comment se debarasser d'un rootkit ????Résolu/Fermé

Question

Bonjour,
je viens d'attraper un rootkit accompagné d'un trojan que je ne sais pas comment faire pour les supprimer. apres avoir consulter un peu le forum, j'ai fait comme tous le monde avec HijackThis. Je vous joins le rapport en espérant que vous ayez une solution . Merci par avance de votre aide.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:31:29, on 09/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Acer\eManager\anbmServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\oodag.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Arcade\PCMService.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\acer\epm\epm-dm.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Alwil Software\Avast4\ashChest.exe
D:\Programmes\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\%%%.exe
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Arcade\PCMService.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [EPM-DM] c:\acer\epm\epm-dm.exe
O4 - HKLM\..\Run: [ePowerManagement] C:\Acer\ePM\ePM.exe boot
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Flash Media] C:\WINDOWS\system32\%%%.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe

FillPCA · Answer

Salut,

Ton pc est en effet infecté. Qu'est-ce qui te fais penser qu'un rootkit infecte ta machine ?

FillPCA

FillPCA · Answer

Re,

    *  Télécharge MSNfix (de !aur3n7) sur ton bureau : http://sosvirus.changelog.fr/MSNFix.zip
    * Dézippe-le en faisant un clic droit puis extraire ici.
    * Double-clique sur MSNfix.bat.
    * Choisis l'option R. Si l'infection est détectée, il te suffit d'appuyer sur une touche du clavier. Un redémarrage du PC peut être demandé.
    * Le rapport est enregistré dans le même dossier que MSNfix (date.txt). Copie-colle son contenu dans ta prochaine réponse.

Edite aussi un nouveau rapport Hijackthis.

FillPCA

FillPCA · Answer

Re,

# Télécharge SREng (de Smallfrogs) : http://www.kztechs.com/eng/download.html
# Dézippe tout son contenu sur ton bureau (clic droit >Extraire ici).
# Ouvre le dossier SReng2 et double-clique sur SREngPS.exe.
# Clique sur "smart scan".
# Clique sur le bouton "scan".
# Quand l'analyse est terminée, clique sur le bouton "save reports".
# Sauvegarde alors le rapport sur ton bureau.
# Copie/colle le contenu du rapport  SREnglLOG.log dans ta prochaine réponse.

FillPCA

topgun35000 · Answer

Sur le lienok pour telecharger sreng, mais quand je clic sur le download il m'affiche aucune page trouvé  ???? y'a t'il un autre endroit ?

FillPCA · Answer

Re,

Tu as 2 liens normalement. Le 2e échoue aussi ?

topgun35000 · Answer

ok voici le rapport [CODE] 2008-04-09,20:03:30 System Repair Engineer 2.5.16.900 Smallfrogs (http://www.KZTechs.com) Windows XP Home Edition Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed Follow item(s) have been choosed: All Boot Items (Including Registry, Startup Folders, Services and so on) Browser Add-ons Runing Processes (Including process model information) File Associations Winsock Provider Autorun.Inf HOSTS File Process Privileges Scan Boot Items Registry [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] [(Verified)Google Inc] [(Verified)Microsoft Windows Publisher] <"C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background> [(Verified)Microsoft Corporation] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] [N/A] [(Verified)Microsoft Windows Hardware Compatibility Publisher] [(Verified)Microsoft Windows Hardware Compatibility Publisher] [(Verified)Microsoft Windows Hardware Compatibility Publisher] [(Verified)Microsoft Windows Hardware Compatibility Publisher] <"C:\Program Files\Arcade\PCMService.exe"> [CyberLink Corp.] <"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Windows Publisher] [(Verified)Microsoft Windows Publisher] [(Verified)Microsoft Windows Publisher] [(Verified)Microsoft Windows Publisher] [ATI Technologies, Inc.]

