Version anglaiseVersion espagnoleVersion françaiseInscrivez-vous, c'est gratuit ! (mot de passe oublié)
- Dimanche 27 juillet 2008 - 10:08:31
- inscrits : 891373
- connectés : 19315
- questions/jour : 3907
- Taux de réponse : 84.24%
Anti pop up mozilla Attention some dangerous viruses pop-up Avg anti virus pop up Bloqueur de fenetre pop-up Cid pop up Code html pop up Comment supprimer les pop-up Creer pop up Desactiver les pop up Eleminer virus fenetres pop ups Fenetre pop up anti virus 2009 Html pop-up Logiciel anti pop ups Pop up "some dangerous viruses detected symantec Pop up cid lire rapport hijackthis Pop up dreamweaver Pop up firefox Pop up pub cid Pop up validation Pop up virus Supprimer pop up bloqués Supprimer pop up cid Virus Virus pop up pc-to Virus pop up pub Virus pop-up intenpestifPlus
Ils ont besoin de votre aide
- 10:08 livebox (Réseaux)
- 10:07 /!\ HELP PLEASE /!\ LCD TV Samsung... (Vidéo numérique)
- 10:07 2 problemes (Internet)
- 10:07 site frauduleux (Internet)
- 10:02 BlueScreen ecran bleue a chaque SCan (Windows)
- 09:59 intallation carte Europe sur HP ipaq... (Téléphonie/PDA/GPS)
Liste des forumsAidez-lesStatistiquesRechercherCharte
Plateformes d'assistanceDiscussions & Opinions des Communautés
|
|
|
|
slt a ts et merci davance pr votre aide
voila depuis quelque tps, jarete pas de recevoir des popup nommés cid.
je suis debutant je nmy connait pas tro
est ce un virus?
pouvez vs maidez svp merci
windows xp
firefox 2.00.2 / explorer 7
voila depuis quelque tps, jarete pas de recevoir des popup nommés cid.
je suis debutant je nmy connait pas tro
est ce un virus?
pouvez vs maidez svp merci
windows xp
firefox 2.00.2 / explorer 7
Configuration: Windows XP Firefox 2.0.0.2
|
  zBr, le lundi 5 mars 2007 à 21:49:48Salut Chan31
Telecharge hijackthis ici: http://www.merijn.org/files/hijackthis.zip Dezippe le (clic droit >> Extraire tout) dans un dossier que tu auras crée pour l'occasion. Par exemple C:\hijackthis Lance-le puis: Clic sur "Do a system scan and save logfile" Fais un copier coller du rapport entier sur le forum. Puis: Télécharge ceci Double clic sur Lopxp2_Test.exe. Sur ton bureau un nouveau dossier va apparaitre, Lopxp2_Test. A l'intérieur, lance le fichier MH3.bat. Quant il aura fini son job, copie et colle le contenu du fichier lop.txt ici à la suite de ton message. a+
|
bonjour moi aussi je suis un ti peu un nouveau et je fais ce que tu as dis "zBr"
donc voici ce que le rapport as mis : 1°) Logfile of HijackThis v1.99.1 Scan saved at 14:05:01, on 06/03/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16414) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\WINDOWS\system32\lxctcoms.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\o2flash.exe C:\WINDOWS\system32\PSIService.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe c:\APPS\Powercinema\Kernel\TV\CLSched.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\WINDOWS\system32\WLan.exe C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe C:\APPS\Powercinema\PCMService.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\QuickTime\qttask.exe C:\WINDOWS\vsnpstd.exe C:\Program Files\Winamp\Winampa.exe C:\Program Files\Lexmark 5400 Series\lxctmon.exe C:\Program Files\Lexmark 5400 Series\ezprint.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\APPS\SMP\SmpSys.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\PROGRA~1\MI3AA1~1\wcescomm.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\PROGRA~1\MI3AA1~1\rapimgr.exe c:\progra~1\intern~1\iexplore.exe C:\PROGRA~1\INCRED~1\bin\IMApp.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\WINDOWS\system32\ntvdm.exe c:\program files\fichiers communs\installshield\updateservice\isuspm.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\agent.exe C:\Program Files\uTorrent\utorrent.