Pleins de petits spyware
Résolu
Chris2410
Messages postés
125
Date d'inscription
Statut
Membre
Dernière intervention
-
Chris2410 Messages postés 125 Date d'inscription Statut Membre Dernière intervention -
Chris2410 Messages postés 125 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
Je suis nouveau sur ce forum mais j'ai souvent lu vos article quand je bloquais sur tel ou tel probleme.
Aujourd'hui et depuis quelques jours, j'ai des dossiers qui se sont installer dans programme file que je n'arrive pas a supprimer.
Comme je sais que vos sujet sont tres souvent personnalisé au demandeur, c'est pourquoi j'ouvre ce topic.
J'ai besoin de votre aide en gros.
Je tiens a préciser que je suis novice en informatique.
Merci d'avance a tous
Je suis nouveau sur ce forum mais j'ai souvent lu vos article quand je bloquais sur tel ou tel probleme.
Aujourd'hui et depuis quelques jours, j'ai des dossiers qui se sont installer dans programme file que je n'arrive pas a supprimer.
Comme je sais que vos sujet sont tres souvent personnalisé au demandeur, c'est pourquoi j'ouvre ce topic.
J'ai besoin de votre aide en gros.
Je tiens a préciser que je suis novice en informatique.
Merci d'avance a tous
A voir également:
- Pleins de petits spyware
- Spyware doctor - Télécharger - Antivirus & Antimalwares
- Spyware terminator - Télécharger - Antivirus & Antimalwares
- Spyware blaster - Télécharger - Antivirus & Antimalwares
- Anti spyware gratuit - Télécharger - Antivirus & Antimalwares
- Anti spyware - Télécharger - Antivirus & Antimalwares
110 réponses
Logfile of random's system information tool 1.06 (written by random/random)
Run by armand at 2009-10-02 17:47:17
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 2 GB (9%) free of 20 GB
Total RAM: 959 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:47:56, on 02/10/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\armand\Bureau\Logiciel\RSIT.exe
C:\Program Files\trend micro\armand.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: (no name) - {0A87E45F-537A-40B4-B812-E2544C21A09F} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe"
O4 - HKLM\..\Run: [IndexSearch] "C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe"
O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Application Data\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http:\\www.numericable.fr
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/RACtrl.cab
O18 - Protocol: bw+0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TwonkyMedia - PacketVideo - C:\Program Files\Nokia\Nokia Home Media Server\Media Server\TwonkyMedia.exe
Run by armand at 2009-10-02 17:47:17
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 2 GB (9%) free of 20 GB
Total RAM: 959 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:47:56, on 02/10/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\armand\Bureau\Logiciel\RSIT.exe
C:\Program Files\trend micro\armand.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: (no name) - {0A87E45F-537A-40B4-B812-E2544C21A09F} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe"
O4 - HKLM\..\Run: [IndexSearch] "C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe"
O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Application Data\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http:\\www.numericable.fr
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/RACtrl.cab
O18 - Protocol: bw+0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {536ACCD4-7069-44FD-A249-F0DD4A04E92F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TwonkyMedia - PacketVideo - C:\Program Files\Nokia\Nokia Home Media Server\Media Server\TwonkyMedia.exe
Ok, désolé pour le temps de réponse mais j'étais occupé.
Tout d'abord, je te conseille fortement de désinstaller incredimail
Je t'invite à lire cette page et tu comprendras mieux pourquoi je te demande ceci :
http://assiste.com.free.fr/p/logitheque/incredimail.html
( partie " Résumé " )
----------------
Fais ensuite ceci :
USBfix ------>
[x] Télécharge USBfix à cette adresse : http://sd-1.archive-host.com/membres/up/127028005715545653/UsbFix.exe
[x] Un tutoriel est disponible ici : https://www.malekal.com/usbfix-supprimer-virus-usb/
[x] Installe le
[x] Branche tout tes médias amovibles ( clés USB, DD externe )
[x] Lance USBfix en cliquant sur l'icône qui est sur ton bureau ( Clique droit -> Executer en tant qu'administrateur pour vista )
[x] Choisis l'option F ( pour français ) et valide en appuyant sur entrée.
