Mon ordinateur est infecté je sollicite votre

Résolu
kinoucharlot Messages postés 37 Statut Membre -  
greg160 Messages postés 729 Statut Membre -
Bonjour a vous
je suis ravie de voir que la solidarité et l'entraide ont trouvé ler place sur le net .
je remercie par avance toute personne qui pourrait m'accorder son aide .
j ai depuis deux semaines un ordinateur lent qui ne veut pas fermer.

il laisse de nombreuses fenetres ouvertes. *

j ai réalisé un scann en ligne avec kapersky voici le rapport
89368 files scanned, 13 file(s) infected on your disk drives.

No viruses were detected in memory.

Your computer is free of known threats. Virus Detection does not check compressed files.

Your computer appears safe for now. For real-time protection from viruses, hackers and privacy threats, upgrade to Norton Internet Security™.

No viruses were detected in memory.

The scan was cancelled before finishing. To restart the scan, click here.

Your computer is free of known threats. Virus Detection does not check compressed files.

Your computer appears safe for now. For real-time protection from viruses, hackers and privacy threats, upgrade to Norton Internet Security™.

Search for the name of the threat(s) listed below on the Symantec Security Response site for removal information.

Warning! The scan detected a virus that is active in your computer's memory.
The scan ended to prevent further infection.

You should shut down your computer immediately and restart it with an antivirus rescue disk or similar tool.

No viruses were detected in memory.

Your computer is infected with at least one known virus or Trojan horse.

Search for the name of the threat(s) listed below on the Symantec Security Response site for removal information.

No viruses were detected in memory.

Your computer is infected with at least one known virus or Trojan horse.

Note: The scan was cancelled before finishing. There may be more infected files on this computer.

Search for the name of the threat(s) listed below on the Symantec Security Response site for removal information.

A scan has not been run. To start Virus Detection, click here.

C:\Program Files\OpiStat\OpiStat\OpiStat.exe is infected with Spyware.Netrat
C:\Program Files\OpiStat\OpiStat\nmgk101.dll is infected with Spyware.Netrat
C:\Program Files\OpiStat\OpiStat\nmgk140.dll is infected with Spyware.Netrat
C:\Program Files\OpiStat\OpiStat\nmnsob60.dll is infected with Spyware.Netrat
C:\Program Files\OpiStat\OpiStat\nmnsob61.dll is infected with Spyware.Netrat
C:\Program Files\OpiStat\OpiStat\nmnsob62.dll is infected with Spyware.Netrat
C:\Program Files\OpiStat\OpiStat\nmobsvr.dll is infected with Spyware.Netrat
C:\Program Files\OpiStat\OpiStat\nmconpid.sys is infected with Spyware.Netrat
C:\Program Files\Netscape\Netscape\components\nmgk140.dll is infected with Spyware.Netrat
C:\Documents and Settings\KINOU\Mes documents\Ma musique\variete française\(( voulzy laurent album la 7ème vague 52\(( voulzy laurent album la 7ème vague 52.wma is infected with Trojan.Wimad
C:\Documents and Settings\KINOU\Local Settings\Temp\Répertoire temporaire 1 pour (( voulzy laurent album la 7ème vague 52.zip\(( voulzy laurent album la 7ème vague 52.wma is infected with Trojan.Wimad
C:\WINDOWS\system32\NMTracer.dll is infected with Spyware.Netrat
C:\WINDOWS\system32\drivers\nmconpid.sys is infected with Spyware.Netrat

actuelleme,nt je réalise un scann avec bt defender
merci et encore mercic

24 réponses

  • 1
  • 2
  1. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    bonjour kaspersky a detecté les virus mais ne les a pas supprimé

    dans ce cas la supprime les toi meme comme ceci :

    redemare en mode sans echec (redemarrage + tâpotte sans arret sur F8 desque l'ordi s'allume)

    ensuite cherche et supprime les dossier ou fichier en gras :