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\Andre\Mes documents\documents\CiD\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/french R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://fr.search.yahoo.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [WLAN] C:\WINDOWS\system32\WLan.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe" O4 - HKLM\..\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe O4 - HKLM\..\Run: [PCMService] "c:\APPS\Powercinema\PCMService.exe" O4 - HKLM\..\Run: [NotebookHardwareControl] "C:\Documents and Settings\Andre\Mes documents\documents\nhc.exe" -quiet O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe" O4 - HKLM\..\Run: [lxctmon.exe] "C:\Program Files\Lexmark 5400 Series\lxctmon.exe" O4 - HKLM\..\Run: [Lexmark 5400 Series Fax Server] "C:\Program Files\Lexmark 5400 Series\fm3032.exe" /s O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 5400 Series\ezprint.exe" O4 - HKLM\..\Run: [LXCTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCTtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Tons save site flap] C:\Documents and Settings\All Users\Application Data\DEFY LOGO TONS SAVE\uploadfirst.exe O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKCU\..\Run: [SmpcSys] C:\APPS\SMP\SmpSys.exe O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9 O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [BAT BIND] C:\DOCUME~1\Andre\APPLIC~1\LICENS~1\Ante Grey.exe O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Startup: Mon agenda personnel Etam.lnk = C:\Program Files\Agenda Etam\calendrier.exe O4 - Global Startup: Akimania.com.lnk = C:\Program Files\Akimania.com\Pochette express pro v5.0\Akimania.com.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &IE Toolbar search - res://c:\Program Files\Couleur Cuisine Toolbar\toolbar.dll/SEARCH.HTML O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [INTERNATIONAL] International* O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/... O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540001} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe O23 - Service: CyberLink Media Library Service - Cyberlink - c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: lxct_device - - C:\WINDOWS\system32\lxctcoms.exe O23 - Service: MySqlInventime - Unknown owner - c:\mysql\bin\mysqld-max-nt.exe O23 - Service: O2Micro Flash Memory (O2Flash) - Unknown owner - C:\WINDOWS\system32\o2flash.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: USBDeviceService - Unknown owner - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe et voici le 2eme rappot que tu as demander 2°) ------------------------------------------- Rapport Lopxp fait le 06/03/2007 ------------------------------------------- Exécuté dans C:\Documents and Settings\Andre\Bureau\Lopxp2_Test /!\ Attention /!\ Les résultats de ce rapport sont sujets à interprétations, Et ne démontrent pas systématiquement des dossiers infectés... ************************************************** ## Handles Internet Explorer suspects en cours iexplore.exe pid: 4064 35C: C:\DOCUME~1\ALLUSE~1\APPLIC~1\DEFYLO~1\UPLOAD~1.EXE iexplore.exe pid: 3592 4E4: C:\Documents and Settings\All Users\Application Data\DEFY LOGO TONS SAVE\Trans Flaw Roam ************************************************** ## Recherche prédéterminé dans C:\Program Files C:\Program Files\Adverts Présent ! Installé le: 20/02/2007 Recherche des dossiers crées le 20/02/2007 : C:\Program Files\Adverts C:\Program Files\No1 DVD Ripper C:\Program Files\WinRAR C:\Documents and Settings\All Users\Application Data\DEFY LOGO TONS SAVE C:\Documents and Settings\Andre\Application Data\License Ref Software C:\Program Files\Messenger Plus! Live Présent ! /!\ Sponsor accepté lors de la dernière installation. /!