Mon pc rame sur internet
Résolu/Fermé
janmi29
Messages postés
5
Date d'inscription
vendredi 11 novembre 2005
Statut
Membre
Dernière intervention
12 novembre 2005
-
11 nov. 2005 à 10:33
juju - 17 janv. 2014 à 13:13
juju - 17 janv. 2014 à 13:13
Bonjour excusez moi de vous deranger,
depuis hier mon pc rame a mort sur internrt.j'ai fais un scan antivirus (avast) et anti spyware (ad aware)
voici la copie du rapport hijackthis:
(je suis sous windows xp sp2)
merci de me tirer de la car je n'y connais rien du tout
Logfile of HijackThis v1.99.1
Scan saved at 10:05:00, on 11/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.063\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.accoona.com/search_assistant/accoona_search_assistant.jsp?&utm_id=400010&utm_content=leftnav&utm_source=efc&utm_medium=bund&utm_campaign=efc0605
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.accoona.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.accoona.com/search_assistant/accoona_search_assistant.jsp?&utm_id=400010&utm_content=leftnav&utm_source=efc&utm_medium=bund&utm_campaign=efc0605
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.accoona.com/search?q=%s
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.cegetel.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: Accoona Search Assistant - {944864A5-3916-46E2-96A9-A2E84F3F1208} - C:\Program Files\Accoona\ASearchAssist.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~1.DLL,ClientStartup -s
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [Hot_Tarts_fr] C:\Program Files\hbt\Dialers\Hot_Tarts_fr\Hot_Tarts_fr.exe /dontdial
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [adiras] adiras.exe
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Tracks Eraser Pro] C:\Program Files\Acesoft\Tracks Eraser Pro\te.exe min
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - https://ssl-tb.sitadelle.com/selfcare.cegetel.net/templates/static/ocx/AFAutoConfig.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{79A64098-9056-4766-91E8-B834CF87080C}: NameServer = 217.19.192.132 217.19.192.131
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: AutoComplete Service (Autocomplete) - Acesoft - C:\Program Files\Acesoft\Tracks Eraser Pro\delautocomp.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MySQL41 - Unknown owner - C:\MONSERVEUR\MySQL\MySQL.exe (file missing)
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
depuis hier mon pc rame a mort sur internrt.j'ai fais un scan antivirus (avast) et anti spyware (ad aware)
voici la copie du rapport hijackthis:
(je suis sous windows xp sp2)
merci de me tirer de la car je n'y connais rien du tout
Logfile of HijackThis v1.99.1
Scan saved at 10:05:00, on 11/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.063\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.accoona.com/search_assistant/accoona_search_assistant.jsp?&utm_id=400010&utm_content=leftnav&utm_source=efc&utm_medium=bund&utm_campaign=efc0605
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.accoona.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.accoona.com/search_assistant/accoona_search_assistant.jsp?&utm_id=400010&utm_content=leftnav&utm_source=efc&utm_medium=bund&utm_campaign=efc0605
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.accoona.com/search?q=%s
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.cegetel.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: Accoona Search Assistant - {944864A5-3916-46E2-96A9-A2E84F3F1208} - C:\Program Files\Accoona\ASearchAssist.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~1.DLL,ClientStartup -s
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [Hot_Tarts_fr] C:\Program Files\hbt\Dialers\Hot_Tarts_fr\Hot_Tarts_fr.exe /dontdial
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [adiras] adiras.exe
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Tracks Eraser Pro] C:\Program Files\Acesoft\Tracks Eraser Pro\te.exe min
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - https://ssl-tb.sitadelle.com/selfcare.cegetel.net/templates/static/ocx/AFAutoConfig.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{79A64098-9056-4766-91E8-B834CF87080C}: NameServer = 217.19.192.132 217.19.192.131
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: AutoComplete Service (Autocomplete) - Acesoft - C:\Program Files\Acesoft\Tracks Eraser Pro\delautocomp.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MySQL41 - Unknown owner - C:\MONSERVEUR\MySQL\MySQL.exe (file missing)
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
A voir également:
- Pourquoi mon ordinateur rame quand je vais sur internet
- Mon ordinateur rame - Guide
- Réinitialiser ordinateur - Guide
- D'où peut venir un problème de connexion internet sur un ordinateur ? - Guide
- Pourquoi je n'ai plus de son sur mon ordinateur - Guide
- 35 go internet équivalent en heure ✓ - Forum Free mobile
28 réponses
Utilisateur anonyme
Modifié le 17 mai 2008 à 13:00
Modifié le 17 mai 2008 à 13:00
Bonjour,
Méthode à suivre dans l'ordre...
Dans ajout/dupp de prog, rien qui ressemble a cela?
NEWDOT
----------------------------------------------------------------------------
¤Télécharge ces logiciels mais que tu n`utilises pas tout de suite:
1/
Spybot S&D 1.4 <<nouvelle version.
https://www.commentcamarche.net/telecharger/securite/20939-spybot-search-and-destroy/
Démo d'utilisation (merci à Balltrap34 pour cette réalisation).
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
2/
Ad-Aware SE 1.06 <<nouvelle version.
https://www.adaware.com/
-Une aide:
http://usa.lucretius-ada.com/zcvisitor/8782d344-4821-11ea-83ce-0a2cdf2c6be7?campaignid=0d1dff40-82d7-11e9-9533-0a157bfa6bfc
- installe le patch français, tu pourras le trouver ici:
http://download.lavasoft.de.edgesuite.net/public/pllangs.exe
et une petite vidéo d'utilisation ici:(merci à Moe31 pour cette réalisation).
http://pageperso.aol.fr/balltrap34/adawrevid.asf
----------------------------------------------------------------------------
¤Vide tes fichiers temps et temporary internet file:
:: Supprimer les fichiers temporaires ::
vider tout le contenu de ces dossiers.
* C:\Documents and Settings\ton compte\Local Settings\Temp
* C:\Documents and Settings\tous les autres comptes\Local Settings\Temp
* C:\Windows\Temp
:: Le contenu du dossier prefetch ::
* C:\WINDOWS\Prefetch <= sauf le fichier layout.ini
* Ne pas oublier de vider la corbeille !
----------------------------------------------------------------------------
¤Relance HijackThis, coche les cases devant ces lignes et ensuite clique sur fix checked :
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.accoona.com/search_assistant/accoona_search_assistant.jsp?&utm_id=400 010&utm_content=leftnav&utm_source=efc&utm_medium=bund&utm_campaign=efc0605
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.accoona.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.accoona.com/search_assistant/accoona_search_assistant.jsp?&utm_id=400 010&utm_content=leftnav&utm_source=efc&utm_medium=bund&utm_campaign=efc0605
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.accoona.com/search?q=%s
R3 - Default URLSearchHook is missing
O2 - BHO: Accoona Search Assistant - {944864A5-3916-46E2-96A9-A2E84F3F1208} - C:\Program Files\Accoona\ASearchAssist.dll
----------------------------------------------------------------------------
¤Vide tes fichiers temps et temporary internet file:
:: Supprimer les fichiers temporaires ::
vider tout le contenu de ces dossiers.
* C:\Documents and Settings\ton compte\Local Settings\Temp
* C:\Documents and Settings\tous les autres comptes\Local Settings\Temp
* C:\Windows\Temp
:: Le contenu du dossier prefetch ::
* C:\WINDOWS\Prefetch <= sauf le fichier layout.ini
* Ne pas oublier de vider la corbeille !
----------------------------------------------------------------------------
¤Recherche et supprime ceci:
attention seulement les fichiers (si présents).
C:\Program Files\Accoona
----------------------------------------------------------------------------
¤ Passe Ad-Aware et supprime tout ce qu'il trouve + supprime les quarantaines...
----------------------------------------------------------------------------
¤ Passe Spybot et corrige tout ce qu'il trouve + vaccine + supprime les quarantaines...
----------------------------------------------------------------------------
¤ Vide ta Corbeille.
----------------------------------------------------------------------------
¤ Redémarre en mode normal, relance Hijackthis et copie/colle un nouveau rapport sur le forum.
Précise tes soucis s'il en reste....
Tiens-moi au courant
A+
PS: tu nous derange jamais ;-)
Méthode à suivre dans l'ordre...
Dans ajout/dupp de prog, rien qui ressemble a cela?
NEWDOT
----------------------------------------------------------------------------
¤Télécharge ces logiciels mais que tu n`utilises pas tout de suite:
1/
Spybot S&D 1.4 <<nouvelle version.
https://www.commentcamarche.net/telecharger/securite/20939-spybot-search-and-destroy/
Démo d'utilisation (merci à Balltrap34 pour cette réalisation).
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
2/
Ad-Aware SE 1.06 <<nouvelle version.
https://www.adaware.com/
-Une aide:
http://usa.lucretius-ada.com/zcvisitor/8782d344-4821-11ea-83ce-0a2cdf2c6be7?campaignid=0d1dff40-82d7-11e9-9533-0a157bfa6bfc
- installe le patch français, tu pourras le trouver ici:
http://download.lavasoft.de.edgesuite.net/public/pllangs.exe
et une petite vidéo d'utilisation ici:(merci à Moe31 pour cette réalisation).
http://pageperso.aol.fr/balltrap34/adawrevid.asf
----------------------------------------------------------------------------
¤Vide tes fichiers temps et temporary internet file:
:: Supprimer les fichiers temporaires ::
vider tout le contenu de ces dossiers.
* C:\Documents and Settings\ton compte\Local Settings\Temp
* C:\Documents and Settings\tous les autres comptes\Local Settings\Temp
* C:\Windows\Temp
:: Le contenu du dossier prefetch ::
* C:\WINDOWS\Prefetch <= sauf le fichier layout.ini
* Ne pas oublier de vider la corbeille !
----------------------------------------------------------------------------
¤Relance HijackThis, coche les cases devant ces lignes et ensuite clique sur fix checked :
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.accoona.com/search_assistant/accoona_search_assistant.jsp?&utm_id=400 010&utm_content=leftnav&utm_source=efc&utm_medium=bund&utm_campaign=efc0605
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.accoona.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.accoona.com/search_assistant/accoona_search_assistant.jsp?&utm_id=400 010&utm_content=leftnav&utm_source=efc&utm_medium=bund&utm_campaign=efc0605
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.accoona.com/search?q=%s
R3 - Default URLSearchHook is missing
O2 - BHO: Accoona Search Assistant - {944864A5-3916-46E2-96A9-A2E84F3F1208} - C:\Program Files\Accoona\ASearchAssist.dll
----------------------------------------------------------------------------
¤Vide tes fichiers temps et temporary internet file:
:: Supprimer les fichiers temporaires ::
vider tout le contenu de ces dossiers.
* C:\Documents and Settings\ton compte\Local Settings\Temp
* C:\Documents and Settings\tous les autres comptes\Local Settings\Temp
* C:\Windows\Temp
:: Le contenu du dossier prefetch ::
* C:\WINDOWS\Prefetch <= sauf le fichier layout.ini
* Ne pas oublier de vider la corbeille !
----------------------------------------------------------------------------
¤Recherche et supprime ceci:
attention seulement les fichiers (si présents).
C:\Program Files\Accoona
----------------------------------------------------------------------------
¤ Passe Ad-Aware et supprime tout ce qu'il trouve + supprime les quarantaines...
----------------------------------------------------------------------------
¤ Passe Spybot et corrige tout ce qu'il trouve + vaccine + supprime les quarantaines...
----------------------------------------------------------------------------
¤ Vide ta Corbeille.
----------------------------------------------------------------------------
¤ Redémarre en mode normal, relance Hijackthis et copie/colle un nouveau rapport sur le forum.
Précise tes soucis s'il en reste....
Tiens-moi au courant
A+
PS: tu nous derange jamais ;-)
Utilisateur anonyme
11 nov. 2005 à 16:29
11 nov. 2005 à 16:29
re jamni
J ai pas bien compris...
Pour spybot oui je sais qu il le detecte mais est il dans ajout/suppression de programme?
apres ta reponse, je t indiquerais des instructions
a+
J ai pas bien compris...
Pour spybot oui je sais qu il le detecte mais est il dans ajout/suppression de programme?
apres ta reponse, je t indiquerais des instructions
a+
Bonjour , jai une gros ¨¨soucis ¨¨ avec mon pc lorsque, j'essaie de me connecter à internet, celui ci rame il met un temp fou a ouvrire la page solicité .. je ne sais quoi faire .. aprés plusieurs tentative de restauration .. (qui on échoué) ..
Je ne sais quoi faire ? pouriez vous m'aider...
Je ne sais quoi faire ? pouriez vous m'aider...
Utilisateur anonyme
11 nov. 2005 à 15:45
11 nov. 2005 à 15:45
salut
dans ajout/suppressuion de programme tu as new net, ou new dot net?
a+
dans ajout/suppressuion de programme tu as new net, ou new dot net?
a+
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
janmi29
Messages postés
5
Date d'inscription
vendredi 11 novembre 2005
Statut
Membre
Dernière intervention
12 novembre 2005
2
11 nov. 2005 à 16:09
11 nov. 2005 à 16:09
si excuse moi je viens de faire un scan avec spybot
et il essaie de suprimer new dotnet
et il essaie de suprimer new dotnet
bonjour et grand merci:
j'ai tout repris dans l'ordre depuis le debut et a mon grand soulagement ça marche du feu de dieu!!
merci pour ta patience et pour ta compétence.
a+(pas trop tot j'espère)
j'ai tout repris dans l'ordre depuis le debut et a mon grand soulagement ça marche du feu de dieu!!
merci pour ta patience et pour ta compétence.
a+(pas trop tot j'espère)
Utilisateur anonyme
12 nov. 2005 à 09:37
12 nov. 2005 à 09:37
Bonjour,
[Faut dire que tu as emule qui n arrange pas les choses]
Emule est il activé lorsque tu me dis que tu rames?
**
Lance ce scan en ligne:
http://www.bitdefender.fr/scan8/ie.html
Copie/colle le rapport
A+
[Faut dire que tu as emule qui n arrange pas les choses]
Emule est il activé lorsque tu me dis que tu rames?
**
Lance ce scan en ligne:
http://www.bitdefender.fr/scan8/ie.html
Copie/colle le rapport
A+
emiee1
Messages postés
1
Date d'inscription
mardi 29 janvier 2008
Statut
Membre
Dernière intervention
29 janvier 2008
1
29 janv. 2008 à 15:40
29 janv. 2008 à 15:40
bonjour a tous ,
je suis nouvelle sur ces forums mais j'aurai une question. j'ai fais plusieurs scan acvec avast et j'ai supprimé tous les fichiers infectés ce qui fait que mon ordi n'a plus de virus rien mais une fois que je connecte internet il se met a ramer mais seulement quand internet est connecté mais qd je ne le connecte pas il ne rame pas donc je ne sais pas a quoi cela peut etre du.
