Virus ou pas?
Résolu
nadinere
Messages postés
230
Date d'inscription
Statut
Membre
Dernière intervention
-
pimprenelle27 Messages postés 22182 Statut Contributeur sécurité -
pimprenelle27 Messages postés 22182 Statut Contributeur sécurité -
Bonjour,
mon pc plante souvent je me demande si j'ai pas un virus.
Merci pour votre avis.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:05:45, on 24/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\xpmsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Cobian Backup 9\cbService.exe
C:\WINDOWS\system32\drivers\dcfssvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\apps\ABoard\ABoard.exe
C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe
C:\apps\ABoard\AOSD.exe
C:\Program Files\D-Tools\daemon.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
C:\WINDOWS\Ocs.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe
C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\APPS\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\apps\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cegetel.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = file://C:\APPS\IE\offline\fr.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\apps\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKLM\..\Run: [CleanEasyImg] c:\apps\easydvd\cleanall.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [xpos] C:\Program Files\DATA BECKER\XP Style\XP Style\xpui.exe /tray
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray
O4 - HKLM\..\Run: [DataLayer] C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
O4 - HKLM\..\Run: [SCL] C:\WINDOWS\Ocs.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Configuration de la C-BOX] C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Symantec NetDriver Warning] C:\PROGRA~1\SYMNET~1\SNDWarn.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\APPS\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Cobian Backup 9 service (CobianBackupAmanita) - Luis Cobian - C:\Program Files\Cobian Backup 9\cbService.exe
O23 - Service: Dcfssvc - Eastman Kodak Company - C:\WINDOWS\system32\drivers\dcfssvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
O23 - Service: XPMSService - Unknown owner - C:\WINDOWS\System32\xpmsserv.exe
mon pc plante souvent je me demande si j'ai pas un virus.
Merci pour votre avis.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:05:45, on 24/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\xpmsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Cobian Backup 9\cbService.exe
C:\WINDOWS\system32\drivers\dcfssvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\apps\ABoard\ABoard.exe
C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe
C:\apps\ABoard\AOSD.exe
C:\Program Files\D-Tools\daemon.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
C:\WINDOWS\Ocs.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe
C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\APPS\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\apps\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cegetel.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = file://C:\APPS\IE\offline\fr.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\apps\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKLM\..\Run: [CleanEasyImg] c:\apps\easydvd\cleanall.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [xpos] C:\Program Files\DATA BECKER\XP Style\XP Style\xpui.exe /tray
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray
O4 - HKLM\..\Run: [DataLayer] C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
O4 - HKLM\..\Run: [SCL] C:\WINDOWS\Ocs.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Configuration de la C-BOX] C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Symantec NetDriver Warning] C:\PROGRA~1\SYMNET~1\SNDWarn.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\APPS\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Cobian Backup 9 service (CobianBackupAmanita) - Luis Cobian - C:\Program Files\Cobian Backup 9\cbService.exe
O23 - Service: Dcfssvc - Eastman Kodak Company - C:\WINDOWS\system32\drivers\dcfssvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
O23 - Service: XPMSService - Unknown owner - C:\WINDOWS\System32\xpmsserv.exe
A voir également:
- Virus ou pas?
- Virus mcafee - Accueil - Piratage
- Virus facebook demande d'amis - Accueil - Facebook
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
81 réponses
pour Ccleaner
je recoche :effacer uniquement les fichiers ...plus vieux que 48h?
et j'appuie lancer le nettoyage?
c'est tout.
hier il me demande de fermer firefox.
je recoche :effacer uniquement les fichiers ...plus vieux que 48h?
et j'appuie lancer le nettoyage?
c'est tout.
hier il me demande de fermer firefox.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
finalement je l'ai mis en francais!
c'est quoi en francais les ligne a cochees:
Close browsers before scanning
Scan for tracking cookies
Terminate memory threats before quarantining
quand j'ai lance le programme j'ai pas tout compris on dirait qu'il a fait une analyse sans que je demande????
excuse j'avait pas ete sur le tuto .
mais ils mettent rien pour preference.
suis pas bien douee et aujourd'hui ca va pas top de mon cote .merci pour ta patience.
c'est quoi en francais les ligne a cochees:
Close browsers before scanning
Scan for tracking cookies
Terminate memory threats before quarantining
quand j'ai lance le programme j'ai pas tout compris on dirait qu'il a fait une analyse sans que je demande????
excuse j'avait pas ete sur le tuto .
mais ils mettent rien pour preference.
suis pas bien douee et aujourd'hui ca va pas top de mon cote .merci pour ta patience.
Navigateurs étroits avant le balayage
Balayage pour dépister les cookies
Terminez les menaces de mémoire avant de mettre en quarantaine
Balayage pour dépister les cookies
Terminez les menaces de mémoire avant de mettre en quarantaine
un peu long.mais c'est bon
SUPERAntiSpyware Scan Log
https://www.superantispyware.com/
Generated 03/26/2009 at 04:23 PM
Application Version : 4.25.1014
Core Rules Database Version : 3815
Trace Rules Database Version: 1769
Scan type : Complete Scan
Total Scan Time : 01:52:16
Memory items scanned : 528
Memory threats detected : 0
Registry items scanned : 5853
Registry threats detected : 0
File items scanned : 131235
File threats detected : 36
Adware.Tracking Cookie
C:\Documents and Settings\Nathalie\Cookies\nathalie@ad3.123multimedia[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@adopt.hbmediapro[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@adserver.aol[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@adultfriendfinder[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@adv.surinter[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@apmebf[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@asiatiquexxx.xdir[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@asxmedia[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@belnk[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@d2.advertserve[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@dist.belnk[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@frenchfriendfinder[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@indextools[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@m1.webstats4u[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@multimedia.ftpk[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@stats.desinformations[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@track.effiliation[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@tracker.affistats[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@tracking.veille-referencement[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@webtracker.sfr[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@windowsmedia[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@www.cdiscount[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@www.cibleclick[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@www.gay-porno[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@www.sexyavenue[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@www.taxiporno[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@xiti[1].txt
C:\Documents and Settings\Papa\Cookies\papa@adv.surinter[2].txt
C:\Documents and Settings\Papa\Cookies\papa@stats.federal-hotel[2].txt
C:\Documents and Settings\Papa\Cookies\papa@statsweb.bnpparibas[1].txt
C:\Documents and Settings\Papa\Cookies\papa@track.effiliation[1].txt
C:\Documents and Settings\Papa\Cookies\papa@www.cdiscount[1].txt
C:\Documents and Settings\Papa\Cookies\papa@www.cibleclick[2].txt
C:\Documents and Settings\Papa\Cookies\papa@xiti[1].txt
C:\Documents and Settings\Papa\Cookies\papa@yourmedia[1].txt
Adware.Vundo/Variant-MSFake
C:\PROGRAM FILES\NAVILOG1\REG.EXE
SUPERAntiSpyware Scan Log
https://www.superantispyware.com/
Generated 03/26/2009 at 04:23 PM
Application Version : 4.25.1014
Core Rules Database Version : 3815
Trace Rules Database Version: 1769
Scan type : Complete Scan
Total Scan Time : 01:52:16
Memory items scanned : 528
Memory threats detected : 0
Registry items scanned : 5853
Registry threats detected : 0
File items scanned : 131235
File threats detected : 36
Adware.Tracking Cookie
C:\Documents and Settings\Nathalie\Cookies\nathalie@ad3.123multimedia[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@adopt.hbmediapro[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@adserver.aol[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@adultfriendfinder[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@adv.surinter[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@apmebf[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@asiatiquexxx.xdir[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@asxmedia[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@belnk[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@d2.advertserve[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@dist.belnk[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@frenchfriendfinder[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@indextools[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@m1.webstats4u[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@multimedia.ftpk[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@stats.desinformations[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@track.effiliation[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@tracker.affistats[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@tracking.veille-referencement[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@webtracker.sfr[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@windowsmedia[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@www.cdiscount[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@www.cibleclick[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@www.gay-porno[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@www.sexyavenue[2].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@www.taxiporno[1].txt
C:\Documents and Settings\Nathalie\Cookies\nathalie@xiti[1].txt
C:\Documents and Settings\Papa\Cookies\papa@adv.surinter[2].txt
C:\Documents and Settings\Papa\Cookies\papa@stats.federal-hotel[2].txt
C:\Documents and Settings\Papa\Cookies\papa@statsweb.bnpparibas[1].txt
C:\Documents and Settings\Papa\Cookies\papa@track.effiliation[1].txt
C:\Documents and Settings\Papa\Cookies\papa@www.cdiscount[1].txt
C:\Documents and Settings\Papa\Cookies\papa@www.cibleclick[2].txt
C:\Documents and Settings\Papa\Cookies\papa@xiti[1].txt
C:\Documents and Settings\Papa\Cookies\papa@yourmedia[1].txt
Adware.Vundo/Variant-MSFake
C:\PROGRAM FILES\NAVILOG1\REG.EXE
Ok supprime tout ce que SAS à trouvé, ensuite fait ceci :
Télécharger RemoveIT Pro
Fais un scan et poste moi le full rapport log.