\ Possibilité de désinstallation du Sponsor dans Ajout/Suppression de programme. Label: "Messenger Plus! Live & Sponsor" Installé le: 20/02/2007 Recherche des dossiers crées le 20/02/2007 : C:\Program Files\Adverts C:\Program Files\No1 DVD Ripper C:\Program Files\WinRAR C:\Documents and Settings\All Users\Application Data\DEFY LOGO TONS SAVE C:\Documents and Settings\Andre\Application Data\License Ref Software C:\Program Files\MessengerPlus! 3 Présent ! /!\ Sponsor refusé lors de la dernière installation. /!\ Installé le: 20/02/2007 Recherche des dossiers crées le 20/02/2007 : C:\Program Files\Adverts C:\Program Files\No1 DVD Ripper C:\Program Files\WinRAR C:\Documents and Settings\All Users\Application Data\DEFY LOGO TONS SAVE C:\Documents and Settings\Andre\Application Data\License Ref Software ****************************************** ## Tâches planifiées cachées (Panneau de configuration >> Tâches planifiées >> Menu "Avancé" >>Afficher les tâches masquées) Suspect : C:\WINDOWS\Tasks\A9D998A7918A1397.job ****************************************** ## Répertoires Application Data C:\Documents and Settings\All Users\Application Data 08/01/2007 22:41 <REP> 5400 Series 02/02/2007 23:56 <REP> Adobe 24/10/2006 07:41 <REP> AOL 07/01/2007 02:02 <REP> Corel 31/12/2006 15:23 <REP> CyberLink 26/02/2007 23:25 <REP> DEFY LOGO TONS SAVE 28/02/2007 13:42 <REP> Droppix 31/01/2007 18:03 <REP> DVD Shrink 15/02/2007 23:51 <REP> Google 05/07/2006 11:23 <REP> InstallShield 28/02/2007 13:21 <REP> LightScribe 28/12/2006 15:40 <REP> Microsoft 15/01/2007 13:09 <REP> MumboJumbo 05/07/2006 11:27 <REP> OD2 05/07/2006 11:20 <REP> QuickTime 16/08/2004 17:28 <REP> SBSI 23/10/2006 21:06 <REP> Skype 04/03/2007 15:30 <REP> Spybot - Search & Destroy 24/11/2006 13:32 <REP> Symantec 30/12/2006 13:25 <REP> TechSmith 31/01/2007 18:01 <REP> TuneUp Software 05/07/2006 11:29 <REP> Ulead Systems 31/12/2006 13:41 <REP> VCOM 05/07/2006 11:20 <REP> Viewpoint 29/12/2006 13:21 <REP> Windows Genuine Advantage 25/11/2006 10:26 <REP> Windows Live Toolbar 25/11/2006 21:38 <REP> Yahoo! C:\Documents and Settings\Andre\Application Data 08/01/2007 22:45 <REP> 5400 Series 04/03/2007 01:58 <REP> Adobe 03/02/2007 07:14 <REP> AdobeUM 13/02/2007 00:29 <REP> Ahead 05/07/2006 11:34 <REP> AOL 05/07/2006 11:17 <REP> ATI 16/01/2007 13:11 <REP> Corel 27/10/2006 21:01 <REP> CyberLink 05/01/2007 13:59 <REP> Droppix 05/12/2006 08:47 <REP> EoRezo 30/12/2006 13:26 <REP> Google 16/08/2004 17:19 <REP> Identities 24/11/2006 16:32 <REP> InterTrust 26/11/2006 10:14 <REP> Leadertech 26/02/2007 23:25 <REP> License Ref Software 14/11/2006 13:58 <REP> Macromedia 06/03/2007 12:28 <REP> Microsoft 21/02/2007 09:18 <REP> Mozilla 13/12/2006 21:33 <REP> MSNInstaller 21/02/2007 09:23 <REP> Nvu 23/10/2006 21:09 <REP> OD2 27/02/2007 09:54 <REP> Real 14/11/2006 13:58 <REP> SecuROM 20/11/2006 17:42 <REP> Skype 26/11/2006 10:15 <REP> Sonic 23/10/2006 21:05 <REP> Sun 21/11/2006 12:26 <REP> temp 11/12/2006 09:43 <REP> Ulead Systems 06/03/2007 14:17 <REP> uTorrent 31/12/2006 13:41 <REP> VCOM 23/10/2006 21:04 <REP> vlc 05/07/2006 11:20 <REP> You've Got Pictures Screensaver C:\Documents and Settings\Andre\Local Settings\Application Data 05/07/2006 11:14 <REP> {3248F0A6-6813-11D6-A77B-00B0D0150040} 23/01/2007 22:16 <REP> ABBYY 29/12/2006 13:02 <REP> Adobe 15/01/2007 19:10 <REP> Ahead 06/03/2007 12:28 <REP> ApplicationHistory 05/07/2006 11:17 <REP> ATI 30/12/2006 13:26 <REP> Google 11/12/2006 10:54 <REP> Identities 27/02/2007 10:02 <REP> IM 05/03/2007 10:19 <REP> Microsoft 30/10/2006 10:39 <REP> PowerCinema 30/12/2006 12:50 <REP> Shareaza C:\Documents and Settings\moi\Application Data 05/07/2006 11:34 <REP> AOL 05/07/2006 11:17 <REP> ATI 16/08/2004 17:19 <REP> Identities 05/07/2006 11:28 <REP> Macromedia 03/03/2007 22:19 <REP> Microsoft 09/12/2006 15:39 <REP> OD2 05/07/2006 11:20 <REP> You've Got Pictures Screensaver C:\Documents and