Pubs intempestives
Résolu
macha84
Messages postés
98
Date d'inscription
Statut
Membre
Dernière intervention
-
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Bonjour,
Depuis hier, j'ai à nouveau des Pub intempestives... je te joints le nouveau rapport hijackthis... tu m'avais donné des supers indications pour les enlever la dernière fois... alors dois-je reprendre la même procédure.... merci...
Bonne journée
Macha
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:43:59, on 08/07/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\Citrix\ICA Client\concentr.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Agence-Exclusive\pctuto.exe
C:\Documents and Settings\CHANTAL\Application Data\Agence-Exclusive\Agence-Exclusive\autoupdater.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
C:\Program Files\Sweex\LW153\Utility\UI.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Citrix\ICA Client\wfcrun32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\dgdersvc.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
C:\WINDOWS\system32\wuauclt.exe
D:\Mes documents\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2905330
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {E38FA08E-F56A-4169-ABF5-5C71E3C153A1} - (no file)
R3 - URLSearchHook: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
R3 - URLSearchHook: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
R3 - URLSearchHook: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
R3 - URLSearchHook: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: PCTBHO - {293A63F7-C3B6-423a-9845-901AC0A7EE6E} - C:\Program Files\Agence-Exclusive\pctutoBHO.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngin0.dll
O2 - BHO: interdescargas-FR - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O2 - BHO: Messenger Plus FR - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O2 - BHO: TBSB01555 - {456632DF-9367-4299-8BA1-3D9CD55FC0CE} - C:\Program Files\RechercherWeb Toolbar\tbcore3.dll
O2 - BHO: Messenger Plus Live France - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (file missing)
O2 - BHO: (no name) - {D2A2595C-4FE4-4315-AA9B-19DBD6271B71} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: (no name) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O3 - Toolbar: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O3 - Toolbar: RechercherWeb Toolbar - {8FFA7469-654F-423E-84FE-6A583CB1C284} - C:\Program Files\RechercherWeb Toolbar\tbcore3.dll
O3 - Toolbar: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O3 - Toolbar: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngin0.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [cspep.exe] C:\Program Files\cspep\cspep.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [pctuto] "C:\Program Files\Agence-Exclusive\pctuto.exe"
O4 - HKLM\..\Run: [autoupdater] C:\Documents and Settings\CHANTAL\Application Data\Agence-Exclusive\Agence-Exclusive\autoupdater.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PhotoJoy] C:\Program Files\PhotoJoy\bin\PhotoJoy.exe /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Moniteur WiFi OLITEC.lnk = C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
O4 - Global Startup: Sweex utility.lnk = C:\Program Files\Sweex\LW153\Utility\UI.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} (System Requirements Lab) - https://www.systemrequirementslab.com/cyri
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\WINDOWS\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
Depuis hier, j'ai à nouveau des Pub intempestives... je te joints le nouveau rapport hijackthis... tu m'avais donné des supers indications pour les enlever la dernière fois... alors dois-je reprendre la même procédure.... merci...
Bonne journée
Macha
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:43:59, on 08/07/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\Citrix\ICA Client\concentr.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Agence-Exclusive\pctuto.exe
C:\Documents and Settings\CHANTAL\Application Data\Agence-Exclusive\Agence-Exclusive\autoupdater.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
C:\Program Files\Sweex\LW153\Utility\UI.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Citrix\ICA Client\wfcrun32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\dgdersvc.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
C:\WINDOWS\system32\wuauclt.exe
D:\Mes documents\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2905330
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {E38FA08E-F56A-4169-ABF5-5C71E3C153A1} - (no file)
R3 - URLSearchHook: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
R3 - URLSearchHook: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
R3 - URLSearchHook: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
R3 - URLSearchHook: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: PCTBHO - {293A63F7-C3B6-423a-9845-901AC0A7EE6E} - C:\Program Files\Agence-Exclusive\pctutoBHO.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngin0.dll
O2 - BHO: interdescargas-FR - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O2 - BHO: Messenger Plus FR - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O2 - BHO: TBSB01555 - {456632DF-9367-4299-8BA1-3D9CD55FC0CE} - C:\Program Files\RechercherWeb Toolbar\tbcore3.dll
O2 - BHO: Messenger Plus Live France - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (file missing)
O2 - BHO: (no name) - {D2A2595C-4FE4-4315-AA9B-19DBD6271B71} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: (no name) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O3 - Toolbar: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O3 - Toolbar: RechercherWeb Toolbar - {8FFA7469-654F-423E-84FE-6A583CB1C284} - C:\Program Files\RechercherWeb Toolbar\tbcore3.dll
O3 - Toolbar: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O3 - Toolbar: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngin0.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [cspep.exe] C:\Program Files\cspep\cspep.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [pctuto] "C:\Program Files\Agence-Exclusive\pctuto.exe"
O4 - HKLM\..\Run: [autoupdater] C:\Documents and Settings\CHANTAL\Application Data\Agence-Exclusive\Agence-Exclusive\autoupdater.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PhotoJoy] C:\Program Files\PhotoJoy\bin\PhotoJoy.exe /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Moniteur WiFi OLITEC.lnk = C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
O4 - Global Startup: Sweex utility.lnk = C:\Program Files\Sweex\LW153\Utility\UI.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} (System Requirements Lab) - https://www.systemrequirementslab.com/cyri
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\WINDOWS\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
A voir également:
- Pubs intempestives
- Bloquer les pubs youtube - Accueil - Streaming
- Supprimer les pubs - Guide
- Comment couper le son des pubs dans les jeux - Forum Enceintes / HiFi
- Pourquoi j'ai des pubs de site de rencontre ✓ - Forum Réseaux sociaux
- Mon téléphone lance des pubs tout seul ✓ - Forum Téléphones & tablettes Android
7 réponses
Salut,
tssss : C:\Program Files\Agence-Exclusive\pctuto.exe
Tu as installé des programmes EoRezo/PCtuto/PC4Tuto, sais-tu que le service transmet certaines informations ? comme par exemple ton adresse, numéro de télephone qui ont été saisis lors de l'inscription ?
EoRezo modifie aussi ta page de démarrge vers lo.st, il se peux aussi que ce site transmettent certaines informations.
Enfin les programmes installent un agent de publicité qui affichent des popups de pubs.
Pour plus d'informations se reporter à cette page : https://forum.malekal.com/viewtopic.php?t=18245&start=
Solidarité sebsauvage : Lis ça : https://www.malekal.com/quand-les-avocats-refont-le-web/
~~
Télécharge AD-Remover : http://www.teamxscript.org/adremoverTelechargement.html
Lance le en mode nettoyage
Poste le rapport ici.
~~~
Tu fais une collection ?
Désinstalle tout ce qui porte le mot toolbar / barre d'outils / Conduit
- BHO: TBSB01555 - {456632DF-9367-4299-8BA1-3D9CD55FC0CE} - C:\Program Files\RechercherWeb Toolbar\tbcore3.dll
O2 - BHO: Messenger Plus Live France - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (file missing)
O2 - BHO: (no name) - {D2A2595C-4FE4-4315-AA9B-19DBD6271B71} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: (no name) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O3 - Toolbar: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O3 - Toolbar: RechercherWeb Toolbar - {8FFA7469-654F-423E-84FE-6A583CB1C284} - C:\Program Files\RechercherWeb Toolbar\tbcore3.dll
O3 - Toolbar: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O3 - Toolbar: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngin0.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
Les barres d'outils sont là pour t'affilier à un service (moteur de recherche de Yahoo! ou Google), ça rajoute des fonctionnalités mais en général les navigateurs les ont par défaut.
De plus, elles enregistrent les sites que tu visites pour les transmettre (tracking) à faire de la publicité ciblée, c'est pas super niveau protection de la vie privée.
Plusieurs toolbars ralentissent le PC et peuvent faire planter les navigateurs WEB.
Au final, il est pas conseillé d'en utiliser.
Lire :
Les toolbars c'est pas obligatoire!
Reposte un rapport HijackThis quand tu as fait tout ça.
Yes, no, maybe
I don't know
Can you repeat the question?
