bytes | Created Date = 20/06/2008 08:55:49 | Attr = ]
AudioRecord.dll -> %SystemRoot%\System32\AudioRecord.dll -> NCT Company Ltd. [Ver = 2,6,1,217 | Size = 454656 bytes | Created Date = 20/06/2008 08:55:49 | Attr = ]
NCTWMAProfiles.prx -> %SystemRoot%\System32\NCTWMAProfiles.prx -> [Ver = | Size = 116296 bytes | Created Date = 20/06/2008 08:55:49 | Attr = ]
ControlSubX.ocx -> %SystemRoot%\System32\ControlSubX.ocx -> [Ver = 1.00.0007 | Size = 24576 bytes | Created Date = 20/06/2008 09:03:33 | Attr = ]
PropertyGrid.ocx -> %SystemRoot%\System32\PropertyGrid.ocx -> [Ver = 1.00 | Size = 364544 bytes | Created Date = 20/06/2008 09:03:34 | Attr = ]
ReyXpBasics.tlb -> %SystemRoot%\System32\ReyXpBasics.tlb -> [Ver = | Size = 208500 bytes | Created Date = 20/06/2008 09:03:34 | Attr = ]
TubeFinder.exe -> %SystemRoot%\System32\TubeFinder.exe -> Koyote Soft [Ver = 1.00 | Size = 225280 bytes | Created Date = 20/06/2008 09:03:36 | Attr = ]
en-us -> %SystemRoot%\System32\en-us -> [Folder | Created Date = 20/06/2008 10:16:21 | Attr = ]
3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->
XPSViewer -> %SystemRoot%\System32\XPSViewer -> [Folder | Created Date = 20/06/2008 10:16:26 | Attr = ]
DRVSTORE -> %SystemRoot%\System32\DRVSTORE -> [Folder | Created Date = 20/06/2008 11:04:45 | Attr = ]
ISUSPM.cpl -> %SystemRoot%\System32\ISUSPM.cpl -> Macrovision Corporation [Ver = 5, 01, 100, 47363 | Size = 73728 bytes | Created Date = 20/06/2008 11:38:54 | Attr = ]
HDEXT.DLL -> %SystemRoot%\System32\HDEXT.DLL -> OmniVision Technologies Inc. [Ver = 2, 2, 11, 28 | Size = 53248 bytes | Created Date = 20/06/2008 11:39:12 | Attr = ]
HWC HD -> %SystemRoot%\System32\HWC HD -> [Folder | Created Date = 20/06/2008 11:38:54 | Attr = ]
HDExt.ax -> %SystemRoot%\System32\HDExt.ax -> OmniVision Technologies Inc. [Ver = 06.12.22 | Size = 19456 bytes | Created Date = 20/06/2008 11:39:12 | Attr = ]
escwiad.dll -> %SystemRoot%\System32\escwiad.dll -> SEIKO EPSON CORP. [Ver = 1.05 | Size = 29696 bytes | Created Date = 20/06/2008 18:51:38 | Attr = ]
EBPMON24.DLL -> %SystemRoot%\System32\EBPMON24.DLL -> SEIKO EPSON CORPORATION [Ver = 1, 9, 0, 0 | Size = 75501 bytes | Created Date = 20/06/2008 18:51:57 | Attr = ]
EBPPORT4.DAT -> %SystemRoot%\System32\EBPPORT4.DAT -> [Ver = | Size = 182 bytes | Created Date = 20/06/2008 18:51:57 | Attr = ]
ECBTEG.DLL -> %SystemRoot%\System32\ECBTEG.DLL -> SEIKO EPSON CORPORATION [Ver = 2, 0, 0, 27 | Size = 64000 bytes | Created Date = 20/06/2008 18:51:57 | Attr = ]
mdmxsdk.dll -> %SystemRoot%\System32\mdmxsdk.dll -> Conexant [Ver = 1.0.2.006 | Size = 86016 bytes | Created Date = 19/06/2008 16:27:04 | Attr = ]
EBPCHP.DLL -> %SystemRoot%\System32\EBPCHP.DLL -> SEIKO EPSON CORPORATION [Ver = 1, 1, 0, 0 | Size = 34304 bytes | Created Date = 20/06/2008 18:51:57 | Attr = ]
HSFCISP2.dll -> %SystemRoot%\System32\HSFCISP2.dll -> Conexant Systems, Inc. [Ver = 7.12.09 | Size = 32285 bytes | Created Date = 19/06/2008 16:27:04 | Attr = ]
E_DCINST.DLL -> %SystemRoot%\System32\E_DCINST.DLL -> SEIKO EPSON CORP. [Ver = 1, 0, 0, 2 | Size = 31744 bytes | Created Date = 20/06/2008 18:51:57 | Attr = ]
ANIO.VXD -> %SystemRoot%\System32\ANIO.VXD -> [Ver = | Size = 16997 bytes | Created Date = 19/06/2008 16:32:27 | Attr = ]
ANIOApi.dll -> %SystemRoot%\System32\ANIOApi.dll -> Alpha Networks Inc. [Ver = 2, 0, 0, 40127 | Size = 36864 bytes | Created Date = 19/06/2008 16:32:27 | Attr = ]
anio4.sys -> %SystemRoot%\System32\anio4.sys -> ANI [Ver = 1.1.0.30505 | Size = 11904 bytes | Created Date = 19/06/2008 16:32:27 | Attr = ]
ANIO.sys -> %SystemRoot%\System32\ANIO.sys -> Alpha Networks Inc. [Ver = 2.0.0.30505 | Size = 28205 bytes | Created Date = 19/06/2008 16:32:27 | Attr = ]
ANICtl.dll -> %SystemRoot%\System32\ANICtl.dll -> Alpha Networks Inc. [Ver = 1, 0, 3, 31217 | Size = 57407 bytes | Created Date = 19/06/2008 16:32:37 | Attr = ]
aIPH.dll -> %SystemRoot%\System32\aIPH.dll -> Alpha Networks Inc. [Ver = 1, 1, 0, 50630 | Size = 208896 bytes | Created Date = 19/06/2008 16:32:37 | Attr = ]
ANIWZCS2.dll -> %SystemRoot%\System32\ANIWZCS2.dll -> Alpha Networks Inc. [Ver = 2, 4, 26, 50722 | Size = 372736 bytes | Created Date = 19/06/2008 16:32:37 | Attr = ]
AQCKGen.dll -> %SystemRoot%\System32\AQCKGen.dll -> Alpha Networks Inc. [Ver = 1, 0, 0, 30603 | Size = 49152 bytes | Created Date = 19/06/2008 16:32:37 | Attr = ]
odSupp_M.dll -> %SystemRoot%\System32\odSupp_M.dll -> Funk Software, Inc. [Ver = 3.00.00.006 | Size = 1323095 bytes | Created Date = 19/06/2008 16:32:37 | Attr = ]
wlanapi.dll -> %SystemRoot%\System32\wlanapi.dll -> Alpha Networks Inc. [Ver = 1, 3, 28, 50722 | Size = 233472 bytes | Created Date = 19/06/2008 16:32:37 | Attr = ]
WlanApp.dll -> %SystemRoot%\System32\WlanApp.dll -> Alpha Networks Inc. [Ver = 1, 0, 10, 50602 | Size = 143360 bytes | Created Date = 19/06/2008 16:32:37 | Attr = ]
Epcmlib.dll -> %SystemRoot%\System32\Epcmlib.dll -> SEIKO EPSON CORPORATION [Ver = 1.2.0.6 | Size = 131072 bytes | Created Date = 20/06/2008 18:58:46 | Attr = ]
epDPE.ini -> %SystemRoot%\System32\epDPE.ini -> [Ver = | Size = 72 bytes | Created Date = 20/06/2008 18:55:30 | Attr = ]
Samsung_USB_Drivers -> %SystemRoot%\System32\Samsung_USB_Drivers -> [Folder | Created Date = 20/06/2008 19:12:38 | Attr = ]
Uninstall.ico -> %SystemRoot%\System32\Uninstall.ico -> [Ver = | Size = 766 bytes | Created Date = 20/06/2008 19:12:38 | Attr = ]
SoftwareDistribution -> %SystemRoot%\System32\SoftwareDistribution -> [Folder | Created Date = 19/06/2008 15:38:00 | Attr = ]
PreInstall -> %SystemRoot%\System32\PreInstall -> [Folder | Created Date = 19/06/2008 17:09:08 | Attr = ]
LogFiles -> %SystemRoot%\System32\LogFiles -> [Folder | Created Date = 19/06/2008 17:27:40 | Attr = ]
fr-fr -> %SystemRoot%\System32\fr-fr -> [Folder | Created Date = 19/06/2008 17:42:13 | Attr = ]
