Problèmes de virus
hervé973
-
Redbart Messages postés 21393 Date d'inscription Statut Membre Dernière intervention -
Redbart Messages postés 21393 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
J'ai de gros problèmes, sais plus comment m'en sortirâe m'aider pouvait charitae. Je poste le rapport hijackthis pour de l'aide
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:15:20, le 02/11/2009
Plate-forme: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal
Running processes:
C: \ Windows \ system32 \ Dwm.exe
C: \ Windows \ system32 \ taskeng.exe
C: \ Windows \ Explorer.exe
C: \ Users \ hervé \ AppData \ Roaming \ eoRezo \ softwareupdate \ SoftwareUpdateHP.exe
C: \ Windows \ RtHDVCpl.exe
C: \ Program Files \ playMovie \ PMVService.exe
C: \ Program Files \ PowerCinema \ PCMAgent.exe
C: \ Program Files \ Lexmark 3600-4600 Series \ lxdxmon.exe
C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe
C: \ Acer \ Preload \ Autorun \ DRV \ Fidji Keyboard \ ABoard.exe
C: \ Program Files \ EoRezo \ EoEngine.exe
C: \ Program Files \ PowerCinema \ Kernel \ CLML \ CLMLSvc.exe
C: \ Program Files \ Carbonite \ Carbonite Backup \ CarboniteUI.exe
C: \ Program Files \ Microsoft Security Essentials \ msseces.exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
C: \ Program Files \ Windows Live \ Messenger \ msnmsgr.exe
C: \ Program Files \ Free Download Manager \ ctfmon.exe
C: \ Users \ hervé \ AppData \ Local \ amydwj.exe
C: \ Program Files \ Microsoft Office \ Office12 \ CTFMON.EXE
C: \ Program Files \ Lexmark 3600-4600 Series \ lxdxMsdMon.exe
C: \ Program Files \ Windows Media Player \ TeaTimer.exe
C: \ Acer \ Preload \ Autorun \ DRV \ Fidji Keyboard \ AOSD.exe
C: \ Program Files \ Windows Live \ Contacts \ wlcomm.exe
C: \ Windows \ system32 \ conime.exe
C: \ Windows \ system32 \ wuauclt.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Windows \ system32 \ rundll32.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Downloads \ Software \ hijackthis-2.0.2.exe
C: \ Users \ HERV ~ 1 \ AppData \ Local Settings \ Temp \ hijackthis-2.0.2.exe
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb32&d=0609&m=imedia_d4523_fr
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.durable.com/recherche
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.durable.com/recherche
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://y.lo.st
- R1 HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb32&d=0609&m=imedia_d4523_fr
- R1 HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
- R1 HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.durable.com/recherche
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.durable.com/recherche
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant = http://www.durable.com/recherche
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant = http://www.durable.com/recherche
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ SearchURL, (Default) = http://www.durable.com/recherche
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
R3 - URLSearchHook: AVG Security Toolbar Helper - (A3BC75A2-1F87-4686-AA43-5347D756017C) - C: \ Program Files \ AVG \ AVG9 \ Toolbar \ IEToolbar.dll
R3 - BHO: (no name) - * (fe37be35-B028-49f9-bb0c-6a38c4e55b97) - (no file)
R3 - BHO: (no name) - * (fc600575-3013-4e8e-941c-4b00dafce730) - (no file)
R3 - BHO: (no name) - * (a8f9752d-e2b8-4e7a-86b5-499f4330e2fe) - (no file)
R3 - BHO: (no name) - * (00000000-6E41-4FD3-8538-502F5495E5FC) - (no file)
F2 - REG: system.ini: UserInit = C: \ Windows \ system32 \ ezShellStart.exe
- O1 Hosts::: 1 localhost
O2 - BHO: Lexmark Barre d'outils - (1017A80C-6F09-4548-A84D-EDD6AC9525F0) - C: \ Program Files \ Lexmark Toolbar \ toolband.dll
