Sujet Précédent Sujet Suivant

ANTIVIRUS 2009

Résolu/Fermé
laurelina - 2 juil. 2008 à 20:13
 nablus - 4 janv. 2009 à 10:44
Bonjour,

j'ai déjà demandé comment me débarasser de cet ennui.
En effet, j'ai des boîtes de dialogue qui s'ouvrent en même temps que ma session me disant que je ne suis pas protégée par Antivirus 2009.

Au bout d'un moment que l'ordinateur est ouvert, j'ai une page bleue qui s'affiche m'affichant une alerte "STOP", et me parlant de Spyware, puis l'ordinateur se remet en marche avec sous le sigle de Windows un message :
"Your antivirus 2009 sopy is unregistred....
Pouvez-vous m'aider à me débarasser de cette cochonerie SVP ? MERCI
A voir également:

52 réponses

Précédent
Réponse 41 / 52
zakolove1987
4 oct. 2008 à 16:49
tu doit installe run antis spawer je te conseille avira pro avira professionel et muni de cette option et tu le trouvera sur google tu tape antuvirusgratuit et tu cherche
1
Réponse 42 / 52
foxtrot
5 oct. 2008 à 12:15
La solution à été pour moi qui ne souhaite m'avancer sans prétention "Malwarebytes", gratuit et en mode "examen rapide" il m'a suffi de redémarer mon ordinateur comme proposé par le logiciel pour être débarrassé de plusieurs ôtes malveillants.
Merci "MALWAREBYTES"; et à bonne entendeur...essayez, ça ne coûte rien !!!
1
Réponse 43 / 52
dada
15 nov. 2008 à 11:56
salut je c'est kel genre de virus ton ordi est infecter de rogue et vers et plain d'autre il faut que tu formate ton ordi et que tu reinstalle ton windows deux fois pour que le systeme s'adapte bien et installe avast come antivirus et telecharge un anti-rogue et un anti-spyware installe c'est trois logiciel et lance l'analyse
1
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
15 nov. 2008 à 11:59
Bonjour

Pas la peine de formater pour éradiquer ANTIVIRUS 2009
Il se supprime très bien avec les outils nécessaires
0
Réponse 44 / 52
Alex
19 nov. 2008 à 19:24
Bonjour, J'ai le même problème que la plupart des gens ici antivirus 2009 scouade mon pc
Voici mon rapport :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:21, on 2008-11-19
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Mixer.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Eset\nod32kui.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\program files\steam\steam.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Antivirus 2009\av2009.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Java\jre1.6.0_05\bin\jucheck.exe
C:\Documents and Settings\Admin\Bureau\Lineage II - m0o Age\system\m0oLauncher.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Admin\Bureau\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.iesearch.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 87.98.207.15 l2authd.lineage2.com # m0o age
O1 - Hosts: 87.98.207.15 L2testauthd.lineage2.com #m0o age
O1 - Hosts: 91.121.50.64 nProtect.lineage2.com #m0o age
O1 - Hosts: 91.121.50.64 update.nProtect.com #m0o age
O1 - Hosts: 91.121.50.64 update.nProtect.net #m0o age
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\K-Lite Codec Pack\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Host Process] C:\WINDOWS\Fonts\svchost.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O4 - HKCU\..\Run: [20469994459928745598264881320002] C:\Program Files\Antivirus 2009\av2009.exe
O4 - HKCU\..\Run: [ieupdate] "C:\WINDOWS\system32\explorer32.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
1