[Acer Inc] [N/A] [Dritek System Inc.] [(Verified)ALWIL Software] <"C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"> [(Verified)Logitech Inc] <"C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide> [(Verified)Logitech Inc] <"C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033> [(Verified)DAEMON Tools Code Signing Services] <"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"> [(Verified)"Adobe Systems, Incorporated"] <"C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized> [(Verified)GRISOFT LTD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] [(Verified)Microsoft Windows Component Publisher] [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] <> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] [(Verified)Google Inc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{57B86673-276A-48B2-BAE7-C6DBB3020EB8}> [(Verified)GRISOFT LTD] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] <%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] <%SystemRoot%\system32 egsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32 hemeui.dll> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] <"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] <"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] [Microsoft Corporation] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8b15971b-5355-4c82-8c07-7e181ea07608}] [(Verified)Microsoft Windows Publisher] [HKEY_CURRENT_USER\Control Panel\Desktop] [] ================================== Startup Folders N/A ================================== Services [Notebook Manager Service / anbmService][Running/Auto Start] [Gestion d'applications / AppMgmt][Stopped/Manual Start] %SystemRoot%\System32\appmgmts.dll> [avast! iAVS4 Control Service / aswUpdSv][Running/Auto Start] <"C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"> [Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start] [avast! Antivirus / avast! Antivirus][Running/Auto Start] <"C:\Program Files\Alwil Software\Avast4\ashServ.exe"> [avast! Mail Scanner / avast! Mail Scanner][Running/Manual Start] <"C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service> [avast! Web Scanner / avast! Web Scanner][Running/Manual Start] <"C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service> [AVG Anti-Spyware Guard / AVG Anti-Spyware Guard][Running/Auto Start] [EvtEng / EvtEng][Running/Auto Start] [Windows Presentation Foundation Font Cache 3.0.0.0 / FontCache3.0.0.0][Stopped/Manual Start] [Google Updater Service / gusvc][Stopped/Manual Start] <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"> [Accès du périphérique d'interface utilisateur / HidServ][Stopped/Disabled] %SystemRoot%\System32\hidserv.dll> [InstallDriver Table Manager / IDriverT][Stopped/Manual Start] <"C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe"> [Windows CardSpace / idsvc][Stopped/Manual Start] <"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"> [LVCOMSer / LVCOMSer][Running/Auto Start] <"C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe"> [Process Monitor / LVPrcSrv][Running/Auto Start] <"C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe"> [LVSrvLauncher / LVSrvLauncher][Stopped/Auto Start] [Net.Tcp Port Sharing Service / NetTcpPortSharing][Stopped/Disabled] <"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"> [O&O Defrag / O&O Defrag][Running/Auto Start] [RegSrvc / RegSrvc][Running/Auto Start] [Spectrum24 Event Monitor / S24EventMonitor][Running/Auto Start] [Windows Live Setup Service / WLSetupSvc][Stopped/Manual Start] <"C:\Program Files\Windows Live\installer\WLSetupSvc.exe"> ================================== Drivers [AEGIS Protocol (IEEE 802.1x) v3.1.6.0 / AegisP][Running/Auto Start] [Atheros Wireless Network Adapter Service / AR5211][Stopped/Manual Start] [aswFsBlk / aswFsBlk][Running/Auto Start] [ati2mtag / ati2mtag][Running/Manual Start] [atksgt / atksgt][Running/Auto Start] [AVG Anti-Spyware Driver / AVG Anti-Spyware Driver][Running/System Start] <\??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys> [AVG Anti-Spyware Clean Driver / AvgAsCln][Running/System Start] [Broadcom NetXtreme Gigabit Ethernet / b57w2k][Running/Manual Start] [Broadcom 440x 10/100 Integrated Controller XP Driver / bcm4sbxp][Stopped/Manual Start] [Conexant AMC Audio / CAMCAUD][Running/Manual Start] [CAMCHALA / CAMCHALA][Running/Manual Start] [catchme / catchme][Stopped/Manual Start] <\??\C:\DOCUME~1\Richard\LOCALS~1\Temp\catchme.sys> [Dritek HotKey Keyboard Filter Driver / DKbFltr][Running/Manual Start] [Acer EPM Power Scheme Driver / EpmPsd][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\epm-psd.sys> [Acer EPM System Hardware Driver / EpmShd][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\epm-shd.sys> [HSFHWICH / HSFHWICH][Running/Manual Start] [HSF_DPV / HSF_DPV][Running/Manual Start] [ialm / ialm][Stopped/Manual Start] [lirsgt / lirsgt][Running/Auto Start] [Logitech AEC Driver / LVcKap][Stopped/Manual Start] [Logitech Machine Vision Engine Loader / LVMVDrv][Stopped/Manual Start] [Logitech LVPr2Mon Driver / LVPr2Mon][Running/Manual Start] <> [Logitech USB Monitor Filter / LVUSBSta][Stopped/Manual Start] [mdmxsdk / mdmxsdk][Running/Auto Start] [MEMSWEEP2 / MEMSWEEP2][Stopped/Manual Start] <\??\C:\WINDOWS\system32\SophosMEMSWEEP.SYS> [NetGroup Packet Filter Driver / NPF][Stopped/Manual Start] [Pilote de périphérique infrarouge NSC / NSCIRDA][Running/Manual Start] [Upper Class Filter Driver / NTIDrvr][Running/Manual Start] [osaio / osaio][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\osaio.sys> [osanbm / osanbm][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\osanbm.sys> [Padus ASPI Shell / pfc][Running/Manual Start] [Logitech QuickCam IM(PID_PEPI) / PID_PEPI][Stopped/Manual Start] [Pilote de liaison parallèle directe / Ptilink][Running/Manual Start] [WLAN Transport / s24trans][Running/Auto Start] [Secdrv / Secdrv][Stopped/Manual Start] [sptd / sptd][Running/Boot Start] <\SystemRoot\System32\Drivers\sptd.sys> [Synaptics TouchPad Driver / SynTP][Running/Manual Start] [tifm21 / tifm21][Running/Manual Start] [Pilote de carte de connexion réseau Intel(R) PRO/Wireless 2200BG pour Windows XP / w29n51][Running/Manual Start] [winachsf / winachsf][Running/Manual Start] [Codec Teletext standard / WSTCODEC][Stopped/Manual Start] ================================== Browser Add-ons [Aide pour le lien d'Adobe PDF Reader] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [Programme d'aide de l'Assistant de connexion Windows Live] {9030D464-4C02-4ABF-8ECC-5164760863C6} [Google Toolbar Helper] {AA58ED58-01DD-4d91-8333-CF10577473F7} [Google Toolbar Notifier BHO] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [&Rechercher] {92780B25-18CC-41C8-B9BE-3C9C571A8263} [] {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, N/A> [Messenger] {FB5F1910-F110-11d2-BB9E-00C04F795683} [&Google] {2318C2B1-4965-11d4-9B18-009027A5CD4F} [MSN Photo Upload Tool] {4F1E5B1A-2A80-42CA-8532-2D05CB959537} [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [Google Script Object] {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} [Aide pour le lien d'Adobe PDF Reader] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [Windows Genuine Advantage Validation Tool] {17492023-C23A-453E-A040-C7C580BBF700} [InformationCardSigninHelper Class] {19916E01-B44E-4E31-94A4-4696DF46157B} [Windows Media