bonjour,
je suis désolé pour cette periode d'absence, j'espere que tu pourra encore m'aider. Voici le rapport avg anti spareware (j'ai donc cette fois ci cliqué sur appliquer toutes les actions), et le rapport hijack this.
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 15:56:18 15/04/2007
+ Résultat de l'analyse:
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Avenue Media -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Avenue Media\Internet Optimizer -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Browser Helper -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Browser Helper\cf1 -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Optimizer -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Kapabout -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\AMeOpt -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Policies\Avenue Media -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-1957994488-1343024091-839522115-1003\Software\Avenue Media -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-1957994488-1343024091-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Policies\AMeOpt -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-1957994488-1343024091-839522115-1003\Software\Policies\Avenue Media -> Adware.InternetOptimizer : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-1957994488-1343024091-839522115-1003\Software\IST -> Adware.ISTBar : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DyFuCA -> Adware.MoneyTree : Nettoyé et sauvegardé (mise en quarantaine).
E:\Emule receive\Native Instruments Absynth 4 crack.zip/analog factory crack serial.exe -> Adware.Stud : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Classes\MediaAccX.Installer -> Adware.WinAd : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Classes\MediaAccX.Installer\CLSID -> Adware.WinAd : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Classes\YSBactivex.Installer -> Adware.YourSiteBar : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Classes\YSBactivex.Installer\CLSID -> Adware.YourSiteBar : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\QH6BMZOT\deds2[1].exe/mtu.bat -> Backdoor.Secdrop.fw : Nettoyé et sauvegardé (mise en quarantaine).
C:\RECYCLER\S-1-5-21-1957994488-1343024091-839522115-1003\Dc15\Backups\Heuristic\prodsrvs.exe.off -> Dialer.InstantAccess.am : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.104:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.12:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.42:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@heavycom.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.129:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.130:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.125:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.126:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.127:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.34:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.61:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@as.casalemedia[2].txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@casalemedia[2].txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@promo.casinotropez[2].txt -> TrackingCookie.Casinotropez : Nettoyé.
:mozilla.136:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.137:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.138:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.45:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.74:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@media.fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@ehg-quechoisir.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.123:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.124:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.94:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@overture[1].txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.108:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.109:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.110:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.111:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.112:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.113:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.76:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.77:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.63:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.64:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.65:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.117:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé.
:mozilla.118:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé.
:mozilla.119:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé.
:mozilla.120:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé.
:mozilla.57:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.58:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.78:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.79:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.80:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.53:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.54:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.55:C:\Documents and Settings\Tofi Tofo\Application Data\Mozilla\Firefox\Profiles\gbq09syz.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Tofi Tofo\Cookies\tofi tofo@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé.
C:\Program Files\Ableton\Live 3.0\Program\abl3_crk.exe -> Trojan.Feutel.av : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\Tofi Tofo\354fx.exe/ransy.reg -> Trojan.LowZones.f : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\Tofi Tofo\354fx.exe/rany.reg -> Trojan.LowZones.f : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\Tofi Tofo\e8ad79.exe/ransy.reg -> Trojan.LowZones.f : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\Tofi Tofo\e8ad79.exe/rany.reg -> Trojan.LowZones.f : Nettoyé et sauvegardé (mise en quarantaine).
