|
|
|
|
Configuration: Windows XP Internet Explorer 7.0
Salut
Télécharge ceci: (by Moe) : http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe ; sur le bureau. Double-clic sur Lopxpsetup.exe pour lancer l'installation Au menu, choisir l'option 1 Patienter jusqu'à ce que l'on demande d'appuyer sur une touche ==> appuyer ! Une rapport sera alors créé, à copier/coller en entier sur le forum. ++ Le moyen d'aimer une chose est de se dire qu'on pourrait la perdre (Gilbert Keith Chesterton) |
merci beaucoup de ton aide
Voici le rapport Rapport Lopxp fait le 03/01/2008 à 10:45:00 Exécuté dans : C:\Program Files\Lopxp Liste des processus actifs : PID : 636 C:\WINDOWS\System32\smss.exe PID : 688 C:\WINDOWS\system32\csrss.exe PID : 724 C:\WINDOWS\system32\winlogon.exe PID : 772 C:\WINDOWS\system32\services.exe PID : 784 C:\WINDOWS\system32\lsass.exe PID : 924 C:\WINDOWS\system32\Ati2evxx.exe PID : 940 C:\WINDOWS\system32\svchost.exe PID : 1076 C:\WINDOWS\system32\svchost.exe PID : 1184 C:\WINDOWS\System32\svchost.exe PID : 1252 C:\WINDOWS\system32\svchost.exe PID : 1336 C:\WINDOWS\System32\svchost.exe PID : 1520 C:\WINDOWS\system32\Ati2evxx.exe PID : 1552 C:\WINDOWS\System32\svchost.exe PID : 1612 C:\WINDOWS\Explorer.EXE PID : 1808 C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe PID : 1972 C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe PID : 348 C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe PID : 988 C:\WINDOWS\system32\spoolsv.exe PID : 1572 C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe PID : 1700 C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe PID : 1740 C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe PID : 1776 C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe PID : 144 C:\WINDOWS\System32\svchost.exe PID : 2220 C:\WINDOWS\System32\alg.exe PID : 2948 C:\windows\system\hpsysdrv.exe PID : 2980 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe PID : 2992 C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe PID : 3024 C:\Program Files\HP\HP Software Update\HPWuSchd2.exe PID : 3120 C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe PID : 3132 C:\Program Files\iTunes\iTunesHelper.exe PID : 3148 C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE PID : 3180 C:\WINDOWS\system32\ctfmon.exe PID : 3192 C:\Program Files\Internet Explorer\IEXPLORE.EXE PID : 3592 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe PID : 2460 C:\Program Files\iPod\bin\iPodService.exe PID : 2848 C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe PID : 2896 C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe PID : 5604 C:\Program Files\Internet Explorer\iexplore.exe PID : 1884 C:\WINDOWS\system32\cmd.exe PID : 5364 C:\Program Files\Lopxp\tools\pv.exe /!\ Suspect PID : 3192 iexplore.exe => C:\Documents and Settings\All Users\Application Data\dupe global body amok\mapiwmacity ___________________________________________________________________________ [Tâches planifiées] C:\WINDOWS\tasks\AppleSoftwareUpdate.job Cr : 26/06/2007 à 17:32 Mo : 17/10/2007 à 15:38 Fichier exécuté : C\Program Files\Apple Software Update\SoftwareUpdate.exe -task C:\WINDOWS\tasks\Norton Internet Security - Analyse système complète - Propriétaire.job Fichier exécuté : C\PROGRA~1\NORTON~2\NORTON~1\Navw32.exe /TASK:"C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Tasks\mycomp.sca" C:\WINDOWS\tasks\A87835C5918BAD89.job Cr : 10/06/2007 à 00:12 Mo : 03/01/2008 à 10:00 Fichier exécuté : c:\docume~1\propri~1\applic~1\userbu~1\Settings Option Deaf.exe ___________________________________________________________________________ [Listing des dossiers Application Data] cr: Date Création | mo: Date Modification -=- Nom Long -= Nom Court (8.3) +- C:\Documents and Settings\Administrateur\Application Data cr: 15/10/2007 11:29:24 | mo: 02/01/2003 12:30:37 -=- Adobe ----= Adobe cr: 15/10/2007 11:29:24 | mo: 02/01/2003 11:23:11 -=- IDENTI~1 -= Identities cr: 15/10/2007 11:29:24 | mo: 02/01/2003 12:30:37 -=- INTERT~1 -= InterTrust cr: 15/10/2007 11:29:24 | mo: 02/01/2003 11:48:23 -=- MICROS~1 -= Microsoft cr: 15/10/2007 