Player] {22D6F312-B0F6-11D0-94AB-0080C74C7E95} [&Google] {2318C2B1-4965-11D4-9B18-009027A5CD4F} [XML DOM Document] {2933BF90-7B36-11D2-B20E-00C04F983E60} [DHTML Edit Control Safe for Scripting for IE5] {2D360201-FFF5-11D1-8D03-00A0C959BC0A} [IETag Factory] {38481807-CA0E-42D2-BF39-B33AF135CC4D} [XML Document] {48123BC4-99D9-11D1-A6B3-00C04FD91555} [MSN Photo Upload Tool] {4F1E5B1A-2A80-42CA-8532-2D05CB959537} [WUWebControl Class] {6414512B-B978-451D-A0D8-FCFDF33E833C} [Windows Media Player] {6BF52A52-394A-11D3-B153-00C04F79FAA6} [Microsoft Web Browser] {8856F961-340A-11D0-A96B-00C04FD705A2} [XML HTTP 4.0] {88D969C5-F192-11D4-A65F-0040963251E5} [XML DOM Document 6.0] {88D96A05-F192-11D4-A65F-0040963251E5} [Programme d'aide de l'Assistant de connexion Windows Live] {9030D464-4C02-4ABF-8ECC-5164760863C6} [Google Toolbar Helper] {AA58ED58-01DD-4D91-8333-CF10577473F7} [Google Toolbar Notifier BHO] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [Adobe PDF Reader] {CA8A9780-280D-11CF-A24D-444553540000} [Contrôle de l'Assistant de connexion Windows Live] {D2517915-48CE-4286-970F-921E881B8C5C} [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [] {E1771B7F-98BE-407F-BA67-AA16ADA5D0C5} [XML HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} [XML DOM Document 3.0] {F5078F32-C551-11D3-89B9-0000F81FE221} [XML HTTP 3.0] {F5078F35-C551-11D3-89B9-0000F81FE221} [XML HTTP] {F6D90F16-9C73-11D3-B32E-00C04F990BB4} [E&xporter vers Microsoft Excel] ================================== Running Processes [PID: 488 / SYSTEM][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 944 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 980 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\Ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4112] [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [PID: 1024 / SYSTEM][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\AppPatch\AcAdProc.dll] [Microsoft Corporation, 5.1.2600.3008 (xpsp.061004-0027)] [PID: 1036 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1196 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4112] [C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2496] [PID: 1216 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1292 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1348 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [c:\windows\system32\uxtuneup.dll] [TuneUp Software GmbH, 1.0.0.2] [C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\WINDOWS\system32\wups2.dll] [Microsoft Corporation, 7.0.6000.381 (winmain(wmbla).070730-1740)] [PID: 1484 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\EvtEng.exe] [Intel Corporation, 9, 0, 1, 12] [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 9, 0, 1, 14] [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 9, 0, 1, 22] [PID: 1520 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe] [Intel Corporation , 9, 0, 1, 41] [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 9, 0, 1, 22] [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 9, 0, 1, 14] [PID: 1608 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1660 / SERVICE LOCAL][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [PID: 1960 / SYSTEM][C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswCmnS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Alwil Software\Avast4\aswCmnB.dll] [ALWIL Software, 4, 8, 1169, 0] [PID: 2024 / SYSTEM][C:\Program Files\Alwil Software\Avast4\ashServ.exe] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswAux.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Alwil Software\Avast4\aswCmnB.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswEngin.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswScan.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswCmnS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\ashBase.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\ashTask.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswInteg.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswIdle.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\Aavm4h.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\French\Base.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\AhResMai.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\ahResMes.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\AhResNS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\AhResOut.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\ahResP2P.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\AhResStd.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\AhResWS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\ashSSqlt.dll] [ALWIL Software, 4, 8, 1169, 0] [PID: 636 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)] [C:\WINDOWS\system32\mdimon.dll] [Microsoft Corporation, 11.3.1897.0] [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll] [Microsoft Corporation, 11.3.1897.0] [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll] [Microsoft Corporation, 6.0.5824.16384 (winmain(wmbla).060911-0725)] [PID: 672 / SYSTEM][C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe] [Logitech Inc., 11.5.0.1158] [PID: 752 / SYSTEM][C:\Acer\eManager\anbmServ.exe] [OSA Technologies Inc., 3.0.6.9] [C:\Acer\eManager\cpuid_dll.dll] [ OSA Technologies, Inc., 1, 0, 6, 13] [C:\Acer\eManager\SMBIOSAPI.dll] [OSA Technologies Inc. Taiwan Branch, 1, 0, 6, 7] [C:\Acer\eManager\IpmiTrans.dll] [OSA Technologies Inc. Taiwan Branch, 1, 0, 3, 14] [C:\Acer\eManager\SYSAPI.dll] [OSA Technologies Inc. Taiwan Branch, 1, 0, 5, 17] [C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\Acer\eManager\NBAPI.dll] [OSA Technologies Inc. Taiwan Branch, 1, 0, 1, 2] [C:\WINDOWS\system32\msxml4.dll] [Microsoft Corporation, 4.20.9848.0] [PID: 864 / SYSTEM][C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe] [Logitech Inc., 1.0.5.1158] [C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVCSCli.dll] [Logitech Inc., 1.0.5.1158] [C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVCSPS.dll] [, ] [PID: 924 / SYSTEM][C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE] [Microsoft Corporation, 7.00.9466] [C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\1036\mdmui.dll] [Microsoft Corporation, 7.00.9466] [PID: 1548 / SYSTEM][C:\WINDOWS\system32\oodag.exe] [O&O Software GmbH, 8.6.2336] [C:\WINDOWS\system32\OODAGRS.DLL] [O&O Software GmbH, 8.0.1.2549] [PID: 1588 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe] [Intel Corporation, 9, 0, 1, 10] [PID: 1628 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 2076 / SYSTEM][C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\ashBase.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswCmnB.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswCmnS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\ashTask.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswAux.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\Aavm4h.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\AhResMai.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\French\Base.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswEngin.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswScan.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\French\Lang.