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4b53-A66E-4E65E497C8C0) - C: \ Program Files \ AVG \ AVG9 \ avgssie.dll (file missing)
O2 - BHO: (no name) - (5C255C8A-E604-49b4-9D64-90988571CECB) - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar Helper - (A3BC75A2-1F87-4686-AA43-5347D756017C) - C: \ Program Files \ AVG \ AVG9 \ Toolbar \ IEToolbar.dll
O2 - BHO: Eazel-FR Toolbar - (a8f9752d-e2b8-4e7a-86b5-499f4330e2fe) - C: \ Program Files \ Eazel-FR \ tbEaz1.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Helper - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 5.3.4501.1418 \ swg.dll
O2 - BHO: EoBHO - (C7B76B90-3455-4ae6-A752-EAC4D19689E5) - C: \ Program Files \ EoRezo \ EoAdv \ EoRezoBHO.dll
O2 - BHO: Google Dictionnaire sdch Compression - (C84D72FE-E17D-4195-BB24-76C02E2E7C4E) - C: \ Program Files \ Google \ Google Toolbar \ Component \ fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: FDMIECookiesBHO Class - (CC59E0F9-7E43-44FA-9FAA-8377850BF205) - C: \ Program Files \ Free Download Manager \ iefdm2.dll
O2 - BHO: Ask Toolbar Helper - (D4027C7F-154A-4066-A1AD-4243D8127440) - C: \ Program Files \ Ask.com \ GenericAskToolbar.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435B-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: myBabylon French4 Toolbar - (fc600575-3013-4e8e-941c-4b00dafce730) - C: \ Program Files \ myBabylon_English4 \ tbmyBa.dll
O2 - BHO: P2P Max France Toolbar - (fe37be35-B028-49f9-bb0c-6a38c4e55b97) - C: \ Program Files \ P2P_Max_France \ tbP2P_.dll
- O3 Toolbar: barre d'outils Google - (2318C2B1-4965-11d4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll
- O3 Toolbar: P2P Max France Toolbar - (fe37be35-B028-49f9-bb0c-6a38c4e55b97) - C: \ Program Files \ P2P_Max_France \ tbP2P_.dll
- O3 Toolbar: WalterShop - (9ec204df-0e48-4c32-816e-2e928a4fd9c2) - mscoree.dll (file missing)
- O3 Toolbar: myBabylon French4 Toolbar - (fc600575-3013-4e8e-941c-4b00dafce730) - C: \ Program Files \ myBabylon_English4 \ tbmyBa.dll
- O3 Toolbar: Eazel-FR Toolbar - (a8f9752d-e2b8-4e7a-86b5-499f4330e2fe) - C: \ Program Files \ Eazel-FR \ tbEaz1.dll
- O3 Toolbar: Lexmark Barre d'outils - (1017A80C-6F09-4548-A84D-EDD6AC9525F0) - C: \ Program Files \ Lexmark Toolbar \ toolband.dll
- O3 Toolbar: Nero Toolbar - (D4027C7F-154A-4066-A1AD-4243D8127440) - C: \ Program Files \ Ask.com \ GenericAskToolbar.dll
- O3 Toolbar: AVG Security Toolbar - (CCC7A320-B3CA-4199-B1A6-9F516DD69829) - C: \ Program Files \ AVG \ AVG9 \ Toolbar \ IEToolbar.dll
O4 - HKLM \ .. \ Run: [Windows Defender]% ProgramFiles% \ Windows Defender \ ashDisp.exe
O4 - HKLM \ .. \ Run: [avast!] "C: \ Program Files \ Java \ jre6 \ bin \ ashDisp.exe
O4 - HKLM \ .. \ Run: [SmpcSys] C: \ Program Files \ Packard Bell \ SetupMyPC \ SmpSys.exe
O4 - HKLM \ .. \ Run: [Setresolution] C: \ Acer \ config \ 1920X1080.cmd
O4 - HKLM \ .. \ Run: [Windows Defender] RtHDVCpl.exe
O4 - HKLM \ .. \ Run: [playMovie] "C: \ Program Files \ CyberLink \ playMovie \ PMVService.exe"
O4 - HKLM \ .. \ Run: [PCMAgent] "C: \ Program Files \ CyberLink \ PowerCinema \ PCMAgent.exe"
O4 - HKLM \ .. \ Run: [avast!] Rundll32.exe C: \ Windows \ system32 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [MontiorGeo] C: \ Acer \ MonitorGeo.cmd
O4 - HKLM \ .. \ Run: [lxdxmon.exe] "C: \ Program Files \ Lexmark 3600-4600 Series \ lxdxmon.exe"
O4 - HKLM \ .. \ Run: [lxdxamon] "C: \ Program Files \ Lexmark 3600-4600 Series \ lxdxamon.exe"
O4 - HKLM \ .. \ Run: [Google Desktop Search] "C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe" / startup