11:29:24 | mo: 02/01/2003 12:35:54 -=- SAMPLE~1 -= SampleView cr: 15/10/2007 11:29:24 | mo: 02/01/2003 12:25:06 -=- Sonic ----= Sonic cr: 15/10/2007 11:29:24 | mo: 01/01/2003 20:32:20 -=- Symantec -= Symantec +- C:\Documents and Settings\Administrateur\Local Settings\Application Data cr: 15/10/2007 11:29:24 | mo: 01/01/2003 11:37:31 -=- MICROS~1 -= Microsoft +- C:\Documents and Settings\All Users\Application Data cr: 16/05/2006 18:11:06 | mo: 08/07/2007 20:35:44 -=- Adobe ----= Adobe cr: 30/06/2007 11:42:56 | mo: 30/06/2007 11:42:56 -=- Apple ----= Apple cr: 25/07/2004 17:47:07 | mo: 26/06/2007 17:32:52 -=- APPLEC~1 -= Apple Computer cr: 10/01/2007 20:54:41 | mo: 01/07/2007 17:42:40 -=- CYBERL~1 -= CyberLink cr: 09/12/2006 17:58:52 | mo: 03/09/2007 18:32:15 -=- DUPEGL~1 -= dupe global body amok cr: 14/07/2004 17:46:08 | mo: 25/07/2004 17:56:40 -=- DVDSHR~1 -= DVD Shrink cr: 30/09/2007 11:00:16 | mo: 30/09/2007 11:00:16 -=- Google ---= Google cr: 02/02/2007 19:01:15 | mo: 02/02/2007 19:01:15 -=- HP -------= HP cr: 14/10/2007 10:18:53 | mo: 14/10/2007 10:18:53 -=- MESSEN~1 -= Messenger Plus! cr: 02/01/2003 11:14:15 | mo: 31/12/2006 11:44:46 -=- MICROS~1 -= Microsoft cr: 29/09/2007 17:43:35 | mo: 29/09/2007 17:43:35 -=- Mozilla --= Mozilla cr: 07/01/2004 12:34:16 | mo: 07/01/2004 12:34:16 -=- MSN6 -----= MSN6 cr: 22/01/2006 18:22:03 | mo: 22/01/2006 18:22:04 -=- MUVEET~1 -= muvee Technologies cr: 20/07/2007 14:54:41 | mo: 20/07/2007 14:54:41 -=- OFFICE~1 -= Office Genuine Advantage cr: 23/04/2006 10:04:47 | mo: 31/12/2006 11:43:49 -=- PCSUIT~1 -= PC Suite cr: 25/12/2006 10:15:26 | mo: 26/12/2006 12:39:22 -=- Pinnacle -= Pinnacle cr: 25/12/2006 10:17:47 | mo: 26/12/2006 12:40:40 -=- PINNAC~1 -= Pinnacle Studio cr: 25/07/2004 17:47:23 | mo: 09/04/2005 17:16:11 -=- QUICKT~1 -= QuickTime cr: 02/01/2003 11:29:01 | mo: 02/01/2003 11:29:01 -=- SBSI -----= SBSI cr: 12/05/2006 17:47:55 | mo: 12/05/2006 17:47:55 -=- Skype ----= Skype cr: 01/01/2003 20:32:11 | mo: 03/01/2008 10:37:34 -=- Symantec -= Symantec cr: 31/05/2006 06:15:26 | mo: 31/05/2006 06:15:26 -=- WINDOW~1 -= Windows Genuine Advantage cr: 04/02/2007 11:17:58 | mo: 04/02/2007 11:17:58 -=- WINDOW~2 -= Windows Live Toolbar cr: 03/01/2008 10:10:20 | mo: 03/01/2008 10:10:20 -=- YAHOO!~1 -= Yahoo! Companion +- C:\Documents and Settings\Default User\Application Data cr: 07/01/2004 12:05:32 | mo: 02/01/2003 12:30:37 -=- Adobe ----= Adobe cr: 20/11/2007 20:03:02 | mo: 20/11/2007 20:03:02 -=- APPLEC~1 -= Apple Computer cr: 02/01/2003 11:23:11 | mo: 02/01/2003 11:23:11 -=- IDENTI~1 -= Identities cr: 07/01/2004 12:05:32 | mo: 02/01/2003 12:30:37 -=- INTERT~1 -= InterTrust cr: 02/01/2003 11:14:15 | mo: 02/01/2003 11:48:23 -=- MICROS~1 -= Microsoft cr: 07/01/2004 12:05:32 | mo: 02/01/2003 12:35:54 -=- SAMPLE~1 -= SampleView cr: 07/01/2004 12:05:32 | mo: 02/01/2003 12:25:06 -=- Sonic ----= Sonic cr: 07/01/2004 12:05:32 | mo: 01/01/2003 20:32:20 -=- Symantec -= Symantec +- C:\Documents and Settings\Default User\Local Settings\Application Data cr: 20/11/2007 20:02:27 | mo: 20/11/2007 20:03:02 -=- APPLEC~1 -= Apple Computer cr: 07/01/2004 12:05:32 | mo: 01/01/2003 11:37:31 -=- MICROS~1 -= Microsoft +- C:\Documents and Settings\LocalService\Application Data cr: 02/01/2003 11:27:03 | mo: 25/12/2006 11:15:10 -=- MICROS~1 -= Microsoft cr: 29/09/2006 14:44:55 | mo: 29/09/2006 14:44:55 -=- Symantec -= Symantec +- C:\Documents and Settings\LocalService\Local Settings\Application Data cr: 02/01/2003 11:27:03 | mo: 27/12/2004 10:50:45 -=- MICROS~1 -= Microsoft +- C:\Documents and Settings\NetworkService\Application Data cr: 02/01/2003 11:27:02 | mo: 09/04/2005 07:43:12 -=- MICROS~1 -= Microsoft cr: 31/01/2005 11:28:28 | mo: 31/01/2005 11:28:28 -=- Symantec -= Symantec +- C:\Documents and Settings\NetworkService\Local Settings\Application Data cr: 02/07/2007 12:18:01 | mo: 02/07/2007 12:18:01 -=- Apple ----= Apple cr: 02/01/2003 11:27:02 | mo: 01/02/2005 19:55:58 -=- MICROS~1 -= Microsoft +- C:\Documents and Settings\Propri‚taire\Local Settings\Application Data cr: 24/05/2007 17:27:51 | mo: 24/05/2007 