[x] Au menu principal, choisi l'option 1
[x] Laisse l'outil travailler puis poste le rapport dans ton prochain message
Tout d'abord, je te conseille fortement de désinstaller incredimail
Je t'invite à lire cette page et tu comprendras mieux pourquoi je te demande ceci :
http://assiste.com.free.fr/p/logitheque/incredimail.html
( partie " Résumé " )
----------------
Fais ensuite ceci :
USBfix ------>
[x] Télécharge USBfix à cette adresse : http://sd-1.archive-host.com/membres/up/127028005715545653/UsbFix.exe
[x] Un tutoriel est disponible ici : https://www.malekal.com/usbfix-supprimer-virus-usb/
[x] Installe le
[x] Branche tout tes médias amovibles ( clés USB, DD externe )
[x] Lance USBfix en cliquant sur l'icône qui est sur ton bureau ( Clique droit -> Executer en tant qu'administrateur pour vista )
[x] Choisis l'option F ( pour français ) et valide en appuyant sur entrée.
[x] Au menu principal, choisi l'option 1
[x] Laisse l'outil travailler puis poste le rapport dans ton prochain message
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Je fais comment pour recuperer mon carnet d'adresse qui est dans incredimail? Si c'est possible...
Je reprendrai d'ici 1.5 h à 2h mais j'attends eventuellement des infos.
Ca sert a quoi USB Fix?
Je reprendrai d'ici 1.5 h à 2h mais j'attends eventuellement des infos.
Ca sert a quoi USB Fix?
USBfix sert à traiter les infections se propageant pas les clés USB. Et j'en vois des signes d'après le rapport.
Pour incredimail, sachant que je n'utilises aucune messagerie j'aurais du mal à te répondre, mais j'ai trouvé ceci :
http://www.01net.com/editorial/280730/go/d-incredimail-a-outlook-express/
https://forums.commentcamarche.net/forum/affich-2827513-carnet-d-adresse-incredimail#9
Pour incredimail, sachant que je n'utilises aucune messagerie j'aurais du mal à te répondre, mais j'ai trouvé ceci :
http://www.01net.com/editorial/280730/go/d-incredimail-a-outlook-express/
https://forums.commentcamarche.net/forum/affich-2827513-carnet-d-adresse-incredimail#9
Je ne trouve pas "outlook express" et quand je l'installe depuis le cd de windows, je ne le retrouve pas....
Une idée?
Une idée?
Je te conseille de passer à mozilla thunderbird qui est une bonne messagerie.
Un tutoriel pour le configurer et l'installer est disponible ici :
http://www.libellules.ch/...
------- Pour exporter tes mails/adresses -------
selon ce site : https://www.arobase.org/softs/changer-de-logiciel-de-messagerie.htm
il te faut cet utilitaire : http://www.incredimail.com/en
pour exporter tes mails/adresses au format Outlook
Puis une fois dans Outlook, tu exportes ton carnet d'adresse dans un format reconnu par Mozilla Thunderbird :
.ldif
.ldi
.tab
.txt
Pour les mails, Thunderbird sais les importer tout seul :)
Un tutoriel pour le configurer et l'installer est disponible ici :
http://www.libellules.ch/...
------- Pour exporter tes mails/adresses -------
selon ce site : https://www.arobase.org/softs/changer-de-logiciel-de-messagerie.htm
il te faut cet utilitaire : http://www.incredimail.com/en
pour exporter tes mails/adresses au format Outlook
Puis une fois dans Outlook, tu exportes ton carnet d'adresse dans un format reconnu par Mozilla Thunderbird :
.ldif
.ldi
.tab
.txt
Pour les mails, Thunderbird sais les importer tout seul :)
Je me lance la dedans et je reviens alors....
Par contre, je n'ai pas mes clé USB chez moi..... je fais comment? C'est grave?
Par contre, je n'ai pas mes clé USB chez moi..... je fais comment? C'est grave?
Tes clés USB sont probablement infectées, alors essaie de les avoir assez rapidement puis éxecute USBfix et poste le rapport.
Bon, je ne m'en sort pas avec incredimail et thunderbird.....
Je n'arrive pas a importer mes contacts depuis incredimail......
J'ai retrouvé une de mes clé, j'essaye deja avec celle là ou il les faut toutes en meme temps?
Je n'arrive pas a importer mes contacts depuis incredimail......
J'ai retrouvé une de mes clé, j'essaye deja avec celle là ou il les faut toutes en meme temps?
Tu crois vraiment que j'ai une infection via incredimail? Parce que je ne m'en sort pas.... je n'arrive pas à importer mes mails ni mes contacts... Et thunderbird ne recoit pas mes mails que j'envoi depuis une autre boite....