SHELLNEW -> %SystemRoot%\SHELLNEW -> [Folder | Created Date = 20/06/2008 09:31:27 | Attr = ]
1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp ->
LastGood -> %SystemRoot%\LastGood -> [Folder | Created Date = 20/06/2008 19:12:39 | Attr = ]
ADE.DLL -> %SystemRoot%\ADE.DLL -> SEIKO EPSON CORPORATION [Ver = 2, 0, 0, 2 | Size = 73216 bytes | Created Date = 20/06/2008 18:55:30 | Attr = ]
CDE RX500F.ini -> %SystemRoot%\CDE RX500F.ini -> [Ver = | Size = 25 bytes | Created Date = 20/06/2008 18:48:35 | Attr = ]
Ade001.bin -> %SystemRoot%\Ade001.bin -> [Ver = | Size = 3136 bytes | Created Date = 20/06/2008 18:55:30 | Attr = ]
SlantAdj.dll -> %SystemRoot%\SlantAdj.dll -> [Ver = | Size = 96768 bytes | Created Date = 20/06/2008 18:55:30 | Attr = ]
PI_setup.ini -> %SystemRoot%\PI_setup.ini -> [Ver = | Size = 21 bytes | Created Date = 20/06/2008 18:57:01 | Attr = ]
ffmpeg.exe -> %SystemRoot%\ffmpeg.exe -> [Ver = | Size = 3600384 bytes | Created Date = 20/06/2008 11:39:04 | Attr = ]
ovtcam -> %SystemRoot%\ovtcam -> [Folder | Created Date = 20/06/2008 11:39:12 | Attr = ]
ie7updates -> %SystemRoot%\ie7updates -> [Folder | Created Date = 20/06/2008 12:01:19 | Attr = ]
EPSON PhotoStarter Essential -> %SystemRoot%\EPSON PhotoStarter Essential -> [Folder | Created Date = 20/06/2008 19:00:49 | Attr = ]
RegisteredPackages -> %SystemRoot%\RegisteredPackages -> [Folder | Created Date = 19/06/2008 15:53:45 | Attr = ]
NeroDigital.ini -> %SystemRoot%\NeroDigital.ini -> [Ver = | Size = 47 bytes | Created Date = 19/06/2008 15:56:50 | Attr = ]
Minidump -> %SystemRoot%\Minidump -> [Folder | Created Date = 19/06/2008 16:10:31 | Attr = ]
$MSI31Uninstall_KB893803v2$ -> %SystemRoot%\$MSI31Uninstall_KB893803v2$ -> [Folder | Created Date = 19/06/2008 17:09:24 | Attr = H ]
EPSON CardMonitor Essential -> %SystemRoot%\EPSON CardMonitor Essential -> [Folder | Created Date = 20/06/2008 19:01:00 | Attr = ]
$NtServicePackUninstallNLSDownlevelMapping$ -> %SystemRoot%\$NtServicePackUninstallNLSDownlevelMapping$ -> [Folder | Created Date = 19/06/2008 17:41:14 | Attr = H ]
$NtServicePackUninstallIDNMitigationAPIs$ -> %SystemRoot%\$NtServicePackUninstallIDNMitigationAPIs$ -> [Folder | Created Date = 19/06/2008 17:41:28 | Attr = H ]
ie7 -> %SystemRoot%\ie7 -> [Folder | Created Date = 19/06/2008 17:41:41 | Attr = H ]
WBEM -> %SystemRoot%\WBEM -> [Folder | Created Date = 19/06/2008 17:42:14 | Attr = ]
[Files Created - Additional Folder Scans - Non-Microsoft Only]
Spybot - Search & Destroy -> %AllUsersProfile%\Application Data\Spybot - Search & Destroy -> [Folder | Created Date = 19/06/2008 15:41:49 | Attr = ]
Google -> %AllUsersProfile%\Application Data\Google -> [Folder | Created Date = 19/06/2008 16:01:53 | Attr = ]
Windows Genuine Advantage -> %AllUsersProfile%\Application Data\Windows Genuine Advantage -> [Folder | Created Date = 19/06/2008 17:42:08 | Attr = ]
ESTsoft -> %AllUsersProfile%\Application Data\ESTsoft -> [Folder | Created Date = 20/06/2008 09:05:46 | Attr = ]
.zreglib -> %AllUsersProfile%\Application Data\.zreglib -> [Ver = | Size = 84 bytes | Created Date = 20/06/2008 09:07:39 | Attr = HS]
SlySoft -> %AllUsersProfile%\Application Data\SlySoft -> [Folder | Created Date = 20/06/2008 09:07:47 | Attr = ]
Microsoft Help -> %AllUsersProfile%\Application Data\Microsoft Help -> [Folder | Created Date = 20/06/2008 09:31:13 | Attr = ]
WLInstaller -> %AllUsersProfile%\Application Data\WLInstaller -> [Folder | Created Date = 20/06/2008 10:57:30 | Attr = ]
InstallShield -> %AllUsersProfile%\Application Data\InstallShield -> [Folder | Created Date = 20/06/2008 11:39:08 | Attr = ]
Nero -> %AllUsersProfile%\Application Data\Nero -> [Folder | Created Date = 20/06/2008 11:49:14 | Attr = ]
UDL -> %AllUsersProfile%\Application Data\UDL -> [Folder | Created Date = 20/06/2008 18:59:04 | Attr = ]
LauncherAccess.dt -> %AllUsersProfile%\Application Data\LauncherAccess.dt -> [Ver = | Size = 0 bytes | Created Date = 20/06/2008 19:22:09 | Attr = ]
Bluetooth -> %AllUsersProfile%\Application Data\Bluetooth -> [Folder | Created Date = 20/06/2008 19:32:07 | Attr = ]
Identities -> %AppData%\Identities -> [Folder | Created Date = 19/06/2008 16:29:39 | Attr = ]
Symantec -> %AppData%\Symantec -> [Folder | Created Date = 19/06/2008 16:29:39 | Attr = ]
Adobe -> %AppData%\Adobe -> [Folder | Created Date = 19/06/2008 16:29:39 | Attr = ]
Microsoft -> %AppData%\Microsoft -> [Folder | Created Date = 19/06/2008 16:29:39 | Attr = S]
desktop.ini -> %AppData%\desktop.ini -> [Ver = | Size = 62 bytes | Created Date = 19/06/2008 16:29:40 | Attr = HS]
Ahead -> %AppData%\Ahead -> [Folder | Created Date = 19/06/2008 15:56:13 | Attr = ]
Google -> %AppData%\Google -> [Folder | Created Date = 19/06/2008 16:01:56 | Attr = ]
Macromedia -> %AppData%\Macromedia -> [Folder | Created Date = 19/06/2008 16:39:52 | Attr = ]
ImgBurn -> %AppData%\ImgBurn -> [Folder | Created Date = 20/06/2008 08:51:40 | Attr = ]
ESTsoft -> %AppData%\ESTsoft -> [Folder | Created Date = 20/06/2008 09:05:56 | Attr = ]
InstallShield -> %AppData%\InstallShield -> [Folder | Created Date = 20/06/2008 11:37:03 | Attr = ]
{3248F0A6-6813-11D6-A77B-00B0D0150020} -> %UserProfile%\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150020} -> [Folder | Created Date = 19/06/2008 16:29:39 | Attr = ]
Adobe -> %UserProfile%\Local Settings\Application Data\Adobe -> [Folder | Created Date = 19/06/2008 16:29:39 | Attr = ]
Microsoft -> %UserProfile%\Local Settings\Application Data\Microsoft -> [Folder | Created Date = 19/06/2008 16:29:39 | Attr = ]
IconCache.db -> %UserProfile%\Local Settings\Application Data\IconCache.db -> [Ver = | Size = 2640938 bytes | Created Date = 19/06/2008 16:29:39 | Attr = H ]
Google -> %UserProfile%\Local Settings\Application Data\Google -> [Folder | Created Date = 19/06/2008 16:01:56 | Attr = ]
DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> %UserProfile%\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [Ver = | Size = 4608 bytes | Created Date = 19/06/2008 16:53:41 | Attr = ]
GDIPFONTCACHEV1.DAT -> %UserProfile%\Local Settings\Application Data\GDIPFONTCACHEV1.DAT -> [Ver = | Size = 89976 bytes | Created Date = 20/06/2008 08:34:44 | Attr = ]
Microsoft Help -> %UserProfile%\Local Settings\Application Data\Microsoft Help -> [Folder | Created Date = 20/06/2008 09:31:19 | Attr = ]
ApplicationHistory -> %UserProfile%\Local Settings\Application Data\ApplicationHistory -> [Folder | Created Date = 20/06/2008 11:05:32 | Attr = ]
fusioncache.dat -> %UserProfile%\Local Settings\Application Data\fusioncache.dat -> [Ver = | Size = 132 bytes | Created Date = 20/06/2008 11:05:32 | Attr = ]
Ahead -> %UserProfile%\Local Settings\Application Data\Ahead -> [Folder | Created Date = 20/06/2008 11:58:03 | Attr = ]
Identities -> %UserProfile%\Local Settings\Application Data\Identities -> [Folder | Created Date = 20/06/2008 11:58:06 | Attr = ]
Mes images -> %UserProfile%\Mes documents\Mes images -> [Folder | Created Date = 19/06/2008 16:29:39 | Attr = R ]
Ma musique -> %UserProfile%\Mes documents\Ma musique -> [Folder | Created Date = 19/06/2008 16:29:39 | Attr = R ]
desktop.ini -> %UserProfile%\Mes documents\desktop.ini -> [Ver = | Size = 141 bytes | Created Date = 19/06/2008 16:29:40 | Attr = HS]
Mes vidéos -> %UserProfile%\Mes documents\Mes vidéos -> [Folder | Created Date = 19/06/2008 17:43:16 | Attr = R ]
AnyDVDHD -> %UserProfile%\Mes documents\AnyDVDHD -> [Folder | Created Date = 20/06/2008 09:07:53 | Attr = ]
Visual Studio 2008 -> %UserProfile%\Mes documents\Visual Studio 2008 -> [Folder | Created Date = 20/06/2008 10:21:15 | Attr = ]
Mes fichiers reçus -> %UserProfile%\Mes documents\Mes fichiers reçus -> [Folder | Created Date = 20/06/2008 11:04:50 | Attr = ]
Hercules webcam -> %UserProfile%\Mes documents\Hercules webcam -> [Folder | Created Date = 20/06/2008 11:49:15 | Attr = ]
Nero Home -> %UserProfile%\Mes documents\Nero Home -> [Folder | Created Date = 20/06/2008 12:12:54 | Attr = ]
Contre_la_prochaine_canicule.exe -> %UserProfile%\Mes documents\Contre_la_prochaine_canicule.exe -> Macromedia, Inc. [Ver = 5,0,30,0 | Size = 379325 bytes | Created Date = 20/06/2008 12:29:13 | Attr = ]
Bluetooth -> %UserProfile%\Mes documents\Bluetooth -> [Folder | Created Date = 20/06/2008 19:32:07 | Attr = ]
avast! Antivirus.lnk -> %AllUsersProfile%\Bureau\avast! Antivirus.lnk -> [Ver = | Size = 1617 bytes | Created Date = 20/06/2008 08:33:02 | Attr = ]
AnyDVD.lnk -> %AllUsersProfile%\Bureau\AnyDVD.lnk -> [Ver = | Size = 662 bytes | Created Date = 20/06/2008 09:07:14 | Attr = ]
CloneDVD2.lnk -> %AllUsersProfile%\Bureau\CloneDVD2.lnk -> [Ver = | Size = 760 bytes | Created Date = 20/06/2008 09:07:31 | Attr = ]
CloneDVDmobile.lnk -> %AllUsersProfile%\Bureau\CloneDVDmobile.lnk -> [Ver = | Size = 762 bytes | Created Date = 20/06/2008 09:08:33 | Attr = ]
Nero StartSmart.lnk -> %AllUsersProfile%\Bureau\Nero StartSmart.lnk -> [Ver = | Size = 2309 bytes | Created Date = 20/06/2008 11:57:53 | Attr = ]
EPSON Smart Panel.lnk -> %AllUsersProfile%\Bureau\EPSON Smart Panel.lnk -> [Ver = | Size = 1483 bytes | Created Date = 20/06/2008 18:56:46 | Attr = ]
Samsung PC Studio 3.lnk -> %AllUsersProfile%\Bureau\Samsung PC Studio 3.lnk -> [Ver = | Size = 673 bytes | Created Date = 20/06/2008 19:13:21 | Attr = ]
Spybot - Search & Destroy.lnk -> %UserProfile%\Bureau\Spybot - Search & Destroy.lnk -> [Ver = | Size = 871 bytes | Created Date = 19/06/2008 15:41:53 | Attr = ]
Poste de travail.lnk -> %UserProfile%\Bureau\Poste de travail.lnk -> [Ver = | Size = 104 bytes | Created Date = 19/06/2008 15:49:07 | Attr = ]
Windows Media Player.lnk -> %UserProfile%\Bureau\Windows Media Player.lnk -> [Ver = | Size = 690 bytes | Created Date = 19/06/2008 17:28:46 | Attr = ]
ZNsoft Free.lnk -> %UserProfile%\Bureau\ZNsoft Free.lnk -> [Ver = | Size = 1721 bytes | Created Date = 20/06/2008 08:39:05 | Attr = ]
ZNsoft Utility.lnk -> %UserProfile%\Bureau\ZNsoft Utility.lnk -> [Ver = | Size = 739 bytes | Created Date = 20/06/2008 08:39:33 | Attr = ]
CCleaner.lnk -> %UserProfile%\Bureau\CCleaner.lnk -> [Ver = | Size = 1456 bytes | Created Date = 20/06/2008 08:40:49 | Attr = ]
Free Mp3 Wma Converter.lnk -> %UserProfile%\Bureau\Free Mp3 Wma Converter.lnk -> [Ver = | Size = 808 bytes | Created Date = 20/06/2008 08:55:51 | Attr = ]
Free CD Ripper.lnk -> %UserProfile%\Bureau\Free CD Ripper.lnk -> [Ver = | Size = 810 bytes | Created Date = 20/06/2008 08:55:51 | Attr = ]
dvdSanta.lnk -> %UserProfile%\Bureau\dvdSanta.lnk -> [Ver = | Size = 590 bytes | Created Date = 20/06/2008 08:59:01 | Attr = ]
Free FLV Converter.lnk -> %UserProfile%\Bureau\Free FLV Converter.lnk -> [Ver = | Size = 700 bytes | Created Date = 20/06/2008 09:03:37 | Attr = ]
Capturino.lnk -> %UserProfile%\Bureau\Capturino.lnk -> [Ver = | Size = 639 bytes | Created Date = 20/06/2008 09:06:16 | Attr = ]
Game Jackal.lnk -> %UserProfile%\Bureau\Game Jackal.lnk -> [Ver = | Size = 665 bytes | Created Date = 20/06/2008 09:09:00 | Attr = ]
Microsoft Office Word 2007.lnk -> %UserProfile%\Bureau\Microsoft Office Word 2007.lnk -> [Ver = | Size = 2659 bytes | Created Date = 20/06/2008 09:39:01 | Attr = ]
ESPRX500 Guide de référence.lnk -> %UserProfile%\Bureau\ESPRX500 Guide de référence.lnk -> [Ver = | Size = 1553 bytes | Created Date = 20/06/2008 18:54:40 | Attr = ]
ESPRX500 Guide fonctionnement.lnk -> %UserProfile%\Bureau\ESPRX500 Guide fonctionnement.lnk -> [Ver = | Size = 1550 bytes | Created Date = 20/06/2008 18:54:52 | Attr = ]
ESPRX500 Guide des logiciels.lnk -> %UserProfile%\Bureau\ESPRX500 Guide des logiciels.lnk -> [Ver = | Size = 1553 bytes | Created Date = 20/06/2008 18:59:58 | Attr = ]