Si qqun a une reponse et une solution cela m'arrangerai bien.
Merci d'avance
je suis nouvelle sur ces forums mais j'aurai une question. j'ai fais plusieurs scan acvec avast et j'ai supprimé tous les fichiers infectés ce qui fait que mon ordi n'a plus de virus rien mais une fois que je connecte internet il se met a ramer mais seulement quand internet est connecté mais qd je ne le connecte pas il ne rame pas donc je ne sais pas a quoi cela peut etre du.
Si qqun a une reponse et une solution cela m'arrangerai bien.
Merci d'avance
janmi29
Messages postés
5
Date d'inscription
vendredi 11 novembre 2005
Statut
Membre
Dernière intervention
12 novembre 2005
2
11 nov. 2005 à 17:46
11 nov. 2005 à 17:46
excuse moi , j'ai été obligé de m'absenter.
non il n'est pas dans ajout et suppression de programme
merci pour ta patience
non il n'est pas dans ajout et suppression de programme
merci pour ta patience
janmi29
Messages postés
5
Date d'inscription
vendredi 11 novembre 2005
Statut
Membre
Dernière intervention
12 novembre 2005
2
12 nov. 2005 à 09:09
12 nov. 2005 à 09:09
bonjour regis59.
je crois que j'ai bien fait tout comme tu m'as dit mais ça rame toujours
ad aware et spybot sont clean et voila le rapport hijackthis:
Logfile of HijackThis v1.99.1
Scan saved at 08:58:58, on 12/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Administrateur\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.cegetel.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [Hot_Tarts_fr] C:\Program Files\hbt\Dialers\Hot_Tarts_fr\Hot_Tarts_fr.exe /dontdial
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [adiras] adiras.exe
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Tracks Eraser Pro] C:\Program Files\Acesoft\Tracks Eraser Pro\te.exe min
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - https://ssl-tb.sitadelle.com/selfcare.cegetel.net/templates/static/ocx/AFAutoConfig.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{79A64098-9056-4766-91E8-B834CF87080C}: NameServer = 217.19.192.132 217.19.192.131
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: AutoComplete Service (Autocomplete) - Acesoft - C:\Program Files\Acesoft\Tracks Eraser Pro\delautocomp.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MySQL41 - Unknown owner - C:\MONSERVEUR\MySQL\MySQL.exe (file missing)
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
merci et a bientôt j'espere
je crois que j'ai bien fait tout comme tu m'as dit mais ça rame toujours
ad aware et spybot sont clean et voila le rapport hijackthis:
Logfile of HijackThis v1.99.1
Scan saved at 08:58:58, on 12/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Administrateur\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.cegetel.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [Hot_Tarts_fr] C:\Program Files\hbt\Dialers\Hot_Tarts_fr\Hot_Tarts_fr.exe /dontdial
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [adiras] adiras.exe
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Tracks Eraser Pro] C:\Program Files\Acesoft\Tracks Eraser Pro\te.exe min
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - https://ssl-tb.sitadelle.com/selfcare.cegetel.net/templates/static/ocx/AFAutoConfig.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{79A64098-9056-4766-91E8-B834CF87080C}: NameServer = 217.19.192.132 217.19.192.131
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: AutoComplete Service (Autocomplete) - Acesoft - C:\Program Files\Acesoft\Tracks Eraser Pro\delautocomp.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MySQL41 - Unknown owner - C:\MONSERVEUR\MySQL\MySQL.exe (file missing)
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
merci et a bientôt j'espere
janmi29
Messages postés
5
Date d'inscription
vendredi 11 novembre 2005
Statut
Membre
Dernière intervention
12 novembre 2005
2
12 nov. 2005 à 14:13
12 nov. 2005 à 14:13
rebonjour
non, meme avec emule fermé ça rame un max
voici le rapport bitdefender:
BitDefender Online Scanner
Rapport d'analyse généré à: Sat, Nov 12, 2005 - 13:55:41
Voie d'analyse: C:\;D:\;E:\;F:\;G:\;H:\;I:\;J:\;K:\;L:\;
Statistiques
Temps
00:46:33
Fichiers
167665
Directoires
2446
Secteurs de boot
3
Archives
2115
Paquets programmes
14317
Résultats
Virus identifiés
2
Fichiers infectés
2
Fichiers suspects
0
Avertissements
0
Désinfectés
0
Fichiers effacés
2
Info sur les moteurs
Définition virus
233336
Version des moteurs
AVCORE v1.0 (build 2292) (i386) (Mar 3 2005 11:57:29)
Analyse des plugins
13
Archive des plugins
39
Unpack des plugins
4
E-mail plugins
6
Système plugins
1
Paramètres d'analyse
Première action
Désinfecté
Seconde Action
Supprimé
Heuristique
Oui
Acceptez les avertissements
Oui
Extensions analysées
*;
Excludez les extensions
Analyse d'emails
Oui
Analyse des Archives
Oui
Analyser paquets programmes
Oui
Analyse des fichiers
Oui
Analyse de boot
Oui
Fichier analysé
Statut
C:\System Volume Information\_restore{6CCA8727-F3FF-4CBC-9DE0-28C20231B9C9}\RP44\A0008092.dll
Détecté avec: Application.Adware.NewDotNet.B
C:\System Volume Information\_restore{6CCA8727-F3FF-4CBC-9DE0-28C20231B9C9}\RP44\A0008092.dll
Echec de la désinfection
C:\System Volume Information\_restore{6CCA8727-F3FF-4CBC-9DE0-28C20231B9C9}\RP44\A0008092.dll
Supprimé
C:\System Volume Information\_restore{6CCA8727-F3FF-4CBC-9DE0-28C20231B9C9}\RP45\A0009144.EXE
Détecté avec: Application.Adware.NewDotNet.B.Dropper
C:\System Volume Information\_restore{6CCA8727-F3FF-4CBC-9DE0-28C20231B9C9}\RP45\A0009144.EXE
Supprimé
et malgré ça ça rame encore!!!
merci et a bientot j'espère
non, meme avec emule fermé ça rame un max
voici le rapport bitdefender:
BitDefender Online Scanner
Rapport d'analyse généré à: Sat, Nov 12, 2005 - 13:55:41
Voie d'analyse: C:\;D:\;E:\;F:\;G:\;H:\;I:\;J:\;K:\;L:\;
Statistiques
Temps
00:46:33
Fichiers
167665
Directoires
2446
Secteurs de boot
3
Archives
2115
Paquets programmes
14317
Résultats
Virus identifiés
2
Fichiers infectés
2
Fichiers suspects
0
Avertissements
0
Désinfectés
0
Fichiers effacés
2
Info sur les moteurs
Définition virus
233336
Version des moteurs
AVCORE v1.0 (build 2292) (i386) (Mar 3 2005 11:57:29)
Analyse des plugins
13
Archive des plugins
39
Unpack des plugins
4
E-mail plugins
6
Système plugins
1
Paramètres d'analyse
Première action
Désinfecté
Seconde Action
Supprimé
Heuristique
Oui
Acceptez les avertissements
Oui
Extensions analysées
*;
Excludez les extensions
Analyse d'emails
Oui
Analyse des Archives
Oui
Analyser paquets programmes
Oui
Analyse des fichiers
Oui
Analyse de boot
Oui
Fichier analysé
Statut
C:\System Volume Information\_restore{6CCA8727-F3FF-4CBC-9DE0-28C20231B9C9}\RP44\A0008092.dll
Détecté avec: Application.Adware.NewDotNet.B
C:\System Volume Information\_restore{6CCA8727-F3FF-4CBC-9DE0-28C20231B9C9}\RP44\A0008092.dll
Echec de la désinfection
C:\System Volume Information\_restore{6CCA8727-F3FF-4CBC-9DE0-28C20231B9C9}\RP44\A0008092.dll
Supprimé
C:\System Volume Information\_restore{6CCA8727-F3FF-4CBC-9DE0-28C20231B9C9}\RP45\A0009144.EXE
Détecté avec: Application.Adware.NewDotNet.B.Dropper
C:\System Volume Information\_restore{6CCA8727-F3FF-4CBC-9DE0-28C20231B9C9}\RP45\A0009144.EXE
Supprimé
et malgré ça ça rame encore!!!
merci et a bientot j'espère
QuickScan 32-bit v0.9.9.103
---------------------------
Date de l'analyse : Tue Jan 10 03:19:03 2012
ID de la machine : 20E6F1D2
Aucune infection détectée.
--------------------------
Processus
---------
Card Reader Software 2276 C:\Program Files\Realtek Semiconductor Corp\Realtek Card Reader Monitor\CardReaderMonitor.exe
CommonSDK 2244 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
CommonSDK 2224 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
CommonSDK 2004 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
CommonSDK 1536 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
Flash® Player Installer/Uninstaller 2304 C:\Windows\System32\Macromed\Flash\FlashUtil11e_ActiveX.exe
Java(TM) Platform SE Auto Updater 2 0 3060 C:\Program Files\Common Files\Java\Java Update\jusched.exe
Microsoft® Windows® Operating System 3068 C:\Windows\System32\SearchFilterHost.exe
Microsoft® Windows® Operating System 984 C:\Windows\System32\SearchProtocolHost.exe
Microsoft® Windows® Operating System 388 C:\Windows\System32\smss.exe
MSPMirage.exe 284 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe
Picasa 444 C:\Program Files\Picasa2\PicasaMediaDetector.exe
RichVideo Module 1952 C:\Program Files\CyberLink\Shared Files\RichVideo.exe
SMP 2844 C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
Synaptics Pointing Device Driver 3296 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Système d'exploitation Microsoft® Windo 2652 C:\Program Files\Internet Explorer\ieuser.exe
Système d'exploitation Microsoft® Windo 2260 C:\Windows\explorer.exe
Système d'exploitation Microsoft® Windo 2028 C:\Windows\System32\csrss.exe
Système d'exploitation Microsoft® Windo 504 C:\Windows\System32\csrss.exe
Système d'exploitation Microsoft® Windo 620 C:\Windows\System32\lsass.exe
Système d'exploitation Microsoft® Windo 1984 C:\Windows\System32\rundll32.exe
Système d'exploitation Microsoft® Windo 3772 C:\Windows\System32\rundll32.exe
Système d'exploitation Microsoft® Windo 604 C:\Windows\System32\services.exe
Système d'exploitation Microsoft® Windo 1640 C:\Windows\System32\spoolsv.exe
Système d'exploitation Microsoft® Windo 1688 C:\Windows\System32\taskeng.exe
Système d'exploitation Microsoft® Windo 2916 C:\Windows\System32\taskeng.exe
Système d'exploitation Microsoft® Windo 556 C:\Windows\System32\wininit.exe
Système d'exploitation Microsoft® Windo 3012 C:\Windows\System32\winlogon.exe
Windows Live Messenger 4068 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
Windows® Internet Explorer 2320 C:\Program Files\Internet Explorer\iexplore.exe
Windows® Internet Explorer 3092 C:\Program Files\Internet Explorer\iexplore.exe
Windows® Internet Explorer 3308 C:\Program Files\Internet Explorer\iexplore.exe
(verifié) Microsoft® Windows® Operating System 3304 C:\Windows\ehome\ehmsas.exe
(verifié) Microsoft® Windows® Operating System 2672 C:\Windows\ehome\ehtray.exe
(verifié) Microsoft® Windows® Operating System 4024 C:\Windows\System32\wuauclt.exe
(verifié) Système d'exploitation Microsoft® Windo 4052 C:\Windows\System32\dwm.exe
(verifié) Système d'exploitation Microsoft® Windo 628 C:\Windows\System32\lsm.exe
(verifié) Système d'exploitation Microsoft® Windo 552 C:\Windows\System32\SearchIndexer.exe
(verifié) Système d'exploitation Microsoft® Windo 1208 C:\Windows\System32\SLsvc.exe
(verifié) Système d'exploitation Microsoft® Windo 1012 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 816 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1664 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 920 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 876 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1916 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1252 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1436 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1084 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 460 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1044 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 496 C:\Windows\System32\svchost.exe
(verifié) Windows Defender 428 C:\Program Files\Windows Defender\MSASCui.exe
Activité du réseau
------------------
Processus iexplore.exe (2320) connecté sur le port 3502 --> 178.33.122.73
Processus iexplore.exe (2320) connecté sur le port 3502 --> 178.33.122.73
Processus iexplore.exe (2320) connecté sur le port 80 (HTTP) --> 46.105.32.2
Processus iexplore.exe (2320) connecté sur le port 80 (HTTP) --> 74.125.230.249
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 173.194.67.94
Processus iexplore.exe (3092) connecté sur le port 443 (HTTP over SSL) --> 209.85.229.95
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 90.84.50.177