You're not the boss of me now
tssss : C:\Program Files\Agence-Exclusive\pctuto.exe
Tu as installé des programmes EoRezo/PCtuto/PC4Tuto, sais-tu que le service transmet certaines informations ? comme par exemple ton adresse, numéro de télephone qui ont été saisis lors de l'inscription ?
EoRezo modifie aussi ta page de démarrge vers lo.st, il se peux aussi que ce site transmettent certaines informations.
Enfin les programmes installent un agent de publicité qui affichent des popups de pubs.
Pour plus d'informations se reporter à cette page : https://forum.malekal.com/viewtopic.php?t=18245&start=
Solidarité sebsauvage : Lis ça : https://www.malekal.com/quand-les-avocats-refont-le-web/
~~
Télécharge AD-Remover : http://www.teamxscript.org/adremoverTelechargement.html
Lance le en mode nettoyage
Poste le rapport ici.
~~~
Tu fais une collection ?
Désinstalle tout ce qui porte le mot toolbar / barre d'outils / Conduit
- BHO: TBSB01555 - {456632DF-9367-4299-8BA1-3D9CD55FC0CE} - C:\Program Files\RechercherWeb Toolbar\tbcore3.dll
O2 - BHO: Messenger Plus Live France - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (file missing)
O2 - BHO: (no name) - {D2A2595C-4FE4-4315-AA9B-19DBD6271B71} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: (no name) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O3 - Toolbar: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O3 - Toolbar: RechercherWeb Toolbar - {8FFA7469-654F-423E-84FE-6A583CB1C284} - C:\Program Files\RechercherWeb Toolbar\tbcore3.dll
O3 - Toolbar: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O3 - Toolbar: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngin0.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
Les barres d'outils sont là pour t'affilier à un service (moteur de recherche de Yahoo! ou Google), ça rajoute des fonctionnalités mais en général les navigateurs les ont par défaut.
De plus, elles enregistrent les sites que tu visites pour les transmettre (tracking) à faire de la publicité ciblée, c'est pas super niveau protection de la vie privée.
Plusieurs toolbars ralentissent le PC et peuvent faire planter les navigateurs WEB.
Au final, il est pas conseillé d'en utiliser.
Lire :
Les toolbars c'est pas obligatoire!
Reposte un rapport HijackThis quand tu as fait tout ça.
Yes, no, maybe
I don't know
Can you repeat the question?
You're not the boss of me now
Re bonjour,
je t'envoie le rapport d'ad remover...
je n'arrive pas à enlever les toolbar dans mon panneau de configuration... ça bloque et rien ne se passe... comment faire ?
======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [10]) -> Lancé à 08:51:35 le 08/07/2011, Mode normal
Microsoft Windows XP Professionnel Service Pack 3 (X86)
CHANTAL@BUREAU ( )
============== ACTION(S) ==============
(!) -- Fichiers temporaires supprimés.
-- Fichier ouvert: C:\Documents and Settings\CHANTAL\Application Data\Mozilla\FireFox\Profiles\ny1lc90t.default\Prefs.js --
/!\ Impossible d'ouvrir le fichier, nettoyage interrompu /!\
-- Fichier Fermé --
============== SCAN ADDITIONNEL ==============
**** Mozilla Firefox Version [5.0 (fr)] ****
Plugins\CCMSDK.dll (Citrix Systems, Inc.)
Plugins\cgpcfg.dll (Citrix Systems, Inc.)
Plugins\CgpCore.dll (Citrix Systems, Inc.)
Plugins\confmgr.dll (Citrix Systems, Inc.)
Plugins\ctxlogging.dll (Citrix Systems, Inc.)
Plugins\ctxmui.dll (Citrix Systems, Inc.)
Plugins\icafile.dll (Citrix Systems, Inc.)
Plugins\icalogon.dll (Citrix Systems, Inc.)
Plugins\npicaN.dll (?)
Plugins\npsharedview.dll ( )
Plugins\sslsdk_b.dll (Citrix Systems, Inc.)
Plugins\TcpPServ.dll (Citrix Systems, Inc.)
HKLM_MozillaPlugins\Adobe Reader (x)
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Components\browsercomps.dll (Mozilla Foundation)
Extensions\{0497D7FA-B45F-11DB-9DCC-3D3756D89593} (MSN Pictures Displayer)
HKLM_Extensions|smartwebprinting@hp.com - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
HKCU_Extensions|smartwebprinting@hp.com - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
-- C:\Documents and Settings\CHANTAL\Application Data\Mozilla\FireFox\Profiles\ny1lc90t.default --
Extensions\collector@broceliand.fr (pearltrees)
Extensions\perseus@esiea-recherche.eu (Perseus)
Extensions\piclens@cooliris.com (Cooliris)
Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} (Flagfox)
Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} (Google Toolbar for Firefox)
Extensions\{37fa1426-b82d-11db-8314-0800200c9a66} (WebMail Notifier)
Extensions\{3d4d238c-9c48-47cd-a95c-53259acf9e56} (Messenger Plus FR Community Toolbar)
Extensions\{a65e491f-a436-4952-b49a-b24ed99a0f67} (Toms Guide France Community Toolbar)
Extensions\{cf45c54f-801c-41b5-ac77-57f2bf418edc} (PhotoJoy Bar Community Toolbar)
Extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (IncrediMail MediaBar 2 Community Toolbar)
Extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca} (Torbutton)
Searchplugins\aol-search.xml (?)
Searchplugins\customized-search.xml (?)
Searchplugins\MyStart Search.xml (?)
Searchplugins\sweetim.xml (?)
Searchplugins\Wibeez.xml (<SearchPlugin xmlns=hxxp://www.mozilla.org/2006/browser/search/<ShortNameWibeez</ShortName <DescriptionMéta-annuaire Wi...)
Prefs.js - browser.download.dir, D:\\Mes documents
Prefs.js - browser.download.lastDir, D:\\Mes documents\\Mes albums\\gifs
Prefs.js - browser.search.defaultenginename, Ask.com
Prefs.js - browser.search.defaulturl, hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2966884&SearchSource=3&q={searchTerms}
Prefs.js - browser.search.selectedEngine, Google
Prefs.js - browser.startup.homepage, hxxp://search.conduit.com/?ctid=CT2966884&SearchSource=13
Prefs.js - browser.startup.homepage_override.buildID, 20110615151330
Prefs.js - browser.startup.homepage_override.mstone, rv:5.0
Prefs.js - keyword.URL, chrome://browser-region/locale/region.properties
Prefs.js - sweetim.toolbar.previous.browser.search.defaultenginename, Rechercher MyStart
Prefs.js - sweetim.toolbar.previous.browser.search.defaulturl, hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2905330&SearchSourc...
Prefs.js - sweetim.toolbar.previous.browser.search.selectedEngine, Fissa
Prefs.js - sweetim.toolbar.previous.browser.startup.homepage, hxxp://www.fissa.com/fr/?s=h&c=11041211327&suid=EoLfQQJEd&d=8&pid=
========================================
**** Google Chrome Version [12.0.742.112] ****
Extension\jfmjfhklogoienhpfnppmbcbjfjnkonk (C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx) (?)
Extension\lifbcibllhkdhoafpjfnlhfpfgnpldfl (C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx) (?)