A la fin du 1er scan, s'il demande de faire un scan complet dite oui et à la fin du 2ème scan, si virus trouvé cliquez sur fix pour nettoyer des virus trouvés.
Télécharger RemoveIT Pro
Fais un scan et poste moi le full rapport log.
A la fin du 1er scan, s'il demande de faire un scan complet dite oui et à la fin du 2ème scan, si virus trouvé cliquez sur fix pour nettoyer des virus trouvés.
ila trouve six virus.
je dois cliquer sur fix pour avoir le raport.
en cliquant fix ca elimine tout ou ca met en quarantaine?
il me demande si je veux tout fixer?
je dois cliquer sur fix pour avoir le raport.
en cliquant fix ca elimine tout ou ca met en quarantaine?
il me demande si je veux tout fixer?
j'ai tout fixermais j'ai ceci:
information
5 alerts have been cleaned
notes:
1.Ifsome viruses has not been cleaned please try to delete those files manually or restart your computerin Safe Mode then Scan again.
2.This version is only simple detection tool withoutadvanced cleaning techniques and preventions,For powerful protection purchase our RemoveIT Pro Entreprise tool for 15$ and get yourself protected!
(http://.incodesolutions.com)
je clique ok
et j'ai:
question
do you wish to send us your log file for further analyse and statistics?
oui ou non
mon anglais est tres limite!!!
je fais quoi?
information
5 alerts have been cleaned
notes:
1.Ifsome viruses has not been cleaned please try to delete those files manually or restart your computerin Safe Mode then Scan again.
2.This version is only simple detection tool withoutadvanced cleaning techniques and preventions,For powerful protection purchase our RemoveIT Pro Entreprise tool for 15$ and get yourself protected!
(http://.incodesolutions.com)
je clique ok
et j'ai:
question
do you wish to send us your log file for further analyse and statistics?
oui ou non
mon anglais est tres limite!!!
je fais quoi?
j'ai fini par potasser le dico.
j'espere que j'ai pas fait de betises.
pas facile !
j'ai beaucoup cherche et j'ai trouve ce log qui je crois est le bon .
!Infected gksui20.exe=;c:\windows\system32\;sys32.gksui20;fa18438d52793736a83a90d961b5f588;77824;Ok;
!Infected jre.exe=;c:\windows\;sys32.jre;51d7bb8809a4ce0c6917ba39a6209040;12288;Ok;Ok;
!Infected ocs.exe=;c:\windows\;sys32.ocs;6881359529e9a208e7d20060e2ab04df;939520;Ok;
!Infected ocs.exe=;c:\windows\;win32.unknown.random.x;6881359529e9a208e7d20060e2ab04df;939520;
!Infected wingde.dll=;c:\windows\system32\;sys32.wingde;90ce7648df6de0bd0d91f2776d2b0667;188960;Ok;
!Infected xpmsserv.exe=;c:\windows\system32\;sys32.xpmsserv;baa1f4d8769c162425054c8053b6fa4c;40960;Err;
Clsid c:\program files\superantispyware\saswinlo.dll[972edede23ac8d59aac0c09799c6f18a][356352]
Clsid C:\WINDOWS\system32\crypt32.dll[39976dad9564b336b153184268db032f][606208]
Clsid C:\WINDOWS\system32\cryptnet.dll[938488d25648d26e6bfe3e47dc2ec5e8][64512]
Clsid C:\WINDOWS\system32\cscdll.dll[6b646a601aec823032af4dc19273cfda][102912]
Clsid C:\WINDOWS\system32\sclgntfy.dll[c01c7266e73b199101651a7508364df7][22016]
Clsid c:\windows\system32\stobject.dll[9689fcc8c26c3d6afac892a6c5d1b81a][122368]
Clsid C:\WINDOWS\system32\wlnotify.dll[c664757f8243499ba6e45102af459de6][94208]
Clsid c:\windows\system32\wpdshserviceobj.dll[045e228f71c31901084b64be59093499][133632]
Proc C:\apps\ABoard\ABoard.exe[84da056c4331b17a5aafacff49c3bba3][24576]
Proc C:\apps\ABoard\AOSD.exe[66c31ec9b966a1d5ffc726a53dc1a137][69632]
Proc C:\APPS\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe[e69fc2484c3d9c648c5c275f7f8c5287][69632]
Proc C:\ATI Technologies\ATI Control Panel\atiptaxx.exe[1a354e0e24dfb2eae12133869c6345d2][335872]
Proc C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe[e1e4780c87dacc69be77da4a1b3ec692][79224]
Proc C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE[69eac89d4ebde2ad42f52058bedb71d2][97792]
Proc C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe[7fbddb77353d3eb6abf70f8122292cec][247160]
Proc C:\Program Files\Alwil Software\Avast4\ashServ.exe[6a0a14f60654df588f55160cb1b6da8d][144760]
Proc C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[a697e8a40037783358cd5a2cb5f532e0][345464]
Proc C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe[3ca72cea90df8da569d35cec89676749][17272]
Proc C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe[938593ea475e5c59421f9c01bd352826][395264]
Proc C:\Program Files\Cobian Backup 9\cbService.exe[ff0a3c9b2e203876de993d9c4bf7a842][583168]
Proc C:\Program Files\D-Tools\daemon.exe[804fbb66ec6ca862b840d173efc638a7][81920]
Proc C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe[11f714f85530a2bd134074dc30e99fca][322120]
Proc C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe[c53e07cd089a300ca2c78816e4781b61][1106944]
Proc C:\Program Files\InCode Solutions\RemoveIT Pro v4 - SE\removeit.exe[5f3e76c6be90c901c7a3058f05a5dc33][550912]
Proc C:\Program Files\Java\jre6\bin\jqs.exe[32192b4ebe8720ed8d49a455c962cb91][152984]
Proc C:\Program Files\Java\jre6\bin\jusched.exe[b98ffa8288efaabc436c30d198608345][136600]
Proc C:\Program Files\Logitech\Video\FxSvr2.exe[51b027ebfbce70e81e43c831439cd6c0][192512]
Proc C:\Program Files\Logitech\Video\LogiTray.exe[8b00a468cee0322476cac1b28d8cc03c][217088]
Proc C:\Program Files\QuickTime\qttask.exe[4e165b34780ff2d1b405f29e3fa68df2][77824]
Proc C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe[98c9d8b03a6dec5975a0e19ee2685cf5][69632]
Proc C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[63b3ff83b87afceba89ced54695da0f6][1833296]
Proc C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe[b91383c52c1f3442e06e84276cb9eaaf][1955352]
Proc C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[9ef600c64435ccfdea01c991289e76ec][1205784]
Proc C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[11afbca9eac51cf988918bffe935e6ee][1830128]
Proc C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe[c68e12e0cb9816da33d089b048c511f5][299008]
Proc C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe[8c7579c9e29fb3430ef5ac8c09a71211][139264]
Proc C:\WINDOWS\Explorer.EXE[f2317622d29f9ff0f88aeecd5f60f0dd][1037824]
Proc C:\WINDOWS\Ocs.exe[6881359529e9a208e7d20060e2ab04df][939520]
Proc C:\WINDOWS\system32\ctfmon.exe[59dc5bb82e4c8e0b3eadcfdbc44ba6e4][15360]
Proc C:\WINDOWS\system32\drivers\dcfssvc.exe[dd9cc789cc96358ae2033c0874ef7b36][188987]
Proc C:\WINDOWS\system32\lsass.exe[91e6024d6d4dcdecdb36c43ecf9bbecb][13312]
Proc C:\WINDOWS\System32\LVCOMSX.EXE[63be39acf8fd8963b01548972d7a06f0][221184]
Proc C:\WINDOWS\system32\services.exe[54cb50058851d95e56ec70d09f70857f][109056]