Voici le rapport Usbfix
############################## | UsbFix V6.037 |
User : armand (Administrateurs) # ARMAND-LGARTN8P
Update on 27/09/2009 by Chiquitine29, C_XX & Chimay8
Start at: 23:15:04 | 02/10/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
AMD Sempron(tm) 2400+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 6.0.2900.5512
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1351 [VPS 091002-0] 4.8.1351 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 19,53 Go (1,78 Go free) [Arman Disque Local] # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque fixe local # 54,96 Go (27,24 Go free) [Arman Divers] # NTFS
F:\ -> Disque amovible # 953,72 Mo (828,38 Mo free) [KINGSTON] # FAT
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\WINDOWS\system32\sistray.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## | Fichiers # Dossiers infectieux |
################## | Registre # Clés Run infectieuses |
################## | Registre # Mountpoints2 |
HKCU\..\..\Explorer\MountPoints2\{c8d07cb5-9614-11de-b30c-806d6172696f}
Shell\AutoRun\command =F:\setupSNK.exe
HKCU\..\..\Explorer\MountPoints2\{ccb53c5a-ebee-11dd-bf0a-001b2f371c55}
Shell\AutoRun\command =G:\WDSetup.exe
################## | ! Fin du rapport # UsbFix V6.037 ! |
############################## | UsbFix V6.037 |
User : armand (Administrateurs) # ARMAND-LGARTN8P
Update on 27/09/2009 by Chiquitine29, C_XX & Chimay8
Start at: 23:15:04 | 02/10/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
AMD Sempron(tm) 2400+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 6.0.2900.5512
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1351 [VPS 091002-0] 4.8.1351 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 19,53 Go (1,78 Go free) [Arman Disque Local] # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque fixe local # 54,96 Go (27,24 Go free) [Arman Divers] # NTFS
F:\ -> Disque amovible # 953,72 Mo (828,38 Mo free) [KINGSTON] # FAT
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\WINDOWS\system32\sistray.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## | Fichiers # Dossiers infectieux |
################## | Registre # Clés Run infectieuses |
################## | Registre # Mountpoints2 |
HKCU\..\..\Explorer\MountPoints2\{c8d07cb5-9614-11de-b30c-806d6172696f}
Shell\AutoRun\command =F:\setupSNK.exe
HKCU\..\..\Explorer\MountPoints2\{ccb53c5a-ebee-11dd-bf0a-001b2f371c55}
Shell\AutoRun\command =G:\WDSetup.exe
################## | ! Fin du rapport # UsbFix V6.037 ! |
------- SUPPRESSION --------
[x] Relance USBfix mais cette fois ci choisis l'option 2
/!\ N'oublie pas de laisser tes médias amovibles branchés sur ton PC /!\
[x] Patiente pendant que l'outil travaille.
[x] Ton PC redémarrera, puis USBfix analysera tes médias amovibles.
[x] Poste le rapport situé sous C:\USBfix.txt
-----------------
Je vais dormir, on continuera tout ça demain.
Bonne soirée.
[x] Relance USBfix mais cette fois ci choisis l'option 2
/!\ N'oublie pas de laisser tes médias amovibles branchés sur ton PC /!\
[x] Patiente pendant que l'outil travaille.
[x] Ton PC redémarrera, puis USBfix analysera tes médias amovibles.
[x] Poste le rapport situé sous C:\USBfix.txt
-----------------
Je vais dormir, on continuera tout ça demain.
Bonne soirée.