VirtumundoBeGone.exe -> %UserProfile%\Bureau\VirtumundoBeGone.exe -> Business Information Solutions [Ver = 1.5 | Size = 96978 bytes | Created Date = 20/06/2008 19:39:06 | Attr = ]
OTMoveIt2.exe -> %UserProfile%\Bureau\OTMoveIt2.exe -> OldTimer Tools [Ver = 1.0.4.2 | Size = 291328 bytes | Created Date = 20/06/2008 19:39:12 | Attr = ]
OTScanIt -> %UserProfile%\Bureau\OTScanIt -> [Folder | Created Date = 20/06/2008 19:54:12 | Attr = ]
ATF-Cleaner.exe -> %UserProfile%\Bureau\ATF-Cleaner.exe -> Atribune.org [Ver = 3.00.0002 | Size = 50688 bytes | Created Date = 20/06/2008 20:16:53 | Attr = ]
BlueSoleil.lnk.disabled -> %AllUsersProfile%\Menu Démarrer\Programmes\Démarrage\BlueSoleil.lnk.disabled -> [Ver = | Size = 1794 bytes | Created Date = 20/06/2008 19:29:35 | Attr = ]
desktop.ini -> %UserProfile%\Menu Démarrer\Programmes\Démarrage\desktop.ini -> [Ver = | Size = 84 bytes | Created Date = 19/06/2008 16:29:39 | Attr = HS]
DESIGNER -> %CommonProgramFiles%\DESIGNER -> [Folder | Created Date = 20/06/2008 09:35:10 | Attr = ]
Merge Modules -> %CommonProgramFiles%\Merge Modules -> [Folder | Created Date = 20/06/2008 10:19:25 | Attr = ]
WindowsLiveInstaller -> %CommonProgramFiles%\WindowsLiveInstaller -> [Folder | Created Date = 20/06/2008 10:57:41 | Attr = HS]
Ahead -> %CommonProgramFiles%\Ahead -> [Folder | Created Date = 20/06/2008 11:49:14 | Attr = ]
D-Link -> %ProgramFiles%\D-Link -> [Folder | Created Date = 19/06/2008 16:32:23 | Attr = ]
ANI -> %ProgramFiles%\ANI -> [Folder | Created Date = 19/06/2008 16:32:27 | Attr = ]
Spybot - Search & Destroy -> %ProgramFiles%\Spybot - Search & Destroy -> [Folder | Created Date = 19/06/2008 15:41:49 | Attr = ]
Google -> %ProgramFiles%\Google -> [Folder | Created Date = 19/06/2008 16:01:04 | Attr = ]
Windows Media Connect 2 -> %ProgramFiles%\Windows Media Connect 2 -> [Folder | Created Date = 19/06/2008 17:28:40 | Attr = ]
MSXML 4.0 -> %ProgramFiles%\MSXML 4.0 -> [Folder | Created Date = 19/06/2008 17:54:28 | Attr = ]
Alwil Software -> %ProgramFiles%\Alwil Software -> [Folder | Created Date = 20/06/2008 08:32:51 | Attr = ]
ZNsoft Corporation -> %ProgramFiles%\ZNsoft Corporation -> [Folder | Created Date = 20/06/2008 08:39:03 | Attr = ]
CCleaner -> %ProgramFiles%\CCleaner -> [Folder | Created Date = 20/06/2008 08:40:49 | Attr = ]
My Lockbox -> %ProgramFiles%\My Lockbox -> [Folder | Created Date = 20/06/2008 08:49:01 | Attr = ]
ImgBurn -> %ProgramFiles%\ImgBurn -> [Folder | Created Date = 20/06/2008 08:51:07 | Attr = ]
Free Audio Pack -> %ProgramFiles%\Free Audio Pack -> [Folder | Created Date = 20/06/2008 08:55:47 | Attr = ]
dvdSanta -> %ProgramFiles%\dvdSanta -> [Folder | Created Date = 20/06/2008 08:59:00 | Attr = ]
UDPixel -> %ProgramFiles%\UDPixel -> [Folder | Created Date = 20/06/2008 09:02:56 | Attr = ]
Free FLV Converter -> %ProgramFiles%\Free FLV Converter -> [Folder | Created Date = 20/06/2008 09:03:33 | Attr = ]
ESTsoft -> %ProgramFiles%\ESTsoft -> [Folder | Created Date = 20/06/2008 09:05:42 | Attr = ]
Capturino V1.3 -> %ProgramFiles%\Capturino V1.3 -> [Folder | Created Date = 20/06/2008 09:06:11 | Attr = ]
SlySoft -> %ProgramFiles%\SlySoft -> [Folder | Created Date = 20/06/2008 09:07:12 | Attr = ]
Elaborate Bytes -> %ProgramFiles%\Elaborate Bytes -> [Folder | Created Date = 20/06/2008 09:07:29 | Attr = ]
Microsoft Office -> %ProgramFiles%\Microsoft Office -> [Folder | Created Date = 20/06/2008 09:31:14 | Attr = ]
Microsoft.NET -> %ProgramFiles%\Microsoft.NET -> [Folder | Created Date = 20/06/2008 09:34:19 | Attr = ]
Microsoft Visual Studio -> %ProgramFiles%\Microsoft Visual Studio -> [Folder | Created Date = 20/06/2008 09:35:11 | Attr = ]
MSBuild -> %ProgramFiles%\MSBuild -> [Folder | Created Date = 20/06/2008 09:35:39 | Attr = ]
Microsoft Works -> %ProgramFiles%\Microsoft Works -> [Folder | Created Date = 20/06/2008 09:36:05 | Attr = ]
MSXML 6.0 -> %ProgramFiles%\MSXML 6.0 -> [Folder | Created Date = 20/06/2008 10:13:55 | Attr = ]
Reference Assemblies -> %ProgramFiles%\Reference Assemblies -> [Folder | Created Date = 20/06/2008 10:16:21 | Attr = ]
Microsoft SDKs -> %ProgramFiles%\Microsoft SDKs -> [Folder | Created Date = 20/06/2008 10:18:49 | Attr = ]
Microsoft Visual Studio 9.0 -> %ProgramFiles%\Microsoft Visual Studio 9.0 -> [Folder | Created Date = 20/06/2008 10:19:25 | Attr = ]
Microsoft Silverlight -> %ProgramFiles%\Microsoft Silverlight -> [Folder | Created Date = 20/06/2008 10:21:45 | Attr = ]
Windows Live -> %ProgramFiles%\Windows Live -> [Folder | Created Date = 20/06/2008 10:57:37 | Attr = ]
Microsoft SQL Server Compact Edition -> %ProgramFiles%\Microsoft SQL Server Compact Edition -> [Folder | Created Date = 20/06/2008 11:05:55 | Attr = ]
Symantec -> %ProgramFiles%\Symantec -> [Folder | Created Date = 20/06/2008 11:38:02 | Attr = ]
Hercules -> %ProgramFiles%\Hercules -> [Folder | Created Date = 20/06/2008 11:38:55 | Attr = ]
Nero -> %ProgramFiles%\Nero -> [Folder | Created Date = 20/06/2008 11:49:14 | Attr = ]
Microsoft CAPICOM 2.1.0.2 -> %ProgramFiles%\Microsoft CAPICOM 2.1.0.2 -> [Folder | Created Date = 20/06/2008 12:03:09 | Attr = ]
EPSON -> %ProgramFiles%\EPSON -> [Folder | Created Date = 20/06/2008 18:51:36 | Attr = ]
Smart Panel -> %ProgramFiles%\Smart Panel -> [Folder | Created Date = 20/06/2008 18:55:16 | Attr = ]
ArcSoft -> %ProgramFiles%\ArcSoft -> [Folder | Created Date = 20/06/2008 18:56:59 | Attr = ]
ABBYY FineReader 5.0 Sprint -> %ProgramFiles%\ABBYY FineReader 5.0 Sprint -> [Folder | Created Date = 20/06/2008 18:58:18 | Attr = ]
Samsung -> %ProgramFiles%\Samsung -> [Folder | Created Date = 20/06/2008 19:12:35 | Attr = ]
IVT Corporation -> %ProgramFiles%\IVT Corporation -> [Folder | Created Date = 20/06/2008 19:27:58 | Attr = ]
Lavalys -> %ProgramFiles%\Lavalys -> [Folder | Created Date = 20/06/2008 19:39:56 | Attr = ]

