[Virus] cmdservice

Bonjour

Il n'y a pas que ça.

1. Télécharge Combofix.exe (par sUBs) sur ton Bureau
http://download.bleepingcomputer.com/sUBs/combofix.exe

2. Double clique combofix.exe et suis les invites.

3. Lorsque le scan sera complété, un rapport apparaîtra.
Copie/colle ce rapport dans ta prochaine réponse avec un nouveau HijackThis.

Merci,

il faut le lancer comme HJT en mose sans echec ?

Non, en mode normal.
Et poste aussi le rapport HijackThis en mode normal.

Voila ce que tu m'as demandé:

fpodevin - 06-11-09 13:45:08,82 Service Pack 2
ComboFix 06.11.9 - Running from: "C:\Documents and Settings\fpodevin\Bureau"

((((((((((((((((((((((((((((((((((((((((((((( Look2Me's Log ))))))))))))))))))))))))))))))))))))))))))))))))))

REGISTRY ENTRIES REMOVED:

[HKEY_CLASSES_ROOT\clsid\{D91B90F1-3785-41CD-BD37-307ED027B17D}]
@=""
"IDEx"="ADDR"

[HKEY_CLASSES_ROOT\clsid\{D91B90F1-3785-41CD-BD37-307ED027B17D}\Implemented Categories]
@=""

[HKEY_CLASSES_ROOT\clsid\{D91B90F1-3785-41CD-BD37-307ED027B17D}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""

[HKEY_CLASSES_ROOT\clsid\{D91B90F1-3785-41CD-BD37-307ED027B17D}\InprocServer32]
@="C:\\WINDOWS\\system32\\EqifView.dll"
"ThreadingModel"="Apartment"

* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *


Granting sedebugprivilege to Administrateurs ... successful


((((((((((((((((((((((((((((((((((((((((((( E-Give / Ssk's Log )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\dxclib303562752.dll
C:\Documents and Settings\fpodevin\Application Data\Dxccwrd.dll
C:\Documents and Settings\fpodevin\Application Data\Dxcknwrd.dll
C:\Documents and Settings\fpodevin\Application Data\Dxcuknwrd.dll
C:\WINDOWS\system32\bkd.exe
C:\Program Files\DeluxeCommunications\DxcBho.dll
C:\Program Files\DeluxeCommunications\DxcCore.dll


* * * POST RUN FILES/FOLDERS * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *


(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\dfndrff_e17.exe
C:\dfndrff_e23.exe
C:\dfndrff_e25.exe
C:\dfndrff_e26.exe
C:\dfndrff_e30.exe
C:\dfndrff_e31.exe
C:\dfndrff_e49.exe
C:\dfndrff_e50.exe
C:\dfndrff_e51.exe
C:\deskbar_e14.exe
C:\deskbar_e17.exe
C:\deskbar_e20.exe
C:\deskbar_e25.exe
C:\deskbar_e26.exe
C:\deskbar_e29.exe
C:\deskbar_e31.exe
C:\deskbar_e49.exe
C:\deskbar_e50.exe
C:\deskbar_e51.exe
C:\deskbar_e52.exe
C:\kybrdff_e23.exe
C:\kybrdff_e31.exe
C:\kybrdff_e49.exe
C:\kybrdff_e50.exe
C:\kybrdff_e51.exe
C:\kybrdff_e52.exe
C:\MTE3NDI6ODoxNgnew.exe
C:\nwnmff_e51.exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\0JYZIJFC\dfndrff_e[1].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\9VW7Y5K0\dfndrff_e[1].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\9VW7Y5K0\dfndrff_e[2].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\9VW7Y5K0\dfndrff_e_uit[1].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\IWXH715T\dfndrff_e_uit[2].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\9VW7Y5K0\deskbar_e[2].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\CHEFKHMJ\deskbar_e[1].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\CHEFKHMJ\kybrdff_e[1].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\CHEFKHMJ\kybrdff_e[2].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\9VW7Y5K0\MTE3NDI6ODoxNg[1].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\0JYZIJFC\nwnmff_e[1].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\9VW7Y5K0\nwnmff_e[1].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\CHEFKHMJ\nwnmff_e[1].exe
C:\Documents and Settings\fpodevin\Local Settings\Temporary Internet Files\Content.IE5\CHEFKHMJ\nwnmff_e[2].exe
C:\ac3_0010.exe
C:\RDFX4.exe
C:\secure32.html
C:\WINDOWS\uninstall_nmon.vbs
C:\Program Files\network monitor
C:\WINDOWS\VXRpbGlzYXRldXIgTUlDUkVM


((((((((((((((((((((((((((((((( Files Created from 2006-10-09 to 2006-11-09 ))))))))))))))))))))))))))))))))))


2006-11-09 09:21 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2006-11-09 00:00 430,080 --a------ C:\windows_e52.exe
2006-11-08 08:31 442,368 --a------ C:\windows_e51.exe
2006-10-18 23:00 310,482 --a------ C:\Colo2.exe.vir
2006-10-17 10:22 20,000 --------- C:\WINDOWS\system32\drivers\cmapusb.sys
2006-10-17 10:22 18,013 --------- C:\WINDOWS\system32\drivers\cmap_pc2.sys
2006-10-17 10:22 16,088 --------- C:\WINDOWS\system32\drivers\cmapldr.sys
2006-10-12 10:59 98,370 --a------ C:\WINDOWS\system32\CmengDriver.dll
2006-10-11 08:53 52,736 --a------ C:\WINDOWS\system32\drivers\Ssipddp.sys
2006-10-11 08:53 47,616 --a------ C:\WINDOWS\system32\drivers\Ssipddpm.sys
2006-10-09 14:30 23,040 --a------ C:\WINDOWS\system32\drivers\aksusb.sys
2006-10-09 14:29 634,880 --a------ C:\WINDOWS\system32\Gsprop32.dll
2006-10-09 14:29 423,016 --a------ C:\WINDOWS\system32\Gsw32.exe
2006-10-09 14:29 246,848 --a------ C:\WINDOWS\system32\RICHED.DLL
2006-10-09 14:29 242,816 --a------ C:\WINDOWS\system32\Gswag32.dll
2006-10-09 14:29 180,224 --a------ C:\WINDOWS\system32\GLUT32.DLL
2006-10-09 14:29 152,688 --a------ C:\WINDOWS\system32\Gswdll32.dll
2006-10-09 07:36 20,000 --------- C:\WINDOWS\system32\drivers\cmapfp.sys
2006-10-09 07:36 18,392 --------- C:\WINDOWS\system32\drivers\cmapldfp.sys