17:27:51 -=- MICROS~1 -= Microsoft ___________________________________________________________________________ [Listing du dossier Program Files] +- C:\Program Files cr: 10/06/2006 12:00:24 | mo: 08/07/2007 20:34:50 -=- Adobe ----= Adobe cr: 25/12/2006 11:00:19 | mo: 25/12/2006 11:00:24 -=- ADORAG~1 -= AdorageI-SAL cr: 13/03/2006 20:09:42 | mo: 13/03/2006 20:09:42 -=- AGD ------= AGD cr: 10/01/2004 19:48:33 | mo: 27/07/2005 11:18:51 -=- Ahead ----= Ahead cr: 08/10/2006 18:38:16 | mo: 08/10/2006 18:38:16 -=- AIST -----= AIST cr: 04/08/2005 08:31:33 | mo: 04/08/2005 08:31:33 -=- Alsyd ----= Alsyd cr: 22/05/2007 22:05:50 | mo: 03/01/2008 07:50:35 -=- ANONYS~1 -= Anonystat cr: 07/05/2006 09:26:43 | mo: 07/05/2006 09:56:28 -=- ANTI-B~1.18 -= Anti-Blaxx 1.18 cr: 19/08/2007 17:46:28 | mo: 14/09/2007 07:59:57 -=- APPLES~1 -= Apple Software Update cr: 26/02/2006 19:25:41 | mo: 26/02/2006 19:29:59 -=- ASCIIA~1 -= ASCII Art Generator cr: 05/01/2007 23:56:51 | mo: 09/05/2007 18:54:00 -=- ASTONS~1 -= Astonsoft cr: 07/01/2004 12:06:53 | mo: 19/07/2006 09:57:07 -=- ATITEC~1 -= ATI Technologies cr: 22/01/2006 18:18:38 | mo: 22/01/2006 18:18:39 -=- Autofr ---= Autofr cr: 10/06/2007 15:36:20 | mo: 13/06/2007 09:25:04 -=- BITTOR~2 -= BitTorrent cr: 04/01/2006 16:17:25 | mo: 04/01/2006 16:17:25 -=- BLACKS~1.NET -= BlackSunSoft.net cr: 30/01/2005 18:08:30 | mo: 02/04/2005 12:49:05 -=- BLAXXU~1 -= blaxxun Contact cr: 12/06/2007 17:44:36 | mo: 13/06/2007 09:57:47 -=- BSPLAY~1 -= BSplayer_WhenUSave_Installer cr: 14/10/2007 09:11:55 | mo: 14/10/2007 09:11:55 -=- CCleaner -= CCleaner cr: 05/06/2006 19:40:07 | mo: 05/06/2006 19:40:07 -=- CMDATA~1 -= CM Data Software cr: 02/01/2003 11:19:39 | mo: 02/01/2003 11:19:39 -=- COMPLU~1 -= ComPlus Applications cr: 22/05/2007 22:05:13 | mo: 03/01/2008 10:37:32 -=- CONTEX~1 -= ContextTool cr: 02/03/2007 20:09:40 | mo: 04/03/2007 20:34:32 -=- CREATU~1 -= Creatures 2 cr: 12/01/2004 19:44:52 | mo: 01/07/2007 17:42:41 -=- CYBERL~1 -= CyberLink cr: 23/04/2006 10:06:23 | mo: 31/12/2006 11:41:14 -=- DIFX -----= DIFX cr: 29/01/2005 16:24:30 | mo: 29/01/2005 16:24:30 -=- directx --= directx cr: 07/12/2006 21:13:13 | mo: 30/09/2007 10:59:58 -=- DivX -----= DivX cr: 03/11/2004 19:57:13 | mo: 28/06/2007 18:19:53 -=- EAGAME~1 -= EA Games cr: 02/01/2003 12:35:40 | mo: 17/01/2006 20:00:09 -=- EASYIN~1 -= Easy Internet signup cr: 04/07/2004 20:52:35 | mo: 04/07/2004 20:52:35 -=- EIDOSI~1 -= Eidos Interactive cr: 03/07/2006 19:20:28 | mo: 03/07/2006 19:39:20 -=- eMule ----= eMule cr: 22/05/2007 22:05:34 | mo: 03/01/2008 07:50:38 -=- ERRORS~1 -= ErrorsTool cr: 04/06/2006 18:10:40 | mo: 16/07/2006 10:03:15 -=- FAKEWE~1 -= Fake Webcam cr: 02/01/2003 11:14:50 | mo: 20/10/2007 18:15:54 -=- FICHIE~1 -= Fichiers communs cr: 25/05/2006 20:36:16 | mo: 03/07/2006 19:12:55 -=- FlashGet -= FlashGet cr: 23/05/2007 17:38:56 | mo: 23/05/2007 17:38:56 -=- GOA ------= GOA cr: 11/03/2005 19:56:50 | mo: 13/01/2007 08:06:36 -=- Google ---= Google cr: 02/02/2007 18:56:04 | mo: 02/02/2007 19:46:13 -=- HEWLET~1 -= Hewlett-Packard cr: 02/02/2007 18:25:28 | mo: 02/02/2007 19:54:38 -=- HP -------= HP cr: 22/01/2006 18:19:43 | mo: 15/02/2006 12:07:11 -=- HTVIDE~1.0 -------= HT Video Editor 6.0 cr: 19/03/2006 12:42:21 | mo: 19/03/2006 12:42:50 -=- Icons ----= Icons cr: 02/01/2003 12:25:53 | mo: 09/10/2007 19:32:10 -=- INSTAL~1 -= InstallShield Installation Information cr: 09/01/2004 21:07:22 | mo: 07/11/2006 21:22:13 -=- INTERA~1 -= InterActual cr: 02/01/2003 11:19:57 | mo: 11/12/2007 22:52:25 -=- INTERN~1 -= Internet Explorer cr: 02/01/2003 12:25:53 | mo: 07/01/2004 12:09:11 -=- INTERV~1 -= InterVideo cr: 10/10/2007 15:49:25 | mo: 10/10/2007 15:49:26 -=- iPod -----= iPod cr: 16/05/2004 18:56:08 | mo: 26/12/2004 18:55:47 -=- ISpy -----= ISpy cr: 10/10/2007 15:49:18 | mo: 10/10/2007 15:49:37 -=- iTunes ---= iTunes cr: 26/03/2006 17:33:25 | mo: 26/03/2006 17:33:51 -=- JASCSO~1 -= Jasc Software Inc cr: 02/01/2003 12:42:39 | mo: 10/12/2007 13:17:51 -=- Java -----= Java cr: 29/01/2005 16:23:00 | mo: 14/10/2007 10:55:30 -=- Labtec ---= Labtec cr: 29/08/2004 19:49:42 | mo: 29/08/2004 19:49:42 -=- LASERM~1 -= Lasermedia cr: 19/07/2006 12:39:48 | mo: 19/07/2006 12:39:48 -=- Lavasoft -= Lavasoft cr: 27/12/2004 13:25:24 | mo: 10/10/2007 21:35:20 -=- LimeWire -= LimeWire cr: 16/09/2006 10:42:27 | mo: 16/09/2006 11:11:47 -=- LIVREA~1 -= Livre Album Fuji Photo cr: 03/01/2008 10:44:31 | mo: 03/01/2008 10:45:05 -=- Lopxp ----= Lopxp cr: 18/01/2004 11:34:02 | mo: 31/12/2004 18:03:54 -=- Maxis ----= Maxis cr: 04/06/2006 18:13:30 | mo: 18/07/2006 19:59:15 -=- MEEGOS~1 -= Meegos Creator cr: 02/01/2003 11:18:44 | mo: 05/11/2006 16:13:51 -=- MESSEN~1 -= Messenger cr: 14/10/2007 10:07:39 | mo: 03/01/2008 10:10:16 -=- MESSEN~3 -= Messenger Plus! Live cr: 24/04/2005 08:18:23 | mo: 16/04/2006 15:16:17 -=- MESSEN~2 -= MessengerPlus! 3 cr: 25/01/2007 20:45:41 | mo: 26/01/2007 07:09:52 -=- MESSEN~4 -= MessengerSkinner cr: 06/01/2005 19:01:34 | mo: 15/01/2007 19:39:13 -=- MICROA~1 -= Micro Application cr: 09/05/2007 06:35:54 | mo: 09/05/2007 06:35:54 -=- MICROS~1.2 -= Microsoft CAPICOM 2.1.0.2 cr: 02/01/2003 11:23:14 | mo: 02/01/2003 11:23:14 -=- MICROS~1 -= microsoft frontpage cr: 08/04/2006 11:14:31 | mo: 08/04/2006 11:14:31 -=- MICROS~2 -= Microsoft Office cr: 25/12/2006 10:34:07 | mo: 25/12/2006 10:34:07 -=- MICROS~3 -= Microsoft SQL Server cr: 01/01/2003 11:37:33 | mo: 01/01/2003 11:38:01 -=- MICROS~4 -= Microsoft Works cr: 07/01/2004 12:36:32 | mo: 24/01/2004 17:55:19 -=- MONTEC~1 -= Monte Cristo cr: 02/01/2003 11:20:03 | mo: 27/02/2007 12:38:47 -=- MOVIEM~1 -= Movie Maker cr: 29/09/2007 17:43:42 | mo: 09/10/2007 19:28:03 -=- MOZILL~1 -= Mozilla Firefox cr: 02/01/2003 11:18:42 | mo: 02/01/2003 11:18:42 -=- MSNGAM~1 -= MSN Gaming Zone cr: 29/04/2006 07:40:52 | mo: 16/10/2007 21:09:48 -=- MSNMES~1 -= MSN Messenger cr: 18/11/2006 22:15:40 | mo: 18/11/2006 22:15:40 -=- MSXML4~1.0 -= MSXML 4.0 cr: 12/11/2006 16:51:45 | mo: 12/11/2006 17:33:08 -=- Neodivx --= Neodivx cr: 29/11/2005 19:17:06 | mo: 29/11/2005 19:17:06 -=- Nero -----= Nero cr: 02/01/2003 11:20:00 | mo: 29/01/2005 20:18:44 -=- NETMEE~1 -= NetMeeting cr: 12/12/2005 22:22:41 | mo: 31/08/2007 16:39:57 -=- Nokia ----= Nokia cr: 03/02/2005 16:30:43 | mo: 29/01/2007 17:03:09 -=- NORTON~1 -= Norton AntiVirus cr: 29/01/2007 17:24:48 | mo: 22/11/2007 07:56:12 -=- NORTON~2 -= Norton Internet Security cr: 26/09/2007 18:26:40 | mo: 28/09/2007 07:17:08 -=- OPENOF~1.3 -= OpenOffice.org 2.3 cr: 12/01/2006 17:39:07 | mo: 12/01/2006 18:32:27 -=- ORANGE~1 -= Orange Messenger cr: 02/01/2003 11:20:00 | mo: 13/06/2007 10:19:58 -=- OUTLOO~1 -= Outlook Express cr: 31/12/2006 11:41:02 | mo: 31/12/2006 11:41:04 -=- PCCONN~1 -= PC Connectivity Solution cr: 16/05/2006 17:16:01 | mo: 14/10/2007 10:35:30 -=- Picasa2 --= Picasa2 cr: 25/12/2006 10:15:23 | mo: 02/04/2007 17:49:01 -=- Pinnacle -= Pinnacle cr: 20/05/2007 16:10:14 | mo: 20/05/2007 16:10:14 -=- PINNAC~1 -= Pinnacle Systems cr: 19/03/2006 12:09:09 | mo: 19/03/2006 12:09:09 -=- Plus! ----= Plus! cr: 17/12/2005 09:54:37 | mo: 17/12/2005 09:54:37 -=- Polaroid -= Polaroid cr: 25/12/2006 11:08:32 | mo: 25/12/2006 11:08:32 -=- proDAD ---= proDAD cr: 30/06/2007 11:44:26 | mo: 18/07/2007 08:12:10 -=- QUICKT~1 -= QuickTime cr: 29/01/2005 16:24:20 | mo: 29/01/2005 16:24:20 -=- Real -----= Real cr: 03/01/2006 19:55:59 | mo: 22/01/2006 19:14:13 -=- RM-XPL~1 -= RM-X Player V4 cr: 13/03/2004 18:44:56 | mo: 13/03/2004 18:44:56 -=- RTE ------= RTE cr: 03/01/2008 10:21:59 | mo: 03/01/2008 10:21:59 -=- SafeSoft -= SafeSoft cr: 19/02/2007 17:50:34 | mo: 19/02/2007 17:50:34 -=- Samsung --= Samsung cr: 07/08/2006 09:46:32 | mo: 07/08/2006 09:46:32 -=- Seagrand -= Seagrand cr: 02/01/2003 11:18:50 | mo: 02/01/2003 12:45:19 -=- SERVIC~1 -= Services en ligne cr: 31/05/2005 19:20:02 | mo: 31/05/2005 19:20:02 -=- SIERRA~1 -= Sierra On-Line cr: 27/01/2007 22:05:54 | mo: 03/01/2008 10:32:44 -=- Singles --= Singles cr: 31/08/2006 21:36:01 | mo: 31/08/2006 21:52:48 -=- SM -------= SM cr: 25/12/2006 10:24:01 | mo: 25/12/2006 10:24:01 -=- SMARTS~1 -= SmartSound Software cr: 01/01/2003 20:32:10 | mo: 03/10/2007 20:35:46 -=- Symantec -= Symantec cr: 