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Alwil Software\Avast4\French\langmai.dll] [ALWIL Software, 4, 8, 1169, 0] [PID: 2120 / SYSTEM][C:\Program Files\Alwil Software\Avast4\ashWebSv.exe] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\ashBase.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswCmnB.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswCmnS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\Aavm4h.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\ashTask.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswAux.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\French\Base.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\ashWsFtr.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswScan.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\PROGRA~1\ALWILS~1\Avast4\AhResWs.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\aswEngin.dll] [ALWIL Software, 4, 8, 1169, 0] [PID: 2244 / SERVICE LOCAL][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 3472 / Richard][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4112] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2496] [PID: 3580 / Richard][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)] [C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\ieframe.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\WINDOWS\system32\WPDShServiceObj.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)] [C:\WINDOWS\system32\PortableDeviceTypes.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)] [C:\WINDOWS\system32\PortableDeviceApi.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)] [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [C:\Program Files\CyberLink\Shared Files\CLRCEngine.dll] [CyberLink Corp., 3.00.0000] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 8.1.0.0] [C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA] [Adobe Systems, Inc., 8.0.0.0] [C:\Program Files\WinRAR arext.dll] [N/A, ] [C:\Program Files\TuneUp Utilities 2007\SDShelEx-win32.dll] [TuneUp Software GmbH, 2.0.0.2] [C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll] [GRISOFT s.r.o., 7, 5, 1, 36] [C:\Program Files\Alwil Software\Avast4\ashShell.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll] [GRISOFT s.r.o., 7, 5, 1, 36] [C:\WINDOWS\system32\igfxpph.dll] [Intel Corporation, 3.0.0.4250] [C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.4250] [C:\WINDOWS\system32\igfxres.dll] [Intel Corporation, 3.0.0.4250] [C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4250] [C:\WINDOWS\system32\igfxdev.dll] [Intel Corporation, 3.0.0.4250] [PID: 1600 / Richard][C:\Program Files\Synaptics\SynTP\SynTPLpr.exe] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynCOM.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [PID: 1908 / Richard][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynCOM.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\WINDOWS\system32\SynTPAPI.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [PID: 1916 / Richard][C:\Program Files\Arcade\PCMService.exe] [CyberLink Corp., 3.00.0000] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\Program Files\CyberLink\Shared Files\CLRCEngine.dll] [CyberLink Corp., 3.00.0000] [PID: 2372 / Richard][C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe] [ATI Technologies, Inc., 6.14.10.5140] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll] [ATI Technologies, Inc., 6.14.10.5140] [C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATRPUIXX.FRA] [ATI Technologies, Inc., 6.14.10.5140] [C:\Program Files\ATI Technologies\ATI Control Panel\atipdxxx.dll] [ATI Technologies, Inc., 6.14.10.5140] [PID: 2396 / Richard][C:\acer\epm\epm-dm.exe] [Acer Inc, 2.57] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [PID: 2520 / Richard][C:\Program Files\Launch Manager\QtZgAcer.EXE] [Dritek System Inc., 1, 0, 8, 628] [C:\Program Files\Launch Manager\CDRomUtl.dll] [Dritek System Inc., 1.00] [C:\Program Files\Launch Manager\ComFnUtl.dll] [Dritek System Inc., 1.00] [C:\Program Files\Launch Manager\MixerUtl.dll] [Dritek System Inc., 1.00] [C:\Program Files\Launch Manager\OSDUtl.dll] [Dritek System Inc., 1.00] [C:\Program Files\Launch Manager\RgnMaker.dll] [Dritek System Inc., 12.07.1999 ( VC60 )] [C:\Program Files\Launch Manager\SzUPFUtl.dll] [Dritek System Inc., 1.00] [C:\Program Files\Launch Manager\Wnd2File.dll] [Dritek System Inc., 3.00] [C:\Program Files\Launch Manager\MMDUtl.dll] [Dritek System Inc., 1, 2, 2, 2728] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\Launch Manager\LgKCUtl.Dll] [Dritek System Inc., 2, 0, 1, 1] [C:\Program Files\CyberLink\Shared Files\CLRCEngine.dll] [CyberLink Corp., 3.00.0000] [C:\Program Files\Launch Manager\DialCnt.Dll] [Dritek System Inc., 1.10] [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [PID: 2576 / Richard][C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe] [ALWIL Software, 4, 8, 1169, 0] [C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\French\Base.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\Program Files\Alwil Software\Avast4\French\Lang.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\PROGRA~1\ALWILS~1\Avast4\AavmRpch.dll] [ALWIL Software, 4, 8, 1169, 0] [c:\program files\alwil software\avast4\ahruimai.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll] [Codejock Software, 1, 9, 4, 0] [c:\program files\alwil software\avast4\ahruimes.dll] [ALWIL Software, 4, 8, 1169, 0] [c:\program files\alwil software\avast4\ahruins.dll] [ALWIL Software, 4, 8, 1169, 0] [c:\program files\alwil software\avast4\ahruiout.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\WINDOWS\system32\MAPI32.dll] [Microsoft Corporation, 1.0.2536.0 (XPClient.010817-1148)] [c:\program files\alwil software\avast4\ahruip2p.dll] [ALWIL Software, 4, 8, 1169, 0] [c:\program files\alwil software\avast4\ahruistd.dll] [ALWIL Software, 4, 8, 1169, 0] [c:\program files\alwil software\avast4\ahruiws.dll] [ALWIL Software, 4, 8, 1169, 0] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [PID: 2692 / Richard][C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe] [, ] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\Fichiers communs\LogiShrd\LComMgr\DevMngr.dll] [, ] [C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVCSCli.dll] [Logitech Inc., 1.0.5.1158] [C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVCSPS.dll] [, ] [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [C:\Program Files\Logitech\QuickCam\EFVal.dll] [, ] [C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LogiCordless.dll] [, ] [C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LogiCordless4001.dll] [, ] [C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LogiVOIPDevicePlugin.dll] [, ] [C:\Program Files\Fichiers communs\LogiShrd\LComMgr\BRSkypePlugin.dll] [Logitech Inc., 1.5.2.1169] [C:\Program Files\Fichiers communs\LogiShrd\LComMgr\YahooPlugin.dll] [Logitech Inc., 1.5.2.1169] [PID: 2740 / Richard][C:\Program Files\Logitech\QuickCam\Quickcam.exe] [, ] [C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\Program Files\Logitech\QuickCam\LAppRes.dll] [, ] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\Logitech\QuickCam\LogiMail.dll] [Logitech Inc., 11.5.0.1169] [C:\Program Files\Fichiers communs\LogiShrd\LComMgr\DevMngr.dll] [, ] [C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVCSCli.dll] [Logitech Inc., 1.0.5.1158] [C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVCSPS.dll] [, ] [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [C:\Program