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-11-09 13:54 -------- d-------- C:\Documents and Settings\fpodevin\Application Data\Free Download Manager
2006-11-09 13:45 -------- d-------- C:\Documents and Settings\fpodevin\Application Data\Skype
2006-11-09 13:43 -------- d-------- C:\Documents and Settings\fpodevin\Application Data\SolidDocuments
2006-11-09 11:45 -------- d-------- C:\Program Files\eMule
2006-11-09 09:30 -------- d-------- C:\Program Files\Mozilla Thunderbird
2006-11-09 09:21 -------- d-------- C:\Program Files\Grisoft
2006-11-07 07:54 -------- d-------- C:\Program Files\Messenger
2006-10-17 10:20 -------- d-------- C:\Program Files\Navimail
2006-10-17 07:23 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-10-16 09:31 -------- d-------- C:\Program Files\WinHTTrack
2006-10-12 10:38 -------- d-------- C:\Program Files\C-Map
2006-10-11 08:53 -------- d-------- C:\Program Files\Transas
2006-10-11 08:53 -------- d-------- C:\Program Files\Fichiers communs\Transas Shared
2006-10-11 08:53 -------- d-------- C:\Program Files\Fichiers communs
2006-10-11 08:24 -------- d-------- C:\Program Files\Fichiers communs\Fugawi
2006-10-11 08:24 -------- d-------- C:\Program Files\Earth Resource Mapping
2006-10-09 07:36 -------- d-------- C:\Program Files\SafeNet Sentinel
2006-10-09 07:36 -------- d-------- C:\Program Files\Fichiers communs\SafeNet Sentinel
2006-10-09 07:30 -------- d-------- C:\Program Files\MaxSea International
2006-10-06 13:34 -------- d-------- C:\Program Files\SentEmul
2006-10-05 16:43 -------- d-------- C:\Program Files\Fichiers communs\Services
2006-10-05 15:23 -------- d-------- C:\Program Files\Fugawi
2006-10-05 09:36 -------- d-------- C:\Program Files\SeaClear
2006-10-02 15:54 -------- d-------- C:\Program Files\GT Interactive
2006-09-29 14:00 -------- d-------- C:\Documents and Settings\fpodevin\Application Data\Adobe
2006-09-27 07:45 -------- d-------- C:\Program Files\Adobe
2006-09-26 10:18 -------- d-------- C:\Program Files\GXTranscoder v2
2006-09-26 10:17 -------- d-------- C:\Program Files\ReNamer
2006-09-25 11:15 -------- d-------- C:\Program Files\Fichiers communs\Adobe
2006-09-25 11:13 -------- d-------- C:\Program Files\Fichiers communs\Adobe Systems Shared
2006-09-25 11:06 -------- d-------- C:\Program Files\CDBurnerXP Pro 3
2006-09-22 16:01 -------- d-------- C:\Documents and Settings\fpodevin\Application Data\Opera
2006-09-22 13:03 -------- d-------- C:\Program Files\Smart Projects
2006-09-21 08:27 -------- d-------- C:\Program Files\XviD
2006-09-21 08:27 -------- d-------- C:\Program Files\x264
2006-09-21 08:27 -------- d-------- C:\Program Files\Windows Media Player
2006-09-21 08:27 -------- d-------- C:\Program Files\MSN Messenger
2006-09-21 08:27 -------- d-------- C:\Program Files\Movie Maker
2006-09-21 08:27 -------- d-------- C:\Program Files\LimeWire
2006-09-21 08:27 -------- d-------- C:\Program Files\Label Creator
2006-09-21 08:27 -------- d-------- C:\Program Files\Free Download Manager
2006-09-21 07:39 -------- d-------- C:\Program Files\Help Workshop
2006-09-20 10:18 -------- d-------- C:\Program Files\Corel
2006-09-20 10:07 12314 --ahs---- C:\WINDOWS\system32\KGyGaAvL.sys
2006-09-20 10:06 -------- d-------- C:\Documents and Settings\fpodevin\Application Data\Corel
2006-09-20 09:09 -------- d-------- C:\Program Files\Fichiers communs\Corel
2006-09-18 09:48 -------- d-------- C:\Program Files\Skype
2006-09-14 14:29 -------- d-------- C:\Program Files\av


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
"Free Download Manager"="C:\\Program Files\\Free Download Manager\\fdm.exe -autorun"
"Iomega Automatic Backup"="C:\\Program Files\\Iomega\\Iomega Automatic Backup\\ibackup.exe"
"MsnMsgr"="\"C:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\" /background"
"NBJ"="\"C:\\Program Files\\Ahead\\Nero BackItUp\\NBJ.exe\""
"updateMgr"="C:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe AcRdB7_0_5 -reboot 1"
"BitTorrent"="\"C:\\Program Files\\BitTorrent\\bittorrent.exe\" --force_start_minimized"
"Skype"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /nosplash /minimized"
"eMuleAutoStart"="C:\\Program Files\\eMule\\emule.exe -AutoStart"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"C-Media Mixer"="Mixer.exe /startup"
"type32"="\"C:\\Program Files\\Microsoft IntelliType Pro\\type32.exe\""
"SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_06\\bin\\jusched.exe"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"TkBellExe"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot"
"Iomega Automatic Backup 1.0.1"="C:\\Program Files\\Iomega\\Iomega Automatic Backup\\ibackup.exe"
"NeroFilterCheck"="C:\\WINDOWS\\system32\\NeroCheck.exe"
"removecpl"="RemoveCpl.exe"
"IntelliPoint"="\"C:\\Program Files\\Microsoft IntelliPoint\\point32.exe\""
"Cmaudio"="RunDll32 cmicnfg.cpl,CMICtrlWnd"
"EoEngine"=""
"EoWeather"=""
"EoClock"=""
"StatusClient 2.6"="C:\\Program Files\\Hewlett-Packard\\Toolbox\\StatusClient\\StatusClient.exe /auto"
"TomcatStartup 2.5"="C:\\Program Files\\Hewlett-Packard\\Toolbox\\hpbpsttp.exe"
"MediaFace Integration"="C:\\Program Files\\Fellowes\\MediaFACE 4.2\\SetHook.exe"
"Windows Defender"="\"C:\\Program Files\\Windows Defender\\MSASCui.exe\" -hide"
"Picasa Media Detector"="C:\\Program Files\\Picasa2\\PicasaMediaDetector.exe"
"ISUSPM Startup"="\"C:\\Program Files\\Fichiers communs\\InstallShield\\UpdateService\\isuspm.exe\" -startup"
"ISUSScheduler"="\"C:\\Program Files\\Fichiers communs\\InstallShield\\UpdateService\\issch.exe\" -start"
"windows"="C:\\\\windows_e52.exe"
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"NoChange"="1"
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000000