[Files/Folders - Modified Within 30 days]
FOUND.000 -> %SystemDrive%\FOUND.000 -> [Folder | Modified Date = 19/06/2008 16:09:06 | Attr = HS]
boot.ini -> %SystemDrive%\boot.ini -> [Ver = | Size = 216 bytes | Modified Date = 19/06/2008 16:28:58 | Attr = RHS]
FOUND.001 -> %SystemDrive%\FOUND.001 -> [Folder | Modified Date = 19/06/2008 16:10:24 | Attr = HS]
hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 1073139712 bytes | Modified Date = 20/06/2008 19:07:02 | Attr = HS]
TempDVD -> %SystemDrive%\TempDVD -> [Folder | Modified Date = 20/06/2008 09:26:22 | Attr = ]
MSOCache -> %SystemDrive%\MSOCache -> [Folder | Modified Date = 20/06/2008 09:31:00 | Attr = RH ]
autorun.inf -> %SystemDrive%\autorun.inf -> [Folder | Modified Date = 20/06/2008 10:48:02 | Attr = RHS]
_OTMoveIt -> %SystemDrive%\_OTMoveIt -> [Folder | Modified Date = 20/06/2008 19:46:24 | Attr = ]
UMDF -> %SystemRoot%\System32\drivers\UMDF -> [Folder | Modified Date = 19/06/2008 17:27:42 | Attr = ]
MsftWdf_user_01_00_00.Wdf -> %SystemRoot%\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf -> [Ver = | Size = 0 bytes | Modified Date = 19/06/2008 17:27:44 | Attr = H ]
AnyDVD.sys -> %SystemRoot%\System32\drivers\AnyDVD.sys -> SlySoft, Inc. [Ver = 6.4.5.0 | Size = 99648 bytes | Modified Date = 17/06/2008 15:59:16 | Attr = ]
StarOpen.sys -> %SystemRoot%\System32\drivers\StarOpen.sys -> [Ver = | Size = 5632 bytes | Modified Date = 20/06/2008 19:21:58 | Attr = ]
wpa.dbl -> %SystemRoot%\System32\wpa.dbl -> [Ver = | Size = 1158 bytes | Modified Date = 20/06/2008 17:23:14 | Attr = ]
perfc009.dat -> %SystemRoot%\System32\perfc009.dat -> [Ver = | Size = 71980 bytes | Modified Date = 20/06/2008 11:23:20 | Attr = ]
perfh009.dat -> %SystemRoot%\System32\perfh009.dat -> [Ver = | Size = 442966 bytes | Modified Date = 20/06/2008 11:23:20 | Attr = ]
mcheck.mhf -> %SystemRoot%\System32\mcheck.mhf -> [Ver = | Size = 28 bytes | Modified Date = 20/06/2008 09:26:02 | Attr = ]
perfc00C.dat -> %SystemRoot%\System32\perfc00C.dat -> [Ver = | Size = 85688 bytes | Modified Date = 20/06/2008 11:23:20 | Attr = ]
perfh00C.dat -> %SystemRoot%\System32\perfh00C.dat -> [Ver = | Size = 512286 bytes | Modified Date = 20/06/2008 11:23:20 | Attr = ]
eRLog.ini -> %SystemRoot%\System32\eRLog.ini -> [Ver = | Size = 0 bytes | Modified Date = 20/06/2008 09:11:40 | Attr = ]
ControlSubX.ocx -> %SystemRoot%\System32\ControlSubX.ocx -> [Ver = 1.00.0007 | Size = 24576 bytes | Modified Date = 04/06/2008 18:42:54 | Attr = ]
PropertyGrid.ocx -> %SystemRoot%\System32\PropertyGrid.ocx -> [Ver = 1.00 | Size = 364544 bytes | Modified Date = 04/06/2008 18:42:54 | Attr = ]
ReyXpBasics.tlb -> %SystemRoot%\System32\ReyXpBasics.tlb -> [Ver = | Size = 208500 bytes | Modified Date = 04/06/2008 18:42:54 | Attr = ]
TubeFinder.exe -> %SystemRoot%\System32\TubeFinder.exe -> Koyote Soft [Ver = 1.00 | Size = 225280 bytes | Modified Date = 13/06/2008 01:00:08 | Attr = ]
$winnt$.inf -> %SystemRoot%\System32\$winnt$.inf -> [Ver = | Size = 733 bytes | Modified Date = 19/06/2008 16:29:00 | Attr = ]
FNTCACHE.DAT -> %SystemRoot%\System32\FNTCACHE.DAT -> [Ver = | Size = 333072 bytes | Modified Date = 20/06/2008 12:06:00 | Attr = ]
en-us -> %SystemRoot%\System32\en-us -> [Folder | Modified Date = 20/06/2008 10:16:22 | Attr = ]
3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->
PerfStringBackup.INI -> %SystemRoot%\System32\PerfStringBackup.INI -> [Ver = | Size = 1127594 bytes | Modified Date = 20/06/2008 11:23:20 | Attr = ]
mapisvc.inf -> %SystemRoot%\System32\mapisvc.inf -> [Ver = | Size = 57 bytes | Modified Date = 19/06/2008 15:45:54 | Attr = ]
XPSViewer -> %SystemRoot%\System32\XPSViewer -> [Folder | Modified Date = 20/06/2008 10:16:28 | Attr = ]
DRVSTORE -> %SystemRoot%\System32\DRVSTORE -> [Folder | Modified Date = 20/06/2008 11:04:46 | Attr = ]
HWC HD -> %SystemRoot%\System32\HWC HD -> [Folder | Modified Date = 20/06/2008 11:38:56 | Attr = ]
CONFIG.NT -> %SystemRoot%\System32\CONFIG.NT -> [Ver = | Size = 3121 bytes | Modified Date = 20/06/2008 08:33:04 | Attr = ]
nvapps.xml -> %SystemRoot%\System32\nvapps.xml -> [Ver = | Size = 29204 bytes | Modified Date = 20/06/2008 19:07:30 | Attr = ]
Samsung_USB_Drivers -> %SystemRoot%\System32\Samsung_USB_Drivers -> [Folder | Modified Date = 20/06/2008 19:12:40 | Attr = ]
SoftwareDistribution -> %SystemRoot%\System32\SoftwareDistribution -> [Folder | Modified Date = 19/06/2008 15:38:02 | Attr = ]
PreInstall -> %SystemRoot%\System32\PreInstall -> [Folder | Modified Date = 19/06/2008 17:09:10 | Attr = ]
LogFiles -> %SystemRoot%\System32\LogFiles -> [Folder | Modified Date = 19/06/2008 17:27:42 | Attr = ]
nscompat.tlb -> %SystemRoot%\System32\nscompat.tlb -> [Ver = | Size = 23392 bytes | Modified Date = 19/06/2008 17:28:52 | Attr = ]
fr-fr -> %SystemRoot%\System32\fr-fr -> [Folder | Modified Date = 19/06/2008 17:42:14 | Attr = ]
win.ini -> %SystemRoot%\win.ini -> [Ver = | Size = 582 bytes | Modified Date = 20/06/2008 09:31:42 | Attr = ]
SHELLNEW -> %SystemRoot%\SHELLNEW -> [Folder | Modified Date = 20/06/2008 09:31:28 | Attr = ]
1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp ->
LastGood -> %SystemRoot%\LastGood -> [Folder | Modified Date = 20/06/2008 19:12:40 | Attr = ]
CDE RX500F.ini -> %SystemRoot%\CDE RX500F.ini -> [Ver = | Size = 25 bytes | Modified Date = 20/06/2008 18:48:36 | Attr = ]
WMSysPr9.prx -> %SystemRoot%\WMSysPr9.prx -> [Ver = | Size = 316640 bytes | Modified Date = 19/06/2008 17:28:12 | Attr = ]
bootstat.dat -> %SystemRoot%\bootstat.dat -> [Ver = | Size = 2048 bytes | Modified Date = 20/06/2008 19:07:06 | Attr = S]
ovtcam -> %SystemRoot%\ovtcam -> [Folder | Modified Date = 20/06/2008 11:39:14 | Attr = ]
ie7updates -> %SystemRoot%\ie7updates -> [Folder | Modified Date = 20/06/2008 12:01:20 | Attr = ]
EPSON PhotoStarter Essential -> %SystemRoot%\EPSON PhotoStarter Essential -> [Folder | Modified Date = 20/06/2008 19:00:50 | Attr = ]
RegisteredPackages -> %SystemRoot%\RegisteredPackages -> [Folder | Modified Date = 19/06/2008 15:53:46 | Attr = ]
NeroDigital.ini -> %SystemRoot%\NeroDigital.ini -> [Ver = | Size = 47 bytes | Modified Date = 19/06/2008 15:56:52 | Attr = ]
Minidump -> %SystemRoot%\Minidump -> [Folder | Modified Date = 19/06/2008 16:10:32 | Attr = ]
$MSI31Uninstall_KB893803v2$ -> %SystemRoot%\$MSI31Uninstall_KB893803v2$ -> [Folder | Modified Date = 19/06/2008 17:09:26 | Attr = H ]
EPSON CardMonitor Essential -> %SystemRoot%\EPSON CardMonitor Essential -> [Folder | Modified Date = 20/06/2008 19:01:02 | Attr = ]