O4 - HKLM \ .. \ Run: [FujiKeyboard] C: \ Acer \ Preload \ Autorun \ DRV \ FUJI Keyboard \ ABoard.exe
O4 - HKLM \ .. \ Run: [First Principle Group] C: \ Program Files \ First Principle Group \ fpg.exe / s
O4 - HKLM \ .. \ Run: [FijiKeyboard] C: \ Acer \ Preload \ Autorun \ DRV \ FIDJI Keyboard \ ABoard.exe
O4 - HKLM \ .. \ Run: [FaxCenterServer] "C: \ Program Files \ Lexmark Fax Solutions \ fm3032.exe" / s
O4 - HKLM \ .. \ Run: [EoEngine] "C: \ Program Files \ EoRezo \ EoEngine.exe"
O4 - HKLM \ .. \ Run: [CLMLServer] "C: \ Program Files \ CyberLink \ PowerCinema \ Kernel \ CLML \ CLMLSvc.exe"
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Acrobat 9.0 \ Acrobat \"
O4 - HKLM \ .. \ Run: [Adobe ARM] "C: \ Program Files \ Fichiers communs \ Adobe \ arm \ 1.0 \ AdobeARM.exe"
O4 - HKLM \ .. \ Run: [Carbonite Backup] C: \ Program Files \ Carbonite \ Carbonite Backup \ CarboniteUI.exe
O4 - HKLM \ .. \ Run: [MSSE] "C: \ Program Files \ Microsoft Security Essentials \ msseces.exe-hide
O4 - HKLM \ .. \ Run: [SoftwareHelper] C: \ Users \ hervé \ AppData \ Roaming \ eoRezo \ softwareupdate \ SoftwareUpdateHP.exe-runonce
O4 - HKCU \ .. \ Run: [flec003.exe] C: \ Users \ hervé \ AppData \ Roaming \ hidires \ flec003.exe
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows Media Player \ TeaTimer.exe
O4 - HKCU \ .. \ Run: [Skype] "C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe"
O4 - HKCU \ .. \ Run: [Skype] "C: \ Program Files \ Windows Live \ Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [jmpruil] "C: \ Users \ hervé \ AppData \ Local \ jmpruil.exe" jmpruil
O4 - HKCU \ .. \ Run: [Free Download Manager] "C: \ Program Files \ Free Download Manager \ ctfmon.exe"-autorun
O4 - HKCU \ .. \ Run: [dzotjx] "C: \ Users \ hervé \ AppData \ Local \ dzotjx.exe" dzotjx
O4 - HKCU \ .. \ Run: [amydwj] "C: \ Users \ hervé \ AppData \ Local \ amydwj.exe" amydwj
O4 - HKLM \ S-1-5-19 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKLM \ S-1-5-19 \ .. \ Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKLM \ S-1-5-20 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C: \ Program Files \ Microsoft Office \ Office12 \ CTFMON.EXE
O8 - Extra context menu item: E & Xporter vers Microsoft Excel - res: / / C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O8 - Extra context menu item: Tout Télécharger avec Free Download Manager - file: / / C: \ Program Files \ Free Download Manager \ dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file: / / C: \ Program Files \ Free Download Manager \ dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file: / / C: \ Program Files \ Free Download Manager \ dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file: / / C: \ Program Files \ Free Download Manager \ dlfvideo.htm
O9 - Extra button: Ajout Direct - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: & Ajout Direct dans Windows Live Writer - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra 'Tools' menuitem: & Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra button: (no name) - (85d1f590-48F4-11d9-9669-0800200c9a66) - C: \ Windows \ bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - (85d1f590-48F4-11d9-9669-0800200c9a66) - C: \ Windows \ bdoscandel.exe
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: (E2883E8F-472f-4FB0-9522-AC9BF37916A7) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
- O17 HKLM \ System \ CCS \ Services \ Tcpip \ .. \ (D4F5BAED-23A7-49CB-869F-9464D2C4AB7E): NameServer = 192.168.1.1
- Ø18 Protocole: LinkScanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files \ AVG \ AVG9 \ avgpp.dll (file missing)
O20 - AppInit_DLLs: C: \ PROGRA ~ 1 \ Google \ GOOGLE ~ 1 \ GOEC62 ~ 1.DLL