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"="Microsoft AntiMalware ShellExecuteHook"
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
"EditLevel"=dword:00000000
"NoRun"=dword:00000000
"NoClose"=dword:00000000
"NoFileMenu"=dword:00000000
"NoCommonGroups"=dword:00000000

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"UseDesktopIniCache"=dword:00000000
"NoRemoteRecursiveEvents"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\run]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"


Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\Demande_evolution.job
C:\WINDOWS\tasks\Fred.job
C:\WINDOWS\tasks\MP Scheduled Scan.job

Completion time: 06-11-09 13:59:16.32
C:\ComboFix.txt ... 06-11-09 13:59

---------------------------------------------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 14:05:40, on 09/11/06
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
C:\WINDOWS\system32\crypserv.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Borland\InterBase\bin\ibguard.exe
C:\PROGRA~1\Iomega\System32\AppServices.exe
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\Program Files\Network Associates\VirusScan\VsStat.exe
C:\Program Files\Fichiers communs\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Network Associates\VirusScan\Vshwin32.exe
C:\Program Files\Borland\InterBase\bin\ibserver.exe
C:\Program Files\Network Associates\VirusScan\Avconsol.exe
C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\Mixer.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Iomega\Iomega Automatic Backup\ibackup.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\windows_e52.exe
C:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\fpodevin\Mes documents\Perso\Download\AntiSpam\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://SECSERVER:80/array.dll?Get.Routing.Script
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http://SECSERVER:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - C:\Program Files\DeluxeCommunications\DxcBho.dll
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {23A973E4-3321-453C-A2B6-943D2AA1853C} - C:\Program Files\Messenger\nixykeb.dll (file missing)
O2 - BHO: SolidConverter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\ExploreExtPDF.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {6711B62F-A3D4-413B-83F0-00CEDEA0CAEB} - C:\Program Files\Messenger\nixykeb.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdmcks.dll
O3 - Toolbar: SolidConverter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\ExploreExtPDF.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Iomega Automatic Backup 1.0.1] C:\Program Files\Iomega\Iomega Automatic Backup\ibackup.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [removecpl] RemoveCpl.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [StatusClient 2.6] C:\Program Files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe /auto
O4 - HKLM\..\Run: [TomcatStartup 2.5] C:\Program Files\Hewlett-Packard\Toolbox\hpbpsttp.exe
O4 - HKLM\..\Run: [MediaFace Integration] C:\Program Files\Fellowes\MediaFACE 4.2\SetHook.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [windows] C:\\windows_e52.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [Iomega Automatic Backup] C:\Program Files\Iomega\Iomega Automatic Backup\ibackup.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_5 -reboot 1
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger le site avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm
O8 - Extra context menu item: Télécharger les tous avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: KOAD Recherche - {669695BC-A811-4A9D-8CDF-BA8C795F261A} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: stibo - {FFAD3420-6D61-44F6-BA25-293F17152D79} - C:\Program Files\Fichiers communs\Stibo\RS_ProtocolHandler.dll
O20 - AppInit_DLLs: dxclib303562752.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVSync Manager (AvSynMgr) - Unknown owner - C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: InterBase Guardian (InterBaseGuardian) - Borland Software Corporation - C:\Program Files\Borland\InterBase\bin\ibguard.exe
O23 - Service: InterBase Server (InterBaseServer) - Borland Software Corporation - C:\Program Files\Borland\InterBase\bin\ibserver.exe
O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe
O23 - Service: McShield - Network Associates, Inc. - C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\drivers\w32x86\3\HPZipm12.exe
O23 - Service: SentinelProtectionServer - SafeNet, Inc - C:\Program Files\Fichiers communs\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe

On continue le ménage.

Une partie de la procédure se déroulera sans avoir accès à internet, prière d'imprimer ces instructions, ou de les coller dans un fichier texte, pour lecture durant cette désinfection.
Les manipulations sont à faire sans interruption et dans l'ordre.
Si tu ne comprends pas quelque chose, demande des explications avant de commencer

1 Télécharge
CCleaner.
http://www.filehippo.com/download_ccleaner.html
Installe le dans un répertoire dédié.

clean.zip
http://www.malekal.com/download/clean.zip
Décompresse-le sur ton bureau (clic droit / extraire tout), tu dois obtenir un dossier clean.

2 Redémarre en mode sans échec. Attention, tu n'as pas accès à internet dans ce mode, note bien ce que tu as à faire.
Démarre l'ordinateur.
Une fois le chargement du BIOS terminé, il y a un écran noir. Appuye sur la touche F8 ou F5 jusqu'à l'affichage du menu des options avancées de Windows.
En utilisant les touches du curseur, sélectionne le mode sans échec approprié et appuye sur Entrée.

3 Relance un scan HijackThis et coche les lignes ci-dessous :

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - C:\Program Files\DeluxeCommunications\DxcBho.dll
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {23A973E4-3321-453C-A2B6-943D2AA1853C} - C:\Program Files\Messenger\nixykeb.dll (file missing)
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [windows] C:\\windows_e52.exe
O4 - HKLM\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_5 -reboot 1
O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O20 - AppInit_DLLs: dxclib303562752.dll

Ferme toutes les fenêtres Windows, Internet explorer, Outlook,sauf le logiciel Hijackthis et clique sur « Fix checked »

4 Assure toi d'avoir accés à tous les fichiers.
Démarrer, Poste de travail ou autre dossier, Menu Outils, Option des dossiers, onglet Affichage :
Activer la case : Afficher les fichiers et dossiers cachés
Désactiver la case : Masquer les extensions des fichiers dont le type est connu
Désactiver la case : Masquer les fichiers protégés du système d'exploitation
Puis Appliquer

5 Désinstalle ces applications (si tu les trouves) dans Ajout-Suppression de programmes :

DeluxeCommunications

6 Supprime les fichiers/dossiers incriminés (s'ils existent encore) :

C:\Program Files\DeluxeCommunications
C:\\windows_e52.exe

7 Lance le nettoyage avec CCleaner

Recache les fichiers systeme afin de ne pas faire d'erreur à l'avenir en sélectionnant ne pas afficher les fichiers cachés ou les fichiers système.