$NtServicePackUninstallNLSDownlevelMapping$ -> %SystemRoot%\$NtServicePackUninstallNLSDownlevelMapping$ -> [Folder | Modified Date = 19/06/2008 17:41:16 | Attr = H ]
$NtServicePackUninstallIDNMitigationAPIs$ -> %SystemRoot%\$NtServicePackUninstallIDNMitigationAPIs$ -> [Folder | Modified Date = 19/06/2008 17:41:30 | Attr = H ]
ie7 -> %SystemRoot%\ie7 -> [Folder | Modified Date = 19/06/2008 17:41:42 | Attr = H ]
WBEM -> %SystemRoot%\WBEM -> [Folder | Modified Date = 19/06/2008 17:42:16 | Attr = ]
SA.DAT -> %SystemRoot%\tasks\SA.DAT -> [Ver = | Size = 6 bytes | Modified Date = 20/06/2008 19:07:14 | Attr = H ]
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\ -> C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader -> [Folder | Modified Date = 13/11/2005 07:08:38 | Attr = ]
qmgr0.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat -> [Ver = | Size = 22590 bytes | Modified Date = 20/06/2008 19:08:06 | Attr = ]
qmgr1.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat -> [Ver = | Size = 22590 bytes | Modified Date = 20/06/2008 19:08:06 | Attr = ]
C:\Documents and Settings\All Users\Application Data\Microsoft\OFFICE\DATA\ -> C:\Documents and Settings\All Users\Application Data\Microsoft\OFFICE\DATA -> [Folder | Modified Date = 20/06/2008 09:34:22 | Attr = ]
opa12.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\OFFICE\DATA\opa12.dat -> [Ver = | Size = 8206 bytes | Modified Date = 20/06/2008 19:36:48 | Attr = ]
C:\Documents and Settings\All Users\Application Data\Microsoft\VCExpress\9.0\ -> C:\Documents and Settings\All Users\Application Data\Microsoft\VCExpress\9.0 -> [Folder | Modified Date = 20/06/2008 10:21:20 | Attr = ]
VCExpress000223.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\VCExpress\9.0\VCExpress000223.dat -> [Ver = | Size = 677178 bytes | Modified Date = 20/06/2008 10:21:22 | Attr = H ]
C:\WINDOWS\Temp\ -> C:\WINDOWS\Temp -> [Folder | Modified Date = 25/06/2005 07:29:20 | Attr = ]
IEHost.exe -> C:\WINDOWS\Temp\IEHost.exe -> Naviant [Ver = 1, 0, 0, 1 | Size = 65536 bytes | Modified Date = 10/10/2000 12:48:56 | Attr = ]
NavBrowser.exe -> C:\WINDOWS\Temp\NavBrowser.exe -> Naviant, Inc. [Ver = 1.0.1.2 | Size = 212992 bytes | Modified Date = 12/09/2001 14:42:58 | Attr = ]
C:\WINDOWS\Temp\WLXPL_DX\ -> C:\WINDOWS\Temp\WLXPL_DX -> [Folder | Modified Date = 20/06/2008 12:01:44 | Attr = ]
dxsetup.exe -> C:\WINDOWS\Temp\WLXPL_DX\dxsetup.exe -> Microsoft Corporation [Ver = 4.9.0.0904 | Size = 484632 bytes | Modified Date = 21/12/2007 14:46:58 | Attr = ]
C:\WINDOWS\Temp\WLXPL_DX\ -> C:\WINDOWS\Temp\WLXPL_DX -> [Folder | Modified Date = 20/06/2008 12:01:44 | Attr = ]
DSETUP.dll -> C:\WINDOWS\Temp\WLXPL_DX\DSETUP.dll -> Microsoft Corporation [Ver = 4.9.0.0904 | Size = 74520 bytes | Modified Date = 21/12/2007 14:46:58 | Attr = ]
dsetup32.dll -> C:\WINDOWS\Temp\WLXPL_DX\dsetup32.dll -> Microsoft Corporation [Ver = 4.9.0.0904 | Size = 1670936 bytes | Modified Date = 21/12/2007 14:46:58 | Attr = ]
C:\WINDOWS\Temp\ -> C:\WINDOWS\Temp -> [Folder | Modified Date = 25/06/2005 07:29:20 | Attr = ]
Perflib_Perfdata_640.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_640.dat -> [Ver = | Size = 16384 bytes | Modified Date = 20/06/2008 19:07:14 | Attr = ]
C:\WINDOWS\Temp\ -> C:\WINDOWS\Temp -> [Folder | Modified Date = 25/06/2005 07:29:20 | Attr = ]
navLoad.ini -> C:\WINDOWS\Temp\navLoad.ini -> [Ver = | Size = 1840 bytes | Modified Date = 20/06/2008 19:00:32 | Attr = ]
[Files Modified - Additional Folder Scans - Non-Microsoft Only]
Spybot - Search & Destroy -> %AllUsersProfile%\Application Data\Spybot - Search & Destroy -> [Folder | Modified Date = 19/06/2008 15:41:50 | Attr = ]
Google -> %AllUsersProfile%\Application Data\Google -> [Folder | Modified Date = 19/06/2008 16:01:54 | Attr = ]
Windows Genuine Advantage -> %AllUsersProfile%\Application Data\Windows Genuine Advantage -> [Folder | Modified Date = 19/06/2008 17:42:10 | Attr = ]
ESTsoft -> %AllUsersProfile%\Application Data\ESTsoft -> [Folder | Modified Date = 20/06/2008 09:05:48 | Attr = ]
.zreglib -> %AllUsersProfile%\Application Data\.zreglib -> [Ver = | Size = 84 bytes | Modified Date = 20/06/2008 09:18:12 | Attr = HS]
SlySoft -> %AllUsersProfile%\Application Data\SlySoft -> [Folder | Modified Date = 20/06/2008 09:07:48 | Attr = ]
Microsoft Help -> %AllUsersProfile%\Application Data\Microsoft Help -> [Folder | Modified Date = 20/06/2008 09:31:14 | Attr = ]
WLInstaller -> %AllUsersProfile%\Application Data\WLInstaller -> [Folder | Modified Date = 20/06/2008 10:57:32 | Attr = ]
InstallShield -> %AllUsersProfile%\Application Data\InstallShield -> [Folder | Modified Date = 20/06/2008 11:39:10 | Attr = ]
Nero -> %AllUsersProfile%\Application Data\Nero -> [Folder | Modified Date = 20/06/2008 11:49:16 | Attr = ]
UDL -> %AllUsersProfile%\Application Data\UDL -> [Folder | Modified Date = 20/06/2008 18:59:06 | Attr = ]
LauncherAccess.dt -> %AllUsersProfile%\Application Data\LauncherAccess.dt -> [Ver = | Size = 0 bytes | Modified Date = 20/06/2008 19:22:10 | Attr = ]
Bluetooth -> %AllUsersProfile%\Application Data\Bluetooth -> [Folder | Modified Date = 20/06/2008 19:32:08 | Attr = ]
Ahead -> %AppData%\Ahead -> [Folder | Modified Date = 19/06/2008 15:56:14 | Attr = ]
Google -> %AppData%\Google -> [Folder | Modified Date = 19/06/2008 16:01:58 | Attr = ]
Macromedia -> %AppData%\Macromedia -> [Folder | Modified Date = 19/06/2008 16:39:54 | Attr = ]
ImgBurn -> %AppData%\ImgBurn -> [Folder | Modified Date = 20/06/2008 08:51:42 | Attr = ]
ESTsoft -> %AppData%\ESTsoft -> [Folder | Modified Date = 20/06/2008 09:05:58 | Attr = ]
InstallShield -> %AppData%\InstallShield -> [Folder | Modified Date = 20/06/2008 11:37:04 | Attr = ]
IconCache.db -> %UserProfile%\Local Settings\Application Data\IconCache.db -> [Ver = | Size = 2640938 bytes | Modified Date = 20/06/2008 12:00:16 | Attr = H ]
Google -> %UserProfile%\Local Settings\Application Data\Google -> [Folder | Modified Date = 19/06/2008 16:01:58 | Attr = ]
DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> %UserProfile%\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [Ver = | Size = 4608 bytes | Modified Date = 19/06/2008 16:53:44 | Attr = ]
GDIPFONTCACHEV1.DAT -> %UserProfile%\Local Settings\Application Data\GDIPFONTCACHEV1.DAT -> [Ver = | Size = 89976 bytes | Modified Date = 20/06/2008 10:31:16 | Attr = ]