Proc C:\WINDOWS\system32\slserv.exe[687217654134680371ef23fafc5ec96d][45056]
Proc C:\WINDOWS\system32\spoolsv.exe[460e4ce148bd07218da0b6a3d31885a9][57856]
Proc C:\WINDOWS\system32\svchost.exe[e4bdf223cd75478bf44567b4d5c2634d][14336]
Proc C:\WINDOWS\System32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
RegRun c:\apps\aboard\aboard.exe[84da056c4331b17a5aafacff49c3bba3][24576]
RegRun c:\ati technologies\ati control panel\atiptaxx.exe[1a354e0e24dfb2eae12133869c6345d2][335872]
RegRun c:\progra~1\alwils~1\avast4\ashdisp.exe[e1e4780c87dacc69be77da4a1b3ec692][79224]
RegRun c:\program files\cegetel\c-box\wizard\quickaccess.exe[938593ea475e5c59421f9c01bd352826][395264]
RegRun c:\program files\d-tools\daemon.exe [804fbb66ec6ca862b840d173efc638a7][81920]
RegRun c:\program files\fichiers communs\pcsuite\datalayer\datalayer.exe[c53e07cd089a300ca2c78816e4781b61][1106944]
RegRun c:\program files\fichiers communs\real\update_ob\realsched.exe [a05da809ac0d86d916d09e3a908d3a06][151597]
RegRun c:\program files\fichiers communs\scansoft shared\ssbkgdupdate\ssbkgdupdate.exe [1c3ca3e7807f915933bb4e08e599ddab][155648]
RegRun c:\program files\java\jre6\bin\jusched.exe[b98ffa8288efaabc436c30d198608345][136600]
RegRun c:\program files\logitech\video\isstart.exe [bb2e1e3d635e05cc7ae2ca9f167f2f41][458752]
RegRun c:\program files\logitech\video\logitray.exe[8b00a468cee0322476cac1b28d8cc03c][217088]
RegRun c:\program files\nokia\nokia pc suite 6\launchapplication.exe [c26c12989e5c76440df928605037cc30][167936]
RegRun c:\program files\quicktime\qttask.exe [4e165b34780ff2d1b405f29e3fa68df2][77824]
RegRun c:\program files\scansoft\omnipagese4.0\opwarese4.exe[98c9d8b03a6dec5975a0e19ee2685cf5][69632]
RegRun c:\program files\spybot - search & destroy\teatimer.exe[63b3ff83b87afceba89ced54695da0f6][1833296]
RegRun c:\program files\superantispyware\superantispyware.exe[11afbca9eac51cf988918bffe935e6ee][1830128]
RegRun c:\program files\virtual cd v4 sdk\system\vcsplay.exe[c68e12e0cb9816da33d089b048c511f5][299008]
RegRun c:\windows\ocs.exe[6881359529e9a208e7d20060e2ab04df][939520]
RegRun C:\WINDOWS\system32\ati2mdxx.exe[fae95d6d7651b5629c4e19adbc9a3863][28672]
RegRun c:\windows\system32\ctfmon.exe[59dc5bb82e4c8e0b3eadcfdbc44ba6e4][15360]
RegRun c:\windows\system32\lvcomsx.exe[63be39acf8fd8963b01548972d7a06f0][221184]
Service c:\program files\alwil software\avast4\ashmaisv.exe [7fbddb77353d3eb6abf70f8122292cec][247160]
Service c:\program files\alwil software\avast4\ashserv.exe[6a0a14f60654df588f55160cb1b6da8d][144760]
Service c:\program files\alwil software\avast4\ashwebsv.exe [a697e8a40037783358cd5a2cb5f532e0][345464]
Service c:\program files\alwil software\avast4\aswupdsv.exe[3ca72cea90df8da569d35cec89676749][17272]
Service c:\program files\cobian backup 9\cbservice.exe[ff0a3c9b2e203876de993d9c4bf7a842][583168]
Service c:\program files\fichiers communs\microsoft shared\source engine\ose.exe[7a56cf3e3f12e8af599963b16f50fb6a][89136]
Service c:\program files\fichiers communs\microsoft shared\vs7debug\mdm.exe[11f714f85530a2bd134074dc30e99fca][322120]
Service c:\program files\google\common\google updater\googleupdaterservice.exe[751c1d2ca2abf4a9f5a6b8d7d45b907c][138168]
Service c:\program files\java\jre6\bin\jqs.exe [32192b4ebe8720ed8d49a455c962cb91][152984]
Service c:\program files\msn messenger\usnsvc.exe[c5b70a6aa947667ce0e5fc84a05ec8b6][97136]
Service c:\program files\sunbelt software\personal firewall\kpf4ss.exe[9ef600c64435ccfdea01c991289e76ec][1205784]
Service c:\program files\virtual cd v4 sdk\system\vcssecs.exe[8c7579c9e29fb3430ef5ac8c09a71211][139264]
Service c:\program files\windows media player\wmpnetwk.exe[c9bea742ce225cc993c9465fddae4656][918016]
Service c:\windows\system32\alg.exe[5e9a6658a2a69ae7eb195113b7a2e7a9][44544]
Service c:\windows\system32\ati2sgag.exe[398463076210be7686893eeec687a233][114688]
Service c:\windows\system32\cisvc.exe[793ef38a5fd086c3c8e48a8a861562ed][5632]
Service c:\windows\system32\clipsrv.exe[8b30cbb0c07d49b2658fb190946b0e7e][33280]
Service c:\windows\system32\dllhost.exe [0dad93bb0fecf5016ae3c06cbb0a873b][5120]
Service c:\windows\system32\dmadmin.exe [ead2b8aaeb16e538106d295cd7bd7a48][225280]
Service c:\windows\system32\drivers\dcfssvc.exe[dd9cc789cc96358ae2033c0874ef7b36][188987]
Service c:\windows\system32\imapi.exe[c4221678bbaa55239c23632875759961][150528]
Service c:\windows\system32\locator.exe[499c59a2584f6d4ea41e944da571d993][75264]
Service c:\windows\system32\lsass.exe[91e6024d6d4dcdecdb36c43ecf9bbecb][13312]
Service c:\windows\system32\mnmsrvc.exe[d3a2870cd96cda7bcff3dc54f64087ad][32768]
Service c:\windows\system32\msdtc.exe[8648d670ae0d95c95e7bbb5b80661796][6144]
Service c:\windows\system32\msiexec.exe [0411f7ee63ae48d2918ab4f2c79ab6c4][78848]
Service c:\windows\system32\netdde.exe[5c9b1d83755b36237b70f95df3d46a52][114176]
Service c:\windows\system32\rsvp.exe[414964844f4793acb868d057e8ed997e][132608]
Service c:\windows\system32\scardsvr.exe[67949cc8a865296c1333c96a4e1a2d66][100352]
Service c:\windows\system32\services.exe[54cb50058851d95e56ec70d09f70857f][109056]
Service c:\windows\system32\sessmgr.exe[9f63d9c5b238ed1c375d417eff3d5be7][142848]
Service C:\WINDOWS\system32\slserv.exe[687217654134680371ef23fafc5ec96d][45056]
Service c:\windows\system32\smlogsvc.exe[0899061318a6b1d9596aabfc77f45e44][93184]
Service c:\windows\system32\spoolsv.exe[460e4ce148bd07218da0b6a3d31885a9][57856]
Service c:\windows\system32\svchost.exe [e4bdf223cd75478bf44567b4d5c2634d][14336]
Service c:\windows\system32\ups.exe[1edc93d7bd731b5ca6248ae245099b60][18432]
Service c:\windows\system32\vssvc.exe[5a4da252b2c0550ab83d129c02cf6c19][295424]
Service c:\windows\system32\wbem\wmiapsrv.exe[4e8e8a58f56b25d0795f484e5eb7f898][126464]
Service c:\windows\system32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
Startup c:\apps\ulead systems\ulead photo express 4.0 se\calcheck.exe[e69fc2484c3d9c648c5c275f7f8c5287][69632]
Startup c:\documents and settings\all users\menu démarrer\programmes\démarrage\desktop.ini[d6a6856702e3f0953e7246a9b4a9fe35][84]
Startup c:\documents and settings\nadine\menu démarrer\programmes\démarrage\desktop.ini[d6a6856702e3f0953e7246a9b4a9fe35][84]
Startup c:\program files\fichiers communs\adobe\calibration\adobe gamma loader.exe[c2ff17734176cd15221c10044ef0ba1a][113664]
System.ini c:\windows\system32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
Merci et bonne nuit!
j'espere que j'ai pas fait de betises.
pas facile !
j'ai beaucoup cherche et j'ai trouve ce log qui je crois est le bon .