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 90.84.56.170
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 74.125.230.235
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 74.125.230.235
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 69.171.224.39
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 90.84.50.178
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 174.129.237.192
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 90.84.50.177
Processus iexplore.exe (3308) connecté sur le port 80 (HTTP) --> 74.125.230.237
Processus iexplore.exe (3308) connecté sur le port 80 (HTTP) --> 74.125.230.237
Processus wininit.exe (556) écoute sur les ports: 49152 (RPC)
Processus services.exe (604) écoute sur les ports: 49155 (RPC)
Processus lsass.exe (620) écoute sur les ports: 49156 (RPC)
Processus svchost.exe (876) écoute sur les ports: 135 (RPC)
Processus svchost.exe (1012) écoute sur les ports: 49153 (RPC)
Processus svchost.exe (1084) écoute sur les ports: 49154 (RPC)
Fichiers critiques et Autorun
-----------------------------
C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe
Card Reader Software C:\Program Files\Realtek Semiconductor Corp.\Realtek Card Reader Monitor\CardReaderMonitor.exe
CommonSDK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
Java(TM) Platform SE Auto Updater 2 0 C:\Program Files\Common Files\Java\Java Update\jusched.exe
Master CD/DVD Checker C:\Program Files\Packard Bell\SetupMyPc\MCDCheck.exe
MSPMirage.exe C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe
NVIDIA Compatible Windows 2000 Display C:\Windows\system32\NvCpl.dll
NVIDIA Driver Helper Service, Version 1 C:\Windows\System32\NVSVC.DLL
NVIDIA Media Center Library C:\Windows\system32\NvMcTray.dll
PB Care C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe
Picasa C:\Program Files\Picasa2\PicasaMediaDetector.exe
SMP C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
Synaptics Pointing Device Driver C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Système d'exploitation Microsoft® Windo C:\Windows\system32\logon.scr
Windows Live Messenger C:\Program Files\Windows Live\Messenger\msnmsgr.exe
Windows® Internet Explorer C:\Windows\system32\webcheck.dll
(verifié) Microsoft® Windows® Operating System C:\Windows\ehome\ehtray.exe
(verifié) Système d'exploitation Microsoft® Windo C:\Windows\system32\BROWSEUI.dll
(verifié) Système d'exploitation Microsoft® Windo c:\windows\system32\userinit.exe
(verifié) Windows Defender C:\Program Files\Windows Defender\MSASCui.exe
Plugins du navigateur
---------------------
AcroIEHelper Library C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
BitDefender QuickScan C:\Windows\Downloaded Program Files\qsax.dll
Browser Address Error Redirector C:\Program Files\Google\Google_BAE\BAE.dll
Complete Bar C:\Program Files\completebartb\auxi\completebarAu.dll
Complete Bar C:\Program Files\completebartb\completebarDx.dll
Complitly C:\Users\diana\AppData\Roaming\ComplitlyEngine\ComplitlyEngine.dll
DTX Toolbar C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency.dll
DTX Toolbar C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency3.5.dll
DTX Toolbar C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency3.6.dll
Garmin Communicator Plug-In C:\Windows\Downloaded Program Files\GarminAxControl.ocx
InstallShield Update Service C:\Windows\Downloaded Program Files\dwusplay.exe
Java(TM) Platform SE 6 U30 C:\Program Files\Java\jre6\bin\jp2ssv.dll
Java(TM) Platform SE 6 U30 C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
PokerStars C:\Program Files\PokerStars.FR\PokerStarsUpdate.exe
Shockwave for Director C:\Windows\system32\Adobe\Director\np32dsw.dll
Software Manager C:\Windows\Downloaded Program Files\isusweb.dll
VLC Multimedia Plug-in C:\Program Files\VideoLAN\VLC\npvlc.dll
Windows Presentation Foundation C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
Windows® Internet Explorer C:\Windows\system32\ieframe.dll
(verifié) InstallShield Update Service C:\Windows\Downloaded Program Files\dwusplay.dll
(verifié) Microsoft® Windows Live Login Helper C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
(verifié) Microsoft® Windows® Operating System C:\Windows\System32\nlaapi.dll
(verifié) Microsoft® Windows® Operating System C:\Windows\System32\winrnr.dll
(verifié) Système d'exploitation Microsoft® Windo C:\Windows\system32\mswsock.dll
(verifié) Système d'exploitation Microsoft® Windo C:\Windows\system32\napinsp.dll
(verifié) Système d'exploitation Microsoft® Windo C:\Windows\system32\pnrpnsp.dll
Analyse
-------
MD5: c11f6a1f61481e24be3fdc06ea6f7d2a C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
MD5: 6e3245df783e58375b3465f03274743e C:\Program Files\Common Files\Java\Java Update\jusched.exe
MD5: 65614c4c00dd1d35ff689c8d7a811308 C:\Program Files\Common Files\Microsoft Shared\DAO\dao360.dll
MD5: c55c71d48c43d55b3eb6dd34d64d1376 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
MD5: 9d86495e87641527ae39841c40d8159a C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\CPSCommonTools9.dll
MD5: 0292f5a07cdc72312e56fedce5624b72 C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\LayoutDll9.dll
MD5: 3c03db6f66c9792c9b6e30473e847ca2 C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\ROXIPP41.dll
MD5: 90cbf88acfec66a07a9fa749c01a4a5b C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\AlbumCommonPlugins.dll
MD5: 74d08f1779dc1572e269516e151d94b3 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\APSPluginDialogs.dll
MD5: a911857a8103751bcd5f09446753c1e1 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSAlbumObjects.dll
MD5: 4854d957de5cb62cb6bdc0045db20414 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSCommonEnglish.dll
MD5: 461ecee2339e92c10ae5d4bdc6cfd8c0 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSCommonObjects.dll
MD5: 9a891f8624dc9a73dd5fde33479083fb C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSFileLoader.dll
MD5: 2d4040f03702e79f6fa98d2e76ba831f C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
MD5: 0d2c5671928f7dee57ca01d0d29ea5ba C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\LeResourceLoader.dll
MD5: 9638e5820858593a12005c753b03ceae C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
MD5: 910fba95ee4f56449aa81315884c8efd C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
MD5: bf38c273c3ec524880af0aeb2e7ce160 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
MD5: 1b2c38411e57b9a8d42914361bf605ef C:\Program Files\Common Files\Roxio Shared\DLLShared\homeutils9.dll
MD5: 4929d1107847cfff14f3aea955af8389 C:\Program Files\Common Files\Roxio Shared\DLLShared\rsl.dll
MD5: 51778fd315c9882f1cbd932743e62a72 C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
MD5: b97f4388f752d0ed9ee0e3a5e9085070 C:\Program Files\completebartb\auxi\completebarAu.dll
MD5: 729a5278f354e1ffbe8752750bf01f67 C:\Program Files\completebartb\completebarDx.dll
MD5: ef8f9cdf38275f949985af790d162a7a C:\Program Files\completebartb\completebartb.dll
MD5: af3522098fcb406fdf0a64b5fe12afad C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\CV.dll
MD5: 06d8fd7dc21ffc2015737fbf9f808249 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\HighGUI.dll
MD5: 7d3b942ac94f01ef9367e5ca502c79a2 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\libmmd.dll
MD5: ac2275dca63c200a35c9dc968de5bf9a C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\LTDIS13N.dll
MD5: 48828ce9c4d75aa4f79e7cd3de425d90 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\LTFIL13N.DLL
MD5: 0c31bcbf8735312be8e8a87e3a1d96f3 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\LTKRN13N.dll
MD5: 7af1b11d7614e16eab22c3132d3bc1c5 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MediaCache.dll
MD5: f13bf43ca529521eedd5b2173a015f2b C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MediaObj.dll
MD5: f35a584e947a5b401feb0fe01db4a0d7 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MFC71.DLL
MD5: 062dfe5821ae5b56095eae77a5908f4f C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSMMagicCore.dll
MD5: a2b45d70fef7676641e310b06e18061d C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSMMagicScene.ax
MD5: 1e8169469dcc5eb24ab86655f0a3f792 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSMSportsAna.ax
MD5: e26642c193b81f2aa06d6013d4e07d03 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe
MD5: 6e5d8bda54279661e3c5f67119e647f3 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\optcvw7.dll
MD5: 0f03a5081dfcb127ca76bb657cc6f5f7 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\python24.dll
MD5: c3162ac1b592ceb43abe2f972a7222d3 C:\Program Files\CyberLink\Shared Files\RichVideo.exe
MD5: f8d164d02cfb3d282b6b050e773365ab C:\Program Files\Cyberlink\Shared files\RichVideops.dll
MD5: f5fa86eef366636c0b2417b37604cfeb C:\Program Files\Google\Google_BAE\BAE.dll
MD5: 5b2e1c16a2c420f60cd391b666003f14 C:\Program Files\Internet Explorer\ieuser.exe
MD5: 77b9a891222fb46b13e414b99e1af842 C:\Program Files\Internet Explorer\iexplore.exe
MD5: f2121482c2968cd3b53ed53acc9277a5 C:\Program Files\Java\jre6\bin\jp2ssv.dll
MD5: ccc24faa47c47e66be61bf22603c5e3a C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
MD5: a7a7ad08ba72ac90dcd5511ed895369b C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe
MD5: b6d82c30267289d56b4bfde3715d8f9f C:\Program Files\Packard Bell\SetupMyPc\MCDCheck.exe
MD5: fa52c48ca18edfb00180fd465e8f0b08 C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe
MD5: b1d8669cd13163585ca133332edd60e3 C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
MD5: 0a44c06a0bb2ebc8b08df7039a2248d1 C:\Program Files\Picasa2\PicasaMediaDetector.exe
MD5: 624ddfa8af97507e67fa07128f261813 C:\Program Files\PokerStars.FR\PokerStarsUpdate.exe
MD5: ff32c2770bd4ad29178b00e77f92197c C:\Program Files\Realtek Semiconductor Corp.\Realtek Card Reader Monitor\CardReaderMonitor.exe
MD5: ff32c2770bd4ad29178b00e77f92197c C:\Program Files\Realtek Semiconductor Corp\Realtek Card Reader Monitor\CardReaderMonitor.exe
MD5: 04a39b6f16747fa70cd9885327acc20c C:\Program Files\Realtek Semiconductor Corp\Realtek Card Reader Monitor\WINIO.DLL
MD5: 481429d1ff6d716c2cdb4849d952a99b C:\Program Files\Roxio\VideoCore 9\CPSVideoObjects.dll
MD5: e4e99677636ef949b546a1751c9b3a35 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
MD5: 255144d9c764241c897c85c798c52241 C:\Program Files\VideoLAN\VLC\npvlc.dll
MD5: b7dc98f6f4e7611a9c0849945fb28fb9 C:\Program Files\Windows Defender\MpOav.dll
MD5: 7d1f2afe12bafc4c18c5a0e3c6866e38 c:\program files\windows defender\mprtplug.dll
MD5: 65529f1dc10559844df306ff279d01fb C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{97B529A6-3561-4B28-BE58-1C66B657BF0C}\mpengine.dll
MD5: 163db46b803e4c83c444a026ff17d269 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{97B529A6-3561-4B28-BE58-1C66B657BF0C}\offreg.dll
MD5: 0e81a69992c86bd1bcedfcf908285712 C:\Users\diana\AppData\Roaming\ComplitlyEngine\ComplitlyEngine.dll
MD5: 9232d0e2a87b415869b128b2e7dc7953 C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency.dll
MD5: 761c53e00e6c1b64ec628be0f63fc86d C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency3.5.dll
MD5: e9fcb8fcf9fe1c27f7eece9afe944fb8 C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency3.6.dll
MD5: 05e3bac0d6d3bf468754dd9fe8f5e9d2 C:\Windows\AppPatch\AcLayers.DLL
MD5: f4d241169a2635e28732ca51c3adb1ec C:\Windows\AppPatch\AcRedir.DLL
MD5: c9e8191e28539ba03daf5298d6d7f1df C:\Windows\AppPatch\iebrshim.dll
MD5: 01e2eca759056f23c73a035fdabb2d6d C:\Windows\Downloaded Program Files\dwusplay.exe
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\Windows\Downloaded Program Files\GarminAxControl.ocx
MD5: b8f613ac24cc3c706029e602e2d5ddbf C:\Windows\Downloaded Program Files\qsax.dll
MD5: ab87eeffd18f2baafc274e7075ea6c67 C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