Microsoft Help -> %UserProfile%\Local Settings\Application Data\Microsoft Help -> [Folder | Modified Date = 20/06/2008 09:31:20 | Attr = ]
ApplicationHistory -> %UserProfile%\Local Settings\Application Data\ApplicationHistory -> [Folder | Modified Date = 20/06/2008 11:05:34 | Attr = ]
fusioncache.dat -> %UserProfile%\Local Settings\Application Data\fusioncache.dat -> [Ver = | Size = 132 bytes | Modified Date = 20/06/2008 11:05:34 | Attr = ]
Ahead -> %UserProfile%\Local Settings\Application Data\Ahead -> [Folder | Modified Date = 20/06/2008 11:58:04 | Attr = ]
Identities -> %UserProfile%\Local Settings\Application Data\Identities -> [Folder | Modified Date = 20/06/2008 11:58:08 | Attr = ]
Mes images -> %UserProfile%\Mes documents\Mes images -> [Folder | Modified Date = 19/06/2008 17:52:12 | Attr = R ]
Ma musique -> %UserProfile%\Mes documents\Ma musique -> [Folder | Modified Date = 19/06/2008 17:52:12 | Attr = R ]
desktop.ini -> %UserProfile%\Mes documents\desktop.ini -> [Ver = | Size = 141 bytes | Modified Date = 19/06/2008 17:52:12 | Attr = HS]
Mes vidéos -> %UserProfile%\Mes documents\Mes vidéos -> [Folder | Modified Date = 19/06/2008 17:43:18 | Attr = R ]
AnyDVDHD -> %UserProfile%\Mes documents\AnyDVDHD -> [Folder | Modified Date = 20/06/2008 09:07:54 | Attr = ]
Visual Studio 2008 -> %UserProfile%\Mes documents\Visual Studio 2008 -> [Folder | Modified Date = 20/06/2008 10:21:16 | Attr = ]
Mes fichiers reçus -> %UserProfile%\Mes documents\Mes fichiers reçus -> [Folder | Modified Date = 20/06/2008 11:04:52 | Attr = ]
Hercules webcam -> %UserProfile%\Mes documents\Hercules webcam -> [Folder | Modified Date = 20/06/2008 11:49:16 | Attr = ]
Nero Home -> %UserProfile%\Mes documents\Nero Home -> [Folder | Modified Date = 20/06/2008 12:12:56 | Attr = ]
Bluetooth -> %UserProfile%\Mes documents\Bluetooth -> [Folder | Modified Date = 20/06/2008 19:32:08 | Attr = ]
avast! Antivirus.lnk -> %AllUsersProfile%\Bureau\avast! Antivirus.lnk -> [Ver = | Size = 1617 bytes | Modified Date = 20/06/2008 08:33:04 | Attr = ]
AnyDVD.lnk -> %AllUsersProfile%\Bureau\AnyDVD.lnk -> [Ver = | Size = 662 bytes | Modified Date = 20/06/2008 09:20:54 | Attr = ]
CloneDVD2.lnk -> %AllUsersProfile%\Bureau\CloneDVD2.lnk -> [Ver = | Size = 760 bytes | Modified Date = 20/06/2008 09:21:44 | Attr = ]
CloneDVDmobile.lnk -> %AllUsersProfile%\Bureau\CloneDVDmobile.lnk -> [Ver = | Size = 762 bytes | Modified Date = 20/06/2008 09:23:34 | Attr = ]
Nero StartSmart.lnk -> %AllUsersProfile%\Bureau\Nero StartSmart.lnk -> [Ver = | Size = 2309 bytes | Modified Date = 20/06/2008 11:57:54 | Attr = ]
EPSON Smart Panel.lnk -> %AllUsersProfile%\Bureau\EPSON Smart Panel.lnk -> [Ver = | Size = 1483 bytes | Modified Date = 20/06/2008 18:56:48 | Attr = ]
Samsung PC Studio 3.lnk -> %AllUsersProfile%\Bureau\Samsung PC Studio 3.lnk -> [Ver = | Size = 673 bytes | Modified Date = 20/06/2008 19:13:22 | Attr = ]
Spybot - Search & Destroy.lnk -> %UserProfile%\Bureau\Spybot - Search & Destroy.lnk -> [Ver = | Size = 871 bytes | Modified Date = 19/06/2008 15:43:24 | Attr = ]
Poste de travail.lnk -> %UserProfile%\Bureau\Poste de travail.lnk -> [Ver = | Size = 104 bytes | Modified Date = 19/06/2008 15:49:08 | Attr = ]
Windows Media Player.lnk -> %UserProfile%\Bureau\Windows Media Player.lnk -> [Ver = | Size = 690 bytes | Modified Date = 19/06/2008 17:43:08 | Attr = ]
ZNsoft Free.lnk -> %UserProfile%\Bureau\ZNsoft Free.lnk -> [Ver = | Size = 1721 bytes | Modified Date = 20/06/2008 08:39:06 | Attr = ]
ZNsoft Utility.lnk -> %UserProfile%\Bureau\ZNsoft Utility.lnk -> [Ver = | Size = 739 bytes | Modified Date = 20/06/2008 08:39:34 | Attr = ]
CCleaner.lnk -> %UserProfile%\Bureau\CCleaner.lnk -> [Ver = | Size = 1456 bytes | Modified Date = 20/06/2008 08:43:38 | Attr = ]
Free Mp3 Wma Converter.lnk -> %UserProfile%\Bureau\Free Mp3 Wma Converter.lnk -> [Ver = | Size = 808 bytes | Modified Date = 20/06/2008 08:55:52 | Attr = ]
Free CD Ripper.lnk -> %UserProfile%\Bureau\Free CD Ripper.lnk -> [Ver = | Size = 810 bytes | Modified Date = 20/06/2008 08:55:52 | Attr = ]
dvdSanta.lnk -> %UserProfile%\Bureau\dvdSanta.lnk -> [Ver = | Size = 590 bytes | Modified Date = 20/06/2008 08:59:02 | Attr = ]
Free FLV Converter.lnk -> %UserProfile%\Bureau\Free FLV Converter.lnk -> [Ver = | Size = 700 bytes | Modified Date = 20/06/2008 09:03:38 | Attr = ]
Capturino.lnk -> %UserProfile%\Bureau\Capturino.lnk -> [Ver = | Size = 639 bytes | Modified Date = 20/06/2008 09:06:18 | Attr = ]
Game Jackal.lnk -> %UserProfile%\Bureau\Game Jackal.lnk -> [Ver = | Size = 665 bytes | Modified Date = 20/06/2008 09:25:56 | Attr = ]
Microsoft Office Word 2007.lnk -> %UserProfile%\Bureau\Microsoft Office Word 2007.lnk -> [Ver = | Size = 2659 bytes | Modified Date = 20/06/2008 09:39:02 | Attr = ]
ESPRX500 Guide de référence.lnk -> %UserProfile%\Bureau\ESPRX500 Guide de référence.lnk -> [Ver = | Size = 1553 bytes | Modified Date = 20/06/2008 18:54:42 | Attr = ]
ESPRX500 Guide fonctionnement.lnk -> %UserProfile%\Bureau\ESPRX500 Guide fonctionnement.lnk -> [Ver = | Size = 1550 bytes | Modified Date = 20/06/2008 18:54:54 | Attr = ]
ESPRX500 Guide des logiciels.lnk -> %UserProfile%\Bureau\ESPRX500 Guide des logiciels.lnk -> [Ver = | Size = 1553 bytes | Modified Date = 20/06/2008 19:00:00 | Attr = ]
VirtumundoBeGone.exe -> %UserProfile%\Bureau\VirtumundoBeGone.exe -> Business Information Solutions [Ver = 1.5 | Size = 96978 bytes | Modified Date = 19/06/2008 16:50:12 | Attr = ]
OTMoveIt2.exe -> %UserProfile%\Bureau\OTMoveIt2.exe -> OldTimer Tools [Ver = 1.0.4.2 | Size = 291328 bytes | Modified Date = 20/06/2008 10:05:48 | Attr = ]
OTScanIt -> %UserProfile%\Bureau\OTScanIt -> [Folder | Modified Date = 20/06/2008 19:54:14 | Attr = ]
ATF-Cleaner.exe -> %UserProfile%\Bureau\ATF-Cleaner.exe -> Atribune.org [Ver = 3.00.0002 | Size = 50688 bytes | Modified Date = 20/06/2008 20:16:52 | Attr = ]
BlueSoleil.lnk.disabled -> %AllUsersProfile%\Menu Démarrer\Programmes\Démarrage\BlueSoleil.lnk.disabled -> [Ver = | Size = 1794 bytes | Modified Date = 20/06/2008 19:29:36 | Attr = ]
DESIGNER -> %CommonProgramFiles%\DESIGNER -> [Folder | Modified Date = 20/06/2008 09:35:12 | Attr = ]
Merge Modules -> %CommonProgramFiles%\Merge Modules -> [Folder | Modified Date = 20/06/2008 10:19:26 | Attr = ]
WindowsLiveInstaller -> %CommonProgramFiles%\WindowsLiveInstaller -> [Folder | Modified Date = 20/06/2008 10:57:42 | Attr = HS]
Ahead -> %CommonProgramFiles%\Ahead -> [Folder | Modified Date = 20/06/2008 11:49:16 | Attr = ]