    C:\Program Files\OpiStat
    C:\Program Files\Netscape\Netscape\components\nmgk140.dll
    C:\Documents and Settings\KINOU\Mes documents\Ma musique\variete française\(( voulzy laurent album la 7ème vague 52\(( voulzy laurent album la 7ème vague 52.wma
    C:\WINDOWS\system32\NMTracer.dll
    C:\WINDOWS\system32\drivers\nmconpid.sys

    vide la corbeille ensuite redemare en mode normal :

    telecharge hijackthis et colle le resultat ici :

    http://www.infos-du-net.com/telecharger/HijackThis.html
    demo :
    http://pageperso.aol.fr/balltrap34/demohijack.htm

    a++++
    1
    1. kinoucharlot Messages postés 37 Statut Membre
       
      ok merci
      j ai fait tes manip
      voici le resultat :

      Logfile of HijackThis v1.99.1
      Scan saved at 08:45:03, on 04/12/2006
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.5730.0011)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\System32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\System32\brsvc01a.exe
      C:\WINDOWS\system32\LEXBCES.EXE
      C:\WINDOWS\System32\brss01a.exe
      C:\WINDOWS\system32\LEXPPS.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\SOUNDMAN.EXE
      C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
      C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
      C:\WINDOWS\AGRSMMSG.exe
      C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
      C:\Program Files\Scansoft\PaperPort\pptd40nt.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
      C:\Program Files\Brother\ControlCenter2\brctrcen.exe
      C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
      C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
      C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
      C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\QuickTime\qttask.exe
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\Program Files\Winamp\Winampa.exe
      C:\Program Files\MSN Messenger\msnmsgr.exe
      C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
      C:\WINDOWS\system32\Brmfrmps.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE
      C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Netscape\Netscape\Netscp.exe
      C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
      C:\Program Files\Scansoft\PaperPort\SmartUI\SmartUI.exe
      C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
      C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      C:\Program Files\TightVNC-unstable\WinVNC.exe
      C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
      C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
      c:\Program Files\Numericable\Mon Assistant Internet\bin\mad.exe
      c:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
      C:\PROGRA~1\Motive\ASSTCO~1\MOTIVE~1.EXE
      C:\Program Files\iPod\bin\iPodService.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\Documents and Settings\KINOU\Bureau\HijackThis.exe
      C:\Program Files\iTunes\iTunes.exe
      C:\Program Files\Windows Media Player\wmplayer.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo! France
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
      R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
      O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
      O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
      O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
      O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
      O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
      O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
      O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
      O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\Scansoft\PaperPort\pptd40nt.exe
      O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\Scansoft\PaperPort\IndexSearch.exe
      O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl03a\BrStDvPt.exe
      O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
      O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
      O4 - HKLM\..\Run: [Mercora] "C:\Program Files\Mercora\MercoraClient.exe" -startup
      O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\TightVNC-unstable\WinVNC.exe" -servicehelper
      O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
      O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
      O4 - HKLM\..\Run: [SetDefPrt2] C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
      O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
      O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
      O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
      O4 - HKLM\..\Run: [DataLayer] C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
      O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray
      O4 - HKLM\..\Run: [OpiStat] C:\Program Files\OpiStat\OpiStat\OpiStat.exe
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
      O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
      O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\Program Files\Netscape\Netscape\Netscp.exe" -turbo
      O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
      O4 - Global Startup: SmartUI.lnk = ?
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O4 - Global Startup: Contrôleur d’état.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
      O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
      O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O4 - Global Startup: KODAK Software Updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
      O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
      O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O11 - Options group: [INTERNATIONAL] International*
      O14 - IERESET.INF: START_PAGE_URL=https://www.acer.com/worldwide/selection.html
      O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
      O16 - DPF: {062F8D88-F204-11D8-ADFD-00062919A34C} (TelechargementPhS.ActiveXPhS) - https://www.photoservice.com/
      O16 - DPF: {08D390AE-5101-4701-A89F-6C6DADCCC402} (MSN Photo Select Tool) - https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fphotos.msn.fr%2fresources%2fneutral%2fcontrols%2fMsnPPick.cab%3f10%2c0%2c910%2c0
      O16 - DPF: {106E49CF-797A-11D2-81A2-00E02C015623} (AlternaTIFF ActiveX) - https://www.alternatiff.com/install/00/alttiff.cab
      O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowsonecare.com/install/cli/1.1.1067.8/WinSSWebAgent.CAB
      O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
      O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/fr/fr/importer/MypixUploader.cab
      O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
      O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
      O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
      O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/yinst20040510.cab
      O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://galeriedekinouenligne.spaces.msn.com//PhotoUpload/MsnPUpld.cab
      O16 - DPF: {5554A026-7282-4C11-A8F1-652D0599CD02} (NMInstall Control) - http://a14.g.akamai.net/f/14/7141/1d/fr.nielsennetpanel.com/download/OpiStat_preinstaller_activex_fr_4.60.63.0_MEGAPANEL_EUROPE_SILENT.cab
      O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
      O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1107370094500
      O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
      O16 - DPF: {65FDEDF3-8ED9-4F5B-825E-18C2D44191A7} (OneCCCtl Class) - http://d.69.25.47.82.downloads.estara.com./as/OneCCDM.php?template=41001&sessionid=196893971_69.25.47.82_36491&=&req=1134120996468OneCC.cab
      O16 - DPF: {693A2822-F041-49E7-940A-AB0FE868B776} (Federated Upload Control) - http://fr-fr.ms.fujifilmnet.com/FedUpload.cab
      O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
      O16 - DPF: {6F750200-1362-4815-A476-88533DE61D0C} (Ofoto Upload Manager Class) - https://tuantender.id/
      O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
      O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} (Sinstaller Class) - http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
      O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
      O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
      O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://camera1.mairie-brest.fr/activex/AxisCamControl.cab
      O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
      O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoways.com/clients/ImageUploader3.cab
      O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
      O16 - DPF: {EFB22865-F3BC-4309-ADFA-C8E078A7F762} (SysWebTelecomInt Class) - http://www.sponsoradulto.com/cab/14/fr/SysWebTelecomInt.cab
      O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
      O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
      O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
      O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
      O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
      O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
      O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing)
      O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\System32\brsvc01a.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
      O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe
      O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
      O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
      O23 - Service: VNC Server (winvnc) - Unknown owner - C:\Program Files\TightVNC-unstable\WinVNC.exe" -service (file missing)