Extension\mjafdclidlcgljfnladchfabmhcchnid (C:\DOCUME~1\CHANTAL\LOCALS~1\Temp\mjafdclidlcgljfnladchfabmhcchnid.crx) (x)
-- C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Conduit" (Activé: true) (hxxp://search.conduit.com/Results.aspx?q={searchTerms}&hl=en&SelfSearch=1&SearchSource=49&ctid=ct2905330)
Preferences - homepage: hxxp://www.google.com/
Preferences - homepage_is_newtabpage: false
========================================
**** Internet Explorer Version [8.0.6001.18702] ****
HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{E38FA08E-F56A-4169-ABF5-5C71E3C153A1} (x)
HKCU_URLSearchHooks|{31c322dc-5878-452e-a2d8-c4aab9973c9a} - "interdescargas-FR Toolbar" (C:\Program Files\interdescargas-FR\prxtbint2.dll)
HKCU_URLSearchHooks|{59994074-c06d-4a75-9768-49e5a8c21264} - "Messenger Plus Live France Toolbar" (C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll)
HKCU_URLSearchHooks|{77f8c945-4b74-4bd6-a073-e0d1997edce8} - "midicair Toolbar" (C:\Program Files\midicair\tbmidi.dll)
HKCU_URLSearchHooks|{3d4d238c-9c48-47cd-a95c-53259acf9e56} - "Messenger Plus FR Toolbar" (C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll)
HKCU_URLSearchHooks|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (x)
HKCU_SearchScopes\{0633EE93-1111-472f-A0FF-E1416B8B2EAA} - "Search" (hxxp://www.pucuy.com/google?q={searchTerms}&sa=Search&cx=partner-pub-35468619388...)
HKCU_SearchScopes\{2B7B7EFC-C234-4532-822B-A8D74D7EF7EB} - "gdark" (hxxp://fr.gdark.com/search.php?cx=partner-pub-7902900401080901%3Ae94ctf-nqmg&cof...)
HKCU_SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6} - "AOL Recherche" (hxxp://recherche.aol.fr/aolcom/search?query={searchTerms}&invocationType=TB50ie7...)
HKCU_SearchScopes\{6AC63E17-B56A-4A89-A130-EEFF78EBCE4D} - "Customized Search en Français" (hxxp://search.fr-recherche.com/?q={searchTerms})
HKCU_SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E} - "Google Desktop" (hxxp://127.0.0.1:4664/search&s=MNaYUuA15grkpstBMDg7L5gkg_I?q={searchTerms})
HKCU_SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e} - "Customized Search" (hxxp://search.fr-recherche.com/?q={searchTerms})
HKCU_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKCU_SearchScopes\{f922371b-844c-4fcf-84bb-b2d24b822232} - "Wibeez" (hxxp://www.wibeez.com/france?search&q={searchTerms})
HKLM_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKCU_Toolbar|{1E796980-9CC5-11D1-A83F-00C04FC99D61} (x)
HKCU_Toolbar\ShellBrowser|{6E454792-2F36-46D3-BB20-4BE949B6FB8A} (x)
HKCU_Toolbar\WebBrowser|{4982D40A-C53B-4615-B15B-B5B5E98D167C} (x)
HKCU_Toolbar\WebBrowser|{31C322DC-5878-452E-A2D8-C4AAB9973C9A} (C:\Program Files\interdescargas-FR\prxtbint2.dll)
HKCU_Toolbar\WebBrowser|{59994074-C06D-4A75-9768-49E5A8C21264} (C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll)
HKCU_Toolbar\WebBrowser|{77F8C945-4B74-4BD6-A073-E0D1997EDCE8} (C:\Program Files\midicair\tbmidi.dll)
HKCU_Toolbar\WebBrowser|{9501479D-AA75-4F69-8CA6-59C22ADC1B5B} (x)
HKCU_Toolbar\WebBrowser|{3D4D238C-9C48-47CD-A95C-53259ACF9E56} (C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll)
HKLM_Toolbar|{31c322dc-5878-452e-a2d8-c4aab9973c9a} (C:\Program Files\interdescargas-FR\prxtbint2.dll)
HKLM_Toolbar|{59994074-c06d-4a75-9768-49e5a8c21264} (C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll)
HKLM_Toolbar|{77f8c945-4b74-4bd6-a073-e0d1997edce8} (C:\Program Files\midicair\tbmidi.dll)
HKLM_Toolbar|{8FFA7469-654F-423E-84FE-6A583CB1C284} (C:\Program Files\RechercherWeb Toolbar\tbcore3.dll)
HKLM_Toolbar|{3d4d238c-9c48-47cd-a95c-53259acf9e56} (C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll)
HKLM_Toolbar|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (x)
HKCU_ElevationPolicy\{240373D3-4199-4F41-BB4D-15D5B830C82D}-32 - C:\Program Files\iGraal\iGraalHelper.exe (x)
HKLM_ElevationPolicy\0fb9d140-af0e-4b6d-a316-bba526313fdc - C:\Program Files\Messenger_Plus_Live_France\Messenger_Plus_Live_FranceToolbarHelper.exe (?)
HKLM_ElevationPolicy\1c8a428c-6b35-4ae9-8872-66e676b59adf - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\24f5bb24-6cbf-45e0-92ac-3c940850d3f1 - C:\Program Files\myBabylon_English\myBabylon_EnglishToolbarHelper.exe (x)
HKLM_ElevationPolicy\3ea3eebe-afa5-429d-a4ba-a30f784ff603 - C:\Program Files\myBabylon_English\myBabylon_EnglishToolbarHelper.exe (x)
HKLM_ElevationPolicy\4b3b1401-0193-4336-8f94-b96f773bcc8d - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\5a85a4c5-381a-4f58-bd68-89db5ab97012 - C:\Program Files\mobilewitch\mobilewitchToolbarHelper.exe (x)
HKLM_ElevationPolicy\5c96c94c-5a7f-499b-b61d-7245d1e97469 - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\5e3dca70-4666-49c3-b62b-dee8241ab458 - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\6619fd5d-df67-4e66-abda-a9a4245fbd28 - C:\Program Files\Messenger_Plus_Live_France\Messenger_Plus_Live_FranceToolbarHelper.exe (?)
HKLM_ElevationPolicy\8fc0df3e-e064-4009-beb9-fbb4f6407938 - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\94119b05-c4ab-4209-81b6-1948d85eb9e5 - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\979c294b-fd90-49b8-b2cf-c28adc735a56 - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\b4d80b2f-aa58-43ea-828d-5f996870d010 - C:\Program Files\MyAshampoo\MyAshampooToolbarHelper.exe (x)
HKLM_ElevationPolicy\ccfbaab8-19a2-4181-b1d4-93ac82a1eabb - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\dfd3ee18-2a3c-44f7-add8-57dac46a44de - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\e47bdc52-5981-4bd9-b09f-a9efcccf00e1 - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\e68e8e47-45ca-4127-af7f-4f1c4cb5e146 - C:\Program Files\Messenger_Plus_Live_France\Messenger_Plus_Live_FranceToolbarHelper.exe (?)
HKLM_ElevationPolicy\ed4b5ae3-5057-4552-851d-60116da425aa - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\f4972048-b4a4-4bcc-8c91-0651b3f98594 - C:\Program Files\Messenger_Plus_Live_France\Messenger_Plus_Live_FranceToolbarHelper.exe (?)
HKLM_ElevationPolicy\fdabd0ee-ad18-4bef-8d11-79ed6de15c00 - C:\Program Files\myBabylon_English\myBabylon_EnglishToolbarHelper.exe (x)
HKLM_ElevationPolicy\{11AF66E1-6BDE-4AA0-A061-65188608936B} - C:\Program Files\RechercherWeb Toolbar\PlayerPlug.exe (?)
HKLM_ElevationPolicy\{1F0358F6-8317-41D4-8E8E-14A1B5A0BEBE} - C:\Program Files\iGraal\iGraalHelper.exe (x)
HKLM_ElevationPolicy\{21495F8D-B4FB-483C-8311-24DC4A41AC86} - C:\Program Files\Messenger_Plus_FR\Messenger_Plus_FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\{240373D3-4199-4F41-BB4D-15D5B830C82D}-32 - C:\Program Files\iGraal\iGraalHelper.exe (x)
HKLM_ElevationPolicy\{33C1CF8A-7F10-48A4-96E4-5D7158281B2B} - C:\Program Files\Messenger_Plus_Live_France\Messenger_Plus_Live_FranceToolbarHelper1.exe (Conduit Ltd.)
HKLM_ElevationPolicy\{4546FF4E-116B-4B11-BA28-47D89197E7FD} - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper1.exe (?)
HKLM_ElevationPolicy\{4C813794-9288-4337-A7AD-5015B117D023} - C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Conduit\CT2905330\Messenger_Plus_FRAutoUpdateHelper.exe (x)
HKLM_ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} - C:\Program Files\RechercherWeb Toolbar\TbHelper2.exe (?)