Files\Logitech\QuickCam\EFVal.dll] [, ] [C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManagerPS.dll] [Logitech Inc., 11.5.0.1169] [C:\Program Files\CyberLink\Shared Files\CLRCEngine.dll] [CyberLink Corp., 3.00.0000] [PID: 2780 / Richard][C:\Program Files\DAEMON Tools\daemon.exe] [DT Soft Ltd., 4.08.0.0] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\Program Files\DAEMON Tools\daemon.dll] [DT Soft Ltd., 4.08.0.0] [C:\Program Files\DAEMON Tools\PFCTOC.DLL] [Padus(R), Inc., 1, 0, 0, 12] [C:\Program Files\DAEMON Tools\Plugins\Images\bw5mount.dll] [, 1.1.0.0] [C:\Program Files\DAEMON Tools\Plugins\Images\ccdmount.dll] [GENERIC, 1.10.0.0] [C:\Program Files\DAEMON Tools\Plugins\Images\cuemount.dll] [DT Soft Ltd., 1.0.0.0] [C:\Program Files\DAEMON Tools\Plugins\Images\mdsmount.dll] [DT Soft Ltd., 1.18.0.0] [C:\Program Files\DAEMON Tools\Plugins\Images rgmount.dll] [DT Soft Ltd., 1.12.0.0] [C:\Program Files\DAEMON Tools\Plugins\Images\pdimount.dll] [GENERIC, 1.01.0.0] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [PID: 3092 / Richard][C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe] [GRISOFT s.r.o., 7, 5, 1, 43] [C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\engine.dll] [GRISOFT s.r.o., 4, 2, 0, 19] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\CyberLink\Shared Files\CLRCEngine.dll] [CyberLink Corp., 3.00.0000] [C:\WINDOWS\system32\ieframe.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [PID: 3116 / Richard][C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe] [Google Inc., 2, 0, 301, 1654] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\gtn.dll] [Google Inc., 2, 0, 301, 7164] [C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164 es_fr.dll] [Google Inc., 2, 0, 301, 7164] [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll] [Google Inc., 2, 0, 301, 7164] [PID: 3172 / Richard][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [PID: 3332 / Richard][C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe] [Microsoft Corporation, 8.5.1302.1018] [C:\Program Files\Windows Live\Messenger\MSNCore.dll] [Microsoft Corporation, 8.5.1302.1018] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)] [C:\Program Files\Windows Live\Messenger\msidcrl40.dll] [Microsoft Corporation, 4.100.313.1] [C:\Program Files\Windows Live\Messenger\ContactsUX.dll] [Microsoft Corporation, 8.5.1302.1018] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\Windows Live\Messenger\msgslang.8.5.1302.1018.dll] [Microsoft Corporation, 8.5.1302.1018] [C:\Program Files\Windows Live\Messenger\msgsres.dll] [Microsoft Corporation, 8.5.1302.1018] [C:\Program Files\CyberLink\Shared Files\CLRCEngine.dll] [CyberLink Corp., 3.00.0000] [C:\Program Files\Windows Live\Messenger\lcapi.dll] [Microsoft Corporation, 1.7.256.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)] [C:\WINDOWS\system32\msdmo.dll] [, ] [C:\Program Files\Windows Live\Messenger\lcres.dll] [Microsoft Corp., 1.7.109.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)] [C:\Program Files\Windows Live\Messenger\RTMPLTFM.dll] [Microsoft Corporation, 3.0.5774.0 built by: media_msn80] [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [C:\Program Files\Windows Live\Messenger\MSGSWCAM.dll] [Microsoft Corporation, 8.5.1302.1018] [C:\WINDOWS\system32\sirenacm.dll] [Microsoft Corporation, 8.5.1302.1018] [PID: 3616 / Richard][C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe] [Logitech Inc., 11.5.0.1169] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\Fichiers communs\LogiShrd\LComMgr\DevMngr.dll] [, ] [C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVCSCli.dll] [Logitech Inc., 1.0.5.1158] [C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManagerPS.dll] [Logitech Inc., 11.5.0.1169] [C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVCSPS.dll] [, ] [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [C:\Program Files\Logitech\QuickCam\EFVal.dll] [, ] [PID: 3440 / Richard][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\IEFRAME.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\WINDOWS\system32\IEUI.dll] [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)] [C:\WINDOWS\system32\xmllite.dll] [Microsoft Corporation, 1.00.1018.0] [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510] [C:\Program Files\CyberLink\Shared Files\CLRCEngine.dll] [CyberLink Corp., 3.00.0000] [C:\Program Files\Internet Explorer\ieproxy.dll] [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)] [C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)] [c:\program files\google\googletoolbar2.dll] [Google Inc., 4, 0, 1601, 4978] [C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 8.0.0.2006102200] [C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll] [Microsoft Corporation, 4.200.520.1] [C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\msidcrl40.dll] [Microsoft Corporation, 4.200.520.1] [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll] [Google Inc., 2, 0, 301, 7164] [C:\WINDOWS\system32\ieapfltr.dll] [Microsoft Corporation, 7.0.6000.16461] [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx] [Adobe Systems, Inc., 9,0,115,0] [C:\WINDOWS\system32\msfeeds.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [PID: 4044 / Richard][C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe] [Microsoft Corporation, 4.200.520.1] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\msidcrl40.dll] [Microsoft Corporation, 4.200.520.1] [C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [PID: 2344 / SYSTEM][C:\WINDOWS\system32\wuauclt.exe] [Microsoft Corporation, 7.0.6000.381 (winmain(wmbla).070730-1740)] [C:\WINDOWS\system32\wups2.dll] [Microsoft Corporation, 7.0.6000.381 (winmain(wmbla).070730-1740)] [PID: 2508 / Richard][C:\Documents and Settings\Richard\Bureau\SREngPS.EXE] [Smallfrogs Studio, 2.5.16.900] [C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)] [C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16608 (vista_gdr.071204-1500)] [C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll] [Logitech Inc., 11.5.0.1158] [C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.3 08Oct04] [C:\Program Files\CyberLink\Shared Files\CLRCEngine.dll] [CyberLink Corp., 3.00.0000] [C:\Documents and Settings\Richard\Bureau\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15] ================================== File Associations .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock Provider N/A ================================== Autorun.Inf N/A ================================== HOSTS File 127.0.0.1 localhost ================================== Process Privileges Scan Special Privilege Enabled: SeLoadDriverPrivilege [PID = 1520, C:\PROGRAM FILES\INTEL\WIRELESS\BIN\S24EVMON.EXE] Special Privilege Enabled: SeLoadDriverPrivilege [PID = 1916, C:\PROGRAM FILES\ARCADE\PCMSERVICE.EXE] Special Privilege Enabled: SeLoadDriverPrivilege [PID = 2372, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATIPTAXX.EXE] Special Privilege Enabled: SeLoadDriverPrivilege [PID = 2396, C:\ACER\EPM\EPM-DM.EXE] Special Privilege Enabled: SeLoadDriverPrivilege [PID = 2520, C:\PROGRAM FILES\LAUNCH MANAGER\QTZGACER.EXE] ================================== API HOOK N/A ================================== Hidden Process N/A ================================== /CODE