!Infected gksui20.exe=;c:\windows\system32\;sys32.gksui20;fa18438d52793736a83a90d961b5f588;77824;Ok;
!Infected jre.exe=;c:\windows\;sys32.jre;51d7bb8809a4ce0c6917ba39a6209040;12288;Ok;Ok;
!Infected ocs.exe=;c:\windows\;sys32.ocs;6881359529e9a208e7d20060e2ab04df;939520;Ok;
!Infected ocs.exe=;c:\windows\;win32.unknown.random.x;6881359529e9a208e7d20060e2ab04df;939520;
!Infected wingde.dll=;c:\windows\system32\;sys32.wingde;90ce7648df6de0bd0d91f2776d2b0667;188960;Ok;
!Infected xpmsserv.exe=;c:\windows\system32\;sys32.xpmsserv;baa1f4d8769c162425054c8053b6fa4c;40960;Err;
Clsid c:\program files\superantispyware\saswinlo.dll[972edede23ac8d59aac0c09799c6f18a][356352]
Clsid C:\WINDOWS\system32\crypt32.dll[39976dad9564b336b153184268db032f][606208]
Clsid C:\WINDOWS\system32\cryptnet.dll[938488d25648d26e6bfe3e47dc2ec5e8][64512]
Clsid C:\WINDOWS\system32\cscdll.dll[6b646a601aec823032af4dc19273cfda][102912]
Clsid C:\WINDOWS\system32\sclgntfy.dll[c01c7266e73b199101651a7508364df7][22016]
Clsid c:\windows\system32\stobject.dll[9689fcc8c26c3d6afac892a6c5d1b81a][122368]
Clsid C:\WINDOWS\system32\wlnotify.dll[c664757f8243499ba6e45102af459de6][94208]
Clsid c:\windows\system32\wpdshserviceobj.dll[045e228f71c31901084b64be59093499][133632]
Proc C:\apps\ABoard\ABoard.exe[84da056c4331b17a5aafacff49c3bba3][24576]
Proc C:\apps\ABoard\AOSD.exe[66c31ec9b966a1d5ffc726a53dc1a137][69632]
Proc C:\APPS\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe[e69fc2484c3d9c648c5c275f7f8c5287][69632]
Proc C:\ATI Technologies\ATI Control Panel\atiptaxx.exe[1a354e0e24dfb2eae12133869c6345d2][335872]
Proc C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe[e1e4780c87dacc69be77da4a1b3ec692][79224]
Proc C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE[69eac89d4ebde2ad42f52058bedb71d2][97792]
Proc C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe[7fbddb77353d3eb6abf70f8122292cec][247160]
Proc C:\Program Files\Alwil Software\Avast4\ashServ.exe[6a0a14f60654df588f55160cb1b6da8d][144760]
Proc C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[a697e8a40037783358cd5a2cb5f532e0][345464]
Proc C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe[3ca72cea90df8da569d35cec89676749][17272]
Proc C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe[938593ea475e5c59421f9c01bd352826][395264]
Proc C:\Program Files\Cobian Backup 9\cbService.exe[ff0a3c9b2e203876de993d9c4bf7a842][583168]
Proc C:\Program Files\D-Tools\daemon.exe[804fbb66ec6ca862b840d173efc638a7][81920]
Proc C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe[11f714f85530a2bd134074dc30e99fca][322120]
Proc C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe[c53e07cd089a300ca2c78816e4781b61][1106944]
Proc C:\Program Files\InCode Solutions\RemoveIT Pro v4 - SE\removeit.exe[5f3e76c6be90c901c7a3058f05a5dc33][550912]
Proc C:\Program Files\Java\jre6\bin\jqs.exe[32192b4ebe8720ed8d49a455c962cb91][152984]
Proc C:\Program Files\Java\jre6\bin\jusched.exe[b98ffa8288efaabc436c30d198608345][136600]
Proc C:\Program Files\Logitech\Video\FxSvr2.exe[51b027ebfbce70e81e43c831439cd6c0][192512]
Proc C:\Program Files\Logitech\Video\LogiTray.exe[8b00a468cee0322476cac1b28d8cc03c][217088]
Proc C:\Program Files\QuickTime\qttask.exe[4e165b34780ff2d1b405f29e3fa68df2][77824]
Proc C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe[98c9d8b03a6dec5975a0e19ee2685cf5][69632]
Proc C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[63b3ff83b87afceba89ced54695da0f6][1833296]
Proc C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe[b91383c52c1f3442e06e84276cb9eaaf][1955352]
Proc C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[9ef600c64435ccfdea01c991289e76ec][1205784]
Proc C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[11afbca9eac51cf988918bffe935e6ee][1830128]
Proc C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe[c68e12e0cb9816da33d089b048c511f5][299008]
Proc C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe[8c7579c9e29fb3430ef5ac8c09a71211][139264]
Proc C:\WINDOWS\Explorer.EXE[f2317622d29f9ff0f88aeecd5f60f0dd][1037824]
Proc C:\WINDOWS\Ocs.exe[6881359529e9a208e7d20060e2ab04df][939520]
Proc C:\WINDOWS\system32\ctfmon.exe[59dc5bb82e4c8e0b3eadcfdbc44ba6e4][15360]
Proc C:\WINDOWS\system32\drivers\dcfssvc.exe[dd9cc789cc96358ae2033c0874ef7b36][188987]
Proc C:\WINDOWS\system32\lsass.exe[91e6024d6d4dcdecdb36c43ecf9bbecb][13312]
Proc C:\WINDOWS\System32\LVCOMSX.EXE[63be39acf8fd8963b01548972d7a06f0][221184]
Proc C:\WINDOWS\system32\services.exe[54cb50058851d95e56ec70d09f70857f][109056]
Proc C:\WINDOWS\system32\slserv.exe[687217654134680371ef23fafc5ec96d][45056]
Proc C:\WINDOWS\system32\spoolsv.exe[460e4ce148bd07218da0b6a3d31885a9][57856]
Proc C:\WINDOWS\system32\svchost.exe[e4bdf223cd75478bf44567b4d5c2634d][14336]
Proc C:\WINDOWS\System32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
RegRun c:\apps\aboard\aboard.exe[84da056c4331b17a5aafacff49c3bba3][24576]
RegRun c:\ati technologies\ati control panel\atiptaxx.exe[1a354e0e24dfb2eae12133869c6345d2][335872]
RegRun c:\progra~1\alwils~1\avast4\ashdisp.exe[e1e4780c87dacc69be77da4a1b3ec692][79224]
RegRun c:\program files\cegetel\c-box\wizard\quickaccess.exe[938593ea475e5c59421f9c01bd352826][395264]
RegRun c:\program files\d-tools\daemon.exe [804fbb66ec6ca862b840d173efc638a7][81920]
RegRun c:\program files\fichiers communs\pcsuite\datalayer\datalayer.exe[c53e07cd089a300ca2c78816e4781b61][1106944]
RegRun c:\program files\fichiers communs\real\update_ob\realsched.exe [a05da809ac0d86d916d09e3a908d3a06][151597]
RegRun c:\program files\fichiers communs\scansoft shared\ssbkgdupdate\ssbkgdupdate.exe [1c3ca3e7807f915933bb4e08e599ddab][155648]
RegRun c:\program files\java\jre6\bin\jusched.exe[b98ffa8288efaabc436c30d198608345][136600]
RegRun c:\program files\logitech\video\isstart.exe [bb2e1e3d635e05cc7ae2ca9f167f2f41][458752]
RegRun c:\program files\logitech\video\logitray.exe[8b00a468cee0322476cac1b28d8cc03c][217088]
RegRun c:\program files\nokia\nokia pc suite 6\launchapplication.exe [c26c12989e5c76440df928605037cc30][167936]
RegRun c:\program files\quicktime\qttask.exe [4e165b34780ff2d1b405f29e3fa68df2][77824]
RegRun c:\program files\scansoft\omnipagese4.0\opwarese4.exe[98c9d8b03a6dec5975a0e19ee2685cf5][69632]
RegRun c:\program files\spybot - search & destroy\teatimer.exe[63b3ff83b87afceba89ced54695da0f6][1833296]
RegRun c:\program files\superantispyware\superantispyware.exe[11afbca9eac51cf988918bffe935e6ee][1830128]
RegRun c:\program files\virtual cd v4 sdk\system\vcsplay.exe[c68e12e0cb9816da33d089b048c511f5][299008]
RegRun c:\windows\ocs.exe[6881359529e9a208e7d20060e2ab04df][939520]
RegRun C:\WINDOWS\system32\ati2mdxx.exe[fae95d6d7651b5629c4e19adbc9a3863][28672]
RegRun c:\windows\system32\ctfmon.exe[59dc5bb82e4c8e0b3eadcfdbc44ba6e4][15360]
RegRun c:\windows\system32\lvcomsx.exe[63be39acf8fd8963b01548972d7a06f0][221184]