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - ALWIL Software - C: \ Program Files \ Adobe \ Photoshop Elements 6.0 \ PhotoshopElementsFileAgent.exe
O23 - Service: CarboniteService - Carbonite, Inc (www.carbonite.com) - C: \ Program Files \ Carbonite \ Carbonite Backup \ carboniteservice.exe
O23 - Service: Empowering Technology Service (ETService) - ALWIL Software - C: \ Program Files \ Packard Bell \ Packard Bell Recovery Management \ Service \ ETService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd - C: \ Program Files \ Fichiers communs \ Macrovision Shared \ FLEXnet Publisher \ FNPLicensingService.exe
O23 - Service: Service générique pour HID Keyboard Input Collections (GenericHidService) - Packard Bell Services - C: \ Windows \ system32 \ HidService.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: lxdxCATSCustConnectService - Lexmark International, Inc - C: \ Windows \ system32 \ spool \ drivers \ W32X86 \ 3 \ \ lxdxserv.exe
O23 - Service: lxdx_device - - C: \ Windows \ system32 \ lxdxcoms.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C: \ Program Files \ Nero \ Nero8 \ Nero BackItUp \ NBService.exe
O23 - Service: NMIndexingService - Nero AG - C: \ Program Files \ Fichiers communs \ Nero \ Lib \ NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C: \ Windows \ system32 \ nvvsvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc - C: \ Windows \ system32 \ IoctlSvc.exe
--
End of file - 14187 bytes
J'ai de gros problèmes, sais plus comment m'en sortirâe m'aider pouvait charitae. Je poste le rapport hijackthis pour de l'aide
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:15:20, le 02/11/2009
Plate-forme: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal
Running processes:
C: \ Windows \ system32 \ Dwm.exe
C: \ Windows \ system32 \ taskeng.exe
C: \ Windows \ Explorer.exe
C: \ Users \ hervé \ AppData \ Roaming \ eoRezo \ softwareupdate \ SoftwareUpdateHP.exe
C: \ Windows \ RtHDVCpl.exe
C: \ Program Files \ playMovie \ PMVService.exe
C: \ Program Files \ PowerCinema \ PCMAgent.exe
C: \ Program Files \ Lexmark 3600-4600 Series \ lxdxmon.exe
C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe
C: \ Acer \ Preload \ Autorun \ DRV \ Fidji Keyboard \ ABoard.exe
C: \ Program Files \ EoRezo \ EoEngine.exe
C: \ Program Files \ PowerCinema \ Kernel \ CLML \ CLMLSvc.exe
C: \ Program Files \ Carbonite \ Carbonite Backup \ CarboniteUI.exe
C: \ Program Files \ Microsoft Security Essentials \ msseces.exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
C: \ Program Files \ Windows Live \ Messenger \ msnmsgr.exe
C: \ Program Files \ Free Download Manager \ ctfmon.exe
C: \ Users \ hervé \ AppData \ Local \ amydwj.exe
C: \ Program Files \ Microsoft Office \ Office12 \ CTFMON.EXE
C: \ Program Files \ Lexmark 3600-4600 Series \ lxdxMsdMon.exe
C: \ Program Files \ Windows Media Player \ TeaTimer.exe
C: \ Acer \ Preload \ Autorun \ DRV \ Fidji Keyboard \ AOSD.exe
C: \ Program Files \ Windows Live \ Contacts \ wlcomm.exe
C: \ Windows \ system32 \ conime.exe
C: \ Windows \ system32 \ wuauclt.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Windows \ system32 \ rundll32.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Downloads \ Software \ hijackthis-2.0.2.exe
C: \ Users \ HERV ~ 1 \ AppData \ Local Settings \ Temp \ hijackthis-2.0.2.exe
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb32&d=0609&m=imedia_d4523_fr
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.durable.com/recherche
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.durable.com/recherche
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://y.lo.st