Fin du rapport
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 15:59:15, on 15/04/2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Soft4Ever\looknstop\looknstop.exe
C:\program files\onlineeye pro\onlineeye.exe
C:\Program Files\Cloneur Expert\TrueImageMonitor.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Logitech-clavier\iTouch\iTouch.exe
C:\program files\u-storage tool2.9\ustorage.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\System32\DeltTray.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\System32\RUNDLL32.EXE
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\super copieur\SuperCopier.exe
C:\Program Files\Club-Internet\Dr Club Internet\bin\mpbtn.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Soulseek\slsk.exe
C:\WINDOWS\System32\DeltaPnl.EXE
C:\Program Files\Winamp\Winamp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Fichiers Installation Programme\analyse de virus\HiJackThis_v2.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
virus pop up a gogo virus sous le capot
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer =
http://www.multiproxy.org/multiproxy.htm:1080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [fdiskdumpp] C:\Program Files\fdiskdumpp.exe
O4 - HKLM\..\Run: [VIEW POINT DRIVERS] phqghum.exe
O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto
O4 - HKLM\..\Run: [VersionCheck] "C:\Program Files\Onlineeye Pro\vcheck.exe"
O4 - HKLM\..\Run: [OnlineTime] "c:\program files\onlineeye pro\onlineeye.exe"
O4 - HKLM\..\Run: [WildTangent CDA] "C:\Program Files\WildTangent\Apps\CDA\GameDrvr.exe" /startup "C:\Program Files\WildTangent\Apps\CDA\cdaEngine0500.dll"
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Cloneur Expert Monitor] "C:\Program Files\Cloneur Expert\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech-clavier\iTouch\iTouch.exe
O4 - HKLM\..\Run: [UStorag] c:\program files\u-storage tool2.9\ustorage.exe sys_auto_run C:\Program Files\U-Storage Tool2.9
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [DeltTray] DeltTray.exe
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\RunServices: [VIEW POINT DRIVERS] phqghum.exe
O4 - HKLM\..\RunServices: [Microsoft Client/Server Runtime Server Subsystem] csrs.exe
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU\..\Run: [MS Unix Binary] msnq3insller.exe
O4 - HKCU\..\Run: [VIEW POINT DRIVERS] phqghum.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SuperCopier.exe] C:\Program Files\super copieur\SuperCopier.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User '?')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User '?')
O4 - HKUS\S-1-5-21-1957994488-1343024091-839522115-1003\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit (User '?')
O4 - HKUS\S-1-5-21-1957994488-1343024091-839522115-1003\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User '?')
O4 - HKUS\S-1-5-21-1957994488-1343024091-839522115-1003\..\Run: [SuperCopier.exe] C:\Program Files\super copieur\SuperCopier.exe (User '?')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User '?')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Docteur Club Internet.lnk = C:\Program Files\Club-Internet\Dr Club Internet\bin\matcli.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - Trusted Zone: *.hotmail.com
O15 - Trusted Zone: *.msn.com
O15 - Trusted Zone: *.passport.com
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O16 - DPF: {00000000-0000-0000-0000-000020030000} -
http://www.advnt01.com/dialer/fra_pagl.exe
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} -
http://cdn.drivecleaner.com/installdrivecleanerstart_fr.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -
http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} -
http://static.windupdates.com/cab/6247971CanadaInc/ie/bridge-c6.cab
O16 - DPF: {16BED5D9-AA6B-4A96-A134-C1958893490F} (VacPro.int_ver40v) -
http://advnt01.com/dialer/intES_ver40v.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -
http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {42F2C9BA-614F-47C0-B3E3-ECFD34EED658} (Installer Class) -
http://www.ysbweb.com/ist/softwares/v4.0/ysb_1001680_world.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) -
http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -
http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) -
http://a840.g.akamai.net/...
O16 - DPF: {8C875948-9C60-4381-9248-0DF180542D53} -
http://installs.hotbar.com/installs/hbtools/programs/hbtools.cab
O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} -
http://static.zangocash.com/cab/Zango/ie/bridge-c356.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -
http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) -
http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) -
http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) -
http://by113fd.bay113.hotmail.msn.com/activex/HMAtchmt.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{D1226B37-DD3B-44F8-923A-31450D17F0D4}: NameServer = 194.117.200.10,194.117.200.15
O20 - Winlogon Notify: xmm13g - xmm13g.dll (file missing)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\System32\imapi.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\System32\mnmsrvc.exe
O23 - Service: DDE réseau (NetDDE) - Unknown owner - C:\WINDOWS\system32\netdde.exe
O23 - Service: DSDM DDE réseau (NetDDEdsdm) - Unknown owner - C:\WINDOWS\system32\netdde.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Prise en charge des cartes à puces (SCardDrv) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Windows User Mode Driver Framework (UMWdf) - Unknown owner - C:\WINDOWS\System32\wdfmgr.exe (file missing)
O23 - Service: Universal Plug and Play device driver (upnpdrv) - Unknown owner - C:\WINDOWS\System32\upnpdrv.exe (file missing)
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\System32\wbem\wmiapsrv.exe
O24 - Desktop Component 0: (no name) -
http://upload.wikimedia.org/wikipedia/commons/0/0c/Lotus2mq.jpg