Settings\moi\Local Settings\Application Data 05/07/2006 11:14 <REP> {3248F0A6-6813-11D6-A77B-00B0D0150040} 05/07/2006 11:21 <REP> ApplicationHistory 05/07/2006 11:17 <REP> ATI 03/03/2007 22:19 <REP> Microsoft 05/07/2006 11:33 <REP> PowerCinema C:\Documents and Settings\Propri‚taire\Application Data 31/12/2006 17:08 <REP> You've Got Pictures Screensaver ****************************************** ## Répertoires de Program files 24/11/2006 16:32 <REP> Adobe 20/02/2007 11:01 <REP> Adverts 23/02/2007 10:46 <REP> Ahead 07/01/2007 01:01 <REP> Akimania.com 25/11/2006 09:54 <REP> Alwil Software 03/03/2007 22:15 <REP> AskTBar 05/07/2006 11:08 <REP> ATI Technologies 24/11/2006 16:10 <REP> Borland 28/02/2007 13:58 <REP> CDBurnerXP Pro 3 16/08/2004 17:05 <REP> ComPlus Applications 05/07/2006 11:09 <REP> CONEXANT 11/02/2007 03:11 <REP> CoPilot 27/02/2007 15:07 <REP> Corel 22/02/2007 12:32 <REP> Couleur Cuisine Toolbar 05/07/2006 11:32 <REP> CyberLink 02/01/2007 18:58 <REP> DD PlayCam 07/01/2007 02:09 <REP> DFX 24/11/2006 16:10 <REP> Direct Beeper 2 24/11/2006 16:44 <REP> directx 07/01/2007 01:21 <REP> DVDCoverPrint 05/07/2006 11:28 <REP> Dynamic Toolbar 16/02/2007 00:05 <REP> eChanblard 05/12/2006 08:47 <REP> eoRezo 24/02/2007 13:41 <REP> FairUse Wizard 2 27/02/2007 15:07 <REP> Fichiers communs 16/02/2007 13:17 <REP> Google 26/02/2007 00:06 <REP> IKEA HomePlanner 28/12/2006 16:24 <REP> IncrediMail 05/07/2006 11:05 <REP> Intel 17/02/2007 03:16 <REP> Internet Explorer 05/01/2007 13:45 <REP> iSofter 02/01/2007 20:23 <REP> Java 02/01/2007 18:56 <REP> KYE 05/07/2006 11:20 <REP> Learn2.com 08/01/2007 22:46 <REP> Lexmark 5400 Series 08/01/2007 22:49 <REP> Lexmark Toolbar 26/02/2007 23:25 <REP> License Ref Software 07/02/2007 14:44 <REP> Lx_cats 31/12/2006 12:42 <REP> Ma‹do Production 27/02/2007 09:24 <REP> Media Player Classic 05/07/2006 11:10 <REP> Messenger 20/02/2007 11:05 <REP> Messenger Plus! Live 20/02/2007 11:01 <REP> MessengerPlus! 3 25/11/2006 13:35 <REP> Micro Scrabble 15/02/2007 23:50 <REP> Micro Trivial Pursuit 11/02/2007 12:36 <REP> Microsoft ActiveSync 16/08/2004 17:11 <REP> microsoft frontpage 20/11/2006 12:39 <REP> Microsoft Office 26/02/2007 23:27 <REP> Microsoft Sites publics fran‡ais 20/11/2006 12:29 <REP> Microsoft Visual Studio 29/12/2006 13:36 <REP> Microsoft Works 20/11/2006 12:29 <REP> Microsoft.NET 05/07/2006 11:10 <REP> MiTAC 16/08/2004 17:06 <REP> Movie Maker 28/12/2006 15:36 <REP> MSN 16/08/2004 17:03 <REP> MSN Gaming Zone 20/02/2007 11:05 <REP> MSN Messenger 29/12/2006 13:16 <REP> MSXML 4.0 25/11/2006 22:29 <REP> NavExcel 16/08/2004 17:06 <REP> NetMeeting 20/02/2007 22:51 <REP> No1 DVD Ripper 05/07/2006 11:21 <REP> Norman 23/02/2007 10:45 <REP> Nvu 15/02/2007 23:50 <REP> Oberon Media 16/08/2004 17:03 <REP> Online Services 28/12/2006 19:55 <REP> Outlook Express 31/01/2007 18:05 <REP> PC Inspector File Recovery 05/07/2006 11:20 <REP> QuickTime 05/07/2006 11:20 <REP> Real 27/02/2007 09:24 <REP> Real Alternative 05/07/2006 11:08 <REP> Realtek 24/11/2006 17:46 <REP> Red Storm Entertainment 16/08/2004 17:07 <REP> Services en ligne 05/07/2006 11:28 <REP> ShowTime 30/12/2006 11:51 <REP> Skin Tool 05/07/2006 11:22 <REP> Sonic 04/03/2007 15:19 <REP> Spybot - Search & Destroy 05/07/2006 10:56 <REP> Synaptics 30/12/2006 13:25 <REP> TechSmith 25/11/2006 22:21 <REP> TerraGame 31/01/2007 18:08 <REP> TGTSoft 30/12/2006 16:14 <REP> Trust 320 SpaceCam 25/11/2006 22:22 <REP> TuxMathScrabble 24/11/2006 16:32 <REP> Ubi Soft 05/07/2006 11:31 <REP> Ulead Systems 20/01/2007 00:15 <REP> uTorrent 05/07/2006 11:20 <REP> Viewpoint 23/10/2006 21:05 <REP> VLC 21/02/2007 10:03 <REP> website 22/01/2007 02:08 <REP> Winamp 02/01/2007 00:43 <REP> Windows Live Safety Center 29/12/2006 14:00 <REP> Windows Live Toolbar 05/07/2006 11:30 <REP> Windows Media Components 03/01/2007 13:05 <REP> Windows Media Connect 2 03/01/2007 13:08 <REP> Windows Media Player 16/08/2004 17:03 <REP> Windows NT 20/02/2007 22:29 <REP> WinRAR 16/08/2004 17:11 <REP> xerox 26/11/2006 08:56 <REP> Yahoo! 