HKLM_ElevationPolicy\{74351F14-5437-4d87-805B-04D409B09976} - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
HKLM_ElevationPolicy\{973F1DA1-9BE8-49C1-A68D-EAA0D9847898} - C:\Program Files\RechercherWeb Toolbar\PropMgrAsync.exe (?)
HKLM_ElevationPolicy\{98D6E2AD-7673-4742-8B34-6D327771A66D} - C:\Program Files\Citrix\ICA Client\wfcrun32.exe (Citrix Systems, Inc.)
HKLM_ElevationPolicy\{AE3E3222-A492-41B2-9F78-75EB64EC223B} - C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Conduit\CT2423182\interdescargas-FRAutoUpdaterHelper.exe (x)
HKLM_ElevationPolicy\{CE4EC0B4-808A-4A97-ABB6-0FD79BD3C908} - C:\Program Files\midicair\midicairToolbarHelper.exe (?)
HKLM_ElevationPolicy\{DCDAE87A-AC14-11DC-9943-F27556D89593} - C:\Program Files\Microsoft SharedView\SharedView.exe\SharedView.exe (x)
HKLM_Extensions\{53F6FCCD-9E22-4d71-86EA-6E43136192AB} - "?" (?)
HKLM_Extensions\{925DAB62-F9AC-4221-806A-057BFB1014AA} - "?" (?)
HKLM_Extensions\{CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - "?" (?)
HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)
BHO\{02478D38-C3F9-4efb-9B51-7695ECA05670} (?)
BHO\{31c322dc-5878-452e-a2d8-c4aab9973c9a} - "interdescargas-FR Toolbar" (C:\Program Files\interdescargas-FR\prxtbint2.dll)
BHO\{3d4d238c-9c48-47cd-a95c-53259acf9e56} - "Messenger Plus FR Toolbar" (C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll)
BHO\{456632DF-9367-4299-8BA1-3D9CD55FC0CE} - "TBSB01555 Class" (C:\Program Files\RechercherWeb Toolbar\tbcore3.dll)
BHO\{59994074-c06d-4a75-9768-49e5a8c21264} - "Messenger Plus Live France Toolbar" (C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll)
BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)
BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll)
BHO\{77f8c945-4b74-4bd6-a073-e0d1997edce8} - "midicair Toolbar" (C:\Program Files\midicair\tbmidi.dll)
BHO\{9CB65201-89C4-402c-BA80-02D8C59F9B1D} (?)
BHO\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - "Google Dictionary Compression sdch" (C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll) (x)
BHO\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71} (?)
BHO\{FE063DB1-4EC0-403e-8DD8-394C54984B2C} (?)
========================================
C:\Program Files\Ad-Remover\Quarantine: 1146 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 55 Fichier(s)
C:\Ad-Report-CLEAN[10].txt - 08/07/2011 08:51:51 (15157 Octet(s))
C:\Ad-Report-CLEAN[1].txt - 12/04/2010 14:54:20 (11757 Octet(s))
C:\Ad-Report-CLEAN[2].txt - 14/03/2011 21:50:45 (26758 Octet(s))
C:\Ad-Report-CLEAN[3].txt - 14/03/2011 22:35:20 (14676 Octet(s))
C:\Ad-Report-CLEAN[4].txt - 14/03/2011 23:42:22 (10628 Octet(s))
C:\Ad-Report-CLEAN[5].txt - 16/03/2011 14:57:16 (14115 Octet(s))
C:\Ad-Report-CLEAN[6].txt - 16/03/2011 15:04:36 (13951 Octet(s))
C:\Ad-Report-CLEAN[7].txt - 29/03/2011 15:56:14 (17357 Octet(s))
C:\Ad-Report-CLEAN[8].txt - 08/07/2011 08:27:30 (21043 Octet(s))
C:\Ad-Report-CLEAN[9].txt - 08/07/2011 08:35:50 (16271 Octet(s))
C:\Ad-Report-SCAN[1].txt - 12/04/2010 16:04:43 (3341 Octet(s))
C:\Ad-Report-SCAN[2].txt - 12/04/2010 16:13:41 (52650 Octet(s))
C:\Ad-Report-SCAN[3].txt - 14/03/2011 22:19:15 (37675 Octet(s))
C:\Ad-Report-SCAN[4].txt - 29/03/2011 15:42:36 (41586 Octet(s))
C:\Ad-Report-SCAN[5].txt - 08/07/2011 08:29:17 (53546 Octet(s))
Fin à: 08:55:12, 08/07/2011
============== E.O.F ==============
je t'envoie le rapport d'ad remover...
je n'arrive pas à enlever les toolbar dans mon panneau de configuration... ça bloque et rien ne se passe... comment faire ?
======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [10]) -> Lancé à 08:51:35 le 08/07/2011, Mode normal
Microsoft Windows XP Professionnel Service Pack 3 (X86)
CHANTAL@BUREAU ( )
============== ACTION(S) ==============
(!) -- Fichiers temporaires supprimés.
-- Fichier ouvert: C:\Documents and Settings\CHANTAL\Application Data\Mozilla\FireFox\Profiles\ny1lc90t.default\Prefs.js --
/!\ Impossible d'ouvrir le fichier, nettoyage interrompu /!\
-- Fichier Fermé --
============== SCAN ADDITIONNEL ==============
**** Mozilla Firefox Version [5.0 (fr)] ****
Plugins\CCMSDK.dll (Citrix Systems, Inc.)
Plugins\cgpcfg.dll (Citrix Systems, Inc.)
Plugins\CgpCore.dll (Citrix Systems, Inc.)
Plugins\confmgr.dll (Citrix Systems, Inc.)
Plugins\ctxlogging.dll (Citrix Systems, Inc.)
Plugins\ctxmui.dll (Citrix Systems, Inc.)
Plugins\icafile.dll (Citrix Systems, Inc.)
Plugins\icalogon.dll (Citrix Systems, Inc.)
Plugins\npicaN.dll (?)
Plugins\npsharedview.dll ( )
Plugins\sslsdk_b.dll (Citrix Systems, Inc.)
Plugins\TcpPServ.dll (Citrix Systems, Inc.)
HKLM_MozillaPlugins\Adobe Reader (x)
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Components\browsercomps.dll (Mozilla Foundation)
Extensions\{0497D7FA-B45F-11DB-9DCC-3D3756D89593} (MSN Pictures Displayer)
HKLM_Extensions|smartwebprinting@hp.com - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
HKCU_Extensions|smartwebprinting@hp.com - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
-- C:\Documents and Settings\CHANTAL\Application Data\Mozilla\FireFox\Profiles\ny1lc90t.default --
Extensions\collector@broceliand.fr (pearltrees)
Extensions\perseus@esiea-recherche.eu (Perseus)
Extensions\piclens@cooliris.com (Cooliris)
Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} (Flagfox)
Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} (Google Toolbar for Firefox)
Extensions\{37fa1426-b82d-11db-8314-0800200c9a66} (WebMail Notifier)
Extensions\{3d4d238c-9c48-47cd-a95c-53259acf9e56} (Messenger Plus FR Community Toolbar)
Extensions\{a65e491f-a436-4952-b49a-b24ed99a0f67} (Toms Guide France Community Toolbar)
Extensions\{cf45c54f-801c-41b5-ac77-57f2bf418edc} (PhotoJoy Bar Community Toolbar)
Extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (IncrediMail MediaBar 2 Community Toolbar)
Extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca} (Torbutton)
Searchplugins\aol-search.xml (?)
Searchplugins\customized-search.xml (?)
Searchplugins\MyStart Search.xml (?)
Searchplugins\sweetim.xml (?)
Searchplugins\Wibeez.xml (<SearchPlugin xmlns=hxxp://www.mozilla.org/2006/browser/search/<ShortNameWibeez</ShortName <DescriptionMéta-annuaire Wi...)