- R1 HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb32&d=0609&m=imedia_d4523_fr
- R1 HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
- R1 HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.durable.com/recherche
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.durable.com/recherche
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant = http://www.durable.com/recherche
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant = http://www.durable.com/recherche
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ SearchURL, (Default) = http://www.durable.com/recherche
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
R3 - URLSearchHook: AVG Security Toolbar Helper - (A3BC75A2-1F87-4686-AA43-5347D756017C) - C: \ Program Files \ AVG \ AVG9 \ Toolbar \ IEToolbar.dll
R3 - BHO: (no name) - * (fe37be35-B028-49f9-bb0c-6a38c4e55b97) - (no file)
R3 - BHO: (no name) - * (fc600575-3013-4e8e-941c-4b00dafce730) - (no file)
R3 - BHO: (no name) - * (a8f9752d-e2b8-4e7a-86b5-499f4330e2fe) - (no file)
R3 - BHO: (no name) - * (00000000-6E41-4FD3-8538-502F5495E5FC) - (no file)
F2 - REG: system.ini: UserInit = C: \ Windows \ system32 \ ezShellStart.exe
- O1 Hosts::: 1 localhost
O2 - BHO: Lexmark Barre d'outils - (1017A80C-6F09-4548-A84D-EDD6AC9525F0) - C: \ Program Files \ Lexmark Toolbar \ toolband.dll
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4b53-A66E-4E65E497C8C0) - C: \ Program Files \ AVG \ AVG9 \ avgssie.dll (file missing)
O2 - BHO: (no name) - (5C255C8A-E604-49b4-9D64-90988571CECB) - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar Helper - (A3BC75A2-1F87-4686-AA43-5347D756017C) - C: \ Program Files \ AVG \ AVG9 \ Toolbar \ IEToolbar.dll
O2 - BHO: Eazel-FR Toolbar - (a8f9752d-e2b8-4e7a-86b5-499f4330e2fe) - C: \ Program Files \ Eazel-FR \ tbEaz1.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Helper - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 5.3.4501.1418 \ swg.dll
O2 - BHO: EoBHO - (C7B76B90-3455-4ae6-A752-EAC4D19689E5) - C: \ Program Files \ EoRezo \ EoAdv \ EoRezoBHO.dll
O2 - BHO: Google Dictionnaire sdch Compression - (C84D72FE-E17D-4195-BB24-76C02E2E7C4E) - C: \ Program Files \ Google \ Google Toolbar \ Component \ fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: FDMIECookiesBHO Class - (CC59E0F9-7E43-44FA-9FAA-8377850BF205) - C: \ Program Files \ Free Download Manager \ iefdm2.dll
O2 - BHO: Ask Toolbar Helper - (D4027C7F-154A-4066-A1AD-4243D8127440) - C: \ Program Files \ Ask.com \ GenericAskToolbar.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435B-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: myBabylon French4 Toolbar - (fc600575-3013-4e8e-941c-4b00dafce730) - C: \ Program Files \ myBabylon_English4 \ tbmyBa.dll
O2 - BHO: P2P Max France Toolbar - (fe37be35-B028-49f9-bb0c-6a38c4e55b97) - C: \ Program Files \ P2P_Max_France \ tbP2P_.dll
- O3 Toolbar: barre d'outils Google - (2318C2B1-4965-11d4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar_32.dll
- O3 Toolbar: P2P Max France Toolbar - (fe37be35-B028-49f9-bb0c-6a38c4e55b97) - C: \ Program Files \ P2P_Max_France \ tbP2P_.dll
- O3 Toolbar: WalterShop - (9ec204df-0e48-4c32-816e-2e928a4fd9c2) - mscoree.dll (file missing)
- O3 Toolbar: myBabylon French4 Toolbar - (fc600575-3013-4e8e-941c-4b00dafce730) - C: \ Program Files \ myBabylon_English4 \ tbmyBa.dll
- O3 Toolbar: Eazel-FR Toolbar - (a8f9752d-e2b8-4e7a-86b5-499f4330e2fe) - C: \ Program Files \ Eazel-FR \ tbEaz1.dll
- O3 Toolbar: Lexmark Barre d'outils - (1017A80C-6F09-4548-A84D-EDD6AC9525F0) - C: \ Program Files \ Lexmark Toolbar \ toolband.dll
- O3 Toolbar: Nero Toolbar - (D4027C7F-154A-4066-A1AD-4243D8127440) - C: \ Program Files \ Ask.com \ GenericAskToolbar.dll