04/03/2007 15:08 <REP> Zone Labs ************************************************** ## Recherche dans le registre # Startup : * HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Tons save site flap REG_SZ C:\Documents and Settings\All Users\Application Data\DEFY LOGO TONS SAVE\uploadfirst.exe * HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run BAT BIND REG_SZ C:\DOCUME~1\Andre\APPLIC~1\LICENS~1\Ante Grey.exe # Popups autorisées * Internet Explorer ! REG.EXE VERSION 3.0 HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow www.packardbell.com REG_NONE www.packardbell.co.uk REG_NONE www.packardbell.at REG_NONE www.packardbell.dk REG_NONE www.packardbell.fi REG_NONE www.packardbell.fr REG_NONE www.packardbell.de REG_NONE www.packardbell.it REG_NONE www.packardbell.no REG_NONE www.packardbell.es REG_NONE www.packardbell.se REG_NONE www.packardbell.ch REG_NONE www.packardbell.nl REG_NONE fr.packardbell.be REG_NONE nl.packardbell.be REG_NONE www.01net.com REG_BINARY *.hotmail.msn.com REG_BINARY www.coolsmile.net REG_BINARY *.alk.eu.com REG_BINARY searchweb2.com REG_SZ www.searchweb2.com REG_SZ HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\*.od2.com <SANS NOM> REG_SZ 0 * Mozilla Firefox (1 autorisé 2 interdit) * Suite Mozilla / SeaMonkey (1 autorisé 2 interdit) ****************************************** ## Zones de sécurité * HKCU Domains (4) * P3P History (5) peu tu m'aider ??????? merci d'avance |
| zBr, le mardi 6 mars 2007 à 18:27:43 Salut
Dans Ajout/Suppression de programme. Clic sur "Messenger Plus! Live & Sponsor" Et choisis de désinstaller le sponsor. Ensuite redemarre ton pc et télécharge et exécutes Atf-cleaner http://www.atribune.org/ccount/click.php?id=1 L'aide pour l'utiliser: http://mickael.barroux.free.fr/securite/tutoatfcleaner.html ou là: http://perso.orange.fr/entraide-hijackthis/ATF_Cleaner/atf_cleaner_demo.htm Puis reposte un rapport hijackthis, ainsi qu'un lopxp a++ |
| DELATTRE, le mercredi 14 mars 2007 à 22:10:03 Logfile of HijackThis v1.99.1
Scan saved at 22:07:09, on 14/03/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: F:\WINDOWS\System32\smss.exe F:\WINDOWS\system32\winlogon.exe F:\WINDOWS\system32\services.exe F:\WINDOWS\system32\lsass.exe F:\WINDOWS\system32\svchost.exe F:\WINDOWS\System32\svchost.exe F:\WINDOWS\system32\spoolsv.exe F:\WINDOWS\Explorer.EXE F:\WINDOWS\SOUNDMAN.EXE F:\WINDOWS\System32\igfxtray.exe F:\WINDOWS\System32\hkcmd.exe F:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe F:\Program Files\NavNT\vptray.exe F:\WINDOWS\system32\ctfmon.exe F:\Program Files\Save\Save.exe F:\Program Files\eMule\emule.exe F:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe f:\progra~1\intern~1\iexplore.exe F:\Program Files\NavNT\defwatch.exe F:\Program Files\NavNT\rtvscan.exe F:\WINDOWS\system32\MsgSys.EXE F:\Program Files\Internet Explorer\iexplore.exe F:\Program Files\MSN Messenger\usnsvc.exe F:\WINDOWS\System32\tcpsvcs.exe \?\F:\WINDOWS\system32\WBEM\WMIADAP.EXE F:\Program Files\Internet Explorer\iexplore.exe F:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe F:\Documents and Settings\CELIE DELATTRE\Local Settings\Temporary Internet Files\Content.IE5\M5CPQF4T\hijackthis[1]\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Multi Media France Toolbar - {7009fcd4-05be-44f4-9583-93fe419ab7b0} - F:\Program Files\Multi_Media_France\tbMult.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Multi Media France Toolbar - {7009fcd4-05be-44f4-9583-93fe419ab7b0} - F:\Program Files\Multi_Media_France\tbMult.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - F:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - f:\program files\google\googletoolbar1.