8 Ouvre le dossier Clean qui se trouve sur ton bureau.
Double-clic sur clean.cmd.
Une fenêtre noire va apparaître, suis les consignes

9 Redémarre normalement

Poste un nouveau log HijackThis avec le rapport qui se trouve ici C:\rapport_clean.txt.

Salut,
tu trouveras ci dessous les rapport demandés, par contre il m'est impossible de suprimer le répertoire DeluxeCommunication, XP me dit qu'il est utilisé par un autre processus.

deplus je ne peux plus utiliser mon explorateur windows quand je souhaite parcourir un dossier il me fait une erreur

Merci encore de ton aide


Script clean par Malekal_morte - http://www.malekal.com

Microsoft Windows XP [version 5.1.2600]
Script execute en mode sans echec

*** Suppression de fichiers sur C:
C:\MTE*NDI6ODoxNg*.exe FOUND
C:\RDFX?.exe FOUND
C:\StubInstaller.exe FOUND

*** Suppression des fichiers dans C:\WINDOWS\
C:\WINDOWS\keyboard*.dat FOUND
C:\WINDOWS\newname.dat FOUND
C:\WINDOWS\smdat32m.sys FOUND
C:\WINDOWS\UnGins.exe FOUND
C:\WINDOWS\uniq FOUND

*** Suppression des fichiers dans C:\WINDOWS\system32
C:\WINDOWS\system32\wupdmgr.exe FOUND
"C:\WINDOWS\Downloaded Program Files\CONFLICT.1" FOUND
"C:\WINDOWS\Downloaded Program Files\CONFLICT.2" FOUND
"C:\Documents and Settings\fpodevin\Application Data\Dxcdmns.dll" FOUND
"C:\Documents and Settings\fpodevin\Application Data\Dxcknwrd.dll" FOUND

"C:\Program Files\Mozilla Firefox\plugins\NPNd2fn.dll" FOUND


-----------------------------------------------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 07:57:19, on 10/11/06
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
C:\WINDOWS\system32\crypserv.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Borland\InterBase\bin\ibguard.exe
C:\PROGRA~1\Iomega\System32\AppServices.exe
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\Program Files\Network Associates\VirusScan\VsStat.exe
C:\Program Files\Fichiers communs\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\Program Files\Network Associates\VirusScan\Vshwin32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Borland\InterBase\bin\ibserver.exe
C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\Avconsol.exe
C:\WINDOWS\Mixer.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe
C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\WINDOWS\explorer.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\fpodevin\Mes documents\Perso\Download\AntiSpam\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://SECSERVER:80/array.dll?Get.Routing.Script
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http://SECSERVER:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - C:\Program Files\DeluxeCommunications\DxcBho.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: SolidConverter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\ExploreExtPDF.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdmcks.dll
O3 - Toolbar: SolidConverter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\ExploreExtPDF.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [removecpl] RemoveCpl.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [StatusClient 2.6] C:\Program Files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe /auto
O4 - HKLM\..\Run: [TomcatStartup 2.5] C:\Program Files\Hewlett-Packard\Toolbox\hpbpsttp.exe
O4 - HKLM\..\Run: [MediaFace Integration] C:\Program Files\Fellowes\MediaFACE 4.2\SetHook.exe
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [Iomega Automatic Backup] C:\Program Files\Iomega\Iomega Automatic Backup\ibackup.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger le site avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm
O8 - Extra context menu item: Télécharger les tous avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: KOAD Recherche - {669695BC-A811-4A9D-8CDF-BA8C795F261A} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: stibo - {FFAD3420-6D61-44F6-BA25-293F17152D79} - C:\Program Files\Fichiers communs\Stibo\RS_ProtocolHandler.dll
O20 - AppInit_DLLs: dxclib303562752.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVSync Manager (AvSynMgr) - Unknown owner - C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: InterBase Guardian (InterBaseGuardian) - Borland Software Corporation - C:\Program Files\Borland\InterBase\bin\ibguard.exe
O23 - Service: InterBase Server (InterBaseServer) - Borland Software Corporation - C:\Program Files\Borland\InterBase\bin\ibserver.exe
O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe
O23 - Service: McShield - Network Associates, Inc. - C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\drivers\w32x86\3\HPZipm12.exe
O23 - Service: SentinelProtectionServer - SafeNet, Inc - C:\Program Files\Fichiers communs\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe

Essaye ça pour ton erreur sur les dossiers :
Ménu Démarrer / executer et tape : regsvr32.exe -u shmedia.dll
clic sur OK.
Un message avec réussi ou successfull doit apparître.

Redémarre l'ordinateur.

DeluxeCommunications se désinstalle très bien par ajout/suppression de programmes.
Essaye de le désinstaller par là.

Poste un nouveau rapport HijackThis ET :

- Télécharge DiagHelp.zip sur ton bureau :http://www.malekal.com/download/DiagHelp.zip
- Ne double-clic pas dessus !! Fais un clic droit sur le fichier et extraire tout
- Un nouveau dossier chercher va être créé DiagHelp
- Ouvre le et double-clic sur go.cmd (le .cmd peut ne pas apparaître)
- Une fenêtre va s'ouvrir, choisis [b]l'option 1[/b]
- L'analyse va commencer, ceci peut durer quelques minutes, laisse faire et appuie sur une touche quand on te le demande
- Copie/colle le contenu du bloc-note qui s'ouvre, pour cela :
-- Dans le bloc-note, cliquez sur le menu Edition / Selectionner tout
-- A nouveau menu Edition / copier
-- Dans un nouveau message ici, faire un clic droit / coller

Tu trouveras ci-dessous les 2 rapports, par contre je ne peux tjrs pas parcourir mes dossiers par un DoubleCLick, j'ai un message:
*******************************
Runtime Error !
Program: c:\windows\explorer.exe

This application.....