Prefs.js - browser.download.dir, D:\\Mes documents
Prefs.js - browser.download.lastDir, D:\\Mes documents\\Mes albums\\gifs
Prefs.js - browser.search.defaultenginename, Ask.com
Prefs.js - browser.search.defaulturl, hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2966884&SearchSource=3&q={searchTerms}
Prefs.js - browser.search.selectedEngine, Google
Prefs.js - browser.startup.homepage, hxxp://search.conduit.com/?ctid=CT2966884&SearchSource=13
Prefs.js - browser.startup.homepage_override.buildID, 20110615151330
Prefs.js - browser.startup.homepage_override.mstone, rv:5.0
Prefs.js - keyword.URL, chrome://browser-region/locale/region.properties
Prefs.js - sweetim.toolbar.previous.browser.search.defaultenginename, Rechercher MyStart
Prefs.js - sweetim.toolbar.previous.browser.search.defaulturl, hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2905330&SearchSourc...
Prefs.js - sweetim.toolbar.previous.browser.search.selectedEngine, Fissa
Prefs.js - sweetim.toolbar.previous.browser.startup.homepage, hxxp://www.fissa.com/fr/?s=h&c=11041211327&suid=EoLfQQJEd&d=8&pid=
========================================
**** Google Chrome Version [12.0.742.112] ****
Extension\jfmjfhklogoienhpfnppmbcbjfjnkonk (C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx) (?)
Extension\lifbcibllhkdhoafpjfnlhfpfgnpldfl (C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx) (?)
Extension\mjafdclidlcgljfnladchfabmhcchnid (C:\DOCUME~1\CHANTAL\LOCALS~1\Temp\mjafdclidlcgljfnladchfabmhcchnid.crx) (x)
-- C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Conduit" (Activé: true) (hxxp://search.conduit.com/Results.aspx?q={searchTerms}&hl=en&SelfSearch=1&SearchSource=49&ctid=ct2905330)
Preferences - homepage: hxxp://www.google.com/
Preferences - homepage_is_newtabpage: false
========================================
**** Internet Explorer Version [8.0.6001.18702] ****
HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{E38FA08E-F56A-4169-ABF5-5C71E3C153A1} (x)
HKCU_URLSearchHooks|{31c322dc-5878-452e-a2d8-c4aab9973c9a} - "interdescargas-FR Toolbar" (C:\Program Files\interdescargas-FR\prxtbint2.dll)
HKCU_URLSearchHooks|{59994074-c06d-4a75-9768-49e5a8c21264} - "Messenger Plus Live France Toolbar" (C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll)
HKCU_URLSearchHooks|{77f8c945-4b74-4bd6-a073-e0d1997edce8} - "midicair Toolbar" (C:\Program Files\midicair\tbmidi.dll)
HKCU_URLSearchHooks|{3d4d238c-9c48-47cd-a95c-53259acf9e56} - "Messenger Plus FR Toolbar" (C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll)
HKCU_URLSearchHooks|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (x)
HKCU_SearchScopes\{0633EE93-1111-472f-A0FF-E1416B8B2EAA} - "Search" (hxxp://www.pucuy.com/google?q={searchTerms}&sa=Search&cx=partner-pub-35468619388...)
HKCU_SearchScopes\{2B7B7EFC-C234-4532-822B-A8D74D7EF7EB} - "gdark" (hxxp://fr.gdark.com/search.php?cx=partner-pub-7902900401080901%3Ae94ctf-nqmg&cof...)
HKCU_SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6} - "AOL Recherche" (hxxp://recherche.aol.fr/aolcom/search?query={searchTerms}&invocationType=TB50ie7...)
HKCU_SearchScopes\{6AC63E17-B56A-4A89-A130-EEFF78EBCE4D} - "Customized Search en Français" (hxxp://search.fr-recherche.com/?q={searchTerms})
HKCU_SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E} - "Google Desktop" (hxxp://127.0.0.1:4664/search&s=MNaYUuA15grkpstBMDg7L5gkg_I?q={searchTerms})
HKCU_SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e} - "Customized Search" (hxxp://search.fr-recherche.com/?q={searchTerms})
HKCU_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKCU_SearchScopes\{f922371b-844c-4fcf-84bb-b2d24b822232} - "Wibeez" (hxxp://www.wibeez.com/france?search&q={searchTerms})
HKLM_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKCU_Toolbar|{1E796980-9CC5-11D1-A83F-00C04FC99D61} (x)
HKCU_Toolbar\ShellBrowser|{6E454792-2F36-46D3-BB20-4BE949B6FB8A} (x)
HKCU_Toolbar\WebBrowser|{4982D40A-C53B-4615-B15B-B5B5E98D167C} (x)
HKCU_Toolbar\WebBrowser|{31C322DC-5878-452E-A2D8-C4AAB9973C9A} (C:\Program Files\interdescargas-FR\prxtbint2.dll)
HKCU_Toolbar\WebBrowser|{59994074-C06D-4A75-9768-49E5A8C21264} (C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll)
HKCU_Toolbar\WebBrowser|{77F8C945-4B74-4BD6-A073-E0D1997EDCE8} (C:\Program Files\midicair\tbmidi.dll)
HKCU_Toolbar\WebBrowser|{9501479D-AA75-4F69-8CA6-59C22ADC1B5B} (x)
HKCU_Toolbar\WebBrowser|{3D4D238C-9C48-47CD-A95C-53259ACF9E56} (C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll)
HKLM_Toolbar|{31c322dc-5878-452e-a2d8-c4aab9973c9a} (C:\Program Files\interdescargas-FR\prxtbint2.dll)
HKLM_Toolbar|{59994074-c06d-4a75-9768-49e5a8c21264} (C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll)
HKLM_Toolbar|{77f8c945-4b74-4bd6-a073-e0d1997edce8} (C:\Program Files\midicair\tbmidi.dll)
HKLM_Toolbar|{8FFA7469-654F-423E-84FE-6A583CB1C284} (C:\Program Files\RechercherWeb Toolbar\tbcore3.dll)
HKLM_Toolbar|{3d4d238c-9c48-47cd-a95c-53259acf9e56} (C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll)
HKLM_Toolbar|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (x)
HKCU_ElevationPolicy\{240373D3-4199-4F41-BB4D-15D5B830C82D}-32 - C:\Program Files\iGraal\iGraalHelper.exe (x)
HKLM_ElevationPolicy\0fb9d140-af0e-4b6d-a316-bba526313fdc - C:\Program Files\Messenger_Plus_Live_France\Messenger_Plus_Live_FranceToolbarHelper.exe (?)
HKLM_ElevationPolicy\1c8a428c-6b35-4ae9-8872-66e676b59adf - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\24f5bb24-6cbf-45e0-92ac-3c940850d3f1 - C:\Program Files\myBabylon_English\myBabylon_EnglishToolbarHelper.exe (x)
HKLM_ElevationPolicy\3ea3eebe-afa5-429d-a4ba-a30f784ff603 - C:\Program Files\myBabylon_English\myBabylon_EnglishToolbarHelper.exe (x)
HKLM_ElevationPolicy\4b3b1401-0193-4336-8f94-b96f773bcc8d - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\5a85a4c5-381a-4f58-bd68-89db5ab97012 - C:\Program Files\mobilewitch\mobilewitchToolbarHelper.exe (x)
HKLM_ElevationPolicy\5c96c94c-5a7f-499b-b61d-7245d1e97469 - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\5e3dca70-4666-49c3-b62b-dee8241ab458 - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\6619fd5d-df67-4e66-abda-a9a4245fbd28 - C:\Program Files\Messenger_Plus_Live_France\Messenger_Plus_Live_FranceToolbarHelper.exe (?)