MD5: 09c91e1f199c53e1114396b59b3b4d9e C:\Windows\system32\ACLUI.dll
MD5: 2134e14dfb56952f548487898ae63a89 C:\Windows\system32\Adobe\Director\np32dsw.dll
MD5: e0761b16f3f6f7083c7eda3ef59f13ba C:\Windows\System32\adsldpc.dll
MD5: c77f71aa825263541965846edd9e8729 C:\Windows\system32\advpack.dll
MD5: 67c30fafa58bd7e02a9da8be28512934 C:\Windows\system32\audiodev.dll
MD5: 669388db959f5b07aaaa43c796c7aa05 C:\Windows\system32\AUTHZ.dll
MD5: 387ef0acff9f82015ef509f099c03999 C:\Windows\system32\AVICAP32.dll
MD5: f31eebc1a1c81fd04005489cc3dcdfe7 C:\Windows\system32\basesrv.dll
MD5: c1db5285d572ffd741fde14df3e51f97 C:\Windows\system32\bitsigd.dll
MD5: f21f255b91ca4f04e4250decd2067cbb c:\windows\system32\bitsperf.dll
MD5: d333058925ce305e39de8d5ad2b52a46 C:\Windows\system32\CLUSAPI.DLL
MD5: 74f26fc01b180d4a99a168ed69c30a53 C:\Windows\system32\cmd.exe
MD5: 7f15b4953378c8b5161d65c26d5fed4d C:\Windows\system32\cngaudit.dll
MD5: ee11e4fe19d61275246e5772bc1ec795 C:\Windows\system32\comsvcs.dll
MD5: bf6f0c2df119f71c22c00525adf2ee56 C:\Windows\system32\corpol.dll
MD5: 129a64901aaf7205f753090a779a4321 C:\Windows\System32\credui.dll
MD5: 615a3b1cda204e8123c5472540d229c0 C:\Windows\system32\CRYPTUI.dll
MD5: a8838baffc18781990cf7d7bb9678715 C:\Windows\system32\CSRSRV.dll
MD5: abca209eba02cb59233614db83b4f50d C:\Windows\System32\csrss.exe
MD5: 8acd8e3ea303da48db223f4759cfb254 C:\Windows\system32\diagperf.dll
MD5: cb1f79a5b3551273e55f69dddcb919e3 C:\Windows\system32\dispex.dll
MD5: 5665120753fce7123c4deace241ee715 C:\Windows\system32\DNSAPI.dll
MD5: 4805d9a6d281c7a7defd9094dec6af7d c:\windows\system32\dnsrslvr.dll
MD5: 48eb99503533c27ac6135648e5474457 C:\Windows\system32\drivers\afd.sys
MD5: 8153396d5551276227fa146900f734e6 C:\Windows\system32\DRIVERS\bowser.sys
MD5: 124c579d3ef007437557b0a9f75e2b20 C:\Windows\system32\drivers\CHDART.sys
MD5: a3e9fa213f443ac77c7746119d13feec C:\Windows\System32\Drivers\dfsc.sys
MD5: 4ac51459805264affd5f6fdfb9d9235f C:\Windows\System32\Drivers\GEARAspiWDM.sys
MD5: 3c64042b95e583b366ba4e5d2450235e C:\Windows\system32\drivers\hidusb.sys
MD5: 97469037714070e45194ed318d636401 C:\Windows\system32\drivers\intelide.sys
MD5: ce44cc04262f28216dd4341e9e36a16f C:\Windows\system32\DRIVERS\intelppm.sys
MD5: d2600cb17b7408b4a83f231dc9a11ac3 C:\Windows\system32\drivers\kbdhid.sys
MD5: a3a6dff7e9e757db3df51a833bc28885 C:\Windows\system32\drivers\mouhid.sys
MD5: 5734a0f2be7e495f7d3ed6efd4b9f5a1 C:\Windows\system32\DRIVERS\mrxsmb.sys
MD5: 6b5fa5adfacac9dbbe0991f4566d7d55 C:\Windows\system32\DRIVERS\mrxsmb10.sys
MD5: 5c80d8159181c7abf1b14ba703b01e0b C:\Windows\system32\DRIVERS\mrxsmb20.sys
MD5: 442eac1b12acf1bad6f1224167e034c8 C:\Windows\system32\DRIVERS\nvlddmkm.sys
MD5: a1108084b0d2fc43dcc401735770e2a3 C:\Windows\system32\DRIVERS\nvmfdx32.sys
MD5: 9aebc32f9d6e02ebee0369ab296fe7c8 C:\Windows\system32\DRIVERS\nvsmu.sys
MD5: f7bb4e7a7c02ab4a2672937e124e306e C:\Windows\System32\Drivers\PxHelp20.sys
MD5: 924a3dd87d2940b583686899ea1b1406 C:\Windows\system32\DRIVERS\RTL8187B.sys
MD5: 6e7f2054faedbe766034aa8a185213ec C:\Windows\system32\drivers\RTSTOR.SYS
MD5: 51cf56aa8bcc241f134b420b8f850406 C:\Windows\system32\drivers\sffdisk.sys
MD5: 96ded8b20c734ac41641ce275250e55d C:\Windows\system32\drivers\sffp_mmc.sys
MD5: 8b08cab1267b2c377883fc9e56981f90 C:\Windows\system32\drivers\sffp_sd.sys
MD5: 2252aef839b1093d16761189f45af885 C:\Windows\System32\DRIVERS\srv.sys
MD5: b7ff59408034119476b00a81bb53d5d1 C:\Windows\System32\DRIVERS\srv2.sys
MD5: 2accc9b12af02030f531e6cca6f8b76e C:\Windows\System32\DRIVERS\srvnet.sys
MD5: 8a321f644c0f2d403b867481065e7ec2 C:\Windows\system32\DRIVERS\SynTP.sys
MD5: 292a25bb75a568ae2c67169ba2c6365a C:\Windows\system32\drivers\usbaudio.sys
MD5: 7bdb7b0e7d45ac0402d78b90789ef47c C:\Windows\system32\DRIVERS\usbohci.sys
MD5: 325dbbacb8a36af9988ccf40eac228cc C:\Windows\system32\DRIVERS\usbuhci.sys
MD5: 0a6b81f01bc86399482e27e6fda7b33b C:\Windows\System32\Drivers\usbvideo.sys
MD5: 774f96039dd46df3dd5d4e74531afe2f C:\Windows\System32\Drivers\vm331avs.sys
MD5: f03110711b17ad31271cb2baf0dbb2b1 C:\Windows\system32\DRIVERS\winusb.sys
MD5: 701a9f884a294327e9141d73746ee279 C:\Windows\system32\drivers\wmiacpi.sys
MD5: b68fcc1f8684ab3ec4be4d0a2537d26d C:\Windows\system32\Dxtmsft.dll
MD5: d12feb0e3ea6063a65a5498ed90fd790 C:\Windows\system32\Dxtrans.dll
MD5: 0af64a7b89f34a51fcf25e1f360cca39 C:\Windows\system32\eapphost.dll
MD5: 219f279e9a34c94538647191ab76c735 C:\Windows\system32\esent.dll
MD5: 254c64b570a99f10952aca71f24a2236 C:\Windows\system32\expsrv.dll
MD5: 4fb37ec51bdb2a6543f1f712555b9579 C:\Windows\system32\FeClient.dll
MD5: d547391c463e4b329b597a3bc07ea29d C:\Windows\system32\FunDisc.dll
MD5: 988963e9e07787e1d8f99dc1f452213d c:\windows\system32\FwRemoteSvr.DLL
MD5: 05b6a5ce1c7767c32df35966107cb1ec C:\Windows\system32\hhctrl.ocx
MD5: b4b59ac042ee3733a862f26cbc0b17fc C:\Windows\system32\hidphone.tsp
MD5: 0c84b6affa7486422235584110d7176f c:\windows\system32\ICAAPI.dll
MD5: d5e8f09e9db9eb3a81925f7e634b95be C:\Windows\system32\ieapfltr.dll
MD5: 92047ade3fe9ff51132bc14fb8d77997 C:\Windows\system32\ieframe.dll
MD5: 43ab7846279a09104e5e04cce8b241be C:\Windows\system32\iepeers.dll
MD5: 962abfb0805210936f0c149f9154bedf C:\Windows\system32\iertutil.dll
MD5: f2f627e24fc6adf67526840d68a3544d C:\Windows\system32\IEUI.dll
MD5: 5a005676a0252fbafec8f68162eb9f88 C:\Windows\system32\ImgUtil.dll
MD5: d4e26869d0bc72fb6c186926b899e3ed C:\Windows\system32\inetcomm.dll
MD5: cde0805636000414e22eb36fbab61eee C:\Windows\System32\inetpp.dll
MD5: 6a35d233693edc29a12742049bc5e37f c:\windows\system32\iphlpsvc.dll
MD5: dcb288183cf77605110944232c6a2665 C:\Windows\system32\jscript.dll
MD5: 7d80a6e1fe4f3b40e5992ee8964a00f4 C:\Windows\system32\kerberos.dll
MD5: 306835d4e74e49a5d10f0fca0b422eb1 C:\Windows\system32\kernel32.dll
MD5: 74c2f29cc612b2b34231bebd824d2fb2 C:\Windows\system32\keyiso.dll
MD5: 953193a9dea40348c1086d171f6440ae C:\Windows\system32\kmddsp.tsp
MD5: 861797d3c83a6eba05fb2c63b1a45e82 C:\Windows\system32\ksproxy.ax
MD5: d2ef003c2be9a06aba7bea2d36a8ba3b C:\Windows\system32\kswdmcap.ax
MD5: ca0b849566776a17f35f0339be17dfd9 c:\windows\system32\ktmw32.dll
MD5: 19ffad68a02af1bf0bc336ee26cd6767 c:\windows\system32\l2gpstore.dll
MD5: 35d40113e4a5b961b6ce5c5857702518 c:\windows\system32\lmhsvc.dll
MD5: b17d18fd6594aaa25cbc95e799b1bf40 C:\Windows\system32\logon.scr
MD5: e9f427ef46965d33e878a507a2f5ccb6 C:\Windows\system32\Macromed\Flash\Flash11e.ocx
MD5: d5f72e03edf8bdea4847d693237330c7 C:\Windows\system32\Macromed\Flash\FlashUtil11e_ActiveX.dll
MD5: 54126cddef533083d0ffdb94810ad1aa C:\Windows\System32\Macromed\Flash\FlashUtil11e_ActiveX.exe
MD5: 6d564d355d1ab55e6c52d985ecd01c7b C:\Windows\system32\MFC42.dll
MD5: f35a584e947a5b401feb0fe01db4a0d7 C:\Windows\system32\MFC71.DLL
MD5: e1f8293b0cdd3febd80a4879ca53b771 C:\Windows\system32\MFC71FRA.DLL
MD5: 6d92d25519ee321870998f265e86c954 C:\Windows\System32\mfplat.dll
MD5: b4f5de3dad8e6b97272f45db97674878 C:\Windows\System32\mgmtapi.dll
MD5: 3dbfebe4ddf9ce3d647faafc1d15f3c6 C:\Windows\System32\MPRAPI.dll
MD5: eea6f3cfc1f7e8709ebd8a78fba1674a C:\Windows\system32\msfeeds.dll
MD5: 0e34cff4b801cd104d3f35f8d992bf17 C:\Windows\system32\MSFTEDIT.DLL
MD5: d6c2ceacb1ee184ea0c1d6bd594b398f C:\Windows\system32\mshtml.dll
MD5: c5bbd8bdcf29c18e9646a2f7af2a2a33 C:\Windows\system32\mshtmled.dll
MD5: aab5feaabf4cb6f76d794203831c8d94 C:\Windows\system32\Msidle.dll
MD5: 42f99dde2dd172cc68849c8ecdb86432 C:\Windows\system32\MSJET40.DLL
MD5: fad51c445664e16f49e2725bb0790a4e C:\Windows\system32\msjtes40.dll
MD5: f3ebda850cc141768498decaad513299 C:\Windows\system32\msls31.dll
MD5: 5e41139ec6efbcaffd96d46925e544ab c:\windows\system32\mspatcha.dll
MD5: abe9eea1eabea0711610a637a7b1c25d C:\Windows\system32\msprivs.dll
MD5: 5c4363a73adf425d2a85258040414043 C:\Windows\system32\MSRATING.dll
MD5: 4774d83be60b7f47c612e25d6fe0f010 C:\Windows\system32\MSSHooks.dll
MD5: 365fef29b22f626c5756ac0dee91c249 C:\Windows\System32\msshsq.dll
MD5: cd5d53dfe552074d5553e1089961ea6f C:\Windows\system32\mssph.dll
MD5: ac32dc4d4552151d6842b678d52eb9b7 C:\Windows\system32\mssvp.dll
MD5: df3b640b8a2527f152e7f4ccaac0fa38 C:\Windows\system32\mswstr10.dll
MD5: f30d5ee1426d519f0c6e41a24c51d7ad C:\Windows\system32\mydocs.dll
MD5: 2fa16465f64db54b1f7f511395eb4fd7 C:\Windows\system32\NCObjAPI.DLL
MD5: f4d9ed6bd74ad7cc0bec83c43a1cb76b c:\windows\system32\ncsi.dll
MD5: 2f6776acefe41ee889c464ea407918f2 C:\Windows\system32\ndptsp.tsp
MD5: 6bc5fcef351e4cb5a269c1e84b5a06da C:\Windows\system32\netcfgx.dll
MD5: a8efc0b6e75b789f7fd3ba5025d4e37f C:\Windows\system32\netlogon.dll
MD5: 4bf053944e973c073339be841c9ecf28 C:\Windows\System32\NETRAP.dll
MD5: 840935da7eb259d4e870fdf1a6a73c91 C:\Windows\System32\NLSData000c.dll
MD5: 11a77885f55aca1c4bb3b1ac1642ce60 C:\Windows\System32\NLSLexicons000c.dll
MD5: 8bb86f0c7eea2bded6fe095d0b4ca9bd c:\windows\system32\nsisvc.dll
MD5: 89d0e06d6165c98e47065722ce703fad C:\Windows\system32\ntdll.dll
MD5: 8b9f4298264c267ec43c0bf8cada343c C:\Windows\system32\nvapi.dll
MD5: 217e2b91eaaeafdaff1db718b062c7a0 C:\Windows\system32\NvCpl.dll
MD5: 8785a60fefc28b795358ef25536ed72a C:\Windows\system32\nvd3dum.dll
MD5: 7f493300e035fec8dbe031969b291766 C:\Windows\system32\NvMcTray.dll
MD5: 48769100e4a0c3335f8c775be8bf9e34 C:\Windows\System32\NVSVC.DLL
MD5: cabe68b4ad2fec8c18e18f73303eb26f C:\Windows\system32\ODBC32.dll
MD5: aa406846dd60e3a4536dbaab4037b685 C:\Windows\system32\ole32.dll
MD5: fa6bd25a5a65a6ff5be4385098e3bdef C:\Windows\system32\OLEAUT32.DLL
MD5: ae70ae6f0760793d4893c3735eec7292 C:\Windows\system32\olepro32.dll
MD5: 4a1feebf039b283258b0e479fa135dba C:\Windows\System32\osbaseln.dll
MD5: f0062778f50838145ac46b384ffb4fa3 C:\Windows\system32\pcadm.dll
MD5: b8d3bf818defe1da9a754f214e528221 C:\Windows\system32\pngfilt.dll
MD5: e340845c8e96d107c36420065d7a5733 C:\Windows\system32\printcom.dll
MD5: 60802d34abee835ce80cea4ce04a2140 C:\Windows\system32\query.dll
MD5: 801f1e963f7eeffda3f9ef89db3ef133 C:\Windows\system32\radardt.dll
MD5: 5eaad3f8b0afe4c5c1777de18262fbd3 C:\Windows\System32\raschap.dll
MD5: 83a54618958daa59f2f7312d6897d3e8 C:\Windows\System32\RASDLG.dll
MD5: ff672ec108883fe90c8bec3e8e1d503f C:\Windows\system32\rasppp.dll
MD5: 88225070dd2f7b0b2ed51e7935078641 C:\Windows\system32\RASQEC.DLL
MD5: f3c74862035d9645e2c08731f43aea3f C:\Windows\system32\rastapi.dll
MD5: 1c0e2529fed8862f08be8b562cfc3c5c C:\Windows\System32\rastls.dll
MD5: b9f3ff52b84fd9e3cafb29b8ee385e5b C:\Windows\system32\RESUTILS.DLL
MD5: 9de05ce950e4bc8820464f137029b358 C:\Windows\system32\RPCRT4.dll
MD5: 301ae00e12408650baddc04dbc832830 c:\windows\system32\rpcss.dll
MD5: 4b555106290bd117334e9a08761c035a C:\Windows\System32\rundll32.exe
MD5: 1eacff296a418f23b38bbc02e337f38b C:\Windows\system32\SAMSRV.dll
MD5: 28b84eb538f7e8a0fe8b9299d591e0b9 C:\Windows\system32\scecli.dll
MD5: ea5d4bfb6a9f6a659c3ddce419d8217c C:\Windows\system32\SCESRV.dll
MD5: 6528ee11efa77f8c8b1c6ead401f907f C:\Windows\system32\schannel.dll
MD5: 7b587b8a6d4a99f79d2902d0385f29bd c:\windows\system32\schedsvc.dll
MD5: 87889a983c015080fa813d7e32910d1e C:\Windows\System32\SearchFilterHost.exe
MD5: c4894b3b448b647bedc9e916d181bdbe C:\Windows\System32\SearchProtocolHost.exe
MD5: 0d836890c7afb97e377e73870921f68f C:\Windows\System32\sendmail.dll
MD5: 2b336ab6286d6c81fa02cbab914e3c6c C:\Windows\System32\services.exe
MD5: 048b65ec931a39a5f42016be04775274 C:\Windows\system32\SHELL32.dll
MD5: 44338cab70f1db264d2f3f9f86a5d281 C:\Windows\system32\SHLWAPI.dll
MD5: 1e3fdb80e40a3ce645f229dfbdfb7694 c:\windows\system32\shsvcs.dll
MD5: 6701ddaf68bede6bbeea9d514d73a35b C:\Windows\System32\smss.exe
MD5: 76d54175bde317e4f251028afa117309 C:\Windows\System32\SPOOLSS.DLL
MD5: 3665f79026a3f91fbca63f2c65a09b19 C:\Windows\System32\spoolsv.exe
MD5: bf7e4d6f60a6d9e866432855c6f8c262 c:\windows\system32\sqmapi.dll