< End of report >
[/code]

| Alerter

Répondre à dobermann24

dobermann24

20 Juin 2008 19:01:50

sinon le mieux c'est que je te donne l'url de mon upload sur mediafire.com

http://www.mediafire.com/?vucn3t04rxt

Merci encore et à bientot pour des nouvelles.

| Alerter

Répondre à dobermann24

Egwene

21 Juin 2008 11:02:54

Bonjour, On va procéder autrement

Télécharge Hijackthis (de Trend Micro) sur ton Bureau.

Double clique sur HJTInstall.exe pour lancer l'installation.

Clique sur Install.

Double clique sur le raccourci d'HijackThis qui vient d'être créé pour le lancer.

Accepte la licence en cliquant sur Yes.

Clique sur "Do a system scan and save a logfile".

Poste ici le rapport généré.

Note : Le rapport se trouve également ici : C:\Program Files\Trend Micro\Hijackthis\Hijackthis.log

Aide : Comment utiliser HijackThis.

| Alerter

Répondre à Egwene

dobermann24

22 Juin 2008 06:24:27

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:26:55, on 22/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\D-Link\AirPlus XtremeG\AirPlusCFG.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\My Lockbox\flockbox.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Acer\eRecovery\Monitor.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0K2.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aliceadsl.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [D-Link AirPlus XtremeG] C:\Program Files\D-Link\AirPlus XtremeG\AirPlusCFG.exe
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [flockbox] C:\Program Files\My Lockbox\flockbox.exe /a
O4 - HKLM\..\Run: [EPSON Stylus Photo RX500] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0K2.EXE /P24 "EPSON Stylus Photo RX500" /O6 "USB001" /M "Stylus Photo RX500"
O4 - HKLM\..\Run: [ISUSPM] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKLM\..\Run: [eRecoveryService] C:\Program Files\Acer\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [EPSON Stylus Photo RX500] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0K2.EXE /P24 "EPSON Stylus Photo RX500" /M "Stylus Photo RX500" /EF "HKCU"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BlueSoleil.lnk.disabled
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scan...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 8571 bytes

| Alerter

Répondre à dobermann24

dobermann24

22 Juin 2008 06:33:30

Je viens de te poster mon rapport HijackThis.
Merci pour ta réponse.
J'aurais aussi voulu savoir ce que signifie le message "Bootkit Write: Virus-Continue Y/N"
Ce message est apparu à la fin du processus de restauration de mon dvd d'origine du system.
J'ai fait "Yes" pour finaliser la restauration.
Puis j'ai réinstallé toutes mes apps, et au lancement de spybot Virtumonde était toujours là, c'est pourquoi je suis ici.
A bientot et encore merci.

| Alerter

Répondre à dobermann24

dobermann24

22 Juin 2008 06:44:56

Je pense que ce scan est clean tu me dira si tu pense que non, et si c'est le cas, comment savoir si il reste des traces?
Je pense que virtumonde était sur le fichier .exe contenu dans une application téléchargée sur limewire.
OTscanit lui incluait ma 2eme partition (D

mais aussi J: l'emplacement de ma clé usb.
Donc si tu as besoin de plus d'infos je peux refaire un scan avec et l'uploader sur mediafire.com
Je voudrais etre sur de ne plus avoir de traces car j'ai aussi contaminé l'ordi de mon frere avec ma clé et je pense qu'en suite je te posterai le rapport du scan de son ordi si tu veux bien.
Mais chaque chose en son temps. lol
Désolé merci et bye.

| Alerter

Répondre à dobermann24

Tom's guide dans le monde