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - F:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - F:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Multi Media France Toolbar - {7009fcd4-05be-44f4-9583-93fe419ab7b0} - F:\Program Files\Multi_Media_France\tbMult.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [IgfxTray] F:\WINDOWS\System32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] F:\WINDOWS\System32\hkcmd.exe O4 - HKLM\..\Run: [PRONoMgr.exe] F:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe O4 - HKLM\..\Run: [vptray] F:\Program Files\NavNT\vptray.exe O4 - HKLM\..\Run: [Bash Ping Cash Flag] F:\Documents and Settings\All Users\Application Data\Dvdsoftbashping\Internetmp3.exe O4 - HKCU\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "F:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [htm web] F:\DOCUME~1\CELIED~1\APPLIC~1\SPAMGL~1\Window mpeg.exe O4 - HKCU\..\Run: [WhenUSave] "F:\Program Files\Save\Save.exe" O4 - HKCU\..\Run: [swg] F:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [eMuleAutoStart] F:\Program Files\eMule\emule.exe -AutoStart O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = F:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Microsoft Office.lnk = F:\Program Files\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: &Windows Live Search - res://F:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe O16 - DPF: {2472565F-E27A-11D9-ADFE-00062919A34C} (ActiveXUploadDiscount.UserControl1) - http://www.fotodiscount.com/activeX/newUploadDiscount.CAB O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - F:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - F:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: igfxcui - F:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: NavLogon - F:\WINDOWS\System32\NavLogon.dll O23 - Service: DefWatch - Symantec Corporation - F:\Program Files\NavNT\defwatch.exe O23 - Service: Google Updater Service (gusvc) - Google - F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - F:\Program Files\Intel\NCS\Sync\NetSvc.exe O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - F:\Program Files\NavNT\rtvscan.exe |
| Stophcry, le mardi 3 avril 2007 à 21:33:36 Salut tout le monde moi je suis super novice donc je vous mon post le rapport mais après je ne c pas quoi faire du tout
Logfile of HijackThis v1.99.1 Scan saved at 21:29:40, on 03/04/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Winamp\winampa.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe c:\progra~1\intern~1\iexplore.exe C:\Program Files\Fichiers communs\Logitech\KhalShared\KHALMNPR.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\System32\FTRTSVC.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\stoph\Bureau\Virus\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\ O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [tons window peak bone] C:\Documents and Settings\All Users\Application Data\Frag glue tons window\2 start.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [WipeRoad] C:\DOCUME~1\stoph\APPLIC~1\DUPEVG~1\dale multi up.exe O4 - Startup: dBpowerAMP.lnk = C:\Program Files\Illustrate\dBpowerAMP\Amp.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech SetPoint.lnk = ? O4 - Global Startup: Picture Package Menu.lnk = ? O4 - Global Startup: Picture Package VCD Maker.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O16 - DPF: {42F2C9BA-614F-47C0-B3E3-ECFD34EED658} - http://promo.dollarrevenue.com/webmasterexe/drsmartload464a.exe O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Fichiers communs\Sonic Shared\RoxioUPnPRenderer9.exe O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Fichiers communs\Sonic Shared\RoxioUpnpService9.exe O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe Donc ensuite je fait quoi ?? |