*****************************

---------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 09:53:48, on 10/11/06
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
C:\WINDOWS\system32\crypserv.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Borland\InterBase\bin\ibguard.exe
C:\PROGRA~1\Iomega\System32\AppServices.exe
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\Program Files\Network Associates\VirusScan\VsStat.exe
C:\Program Files\Fichiers communs\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\Program Files\Network Associates\VirusScan\Vshwin32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Borland\InterBase\bin\ibserver.exe
C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\Avconsol.exe
C:\WINDOWS\Mixer.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe
C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\WINDOWS\explorer.exe
C:\Documents and Settings\fpodevin\Mes documents\Perso\Download\AntiSpam\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://SECSERVER:80/array.dll?Get.Routing.Script
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http://SECSERVER:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - C:\Program Files\DeluxeCommunications\DxcBho.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: SolidConverter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\ExploreExtPDF.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdmcks.dll
O3 - Toolbar: SolidConverter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\ExploreExtPDF.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [removecpl] RemoveCpl.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [StatusClient 2.6] C:\Program Files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe /auto
O4 - HKLM\..\Run: [TomcatStartup 2.5] C:\Program Files\Hewlett-Packard\Toolbox\hpbpsttp.exe
O4 - HKLM\..\Run: [MediaFace Integration] C:\Program Files\Fellowes\MediaFACE 4.2\SetHook.exe
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [Iomega Automatic Backup] C:\Program Files\Iomega\Iomega Automatic Backup\ibackup.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger le site avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm
O8 - Extra context menu item: Télécharger les tous avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: KOAD Recherche - {669695BC-A811-4A9D-8CDF-BA8C795F261A} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: stibo - {FFAD3420-6D61-44F6-BA25-293F17152D79} - C:\Program Files\Fichiers communs\Stibo\RS_ProtocolHandler.dll
O20 - AppInit_DLLs: dxclib303562752.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVSync Manager (AvSynMgr) - Unknown owner - C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: InterBase Guardian (InterBaseGuardian) - Borland Software Corporation - C:\Program Files\Borland\InterBase\bin\ibguard.exe
O23 - Service: InterBase Server (InterBaseServer) - Borland Software Corporation - C:\Program Files\Borland\InterBase\bin\ibserver.exe
O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe
O23 - Service: McShield - Network Associates, Inc. - C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\drivers\w32x86\3\HPZipm12.exe
O23 - Service: SentinelProtectionServer - SafeNet, Inc - C:\Program Files\Fichiers communs\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe

------------------------------------------------------------------------------

C:\WINDOWS\System32\FNTCACHE.DAT -->09/11/06 14:50:45
C:\WINDOWS\System32\dxclib303562752.dll -->09/11/06 14:01:18
C:\WINDOWS\System32\bkd.exe -->09/11/06 14:01:00
C:\WINDOWS\System32\wpa.dbl -->09/11/06 08:03:36
C:\WINDOWS\System32\perfh00C.dat -->07/11/06 07:53:52
C:\WINDOWS\System32\perfh009.dat -->07/11/06 07:53:51
C:\WINDOWS\System32\perfc00C.dat -->07/11/06 07:53:51
C:\WINDOWS\System32\perfc009.dat -->07/11/06 07:53:51
C:\WINDOWS\System32\PerfStringBackup.INI -->07/11/06 07:53:46
C:\WINDOWS\System32\lictest.log -->11/10/06 08:25:27
C:\WINDOWS\System32\config.nt -->09/10/06 14:34:31
C:\WINDOWS\System32\d3d9caps.dat -->09/10/06 07:53:01
C:\WINDOWS\System32\esnecil.ind -->09/10/06 07:38:37
C:\WINDOWS\System32\esnecil.nlp -->06/10/06 10:49:50
C:\WINDOWS\System32\d3d8caps.dat -->05/10/06 16:15:54
C:\WINDOWS\System32\waste.bsr -->05/10/06 15:26:01
C:\WINDOWS\System32\jeterr35.GID -->25/09/06 07:36:49
C:\WINDOWS\System32\MSACAL.TWD -->21/09/06 07:25:42
C:\WINDOWS\System32\KGyGaAvL.sys -->20/09/06 10:07:54
C:\WINDOWS\System32\ffastlog.txt -->15/09/06 07:53:41
C:\WINDOWS\System32\nscompat.tlb -->11/09/06 06:46:34
C:\WINDOWS\System32\amcompat.tlb -->11/09/06 06:46:34
C:\WINDOWS\System32\mlfcache.dat -->02/06/06 08:49:12
C:\WINDOWS\System32\BASSMOD.dll -->31/05/06 15:57:51
C:\WINDOWS\System32\SET163A.tmp -->10/05/06 01:51:14

C:\WINDOWS\WindowsUpdate.log -->10/11/06 09:51:40
C:\WINDOWS\wiadebug.log -->10/11/06 09:50:07
C:\WINDOWS\wiaservc.log -->10/11/06 09:49:25
C:\WINDOWS\SchedLgU.Txt -->10/11/06 09:49:00
C:\WINDOWS\0.log -->10/11/06 09:48:59
C:\WINDOWS\bootstat.dat -->10/11/06 09:48:58
C:\WINDOWS\fpodevin8.xlb -->10/11/06 09:46:35
C:\WINDOWS\offitems.log -->10/11/06 09:46:34
C:\WINDOWS\ntbtlog.txt -->10/11/06 07:41:37
C:\WINDOWS\Sti_Trace.log -->09/11/06 16:39:25
C:\WINDOWS\1.dat -->09/11/06 00:00:49
C:\WINDOWS\Maxsea.ini -->17/10/06 10:25:09
C:\WINDOWS\NeroDigital.ini -->17/10/06 08:28:56
C:\WINDOWS\iltwain.ini -->13/10/06 14:10:34
C:\WINDOWS\ODBC.INI -->13/10/06 13:06:56