############################## | UsbFix V6.037 |
User : armand (Administrateurs) # ARMAND-LGARTN8P
Update on 27/09/2009 by Chiquitine29, C_XX & Chimay8
Start at: 23:21:37 | 02/10/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
AMD Sempron(tm) 2400+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 6.0.2900.5512
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1351 [VPS 091002-0] 4.8.1351 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 19,53 Go (1,72 Go free) [Arman Disque Local] # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque fixe local # 54,96 Go (27,24 Go free) [Arman Divers] # NTFS
F:\ -> Disque amovible # 953,72 Mo (828,38 Mo free) [KINGSTON] # FAT
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
################## | Fichiers # Dossiers infectieux |
################## | Registre # Clés Run infectieuses |
################## | Registre # Mountpoints2 |
Supprimé ! HKCU\...\Explorer\MountPoints2\{c8d07cb5-9614-11de-b30c-806d6172696f}\Shell\AutoRun\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{ccb53c5a-ebee-11dd-bf0a-001b2f371c55}\Shell\AutoRun\Command
################## | Listing des fichiers présent |
[14/10/2006 20:29|--a------|1024] C:\.rnd
[30/09/2009 22:36|--a------|5816] C:\Ad-Report-CLEAN[0].log
[30/09/2009 20:53|--a------|5641] C:\Ad-Report-SCAN[0].log
[27/03/2005 01:24|--a------|0] C:\AUTOEXEC.BAT
[30/09/2009 12:26|-rahs----|212] C:\boot.ini
[28/08/2001 14:00|-rahs----|4952] C:\Bootfont.bin
[30/09/2009 15:06|--a------|1887] C:\cleannavi.txt
[14/06/2007 21:59|--a------|74] C:\CMLoader.log
[27/03/2005 01:24|--a------|0] C:\CONFIG.SYS
[27/03/2005 01:24|-rahs----|0] C:\IO.SYS
[01/10/2009 19:35|--a------|2124] C:\Kill'em.txt
[01/10/2009 19:35|--a------|851] C:\List'em.txt
[25/04/2005 22:18|--a------|183] C:\LogiSetup.log
[30/09/2009 23:09|--a------|14808] C:\lopR.txt
[08/04/2005 22:56|--a------|689] C:\MKDEMSG.LOG
[08/04/2005 12:15|--a------|1024] C:\MKDEWE.TRN
[08/09/2008 10:27|--a------|20561] C:\MP4debug.log
[27/03/2005 01:24|-rahs----|0] C:\MSDOS.SYS
[05/04/2005 21:50|-rahs----|47564] C:\NTDETECT.COM
[09/09/2008 10:40|-rahs----|252240] C:\ntldr
[29/02/2004 17:44|--a------|52576] C:\orange.bmp
[?|?|?] C:\pagefile.sys
[20/12/2006 13:52|--a------|90] C:\Setup.log
[30/09/2009 16:45|--a------|2018] C:\TB.txt
[02/10/2009 23:27|--a------|3730] C:\UsbFix.txt
[13/06/2009 12:22|--a------|5461786] F:\- Rahman & The Pussycat Dolls - Jai Ho.mp3
[13/06/2009 12:23|--a------|5020943] F:\Fonky Family - Art de rue.mp3
[02/07/2009 22:43|--a------|23982102] F:\Rihanna Vs Michael Jackson - Don't stop the thriller (DJ Raf Bootleg Rmx).mp3
[13/06/2009 12:52|--a------|5152184] F:\ IAM - TAXI - L'amour du risque (Fonky Family).mp3
[13/06/2009 12:46|--a------|3512320] F:\04 - Pussycat Dolls - I Hate This Part(1).mp3
[13/06/2009 12:27|--a------|3579446] F:\Britney Spears - Womanizer.mp3
[09/05/2009 18:02|--a------|4299930] F:\Dj Zebra - Joey Starr Wars.mp3
[02/06/2005 22:27|--a------|8919096] F:\Mickael Jacson - Megamix.mp3
[02/10/2008 11:46|--a------|8696963] F:\Michael Jackson-Thriller.mp3
[05/06/2005 14:05|--a------|4095903] F:\Mickael Jackson - Black or White.mp3
[03/10/2007 22:47|--a------|3246080] F:\Mickael Jackson - Blood.mp3
[05/06/2005 20:25|--a------|3842008] F:\Mickael Jackson - Do You Remember the Time.mp3
[01/01/2006 18:52|--a------|5271847] F:\Mickael Jackson - Give In To Me.mp3
[19/11/2007 22:00|--a------|3191058] F:\Mickael Jackson - Liberian Girl.mp3
[21/05/2005 14:07|--a------|4118151] F:\Mickael Jackson - Moonwalker.mp3
[05/06/2005 16:43|--a------|3530919] F:\Mickael Jackson - Rock With You.mp3
[03/10/2007 21:54|--a------|3551945] F:\Mickael Jackson - The Girl is Mine.mp3
[21/08/2005 13:42|--a------|4566750] F:\Mickael Jackson - They Don't Care About Us.mp3
[05/06/2005 16:47|--a------|5823661] F:\Mickael Jackson - Wanna Be Starting Something.mp3