- O3 Toolbar: AVG Security Toolbar - (CCC7A320-B3CA-4199-B1A6-9F516DD69829) - C: \ Program Files \ AVG \ AVG9 \ Toolbar \ IEToolbar.dll
O4 - HKLM \ .. \ Run: [Windows Defender]% ProgramFiles% \ Windows Defender \ ashDisp.exe
O4 - HKLM \ .. \ Run: [avast!] "C: \ Program Files \ Java \ jre6 \ bin \ ashDisp.exe
O4 - HKLM \ .. \ Run: [SmpcSys] C: \ Program Files \ Packard Bell \ SetupMyPC \ SmpSys.exe
O4 - HKLM \ .. \ Run: [Setresolution] C: \ Acer \ config \ 1920X1080.cmd
O4 - HKLM \ .. \ Run: [Windows Defender] RtHDVCpl.exe
O4 - HKLM \ .. \ Run: [playMovie] "C: \ Program Files \ CyberLink \ playMovie \ PMVService.exe"
O4 - HKLM \ .. \ Run: [PCMAgent] "C: \ Program Files \ CyberLink \ PowerCinema \ PCMAgent.exe"
O4 - HKLM \ .. \ Run: [avast!] Rundll32.exe C: \ Windows \ system32 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [MontiorGeo] C: \ Acer \ MonitorGeo.cmd
O4 - HKLM \ .. \ Run: [lxdxmon.exe] "C: \ Program Files \ Lexmark 3600-4600 Series \ lxdxmon.exe"
O4 - HKLM \ .. \ Run: [lxdxamon] "C: \ Program Files \ Lexmark 3600-4600 Series \ lxdxamon.exe"
O4 - HKLM \ .. \ Run: [Google Desktop Search] "C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe" / startup
O4 - HKLM \ .. \ Run: [FujiKeyboard] C: \ Acer \ Preload \ Autorun \ DRV \ FUJI Keyboard \ ABoard.exe
O4 - HKLM \ .. \ Run: [First Principle Group] C: \ Program Files \ First Principle Group \ fpg.exe / s
O4 - HKLM \ .. \ Run: [FijiKeyboard] C: \ Acer \ Preload \ Autorun \ DRV \ FIDJI Keyboard \ ABoard.exe
O4 - HKLM \ .. \ Run: [FaxCenterServer] "C: \ Program Files \ Lexmark Fax Solutions \ fm3032.exe" / s
O4 - HKLM \ .. \ Run: [EoEngine] "C: \ Program Files \ EoRezo \ EoEngine.exe"
O4 - HKLM \ .. \ Run: [CLMLServer] "C: \ Program Files \ CyberLink \ PowerCinema \ Kernel \ CLML \ CLMLSvc.exe"
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Acrobat 9.0 \ Acrobat \"
O4 - HKLM \ .. \ Run: [Adobe ARM] "C: \ Program Files \ Fichiers communs \ Adobe \ arm \ 1.0 \ AdobeARM.exe"
O4 - HKLM \ .. \ Run: [Carbonite Backup] C: \ Program Files \ Carbonite \ Carbonite Backup \ CarboniteUI.exe
O4 - HKLM \ .. \ Run: [MSSE] "C: \ Program Files \ Microsoft Security Essentials \ msseces.exe-hide
O4 - HKLM \ .. \ Run: [SoftwareHelper] C: \ Users \ hervé \ AppData \ Roaming \ eoRezo \ softwareupdate \ SoftwareUpdateHP.exe-runonce
O4 - HKCU \ .. \ Run: [flec003.exe] C: \ Users \ hervé \ AppData \ Roaming \ hidires \ flec003.exe
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows Media Player \ TeaTimer.exe
O4 - HKCU \ .. \ Run: [Skype] "C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe"
O4 - HKCU \ .. \ Run: [Skype] "C: \ Program Files \ Windows Live \ Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [jmpruil] "C: \ Users \ hervé \ AppData \ Local \ jmpruil.exe" jmpruil
O4 - HKCU \ .. \ Run: [Free Download Manager] "C: \ Program Files \ Free Download Manager \ ctfmon.exe"-autorun
O4 - HKCU \ .. \ Run: [dzotjx] "C: \ Users \ hervé \ AppData \ Local \ dzotjx.exe" dzotjx
O4 - HKCU \ .. \ Run: [amydwj] "C: \ Users \ hervé \ AppData \ Local \ amydwj.exe" amydwj
O4 - HKLM \ S-1-5-19 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKLM \ S-1-5-19 \ .. \ Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKLM \ S-1-5-20 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C: \ Program Files \ Microsoft Office \ Office12 \ CTFMON.EXE