FillPCA · Answer

Re,

1/ Utilise malwarebyte's en suivant ce tuto : https://forum.pcastuces.com/malwarebytes_antimalwares___tutoriel-f31s3.htm
Edite le rapport à la fin du nettoyage.

2/     *  Fais un scan en ligne en cliquant ici : http://assiste.com.free.fr/...
    * Choisis Kaspersky.
    * Tu dois réaliser le scan en utilisant Internet explorer. Une information apparait en haut, près de la barre d'état. Tu dois accepter et installer l'activeX proposé. La mise à jour de l'antivirus se lance.
    * Réalise un scan complet du système.
    * Sauvegarde le rapport en mode texte à l'issue du scan.

Edite ces 2 rapports.

FillPCA

topgun35000 · Answer

Desolé ca a pris un peu de temps voici le resultat

1° rapport

Malwarebytes' Anti-Malware 1.11
Version de la base de données: 604

Type de recherche: Examen complet (C:\|D:\|E:\|)
Eléments examinés: 86266
Temps écoulé: 2 hour(s), 11 minute(s), 48 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 2

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\system32\wpcap.dll (Spyware.Agent) -> No action taken.
C:\WINDOWS\system32\packet.dll (Spyware.Agent) -> No action taken.

2° rapport

Malwarebytes' Anti-Malware 1.11
Version de la base de données: 604

Type de recherche: Examen complet (C:\|D:\|E:\|)
Eléments examinés: 86266
Temps écoulé: 2 hour(s), 11 minute(s), 48 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 2

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\system32\wpcap.dll (Spyware.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\packet.dll (Spyware.Agent) -> Quarantined and deleted successfully.


3° rapport

-------------------------------------------------------------------------------
 KASPERSKY ONLINE SCANNER REPORT
 Thursday, April 10, 2008 7:05:41 PM
 Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
 Kaspersky Online Scanner version: 5.0.98.0
 Kaspersky Anti-Virus database last update: 10/04/2008
 Kaspersky Anti-Virus database records: 695891
-------------------------------------------------------------------------------

Scan Settings:
	Scan using the following antivirus database: extended
	Scan Archives: true
	Scan Mail Bases: true

Scan Target - My Computer:
	C:\
	D:\
	E:\
	F:\
	G:\

Scan Statistics:
	Total number of scanned objects: 62737
	Number of viruses found: 6
	Number of infected objects: 15
	Number of suspicious objects: 0
	Duration of the scan process: 00:51:58

Infected Object Name / Virus Name / Last Action
C:\WINDOWS\system32\config\system.LOG	Object is locked	skipped
C:\WINDOWS\system32\config\software.LOG	Object is locked	skipped
C:\WINDOWS\system32\config\default.LOG	Object is locked	skipped
C:\WINDOWS\system32\config\SAM.LOG	Object is locked	skipped
C:\WINDOWS\system32\config\SECURITY.LOG	Object is locked	skipped
C:\WINDOWS\system32\config\SysEvent.Evt	Object is locked	skipped
C:\WINDOWS\system32\config\AppEvent.Evt	Object is locked	skipped
C:\WINDOWS\system32\config\SecEvent.Evt	Object is locked	skipped
C:\WINDOWS\system32\config\Antivirus.Evt	Object is locked	skipped
C:\WINDOWS\system32\config\Internet.evt	Object is locked	skipped
C:\WINDOWS\system32\config\DEFAULT	Object is locked	skipped
C:\WINDOWS\system32\config\SECURITY	Object is locked	skipped
C:\WINDOWS\system32\config\SOFTWARE	Object is locked	skipped
C:\WINDOWS\system32\config\SYSTEM	Object is locked	skipped
C:\WINDOWS\system32\config\SAM	Object is locked	skipped
C:\WINDOWS\system32\drivers\sptd.sys	Object is locked	skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP	Object is locked	skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP	Object is locked	skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER	Object is locked	skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP	Object is locked	skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP	Object is locked	skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA	Object is locked	skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR	Object is locked	skipped
C:\WINDOWS\system32\CatRoot2\edb.log	Object is locked	skipped
C:\WINDOWS\system32\CatRoot2	mp.edb	Object is locked	skipped
C:\WINDOWS\system32\h323log.txt	Object is locked	skipped
C:\WINDOWS\system32\lfmjmk.exe	Infected: Trojan-Downloader.Win32.Small.tnt	skipped
C:\WINDOWS\Temp\Perflib_Perfdata_7ec.dat	Object is locked	skipped
C:\WINDOWS\Temp\_avast4_\Webshlock.txt	Object is locked	skipped
C:\WINDOWS\Debug\PASSWD.LOG	Object is locked	skipped
C:\WINDOWS\Sti_Trace.log	Object is locked	skipped
C:\WINDOWS\wiaservc.log	Object is locked	skipped
C:\WINDOWS\wiadebug.log	Object is locked	skipped
C:\WINDOWS\WindowsUpdate.log	Object is locked	skipped
C:\WINDOWS\SchedLgU.Txt	Object is locked	skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log	Object is locked	skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{FA4B54A1-6FC2-4D6A-88C5-ABEAC89278C3}.bin	Object is locked	skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat	Object is locked	skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat	Object is locked	skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG	Object is locked	skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat	Object is locked	skipped
C:\Documents and Settings\NetworkService
tuser.dat.LOG	Object is locked	skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT	Object is locked	skipped
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat	Object is locked	skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat	Object is locked	skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG	Object is locked	skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat	Object is locked	skipped
C:\Documents and Settings\LocalService\Cookies\index.dat	Object is locked	skipped
C:\Documents and Settings\LocalService
tuser.dat.LOG	Object is locked	skipped
C:\Documents and Settings\LocalService\NTUSER.DAT	Object is locked	skipped
C:\Documents and Settings\Richard
tuser.dat.LOG	Object is locked	skipped
C:\Documents and Settings\Richard\Local Settings\Historique\History.IE5\index.dat	Object is locked	skipped
C:\Documents and Settings\Richard\Local Settings\Historique\History.IE5\MSHist012008041020080411\index.dat	Object is locked	skipped
C:\Documents and Settings\Richard\Local Settings\Temporary Internet Files\Content.IE5\index.dat	Object is locked	skipped
C:\Documents and Settings\Richard\Local Settings\Temporary Internet Files\Content.IE5\6P8W9LEY\wv[1].exe	Infected: Trojan-Downloader.Win32.Small.tnt	skipped
C:\Documents and Settings\Richard\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat	Object is locked	skipped
C:\Documents and Settings\Richard\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat	Object is locked	skipped
C:\Documents and Settings\Richard\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG	Object is locked	skipped
C:\Documents and Settings\Richard\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat	Object is locked	skipped
C:\Documents and Settings\Richard\Bureau\MSNFix\09042008_19171121.zip/backup/zogpul.exe	Infected: Trojan-Downloader.Win32.Small.tnt	skipped
C:\Documents and Settings\Richard\Bureau\MSNFix\09042008_19171121.zip	ZIP: infected - 1	skipped
C:\Documents and Settings\Richard\Bureau\catchme.zip/%0e+000xe	Infected: Trojan.Win32.DNSChanger.bxd	skipped
C:\Documents and Settings\Richard\Bureau\catchme.zip	ZIP: infected - 1	skipped
C:\Documents and Settings\Richard\Cookies\index.dat	Object is locked	skipped
C:\Documents and Settings\Richard
tuser.dat	Object is locked	skipped
C:\Documents and Settings\Richard\uhcnzr.MSNFix	Infected: Trojan-Downloader.Win32.Small.tnt	skipped
C:\Documents and Settings\Richard\zogpul.MSNFix	Infected: Trojan-Downloader.Win32.Small.tnt	skipped
C:\Program Files\DAEMON Tools\SetupDTSB.exe	Infected: not-a-virus:AdTool.Win32.WhenU.a	skipped
C:\Program Files\Alwil Software\Avast4\DATAeport\Protection résidente.txt	Object is locked	skipped
C:\Program Files\Alwil Software\Avast4\DATA\log
shield.log	Object is locked	skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log	Object is locked	skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws	Object is locked	skipped
C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat	Object is locked	skipped
C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db	Object is locked	skipped
C:\System Volume Information\_restore{188E40F0-ED0E-4229-A9C6-C6CA03F40F1B}\RP114\A0057738.exe	Infected: Trojan-Downloader.Win32.Small.tnt	skipped
C:\System Volume Information\_restore{188E40F0-ED0E-4229-A9C6-C6CA03F40F1B}\RP114\A0060780.exe	Infected: Trojan-Downloader.Win32.Small.tnt	skipped
C:\System Volume Information\_restore{188E40F0-ED0E-4229-A9C6-C6CA03F40F1B}\RP115\change.log	Object is locked	skipped
D:\Ma musique\06 Track 6.wma	Infected: Trojan-Downloader.WMA.Wimad.l	skipped
D:\Programmes\Nero 8 Ultra Edition 8.1.1.4\Nero-8.1.1.4_all_trial.exe/Toolbar.exe	Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm	skipped
D:\Programmes\Nero 8 Ultra Edition 8.1.1.4\Nero-8.1.1.4_all_trial.exe	7-Zip: infected - 1	skipped
D:\Programmesichard.bohu_photo05.com	Infected: Trojan.Win32.DNSChanger.bwx	skipped
D:\System Volume Information\MountPointManagerRemoteDatabase	Object is locked	skipped
E:\System Volume Information\MountPointManagerRemoteDatabase	Object is locked	skipped