23/02/2006 20:38:00 | mo: 23/02/2006 21:04:42 -=- TALLST~1 -= TallStick cr: 09/02/2004 07:49:44 | mo: 29/11/2005 18:45:52 -=- TLC-ED~1 -= TLC-Edusoft cr: 03/01/2008 10:33:13 | mo: 03/01/2008 10:33:13 -=- TRENDM~1 -= Trend Micro cr: 29/01/2006 20:15:51 | mo: 29/01/2006 20:15:51 -=- ULEADS~1 -= Ulead Systems cr: 06/12/2006 18:20:40 | mo: 06/12/2006 18:20:40 -=- UNINST~1 -= Uninstall Information cr: 10/06/2007 00:11:34 | mo: 10/06/2007 00:11:34 -=- USERBU~1 -= User Burn Mix cr: 24/01/2007 19:53:29 | mo: 05/02/2007 18:42:37 -=- VideoLAN -= VideoLAN cr: 04/10/2005 18:33:48 | mo: 26/11/2005 08:52:21 -=- VISICO~1 -= Visicom Media cr: 08/01/2004 21:14:26 | mo: 08/01/2004 21:14:26 -=- Wanadoo --= Wanadoo cr: 25/03/2006 22:21:02 | mo: 25/03/2006 23:02:50 -=- webcamXP -= webcamXP cr: 12/06/2007 17:44:02 | mo: 13/06/2007 11:10:35 -=- Webteh ---= Webteh cr: 11/04/2005 18:50:26 | mo: 11/04/2005 18:50:26 -=- WINDOW~4 -= Windows Journal Viewer cr: 03/01/2008 10:10:11 | mo: 03/01/2008 10:10:11 -=- WI1F86~1 -= Windows Live cr: 06/11/2006 20:47:50 | mo: 16/12/2007 17:45:46 -=- WIE5D0~1 -= Windows Live Safety Center cr: 04/02/2007 11:16:10 | mo: 14/10/2007 10:38:22 -=- WI81E8~1 -= Windows Live Toolbar cr: 15/12/2006 18:43:08 | mo: 15/12/2006 18:43:12 -=- WI4DF6~1 -= Windows Media Connect 2 cr: 02/01/2003 11:18:49 | mo: 15/12/2006 18:44:12 -=- WINDOW~2 -= Windows Media Player cr: 02/01/2003 11:18:28 | mo: 23/06/2006 11:40:20 -=- WINDOW~1 -= Windows NT cr: 02/01/2003 11:18:50 | mo: 26/12/2004 14:18:25 -=- WINDOW~3 -= WindowsUpdate cr: 28/07/2005 18:05:42 | mo: 11/10/2007 12:28:25 -=- WinRAR ---= WinRAR cr: 02/01/2003 11:23:14 | mo: 02/01/2003 11:23:14 -=- xerox ----= xerox cr: 09/02/2006 10:25:17 | mo: 03/01/2008 09:56:04 -=- Yahoo! ---= Yahoo! cr: 27/12/2004 13:24:54 | mo: 11/06/2006 20:23:47 -=- ZEROGR~1 -= Zero G Registry ___________________________________________________________________________ [Recherche programmes connus, liés à CiD] C:\Program Files\MessengerPlus! 3 C:\Program Files\Messenger Plus! Live ___________________________________________________________________________ [Clés registre de démarrage] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] BODY AMOK LIST FLAG REG_SZ C:\Documents and Settings\All Users\Application Data\dupe global body amok\ATOMBIB.exe ___________________________________________________________________________ [Popups autorisés] [-] Internet Explorer : chat.ados.fr www.france-examen.com forum.aceboard.net www.paroles.net jellevy.yellis.net www.cyberpapy.com www.journalsecret.com www.start4u.nl www.moustiq.com go.zoneados.com www.systranbox.com chat9.x-echo.com www.uptotech.com chat4.x-echo.com chat7.x-echo.com searchweb2.com www.searchweb2.com www.skyrock.com gueledange.skyrock.com *.club.free.fr lily-nouill-orc.skyrock.com *.hotmail.msn.com fr.netlog.com rockstardu78.skyrock.com harrypotterrpg.forumactif.name annkara.skyrock.com floflo50101.skyrock.com *.badoo.com www.cowblog.fr www.studyrama.com www.govoyages.com *.parier.pmu.fr [-] Mozilla Firefox [-] Suite Mozilla / SeaMonkey ___________________________________________________________________________ [Suggestion nettoyage registre] REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BODY AMOK LIST FLAG"=- - Fin du rapport - |
ok,
tu as beaucoup de version d'msn ! télécharge OTMoveIt http://download.bleepingcomputer.com/oldtimer/OTMoveIt.exe (de Old_Timer) sur ton Bureau. double-clique sur OTMoveIt.exe pour le lancer. copie la liste qui se trouve en ci-dessous, et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved. C:\WINDOWS\tasks\A87835C5918BAD89.job c:\docume~1\propri~1\applic~1\userbu~1\Settings Option Deaf.exe C:\Program Files\User Burn Mix C:\Program Files\MessengerSkinner C:\Documents and Settings\All Users\Application Data\dupe global body amok clique sur MoveIt! pour lancer la suppression. le résultat apparaitra dans le cadre "Results". clique sur Exit pour fermer. poste le rapport situé dans C:\_OTMoveIt\MovedFiles. il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes. ensuite, fais ce qui est indiqué ici stp : http://www.commentcamarche.net/faq/sujet 3174 virus methode preliminaire de desinfection version fr @+ Le moyen d'aimer une chose est de se dire qu'on pourrait la perdre (Gilbert Keith Chesterton) |