O8 - Extra context menu item: E & Xporter vers Microsoft Excel - res: / / C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O8 - Extra context menu item: Tout Télécharger avec Free Download Manager - file: / / C: \ Program Files \ Free Download Manager \ dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file: / / C: \ Program Files \ Free Download Manager \ dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file: / / C: \ Program Files \ Free Download Manager \ dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file: / / C: \ Program Files \ Free Download Manager \ dlfvideo.htm
O9 - Extra button: Ajout Direct - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: & Ajout Direct dans Windows Live Writer - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra 'Tools' menuitem: & Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra button: (no name) - (85d1f590-48F4-11d9-9669-0800200c9a66) - C: \ Windows \ bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - (85d1f590-48F4-11d9-9669-0800200c9a66) - C: \ Windows \ bdoscandel.exe
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: (E2883E8F-472f-4FB0-9522-AC9BF37916A7) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
- O17 HKLM \ System \ CCS \ Services \ Tcpip \ .. \ (D4F5BAED-23A7-49CB-869F-9464D2C4AB7E): NameServer = 192.168.1.1
- Ø18 Protocole: LinkScanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files \ AVG \ AVG9 \ avgpp.dll (file missing)
O20 - AppInit_DLLs: C: \ PROGRA ~ 1 \ Google \ GOOGLE ~ 1 \ GOEC62 ~ 1.DLL
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - ALWIL Software - C: \ Program Files \ Adobe \ Photoshop Elements 6.0 \ PhotoshopElementsFileAgent.exe
O23 - Service: CarboniteService - Carbonite, Inc (www.carbonite.com) - C: \ Program Files \ Carbonite \ Carbonite Backup \ carboniteservice.exe
O23 - Service: Empowering Technology Service (ETService) - ALWIL Software - C: \ Program Files \ Packard Bell \ Packard Bell Recovery Management \ Service \ ETService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd - C: \ Program Files \ Fichiers communs \ Macrovision Shared \ FLEXnet Publisher \ FNPLicensingService.exe
O23 - Service: Service générique pour HID Keyboard Input Collections (GenericHidService) - Packard Bell Services - C: \ Windows \ system32 \ HidService.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: lxdxCATSCustConnectService - Lexmark International, Inc - C: \ Windows \ system32 \ spool \ drivers \ W32X86 \ 3 \ \ lxdxserv.exe
O23 - Service: lxdx_device - - C: \ Windows \ system32 \ lxdxcoms.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C: \ Program Files \ Nero \ Nero8 \ Nero BackItUp \ NBService.exe
O23 - Service: NMIndexingService - Nero AG - C: \ Program Files \ Fichiers communs \ Nero \ Lib \ NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C: \ Windows \ system32 \ nvvsvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc - C: \ Windows \ system32 \ IoctlSvc.exe
--
End of file - 14187 bytes
A voir également:
- Problèmes de virus
- Virus mcafee - Accueil - Piratage
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
- Ordinateur bloqué virus - Accueil - Arnaque
2 réponses
Bonjour,
Apparemment, tu fais une collection d'infections.
--> Télécharge FindyKill (de Chiquitine29 & C_XX) sur ton Bureau.
--> Double-clique sur FindyKill présent sur ton Bureau.
--> Tape F puis Entrée pour Français.
--> Au menu principal, choisis l'option 1 (Recherche).
--> Poste le rapport FindyKill.txt
Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.
Apparemment, tu fais une collection d'infections.
--> Télécharge FindyKill (de Chiquitine29 & C_XX) sur ton Bureau.
--> Double-clique sur FindyKill présent sur ton Bureau.
--> Tape F puis Entrée pour Français.
--> Au menu principal, choisis l'option 1 (Recherche).
--> Poste le rapport FindyKill.txt
Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.