MD5: 234cb691fba69e8c1be489a341586252 C:\Windows\System32\srchadmin.dll
MD5: 1925e63c91cf1610ae41bfd539062079 c:\windows\system32\srvsvc.dll
MD5: 452341e471d2d961229dfe0842957272 C:\Windows\system32\SSCORE.DLL
MD5: 365828e555e9479246efd9090c41c2d7 C:\Windows\system32\STI.dll
MD5: 539b857110b244aa1904be612c9bd238 C:\Windows\system32\SynCOM.dll
MD5: 1b2b3e52b18dd9121d9eb1f579fd381e C:\Windows\system32\SynTPAPI.dll
MD5: 71f5a7104fdf16c0ac5283a6ce666553 C:\Windows\system32\SYSNTFY.dll
MD5: e3923280e0d6e8a98925ba36e835cc73 C:\Windows\system32\taskcomp.dll
MD5: eafb5897ac9cd84890171ac38862320f C:\Windows\System32\taskeng.exe
MD5: f315e8a8517ebfa13ecd16011fb0a03b C:\Windows\system32\taskschd.dll
MD5: 5091452dc719281cf1dd69367e13b494 C:\Windows\System32\tcpmib.dll
MD5: f9290d67c4b4b9b31cd3fc8be73a4c9b C:\Windows\System32\tcpmon.dll
MD5: 8a38b5e8493a9d103083b8620ac5f3a1 C:\Windows\System32\tdh.dll
MD5: f8873d15018f411588bec02c1725bada C:\Windows\system32\tspkg.dll
MD5: e45051c374f845edf3db02a35ba13193 C:\Windows\system32\umb.dll
MD5: 6cdd310172bcc9f5a2fac445b20b3d5e C:\Windows\system32\unimdm.tsp
MD5: dfbaadf1b624dc71e88d34d86b3595be C:\Windows\system32\uniplat.dll
MD5: fedf099539e39797a58f136ac3144be4 C:\Windows\system32\urlmon.dll
MD5: 0bf0bb276f17b6ad61a8694d2551ec28 C:\Windows\System32\usbmon.dll
MD5: a23e4692716c25e5aea300ed74e73a1c C:\Windows\system32\USP10.dll
MD5: 4995b131f6b4da0f8f7d2191e37054bd C:\Windows\system32\VBAJET32.DLL
MD5: d5f28df4c4100b233d7f5c708673696d C:\Windows\system32\vbscript.dll
MD5: 796bc0d3e5f77bd346d8bd3877b7169c C:\Windows\system32\vmprp331.ax
MD5: 00de6e95c16103d25411789156c4928c C:\Windows\system32\VSSAPI.DLL
MD5: dc3ae9f1554dcd97f90983ddbdacd83d C:\Windows\system32\vsstrace.dll
MD5: 7edd3cdeff1004cf15e5c86168ff2d62 C:\Windows\System32\Wbem\esscli.dll
MD5: 52a53bcccf489d4097191b7b78dffa58 C:\Windows\system32\wbem\fastprox.dll
MD5: a68aeda4eb23012c5207dff729d85692 C:\Windows\system32\wbem\ncprov.dll
MD5: 220db6d951b90c5ceddb4d3a93c108df C:\Windows\system32\wbem\repdrvfs.dll
MD5: 8beb91025512c439b4b8624a0cfbd2c3 C:\Windows\system32\wbem\wbemcore.dll
MD5: fd02ca3f5ae91337d67b80f6852d2efb C:\Windows\system32\wbem\wbemess.dll
MD5: da39b480239feb2cc0f4be7b185b63db C:\Windows\system32\wbem\wbemprox.dll
MD5: e91a23a9bc6dc56a049eb16096c17d02 C:\Windows\system32\wbem\wmiprvsd.dll
MD5: dc30569eaefaf3455ce765ae8fdaf48b C:\Windows\system32\wbem\wmiutils.dll
MD5: 29ec7259e8196d9f90a3d59b3d546faf C:\Windows\system32\wdigest.dll
MD5: c99a99cdf3f073f9bca69b77d60b37fb c:\windows\system32\WDSCORE.dll
MD5: 4f4889a9d680714be11b31bd01a0411a C:\Windows\system32\webcheck.dll
MD5: eef8941abbd675ae84d016b4bdf9a6b4 C:\Windows\system32\wer.dll
MD5: 3abdb4beae7cf1187109756d5f3a9bc0 c:\windows\system32\wevtsvc.dll
MD5: 0745d6ead386710110817fbec03f5161 C:\Windows\system32\wfapigp.dll
MD5: 73fe2e5fa55088a241aa2732f5d387d6 C:\Windows\system32\wiarpc.dll
MD5: 60cffd3fa1179ea8c40671604071da06 C:\Windows\System32\win32spl.dll
MD5: da5a72211661c7f162b332fea4f09a69 C:\Windows\system32\WININET.dll
MD5: 101ba3ea053480bb5d957ef37c06b5ed C:\Windows\System32\wininit.exe
MD5: c2610b6bdbefc053bbdab4f1b965cb24 C:\Windows\System32\winlogon.exe
MD5: 3fcb7347d2de38488c85a31ea7838a3c C:\Windows\system32\WinSATAPI.dll
MD5: f42f8855cb5c22e203c6672b124f17fd C:\Windows\system32\winsrv.dll
MD5: abe9dec1e78226f70f5a6d18f701aff2 c:\windows\system32\WLANMSM.DLL
MD5: 2938e3b155c2647137a1910f534e66be c:\windows\system32\WLANSEC.dll
MD5: 0636d4fe43c198c289f37be4083204d0 c:\windows\system32\wlgpclnt.dll
MD5: 92283d9e33ec5f41ecc0b430b7459241 C:\Windows\system32\wls0wndh.dll
MD5: 0727200f10320a6ba7e59433094fbba7 C:\Windows\system32\WMALFXGFXDSP.dll
MD5: f0321da5203f1e71917f3b7a13dc4912 C:\Windows\system32\WMsgAPI.dll
MD5: a9662bcf218bc76869a8d91635d5f93a C:\Windows\System32\Wpc.dll
MD5: 689c2a3b8c6cbc64e6959c7c858b742c C:\Windows\system32\wpdshext.dll
MD5: d7f8d560ff816126f4db520d1bdc3281 C:\Windows\System32\wsdapi.dll
MD5: ccaf246004f719f858e841a2ba12c308 C:\Windows\system32\WSDCHNGR.DLL
MD5: 47c4359fa1e1460f16cebd1a2bca73be C:\Windows\System32\WSDMon.dll
MD5: 1367ef1c1ba82e4a559feda1f0d8383c C:\Windows\System32\wsnmp32.dll
MD5: 399bb52ad0668472717498e97cf28341 c:\windows\system32\WUDFPlatform.dll
MD5: f41857e440a9df3fd5a543c8b2a53048 C:\Windows\system32\zipfldr.dll
MD5: c9564cf4976e7e96b4052737aa2492b4 C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCR80.dll
MD5: 4c39358ebdd2ffcd9132a30e1ec31e16 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCP90.dll
MD5: cdbe9690cf2b8409facad94fac9479c9 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCR90.dll
MD5: e402a6e79d1e4dbfeba8b364c67a3158 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6001.18523_none_886c608850a2f36f\COMCTL32.dll
MD5: d702b4e30b31bfcab7bd4e5965c1a5dc C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2\comctl32.dll
MD5: 81e199bfe82c106d38f989674d0dec1f C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a18
---------------------------
Date de l'analyse : Tue Jan 10 03:19:03 2012
ID de la machine : 20E6F1D2
Aucune infection détectée.
--------------------------
Processus
---------
Card Reader Software 2276 C:\Program Files\Realtek Semiconductor Corp\Realtek Card Reader Monitor\CardReaderMonitor.exe
CommonSDK 2244 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
CommonSDK 2224 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
CommonSDK 2004 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
CommonSDK 1536 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
Flash® Player Installer/Uninstaller 2304 C:\Windows\System32\Macromed\Flash\FlashUtil11e_ActiveX.exe
Java(TM) Platform SE Auto Updater 2 0 3060 C:\Program Files\Common Files\Java\Java Update\jusched.exe
Microsoft® Windows® Operating System 3068 C:\Windows\System32\SearchFilterHost.exe
Microsoft® Windows® Operating System 984 C:\Windows\System32\SearchProtocolHost.exe
Microsoft® Windows® Operating System 388 C:\Windows\System32\smss.exe
MSPMirage.exe 284 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe
Picasa 444 C:\Program Files\Picasa2\PicasaMediaDetector.exe
RichVideo Module 1952 C:\Program Files\CyberLink\Shared Files\RichVideo.exe
SMP 2844 C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
Synaptics Pointing Device Driver 3296 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Système d'exploitation Microsoft® Windo 2652 C:\Program Files\Internet Explorer\ieuser.exe
Système d'exploitation Microsoft® Windo 2260 C:\Windows\explorer.exe
Système d'exploitation Microsoft® Windo 2028 C:\Windows\System32\csrss.exe
Système d'exploitation Microsoft® Windo 504 C:\Windows\System32\csrss.exe
Système d'exploitation Microsoft® Windo 620 C:\Windows\System32\lsass.exe
Système d'exploitation Microsoft® Windo 1984 C:\Windows\System32\rundll32.exe
Système d'exploitation Microsoft® Windo 3772 C:\Windows\System32\rundll32.exe
Système d'exploitation Microsoft® Windo 604 C:\Windows\System32\services.exe
Système d'exploitation Microsoft® Windo 1640 C:\Windows\System32\spoolsv.exe
Système d'exploitation Microsoft® Windo 1688 C:\Windows\System32\taskeng.exe
Système d'exploitation Microsoft® Windo 2916 C:\Windows\System32\taskeng.exe
Système d'exploitation Microsoft® Windo 556 C:\Windows\System32\wininit.exe
Système d'exploitation Microsoft® Windo 3012 C:\Windows\System32\winlogon.exe
Windows Live Messenger 4068 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
Windows® Internet Explorer 2320 C:\Program Files\Internet Explorer\iexplore.exe
Windows® Internet Explorer 3092 C:\Program Files\Internet Explorer\iexplore.exe
Windows® Internet Explorer 3308 C:\Program Files\Internet Explorer\iexplore.exe
(verifié) Microsoft® Windows® Operating System 3304 C:\Windows\ehome\ehmsas.exe
(verifié) Microsoft® Windows® Operating System 2672 C:\Windows\ehome\ehtray.exe
(verifié) Microsoft® Windows® Operating System 4024 C:\Windows\System32\wuauclt.exe
(verifié) Système d'exploitation Microsoft® Windo 4052 C:\Windows\System32\dwm.exe
(verifié) Système d'exploitation Microsoft® Windo 628 C:\Windows\System32\lsm.exe
(verifié) Système d'exploitation Microsoft® Windo 552 C:\Windows\System32\SearchIndexer.exe
(verifié) Système d'exploitation Microsoft® Windo 1208 C:\Windows\System32\SLsvc.exe
(verifié) Système d'exploitation Microsoft® Windo 1012 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 816 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1664 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 920 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 876 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1916 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1252 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1436 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1084 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 460 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 1044 C:\Windows\System32\svchost.exe
(verifié) Système d'exploitation Microsoft® Windo 496 C:\Windows\System32\svchost.exe
(verifié) Windows Defender 428 C:\Program Files\Windows Defender\MSASCui.exe
Activité du réseau
------------------
Processus iexplore.exe (2320) connecté sur le port 3502 --> 178.33.122.73
Processus iexplore.exe (2320) connecté sur le port 3502 --> 178.33.122.73
Processus iexplore.exe (2320) connecté sur le port 80 (HTTP) --> 46.105.32.2
Processus iexplore.exe (2320) connecté sur le port 80 (HTTP) --> 74.125.230.249
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 173.194.67.94
Processus iexplore.exe (3092) connecté sur le port 443 (HTTP over SSL) --> 209.85.229.95
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 90.84.50.177
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 90.84.56.170
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 74.125.230.235
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 74.125.230.235
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 69.171.224.39
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 90.84.50.178
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 174.129.237.192
Processus iexplore.exe (3092) connecté sur le port 80 (HTTP) --> 90.84.50.177
Processus iexplore.exe (3308) connecté sur le port 80 (HTTP) --> 74.125.230.237
Processus iexplore.exe (3308) connecté sur le port 80 (HTTP) --> 74.125.230.237
Processus wininit.exe (556) écoute sur les ports: 49152 (RPC)
Processus services.exe (604) écoute sur les ports: 49155 (RPC)
Processus lsass.exe (620) écoute sur les ports: 49156 (RPC)
Processus svchost.exe (876) écoute sur les ports: 135 (RPC)
Processus svchost.exe (1012) écoute sur les ports: 49153 (RPC)
Processus svchost.exe (1084) écoute sur les ports: 49154 (RPC)
Fichiers critiques et Autorun
-----------------------------
C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe
Card Reader Software C:\Program Files\Realtek Semiconductor Corp.\Realtek Card Reader Monitor\CardReaderMonitor.exe
CommonSDK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
Java(TM) Platform SE Auto Updater 2 0 C:\Program Files\Common Files\Java\Java Update\jusched.exe
Master CD/DVD Checker C:\Program Files\Packard Bell\SetupMyPc\MCDCheck.exe
MSPMirage.exe C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe
NVIDIA Compatible Windows 2000 Display C:\Windows\system32\NvCpl.dll
NVIDIA Driver Helper Service, Version 1 C:\Windows\System32\NVSVC.DLL
NVIDIA Media Center Library C:\Windows\system32\NvMcTray.dll
PB Care C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe
Picasa C:\Program Files\Picasa2\PicasaMediaDetector.exe
SMP C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
Synaptics Pointing Device Driver C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Système d'exploitation Microsoft® Windo C:\Windows\system32\logon.scr
Windows Live Messenger C:\Program Files\Windows Live\Messenger\msnmsgr.exe
Windows® Internet Explorer C:\Windows\system32\webcheck.dll
(verifié) Microsoft® Windows® Operating System C:\Windows\ehome\ehtray.exe
(verifié) Système d'exploitation Microsoft® Windo C:\Windows\system32\BROWSEUI.dll
(verifié) Système d'exploitation Microsoft® Windo c:\windows\system32\userinit.exe
(verifié) Windows Defender C:\Program Files\Windows Defender\MSASCui.exe
Plugins du navigateur
---------------------
AcroIEHelper Library C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
BitDefender QuickScan C:\Windows\Downloaded Program Files\qsax.dll
Browser Address Error Redirector C:\Program Files\Google\Google_BAE\BAE.dll
Complete Bar C:\Program Files\completebartb\auxi\completebarAu.dll
Complete Bar C:\Program Files\completebartb\completebarDx.dll
Complitly C:\Users\diana\AppData\Roaming\ComplitlyEngine\ComplitlyEngine.dll
DTX Toolbar C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency.dll
DTX Toolbar C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency3.5.dll
DTX Toolbar C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency3.6.dll
Garmin Communicator Plug-In C:\Windows\Downloaded Program Files\GarminAxControl.ocx
InstallShield Update Service C:\Windows\Downloaded Program Files\dwusplay.exe
Java(TM) Platform SE 6 U30 C:\Program Files\Java\jre6\bin\jp2ssv.dll
Java(TM) Platform SE 6 U30 C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
PokerStars C:\Program Files\PokerStars.FR\PokerStarsUpdate.exe
Shockwave for Director C:\Windows\system32\Adobe\Director\np32dsw.dll
Software Manager C:\Windows\Downloaded Program Files\isusweb.dll
VLC Multimedia Plug-in C:\Program Files\VideoLAN\VLC\npvlc.dll
Windows Presentation Foundation C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
Windows® Internet Explorer C:\Windows\system32\ieframe.dll
(verifié) InstallShield Update Service C:\Windows\Downloaded Program Files\dwusplay.dll
(verifié) Microsoft® Windows Live Login Helper C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
(verifié) Microsoft® Windows® Operating System C:\Windows\System32\nlaapi.dll
(verifié) Microsoft® Windows® Operating System C:\Windows\System32\winrnr.dll
(verifié) Système d'exploitation Microsoft® Windo C:\Windows\system32\mswsock.dll
(verifié) Système d'exploitation Microsoft® Windo C:\Windows\system32\napinsp.dll
(verifié) Système d'exploitation Microsoft® Windo C:\Windows\system32\pnrpnsp.dll
Analyse
-------
MD5: c11f6a1f61481e24be3fdc06ea6f7d2a C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
MD5: 6e3245df783e58375b3465f03274743e C:\Program Files\Common Files\Java\Java Update\jusched.exe
MD5: 65614c4c00dd1d35ff689c8d7a811308 C:\Program Files\Common Files\Microsoft Shared\DAO\dao360.dll
MD5: c55c71d48c43d55b3eb6dd34d64d1376 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
MD5: 9d86495e87641527ae39841c40d8159a C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\CPSCommonTools9.dll
MD5: 0292f5a07cdc72312e56fedce5624b72 C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\LayoutDll9.dll
MD5: 3c03db6f66c9792c9b6e30473e847ca2 C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\ROXIPP41.dll
MD5: 90cbf88acfec66a07a9fa749c01a4a5b C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\AlbumCommonPlugins.dll
MD5: 74d08f1779dc1572e269516e151d94b3 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\APSPluginDialogs.dll
MD5: a911857a8103751bcd5f09446753c1e1 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSAlbumObjects.dll
MD5: 4854d957de5cb62cb6bdc0045db20414 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSCommonEnglish.dll
MD5: 461ecee2339e92c10ae5d4bdc6cfd8c0 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSCommonObjects.dll
MD5: 9a891f8624dc9a73dd5fde33479083fb C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSFileLoader.dll
MD5: 2d4040f03702e79f6fa98d2e76ba831f C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
MD5: 0d2c5671928f7dee57ca01d0d29ea5ba C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\LeResourceLoader.dll
MD5: 9638e5820858593a12005c753b03ceae C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
MD5: 910fba95ee4f56449aa81315884c8efd C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
MD5: bf38c273c3ec524880af0aeb2e7ce160 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
MD5: 1b2c38411e57b9a8d42914361bf605ef C:\Program Files\Common Files\Roxio Shared\DLLShared\homeutils9.dll
MD5: 4929d1107847cfff14f3aea955af8389 C:\Program Files\Common Files\Roxio Shared\DLLShared\rsl.dll
MD5: 51778fd315c9882f1cbd932743e62a72 C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
MD5: b97f4388f752d0ed9ee0e3a5e9085070 C:\Program Files\completebartb\auxi\completebarAu.dll
MD5: 729a5278f354e1ffbe8752750bf01f67 C:\Program Files\completebartb\completebarDx.dll
MD5: ef8f9cdf38275f949985af790d162a7a C:\Program Files\completebartb\completebartb.dll
MD5: af3522098fcb406fdf0a64b5fe12afad C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\CV.dll
MD5: 06d8fd7dc21ffc2015737fbf9f808249 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\HighGUI.dll
MD5: 7d3b942ac94f01ef9367e5ca502c79a2 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\libmmd.dll
MD5: ac2275dca63c200a35c9dc968de5bf9a C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\LTDIS13N.dll
MD5: 48828ce9c4d75aa4f79e7cd3de425d90 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\LTFIL13N.DLL
MD5: 0c31bcbf8735312be8e8a87e3a1d96f3 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\LTKRN13N.dll
MD5: 7af1b11d7614e16eab22c3132d3bc1c5 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MediaCache.dll
MD5: f13bf43ca529521eedd5b2173a015f2b C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MediaObj.dll
MD5: f35a584e947a5b401feb0fe01db4a0d7 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MFC71.DLL
MD5: 062dfe5821ae5b56095eae77a5908f4f C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSMMagicCore.dll
MD5: a2b45d70fef7676641e310b06e18061d C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSMMagicScene.ax
MD5: 1e8169469dcc5eb24ab86655f0a3f792 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSMSportsAna.ax
MD5: e26642c193b81f2aa06d6013d4e07d03 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe
MD5: 6e5d8bda54279661e3c5f67119e647f3 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\optcvw7.dll
MD5: 0f03a5081dfcb127ca76bb657cc6f5f7 C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\python24.dll
MD5: c3162ac1b592ceb43abe2f972a7222d3 C:\Program Files\CyberLink\Shared Files\RichVideo.exe
MD5: f8d164d02cfb3d282b6b050e773365ab C:\Program Files\Cyberlink\Shared files\RichVideops.dll
MD5: f5fa86eef366636c0b2417b37604cfeb C:\Program Files\Google\Google_BAE\BAE.dll
MD5: 5b2e1c16a2c420f60cd391b666003f14 C:\Program Files\Internet Explorer\ieuser.exe
MD5: 77b9a891222fb46b13e414b99e1af842 C:\Program Files\Internet Explorer\iexplore.exe
MD5: f2121482c2968cd3b53ed53acc9277a5 C:\Program Files\Java\jre6\bin\jp2ssv.dll
MD5: ccc24faa47c47e66be61bf22603c5e3a C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
MD5: a7a7ad08ba72ac90dcd5511ed895369b C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe
MD5: b6d82c30267289d56b4bfde3715d8f9f C:\Program Files\Packard Bell\SetupMyPc\MCDCheck.exe
MD5: fa52c48ca18edfb00180fd465e8f0b08 C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe
MD5: b1d8669cd13163585ca133332edd60e3 C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
MD5: 0a44c06a0bb2ebc8b08df7039a2248d1 C:\Program Files\Picasa2\PicasaMediaDetector.exe
MD5: 624ddfa8af97507e67fa07128f261813 C:\Program Files\PokerStars.FR\PokerStarsUpdate.exe
MD5: ff32c2770bd4ad29178b00e77f92197c C:\Program Files\Realtek Semiconductor Corp.\Realtek Card Reader Monitor\CardReaderMonitor.exe
MD5: ff32c2770bd4ad29178b00e77f92197c C:\Program Files\Realtek Semiconductor Corp\Realtek Card Reader Monitor\CardReaderMonitor.exe
MD5: 04a39b6f16747fa70cd9885327acc20c C:\Program Files\Realtek Semiconductor Corp\Realtek Card Reader Monitor\WINIO.DLL
MD5: 481429d1ff6d716c2cdb4849d952a99b C:\Program Files\Roxio\VideoCore 9\CPSVideoObjects.dll
MD5: e4e99677636ef949b546a1751c9b3a35 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
MD5: 255144d9c764241c897c85c798c52241 C:\Program Files\VideoLAN\VLC\npvlc.dll
MD5: b7dc98f6f4e7611a9c0849945fb28fb9 C:\Program Files\Windows Defender\MpOav.dll
MD5: 7d1f2afe12bafc4c18c5a0e3c6866e38 c:\program files\windows defender\mprtplug.dll
MD5: 65529f1dc10559844df306ff279d01fb C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{97B529A6-3561-4B28-BE58-1C66B657BF0C}\mpengine.dll
MD5: 163db46b803e4c83c444a026ff17d269 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{97B529A6-3561-4B28-BE58-1C66B657BF0C}\offreg.dll
MD5: 0e81a69992c86bd1bcedfcf908285712 C:\Users\diana\AppData\Roaming\ComplitlyEngine\ComplitlyEngine.dll
MD5: 9232d0e2a87b415869b128b2e7dc7953 C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency.dll
MD5: 761c53e00e6c1b64ec628be0f63fc86d C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency3.5.dll
MD5: e9fcb8fcf9fe1c27f7eece9afe944fb8 C:\Users\diana\AppData\Roaming\Mozilla\Firefox\Profiles\2u5yxmv1.default\extensions\{d19ab942-e6b9-4b63-a62a-d196d979824f}\components\dtTransparency3.6.dll
MD5: 05e3bac0d6d3bf468754dd9fe8f5e9d2 C:\Windows\AppPatch\AcLayers.DLL
MD5: f4d241169a2635e28732ca51c3adb1ec C:\Windows\AppPatch\AcRedir.DLL
MD5: c9e8191e28539ba03daf5298d6d7f1df C:\Windows\AppPatch\iebrshim.dll
MD5: 01e2eca759056f23c73a035fdabb2d6d C:\Windows\Downloaded Program Files\dwusplay.exe
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\Windows\Downloaded Program Files\GarminAxControl.ocx
MD5: b8f613ac24cc3c706029e602e2d5ddbf C:\Windows\Downloaded Program Files\qsax.dll
MD5: ab87eeffd18f2baafc274e7075ea6c67 C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
MD5: 09c91e1f199c53e1114396b59b3b4d9e C:\Windows\system32\ACLUI.dll
MD5: 2134e14dfb56952f548487898ae63a89 C:\Windows\system32\Adobe\Director\np32dsw.dll
MD5: e0761b16f3f6f7083c7eda3ef59f13ba C:\Windows\System32\adsldpc.dll
MD5: c77f71aa825263541965846edd9e8729 C:\Windows\system32\advpack.dll
MD5: 67c30fafa58bd7e02a9da8be28512934 C:\Windows\system32\audiodev.dll
MD5: 669388db959f5b07aaaa43c796c7aa05 C:\Windows\system32\AUTHZ.dll
MD5: 387ef0acff9f82015ef509f099c03999 C:\Windows\system32\AVICAP32.dll
MD5: f31eebc1a1c81fd04005489cc3dcdfe7 C:\Windows\system32\basesrv.dll
MD5: c1db5285d572ffd741fde14df3e51f97 C:\Windows\system32\bitsigd.dll
MD5: f21f255b91ca4f04e4250decd2067cbb c:\windows\system32\bitsperf.dll
MD5: d333058925ce305e39de8d5ad2b52a46 C:\Windows\system32\CLUSAPI.DLL
MD5: 74f26fc01b180d4a99a168ed69c30a53 C:\Windows\system32\cmd.exe
MD5: 7f15b4953378c8b5161d65c26d5fed4d C:\Windows\system32\cngaudit.dll
MD5: ee11e4fe19d61275246e5772bc1ec795 C:\Windows\system32\comsvcs.dll
MD5: bf6f0c2df119f71c22c00525adf2ee56 C:\Windows\system32\corpol.dll
MD5: 129a64901aaf7205f753090a779a4321 C:\Windows\System32\credui.dll
MD5: 615a3b1cda204e8123c5472540d229c0 C:\Windows\system32\CRYPTUI.dll
MD5: a8838baffc18781990cf7d7bb9678715 C:\Windows\system32\CSRSRV.dll
MD5: abca209eba02cb59233614db83b4f50d C:\Windows\System32\csrss.exe
MD5: 8acd8e3ea303da48db223f4759cfb254 C:\Windows\system32\diagperf.dll
MD5: cb1f79a5b3551273e55f69dddcb919e3 C:\Windows\system32\dispex.dll
MD5: 5665120753fce7123c4deace241ee715 C:\Windows\system32\DNSAPI.dll
MD5: 4805d9a6d281c7a7defd9094dec6af7d c:\windows\system32\dnsrslvr.dll
MD5: 48eb99503533c27ac6135648e5474457 C:\Windows\system32\drivers\afd.sys
MD5: 8153396d5551276227fa146900f734e6 C:\Windows\system32\DRIVERS\bowser.sys
MD5: 124c579d3ef007437557b0a9f75e2b20 C:\Windows\system32\drivers\CHDART.sys
MD5: a3e9fa213f443ac77c7746119d13feec C:\Windows\System32\Drivers\dfsc.sys
MD5: 4ac51459805264affd5f6fdfb9d9235f C:\Windows\System32\Drivers\GEARAspiWDM.sys
MD5: 3c64042b95e583b366ba4e5d2450235e C:\Windows\system32\drivers\hidusb.sys
MD5: 97469037714070e45194ed318d636401 C:\Windows\system32\drivers\intelide.sys
MD5: ce44cc04262f28216dd4341e9e36a16f C:\Windows\system32\DRIVERS\intelppm.sys
MD5: d2600cb17b7408b4a83f231dc9a11ac3 C:\Windows\system32\drivers\kbdhid.sys
MD5: a3a6dff7e9e757db3df51a833bc28885 C:\Windows\system32\drivers\mouhid.sys
MD5: 5734a0f2be7e495f7d3ed6efd4b9f5a1 C:\Windows\system32\DRIVERS\mrxsmb.sys
MD5: 6b5fa5adfacac9dbbe0991f4566d7d55 C:\Windows\system32\DRIVERS\mrxsmb10.sys
MD5: 5c80d8159181c7abf1b14ba703b01e0b C:\Windows\system32\DRIVERS\mrxsmb20.sys
MD5: 442eac1b12acf1bad6f1224167e034c8 C:\Windows\system32\DRIVERS\nvlddmkm.sys
MD5: a1108084b0d2fc43dcc401735770e2a3 C:\Windows\system32\DRIVERS\nvmfdx32.sys
MD5: 9aebc32f9d6e02ebee0369ab296fe7c8 C:\Windows\system32\DRIVERS\nvsmu.sys
MD5: f7bb4e7a7c02ab4a2672937e124e306e C:\Windows\System32\Drivers\PxHelp20.sys
MD5: 924a3dd87d2940b583686899ea1b1406 C:\Windows\system32\DRIVERS\RTL8187B.sys
MD5: 6e7f2054faedbe766034aa8a185213ec C:\Windows\system32\drivers\RTSTOR.SYS
MD5: 51cf56aa8bcc241f134b420b8f850406 C:\Windows\system32\drivers\sffdisk.sys
MD5: 96ded8b20c734ac41641ce275250e55d C:\Windows\system32\drivers\sffp_mmc.sys
MD5: 8b08cab1267b2c377883fc9e56981f90 C:\Windows\system32\drivers\sffp_sd.sys
MD5: 2252aef839b1093d16761189f45af885 C:\Windows\System32\DRIVERS\srv.sys
MD5: b7ff59408034119476b00a81bb53d5d1 C:\Windows\System32\DRIVERS\srv2.sys
MD5: 2accc9b12af02030f531e6cca6f8b76e C:\Windows\System32\DRIVERS\srvnet.sys
MD5: 8a321f644c0f2d403b867481065e7ec2 C:\Windows\system32\DRIVERS\SynTP.sys
MD5: 292a25bb75a568ae2c67169ba2c6365a C:\Windows\system32\drivers\usbaudio.sys
MD5: 7bdb7b0e7d45ac0402d78b90789ef47c C:\Windows\system32\DRIVERS\usbohci.sys
MD5: 325dbbacb8a36af9988ccf40eac228cc C:\Windows\system32\DRIVERS\usbuhci.sys
MD5: 0a6b81f01bc86399482e27e6fda7b33b C:\Windows\System32\Drivers\usbvideo.sys
MD5: 774f96039dd46df3dd5d4e74531afe2f C:\Windows\System32\Drivers\vm331avs.sys
MD5: f03110711b17ad31271cb2baf0dbb2b1 C:\Windows\system32\DRIVERS\winusb.sys
MD5: 701a9f884a294327e9141d73746ee279 C:\Windows\system32\drivers\wmiacpi.sys
MD5: b68fcc1f8684ab3ec4be4d0a2537d26d C:\Windows\system32\Dxtmsft.dll
MD5: d12feb0e3ea6063a65a5498ed90fd790 C:\Windows\system32\Dxtrans.dll
MD5: 0af64a7b89f34a51fcf25e1f360cca39 C:\Windows\system32\eapphost.dll
MD5: 219f279e9a34c94538647191ab76c735 C:\Windows\system32\esent.dll
MD5: 254c64b570a99f10952aca71f24a2236 C:\Windows\system32\expsrv.dll
MD5: 4fb37ec51bdb2a6543f1f712555b9579 C:\Windows\system32\FeClient.dll
MD5: d547391c463e4b329b597a3bc07ea29d C:\Windows\system32\FunDisc.dll
MD5: 988963e9e07787e1d8f99dc1f452213d c:\windows\system32\FwRemoteSvr.DLL
MD5: 05b6a5ce1c7767c32df35966107cb1ec C:\Windows\system32\hhctrl.ocx
MD5: b4b59ac042ee3733a862f26cbc0b17fc C:\Windows\system32\hidphone.tsp
MD5: 0c84b6affa7486422235584110d7176f c:\windows\system32\ICAAPI.dll
MD5: d5e8f09e9db9eb3a81925f7e634b95be C:\Windows\system32\ieapfltr.dll
MD5: 92047ade3fe9ff51132bc14fb8d77997 C:\Windows\system32\ieframe.dll
MD5: 43ab7846279a09104e5e04cce8b241be C:\Windows\system32\iepeers.dll
MD5: 962abfb0805210936f0c149f9154bedf C:\Windows\system32\iertutil.dll
MD5: f2f627e24fc6adf67526840d68a3544d C:\Windows\system32\IEUI.dll
MD5: 5a005676a0252fbafec8f68162eb9f88 C:\Windows\system32\ImgUtil.dll
MD5: d4e26869d0bc72fb6c186926b899e3ed C:\Windows\system32\inetcomm.dll
MD5: cde0805636000414e22eb36fbab61eee C:\Windows\System32\inetpp.dll
MD5: 6a35d233693edc29a12742049bc5e37f c:\windows\system32\iphlpsvc.dll
MD5: dcb288183cf77605110944232c6a2665 C:\Windows\system32\jscript.dll
MD5: 7d80a6e1fe4f3b40e5992ee8964a00f4 C:\Windows\system32\kerberos.dll
MD5: 306835d4e74e49a5d10f0fca0b422eb1 C:\Windows\system32\kernel32.dll
MD5: 74c2f29cc612b2b34231bebd824d2fb2 C:\Windows\system32\keyiso.dll
MD5: 953193a9dea40348c1086d171f6440ae C:\Windows\system32\kmddsp.tsp
MD5: 861797d3c83a6eba05fb2c63b1a45e82 C:\Windows\system32\ksproxy.ax
MD5: d2ef003c2be9a06aba7bea2d36a8ba3b C:\Windows\system32\kswdmcap.ax
MD5: ca0b849566776a17f35f0339be17dfd9 c:\windows\system32\ktmw32.dll
MD5: 19ffad68a02af1bf0bc336ee26cd6767 c:\windows\system32\l2gpstore.dll
MD5: 35d40113e4a5b961b6ce5c5857702518 c:\windows\system32\lmhsvc.dll
MD5: b17d18fd6594aaa25cbc95e799b1bf40 C:\Windows\system32\logon.scr
MD5: e9f427ef46965d33e878a507a2f5ccb6 C:\Windows\system32\Macromed\Flash\Flash11e.ocx
MD5: d5f72e03edf8bdea4847d693237330c7 C:\Windows\system32\Macromed\Flash\FlashUtil11e_ActiveX.dll
MD5: 54126cddef533083d0ffdb94810ad1aa C:\Windows\System32\Macromed\Flash\FlashUtil11e_ActiveX.exe
MD5: 6d564d355d1ab55e6c52d985ecd01c7b C:\Windows\system32\MFC42.dll
MD5: f35a584e947a5b401feb0fe01db4a0d7 C:\Windows\system32\MFC71.DLL
MD5: e1f8293b0cdd3febd80a4879ca53b771 C:\Windows\system32\MFC71FRA.DLL
MD5: 6d92d25519ee321870998f265e86c954 C:\Windows\System32\mfplat.dll
MD5: b4f5de3dad8e6b97272f45db97674878 C:\Windows\System32\mgmtapi.dll
MD5: 3dbfebe4ddf9ce3d647faafc1d15f3c6 C:\Windows\System32\MPRAPI.dll
MD5: eea6f3cfc1f7e8709ebd8a78fba1674a C:\Windows\system32\msfeeds.dll
MD5: 0e34cff4b801cd104d3f35f8d992bf17 C:\Windows\system32\MSFTEDIT.DLL
MD5: d6c2ceacb1ee184ea0c1d6bd594b398f C:\Windows\system32\mshtml.dll
MD5: c5bbd8bdcf29c18e9646a2f7af2a2a33 C:\Windows\system32\mshtmled.dll
MD5: aab5feaabf4cb6f76d794203831c8d94 C:\Windows\system32\Msidle.dll
MD5: 42f99dde2dd172cc68849c8ecdb86432 C:\Windows\system32\MSJET40.DLL
MD5: fad51c445664e16f49e2725bb0790a4e C:\Windows\system32\msjtes40.dll
MD5: f3ebda850cc141768498decaad513299 C:\Windows\system32\msls31.dll
MD5: 5e41139ec6efbcaffd96d46925e544ab c:\windows\system32\mspatcha.dll
MD5: abe9eea1eabea0711610a637a7b1c25d C:\Windows\system32\msprivs.dll
MD5: 5c4363a73adf425d2a85258040414043 C:\Windows\system32\MSRATING.dll
MD5: 4774d83be60b7f47c612e25d6fe0f010 C:\Windows\system32\MSSHooks.dll
MD5: 365fef29b22f626c5756ac0dee91c249 C:\Windows\System32\msshsq.dll
MD5: cd5d53dfe552074d5553e1089961ea6f C:\Windows\system32\mssph.dll
MD5: ac32dc4d4552151d6842b678d52eb9b7 C:\Windows\system32\mssvp.dll
MD5: df3b640b8a2527f152e7f4ccaac0fa38 C:\Windows\system32\mswstr10.dll
MD5: f30d5ee1426d519f0c6e41a24c51d7ad C:\Windows\system32\mydocs.dll
MD5: 2fa16465f64db54b1f7f511395eb4fd7 C:\Windows\system32\NCObjAPI.DLL
MD5: f4d9ed6bd74ad7cc0bec83c43a1cb76b c:\windows\system32\ncsi.dll
MD5: 2f6776acefe41ee889c464ea407918f2 C:\Windows\system32\ndptsp.tsp
MD5: 6bc5fcef351e4cb5a269c1e84b5a06da C:\Windows\system32\netcfgx.dll
MD5: a8efc0b6e75b789f7fd3ba5025d4e37f C:\Windows\system32\netlogon.dll
MD5: 4bf053944e973c073339be841c9ecf28 C:\Windows\System32\NETRAP.dll
MD5: 840935da7eb259d4e870fdf1a6a73c91 C:\Windows\System32\NLSData000c.dll
MD5: 11a77885f55aca1c4bb3b1ac1642ce60 C:\Windows\System32\NLSLexicons000c.dll
MD5: 8bb86f0c7eea2bded6fe095d0b4ca9bd c:\windows\system32\nsisvc.dll
MD5: 89d0e06d6165c98e47065722ce703fad C:\Windows\system32\ntdll.dll
MD5: 8b9f4298264c267ec43c0bf8cada343c C:\Windows\system32\nvapi.dll
MD5: 217e2b91eaaeafdaff1db718b062c7a0 C:\Windows\system32\NvCpl.dll
MD5: 8785a60fefc28b795358ef25536ed72a C:\Windows\system32\nvd3dum.dll
MD5: 7f493300e035fec8dbe031969b291766 C:\Windows\system32\NvMcTray.dll
MD5: 48769100e4a0c3335f8c775be8bf9e34 C:\Windows\System32\NVSVC.DLL
MD5: cabe68b4ad2fec8c18e18f73303eb26f C:\Windows\system32\ODBC32.dll
MD5: aa406846dd60e3a4536dbaab4037b685 C:\Windows\system32\ole32.dll
MD5: fa6bd25a5a65a6ff5be4385098e3bdef C:\Windows\system32\OLEAUT32.DLL
MD5: ae70ae6f0760793d4893c3735eec7292 C:\Windows\system32\olepro32.dll
MD5: 4a1feebf039b283258b0e479fa135dba C:\Windows\System32\osbaseln.dll
MD5: f0062778f50838145ac46b384ffb4fa3 C:\Windows\system32\pcadm.dll
MD5: b8d3bf818defe1da9a754f214e528221 C:\Windows\system32\pngfilt.dll
MD5: e340845c8e96d107c36420065d7a5733 C:\Windows\system32\printcom.dll
MD5: 60802d34abee835ce80cea4ce04a2140 C:\Windows\system32\query.dll
MD5: 801f1e963f7eeffda3f9ef89db3ef133 C:\Windows\system32\radardt.dll
MD5: 5eaad3f8b0afe4c5c1777de18262fbd3 C:\Windows\System32\raschap.dll
MD5: 83a54618958daa59f2f7312d6897d3e8 C:\Windows\System32\RASDLG.dll
MD5: ff672ec108883fe90c8bec3e8e1d503f C:\Windows\system32\rasppp.dll
MD5: 88225070dd2f7b0b2ed51e7935078641 C:\Windows\system32\RASQEC.DLL
MD5: f3c74862035d9645e2c08731f43aea3f C:\Windows\system32\rastapi.dll
MD5: 1c0e2529fed8862f08be8b562cfc3c5c C:\Windows\System32\rastls.dll
MD5: b9f3ff52b84fd9e3cafb29b8ee385e5b C:\Windows\system32\RESUTILS.DLL
MD5: 9de05ce950e4bc8820464f137029b358 C:\Windows\system32\RPCRT4.dll
MD5: 301ae00e12408650baddc04dbc832830 c:\windows\system32\rpcss.dll
MD5: 4b555106290bd117334e9a08761c035a C:\Windows\System32\rundll32.exe
MD5: 1eacff296a418f23b38bbc02e337f38b C:\Windows\system32\SAMSRV.dll
MD5: 28b84eb538f7e8a0fe8b9299d591e0b9 C:\Windows\system32\scecli.dll
MD5: ea5d4bfb6a9f6a659c3ddce419d8217c C:\Windows\system32\SCESRV.dll
MD5: 6528ee11efa77f8c8b1c6ead401f907f C:\Windows\system32\schannel.dll
MD5: 7b587b8a6d4a99f79d2902d0385f29bd c:\windows\system32\schedsvc.dll
MD5: 87889a983c015080fa813d7e32910d1e C:\Windows\System32\SearchFilterHost.exe
MD5: c4894b3b448b647bedc9e916d181bdbe C:\Windows\System32\SearchProtocolHost.exe
MD5: 0d836890c7afb97e377e73870921f68f C:\Windows\System32\sendmail.dll
MD5: 2b336ab6286d6c81fa02cbab914e3c6c C:\Windows\System32\services.exe
MD5: 048b65ec931a39a5f42016be04775274 C:\Windows\system32\SHELL32.dll
MD5: 44338cab70f1db264d2f3f9f86a5d281 C:\Windows\system32\SHLWAPI.dll
MD5: 1e3fdb80e40a3ce645f229dfbdfb7694 c:\windows\system32\shsvcs.dll
MD5: 6701ddaf68bede6bbeea9d514d73a35b C:\Windows\System32\smss.exe
MD5: 76d54175bde317e4f251028afa117309 C:\Windows\System32\SPOOLSS.DLL
MD5: 3665f79026a3f91fbca63f2c65a09b19 C:\Windows\System32\spoolsv.exe
MD5: bf7e4d6f60a6d9e866432855c6f8c262 c:\windows\system32\sqmapi.dll
MD5: 234cb691fba69e8c1be489a341586252 C:\Windows\System32\srchadmin.dll
MD5: 1925e63c91cf1610ae41bfd539062079 c:\windows\system32\srvsvc.dll
MD5: 452341e471d2d961229dfe0842957272 C:\Windows\system32\SSCORE.DLL
MD5: 365828e555e9479246efd9090c41c2d7 C:\Windows\system32\STI.dll
MD5: 539b857110b244aa1904be612c9bd238 C:\Windows\system32\SynCOM.dll
MD5: 1b2b3e52b18dd9121d9eb1f579fd381e C:\Windows\system32\SynTPAPI.dll
MD5: 71f5a7104fdf16c0ac5283a6ce666553 C:\Windows\system32\SYSNTFY.dll
MD5: e3923280e0d6e8a98925ba36e835cc73 C:\Windows\system32\taskcomp.dll
MD5: eafb5897ac9cd84890171ac38862320f C:\Windows\System32\taskeng.exe
MD5: f315e8a8517ebfa13ecd16011fb0a03b C:\Windows\system32\taskschd.dll
MD5: 5091452dc719281cf1dd69367e13b494 C:\Windows\System32\tcpmib.dll
MD5: f9290d67c4b4b9b31cd3fc8be73a4c9b C:\Windows\System32\tcpmon.dll
MD5: 8a38b5e8493a9d103083b8620ac5f3a1 C:\Windows\System32\tdh.dll
MD5: f8873d15018f411588bec02c1725bada C:\Windows\system32\tspkg.dll
MD5: e45051c374f845edf3db02a35ba13193 C:\Windows\system32\umb.dll
MD5: 6cdd310172bcc9f5a2fac445b20b3d5e C:\Windows\system32\unimdm.tsp
MD5: dfbaadf1b624dc71e88d34d86b3595be C:\Windows\system32\uniplat.dll
MD5: fedf099539e39797a58f136ac3144be4 C:\Windows\system32\urlmon.dll
MD5: 0bf0bb276f17b6ad61a8694d2551ec28 C:\Windows\System32\usbmon.dll
MD5: a23e4692716c25e5aea300ed74e73a1c C:\Windows\system32\USP10.dll
MD5: 4995b131f6b4da0f8f7d2191e37054bd C:\Windows\system32\VBAJET32.DLL
MD5: d5f28df4c4100b233d7f5c708673696d C:\Windows\system32\vbscript.dll
MD5: 796bc0d3e5f77bd346d8bd3877b7169c C:\Windows\system32\vmprp331.ax
MD5: 00de6e95c16103d25411789156c4928c C:\Windows\system32\VSSAPI.DLL
MD5: dc3ae9f1554dcd97f90983ddbdacd83d C:\Windows\system32\vsstrace.dll
MD5: 7edd3cdeff1004cf15e5c86168ff2d62 C:\Windows\System32\Wbem\esscli.dll
MD5: 52a53bcccf489d4097191b7b78dffa58 C:\Windows\system32\wbem\fastprox.dll
MD5: a68aeda4eb23012c5207dff729d85692 C:\Windows\system32\wbem\ncprov.dll
MD5: 220db6d951b90c5ceddb4d3a93c108df C:\Windows\system32\wbem\repdrvfs.dll
MD5: 8beb91025512c439b4b8624a0cfbd2c3 C:\Windows\system32\wbem\wbemcore.dll
MD5: fd02ca3f5ae91337d67b80f6852d2efb C:\Windows\system32\wbem\wbemess.dll
MD5: da39b480239feb2cc0f4be7b185b63db C:\Windows\system32\wbem\wbemprox.dll
MD5: e91a23a9bc6dc56a049eb16096c17d02 C:\Windows\system32\wbem\wmiprvsd.dll
MD5: dc30569eaefaf3455ce765ae8fdaf48b C:\Windows\system32\wbem\wmiutils.dll
MD5: 29ec7259e8196d9f90a3d59b3d546faf C:\Windows\system32\wdigest.dll
MD5: c99a99cdf3f073f9bca69b77d60b37fb c:\windows\system32\WDSCORE.dll
MD5: 4f4889a9d680714be11b31bd01a0411a C:\Windows\system32\webcheck.dll
MD5: eef8941abbd675ae84d016b4bdf9a6b4 C:\Windows\system32\wer.dll
MD5: 3abdb4beae7cf1187109756d5f3a9bc0 c:\windows\system32\wevtsvc.dll
MD5: 0745d6ead386710110817fbec03f5161 C:\Windows\system32\wfapigp.dll
MD5: 73fe2e5fa55088a241aa2732f5d387d6 C:\Windows\system32\wiarpc.dll
MD5: 60cffd3fa1179ea8c40671604071da06 C:\Windows\System32\win32spl.dll
MD5: da5a72211661c7f162b332fea4f09a69 C:\Windows\system32\WININET.dll
MD5: 101ba3ea053480bb5d957ef37c06b5ed C:\Windows\System32\wininit.exe
MD5: c2610b6bdbefc053bbdab4f1b965cb24 C:\Windows\System32\winlogon.exe
MD5: 3fcb7347d2de38488c85a31ea7838a3c C:\Windows\system32\WinSATAPI.dll
MD5: f42f8855cb5c22e203c6672b124f17fd C:\Windows\system32\winsrv.dll
MD5: abe9dec1e78226f70f5a6d18f701aff2 c:\windows\system32\WLANMSM.DLL
MD5: 2938e3b155c2647137a1910f534e66be c:\windows\system32\WLANSEC.dll
MD5: 0636d4fe43c198c289f37be4083204d0 c:\windows\system32\wlgpclnt.dll
MD5: 92283d9e33ec5f41ecc0b430b7459241 C:\Windows\system32\wls0wndh.dll
MD5: 0727200f10320a6ba7e59433094fbba7 C:\Windows\system32\WMALFXGFXDSP.dll
MD5: f0321da5203f1e71917f3b7a13dc4912 C:\Windows\system32\WMsgAPI.dll
MD5: a9662bcf218bc76869a8d91635d5f93a C:\Windows\System32\Wpc.dll
MD5: 689c2a3b8c6cbc64e6959c7c858b742c C:\Windows\system32\wpdshext.dll
MD5: d7f8d560ff816126f4db520d1bdc3281 C:\Windows\System32\wsdapi.dll
MD5: ccaf246004f719f858e841a2ba12c308 C:\Windows\system32\WSDCHNGR.DLL
MD5: 47c4359fa1e1460f16cebd1a2bca73be C:\Windows\System32\WSDMon.dll
MD5: 1367ef1c1ba82e4a559feda1f0d8383c C:\Windows\System32\wsnmp32.dll
MD5: 399bb52ad0668472717498e97cf28341 c:\windows\system32\WUDFPlatform.dll
MD5: f41857e440a9df3fd5a543c8b2a53048 C:\Windows\system32\zipfldr.dll
MD5: c9564cf4976e7e96b4052737aa2492b4 C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCR80.dll
MD5: 4c39358ebdd2ffcd9132a30e1ec31e16 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCP90.dll
MD5: cdbe9690cf2b8409facad94fac9479c9 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCR90.dll
MD5: e402a6e79d1e4dbfeba8b364c67a3158 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6001.18523_none_886c608850a2f36f\COMCTL32.dll
MD5: d702b4e30b31bfcab7bd4e5965c1a5dc C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2\comctl32.dll
MD5: 81e199bfe82c106d38f989674d0dec1f C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a18
Utilisateur anonyme
14 nov. 2005 à 17:46
14 nov. 2005 à 17:46
salut jamni
je suis content pour toi tu sais !
Recache tes fichiers caches et cree un point de restauration
a la prochaine lol mais pas trop tot comme tu dis lol
a+
je suis content pour toi tu sais !
Recache tes fichiers caches et cree un point de restauration
a la prochaine lol mais pas trop tot comme tu dis lol
a+
navi01
Messages postés
1
Date d'inscription
samedi 8 décembre 2007
Statut
Membre
Dernière intervention
8 décembre 2007
8 déc. 2007 à 20:19
8 déc. 2007 à 20:19
bonjour a tous ,
je voudrais sa voir si dands le raport de Hijackthis il y a des anomalies
merci de votre attention
latnaille
voila le raport:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:17:07, on 08/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\System32\svchost.exe
C:\HP\KBD\KBD.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://fr.search.yahoo.com/?fr=cb-hp06
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/webhp?sourceid=navclient&hl=fr&ie=UTF-8&gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.01net.com/telecharger/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [PD0630 STISvc] RunDLL32.exe P0630Pin.dll,RunDLL32EP 513
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P31 "EPSON Stylus Photo RX420 Series" /O5 "LPT1:" /M "Stylus Photo RX420"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} (CamfrogWEB Advanced Unicode Control) - http://activex.camfrogweb.com/advanced/2.0.2.3/cfweb_activex.camfrogweb.com-advanced-2.0.2.3_instmodule.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
je voudrais sa voir si dands le raport de Hijackthis il y a des anomalies
merci de votre attention
latnaille
voila le raport:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:17:07, on 08/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\System32\svchost.exe
C:\HP\KBD\KBD.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://fr.search.yahoo.com/?fr=cb-hp06
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/webhp?sourceid=navclient&hl=fr&ie=UTF-8&gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.01net.com/telecharger/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [PD0630 STISvc] RunDLL32.exe P0630Pin.dll,RunDLL32EP 513
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P31 "EPSON Stylus Photo RX420 Series" /O5 "LPT1:" /M "Stylus Photo RX420"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} (CamfrogWEB Advanced Unicode Control) - http://activex.camfrogweb.com/advanced/2.0.2.3/cfweb_activex.camfrogweb.com-advanced-2.0.2.3_instmodule.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
mon pc rame kan je v sur internet g tt essayer et cela ne fai rien defois lecran ne bouge plu je ne pe plu rien fair si kelkun si connai et ki pourrai maider en me donnan d site pour enlever se probleme
tattookiller70
Messages postés
332
Date d'inscription
samedi 3 mai 2008
Statut
Membre
Dernière intervention
26 octobre 2013
27
12 juil. 2009 à 05:12
12 juil. 2009 à 05:12
Un écran qui ne bouge plus?
Mon écran n'a jamais bougé moi... O.O
Mon écran n'a jamais bougé moi... O.O
JEAN2B
Messages postés
3
Date d'inscription
mercredi 14 mai 2008
Statut
Membre
Dernière intervention
15 mai 2008
15 mai 2008 à 18:34
15 mai 2008 à 18:34
bonjour depuis quelque jour mon ordi rame sur internet,j'ai fait un scan antivirus(avast)et anti spyware (ad aware)
voici la copie du rapport hijackthis:
(je suis sous windows xp sp2)
Logfile of HijackThis v1.99.1
Scan saved at 16:23:15, on 15/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\S24EvMon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
C:\Program Files\Wireless 802.11g Monitor\WLService.exe
C:\Program Files\Wireless 802.11g Monitor\WLanCfgG.exe
C:\WINDOWS\System32\RegSrvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\SYSTEM32\ZCfgSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\RALINK\RT2500 USB Wireless LAN Card\Installer\WINXP\RaConfig2500.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\mmc.exe
C:\WINDOWS\system32\DfrgNtfs.exe
C:\Documents and Settings\user\Local Settings\Temp\hijackthis_199\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://news.google.com/topstories?hl=fr&tab=in&gl=FR&ceid=FR:fr
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: ShoppingReport - {100EB1FD-D03E-47FD-81F3-EE91287F9465} - C:\Program Files\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: RaConfig2500.lnk = C:\Program Files\RALINK\RT2500 USB Wireless LAN Card\Installer\WINXP\RaConfig2500.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Program Files\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Program Files\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O17 - HKLM\System\CCS\Services\Tcpip\..\{4AFB80C4-1723-4466-A560-CCBE23C7E284}: NameServer = 192.168.10.2,192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{DB387CEE-F1B3-40DF-A034-63BCDBEAB322}: NameServer = 192.168.102.2
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: Sebring - C:\WINDOWS\System32\LgNotify.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Bluetooth Service (btwdins) - Unknown owner - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: R54G Wireless Service - Unknown owner - C:\Program Files\Wireless 802.11g Monitor\WLService.exe
O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\System32\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\System32\S24EvMon.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
merci de bien vouloir m aider merci de votre patience
voici la copie du rapport hijackthis:
(je suis sous windows xp sp2)
Logfile of HijackThis v1.99.1
Scan saved at 16:23:15, on 15/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\S24EvMon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
C:\Program Files\Wireless 802.11g Monitor\WLService.exe
C:\Program Files\Wireless 802.11g Monitor\WLanCfgG.exe
C:\WINDOWS\System32\RegSrvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\SYSTEM32\ZCfgSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\RALINK\RT2500 USB Wireless LAN Card\Installer\WINXP\RaConfig2500.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\mmc.exe
C:\WINDOWS\system32\DfrgNtfs.exe
C:\Documents and Settings\user\Local Settings\Temp\hijackthis_199\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://news.google.com/topstories?hl=fr&tab=in&gl=FR&ceid=FR:fr
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: ShoppingReport - {100EB1FD-D03E-47FD-81F3-EE91287F9465} - C:\Program Files\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: RaConfig2500.lnk = C:\Program Files\RALINK\RT2500 USB Wireless LAN Card\Installer\WINXP\RaConfig2500.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Program Files\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Program Files\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O17 - HKLM\System\CCS\Services\Tcpip\..\{4AFB80C4-1723-4466-A560-CCBE23C7E284}: NameServer = 192.168.10.2,192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{DB387CEE-F1B3-40DF-A034-63BCDBEAB322}: NameServer = 192.168.102.2
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: Sebring - C:\WINDOWS\System32\LgNotify.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Bluetooth Service (btwdins) - Unknown owner - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: R54G Wireless Service - Unknown owner - C:\Program Files\Wireless 802.11g Monitor\WLService.exe
O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\System32\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\System32\S24EvMon.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
merci de bien vouloir m aider merci de votre patience
meme probleme que les autres
voici mon rapport, quelqu'un peu me dire ce qui ne va pas?
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:58:03, on 17/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=http://www.files-ftp.com/~unicorni/phpBB2/index.php
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.orderingmemory.com/controls/cpcScanner.cab
O16 - DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} (Facebook Photo Uploader 4) - http://upload.facebook.com/controls/FacebookPhotoUploader4_5.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
voici mon rapport, quelqu'un peu me dire ce qui ne va pas?
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:58:03, on 17/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=http://www.files-ftp.com/~unicorni/phpBB2/index.php
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.orderingmemory.com/controls/cpcScanner.cab
O16 - DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} (Facebook Photo Uploader 4) - http://upload.facebook.com/controls/FacebookPhotoUploader4_5.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
1 juin 2011 à 16:53
C 'est de l'humour.
7 juin 2012 à 10:01
je profite pour poser ma question, je suis nul et j'ai connu rien pour ça je compte sur toi pour me guider.
mon Ordi portable Compaq sous Windows 7 rame sur le net comment faire pour son sortir.
PS: merci j'attend la réponse
1 mai 2013 à 13:29
17 janv. 2014 à 13:13