D'accord voici le rapport
C:\WINDOWS\tasks\A87835C5918BAD89.job moved successfully. File/Folder c:\docume~1\propri~1\applic~1\userbu~1\Settings Option Deaf.exe not found. C:\Program Files\User Burn Mix moved successfully. C:\Program Files\MessengerSkinner moved successfully. Folder cleanup failed. C:\Documents and Settings\All Users\Application Data\dupe global body amok scheduled to be deleted on reboot. Created on 01/03/2008 18:46:24 Je vais maintenant suivre votre lien et vous transmettre les 3 autres rapports demandés je vous remercie vraiment de votre aide |
Re bonjour,
Désolé du temps de réponse, je n'ai pas pu le faire plus rapidement, Alors je vous poste tout d'abord le premier rapport réalisé avec AVG anti-spyware AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 22:47:35 03/01/2008 + Résultat de l'analyse: HKU\S-1-5-21-1643591301-3181337419-2175288203-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{67982BB7-0F95-44C5-92DC-E3AF3DC19D6D} -> Adware.Generic : Aucune action entreprise. C:\Program Files\ContextTool\ContextTool-3.dll -> Not-A-Virus.Adware.Agent : Aucune action entreprise. C:\Documents and Settings\Propri‚taire\Cookies\propriétaire@atdmt[1].txt -> TrackingCookie.Atdmt : Aucune action entreprise. C:\Documents and Settings\Propri‚taire\Cookies\propriétaire@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise. C:\Documents and Settings\Propriétaire\Cookies\propriétaire@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise. C:\Documents and Settings\Propri‚taire\Cookies\propriétaire@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise. C:\Documents and Settings\Propri‚taire\Cookies\propriétaire@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise. Fin du rapport Puis le lendemain j'ai voulu en refaire un de vérification et il m'a à nouveau trouvé quelques cookies: AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 13:06:22 04/01/2008 + Résultat de l'analyse: C:\Documents and Settings\Propriétaire\Cookies\propriétaire@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise. C:\Documents and Settings\Propriétaire\Cookies\propriétaire@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise. C:\Documents and Settings\Propriétaire\Cookies\propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise. C:\Documents and Settings\Propriétaire\Cookies\propriétaire@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise. Fin du rapport Enfin je viens de réaliser l'analyse avec BitDefender et voici le rapport BitDefender Online Scanner Scan report generated at: Fri, Jan 04, 2008 - 13:44:09 Scan path: A:\;C:\;D:\;E:\;F:\; Statistics Time 02:30:56 Files 408007 Folders 9286 Boot Sectors 3 Archives 20789 Packed Files 18050 Results Identified Viruses 2 Infected Files 14 Suspect Files 0 Warnings 0 Disinfected 0 Deleted Files 14 Engines Info Virus Definitions 885326 Engine build AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36) Scan plugins 14 Archive plugins 38 Unpack plugins 7 E-mail plugins 6 System plugins 1 Scan Settings First Action Disinfect Second Action Delete Heuristics Yes Enable Warnings Yes Scanned Extensions *; Exclude Extensions Scan Emails Yes Scan Archives Yes Scan Packed Yes Scan Files Yes Scan Boot Yes Scanned File Status C:\Documents and Settings\All Users\Application Data\dupe global body amok\Play meet.exe Infected with: Trojan.FatObfus.Gen C:\Documents and Settings\All Users\Application Data\dupe global body amok\Play meet.exe Disinfection failed C:\Documents and Settings\All Users\Application Data\dupe global body amok\Play meet.exe Deleted C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\btkanuhp.exe Infected with: Trojan.FatObfus.Gen C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\btkanuhp.exe Disinfection failed C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\btkanuhp.exe Deleted C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\qztjlzjd.exe Infected with: Trojan.FatObfus.Gen C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\qztjlzjd.exe Disinfection failed C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\qztjlzjd.exe Deleted C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\rruxtiqg.exe Infected with: Trojan.FatObfus.Gen C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\rruxtiqg.exe Disinfection failed C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\rruxtiqg.exe Deleted C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\yvbettra.exe Infected with: Trojan.FatObfus.Gen C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\yvbettra.exe Disinfection failed C:\Documents and Settings\Propriétaire\Application Data\User Burn Mix\yvbettra.exe Deleted C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161454.exe Infected with: Trojan.FatObfus.Gen C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161454.exe Disinfection failed C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161454.exe Deleted C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161455.exe Infected with: Trojan.FatObfus.Gen C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161455.exe Disinfection failed C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161455.exe Deleted C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161456.exe Infected with: Trojan.FatObfus.Gen C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161456.exe Disinfection failed C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161456.exe Deleted C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161457.exe Infected with: Trojan.FatObfus.Gen C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161457.exe Disinfection failed C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161457.exe Deleted C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161458.exe Infected with: Trojan.FatObfus.Gen C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161458.exe Disinfection failed C:\System Volume Information\_restore{B772CEEF-217A-434D-A8B4-BC9BA573C7EE}\RP1014\A0161458.exe Deleted C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009 Infected with: Backdoor.Skinymes.Agent.A C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009 Disinfection failed C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009 Deleted C:\WINDOWS\pack.epk=>(NSIS 2g) Update failed C:\_OTMoveIt\MovedFiles\Documents and Settings\All Users\Application Data\dupe global body amok\ATOMBIB.exe Infected with: Trojan.FatObfus.Gen C:\_OTMoveIt\MovedFiles\Documents and Settings\All Users\Application Data\dupe global body amok\ATOMBIB.exe Disinfection failed C:\_OTMoveIt\MovedFiles\Documents and Settings\All Users\Application Data\dupe global body amok\ATOMBIB.exe Deleted C:\_OTMoveIt\MovedFiles\Documents and Settings\All Users\Application Data\dupe global body amok\dvd two.exe Infected with: Trojan.FatObfus.Gen C:\_OTMoveIt\MovedFiles\Documents and Settings\All Users\Application Data\dupe global body amok\dvd two.exe Disinfection failed C:\_OTMoveIt\MovedFiles\Documents and Settings\All Users\Application Data\dupe global body amok\dvd two.exe Deleted C:\_OTMoveIt\MovedFiles\Documents and Settings\All Users\Application Data\dupe global body amok\Hide download.exe Infected with: Trojan.FatObfus.Gen C:\_OTMoveIt\MovedFiles\Documents and Settings\All Users\Application Data\dupe global body amok\Hide download.exe Disinfection failed C:\_OTMoveIt\MovedFiles\Documents and Settings\All Users\Application Data\dupe global body amok\Hide download.exe Deleted Pour le dernier rapport à transmettre via d'Hijackthis je vous le transmet dans quelques instants Merci de l'attention que vous voudez bien y porter. |
Le voici
Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 13:54:31, on 04/01/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16574) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\WINDOWS\System32\svchost.exe C:\windows\system\hpsysdrv.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe C:\Program Files\Internet Explorer\iexplore.exe C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-qfr9.hpwis.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://qfr9.hpwis.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - - (no file) O1 - Hosts: 222.89.98.219 v.chiqing.com O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: StatsTool - {0A2A22E9-C506-4079-94A9-3653B7927D69} - C:\Program Files\Anonystat\Anonystat-2.dll O2 - BHO: ContextHelper - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - C:\Program Files\ContextTool\ContextTool-3.dll (file missing) O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\NppBho.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ErrorHelper - {E82E0739-0AAE-4E99-9052-B40F7DABFA34} - C:\Program Files\ErrorsTool\ErrorsTool-2.dll O3 - Toolbar: (no name) - {A20A76AD-7A29-4756-87FE-70C334CB40C0} - (no file) O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\UIBHO.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKLM\..\Policies\Explorer\Run: [isamonitor.exe] C:\Program Files\Video ActiveX Object\isamonitor.exe O4 - HKLM\..\Policies\Explorer\Run: [none] C:\Program Files\Video ActiveX Object\pmsngr.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing) O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Messenger Addon - {FB5F1911-F110-11d2-BB9E-00C04F795683} - http://messenger.ipfox.com (file missing) O9 - Extra 'Tools' menuitem: &Messenger Addon - {FB5F1911-F110-11d2-BB9E-00C04F795683} - http://messenger.ipfox.com (file missing) O10 - Broken Internet access because of LSP provider 'c:\program files\newdotnet\newdotnet3_88.dll' missing O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {72C23FEC-3AF9-48FC-9597-241A8EBDFE0A} (InstallShield International Setup Player) - http://www.installengine.com/engine/isetupml.cab O16 - DPF: {86EEF11E-FF16-48CE-B1A2-474B663041A9} - http://1125563802000.kit.sexequalite.com/11536/CD/NewHentai.exe O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab O16 - DPF: {9A54032D-31F7-400D-B184-83B33BDE65FA} (MSN File Upload Control) - http://sc.groups.msn.com/controls/FileUC/MsnUpld.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - https://monsite.club-internet.fr/album_admin/ActiveX/ImageUploader3.cab O16 - DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} (BatchDownloader Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/DigWXMSN.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA} (Environnement d'exécution Java 1.4.1_02) - O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab50997.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{32B0E37C-3AF2-41A2-8FEB-5A3FB5682E26}: NameServer = 194.117.200.10,194.117.200.15 O17 - HKLM\System\CCS\Services\Tcpip\..\{950CA8FD-1523-4276-B650-CFFA704509E0}: NameServer = 194.117.200.10,194.117.200.15 O17 - HKLM\System\CCS\Services\Tcpip\..\{E7D1F7FA-1124-448A-A4B0-DE867F2AB36F}: NameServer = 194.117.200.10,194.117.200.15 O21 - SSODL: hirtellous - {fa19bd7e-50bc-4203-80ac-c4edc81ca9a3} - (no file) O22 - SharedTaskScheduler: hirtellous - {fa19bd7e-50bc-4203-80ac-c4edc81ca9a3} - (no file) O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe End of file - 14629 bytes |
Juste pour info --> essaye de désinstaller MSN+, BitDownloader ou CiD Helper dans ajout, suppression de programme ! |
Merci mais à part msn + je n'ai aucuns des 2 autres logiciels (du moins visibles sur ajout/ suppression)
Je n'ai plus de problèmes avec les pages CiD, merci encore Green Day mais je voudrais tout de même savoir si il est préférable que je supprime encore quelques trucs, ou bien que je fasse des manips (si vous voyez qq chose dans mes 3 rapports) Merci beaucoup |
Salut
ok, * Faire un clic droit sur ce lien : http://perso.orange.fr/il.mafioso/Navifix/Navilog1.zip * Enregistrez la cible (du lien) sous... et enregistrez-le sur le bureau. * Faire un clic droit sur navilog1.zip et choisir "tout extraire" * Double-cliquez sur navilog1.bat * Arriver au menu principal, choisir l'option 1 et valider. * Patientez jusqu'au message : Analyse Termine le ... * Le rapport sera en outre sauvegardé à la racine du disque (fixnavi.txt), poste le ! @+ Le moyen d'aimer une chose est de se dire qu'on pourrait la perdre (Gilbert Keith Chesterton) |