[15/06/2005 15:08|--a------|6326230] F:\Mickael Jackson - Who Is It.mp3
[03/10/2007 21:52|--a------|10175652] F:\Mickael Jackson - You Are Not Alone.mp3
[14/05/2005 14:09|--a------|4885948] F:\Mickael Jackson - You Rock My World.mp3
################## | Vaccination |
# C:\autorun.inf -> Folder created by UsbFix.
# E:\autorun.inf -> Folder created by UsbFix.
# F:\autorun.inf -> Folder created by UsbFix.
################## | ! Fin du rapport # UsbFix V6.037 ! |
User : armand (Administrateurs) # ARMAND-LGARTN8P
Update on 27/09/2009 by Chiquitine29, C_XX & Chimay8
Start at: 23:21:37 | 02/10/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
AMD Sempron(tm) 2400+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 6.0.2900.5512
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1351 [VPS 091002-0] 4.8.1351 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 19,53 Go (1,72 Go free) [Arman Disque Local] # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque fixe local # 54,96 Go (27,24 Go free) [Arman Divers] # NTFS
F:\ -> Disque amovible # 953,72 Mo (828,38 Mo free) [KINGSTON] # FAT
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
################## | Fichiers # Dossiers infectieux |
################## | Registre # Clés Run infectieuses |
################## | Registre # Mountpoints2 |
Supprimé ! HKCU\...\Explorer\MountPoints2\{c8d07cb5-9614-11de-b30c-806d6172696f}\Shell\AutoRun\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{ccb53c5a-ebee-11dd-bf0a-001b2f371c55}\Shell\AutoRun\Command
################## | Listing des fichiers présent |
[14/10/2006 20:29|--a------|1024] C:\.rnd
[30/09/2009 22:36|--a------|5816] C:\Ad-Report-CLEAN[0].log
[30/09/2009 20:53|--a------|5641] C:\Ad-Report-SCAN[0].log
[27/03/2005 01:24|--a------|0] C:\AUTOEXEC.BAT
[30/09/2009 12:26|-rahs----|212] C:\boot.ini
[28/08/2001 14:00|-rahs----|4952] C:\Bootfont.bin
[30/09/2009 15:06|--a------|1887] C:\cleannavi.txt
[14/06/2007 21:59|--a------|74] C:\CMLoader.log
[27/03/2005 01:24|--a------|0] C:\CONFIG.SYS
[27/03/2005 01:24|-rahs----|0] C:\IO.SYS
[01/10/2009 19:35|--a------|2124] C:\Kill'em.txt
[01/10/2009 19:35|--a------|851] C:\List'em.txt
[25/04/2005 22:18|--a------|183] C:\LogiSetup.log
[30/09/2009 23:09|--a------|14808] C:\lopR.txt
[08/04/2005 22:56|--a------|689] C:\MKDEMSG.LOG
[08/04/2005 12:15|--a------|1024] C:\MKDEWE.TRN
[08/09/2008 10:27|--a------|20561] C:\MP4debug.log
[27/03/2005 01:24|-rahs----|0] C:\MSDOS.SYS
[05/04/2005 21:50|-rahs----|47564] C:\NTDETECT.COM
[09/09/2008 10:40|-rahs----|252240] C:\ntldr
[29/02/2004 17:44|--a------|52576] C:\orange.bmp
[?|?|?] C:\pagefile.sys
[20/12/2006 13:52|--a------|90] C:\Setup.log
[30/09/2009 16:45|--a------|2018] C:\TB.txt
[02/10/2009 23:27|--a------|3730] C:\UsbFix.txt
[13/06/2009 12:22|--a------|5461786] F:\- Rahman & The Pussycat Dolls - Jai Ho.mp3
[13/06/2009 12:23|--a------|5020943] F:\Fonky Family - Art de rue.mp3
[02/07/2009 22:43|--a------|23982102] F:\Rihanna Vs Michael Jackson - Don't stop the thriller (DJ Raf Bootleg Rmx).mp3
[13/06/2009 12:52|--a------|5152184] F:\ IAM - TAXI - L'amour du risque (Fonky Family).mp3
[13/06/2009 12:46|--a------|3512320] F:\04 - Pussycat Dolls - I Hate This Part(1).mp3
[13/06/2009 12:27|--a------|3579446] F:\Britney Spears - Womanizer.mp3
[09/05/2009 18:02|--a------|4299930] F:\Dj Zebra - Joey Starr Wars.mp3
[02/06/2005 22:27|--a------|8919096] F:\Mickael Jacson - Megamix.mp3
[02/10/2008 11:46|--a------|8696963] F:\Michael Jackson-Thriller.mp3
[05/06/2005 14:05|--a------|4095903] F:\Mickael Jackson - Black or White.mp3
[03/10/2007 22:47|--a------|3246080] F:\Mickael Jackson - Blood.mp3
[05/06/2005 20:25|--a------|3842008] F:\Mickael Jackson - Do You Remember the Time.mp3
[01/01/2006 18:52|--a------|5271847] F:\Mickael Jackson - Give In To Me.mp3
[19/11/2007 22:00|--a------|3191058] F:\Mickael Jackson - Liberian Girl.mp3
[21/05/2005 14:07|--a------|4118151] F:\Mickael Jackson - Moonwalker.mp3
[05/06/2005 16:43|--a------|3530919] F:\Mickael Jackson - Rock With You.mp3
[03/10/2007 21:54|--a------|3551945] F:\Mickael Jackson - The Girl is Mine.mp3
[21/08/2005 13:42|--a------|4566750] F:\Mickael Jackson - They Don't Care About Us.mp3
[05/06/2005 16:47|--a------|5823661] F:\Mickael Jackson - Wanna Be Starting Something.mp3