Scan process completed.


voila et maintenant que faire ?????

merci  d'avance

FillPCA · Answer

Re,

1/ Désinstalle ceci via ajout/suppression des programmes :
Daemon tools,

Redémarre le pc.

2/     *  Télécharge OTMoveIt2  (de Old_Timer) sur ton bureau : http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe
    * Double-clique sur OTMoveIt.exe pour lancer le programme,
    * Copie la liste de fichiers ou de dossiers ci-dessous et colle-la dans la fenêtre du programme "Paste List of Files/Folders to Move" :

C:\WINDOWS\system32\lfmjmk.exe
C:\Documents and Settings\Richard\Bureau\MSNFix
C:\Documents and Settings\Richard\Bureau\catchme.zip
C:\Documents and Settings\Richard\uhcnzr.MSNFix
C:\Documents and Settings\Richard\zogpul.MSNFix
C:\Program Files\DAEMON Tools\SetupDTSB.exe
D:\Ma musique\06 Track 6.wma
D:\Programmes\Nero 8 Ultra Edition 8.1.1.4\Nero-8.1.1.4_all_trial.exe
D:\Programmesichard.bohu_photo05.com
EmptyTemp

    * Clique sur MoveIt! pour lancer la suppression,
    * Le résultat appraraîtra dans le cadre Results.
    * Clique sur Exit pour fermer le programme.
    * Poste le rapport qui est situé ici : C:\\_OTMoveIt\MovedFiles
    * Il te sera peut-être demandé de redémarrer ton PC. Dans ce cas, clique sur Yes.

3/ Ouvre Ccleaner et clique sur "lancer le nettoyage".

4/ Edite le rapport OTMoveIT.

Comment se porte le pc ?

FillPCA

topgun35000 · Answer

File/Folder :\WINDOWS\system32\lfmjmk.exe not found.
C:\Documents and Settings\Richard\Bureau\MSNFix\incl moved successfully.
C:\Documents and Settings\Richard\Bureau\MSNFix moved successfully.
C:\Documents and Settings\Richard\Bureau\catchme.zip moved successfully.
C:\Documents and Settings\Richard\uhcnzr.MSNFix moved successfully.
C:\Documents and Settings\Richard\zogpul.MSNFix moved successfully.
File/Folder C:\Program Files\DAEMON Tools\SetupDTSB.exe not found.
D:\Ma musique\06 Track 6.wma moved successfully.
D:\Programmes\Nero 8 Ultra Edition 8.1.1.4\Nero-8.1.1.4_all_trial.exe moved successfully.
D:\Programmesichard.bohu_photo05.com moved successfully.
< EmptyTemp  >
File delete failed. C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF6D42.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF6D54.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF820C.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF8241.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF75C8.tmp scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS	emp\Perflib_Perfdata_7ec.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS	emp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
Temp folders emptied.
IE temp folders emptied.
 
OTMoveIt2 by OldTimer - Version 1.0.4.1 log created on 04102008_193452

Files moved on Reboot...
File C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF6D42.tmp not found!
File C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF6D54.tmp not found!
File C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF820C.tmp not found!
File C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF8241.tmp not found!
C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF75C8.tmp moved successfully.
C:\WINDOWS	emp\Perflib_Perfdata_7ec.dat moved successfully.
File C:\WINDOWS	emp\_avast4_\Webshlock.txt not found!


voila le resultat sinon rien de nouveau a par que lorsque j'ai * Copie la liste de fichiers ou de dossiers ci-dessous et colle-la dans la fenêtre du programme "Paste List of Files/Folders to Move" : 

C:\WINDOWS\system32\lfmjmk.exe 
C:\Documents and Settings\Richard\Bureau\MSNFix 
C:\Documents and Settings\Richard\Bureau\catchme.zip 
C:\Documents and Settings\Richard\uhcnzr.MSNFix 
C:\Documents and Settings\Richard\zogpul.MSNFix 
C:\Program Files\DAEMON Tools\SetupDTSB.exe 
D:\Ma musique\06 Track 6.wma 
D:\Programmes\Nero 8 Ultra Edition 8.1.1.4\Nero-8.1.1.4_all_trial.exe 
D:\Programmesichard.bohu_photo05.com 
EmptyTemp 


avast s'est mit route et j'ai été obligé de mette en quarantaine

FillPCA · Answer

Re,

    * Télécharge Toolscleaner de A.Rothstein sur ton Bureau : http://a-rothstein.changelog.fr/TC/ToolsCleaner2.exe
    * Double-clique sur ToolsCleaner2.exe>Recherche puis Suppression,
    * Ton Bureau va peut-être disparaître. Ceci est normal.
    * S'il ne réapparait pas, fais ceci :  CTRL+ALT+SUP pour faire apparaître le gestionnaire de tâches.
      Rends-toi à l'onglet Processus, clique en haut à gauche sur "Fichiers" et choisis "Exécuter". Tape "explorer" et valide. Cela te fera ré-apparaître ton Bureau.

Comment le pc réagit-il ?

FillPCA

topgun35000 · Answer

-->- Recherche: 

C:\_OtMoveIt: trouvé !
C:\Documents and Settings\Richard\Bureau\otmovelt\OtMoveIt2.exe: trouvé !
C:\_OTMoveIt\MovedFiles\04102008_193452\Documents and Settings\Richard\Bureau\MsnFix: trouvé !

---------------------------------
-->- Suppression: 

C:\Documents and Settings\Richard\Bureau\otmovelt\OtMoveIt2.exe: supprimé !
C:\_OtMoveIt: supprimé !


voila ce que ca a donné ... a part ca rien d'autre

FillPCA · Answer

Re,

1/ Tu peux supprimer tous les logiciels que nous avons utilisés (Type: SmitFraufix, Blacklight, SDFix, lopxpMH, ect.....) qui traitent des infections spécifiques et qui sont mis à jour régulièrement. Il est inutile de les garder sur ton PC.
Tu peux par contre, garder AVG Antispyware et CCleaner.
2/ /!\ Maintenant que ton PC n'est plus infecté, désactive puis réactive ta "Restauration du système" afin de créer un point de restauration sain.
Pour désactiver ou activer la Restauration du système, tu dois  ouvrir une session Administrateur sous Windows XP. 
Désactivation:
Cliquer droit sur le "Poste de travail" > Propriétés > onglet "Restauration du système" > cocher la case "Désactiver la Restauration du système sur tous les lecteurs"
> Appliquer et Ok. 
Activation:
Suivre le même chemin ; décocher la case "Désactiver la Restauration du système sur tous les lecteurs" 
> Appliquer et Ok. Redémarrer l'ordinateur.
Comment faire pour...(lettre A):  https://forum.pcastuces.com/comment_faire_pour__-f25s3902.htm

3/ Pour améliorer la sécurité de ton PC prend quelques instants pour lire:
Sécuriser son PC +WIFI (versions "hot" & "light"): https://forum.pcastuces.com/default.asp
4/ Dénonce ton infection pour faire condamner les auteurs.

Crée un message pour faire avancer les choses sur Malware-Complaints, nous devons être les plus nombreux possibles, alors rends compte de ton infection :
- Voir les règles du forum : https://malwarecomplaints.info/
- Après t'être enregistré à l'aide du bouton en haut se nommant "Register"
Si tu as plus de 13 ans, choisir : "I Agree to these terms and am over or exactly 13 years of age"
Si tu as moins, clique sur : "I Agree to these terms and am under 13 years of age"

Tu as alors, sous forme de liste, un sujet par type d'infection (Look2Me, Smitfraud, SpywareQuake etc..).

*** Tes infections : Worm IRCBot, Trojan-Downloader.Win32.Small.tnt, Trojan.Win32.DNSChanger.bxd, AdTool.Win32.WhenU, Trojan-Downloader.WMA.Wimad.l , AdTool.Win32.MyWebSearch.bm ***
>> https://malwarecomplaints.info/
Si le malware que tu as eu n'apparaît pas dans la liste, ou si tu ne sais pas par quoi tu étais infecté(e), crée un message dans le sujet Autres infections, conforme au règle du forum (âge, ville, département etc..)
Indique aussi le nom du Forum qui t'a aidé : CCM 
5/ Tu peux marquer ton sujet comme résolu en cliquant sur le bouton.
6/ Je te conseille enfin de défragmenter ton PC : http://www.coupdepoucepc.com/modules/news/article.php?storyid=218

Bon surf !

FillPCA

topgun35000 · Answer

un grand merci a toi pour ton aide qui m'a bien dépanné.

Que penses tu de passer sur antivir plutot qu'avast en anti virus ??? 

encore merci pour tout

FillPCA · Answer

Re,

C'est une bonne idée, mais sache que le p2p et l'imprudence de façon générale viennent à bout de tout antivirus. Il faut un bon pare-feu, un antivirus, un système à jour et de la prudence !

FillPCA

FillPCA · Answer

Re,

Pour les programmes de protection, je t'ai répondu dans mon point 3).
Je considère que online Armor ou Comodo tiennent le haut du pavé en terme de protection.

J'utilie Comodo firewall et Antivir. Je suis prudent et tout va bien. Même si mon pc a 3 ans, tout roule !

Quelques liens ici aussi :
https://pages.perso.orange.fr/pages-perso-error&r=403

FillPCA

topgun35000 · Answer

merci et bonne continuation

FillPCA · Answer

A toi aussi.

Content d'avoir pu t'aider.

FillPCA

FillPCA · Answer

Salut,

Si ce sujet t'es utile, alors tant mieux.

FillPCA

steevesystem · Answer

Bonsoir,
je prends connaissance de ce post qui date de quelques mois et qui est toujours d'actualité

Du bonheur en barre !
FillPCA est un druide, le Géronimo du net, que dis-je ? un Dieu (si vous trouvez que j'abuse dites le, j'arrête là mes compliments ).  Euh......J'en étais où? Ah oui un Dieu du clavier, THE depanneur of the pauvres gens comme nous. 
Je brule un cierge pour lui chaque soir, Il a sa place aux Panthéon.

je crois que là, ca doit le faire, hihihi.

Plus sérieusement, merci FillPCA pour le temps passé, et pour votre patience. Vous avez du en sauver plus d'un, moi y compris.
Bien à vous.

FillPCA · Answer

Bonjour,

C'est un post qui fait plaisir, mais le mérite revient surtout, il me semble, aux développeurs, qui mettent à disposition gratuitement des outils nous permettant d'avoir des procédures de nettoyage efficaces.

Bonne journée !

FillPCA

FillPCA · Answer

Salut,

Désolé, mais je ne suis plus helpeur sur ce forum.

FillPCA

Comment se debarasser d'un rootkit ????

22 réponses

Discussions similaires

Newsletters