HKLM_ElevationPolicy\8fc0df3e-e064-4009-beb9-fbb4f6407938 - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\94119b05-c4ab-4209-81b6-1948d85eb9e5 - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\979c294b-fd90-49b8-b2cf-c28adc735a56 - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\b4d80b2f-aa58-43ea-828d-5f996870d010 - C:\Program Files\MyAshampoo\MyAshampooToolbarHelper.exe (x)
HKLM_ElevationPolicy\ccfbaab8-19a2-4181-b1d4-93ac82a1eabb - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\dfd3ee18-2a3c-44f7-add8-57dac46a44de - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\e47bdc52-5981-4bd9-b09f-a9efcccf00e1 - C:\Program Files\ecouter-la-radio\ecouter-la-radioToolbarHelper.exe (x)
HKLM_ElevationPolicy\e68e8e47-45ca-4127-af7f-4f1c4cb5e146 - C:\Program Files\Messenger_Plus_Live_France\Messenger_Plus_Live_FranceToolbarHelper.exe (?)
HKLM_ElevationPolicy\ed4b5ae3-5057-4552-851d-60116da425aa - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\f4972048-b4a4-4bcc-8c91-0651b3f98594 - C:\Program Files\Messenger_Plus_Live_France\Messenger_Plus_Live_FranceToolbarHelper.exe (?)
HKLM_ElevationPolicy\fdabd0ee-ad18-4bef-8d11-79ed6de15c00 - C:\Program Files\myBabylon_English\myBabylon_EnglishToolbarHelper.exe (x)
HKLM_ElevationPolicy\{11AF66E1-6BDE-4AA0-A061-65188608936B} - C:\Program Files\RechercherWeb Toolbar\PlayerPlug.exe (?)
HKLM_ElevationPolicy\{1F0358F6-8317-41D4-8E8E-14A1B5A0BEBE} - C:\Program Files\iGraal\iGraalHelper.exe (x)
HKLM_ElevationPolicy\{21495F8D-B4FB-483C-8311-24DC4A41AC86} - C:\Program Files\Messenger_Plus_FR\Messenger_Plus_FRToolbarHelper.exe (?)
HKLM_ElevationPolicy\{240373D3-4199-4F41-BB4D-15D5B830C82D}-32 - C:\Program Files\iGraal\iGraalHelper.exe (x)
HKLM_ElevationPolicy\{33C1CF8A-7F10-48A4-96E4-5D7158281B2B} - C:\Program Files\Messenger_Plus_Live_France\Messenger_Plus_Live_FranceToolbarHelper1.exe (Conduit Ltd.)
HKLM_ElevationPolicy\{4546FF4E-116B-4B11-BA28-47D89197E7FD} - C:\Program Files\interdescargas-FR\interdescargas-FRToolbarHelper1.exe (?)
HKLM_ElevationPolicy\{4C813794-9288-4337-A7AD-5015B117D023} - C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Conduit\CT2905330\Messenger_Plus_FRAutoUpdateHelper.exe (x)
HKLM_ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} - C:\Program Files\RechercherWeb Toolbar\TbHelper2.exe (?)
HKLM_ElevationPolicy\{74351F14-5437-4d87-805B-04D409B09976} - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
HKLM_ElevationPolicy\{973F1DA1-9BE8-49C1-A68D-EAA0D9847898} - C:\Program Files\RechercherWeb Toolbar\PropMgrAsync.exe (?)
HKLM_ElevationPolicy\{98D6E2AD-7673-4742-8B34-6D327771A66D} - C:\Program Files\Citrix\ICA Client\wfcrun32.exe (Citrix Systems, Inc.)
HKLM_ElevationPolicy\{AE3E3222-A492-41B2-9F78-75EB64EC223B} - C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Conduit\CT2423182\interdescargas-FRAutoUpdaterHelper.exe (x)
HKLM_ElevationPolicy\{CE4EC0B4-808A-4A97-ABB6-0FD79BD3C908} - C:\Program Files\midicair\midicairToolbarHelper.exe (?)
HKLM_ElevationPolicy\{DCDAE87A-AC14-11DC-9943-F27556D89593} - C:\Program Files\Microsoft SharedView\SharedView.exe\SharedView.exe (x)
HKLM_Extensions\{53F6FCCD-9E22-4d71-86EA-6E43136192AB} - "?" (?)
HKLM_Extensions\{925DAB62-F9AC-4221-806A-057BFB1014AA} - "?" (?)
HKLM_Extensions\{CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - "?" (?)
HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)
BHO\{02478D38-C3F9-4efb-9B51-7695ECA05670} (?)
BHO\{31c322dc-5878-452e-a2d8-c4aab9973c9a} - "interdescargas-FR Toolbar" (C:\Program Files\interdescargas-FR\prxtbint2.dll)
BHO\{3d4d238c-9c48-47cd-a95c-53259acf9e56} - "Messenger Plus FR Toolbar" (C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll)
BHO\{456632DF-9367-4299-8BA1-3D9CD55FC0CE} - "TBSB01555 Class" (C:\Program Files\RechercherWeb Toolbar\tbcore3.dll)
BHO\{59994074-c06d-4a75-9768-49e5a8c21264} - "Messenger Plus Live France Toolbar" (C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll)
BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)
BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll)
BHO\{77f8c945-4b74-4bd6-a073-e0d1997edce8} - "midicair Toolbar" (C:\Program Files\midicair\tbmidi.dll)
BHO\{9CB65201-89C4-402c-BA80-02D8C59F9B1D} (?)
BHO\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - "Google Dictionary Compression sdch" (C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll) (x)
BHO\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71} (?)
BHO\{FE063DB1-4EC0-403e-8DD8-394C54984B2C} (?)
========================================
C:\Program Files\Ad-Remover\Quarantine: 1146 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 55 Fichier(s)
C:\Ad-Report-CLEAN[10].txt - 08/07/2011 08:51:51 (15157 Octet(s))
C:\Ad-Report-CLEAN[1].txt - 12/04/2010 14:54:20 (11757 Octet(s))
C:\Ad-Report-CLEAN[2].txt - 14/03/2011 21:50:45 (26758 Octet(s))
C:\Ad-Report-CLEAN[3].txt - 14/03/2011 22:35:20 (14676 Octet(s))
C:\Ad-Report-CLEAN[4].txt - 14/03/2011 23:42:22 (10628 Octet(s))
C:\Ad-Report-CLEAN[5].txt - 16/03/2011 14:57:16 (14115 Octet(s))
C:\Ad-Report-CLEAN[6].txt - 16/03/2011 15:04:36 (13951 Octet(s))
C:\Ad-Report-CLEAN[7].txt - 29/03/2011 15:56:14 (17357 Octet(s))
C:\Ad-Report-CLEAN[8].txt - 08/07/2011 08:27:30 (21043 Octet(s))
C:\Ad-Report-CLEAN[9].txt - 08/07/2011 08:35:50 (16271 Octet(s))
C:\Ad-Report-SCAN[1].txt - 12/04/2010 16:04:43 (3341 Octet(s))
C:\Ad-Report-SCAN[2].txt - 12/04/2010 16:13:41 (52650 Octet(s))
C:\Ad-Report-SCAN[3].txt - 14/03/2011 22:19:15 (37675 Octet(s))
C:\Ad-Report-SCAN[4].txt - 29/03/2011 15:42:36 (41586 Octet(s))
C:\Ad-Report-SCAN[5].txt - 08/07/2011 08:29:17 (53546 Octet(s))
Fin à: 08:55:12, 08/07/2011
============== E.O.F ==============
Passe ça : https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/
et quand c'est fait, refais un scan HijackThis et poste le rapport.
et quand c'est fait, refais un scan HijackThis et poste le rapport.