C:\WINDOWS\atd.exe |Astase |21/10/2004 14:41:06
C:\WINDOWS\CDLaunch.exe |Computer Systems Odessa Corp. |10/03/2005 08:54:54
C:\WINDOWS\Ckconfig.exe |Kenonic Controls |06/10/2006 08:59:05
C:\WINDOWS\Ckrfresh.exe |COMPANY |06/10/2006 08:59:05
C:\WINDOWS\CmiRmRedundDir.exe |COMPANY |26/09/2005 13:03:43
C:\WINDOWS\CMIUninstall.exe |COMPANY |26/09/2005 13:03:44
C:\WINDOWS\cmuninst.exe |C-Media Electronics Inc. |01/04/2003 07:36:04
C:\WINDOWS\IsUn040c.exe |InstallShield Software Corporation |31/03/2003 15:06:20
C:\WINDOWS\IsUninst.exe |InstallShield Software Corporation |31/03/2003 15:26:49
C:\WINDOWS\iun6002.exe |Indigo Rose Corporation |01/06/2004 14:36:17
C:\WINDOWS\mixer.exe |C-Media Electronic Inc. (www.cmedia.com.tw) |01/04/2003 07:36:04
C:\WINDOWS\NCUNINST.EXE |Northern Codeworks |09/03/2005 07:59:13
C:\WINDOWS\NewMixer.exe |C-Media Electronic Inc. (www.cmedia.com.tw) |01/04/2003 07:36:29
C:\WINDOWS\PLAYER.EXE |Apple Computer, Inc. |21/09/2006 09:43:10
C:\WINDOWS\psuninst2.exe |HelpStudio Software House |22/12/2005 13:47:53
C:\WINDOWS\README.EXE |No Hands Software Inc. |21/09/2006 09:43:11
C:\WINDOWS\regdrop.exe |COMPANY |07/02/2006 09:44:55
C:\WINDOWS\Setup_ck.exe |COMPANY |06/10/2006 08:59:05
C:\WINDOWS\slrundll.exe |Smart Link |29/09/2005 14:32:02
C:\WINDOWS\twunk_16.exe |Twain Working Group |28/09/2001 13:00:00
C:\WINDOWS\twunk_32.exe |Twain Working Group |28/09/2001 13:00:00
C:\WINDOWS\unin040c.exe |InstallShield Corporation, Inc. |31/03/2003 15:22:17
C:\WINDOWS\unins000.exe |COMPANY |25/04/2006 09:40:54
C:\WINDOWS\uninst.exe |InstallShield Corporation, Inc. |31/03/2003 15:49:04
C:\WINDOWS\UninstallFirefox.exe |COMPANY |01/09/2004 10:00:29
C:\WINDOWS\UninstallThunderbird.exe |COMPANY |25/04/2005 13:59:55
C:\WINDOWS\unvise32qt.exe |MindVision |18/10/2004 10:02:08
C:\WINDOWS\UNWISE.EXE |COMPANY |22/07/2004 08:20:06
C:\WINDOWS\VIEWER.EXE |Apple Computer, Inc. |21/09/2006 09:43:10
C:\WINDOWS\CMIRmDriver.dll |COMPANY |26/09/2005 13:03:43
C:\WINDOWS\cygwin1.dll |Red Hat |07/03/2005 09:27:03
C:\WINDOWS\cygz.dll |COMPANY |07/03/2005 09:27:03
C:\WINDOWS\Isdbg51.dll |InstallShield Software Corporation |31/03/2003 15:28:01
C:\WINDOWS\php4isapi.dll |COMPANY |06/10/2005 09:45:21
C:\WINDOWS\php4ts.dll |The PHP Group |06/10/2005 09:45:21
C:\WINDOWS\PLAYENU.DLL |Apple Computer, Inc. |21/09/2006 09:43:11
C:\WINDOWS\Setup_ck.dll |COMPANY |06/10/2006 08:59:05
C:\WINDOWS\twain.dll |Groupe de travail Twain |28/09/2001 13:00:00
C:\WINDOWS\twain_32.dll |Groupe de travail Twain |28/09/2001 13:00:00
C:\WINDOWS\VIEWENU.DLL |Apple Computer, Inc. |21/09/2006 09:43:11
C:\WINDOWS\system32\append.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\bcmwltry.exe |Belkin Corporation |17/03/2005 16:56:12
C:\WINDOWS\system32\bkd.exe |COMPANY |09/11/2006 14:01:10
C:\WINDOWS\system32\cmirmdrv.exe |COMPANY |26/09/2005 13:04:07
C:\WINDOWS\system32\Crypserv.exe |Kenonic Controls Ltd. |06/10/2006 08:59:06
C:\WINDOWS\system32\debug.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\dosx.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\dvdplay.exe |COMPANY |23/08/2001 18:47:34
C:\WINDOWS\system32\edlin.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\exe2bin.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\fastopen.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\Gsw32.exe |Bits Per Second Ltd |09/10/2006 14:29:40
C:\WINDOWS\system32\HPBOID.EXE |Hewlett-Packard Company |10/12/2003 11:15:50
C:\WINDOWS\system32\HPBPRO.EXE |Hewlett-Packard Company |10/12/2003 11:16:34
C:\WINDOWS\system32\hpzinw12.exe |HP |25/07/2003 11:20:00
C:\WINDOWS\system32\hpzipm12.exe |HP |22/10/2003 09:19:22
C:\WINDOWS\system32\insrepim.exe |COMPANY |07/02/2006 09:38:53
C:\WINDOWS\system32\java.exe |Sun Microsystems, Inc. |28/02/2006 12:11:27
C:\WINDOWS\system32\javaw.exe |Sun Microsystems, Inc. |28/02/2006 12:11:27
C:\WINDOWS\system32\javaws.exe |Sun Microsystems, Inc. |28/02/2006 12:11:27
C:\WINDOWS\system32\Lame.exe |COMPANY |25/04/2006 09:40:55
C:\WINDOWS\system32\mcoinstall.exe |Aapie.Net |05/07/2006 10:08:38
C:\WINDOWS\system32\mem.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\Mp3cnfg.exe |Kristal Studio |02/03/2001 19:37:34
C:\WINDOWS\system32\msasf.exe |COMPANY |26/02/2001 13:01:00