Service c:\program files\alwil software\avast4\ashmaisv.exe [7fbddb77353d3eb6abf70f8122292cec][247160]
Service c:\program files\alwil software\avast4\ashserv.exe[6a0a14f60654df588f55160cb1b6da8d][144760]
Service c:\program files\alwil software\avast4\ashwebsv.exe [a697e8a40037783358cd5a2cb5f532e0][345464]
Service c:\program files\alwil software\avast4\aswupdsv.exe[3ca72cea90df8da569d35cec89676749][17272]
Service c:\program files\cobian backup 9\cbservice.exe[ff0a3c9b2e203876de993d9c4bf7a842][583168]
Service c:\program files\fichiers communs\microsoft shared\source engine\ose.exe[7a56cf3e3f12e8af599963b16f50fb6a][89136]
Service c:\program files\fichiers communs\microsoft shared\vs7debug\mdm.exe[11f714f85530a2bd134074dc30e99fca][322120]
Service c:\program files\google\common\google updater\googleupdaterservice.exe[751c1d2ca2abf4a9f5a6b8d7d45b907c][138168]
Service c:\program files\java\jre6\bin\jqs.exe [32192b4ebe8720ed8d49a455c962cb91][152984]
Service c:\program files\msn messenger\usnsvc.exe[c5b70a6aa947667ce0e5fc84a05ec8b6][97136]
Service c:\program files\sunbelt software\personal firewall\kpf4ss.exe[9ef600c64435ccfdea01c991289e76ec][1205784]
Service c:\program files\virtual cd v4 sdk\system\vcssecs.exe[8c7579c9e29fb3430ef5ac8c09a71211][139264]
Service c:\program files\windows media player\wmpnetwk.exe[c9bea742ce225cc993c9465fddae4656][918016]
Service c:\windows\system32\alg.exe[5e9a6658a2a69ae7eb195113b7a2e7a9][44544]
Service c:\windows\system32\ati2sgag.exe[398463076210be7686893eeec687a233][114688]
Service c:\windows\system32\cisvc.exe[793ef38a5fd086c3c8e48a8a861562ed][5632]
Service c:\windows\system32\clipsrv.exe[8b30cbb0c07d49b2658fb190946b0e7e][33280]
Service c:\windows\system32\dllhost.exe [0dad93bb0fecf5016ae3c06cbb0a873b][5120]
Service c:\windows\system32\dmadmin.exe [ead2b8aaeb16e538106d295cd7bd7a48][225280]
Service c:\windows\system32\drivers\dcfssvc.exe[dd9cc789cc96358ae2033c0874ef7b36][188987]
Service c:\windows\system32\imapi.exe[c4221678bbaa55239c23632875759961][150528]
Service c:\windows\system32\locator.exe[499c59a2584f6d4ea41e944da571d993][75264]
Service c:\windows\system32\lsass.exe[91e6024d6d4dcdecdb36c43ecf9bbecb][13312]
Service c:\windows\system32\mnmsrvc.exe[d3a2870cd96cda7bcff3dc54f64087ad][32768]
Service c:\windows\system32\msdtc.exe[8648d670ae0d95c95e7bbb5b80661796][6144]
Service c:\windows\system32\msiexec.exe [0411f7ee63ae48d2918ab4f2c79ab6c4][78848]
Service c:\windows\system32\netdde.exe[5c9b1d83755b36237b70f95df3d46a52][114176]
Service c:\windows\system32\rsvp.exe[414964844f4793acb868d057e8ed997e][132608]
Service c:\windows\system32\scardsvr.exe[67949cc8a865296c1333c96a4e1a2d66][100352]
Service c:\windows\system32\services.exe[54cb50058851d95e56ec70d09f70857f][109056]
Service c:\windows\system32\sessmgr.exe[9f63d9c5b238ed1c375d417eff3d5be7][142848]
Service C:\WINDOWS\system32\slserv.exe[687217654134680371ef23fafc5ec96d][45056]
Service c:\windows\system32\smlogsvc.exe[0899061318a6b1d9596aabfc77f45e44][93184]
Service c:\windows\system32\spoolsv.exe[460e4ce148bd07218da0b6a3d31885a9][57856]
Service c:\windows\system32\svchost.exe [e4bdf223cd75478bf44567b4d5c2634d][14336]
Service c:\windows\system32\ups.exe[1edc93d7bd731b5ca6248ae245099b60][18432]
Service c:\windows\system32\vssvc.exe[5a4da252b2c0550ab83d129c02cf6c19][295424]
Service c:\windows\system32\wbem\wmiapsrv.exe[4e8e8a58f56b25d0795f484e5eb7f898][126464]
Service c:\windows\system32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
Startup c:\apps\ulead systems\ulead photo express 4.0 se\calcheck.exe[e69fc2484c3d9c648c5c275f7f8c5287][69632]
Startup c:\documents and settings\all users\menu démarrer\programmes\démarrage\desktop.ini[d6a6856702e3f0953e7246a9b4a9fe35][84]
Startup c:\documents and settings\nadine\menu démarrer\programmes\démarrage\desktop.ini[d6a6856702e3f0953e7246a9b4a9fe35][84]
Startup c:\program files\fichiers communs\adobe\calibration\adobe gamma loader.exe[c2ff17734176cd15221c10044ef0ba1a][113664]
System.ini c:\windows\system32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
Merci et bonne nuit!
Pour les virus ce dessous il te dit ceci :
!Infected gksui20.exe=;c:\windows\system32\;sys32.gksui20;fa18438d52793736a83a90d961b5f588;77824;Ok;
!Infected jre.exe=;c:\windows\;sys32.jre;51d7bb8809a4ce0c6917ba39a6209040;12288;Ok;Ok;
!Infected ocs.exe=;c:\windows\;sys32.ocs;6881359529e9a208e7d20060e2ab04df;939520;Ok;
!Infected ocs.exe=;c:\windows\;win32.unknown.random.x;6881359529e9a208e7d20060e2ab04df;939520;
!Infected wingde.dll=;c:\windows\system32\;sys32.wingde;90ce7648df6de0bd0d91f2776d2b0667;188960;Ok;
!Infected xpmsserv.exe=;c:\windows\system32\;sys32.xpmsserv;baa1f4d8769c162425054c8053b6fa4c;40960;Err;
delete those files manually or restart your computerin Safe Mode then Scan again.
Ce qui veut dire soit tu les supprime manuellement ou alors tu refait un scan en mode sans échec pour les éliminer.
!Infected gksui20.exe=;c:\windows\system32\;sys32.gksui20;fa18438d52793736a83a90d961b5f588;77824;Ok;
!Infected jre.exe=;c:\windows\;sys32.jre;51d7bb8809a4ce0c6917ba39a6209040;12288;Ok;Ok;
!Infected ocs.exe=;c:\windows\;sys32.ocs;6881359529e9a208e7d20060e2ab04df;939520;Ok;
!Infected ocs.exe=;c:\windows\;win32.unknown.random.x;6881359529e9a208e7d20060e2ab04df;939520;
!Infected wingde.dll=;c:\windows\system32\;sys32.wingde;90ce7648df6de0bd0d91f2776d2b0667;188960;Ok;
!Infected xpmsserv.exe=;c:\windows\system32\;sys32.xpmsserv;baa1f4d8769c162425054c8053b6fa4c;40960;Err;
delete those files manually or restart your computerin Safe Mode then Scan again.
Ce qui veut dire soit tu les supprime manuellement ou alors tu refait un scan en mode sans échec pour les éliminer.
bonjour
pour les cinq premiers virus je trouve pas manuellement mais j'avais cru comprendre que removeiT les avaient fixer donc elimine.
or pour
c:\windows\system32\;sys32.xpmsserv je trouve:
c:\windows\system32\.xpmsserv .exe et c'est une aplication la depuis 25/04/2004.
dois je suprimer?
c'est sans risque?
je fais plutot un scan en mode sans echec?
Merci pour la patience!
pour les cinq premiers virus je trouve pas manuellement mais j'avais cru comprendre que removeiT les avaient fixer donc elimine.
or pour
c:\windows\system32\;sys32.xpmsserv je trouve:
c:\windows\system32\.xpmsserv .exe et c'est une aplication la depuis 25/04/2004.
dois je suprimer?
c'est sans risque?
je fais plutot un scan en mode sans echec?
Merci pour la patience!
marche pas en mode sans echec.
marque probleme et veux que j'envoie le raport je met non et ca mets:
Exception ESockError.in module removeit.exe.at.00B796F.10093
Successfuul WSAStartup not yet performed.
pour moi du chinois!
j'ai refait le scan en normal et en effet plus que Sys32.xpmsserv.
j'ai d'abord essaye de mettre en quarantaine mais pas possible j'ai mis fix mais il peux pas eliminer il dit de le faire a la main d'apres ce que j'ai compris.