      merci
      0
    2. greg160 Messages postés 729 Statut Membre 193
       
      Ca va pas la tête !!? Suprimer un des fichiers les plus importants de Windows ?!
      *.SYS(TEM)
      0
  2. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    bonjour ouvre hijackrthis coche ces lignes ensuite clic sur fix checked

    O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
    O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)

    O16 - DPF: {5554A026-7282-4C11-A8F1-652D0599CD02} (NMInstall Control) - http://a14.g.akamai.net/
    O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/
    O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} (Sinstaller Class) - http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
    O16 - DPF: {EFB22865-F3BC-4309-ADFA-C8E078A7F762} (SysWebTelecomInt Class) - http://www.sponsoradulto.com/cab/14/fr/SysWebTelecomInt.cab

    telecharge et execute ces antispywares ( pense a les mettre a jour avant de les lancées)
    (1) ad-aware version 1.06

    (ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
    voir demo
    http://pageperso.aol.fr/balltrap34/adwseflash.zip
    ***
    (2) spybot version 1.4

    (ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite

    voir demo d utilisation
    http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
    ***

    ps : un grand merci a balltrap pour les lien :)

    (3) AVG anti spyware
    https://www.01net.com/telecharger/

    Copier/coller le rapport entier sur le forum. (n'oublie pas de le mettre a jour avant de lancer le scan)
    NB suis les instruction du tutoriel
    http://www.malekal.com/tutorial_AVG_AntiSpyware.html
    http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html

    Ccleaner
    https://www.malekal.com/tutoriel-ccleaner/

    a+++
    0
    1. kinoucharlot Messages postés 37 Statut Membre
       
      AVG Anti-Spyware - Rapport d'analyse
      ---------------------------------------------------------

      + Créé à: 22:39:19 04/12/2006

      + Résultat de l'analyse:



      C:\Program Files\eMule\Incoming\ [Full Albums Album 2005][mp3] Alain Souchon - La Vie Theodore (album complet - le bon !) 192kbps.RAR/[PC GAME MULTILANGUAGE] Europa Casino - Win real money from your home - Bonus 2400 _ to all new players.exe -> Adware.Casino : Aucune action entreprise.
      :mozilla.7:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
      :mozilla.8:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
      :mozilla.10:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.11:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.11:C:\Documents and Settings\KINOU\Application Data\Mozilla\Profiles\default\n7ubfhp7.slt\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.12:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.13:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.14:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.15:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.16:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.247:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.268:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.6:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.6:C:\Documents and Settings\KINOU\Application Data\Mozilla\Profiles\default\n7ubfhp7.slt\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.7:C:\Documents and Settings\KINOU\Application Data\Mozilla\Profiles\default\n7ubfhp7.slt\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.8:C:\Documents and Settings\KINOU\Application Data\Mozilla\Profiles\default\n7ubfhp7.slt\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@112.2o7[2].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@112.2o7[3].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@microsofteup.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@paypal.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@sfr.122.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\jeanne\Cookies\jeanne@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@adbrite[2].txt -> TrackingCookie.Adbrite : Aucune action entreprise.
      :mozilla.28:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
      :mozilla.29:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
      :mozilla.102:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Com : Aucune action entreprise.
      :mozilla.103:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Com : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@com[1].txt -> TrackingCookie.Com : Aucune action entreprise.
      :mozilla.146:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
      :mozilla.147:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
      :mozilla.148:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
      :mozilla.579:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
      :mozilla.580:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
      :mozilla.581:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
      :mozilla.134:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
      :mozilla.607:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Etracker : Aucune action entreprise.
      :mozilla.21:C:\Documents and Settings\KINOU\Application Data\Mozilla\Profiles\default\n7ubfhp7.slt\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
      :mozilla.22:C:\Documents and Settings\KINOU\Application Data\Mozilla\Profiles\default\n7ubfhp7.slt\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
      :mozilla.23:C:\Documents and Settings\KINOU\Application Data\Mozilla\Profiles\default\n7ubfhp7.slt\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
      :mozilla.24:C:\Documents and Settings\KINOU\Application Data\Mozilla\Profiles\default\n7ubfhp7.slt\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
      :mozilla.25:C:\Documents and Settings\KINOU\Application Data\Mozilla\Profiles\default\n7ubfhp7.slt\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
      :mozilla.27:C:\Documents and Settings\KINOU\Application Data\Mozilla\Profiles\default\n7ubfhp7.slt\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
      :mozilla.611:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
      :mozilla.612:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@ilead.itrack[1].txt -> TrackingCookie.Itrack : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@ilead.itrack[2].txt -> TrackingCookie.Itrack : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@ivwbox[1].txt -> TrackingCookie.Ivwbox : Aucune action entreprise.
      :mozilla.291:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
      :mozilla.292:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
      :mozilla.300:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
      :mozilla.22:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
      :mozilla.23:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
      :mozilla.24:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
      :mozilla.25:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
      :mozilla.312:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
      :mozilla.347:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.348:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.349:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.350:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.351:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.84:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.157:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.158:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.159:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.160:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.161:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.162:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.163:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.164:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.400:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.401:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.67:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.531:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      :mozilla.532:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      :mozilla.533:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      :mozilla.617:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@starware[2].txt -> TrackingCookie.Starware : Aucune action entreprise.
      :mozilla.393:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Trafficmp : Aucune action entreprise.
      :mozilla.394:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Trafficmp : Aucune action entreprise.
      :mozilla.396:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
      :mozilla.402:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Valueclick : Aucune action entreprise.
      :mozilla.423:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
      :mozilla.424:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@weborama[2].txt -> TrackingCookie.Weborama : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@ad.yieldmanager[3].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.


      Fin du rapport

      :mozilla.300:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
      :mozilla.22:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
      :mozilla.23:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
      :mozilla.24:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
      :mozilla.25:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
      :mozilla.312:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
      :mozilla.347:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.348:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.349:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.350:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.351:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.84:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
      :mozilla.157:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.158:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.159:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.160:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.161:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.162:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.163:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.164:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.400:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.401:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.67:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
      :mozilla.531:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      :mozilla.532:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      :mozilla.533:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      :mozilla.617:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@starware[2].txt -> TrackingCookie.Starware : Aucune action entreprise.
      :mozilla.393:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Trafficmp : Aucune action entreprise.
      :mozilla.394:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Trafficmp : Aucune action entreprise.
      :mozilla.396:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
      :mozilla.402:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Valueclick : Aucune action entreprise.
      :mozilla.423:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
      :mozilla.424:C:\Documents and Settings\KINOU\Application Data\Mozilla\Firefox\Profiles\nhk6f3ae.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@weborama[2].txt -> TrackingCookie.Weborama : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
      C:\Documents and Settings\KINOU\Cookies\kinou@ad.yieldmanager[3].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.