quand je veux elever les toolbar il s'affiche : "could not open install.log.file"
-----------\\ ToolBar S&D 1.2.9 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : NR138 BIOS Rev: 1.11
USER : CHANTAL ( Administrator )
BOOT : Normal boot
Antivirus : avast! Antivirus 5.0.100664421 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:20 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:53 Go (Free:42 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (USB)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 08/07/2011| 9:19 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\WINDOWS\iun6002.exe
-----------\\ Extensions
(CHANTAL) - {ec8030f7-c20a-464f-9b0e-13a3a9e97384} =>
(CHANTAL) - {1018e4d6-728f-4b20-ad56-37578a4de76b} => content
(CHANTAL) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user
(CHANTAL) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(CHANTAL) - {3d4d238c-9c48-47cd-a95c-53259acf9e56} => messenger_plus_fr
(CHANTAL) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(CHANTAL) - {a65e491f-a436-4952-b49a-b24ed99a0f67} => toms_guide_france
(CHANTAL) - {cf45c54f-801c-41b5-ac77-57f2bf418edc} => photojoy_bar
(CHANTAL) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} => incredimail_mediabar_2
(CHANTAL) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr"
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Start Page Redirect Cache"="https://www.msn.com/fr-fr?ocid=iehp"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr"
"Search bar"="http://www.bing.com/spresults.aspx"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 08/07/2011| 9:23 - Option : [1]
-----------\\ Fin du rapport a 9:23:45,50
-----------\\ ToolBar S&D 1.2.9 XP/Vista
-----------\\ ToolBar S&D 1.2.9 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : NR138 BIOS Rev: 1.11
USER : CHANTAL ( Administrator )
BOOT : Normal boot
Antivirus : avast! Antivirus 5.0.100664421 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:20 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:53 Go (Free:42 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (USB)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 08/07/2011| 9:19 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\WINDOWS\iun6002.exe
-----------\\ Extensions
(CHANTAL) - {ec8030f7-c20a-464f-9b0e-13a3a9e97384} =>
(CHANTAL) - {1018e4d6-728f-4b20-ad56-37578a4de76b} => content
(CHANTAL) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user
(CHANTAL) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(CHANTAL) - {3d4d238c-9c48-47cd-a95c-53259acf9e56} => messenger_plus_fr
(CHANTAL) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(CHANTAL) - {a65e491f-a436-4952-b49a-b24ed99a0f67} => toms_guide_france
(CHANTAL) - {cf45c54f-801c-41b5-ac77-57f2bf418edc} => photojoy_bar
(CHANTAL) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} => incredimail_mediabar_2
(CHANTAL) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr"
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Start Page Redirect Cache"="https://www.msn.com/fr-fr?ocid=iehp"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr"
"Search bar"="http://www.bing.com/spresults.aspx"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 08/07/2011| 9:23 - Option : [1]
-----------\\ Fin du rapport a 9:23:45,50
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : NR138 BIOS Rev: 1.11
USER : CHANTAL ( Administrator )
BOOT : Normal boot
Antivirus : avast! Antivirus 5.0.100664421 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:20 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:53 Go (Free:42 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (USB)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 08/07/2011| 9:19 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\WINDOWS\iun6002.exe
-----------\\ Extensions
(CHANTAL) - {ec8030f7-c20a-464f-9b0e-13a3a9e97384} =>
(CHANTAL) - {1018e4d6-728f-4b20-ad56-37578a4de76b} => content
(CHANTAL) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user
(CHANTAL) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(CHANTAL) - {3d4d238c-9c48-47cd-a95c-53259acf9e56} => messenger_plus_fr
(CHANTAL) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(CHANTAL) - {a65e491f-a436-4952-b49a-b24ed99a0f67} => toms_guide_france
(CHANTAL) - {cf45c54f-801c-41b5-ac77-57f2bf418edc} => photojoy_bar
(CHANTAL) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} => incredimail_mediabar_2
(CHANTAL) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr"
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Start Page Redirect Cache"="https://www.msn.com/fr-fr?ocid=iehp"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr"
"Search bar"="http://www.bing.com/spresults.aspx"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 08/07/2011| 9:23 - Option : [1]
-----------\\ Fin du rapport a 9:23:45,50
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:28:19, on 08/07/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\Citrix\ICA Client\concentr.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
C:\Program Files\Sweex\LW153\Utility\UI.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Citrix\ICA Client\wfcrun32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\dgdersvc.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\RechercherWeb Toolbar\TbHelper2.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
D:\Mes documents\HiJackThis(1).exe
D:\Mes documents\HiJackThis(1).exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {E38FA08E-F56A-4169-ABF5-5C71E3C153A1} - (no file)
R3 - URLSearchHook: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
R3 - URLSearchHook: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
R3 - URLSearchHook: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
R3 - URLSearchHook: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: interdescargas-FR - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O2 - BHO: Messenger Plus FR - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O2 - BHO: Messenger Plus Live France - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (file missing)
O2 - BHO: (no name) - {D2A2595C-4FE4-4315-AA9B-19DBD6271B71} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: (no name) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O3 - Toolbar: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O3 - Toolbar: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O3 - Toolbar: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [cspep.exe] C:\Program Files\cspep\cspep.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [autoupdater] C:\Documents and Settings\CHANTAL\Application Data\Agence-Exclusive\Agence-Exclusive\autoupdater.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PhotoJoy] C:\Program Files\PhotoJoy\bin\PhotoJoy.exe /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Moniteur WiFi OLITEC.lnk = C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
O4 - Global Startup: Sweex utility.lnk = C:\Program Files\Sweex\LW153\Utility\UI.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} (System Requirements Lab) - https://www.systemrequirementslab.com/cyri
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\WINDOWS\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : NR138 BIOS Rev: 1.11
USER : CHANTAL ( Administrator )
BOOT : Normal boot
Antivirus : avast! Antivirus 5.0.100664421 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:20 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:53 Go (Free:42 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (USB)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 08/07/2011| 9:19 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\WINDOWS\iun6002.exe
-----------\\ Extensions
(CHANTAL) - {ec8030f7-c20a-464f-9b0e-13a3a9e97384} =>
(CHANTAL) - {1018e4d6-728f-4b20-ad56-37578a4de76b} => content
(CHANTAL) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user
(CHANTAL) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(CHANTAL) - {3d4d238c-9c48-47cd-a95c-53259acf9e56} => messenger_plus_fr
(CHANTAL) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(CHANTAL) - {a65e491f-a436-4952-b49a-b24ed99a0f67} => toms_guide_france
(CHANTAL) - {cf45c54f-801c-41b5-ac77-57f2bf418edc} => photojoy_bar
(CHANTAL) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} => incredimail_mediabar_2
(CHANTAL) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr"
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Start Page Redirect Cache"="https://www.msn.com/fr-fr?ocid=iehp"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr"
"Search bar"="http://www.bing.com/spresults.aspx"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 08/07/2011| 9:23 - Option : [1]
-----------\\ Fin du rapport a 9:23:45,50
-----------\\ ToolBar S&D 1.2.9 XP/Vista
-----------\\ ToolBar S&D 1.2.9 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : NR138 BIOS Rev: 1.11
USER : CHANTAL ( Administrator )
BOOT : Normal boot
Antivirus : avast! Antivirus 5.0.100664421 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:20 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:53 Go (Free:42 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (USB)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 08/07/2011| 9:19 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\WINDOWS\iun6002.exe
-----------\\ Extensions
(CHANTAL) - {ec8030f7-c20a-464f-9b0e-13a3a9e97384} =>
(CHANTAL) - {1018e4d6-728f-4b20-ad56-37578a4de76b} => content
(CHANTAL) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user
(CHANTAL) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(CHANTAL) - {3d4d238c-9c48-47cd-a95c-53259acf9e56} => messenger_plus_fr
(CHANTAL) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(CHANTAL) - {a65e491f-a436-4952-b49a-b24ed99a0f67} => toms_guide_france
(CHANTAL) - {cf45c54f-801c-41b5-ac77-57f2bf418edc} => photojoy_bar
(CHANTAL) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} => incredimail_mediabar_2
(CHANTAL) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr"
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Start Page Redirect Cache"="https://www.msn.com/fr-fr?ocid=iehp"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr"
"Search bar"="http://www.bing.com/spresults.aspx"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 08/07/2011| 9:23 - Option : [1]
-----------\\ Fin du rapport a 9:23:45,50
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : NR138 BIOS Rev: 1.11
USER : CHANTAL ( Administrator )
BOOT : Normal boot
Antivirus : avast! Antivirus 5.0.100664421 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:20 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:53 Go (Free:42 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (USB)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 08/07/2011| 9:19 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\WINDOWS\iun6002.exe
-----------\\ Extensions
(CHANTAL) - {ec8030f7-c20a-464f-9b0e-13a3a9e97384} =>
(CHANTAL) - {1018e4d6-728f-4b20-ad56-37578a4de76b} => content
(CHANTAL) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user
(CHANTAL) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(CHANTAL) - {3d4d238c-9c48-47cd-a95c-53259acf9e56} => messenger_plus_fr
(CHANTAL) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(CHANTAL) - {a65e491f-a436-4952-b49a-b24ed99a0f67} => toms_guide_france
(CHANTAL) - {cf45c54f-801c-41b5-ac77-57f2bf418edc} => photojoy_bar
(CHANTAL) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} => incredimail_mediabar_2
(CHANTAL) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr"
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Start Page Redirect Cache"="https://www.msn.com/fr-fr?ocid=iehp"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr"
"Search bar"="http://www.bing.com/spresults.aspx"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 08/07/2011| 9:23 - Option : [1]
-----------\\ Fin du rapport a 9:23:45,50
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:28:19, on 08/07/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\Citrix\ICA Client\concentr.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
C:\Program Files\Sweex\LW153\Utility\UI.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Citrix\ICA Client\wfcrun32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\dgdersvc.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\RechercherWeb Toolbar\TbHelper2.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
D:\Mes documents\HiJackThis(1).exe
D:\Mes documents\HiJackThis(1).exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {E38FA08E-F56A-4169-ABF5-5C71E3C153A1} - (no file)
R3 - URLSearchHook: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
R3 - URLSearchHook: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
R3 - URLSearchHook: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
R3 - URLSearchHook: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: interdescargas-FR - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O2 - BHO: Messenger Plus FR - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O2 - BHO: Messenger Plus Live France - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (file missing)
O2 - BHO: (no name) - {D2A2595C-4FE4-4315-AA9B-19DBD6271B71} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: (no name) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O3 - Toolbar: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O3 - Toolbar: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O3 - Toolbar: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [cspep.exe] C:\Program Files\cspep\cspep.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [autoupdater] C:\Documents and Settings\CHANTAL\Application Data\Agence-Exclusive\Agence-Exclusive\autoupdater.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PhotoJoy] C:\Program Files\PhotoJoy\bin\PhotoJoy.exe /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Moniteur WiFi OLITEC.lnk = C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
O4 - Global Startup: Sweex utility.lnk = C:\Program Files\Sweex\LW153\Utility\UI.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} (System Requirements Lab) - https://www.systemrequirementslab.com/cyri
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\WINDOWS\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Dans les processus ....