quand j'ai demande le raport il disait qu'il pouvait pas mais j'ai trouve ca:
!Infected xpmsserv.exe=;c:\windows\system32\;sys32.xpmsserv;baa1f4d8769c162425054c8053b6fa4c;40960;Err;
Clsid c:\program files\superantispyware\saswinlo.dll[972edede23ac8d59aac0c09799c6f18a][356352]
Clsid C:\WINDOWS\system32\crypt32.dll[39976dad9564b336b153184268db032f][606208]
Clsid C:\WINDOWS\system32\cryptnet.dll[938488d25648d26e6bfe3e47dc2ec5e8][64512]
Clsid C:\WINDOWS\system32\cscdll.dll[6b646a601aec823032af4dc19273cfda][102912]
Clsid C:\WINDOWS\system32\sclgntfy.dll[c01c7266e73b199101651a7508364df7][22016]
Clsid c:\windows\system32\stobject.dll[9689fcc8c26c3d6afac892a6c5d1b81a][122368]
Clsid C:\WINDOWS\system32\wlnotify.dll[c664757f8243499ba6e45102af459de6][94208]
Clsid c:\windows\system32\wpdshserviceobj.dll[045e228f71c31901084b64be59093499][133632]
Proc C:\apps\ABoard\ABoard.exe[84da056c4331b17a5aafacff49c3bba3][24576]
Proc C:\apps\ABoard\AOSD.exe[66c31ec9b966a1d5ffc726a53dc1a137][69632]
Proc C:\APPS\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe[e69fc2484c3d9c648c5c275f7f8c5287][69632]
Proc C:\ATI Technologies\ATI Control Panel\atiptaxx.exe[1a354e0e24dfb2eae12133869c6345d2][335872]
Proc C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe[e1e4780c87dacc69be77da4a1b3ec692][79224]
Proc C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE[69eac89d4ebde2ad42f52058bedb71d2][97792]
Proc C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe[7fbddb77353d3eb6abf70f8122292cec][247160]
Proc C:\Program Files\Alwil Software\Avast4\ashServ.exe[6a0a14f60654df588f55160cb1b6da8d][144760]
Proc C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[a697e8a40037783358cd5a2cb5f532e0][345464]
Proc C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe[3ca72cea90df8da569d35cec89676749][17272]
Proc C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe[938593ea475e5c59421f9c01bd352826][395264]
Proc C:\Program Files\Cobian Backup 9\cbService.exe[ff0a3c9b2e203876de993d9c4bf7a842][583168]
Proc C:\Program Files\D-Tools\daemon.exe[804fbb66ec6ca862b840d173efc638a7][81920]
Proc C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe[11f714f85530a2bd134074dc30e99fca][322120]
Proc C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe[c53e07cd089a300ca2c78816e4781b61][1106944]
Proc C:\Program Files\InCode Solutions\RemoveIT Pro v4 - SE\removeit.exe[5f3e76c6be90c901c7a3058f05a5dc33][550912]
Proc C:\Program Files\Java\jre6\bin\jqs.exe[32192b4ebe8720ed8d49a455c962cb91][152984]
Proc C:\Program Files\Java\jre6\bin\jusched.exe[b98ffa8288efaabc436c30d198608345][136600]
Proc C:\Program Files\Logitech\Video\FxSvr2.exe[51b027ebfbce70e81e43c831439cd6c0][192512]
Proc C:\Program Files\Logitech\Video\LogiTray.exe[8b00a468cee0322476cac1b28d8cc03c][217088]
Proc C:\Program Files\QuickTime\qttask.exe[4e165b34780ff2d1b405f29e3fa68df2][77824]
Proc C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe[98c9d8b03a6dec5975a0e19ee2685cf5][69632]
Proc C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[63b3ff83b87afceba89ced54695da0f6][1833296]
Proc C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe[b91383c52c1f3442e06e84276cb9eaaf][1955352]
Proc C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[9ef600c64435ccfdea01c991289e76ec][1205784]
Proc C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[11afbca9eac51cf988918bffe935e6ee][1830128]
Proc C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe[c68e12e0cb9816da33d089b048c511f5][299008]
Proc C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe[8c7579c9e29fb3430ef5ac8c09a71211][139264]
Proc C:\WINDOWS\Explorer.EXE[f2317622d29f9ff0f88aeecd5f60f0dd][1037824]
Proc C:\WINDOWS\system32\ctfmon.exe[59dc5bb82e4c8e0b3eadcfdbc44ba6e4][15360]
Proc C:\WINDOWS\system32\drivers\dcfssvc.exe[dd9cc789cc96358ae2033c0874ef7b36][188987]
Proc C:\WINDOWS\system32\lsass.exe[91e6024d6d4dcdecdb36c43ecf9bbecb][13312]
Proc C:\WINDOWS\System32\LVCOMSX.EXE[63be39acf8fd8963b01548972d7a06f0][221184]
Proc C:\WINDOWS\system32\services.exe[54cb50058851d95e56ec70d09f70857f][109056]
Proc C:\WINDOWS\system32\slserv.exe[687217654134680371ef23fafc5ec96d][45056]
Proc C:\WINDOWS\system32\spoolsv.exe[460e4ce148bd07218da0b6a3d31885a9][57856]
Proc C:\WINDOWS\system32\svchost.exe[e4bdf223cd75478bf44567b4d5c2634d][14336]
Proc C:\WINDOWS\system32\wuauclt.exe[e654b78d2f1d791b30d0ed9a8195ec22][51224]
Proc C:\WINDOWS\System32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
RegRun c:\apps\aboard\aboard.exe[84da056c4331b17a5aafacff49c3bba3][24576]
RegRun c:\ati technologies\ati control panel\atiptaxx.exe[1a354e0e24dfb2eae12133869c6345d2][335872]
RegRun c:\progra~1\alwils~1\avast4\ashdisp.exe[e1e4780c87dacc69be77da4a1b3ec692][79224]
RegRun c:\program files\cegetel\c-box\wizard\quickaccess.exe[938593ea475e5c59421f9c01bd352826][395264]
RegRun c:\program files\d-tools\daemon.exe [804fbb66ec6ca862b840d173efc638a7][81920]
RegRun c:\program files\fichiers communs\pcsuite\datalayer\datalayer.exe[c53e07cd089a300ca2c78816e4781b61][1106944]
RegRun c:\program files\fichiers communs\real\update_ob\realsched.exe [a05da809ac0d86d916d09e3a908d3a06][151597]
RegRun c:\program files\fichiers communs\scansoft shared\ssbkgdupdate\ssbkgdupdate.exe [1c3ca3e7807f915933bb4e08e599ddab][155648]
RegRun c:\program files\java\jre6\bin\jusched.exe[b98ffa8288efaabc436c30d198608345][136600]
RegRun c:\program files\logitech\video\isstart.exe [bb2e1e3d635e05cc7ae2ca9f167f2f41][458752]
RegRun c:\program files\logitech\video\logitray.exe[8b00a468cee0322476cac1b28d8cc03c][217088]
RegRun c:\program files\nokia\nokia pc suite 6\launchapplication.exe [c26c12989e5c76440df928605037cc30][167936]
RegRun c:\program files\quicktime\qttask.exe [4e165b34780ff2d1b405f29e3fa68df2][77824]
RegRun c:\program files\scansoft\omnipagese4.0\opwarese4.exe[98c9d8b03a6dec5975a0e19ee2685cf5][69632]
RegRun c:\program files\spybot - search & destroy\teatimer.exe[63b3ff83b87afceba89ced54695da0f6][1833296]
RegRun c:\program files\superantispyware\superantispyware.exe[11afbca9eac51cf988918bffe935e6ee][1830128]
RegRun c:\program files\virtual cd v4 sdk\system\vcsplay.exe[c68e12e0cb9816da33d089b048c511f5][299008]
RegRun C:\WINDOWS\system32\ati2mdxx.exe[fae95d6d7651b5629c4e19adbc9a3863][28672]
RegRun c:\windows\system32\ctfmon.exe[59dc5bb82e4c8e0b3eadcfdbc44ba6e4][15360]
RegRun c:\windows\system32\lvcomsx.exe[63be39acf8fd8963b01548972d7a06f0][221184]
Service c:\program files\alwil software\avast4\ashmaisv.exe [7fbddb77353d3eb6abf70f8122292cec][247160]
Service c:\program files\alwil software\avast4\ashserv.exe[6a0a14f60654df588f55160cb1b6da8d][144760]
Service c:\program files\alwil software\avast4\ashwebsv.exe [a697e8a40037783358cd5a2cb5f532e0][345464]
Service c:\program files\alwil software\avast4\aswupdsv.exe[3ca72cea90df8da569d35cec89676749][17272]
Service c:\program files\cobian backup 9\cbservice.exe[ff0a3c9b2e203876de993d9c4bf7a842][583168]
Service c:\program files\fichiers communs\microsoft shared\source engine\ose.exe[7a56cf3e3f12e8af599963b16f50fb6a][89136]
Service c:\program files\fichiers communs\microsoft shared\vs7debug\mdm.exe[11f714f85530a2bd134074dc30e99fca][322120]