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 45 / 52
Utilisateur anonyme
27 nov. 2008 à 13:40
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:34:12, on 27/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\Winamp Remote\bin\OrbTray.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\FICHIE~1\InstallShield\engine\6\Intel 32\knlwrap.exe
C:\PROGRA~1\FICHIE~1\InstallShield\engine\6\Intel 32\iKernel.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrateur\Bureau\utile.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: {1A03F196-9617-4CA0-842B-A83CEECB022B} - - (no file)
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: (no name) - {326ced9d-787c-4147-aea0-898cb4c14f65} - C:\WINDOWS\system32\taruvura.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\avgtoolbar.dll (file missing)
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [The locks settings ante] C:\Documents and Settings\All Users\Application Data\Cool Eggs The Locks\software second.exe
O4 - HKLM\..\Run: [basisezote] Rundll32.exe "C:\WINDOWS\system32\jarivaju.dll",s
O4 - HKLM\..\Run: [CPM9b89e29e] Rundll32.exe "c:\windows\system32\dedozasi.dll",a
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [Testsoft] C:\DOCUME~1\ADMINI~1\APPLIC~1\RegsDeafMeal\Bat cool send.exe
O4 - HKCU\..\Run: [Orb] "C:\Program Files\Winamp Remote\bin\OrbTray.exe" /background
O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [basisezote] Rundll32.exe "C:\WINDOWS\system32\jarivaju.dll",s (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nLite] %systemroot%\inf\nlite.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [nLite] %systemroot%\inf\nlite.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O20 - AppInit_DLLs: karna.dat izaeuk.dll C:\WINDOWS\system32\pijelini.dll c:\windows\system32\dedozasi.dll
O20 - Winlogon Notify: browqrt - browqrt.dll (file missing)
O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\dedozasi.dll
O22 - SharedTaskScheduler: STS - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\dedozasi.dll
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
1
Réponse 46 / 52
Utilisateur anonyme
27 nov. 2008 à 13:41
j'ai besoin d'aide car c'est vrai que ce n'est pas evident toute seule à enlever ce fichu virus....grrr !!
1
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
27 nov. 2008 à 13:45
Bonjour,

Il serait préférable que tu crées ton propre « topik » message personnel. Cela rendra le poste (ici) plus compréhensible, et nous pourrons traiter ton soucis avec plus d’efficacité.
Donc
Fais ce qui suit, SVP
http://perso.orange.fr/rginformatique/section%20virus/demofairesontmessage.htm
Merci
A++
http://perso.orange.fr/rginformatique/section%20virus/demofairesontmessage.htm

A++

0
Réponse 47 / 52
Verso
8 déc. 2008 à 16:42
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:40:19, on 08/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\MagicDisc\MagicDisc.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Fichiers communs\Logitech\khalshared\KHALMNPR.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.noiroogle.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {037C7B8A-151A-49E6-BAED-CC05FCB50328} - C:\WINDOWS\system32\winsrc.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll
O2 - BHO: offersfortoday browser enhancer - {48F1042D-9ED3-FDD9-A662-CBA2115B84FE} - C:\WINDOWS\system32\dpvssrqvfvigdkdk.dll (file missing)
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ssjcpjduwsm] C:\WINDOWS\System32\regsvr32.exe /s "C:\WINDOWS\system32\dpvssrqvfvigdkdk.dll"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [Cognac] C:\DOCUME~1\Benj\LOCALS~1\Temp\~tmpb.exe
O4 - HKCU\..\Run: [MSFox] C:\DOCUME~1\Benj\LOCALS~1\Temp\xxx41.exe
O4 - HKCU\..\Run: [25752717665581422863492076656620] C:\Program Files\Antivirus 2009\av2009.exe
O4 - HKCU\..\Run: [ieupdate] "C:\WINDOWS\system32\explorer32.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
1
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
9 déc. 2008 à 11:26
Bonjour

Pourriez-vous, s'il vous plait, reformuler votre problème avec des phrases complètes; bonjour et merci sont aussi des mots bien appréciés ici, puisque notre seul salaire.
http://www.technicland.com/malpolitus.swf
http://img139.imageshack.us/img139/8973/notdistrimq9.jpg
http://dominguez.francois.free.fr/politesse.html
http://users.elite.net/runner/jennifers/hello.htm#E




Il serait préférable que tu crées ton propre « topik » message personnel. Cela rendra le poste (ici) plus compréhensible, et nous pourrons traiter ton soucis avec plus d’efficacité.
Donc
Fais ce qui suit, SVP
Merci
http://img139.imageshack.us/img139/8973/notdistrimq9.jpg
http://pageperso.aol.fr/balltrap34/demofairesontmessage.htm
http://perso.orange.fr/rginformatique/section%20virus/demofairesontmessage.htm