[15/06/2005 15:08|--a------|6326230] F:\Mickael Jackson - Who Is It.mp3
[03/10/2007 21:52|--a------|10175652] F:\Mickael Jackson - You Are Not Alone.mp3
[14/05/2005 14:09|--a------|4885948] F:\Mickael Jackson - You Rock My World.mp3
################## | Vaccination |
# C:\autorun.inf -> Folder created by UsbFix.
# E:\autorun.inf -> Folder created by UsbFix.
# F:\autorun.inf -> Folder created by UsbFix.
################## | ! Fin du rapport # UsbFix V6.037 ! |
Voici le rapport avec les autres clés.
############################## | UsbFix V6.037 |
User : armand (Administrateurs) # ARMAND-LGARTN8P
Update on 27/09/2009 by Chiquitine29, C_XX & Chimay8
Start at: 10:24:50 | 04/10/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
AMD Sempron(tm) 2400+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 6.0.2900.5512
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1351 [VPS 091003-0] 4.8.1351 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 19,53 Go (1,74 Go free) [Arman Disque Local] # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque fixe local # 54,96 Go (27,24 Go free) [Arman Divers] # NTFS
F:\ -> Disque amovible # 1007,75 Mo (863,16 Mo free) # FAT32
G:\ -> Disque amovible # 1007,5 Mo (147,28 Mo free) # FAT32
H:\ -> Disque amovible # 1,87 Go (1,78 Go free) [USB DISK] # FAT
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## | Fichiers # Dossiers infectieux |
C:\autorun.inf
E:\autorun.inf
################## | Registre # Clés Run infectieuses |
################## | Registre # Mountpoints2 |
################## | ! Fin du rapport # UsbFix V6.037 ! |
############################## | UsbFix V6.037 |
User : armand (Administrateurs) # ARMAND-LGARTN8P
Update on 27/09/2009 by Chiquitine29, C_XX & Chimay8
Start at: 10:24:50 | 04/10/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
AMD Sempron(tm) 2400+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 6.0.2900.5512
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1351 [VPS 091003-0] 4.8.1351 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 19,53 Go (1,74 Go free) [Arman Disque Local] # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque fixe local # 54,96 Go (27,24 Go free) [Arman Divers] # NTFS
F:\ -> Disque amovible # 1007,75 Mo (863,16 Mo free) # FAT32
G:\ -> Disque amovible # 1007,5 Mo (147,28 Mo free) # FAT32
H:\ -> Disque amovible # 1,87 Go (1,78 Go free) [USB DISK] # FAT
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## | Fichiers # Dossiers infectieux |
C:\autorun.inf
E:\autorun.inf
################## | Registre # Clés Run infectieuses |
################## | Registre # Mountpoints2 |
################## | ! Fin du rapport # UsbFix V6.037 ! |
Ok,
------- SUPPRESSION --------
[x] Relance USBfix mais cette fois ci choisis l'option 2
/!\ N'oublie pas de laisser tes médias amovibles branchés sur ton PC /!\
[x] Patiente pendant que l'outil travaille.
[x] Ton PC redémarrera, puis USBfix analysera tes médias amovibles.
[x] Poste le rapport situé sous C:\USBfix.txt
------- SUPPRESSION --------
[x] Relance USBfix mais cette fois ci choisis l'option 2
/!\ N'oublie pas de laisser tes médias amovibles branchés sur ton PC /!\
[x] Patiente pendant que l'outil travaille.
[x] Ton PC redémarrera, puis USBfix analysera tes médias amovibles.
[x] Poste le rapport situé sous C:\USBfix.txt