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
C:\Program Files\Sweex\LW153\Utility\UI.exe
C:\Program Files\LimeWire\LimeWire.exe
T'as deux programmes P2P qui tournent en mm temps .....
Ca doit bien blinder la connexion ça ....
Désinstalle Google Desktop Search si tu t'en sers pas.
Relance HijackThis et coche ces lignes :
O2 - BHO: interdescargas-FR - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O2 - BHO: Messenger Plus FR - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O2 - BHO: Messenger Plus Live France - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O2 - BHO: (no name) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (file missing)
O2 - BHO: (no name) - {D2A2595C-4FE4-4315-AA9B-19DBD6271B71} - (no file)
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: (no name) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)
O3 - Toolbar: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O3 - Toolbar: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O3 - Toolbar: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O3 - Toolbar: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [cspep.exe] C:\Program Files\cspep\cspep.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [autoupdater] C:\Documents and Settings\CHANTAL\Application Data\Agence-Exclusive\Agence-Exclusive\autoupdater.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PhotoJoy] C:\Program Files\PhotoJoy\bin\PhotoJoy.exe /c
==> clic sur fix checked
Poste un nouveau rapport HijackThis.
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
C:\Program Files\Sweex\LW153\Utility\UI.exe
C:\Program Files\LimeWire\LimeWire.exe
T'as deux programmes P2P qui tournent en mm temps .....
Ca doit bien blinder la connexion ça ....
Désinstalle Google Desktop Search si tu t'en sers pas.
Relance HijackThis et coche ces lignes :
O2 - BHO: interdescargas-FR - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O2 - BHO: Messenger Plus FR - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O2 - BHO: Messenger Plus Live France - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O2 - BHO: (no name) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (file missing)
O2 - BHO: (no name) - {D2A2595C-4FE4-4315-AA9B-19DBD6271B71} - (no file)
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: (no name) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)
O3 - Toolbar: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\prxtbint2.dll
O3 - Toolbar: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} - C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: midicair Toolbar - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - C:\Program Files\midicair\tbmidi.dll
O3 - Toolbar: Messenger Plus FR Toolbar - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - C:\Program Files\Messenger_Plus_FR\prxtbMes0.dll
O3 - Toolbar: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [cspep.exe] C:\Program Files\cspep\cspep.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [autoupdater] C:\Documents and Settings\CHANTAL\Application Data\Agence-Exclusive\Agence-Exclusive\autoupdater.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PhotoJoy] C:\Program Files\PhotoJoy\bin\PhotoJoy.exe /c
==> clic sur fix checked
Poste un nouveau rapport HijackThis.
voila le nouveau rapport
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:56:16, on 08/07/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Citrix\ICA Client\wfcrun32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
C:\Program Files\Sweex\LW153\Utility\UI.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\system32\dgdersvc.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\NOTEPAD.EXE
D:\Mes documents\HiJackThis(1).exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {E38FA08E-F56A-4169-ABF5-5C71E3C153A1} - (no file)
R3 - URLSearchHook: (no name) - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - (no file)
R3 - URLSearchHook: (no name) - {59994074-c06d-4a75-9768-49e5a8c21264} - (no file)
R3 - URLSearchHook: (no name) - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - (no file)
R3 - URLSearchHook: (no name) - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - (no file)
R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Moniteur WiFi OLITEC.lnk = C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
O4 - Global Startup: Sweex utility.lnk = C:\Program Files\Sweex\LW153\Utility\UI.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} (System Requirements Lab) - http://www.srtest.com/srl_bin/sysreqlab_ind.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\WINDOWS\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc.. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 9166 bytes
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:56:16, on 08/07/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Citrix\ICA Client\wfcrun32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
C:\Program Files\Sweex\LW153\Utility\UI.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\system32\dgdersvc.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\NOTEPAD.EXE
D:\Mes documents\HiJackThis(1).exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {E38FA08E-F56A-4169-ABF5-5C71E3C153A1} - (no file)
R3 - URLSearchHook: (no name) - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - (no file)
R3 - URLSearchHook: (no name) - {59994074-c06d-4a75-9768-49e5a8c21264} - (no file)
R3 - URLSearchHook: (no name) - {77f8c945-4b74-4bd6-a073-e0d1997edce8} - (no file)
R3 - URLSearchHook: (no name) - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - (no file)
R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\CHANTAL\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Moniteur WiFi OLITEC.lnk = C:\Program Files\OLITEC\Moniteur WiFi OLITEC USB\RtWLan.exe
O4 - Global Startup: Sweex utility.lnk = C:\Program Files\Sweex\LW153\Utility\UI.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} (System Requirements Lab) - http://www.srtest.com/srl_bin/sysreqlab_ind.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\WINDOWS\system32\dgdersvc.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc.. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 9166 bytes
ça doit aller mieux je pense ;
Menu Démarrer et exécuter, saisir en bas services.msc et appuyer sur Entrée.
Chercher YahooAUService selon votre version de Windows
Double-cliquez dessus et positionnez le type de démarrage à manuel.
Redémarrez l'ordinateur
Faudrait supprimer les répertoires des barres d'outils.
Ils sont mentionnés dans les lignes O2/O3 de ton rapport HijackThis => https://forums.commentcamarche.net/forum/affich-22577228-pubs-intempestives#7
Menu Démarrer et exécuter, saisir en bas services.msc et appuyer sur Entrée.
Chercher YahooAUService selon votre version de Windows
Double-cliquez dessus et positionnez le type de démarrage à manuel.
Redémarrez l'ordinateur
Faudrait supprimer les répertoires des barres d'outils.
Ils sont mentionnés dans les lignes O2/O3 de ton rapport HijackThis => https://forums.commentcamarche.net/forum/affich-22577228-pubs-intempestives#7