C:\WINDOWS\system32\mscdexnt.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\NeroCheck.exe |Ahead Software Gmbh |15/03/2005 11:40:55
C:\WINDOWS\system32\nlsfunc.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\nw16.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\ORG11SVR.EXE |DataViz, Inc. |28/08/1997 23:00:00
C:\WINDOWS\system32\ORG21SVR.EXE |DataViz, Inc. |28/08/1997 23:00:00
C:\WINDOWS\system32\pxhpinst.exe |Sonic Solutions |29/10/2004 12:49:50
C:\WINDOWS\system32\redir.exe |COMPANY |31/03/2003 16:08:49
C:\WINDOWS\system32\RegisterExe.exe |COMPANY |19/10/2005 12:39:00
C:\WINDOWS\system32\RegNandub.exe |COMPANY |22/12/2003 03:28:10
C:\WINDOWS\system32\setver.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\share.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\slrundll.exe |Smart Link |29/09/2005 14:32:09
C:\WINDOWS\system32\slserv.exe |Smart Link |29/09/2005 14:32:08
C:\WINDOWS\system32\UNWISE.EXE |COMPANY |14/09/2005 13:17:17
C:\WINDOWS\system32\usrmlnka.exe |U.S. Robotics Corporation |23/08/2001 18:47:48
C:\WINDOWS\system32\usrprbda.exe |U.S. Robotics Corporation |23/08/2001 18:47:48
C:\WINDOWS\system32\usrshuta.exe |U.S. Robotics Corporation |23/08/2001 18:47:48
C:\WINDOWS\system32\vwipxspx.exe |COMPANY |28/09/2001 13:00:00
C:\WINDOWS\system32\WRKGADM.EXE |COMPANY |28/08/1997 23:00:00
C:\WINDOWS\system32\Zap.exe |COMPANY |12/09/2004 15:10:42
C:\WINDOWS\system32\zip.exe |COMPANY |24/05/2004 18:11:28
C:\WINDOWS\system32\3dviewer.dll |Apple Computer, Inc. |04/05/2004 15:49:25
C:\WINDOWS\system32\a3d.dll |Sensaura Ltd |26/09/2005 13:04:07
C:\WINDOWS\system32\amstream.dll |COMPANY |10/11/2004 14:45:54
C:\WINDOWS\system32\ati2cqag.dll |ATI Technologies Inc. |29/09/2005 14:32:33
C:\WINDOWS\system32\ati2dvaa.dll |ATI Technologies Inc. |31/03/2003 16:10:04
C:\WINDOWS\system32\ati2dvag.dll |ATI Technologies Inc. |31/03/2003 16:10:04
C:\WINDOWS\system32\ati3d1ag.dll |ATI Technologies Inc. |31/03/2003 16:10:04
C:\WINDOWS\system32\ati3duag.dll |ATI Technologies Inc. |29/09/2005 14:32:32
C:\WINDOWS\system32\ativtmxx.dll |ATI Technologies Inc. |29/09/2005 14:32:31
C:\WINDOWS\system32\ativvaxx.dll |ATI Technologies Inc. |29/09/2005 14:32:31
C:\WINDOWS\system32\atmfd.dll |Adobe Systems Incorporated |28/09/2001 13:00:00
C:\WINDOWS\system32\atmlib.dll |Adobe Systems |28/09/2001 13:00:00
C:\WINDOWS\system32\Audio3D.dll |Sensaura Ltd |26/09/2005 13:04:07
C:\WINDOWS\system32\auth.dll |COMPANY |26/03/2002 08:19:42
C:\WINDOWS\system32\avisynth.dll |The Public |01/06/2003 22:06:41
C:\WINDOWS\system32\aviwrap.dll |Disappearing Inc. |22/09/2001 09:50:22
C:\WINDOWS\system32\awpe.dll |Corel Corporation Limited |04/05/2004 15:49:12
C:\WINDOWS\system32\Awrtl30.dll |WexTech Systems, Inc. |04/05/2004 15:49:12
C:\WINDOWS\system32\BASSMOD.dll |COMPANY |27/02/2006 09:22:26
C:\WINDOWS\system32\BIDS45F.DLL |Borland International |31/03/2003 16:48:03
C:\WINDOWS\system32\BOCOF.DLL |COMPANY |31/03/2003 16:48:03
C:\WINDOWS\system32\BWCC32.DLL |Borland International |31/03/2003 16:48:03
C:\WINDOWS\system32\ccrpUCW6.dll |Jeremy Adams, CCRP |11/10/2000 16:07:38
C:\WINDOWS\system32\CDVPreviewEx.dll |COMPANY |10/03/2005 09:13:53
C:\WINDOWS\system32\cfhd.dll |CineForm Inc. |04/10/2005 09:43:14
C:\WINDOWS\system32\CmengDriver.dll |Informatique & Mer |12/10/2006 10:59:49
C:\WINDOWS\system32\CMGBase.dll |C-Map Russia |06/10/2006 08:59:18
C:\WINDOWS\system32\cmirmdrv.dll |COMPANY |26/09/2005 13:04:07
C:\WINDOWS\system32\cmnprop.dll |C-Media Corporation |01/04/2003 07:36:04
C:\WINDOWS\system32\cmuda.dll |C-Media |26/09/2005 13:04:07
C:\WINDOWS\system32\compatui.dll |COMPANY |31/03/2003 16:09:23
C:\WINDOWS\system32\CRAXDRT.DLL |Seagate Software, Inc. |23/11/2004 14:51:55
C:\WINDOWS\system32\CRVIEWER.DLL |Seagate Software |23/11/2004 14:51:58
C:\WINDOWS\system32\cvirt.dll |National Instruments |23/12/2004 15:34:02
C:\WINDOWS\system32\cvirte.dll |National Instruments |23/12/2004 15:34:02
C:\WINDOWS\system32\CW3215.DLL |Borland International |31/03/2003 16:48:03
C:\WINDOWS\system32\cygwin1.dll |Red Hat |07/03/2005 09:27:03
C:\WINDOWS\system32\cygz.dll |COMPANY |07/03/2005 09:27:03
C:\WINDOWS\system32\d4channel.dll |Hewlett-Packard |29/03/2005 14:06:23