À bientôt!
A++
0
Réponse 48 / 52
Grand Schtroumpf
29 déc. 2008 à 18:45
Salut ! Au propos de ANTIVIRUS 2009 j'ai eu les même symptômes que toi et j'ai télécharger, un petit logiciel qui ma débarrasser de antivirus 2009. CCLEANER, je te donne un liens ou le télécharger et en plus il est gratos... En premier je lui est demander d'analyser, ce qu'il a fait et je lui ai donner tout droit de nettoyer tout ce qu'il ma suggerer (parce que la je commençais a en avoir plein le ...) j'étais a deux poil de formater.... a deux reprise j'ai recommencer et la je lui ai demander d'afficher les logiciel d'entré et j'aii vue antivirus 2009 et je lui ai enlever le droit d'entré, ainsi qu'à msnnquelquechose et un autre que je ne connaissais pas. et la tout est entré a la normal... je croise les doigts...

Bonne chance a toi et je te dis merde !

https://www.commentcamarche.net/telecharger/

vois au bas de la page CCLEANER

Grand Schtroumpf
1
Réponse 49 / 52
loubiloub
29 déc. 2008 à 23:15
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2800+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Thomas ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.26 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:65 Go)
D:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 29/12/2008|22:57 )

--------------------\\ Listing des dossiers dans APPLIC~1

[05/07/2007|15:15] C:\DOCUME~1\ADMINI~2\APPLIC~1\Microsoft

[02/07/2004|11:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[30/07/2008|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AntiVir PersonalEdition Classic
[05/02/2007|15:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[13/12/2008|03:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[30/11/2007|18:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[02/07/2004|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[18/08/2008|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[19/02/2007|16:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[19/02/2007|17:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[08/09/2008|18:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LogiShrd
[08/09/2008|18:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[13/02/2008|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[18/10/2008|17:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[04/11/2006|13:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[18/01/2007|18:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[28/12/2008|11:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[29/12/2007|20:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
[20/09/2008|10:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[25/12/2008|20:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\That size part chin
[27/11/2007|12:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[26/05/2007|20:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[03/04/2007|09:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar

[02/07/2004|01:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[10/11/2006|13:17] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[14/12/2006|20:09] C:\DOCUME~1\INVIT~1\APPLIC~1\AOL
[10/11/2006|13:15] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[26/07/2006|17:19] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[10/11/2006|13:15] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[19/02/2007|16:08] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[10/11/2006|13:12] C:\DOCUME~1\INVIT~1\APPLIC~1\MSN6
[22/11/2006|17:37] C:\DOCUME~1\INVIT~1\APPLIC~1\SystemDoctor 2006
[10/11/2006|10:28] C:\DOCUME~1\INVIT~1\APPLIC~1\SystemDoctor 2006 Free

[19/02/2007|17:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[07/11/2006|18:41] C:\DOCUME~1\LOCALS~1\APPLIC~1\Help
[05/07/2007|15:15] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[05/07/2007|15:16] C:\DOCUME~1\NETWOR~1\APPLIC~1\AVG7
[05/07/2007|15:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[28/08/2008|23:08] C:\DOCUME~1\Thomas\APPLIC~1\Adobe
[29/11/2006|13:24] C:\DOCUME~1\Thomas\APPLIC~1\AOL
[04/09/2007|07:33] C:\DOCUME~1\Thomas\APPLIC~1\AVG7
[30/11/2007|18:55] C:\DOCUME~1\Thomas\APPLIC~1\Azureus
[31/01/2007|20:23] C:\DOCUME~1\Thomas\APPLIC~1\DriveCleaner 2006 Free
[28/12/2008|11:08] C:\DOCUME~1\Thomas\APPLIC~1\EoRezo
[05/11/2006|11:49] C:\DOCUME~1\Thomas\APPLIC~1\Google
[13/07/2006|20:48] C:\DOCUME~1\Thomas\APPLIC~1\Help
[02/09/2006|11:08] C:\DOCUME~1\Thomas\APPLIC~1\Hewlett-Packard
[31/05/2006|16:07] C:\DOCUME~1\Thomas\APPLIC~1\Identities
[25/12/2008|20:38] C:\DOCUME~1\Thomas\APPLIC~1\itchclose
[02/02/2007|20:27] C:\DOCUME~1\Thomas\APPLIC~1\Lavasoft
[19/02/2007|09:21] C:\DOCUME~1\Thomas\APPLIC~1\Leadertech
[19/06/2007|16:07] C:\DOCUME~1\Thomas\APPLIC~1\Learn2.com
[28/12/2008|00:52] C:\DOCUME~1\Thomas\APPLIC~1\LimeWire
[16/05/2007|08:05] C:\DOCUME~1\Thomas\APPLIC~1\Macromedia
[15/10/2007|00:56] C:\DOCUME~1\Thomas\APPLIC~1\Media Player Classic
[08/09/2008|18:45] C:\DOCUME~1\Thomas\APPLIC~1\Microsoft
[22/07/2008|16:18] C:\DOCUME~1\Thomas\APPLIC~1\Mozilla
[04/11/2006|13:43] C:\DOCUME~1\Thomas\APPLIC~1\MSN6
[24/06/2008|09:06] C:\DOCUME~1\Thomas\APPLIC~1\Nullriver
[01/06/2006|11:54] C:\DOCUME~1\Thomas\APPLIC~1\Sonic
[22/09/2007|08:29] C:\DOCUME~1\Thomas\APPLIC~1\Sony Ericsson
[28/12/2008|11:52] C:\DOCUME~1\Thomas\APPLIC~1\Spybot - Search & Destroy
[29/12/2007|20:52] C:\DOCUME~1\Thomas\APPLIC~1\Starware370
[07/11/2006|20:32] C:\DOCUME~1\Thomas\APPLIC~1\Sun
[19/11/2007|20:55] C:\DOCUME~1\Thomas\APPLIC~1\Teleca
[19/02/2007|16:18] C:\DOCUME~1\Thomas\APPLIC~1\U3
[27/05/2007|12:18] C:\DOCUME~1\Thomas\APPLIC~1\uTorrent
[27/11/2007|12:19] C:\DOCUME~1\Thomas\APPLIC~1\Viewpoint
[03/04/2007|09:36] C:\DOCUME~1\Thomas\APPLIC~1\Windows Desktop Search
[29/11/2006|13:23] C:\DOCUME~1\Thomas\APPLIC~1\You've Got Pictures Screensaver

[23/09/2008|18:33] C:\DOCUME~1\Thomas_2\APPLIC~1\$CUERoot$
[03/09/2008|15:49] C:\DOCUME~1\Thomas_2\APPLIC~1\Adobe
[30/03/2008|16:06] C:\DOCUME~1\Thomas_2\APPLIC~1\AVG7
[18/11/2008|10:09] C:\DOCUME~1\Thomas_2\APPLIC~1\DivX
[30/03/2008|16:05] C:\DOCUME~1\Thomas_2\APPLIC~1\Identities
[27/12/2008|10:16] C:\DOCUME~1\Thomas_2\APPLIC~1\itchclose
[14/07/2008|16:00] C:\DOCUME~1\Thomas_2\APPLIC~1\Macromedia
[18/11/2008|10:09] C:\DOCUME~1\Thomas_2\APPLIC~1\Media Player Classic
[07/08/2008|18:09] C:\DOCUME~1\Thomas_2\APPLIC~1\Microsoft
[29/07/2008|14:07] C:\DOCUME~1\Thomas_2\APPLIC~1\Mozilla
[30/03/2008|16:05] C:\DOCUME~1\Thomas_2\APPLIC~1\Sony Ericsson
[26/06/2008|08:05] C:\DOCUME~1\Thomas_2\APPLIC~1\Sun
[30/03/2008|16:10] C:\DOCUME~1\Thomas_2\APPLIC~1\Teleca

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[29/12/2008 22:00][--ah-----] C:\WINDOWS\tasks\A88B945F918C0BD3.job
[29/12/2008 21:26][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUser.job
[05/12/2008 13:59][--a------] C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1217591929.job
[19/12/2007 20:07][--a------] C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1190138684.job
[29/12/2008 22:41][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[29/12/2008 20:00][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/04/2003 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

( A88B945F918C0BD3.job )=( c:\docume~1\thomas\applic~1\itchcl~1\waveeachflaw.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[20/11/2008|10:35] C:\Program Files\Adobe
[06/08/2008|10:25] C:\Program Files\AntiVir PersonalEdition Classic
[28/12/2008|00:04] C:\Program Files\Antivirus 2009
[02/07/2004|11:47] C:\Program Files\ArcSoft
[16/12/2008|12:30] C:\Program Files\arpa
[26/11/2008|19:19] C:\Program Files\Circle Developement
[02/07/2004|17:43] C:\Program Files\C-Media 3D Audio
[02/07/2004|11:45] C:\Program Files\CyberLink
[05/02/2007|15:05] C:\Program Files\Dossier d'archivage AOL sauvegard‚
[27/10/2005|20:01] C:\Program Files\EACOM
[12/10/2008|13:41] C:\Program Files\EoRezo
[20/09/2008|10:20] C:\Program Files\Fichiers communs
[26/05/2005|19:11] C:\Program Files\Firefly Studios
[08/12/2007|23:58] C:\Program Files\Game Sentinel Basic
[20/09/2008|10:47] C:\Program Files\GameSpy Arcade
[27/05/2007|09:17] C:\Program Files\Google
[05/07/2007|15:15] C:\Program Files\Grisoft
[11/11/2005|17:52] C:\Program Files\Hasbro Interactive
[26/05/2005|18:59] C:\Program Files\Hewlett-Packard
[06/07/2007|17:52] C:\Program Files\InstallShield Installation Information
[14/03/2008|19:52] C:\Program Files\Internet Explorer
[25/12/2008|20:37] C:\Program Files\itchclose
[24/10/2008|17:50] C:\Program Files\Java
[04/10/2008|08:05] C:\Program Files\KONAMI
[19/02/2007|16:19] C:\Program Files\Lavasoft
[29/11/2006|13:23] C:\Program Files\Learn2.com
[08/09/2008|18:43] C:\Program Files\Logitech
[05/07/2007|14:29] C:\Program Files\Messenger
[29/12/2008|00:49] C:\Program Files\Messenger Plus! Live
[05/02/2007|15:01] C:\Program Files\MetaStream
[22/12/2008|18:02] C:\Program Files\Metin2_France
[02/07/2005|17:17] C:\Program Files\Micro Application
[02/07/2004|01:41] C:\Program Files\microsoft frontpage
[01/04/2007|16:12] C:\Program Files\Movie Maker
[29/12/2008|16:49] C:\Program Files\Mozilla Firefox
[02/07/2004|01:37] C:\Program Files\MSN Gaming Zone
[26/11/2008|19:19] C:\Program Files\MSN Messenger
[29/12/2008|22:54] C:\Program Files\Navilog1
[20/09/2008|13:03] C:\Program Files\NetMeeting
[29/12/2008|22:55] C:\Program Files\OpenOffice.org1.1.2
[24/05/2005|14:04] C:\Program Files\Outlook Express
[20/09/2008|10:48] C:\Program Files\QuickTime
[20/09/2008|11:03] C:\Program Files\QuickZip
[29/11/2006|13:22] C:\Program Files\Real
[24/05/2005|11:26] C:\Program Files\RegCleaner
[02/07/2004|11:49] C:\Program Files\Sonic
[20/09/2008|10:20] C:\Program Files\Sony Ericsson
[28/12/2008|11:52] C:\Program Files\Spybot - Search & Destroy
[12/10/2008|19:40] C:\Program Files\Steam
[17/06/2008|12:30] C:\Program Files\Sun
[02/07/2004|01:48] C:\Program Files\Uninstall Information
[03/04/2007|09:35] C:\Program Files\Windows Desktop Search
[01/08/2008|11:40] C:\Program Files\Windows Live
[03/04/2007|09:34] C:\Program Files\Windows Live Toolbar
[21/09/2008|11:03] C:\Program Files\Windows Media Connect 2
[21/09/2008|11:03] C:\Program Files\Windows Media Player
[24/05/2005|14:04] C:\Program Files\Windows NT
[17/02/2007|11:14] C:\Program Files\xerox
[28/12/2008|14:58] C:\Program Files\Yu-Gi-Oh Virtual Battle 5

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[04/11/2006|12:40] C:\Program Files\Fichiers communs\Adobe
[19/02/2007|16:36] C:\Program Files\Fichiers communs\AOL
[29/11/2006|13:23] C:\Program Files\Fichiers communs\aolback
[05/02/2007|15:06] C:\Program Files\Fichiers communs\aolshare
[10/12/2007|19:46] C:\Program Files\Fichiers communs\Blizzard Entertainment
[25/07/2006|21:54] C:\Program Files\Fichiers communs\DirectX
[26/05/2005|18:56] C:\Program Files\Fichiers communs\Hewlett-Packard
[26/05/2005|19:16] C:\Program Files\Fichiers communs\InstallShield
[02/07/2004|17:27] C:\Program Files\Fichiers communs\Java
[09/09/2008|14:23] C:\Program Files\Fichiers communs\LogiShrd
[03/04/2007|09:33] C:\Program Files\Fichiers communs\Microsoft Shared
[02/07/2004|01:38] C:\Program Files\Fichiers communs\MSSoap
[29/11/2006|13:22] C:\Program Files\Fichiers communs\Nullsoft
[02/07/2004|02:27] C:\Program Files\Fichiers communs\ODBC
[29/11/2006|13:22] C:\Program Files\Fichiers communs\Real
[02/07/2004|01:38] C:\Program Files\Fichiers communs\Services
[02/07/2004|11:49] C:\Program Files\Fichiers communs\Sonic
[02/07/2004|02:27] C:\Program Files\Fichiers communs\SpeechEngines
[24/05/2005|14:04] C:\Program Files\Fichiers communs\System
[04/07/2007|14:23] C:\Program Files\Fichiers communs\SystemDoctor 2006
[20/09/2008|10:20] C:\Program Files\Fichiers communs\Teleca Shared

--------------------\\ Process

( 47 Processes )

IEXPLORE.EXE ~ [PID:744]
IEXPLORE.EXE ~ [PID:2332]
IEXPLORE.EXE ~ [PID:2348]
iexplore.exe ~ [PID:3340]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\That Size Part Chin
C:\DOCUME~1\ALLUSE~1\APPLIC~1\That Size Part Chin\hold view.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\That Size Part Chin\NOUN ACID.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\That Size Part Chin\NOUN ACID.exe
C:\DOCUME~1\Thomas\APPLIC~1\itchcl~1
C:\DOCUME~1\Thomas\APPLIC~1\itchcl~1\afkbgiep.exe
C:\DOCUME~1\Thomas\APPLIC~1\itchcl~1\antisupportcoolbat.exe
C:\DOCUME~1\Thomas\APPLIC~1\itchcl~1\euikshyx.exe
C:\DOCUME~1\Thomas\APPLIC~1\itchcl~1\jibwvbry.exe
C:\DOCUME~1\Thomas\APPLIC~1\itchcl~1\TitlePokeFast.exe
C:\DOCUME~1\Thomas\APPLIC~1\itchcl~1\waveeachflaw.exe
C:\DOCUME~1\Thomas\APPLIC~1\itchcl~1\xdlhqnjr.exe
C:\DOCUME~1\Thomas\APPLIC~1\itchcl~1\yyzpnttp.exe
C:\DOCUME~1\Thomas_2\APPLIC~1\itchcl~1
C:\DOCUME~1\Thomas_2\APPLIC~1\itchcl~1\TitlePokeFast.exe
C:\Program Files\itchcl~1
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
C:\DOCUME~1\Thomas\Cookies\thomas@banner.cotedazurpalace[2].txt
C:\DOCUME~1\Thomas\Cookies\thomas@cotedazurpalace[1].txt
C:\DOCUME~1\Thomas\Cookies\thomas@www.cotedazurpalace[1].txt
C:\DOCUME~1\Thomas\Cookies\thomas@adopt.euroclick[2].txt
C:\DOCUME~1\Thomas\Cookies\thomas@pacificpoker[1].txt
C:\WINDOWS\Tasks\A88B945F918C0BD3.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"boobinfo"="C:\\DOCUME~1\\Thomas\\APPLIC~1\\ITCHCL~1\\TitlePokeFast.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"part chin math idol"="C:\\Documents and Settings\\All Users\\Application Data\\That size part chin\\NOUN ACID.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-29 22:59:28
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 4

--------------------\\ Recherche d'autres infections

C:\WINDOWS\Pack.epk
C:\WINDOWS\System32\nvs2.inf

C:\DOCUME~1\Thomas\LOCALS~1\APPLIC~1\mmcaa.dat
C:\DOCUME~1\Thomas\LOCALS~1\APPLIC~1\mmcaa.exe
C:\DOCUME~1\Thomas\LOCALS~1\APPLIC~1\mmcaa_nav.dat
C:\DOCUME~1\Thomas\LOCALS~1\APPLIC~1\mmcaa_navps.dat
C:\WINDOWS\System32\ogbojxptii.dat
C:\WINDOWS\System32\ogbojxptii_nav.dat
C:\WINDOWS\System32\ogbojxptii_navps.dat
[b]==> EGDACCESS <==/b

--------------------\\ ROGUES ..

C:\DOCUME~1\Thomas\APPLIC~1\DriveCleaner 2006 Free
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
C:\DOCUME~1\Thomas\APPLIC~1\Starware370
C:\DOCUME~1\INVIT~1\APPLIC~1\SystemDoctor 2006
C:\DOCUME~1\INVIT~1\APPLIC~1\SystemDoctor 2006 Free
C:\PROGRA~1\Antivirus 2009
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\SystemDoctor 2006
C:\PROGRA~1\FICHIE~1\SystemDoctor 2006



[F:360][D:3]-> C:\DOCUME~1\Thomas\LOCALS~1\Temp
[F:117][D:0]-> C:\DOCUME~1\Thomas\Cookies
[F:424][D:17]-> C:\DOCUME~1\Thomas\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 29/12/2008|23:00 - Option : [1]

--------------------\\ Fin du rapport a 23:00:53
1
Réponse 50 / 52
Utilisateur anonyme
3 janv. 2009 à 22:58
J'ai le même problème que Charlotte. Est ce que quelqu'un pourrais regarde le rapport svp.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:53:53, on 03/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe
C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET.EXE
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Fichiers communs\AVerMedia\AVerQuick\AVerQuick.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Sony Corporation\Image Transfer\SonyTray.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\OrangeHSS\systray\systrayapp.exe
C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\RealVNC\VNC4\WinVNC4.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Logitech\QuickCam10\COCIManager.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\Documents and Settings\Dominique PELLET\Bureau\Coucou.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://runonce.msn.com/runonce3.aspx
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
O2 - BHO: (no name) - {0c79bc41-136a-48a0-9083-088dfbcdf79f} - C:\WINDOWS\system32\newuyane.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Phishing Agent - {B34E20E5-96B2-46AC-9D68-C6B2CD293C2C} - C:\WINDOWS\Drivers\PhishAgnt.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [CTDVDDET] "C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET.EXE"
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [IgfxSys] rundll32.exe "C:\WINDOWS\Drivers\IgfxSys.dll",StartProtector
O4 - HKLM\..\Run: [wisenadoyi] Rundll32.exe "C:\WINDOWS\system32\nizoguya.dll",s
O4 - HKLM\..\Run: [7ce5d663] rundll32.exe "C:\WINDOWS\system32\vefukufe.dll",b
O4 - HKLM\..\Run: [CPM7fd6e5ff] Rundll32.exe "c:\windows\system32\rakevaka.dll",a
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [wisenadoyi] Rundll32.exe "C:\WINDOWS\system32\nizoguya.dll",s (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Accélérateur de démarrage AutoCAD.lnk = C:\Program Files\Fichiers communs\Autodesk Shared\acstart16.exe
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: AVerQuick.lnk = C:\Program Files\Fichiers communs\AVerMedia\AVerQuick\AVerQuick.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Image Transfer.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
O17 - HKLM\System\CCS\Services\Tcpip\..\{31167DC6-2A1B-4004-9D7E-FA492563944F}: NameServer = 192.168.1.1
O18 - Protocol: bw+0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {6ED9927E-5B4E-4E1C-8890-CBC09FCA7F26} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: C:\WINDOWS\system32\vaseyoyo.dll,c:\windows\system32\rakevaka.dll
O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\rakevaka.dll
O22 - SharedTaskScheduler: STS - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\rakevaka.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Autodesk Licensing Service - Autodesk, Inc. - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd. - C:\Program Files\RealVNC\VNC4\WinVNC4.exe
1
Réponse 51 / 52
Utilisateur anonyme
3 janv. 2009 à 23:35
Salut!!

Essayer de créer vos propres topics!

Celui-ci fait un peu fourre-tout! ;)

A++
1
Réponse 52 / 52
elcodis01 Messages postés 1 Date d'inscription mardi 29 juillet 2008 Statut Membre Dernière intervention 29 juillet 2008
30 juil. 2008 à 13:42
Oui bien sur! Le voici:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 06:38:46 a.m., on 30/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Archivos de programa\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Archivos de programa\Alwil Software\Avast4\aswUpdSv.exe
C:\Archivos de programa\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Archivos de programa\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\imapi.exe
C:\Archivos de programa\Archivos comunes\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\ARCHIV~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\vsnpstd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Archivos de programa\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Archivos de programa\Messenger\msmsgs.exe
C:\Archivos de programa\Alwil Software\Avast4\ashMaiSv.exe
C:\Archivos de programa\Alwil Software\Avast4\ashWebSv.exe
C:\HP\KBD\KBD.EXE
C:\Archivos de programa\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Archivos de programa\Internet Explorer\iexplore.exe
C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WLLoginProxy.exe
c:\windows\system\hpsysdrv.exe
C:\Documents and Settings\Compaq_Propietario\Mis documentos\Programmes\Hijackthis\abcde.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos
O2 - BHO: Aplicación auxiliar de vínculos de Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\ARCHIV~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\archivos de programa\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Archivos de programa\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Archivos de programa\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Archivos de programa\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\archivos de programa\google\googletoolbar1.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HPBootOp] "C:\Archivos de programa\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [avast!] C:\ARCHIV~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Archivos de programa\Archivos comunes\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [QuickTime Task] "C:\Archivos de programa\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Archivos de programa\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Archivos de programa\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [38178820498498397871010228170786] C:\Archivos de programa\Antivirus 2009\av2009.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Servicio de red')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Archivos de programa\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Archivos de programa\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?556165cedd53458980571eefb66c5b56
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Archivos de programa\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?556165cedd53458980571eefb66c5b56
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Ayuda para la conexión - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Ayuda para la conexión - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (Control HouseCall) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARCHIV~1\ARCHIV~1\Skype\SKYPE4~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Archivos de programa\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Archivos de programa\Ares\chatServer.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Archivos de programa\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Archivos de programa\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Archivos de programa\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Archivos de programa\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Archivos de programa\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Archivos de programa\Archivos comunes\LightScribe\LSSrvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
0

Discussions similaires

télécharger et installer encarta junior
98653773 -
1 -

3 réponses
Google Chrome "  Échec de l'analyse antivirus "
jmpower -
Coco71 -

15 réponses