Service c:\program files\google\common\google updater\googleupdaterservice.exe[751c1d2ca2abf4a9f5a6b8d7d45b907c][138168]
Service c:\program files\java\jre6\bin\jqs.exe [32192b4ebe8720ed8d49a455c962cb91][152984]
Service c:\program files\msn messenger\usnsvc.exe[c5b70a6aa947667ce0e5fc84a05ec8b6][97136]
Service c:\program files\sunbelt software\personal firewall\kpf4ss.exe[9ef600c64435ccfdea01c991289e76ec][1205784]
Service c:\program files\virtual cd v4 sdk\system\vcssecs.exe[8c7579c9e29fb3430ef5ac8c09a71211][139264]
Service c:\program files\windows media player\wmpnetwk.exe[c9bea742ce225cc993c9465fddae4656][918016]
Service c:\windows\system32\alg.exe[5e9a6658a2a69ae7eb195113b7a2e7a9][44544]
Service c:\windows\system32\ati2sgag.exe[398463076210be7686893eeec687a233][114688]
Service c:\windows\system32\cisvc.exe[793ef38a5fd086c3c8e48a8a861562ed][5632]
Service c:\windows\system32\clipsrv.exe[8b30cbb0c07d49b2658fb190946b0e7e][33280]
Service c:\windows\system32\dllhost.exe [0dad93bb0fecf5016ae3c06cbb0a873b][5120]
Service c:\windows\system32\dmadmin.exe [ead2b8aaeb16e538106d295cd7bd7a48][225280]
Service c:\windows\system32\drivers\dcfssvc.exe[dd9cc789cc96358ae2033c0874ef7b36][188987]
Service c:\windows\system32\imapi.exe[c4221678bbaa55239c23632875759961][150528]
Service c:\windows\system32\locator.exe[499c59a2584f6d4ea41e944da571d993][75264]
Service c:\windows\system32\lsass.exe[91e6024d6d4dcdecdb36c43ecf9bbecb][13312]
Service c:\windows\system32\mnmsrvc.exe[d3a2870cd96cda7bcff3dc54f64087ad][32768]
Service c:\windows\system32\msdtc.exe[8648d670ae0d95c95e7bbb5b80661796][6144]
Service c:\windows\system32\msiexec.exe [0411f7ee63ae48d2918ab4f2c79ab6c4][78848]
Service c:\windows\system32\netdde.exe[5c9b1d83755b36237b70f95df3d46a52][114176]
Service c:\windows\system32\rsvp.exe[414964844f4793acb868d057e8ed997e][132608]
Service c:\windows\system32\scardsvr.exe[67949cc8a865296c1333c96a4e1a2d66][100352]
Service c:\windows\system32\services.exe[54cb50058851d95e56ec70d09f70857f][109056]
Service c:\windows\system32\sessmgr.exe[9f63d9c5b238ed1c375d417eff3d5be7][142848]
Service C:\WINDOWS\system32\slserv.exe[687217654134680371ef23fafc5ec96d][45056]
Service c:\windows\system32\smlogsvc.exe[0899061318a6b1d9596aabfc77f45e44][93184]
Service c:\windows\system32\spoolsv.exe[460e4ce148bd07218da0b6a3d31885a9][57856]
Service c:\windows\system32\svchost.exe [e4bdf223cd75478bf44567b4d5c2634d][14336]
Service c:\windows\system32\ups.exe[1edc93d7bd731b5ca6248ae245099b60][18432]
Service c:\windows\system32\vssvc.exe[5a4da252b2c0550ab83d129c02cf6c19][295424]
Service c:\windows\system32\wbem\wmiapsrv.exe[4e8e8a58f56b25d0795f484e5eb7f898][126464]
Service c:\windows\system32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
Startup c:\apps\ulead systems\ulead photo express 4.0 se\calcheck.exe[e69fc2484c3d9c648c5c275f7f8c5287][69632]
Startup c:\documents and settings\all users\menu démarrer\programmes\démarrage\desktop.ini[d6a6856702e3f0953e7246a9b4a9fe35][84]
Startup c:\documents and settings\nadine\menu démarrer\programmes\démarrage\desktop.ini[d6a6856702e3f0953e7246a9b4a9fe35][84]
Startup c:\program files\fichiers communs\adobe\calibration\adobe gamma loader.exe[c2ff17734176cd15221c10044ef0ba1a][113664]
System.ini c:\windows\system32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
marque probleme et veux que j'envoie le raport je met non et ca mets:
Exception ESockError.in module removeit.exe.at.00B796F.10093
Successfuul WSAStartup not yet performed.
pour moi du chinois!
j'ai refait le scan en normal et en effet plus que Sys32.xpmsserv.
j'ai d'abord essaye de mettre en quarantaine mais pas possible j'ai mis fix mais il peux pas eliminer il dit de le faire a la main d'apres ce que j'ai compris.
quand j'ai demande le raport il disait qu'il pouvait pas mais j'ai trouve ca:
!Infected xpmsserv.exe=;c:\windows\system32\;sys32.xpmsserv;baa1f4d8769c162425054c8053b6fa4c;40960;Err;
Clsid c:\program files\superantispyware\saswinlo.dll[972edede23ac8d59aac0c09799c6f18a][356352]
Clsid C:\WINDOWS\system32\crypt32.dll[39976dad9564b336b153184268db032f][606208]
Clsid C:\WINDOWS\system32\cryptnet.dll[938488d25648d26e6bfe3e47dc2ec5e8][64512]
Clsid C:\WINDOWS\system32\cscdll.dll[6b646a601aec823032af4dc19273cfda][102912]
Clsid C:\WINDOWS\system32\sclgntfy.dll[c01c7266e73b199101651a7508364df7][22016]
Clsid c:\windows\system32\stobject.dll[9689fcc8c26c3d6afac892a6c5d1b81a][122368]
Clsid C:\WINDOWS\system32\wlnotify.dll[c664757f8243499ba6e45102af459de6][94208]
Clsid c:\windows\system32\wpdshserviceobj.dll[045e228f71c31901084b64be59093499][133632]
Proc C:\apps\ABoard\ABoard.exe[84da056c4331b17a5aafacff49c3bba3][24576]
Proc C:\apps\ABoard\AOSD.exe[66c31ec9b966a1d5ffc726a53dc1a137][69632]
Proc C:\APPS\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe[e69fc2484c3d9c648c5c275f7f8c5287][69632]
Proc C:\ATI Technologies\ATI Control Panel\atiptaxx.exe[1a354e0e24dfb2eae12133869c6345d2][335872]
Proc C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe[e1e4780c87dacc69be77da4a1b3ec692][79224]
Proc C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE[69eac89d4ebde2ad42f52058bedb71d2][97792]
Proc C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe[7fbddb77353d3eb6abf70f8122292cec][247160]
Proc C:\Program Files\Alwil Software\Avast4\ashServ.exe[6a0a14f60654df588f55160cb1b6da8d][144760]
Proc C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[a697e8a40037783358cd5a2cb5f532e0][345464]
Proc C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe[3ca72cea90df8da569d35cec89676749][17272]
Proc C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe[938593ea475e5c59421f9c01bd352826][395264]
Proc C:\Program Files\Cobian Backup 9\cbService.exe[ff0a3c9b2e203876de993d9c4bf7a842][583168]
Proc C:\Program Files\D-Tools\daemon.exe[804fbb66ec6ca862b840d173efc638a7][81920]
Proc C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe[11f714f85530a2bd134074dc30e99fca][322120]
Proc C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe[c53e07cd089a300ca2c78816e4781b61][1106944]
Proc C:\Program Files\InCode Solutions\RemoveIT Pro v4 - SE\removeit.exe[5f3e76c6be90c901c7a3058f05a5dc33][550912]
Proc C:\Program Files\Java\jre6\bin\jqs.exe[32192b4ebe8720ed8d49a455c962cb91][152984]
Proc C:\Program Files\Java\jre6\bin\jusched.exe[b98ffa8288efaabc436c30d198608345][136600]
Proc C:\Program Files\Logitech\Video\FxSvr2.exe[51b027ebfbce70e81e43c831439cd6c0][192512]
Proc C:\Program Files\Logitech\Video\LogiTray.exe[8b00a468cee0322476cac1b28d8cc03c][217088]
Proc C:\Program Files\QuickTime\qttask.exe[4e165b34780ff2d1b405f29e3fa68df2][77824]
Proc C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe[98c9d8b03a6dec5975a0e19ee2685cf5][69632]
Proc C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[63b3ff83b87afceba89ced54695da0f6][1833296]
Proc C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe[b91383c52c1f3442e06e84276cb9eaaf][1955352]
Proc C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[9ef600c64435ccfdea01c991289e76ec][1205784]
Proc C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[11afbca9eac51cf988918bffe935e6ee][1830128]
Proc C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe[c68e12e0cb9816da33d089b048c511f5][299008]
Proc C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe[8c7579c9e29fb3430ef5ac8c09a71211][139264]
Proc C:\WINDOWS\Explorer.EXE[f2317622d29f9ff0f88aeecd5f60f0dd][1037824]
Proc C:\WINDOWS\system32\ctfmon.exe[59dc5bb82e4c8e0b3eadcfdbc44ba6e4][15360]
Proc C:\WINDOWS\system32\drivers\dcfssvc.exe[dd9cc789cc96358ae2033c0874ef7b36][188987]
Proc C:\WINDOWS\system32\lsass.exe[91e6024d6d4dcdecdb36c43ecf9bbecb][13312]
Proc C:\WINDOWS\System32\LVCOMSX.EXE[63be39acf8fd8963b01548972d7a06f0][221184]
Proc C:\WINDOWS\system32\services.exe[54cb50058851d95e56ec70d09f70857f][109056]
Proc C:\WINDOWS\system32\slserv.exe[687217654134680371ef23fafc5ec96d][45056]
Proc C:\WINDOWS\system32\spoolsv.exe[460e4ce148bd07218da0b6a3d31885a9][57856]
Proc C:\WINDOWS\system32\svchost.exe[e4bdf223cd75478bf44567b4d5c2634d][14336]
Proc C:\WINDOWS\system32\wuauclt.exe[e654b78d2f1d791b30d0ed9a8195ec22][51224]
Proc C:\WINDOWS\System32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
RegRun c:\apps\aboard\aboard.exe[84da056c4331b17a5aafacff49c3bba3][24576]
RegRun c:\ati technologies\ati control panel\atiptaxx.exe[1a354e0e24dfb2eae12133869c6345d2][335872]
RegRun c:\progra~1\alwils~1\avast4\ashdisp.exe[e1e4780c87dacc69be77da4a1b3ec692][79224]
RegRun c:\program files\cegetel\c-box\wizard\quickaccess.exe[938593ea475e5c59421f9c01bd352826][395264]
RegRun c:\program files\d-tools\daemon.exe [804fbb66ec6ca862b840d173efc638a7][81920]
RegRun c:\program files\fichiers communs\pcsuite\datalayer\datalayer.exe[c53e07cd089a300ca2c78816e4781b61][1106944]
RegRun c:\program files\fichiers communs\real\update_ob\realsched.exe [a05da809ac0d86d916d09e3a908d3a06][151597]
RegRun c:\program files\fichiers communs\scansoft shared\ssbkgdupdate\ssbkgdupdate.exe [1c3ca3e7807f915933bb4e08e599ddab][155648]
RegRun c:\program files\java\jre6\bin\jusched.exe[b98ffa8288efaabc436c30d198608345][136600]
RegRun c:\program files\logitech\video\isstart.exe [bb2e1e3d635e05cc7ae2ca9f167f2f41][458752]
RegRun c:\program files\logitech\video\logitray.exe[8b00a468cee0322476cac1b28d8cc03c][217088]
RegRun c:\program files\nokia\nokia pc suite 6\launchapplication.exe [c26c12989e5c76440df928605037cc30][167936]
RegRun c:\program files\quicktime\qttask.exe [4e165b34780ff2d1b405f29e3fa68df2][77824]
RegRun c:\program files\scansoft\omnipagese4.0\opwarese4.exe[98c9d8b03a6dec5975a0e19ee2685cf5][69632]
RegRun c:\program files\spybot - search & destroy\teatimer.exe[63b3ff83b87afceba89ced54695da0f6][1833296]
RegRun c:\program files\superantispyware\superantispyware.exe[11afbca9eac51cf988918bffe935e6ee][1830128]
RegRun c:\program files\virtual cd v4 sdk\system\vcsplay.exe[c68e12e0cb9816da33d089b048c511f5][299008]
RegRun C:\WINDOWS\system32\ati2mdxx.exe[fae95d6d7651b5629c4e19adbc9a3863][28672]
RegRun c:\windows\system32\ctfmon.exe[59dc5bb82e4c8e0b3eadcfdbc44ba6e4][15360]
RegRun c:\windows\system32\lvcomsx.exe[63be39acf8fd8963b01548972d7a06f0][221184]
Service c:\program files\alwil software\avast4\ashmaisv.exe [7fbddb77353d3eb6abf70f8122292cec][247160]
Service c:\program files\alwil software\avast4\ashserv.exe[6a0a14f60654df588f55160cb1b6da8d][144760]
Service c:\program files\alwil software\avast4\ashwebsv.exe [a697e8a40037783358cd5a2cb5f532e0][345464]
Service c:\program files\alwil software\avast4\aswupdsv.exe[3ca72cea90df8da569d35cec89676749][17272]
Service c:\program files\cobian backup 9\cbservice.exe[ff0a3c9b2e203876de993d9c4bf7a842][583168]
Service c:\program files\fichiers communs\microsoft shared\source engine\ose.exe[7a56cf3e3f12e8af599963b16f50fb6a][89136]
Service c:\program files\fichiers communs\microsoft shared\vs7debug\mdm.exe[11f714f85530a2bd134074dc30e99fca][322120]
Service c:\program files\google\common\google updater\googleupdaterservice.exe[751c1d2ca2abf4a9f5a6b8d7d45b907c][138168]
Service c:\program files\java\jre6\bin\jqs.exe [32192b4ebe8720ed8d49a455c962cb91][152984]
Service c:\program files\msn messenger\usnsvc.exe[c5b70a6aa947667ce0e5fc84a05ec8b6][97136]
Service c:\program files\sunbelt software\personal firewall\kpf4ss.exe[9ef600c64435ccfdea01c991289e76ec][1205784]
Service c:\program files\virtual cd v4 sdk\system\vcssecs.exe[8c7579c9e29fb3430ef5ac8c09a71211][139264]
Service c:\program files\windows media player\wmpnetwk.exe[c9bea742ce225cc993c9465fddae4656][918016]
Service c:\windows\system32\alg.exe[5e9a6658a2a69ae7eb195113b7a2e7a9][44544]
Service c:\windows\system32\ati2sgag.exe[398463076210be7686893eeec687a233][114688]
Service c:\windows\system32\cisvc.exe[793ef38a5fd086c3c8e48a8a861562ed][5632]
Service c:\windows\system32\clipsrv.exe[8b30cbb0c07d49b2658fb190946b0e7e][33280]
Service c:\windows\system32\dllhost.exe [0dad93bb0fecf5016ae3c06cbb0a873b][5120]
Service c:\windows\system32\dmadmin.exe [ead2b8aaeb16e538106d295cd7bd7a48][225280]
Service c:\windows\system32\drivers\dcfssvc.exe[dd9cc789cc96358ae2033c0874ef7b36][188987]
Service c:\windows\system32\imapi.exe[c4221678bbaa55239c23632875759961][150528]
Service c:\windows\system32\locator.exe[499c59a2584f6d4ea41e944da571d993][75264]
Service c:\windows\system32\lsass.exe[91e6024d6d4dcdecdb36c43ecf9bbecb][13312]
Service c:\windows\system32\mnmsrvc.exe[d3a2870cd96cda7bcff3dc54f64087ad][32768]
Service c:\windows\system32\msdtc.exe[8648d670ae0d95c95e7bbb5b80661796][6144]
Service c:\windows\system32\msiexec.exe [0411f7ee63ae48d2918ab4f2c79ab6c4][78848]
Service c:\windows\system32\netdde.exe[5c9b1d83755b36237b70f95df3d46a52][114176]
Service c:\windows\system32\rsvp.exe[414964844f4793acb868d057e8ed997e][132608]
Service c:\windows\system32\scardsvr.exe[67949cc8a865296c1333c96a4e1a2d66][100352]
Service c:\windows\system32\services.exe[54cb50058851d95e56ec70d09f70857f][109056]
Service c:\windows\system32\sessmgr.exe[9f63d9c5b238ed1c375d417eff3d5be7][142848]
Service C:\WINDOWS\system32\slserv.exe[687217654134680371ef23fafc5ec96d][45056]
Service c:\windows\system32\smlogsvc.exe[0899061318a6b1d9596aabfc77f45e44][93184]
Service c:\windows\system32\spoolsv.exe[460e4ce148bd07218da0b6a3d31885a9][57856]
Service c:\windows\system32\svchost.exe [e4bdf223cd75478bf44567b4d5c2634d][14336]
Service c:\windows\system32\ups.exe[1edc93d7bd731b5ca6248ae245099b60][18432]
Service c:\windows\system32\vssvc.exe[5a4da252b2c0550ab83d129c02cf6c19][295424]
Service c:\windows\system32\wbem\wmiapsrv.exe[4e8e8a58f56b25d0795f484e5eb7f898][126464]
Service c:\windows\system32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
Startup c:\apps\ulead systems\ulead photo express 4.0 se\calcheck.exe[e69fc2484c3d9c648c5c275f7f8c5287][69632]
Startup c:\documents and settings\all users\menu démarrer\programmes\démarrage\desktop.ini[d6a6856702e3f0953e7246a9b4a9fe35][84]
Startup c:\documents and settings\nadine\menu démarrer\programmes\démarrage\desktop.ini[d6a6856702e3f0953e7246a9b4a9fe35][84]
Startup c:\program files\fichiers communs\adobe\calibration\adobe gamma loader.exe[c2ff17734176cd15221c10044ef0ba1a][113664]
System.ini c:\windows\system32\xpmsserv.exe[baa1f4d8769c162425054c8053b6fa4c][40960]