C:\WINDOWS\system32\Dbgwproc.dll |IRC Inc. 14 Sovente Irvine, CA 92606 |23/11/2005 16:00:42
C:\WINDOWS\system32\devil.dll |Abysmal Software |11/04/2003 05:57:30
C:\WINDOWS\system32\dfolder.dll |COMPANY |01/02/1996 18:25:42
C:\WINDOWS\system32\dfont32.dll |COMPANY |22/09/2004 09:03:55
C:\WINDOWS\system32\dgrpsetu.dll |Digi International, Inc. |31/03/2003 11:13:19
C:\WINDOWS\system32\dgsetup.dll |Digi International |31/03/2003 11:13:19
C:\WINDOWS\system32\DivX.dll |DivXNetworks, Inc. |03/09/2004 19:03:47
C:\WINDOWS\system32\DivXc32.dll |Hacked with Joy ! |31/03/2000 22:35:06
C:\WINDOWS\system32\DivXc32f.dll |Hacked with Joy ! |31/03/2000 22:35:44
C:\WINDOWS\system32\divxdec_0407.dll |DivXNetworks, Inc. |04/09/2004 00:34:08
C:\WINDOWS\system32\divxdec_040c.dll |DivXNetworks, Inc. |04/09/2004 00:34:08
C:\WINDOWS\system32\divxdec_0411.dll |DivXNetworks, Inc. |04/09/2004 00:25:12
C:\WINDOWS\system32\divx_xx07.dll |DivXNetworks, Inc. |01/09/2004 16:48:45
C:\WINDOWS\system32\divx_xx0c.dll |DivXNetworks, Inc. |01/09/2004 16:48:45
C:\WINDOWS\system32\divx_xx11.dll |DivXNetworks, Inc. |01/09/2004 16:48:46
C:\WINDOWS\system32\DOCOBJ.DLL |COMPANY |29/08/1997 00:00:00
C:\WINDOWS\system32\dpu10.dll |DivXNetworks |03/09/2004 18:33:33
C:\WINDOWS\system32\dpuGUI10.dll |DivXNetworks |03/09/2004 18:37:38
C:\WINDOWS\system32\dpus10.dll |DivXNetworks |01/09/2004 16:49:16
C:\WINDOWS\system32\dpv10.dll |DivXNetworks |01/09/2004 16:49:16
C:\WINDOWS\system32\dxclib303562752.dll |COMPANY |09/11/2006 14:01:18
C:\WINDOWS\system32\DXTLIPI.DLL |Live Picture Corporation |27/08/1998 03:51:30
C:\WINDOWS\system32\DXTMETA.DLL |MetaCreations Corporation |27/08/1998 03:51:36
C:\WINDOWS\system32\DXTMETA2.DLL |MetaCreations Corporation |27/08/1998 03:51:42
C:\WINDOWS\system32\DXTSQFX.DLL |Squishy FX, LLC |27/08/1998 03:51:50
C:\WINDOWS\system32\EBPMON2.DLL |SEIKO EPSON CORPORATION |18/11/1999 02:01:00
C:\WINDOWS\system32\encdec.dll |COMPANY |26/11/2002 15:15:52
C:\WINDOWS\system32\encodex.dll |Mabry Software, Inc. |23/11/2004 14:51:59
C:\WINDOWS\system32\epcomdd.dll |SEIKO EPSON CORP |04/05/2004 15:20:00
C:\WINDOWS\system32\EqnClass.Dll |Equinox Systems Inc. |31/03/2003 11:13:18
C:\WINDOWS\system32\esccm.dll |SEIKO EPSON CORP. |04/05/2004 15:20:02
C:\WINDOWS\system32\esccmn.dll |SEIKO EPSON CORP. |04/05/2004 15:20:02
C:\WINDOWS\system32\escimg.dll |SEIKO EPSON CORP. |04/05/2004 15:20:02
C:\WINDOWS\system32\escimgn.dll |SEIKO EPSON CORP. |04/05/2004 15:20:02
C:\WINDOWS\system32\escwiab.dll |SEIKO EPSON CORP. |04/05/2004 15:20:02
C:\WINDOWS\system32\escwian.dll |SEIKO EPSON CORP. |04/05/2004 15:20:02
C:\WINDOWS\system32\ESDTR.dll |SEIKO EPSON CORP. |04/05/2004 15:20:00
C:\WINDOWS\system32\ESICM.dll |SEIKO EPSON Corp. |04/05/2004 15:20:01
C:\WINDOWS\system32\Esint23.dll |SEIKO EPSON CORP. |04/05/2004 15:20:00
C:\WINDOWS\system32\ExifView.dll |Foxbat |27/02/2002 08:55:50
C:\WINDOWS\system32\exlate32.dll |Seagate Software, Inc. |23/11/2004 14:51:59
C:\WINDOWS\system32\gds32.dll |Borland Software Corporation |03/04/2003 16:35:17
C:\WINDOWS\system32\GLUT32.DLL |COMPANY |09/10/2006 14:29:40
C:\WINDOWS\system32\Gsprop32.dll |Bits Per Second Ltd |09/10/2006 14:29:40
C:\WINDOWS\system32\Gswag32.dll |Bits Per Second Ltd |09/10/2006 14:29:40
C:\WINDOWS\system32\Gswdll32.dll |Bits Per Second Ltd |09/10/2006 14:29:40
C:\WINDOWS\system32\HHActiveX.dll |Blue Sky Software Corporation. |20/03/2002 21:01:58
C:\WINDOWS\system32\HLINKPRX.DLL |COMPANY |29/08/1997 00:00:00
C:\WINDOWS\system32\HPBHEALR.DLL |COMPANY |25/02/2003 06:49:56
C:\WINDOWS\system32\hpbmiapi.dll |Hewlett-Packard |10/12/2003 11:14:46
C:\WINDOWS\system32\hpbmmjno.dll |Hewlett-Packard |29/03/2005 14:06:23
C:\WINDOWS\system32\HPBMMON.DLL |Hewlett-Packard |18/07/2003 08:44:56
C:\WINDOWS\system32\HPBNRAC2.DLL |Hewlett-Packard |10/12/2003 11:14:24
C:\WINDOWS\system32\hpboidps.dll |Hewlett-Packard Company |10/12/2003 11:15:54
C:\WINDOWS\system32\hpbprops.dll |Hewlett-Packard Company |10/12/2003 11:16:38
C:\WINDOWS\system32\HPDOMON.DLL |Hewlett-Packard |25/02/2003 06:50:02
C:\WINDOWS\system32\HPJCMN2U.DLL |Hewlett-Packard |06/06/2000 18:27:08
C:\WINDOWS\system32\HPJIPX1U.DLL |Hewlett-Packard |06/06/2000 18:27:08
C:\WINDOWS\system32\hppadt40.dll |HP |22/07/2003 08: