Encore Win32:Adan-161
kirua009
Messages postés
7
Statut
Membre
-
Utilisateur anonyme -
Utilisateur anonyme -
Salut à tous !
Je lance un appel à l'aide car je suis une énième victime de Win32:adan-161 qui me rend visite tout les jours et ce malgré les bottages de fesses quotidien que lui donne Avast.
J'ai vu dans des post similaires que HijackThis était utile donc je joins un rapport de scan.
Logfile of HijackThis v1.99.1
Scan saved at 14:10:56, on 13/04/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Progra~1\Launch Manager\LaunchAp.exe
C:\Progra~1\Launch Manager\PowerKey.exe
C:\Progra~1\Launch Manager\HotkeyApp.exe
C:\Progra~1\Launch Manager\CtrlVol.exe
C:\Progra~1\Launch Manager\Wbutton.exe
C:\Program Files\Acer\Notebook Manager\almxptray.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\MediaGateway\MediaGateway.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\DNA Digital Media Group\Nestle Fitness Virtual Coach\Reminder.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\DNA Digital Media Group\Nestle Fitness Virtual Coach\dcu.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Documents and Settings\Sergine_u\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.acer.com/worldwide/selection.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.acer.com/worldwide/selection.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {206E52E0-D52E-11D4-AD54-0000E86C26F6} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdcatch.dll
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: FreshDownload Bar - {ED0E8CA5-42FB-4B18-997B-769E0408E79D} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdiebar.dll
O4 - HKLM\..\Run: [LaunchApp] LaunApp
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Progra~1\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [PowerKey] "C:\Progra~1\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [LManager] C:\Progra~1\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Progra~1\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Progra~1\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [AcerNotebookManager] C:\Program Files\Acer\Notebook Manager\almxptray.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [HPLJ Config] C:\Program Files\Hewlett-Packard\hp color LaserJet 2550 Series\SetConfig.exe -c Direct -p DOT4_001 -pn "hp color LaserJet 2550 PCL 6" -n 1 -l 1036 -sl 120000
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [MediaGateway] C:\Program Files\MediaGateway\MediaGateway.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [mswkork Service] msework.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\WANADOO\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ChkMail] hDŒ
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - Startup: reminder.lnk = ?
O4 - Startup: dcu.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.1_07\bin\npjpi141_07.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.1_07\bin\npjpi141_07.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: FreshDownload - {E02CD336-D8F3-464F-9DF5-9F0A7D9CE24A} - C:\Program Files\FreshDevices\FreshDownload\fd.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
Voilà, est ce que quelqu'un pourrait jeter un coup d'oeil s'il vous plait car pour moi c'est du charabia.
Merci
Kirua009
Je lance un appel à l'aide car je suis une énième victime de Win32:adan-161 qui me rend visite tout les jours et ce malgré les bottages de fesses quotidien que lui donne Avast.
J'ai vu dans des post similaires que HijackThis était utile donc je joins un rapport de scan.
Logfile of HijackThis v1.99.1
Scan saved at 14:10:56, on 13/04/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Progra~1\Launch Manager\LaunchAp.exe
C:\Progra~1\Launch Manager\PowerKey.exe
C:\Progra~1\Launch Manager\HotkeyApp.exe
C:\Progra~1\Launch Manager\CtrlVol.exe
C:\Progra~1\Launch Manager\Wbutton.exe
C:\Program Files\Acer\Notebook Manager\almxptray.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\MediaGateway\MediaGateway.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\DNA Digital Media Group\Nestle Fitness Virtual Coach\Reminder.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\DNA Digital Media Group\Nestle Fitness Virtual Coach\dcu.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Documents and Settings\Sergine_u\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.acer.com/worldwide/selection.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.acer.com/worldwide/selection.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {206E52E0-D52E-11D4-AD54-0000E86C26F6} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdcatch.dll
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: FreshDownload Bar - {ED0E8CA5-42FB-4B18-997B-769E0408E79D} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdiebar.dll
O4 - HKLM\..\Run: [LaunchApp] LaunApp
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Progra~1\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [PowerKey] "C:\Progra~1\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [LManager] C:\Progra~1\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Progra~1\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Progra~1\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [AcerNotebookManager] C:\Program Files\Acer\Notebook Manager\almxptray.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [HPLJ Config] C:\Program Files\Hewlett-Packard\hp color LaserJet 2550 Series\SetConfig.exe -c Direct -p DOT4_001 -pn "hp color LaserJet 2550 PCL 6" -n 1 -l 1036 -sl 120000
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [MediaGateway] C:\Program Files\MediaGateway\MediaGateway.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [mswkork Service] msework.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\WANADOO\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ChkMail] hDŒ
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - Startup: reminder.lnk = ?
O4 - Startup: dcu.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.1_07\bin\npjpi141_07.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.1_07\bin\npjpi141_07.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: FreshDownload - {E02CD336-D8F3-464F-9DF5-9F0A7D9CE24A} - C:\Program Files\FreshDevices\FreshDownload\fd.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
Voilà, est ce que quelqu'un pourrait jeter un coup d'oeil s'il vous plait car pour moi c'est du charabia.
Merci
Kirua009
A voir également:
- Encore Win32:Adan-161
- Puabundler win32 rostpay ✓ - Forum Antivirus
- Trojan win32 - Forum Virus
- Puadimanager win32/offercore ✓ - Forum Virus
- PUADlManager:Win32/OfferCore ✓ - Forum Virus
- Win32 pup gen ✓ - Forum Linux / Unix
4 réponses
Salut,
Relance HijackThis, choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked"
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [MediaGateway] C:\Program Files\MediaGateway\MediaGateway.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [mswkork Service] msework.exe
O4 - HKCU\..\Run: [ChkMail] hDŒ
O4 - Startup: reminder.lnk = ?
O4 - Startup: dcu.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
Cliques sur demarrer, rechercher, cherches et supprimes ce fichier:
msework.exe
si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui ci tapotes la touche f8, à l'ecran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers, vides ta corbeille et redemarres normalement
Cliques sur demarrer, poste de travail, C:, program files, cherches et supprimes ce dossier:
MediaGateway
Telecharge, installe puis mets à jour ce logiciel anti-spywares, une fois que c'est fait, fais un scan complet de ton systeme et colle le rapport ici avec un nouveau rapport hijackthis
Ewido:
Ewido Security Suite
Relance HijackThis, choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked"
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [MediaGateway] C:\Program Files\MediaGateway\MediaGateway.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [mswkork Service] msework.exe
O4 - HKCU\..\Run: [ChkMail] hDŒ
O4 - Startup: reminder.lnk = ?
O4 - Startup: dcu.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
Cliques sur demarrer, rechercher, cherches et supprimes ce fichier:
msework.exe
si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui ci tapotes la touche f8, à l'ecran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers, vides ta corbeille et redemarres normalement
Cliques sur demarrer, poste de travail, C:, program files, cherches et supprimes ce dossier:
MediaGateway
Telecharge, installe puis mets à jour ce logiciel anti-spywares, une fois que c'est fait, fais un scan complet de ton systeme et colle le rapport ici avec un nouveau rapport hijackthis
Ewido:
Ewido Security Suite
Rapport ewido:
---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------
+ Créé le: 15:41:15, 13/04/2006
+ Somme de contrôle: EDFB834D
+ Résultats du scan:
HKU\S-1-5-21-2143513057-895260991-3428848355-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{56F1D444-11BF-4879-A12B-79CF0177F038} -> Adware.180Solutions : Nettoyer et sauvegarder
C:\WINDOWS\MediaGateway.exe -> Adware.WinAD : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@doubleclick[2].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@atdmt[3].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@amazonnba.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@revenue[1].txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@wreport.weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@tacoda[1].txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@ehg-franceloisirs.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@ehg-yvesrocher.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@www.smartadserver[3].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@ehg-finaref.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@zedo[2].txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@ehg-accuweather.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@2o7[2].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@as1.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@as1.falkag[3].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@weborama[3].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@valueclick[1].txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@bluestreak[3].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@advertising[2].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@www.smartadserver[4].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@serving-sys[3].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.13:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.14:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.15:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.16:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.17:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.18:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.19:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.20:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.21:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.30:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
:mozilla.42:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
:mozilla.43:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
:mozilla.44:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
:mozilla.45:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
:mozilla.46:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
:mozilla.50:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.51:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.52:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.53:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.54:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.62:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.63:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.64:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.85:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
:mozilla.86:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
:mozilla.87:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
:mozilla.88:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.89:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.90:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.96:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
:mozilla.119:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.120:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.121:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.122:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.123:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.127:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
:mozilla.128:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
:mozilla.131:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.132:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.133:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.134:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.135:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.136:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.137:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.138:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.139:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.159:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
:mozilla.160:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
:mozilla.172:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
:mozilla.173:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
:mozilla.190:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.197:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.229:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.231:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyer et sauvegarder
:mozilla.232:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyer et sauvegarder
:mozilla.236:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.237:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.243:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
:mozilla.269:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
:mozilla.271:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
:mozilla.292:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder
:mozilla.293:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@atdmt[1].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@servedby.advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0035026.dll -> Adware.180Solutions : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0035132.exe -> Adware.180Solutions : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0035133.exe -> Adware.180Solutions : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036016.dll -> Adware.180Solutions : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036030.exe -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036031.exe -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036035.exe -> Adware.Hotbar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036042.exe -> Adware.Hotbar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036043.dll -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036044.dll -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036054.dll -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036055.dll -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036056.dll -> Adware.Shopper : Nettoyer et sauvegarder
C:\Recycled\Dc28\Updater.exe -> Adware.WinAD : Nettoyer et sauvegarder
C:\Recycled\Dc28\MediaGateway.exe -> Adware.WinAD : Nettoyer et sauvegarder
::Fin du rapport
Rapport Hijackthis:
Logfile of HijackThis v1.99.1
Scan saved at 15:44:03, on 13/04/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Progra~1\Launch Manager\LaunchAp.exe
C:\Progra~1\Launch Manager\PowerKey.exe
C:\Progra~1\Launch Manager\HotkeyApp.exe
C:\Progra~1\Launch Manager\CtrlVol.exe
C:\Progra~1\Launch Manager\Wbutton.exe
C:\Program Files\Acer\Notebook Manager\almxptray.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\DNA Digital Media Group\Nestle Fitness Virtual Coach\Reminder.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\DNA Digital Media Group\Nestle Fitness Virtual Coach\dcu.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\FreshDevices\FreshDownload\fd.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Documents and Settings\Sergine_u\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.acer.com/worldwide/selection.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.acer.com/worldwide/selection.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {206E52E0-D52E-11D4-AD54-0000E86C26F6} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdcatch.dll
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: FreshDownload Bar - {ED0E8CA5-42FB-4B18-997B-769E0408E79D} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdiebar.dll
O4 - HKLM\..\Run: [LaunchApp] LaunApp
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Progra~1\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [PowerKey] "C:\Progra~1\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [LManager] C:\Progra~1\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Progra~1\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Progra~1\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [AcerNotebookManager] C:\Program Files\Acer\Notebook Manager\almxptray.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [HPLJ Config] C:\Program Files\Hewlett-Packard\hp color LaserJet 2550 Series\SetConfig.exe -c Direct -p DOT4_001 -pn "hp color LaserJet 2550 PCL 6" -n 1 -l 1036 -sl 120000
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\WANADOO\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - Startup: dcu.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.1_07\bin\npjpi141_07.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.1_07\bin\npjpi141_07.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: FreshDownload - {E02CD336-D8F3-464F-9DF5-9F0A7D9CE24A} - C:\Program Files\FreshDevices\FreshDownload\fd.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
En revanche, le fichier msework.exe que tu m'avais demandé de supprimer n'existait pas.
---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------
+ Créé le: 15:41:15, 13/04/2006
+ Somme de contrôle: EDFB834D
+ Résultats du scan:
HKU\S-1-5-21-2143513057-895260991-3428848355-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{56F1D444-11BF-4879-A12B-79CF0177F038} -> Adware.180Solutions : Nettoyer et sauvegarder
C:\WINDOWS\MediaGateway.exe -> Adware.WinAD : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@doubleclick[2].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@atdmt[3].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@amazonnba.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@revenue[1].txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@wreport.weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@tacoda[1].txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@ehg-franceloisirs.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@ehg-yvesrocher.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@www.smartadserver[3].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@ehg-finaref.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@zedo[2].txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@ehg-accuweather.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@2o7[2].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@as1.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@as1.falkag[3].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@weborama[3].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@valueclick[1].txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@bluestreak[3].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@advertising[2].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@www.smartadserver[4].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Sergine_u\Cookies\sergine_u@serving-sys[3].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.13:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.14:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.15:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.16:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.17:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.18:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.19:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.20:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.21:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.30:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
:mozilla.42:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
:mozilla.43:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
:mozilla.44:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
:mozilla.45:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
:mozilla.46:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
:mozilla.50:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.51:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.52:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.53:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.54:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.62:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.63:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.64:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.85:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
:mozilla.86:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
:mozilla.87:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
:mozilla.88:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.89:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.90:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.96:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
:mozilla.119:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.120:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.121:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.122:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.123:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.127:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
:mozilla.128:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
:mozilla.131:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.132:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.133:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.134:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.135:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.136:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.137:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.138:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.139:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.159:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
:mozilla.160:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
:mozilla.172:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
:mozilla.173:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
:mozilla.190:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.197:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.229:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.231:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyer et sauvegarder
:mozilla.232:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyer et sauvegarder
:mozilla.236:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.237:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.243:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
:mozilla.269:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
:mozilla.271:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
:mozilla.292:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder
:mozilla.293:C:\Documents and Settings\Sergine_u\Application Data\Mozilla\Firefox\Profiles\trbx6g3p.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@atdmt[1].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@servedby.advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\ADM\Cookies\adm@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0035026.dll -> Adware.180Solutions : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0035132.exe -> Adware.180Solutions : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0035133.exe -> Adware.180Solutions : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036016.dll -> Adware.180Solutions : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036030.exe -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036031.exe -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036035.exe -> Adware.Hotbar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036042.exe -> Adware.Hotbar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036043.dll -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036044.dll -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036054.dll -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036055.dll -> Adware.HotBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP199\A0036056.dll -> Adware.Shopper : Nettoyer et sauvegarder
C:\Recycled\Dc28\Updater.exe -> Adware.WinAD : Nettoyer et sauvegarder
C:\Recycled\Dc28\MediaGateway.exe -> Adware.WinAD : Nettoyer et sauvegarder
::Fin du rapport
Rapport Hijackthis:
Logfile of HijackThis v1.99.1
Scan saved at 15:44:03, on 13/04/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Progra~1\Launch Manager\LaunchAp.exe
C:\Progra~1\Launch Manager\PowerKey.exe
C:\Progra~1\Launch Manager\HotkeyApp.exe
C:\Progra~1\Launch Manager\CtrlVol.exe
C:\Progra~1\Launch Manager\Wbutton.exe
C:\Program Files\Acer\Notebook Manager\almxptray.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\DNA Digital Media Group\Nestle Fitness Virtual Coach\Reminder.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\DNA Digital Media Group\Nestle Fitness Virtual Coach\dcu.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\FreshDevices\FreshDownload\fd.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Documents and Settings\Sergine_u\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.acer.com/worldwide/selection.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.acer.com/worldwide/selection.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {206E52E0-D52E-11D4-AD54-0000E86C26F6} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdcatch.dll
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: FreshDownload Bar - {ED0E8CA5-42FB-4B18-997B-769E0408E79D} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdiebar.dll
O4 - HKLM\..\Run: [LaunchApp] LaunApp
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Progra~1\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [PowerKey] "C:\Progra~1\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [LManager] C:\Progra~1\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Progra~1\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Progra~1\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [AcerNotebookManager] C:\Program Files\Acer\Notebook Manager\almxptray.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [HPLJ Config] C:\Program Files\Hewlett-Packard\hp color LaserJet 2550 Series\SetConfig.exe -c Direct -p DOT4_001 -pn "hp color LaserJet 2550 PCL 6" -n 1 -l 1036 -sl 120000
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\WANADOO\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - Startup: dcu.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.1_07\bin\npjpi141_07.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.1_07\bin\npjpi141_07.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: FreshDownload - {E02CD336-D8F3-464F-9DF5-9F0A7D9CE24A} - C:\Program Files\FreshDevices\FreshDownload\fd.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
En revanche, le fichier msework.exe que tu m'avais demandé de supprimer n'existait pas.
Ok maintenant fais ce nettoyage:
¤Telecharges et installes ceci, dans la colonne de gauche cliques sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs
CCleaner:
Ccleaner
¤Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis cliques sur "lancer le nettoyage"
Puis après fais ce scan anti-virus en ligne et colles le rapport ici stp et tu nous dira ou en est ton probléme mais je pense que ça sera bon.
https://www.bitdefender.com/toolbox/
¤Telecharges et installes ceci, dans la colonne de gauche cliques sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs
CCleaner:
Ccleaner
¤Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis cliques sur "lancer le nettoyage"
Puis après fais ce scan anti-virus en ligne et colles le rapport ici stp et tu nous dira ou en est ton probléme mais je pense que ça sera bon.
https://www.bitdefender.com/toolbox/
rapport bitdefender:
BitDefender Online Scanner - Rapport virus en temps réel
Généré à: Thu, Apr 13, 2006 - 17:17:32
--------------------------------------------------------------------------------
Info d'analyse
Fichiers scannés
241350
Infectés Fichiers
1
Virus Détectés
Adware.Winad.I
1
Je verrais demain si le problème repointe le bout de son nez.
Merci pour tout en tout cas
BitDefender Online Scanner - Rapport virus en temps réel
Généré à: Thu, Apr 13, 2006 - 17:17:32
--------------------------------------------------------------------------------
Info d'analyse
Fichiers scannés
241350
Infectés Fichiers
1
Virus Détectés
Adware.Winad.I
1
Je verrais demain si le problème repointe le bout de son nez.
Merci pour tout en tout cas