      Fin du rapport
      0
  3. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    re fallais cliqué sur entreprendre toute les action pour supprimé les spy :p

    a+++
    0
  4. kinoucharlot Messages postés 37 Statut Membre
     
    avec toutes mes excuses

    resiltats
    Ad-Aware SE Build 1.06r1
    Logfile Created on:mardi 5 décembre 2006 19:29:24
    Created with Ad-Aware SE Personal, free for private use.
    Using definitions file:SE1R136 04.12.2006
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    References detected during the scan:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    MRU List(TAC index:0):38 total references
    Tracking Cookie(TAC index:3):4 total references
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Ad-Aware SE Settings
    ===========================
    Set : Search for negligible risk entries
    Set : Safe mode (always request confirmation)
    Set : Scan active processes
    Set : Scan registry
    Set : Deep-scan registry
    Set : Scan my IE Favorites for banned URLs
    Set : Scan my Hosts file

    Extended Ad-Aware SE Settings
    ===========================
    Set : Unload recognized processes & modules during scan
    Set : Scan registry for all users instead of current user only
    Set : Always try to unload modules before deletion
    Set : During removal, unload Explorer and IE if necessary
    Set : Let Windows remove files in use at next reboot
    Set : Delete quarantined objects after restoring
    Set : Include basic Ad-Aware settings in log file
    Set : Include additional Ad-Aware settings in log file
    Set : Include reference summary in log file
    Set : Include alternate data stream details in log file
    Set : Play sound at scan completion if scan locates critical objects

    05-12-2006 19:29:24 - Scan started. (Smart mode)

    Listing running processes
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    #:1 [smss.exe]
    FilePath : \SystemRoot\System32\
    ProcessID : 420
    ThreadCreationTime : 05-12-2006 14:58:08
    BasePriority : Normal

    #:2 [csrss.exe]
    FilePath : \??\C:\WINDOWS\system32\
    ProcessID : 468
    ThreadCreationTime : 05-12-2006 14:58:15
    BasePriority : Normal

    #:3 [winlogon.exe]
    FilePath : \??\C:\WINDOWS\system32\
    ProcessID : 492
    ThreadCreationTime : 05-12-2006 14:58:16
    BasePriority : High

    #:4 [services.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 536
    ThreadCreationTime : 05-12-2006 14:58:16
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Système d'exploitation Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Applications Services et Contrôleur
    InternalName : services.exe
    LegalCopyright : © Microsoft Corporation. Tous droits réservés.
    OriginalFilename : services.exe

    #:5 [lsass.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 548
    ThreadCreationTime : 05-12-2006 14:58:16
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : LSA Shell (Export Version)
    InternalName : lsass.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : lsass.exe

    #:6 [ati2evxx.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 696
    ThreadCreationTime : 05-12-2006 14:58:17
    BasePriority : Normal

    #:7 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 712
    ThreadCreationTime : 05-12-2006 14:58:17
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:8 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 776
    ThreadCreationTime : 05-12-2006 14:58:18
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:9 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 844
    ThreadCreationTime : 05-12-2006 14:58:18
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:10 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 932
    ThreadCreationTime : 05-12-2006 14:58:18
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:11 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 976
    ThreadCreationTime : 05-12-2006 14:58:18
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:12 [brsvc01a.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 1172
    ThreadCreationTime : 05-12-2006 14:58:19
    BasePriority : Normal
    FileVersion : 1, 0, 0, 3
    ProductVersion : 1, 0, 0, 3
    ProductName : brother Industries Ltd brsvc01a
    CompanyName : brother Industries Ltd
    FileDescription : brsvc01a
    InternalName : brsvc01a
    LegalCopyright : Copyright © Brother Industries, Ltd 2001
    OriginalFilename : brsvc01a.exe

    #:13 [lexbces.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1200
    ThreadCreationTime : 05-12-2006 14:58:19
    BasePriority : Normal
    FileVersion : 9.45
    ProductVersion : 9.45
    ProductName : MarkVision for Windows (32 bit)
    CompanyName : Lexmark International, Inc.
    FileDescription : LexBce Service
    InternalName : LexBce Service
    LegalCopyright : (C) 1993 - 2004 Lexmark International, Inc.
    OriginalFilename : LexBceS.exe

    #:14 [brss01a.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 1208
    ThreadCreationTime : 05-12-2006 14:58:19
    BasePriority : Normal
    FileVersion : 1.004
    ProductVersion : 1, 0, 0, 4
    ProductName : brother Industries Ltd brss01a.exe
    CompanyName : brother Industries Ltd
    FileDescription : brss01a.exe
    InternalName : brss01a.exe
    LegalCopyright : Copyright ? 2001
    OriginalFilename : brss01a.exe
    Comments : Brsplproc XP wrapper

    #:15 [lexpps.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1252
    ThreadCreationTime : 05-12-2006 14:58:19
    BasePriority : Normal
    FileVersion : 9.45
    ProductVersion : 9.45
    ProductName : MarkVision for Windows (32 bit)
    CompanyName : Lexmark International, Inc.
    FileDescription : LEXPPS.EXE
    InternalName : LEXPPS
    LegalCopyright : (C) 1993 - 2004 Lexmark International, Inc.
    OriginalFilename : LEXPPS.EXE
    Comments : MarkVision for Windows '95 New P2P Server (32-bit)

    #:16 [spoolsv.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1260
    ThreadCreationTime : 05-12-2006 14:58:19
    BasePriority : Normal
    FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
    ProductVersion : 5.1.2600.2696
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Spooler SubSystem App
    InternalName : spoolsv.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : spoolsv.exe

    #:17 [explorer.exe]
    FilePath : C:\WINDOWS\
    ProcessID : 1524
    ThreadCreationTime : 05-12-2006 14:58:20
    BasePriority : Normal
    FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 6.00.2900.2180
    ProductName : Système d'exploitation Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Explorateur Windows
    InternalName : explorer
    LegalCopyright : © Microsoft Corporation. Tous droits réservés.
    OriginalFilename : EXPLORER.EXE

    #:18 [soundman.exe]
    FilePath : C:\WINDOWS\
    ProcessID : 1604
    ThreadCreationTime : 05-12-2006 14:58:21
    BasePriority : Normal
    FileVersion : 5.1.0.27
    ProductVersion : 5.1.0.27
    ProductName : Realtek Sound Manager
    CompanyName : Realtek Semiconductor Corp.
    FileDescription : Realtek Sound Manager
    InternalName : ALSMTray
    LegalCopyright : Copyright (c) 2001-2004 Realtek Semiconductor Corp.
    OriginalFilename : ALSMTray.exe
    Comments : Realtek AC97 Audio Sound Manager

    #:19 [pdvdserv.exe]
    FilePath : C:\Program Files\CyberLink\PowerDVD\
    ProcessID : 1612
    ThreadCreationTime : 05-12-2006 14:58:21
    BasePriority : Normal
    FileVersion : 5.00.0000
    ProductVersion : 5.00.0000
    ProductName : PowerDVD
    CompanyName : Cyberlink Corp.
    FileDescription : PowerDVD RC Service
    InternalName : PowerDVD RC Service
    LegalCopyright : Copyright (c) CyberLink Corp. 1997-2002
    OriginalFilename : PDVDSERV.EXE

    #:20 [jusched.exe]
    FilePath : C:\Program Files\Java\jre1.5.0_09\bin\
    ProcessID : 1620
    ThreadCreationTime : 05-12-2006 14:58:21
    BasePriority : Normal

    #:21 [agrsmmsg.exe]
    FilePath : C:\WINDOWS\
    ProcessID : 1628
    ThreadCreationTime : 05-12-2006 14:58:21
    BasePriority : Normal
    FileVersion : 2.1.12 2.1.12 04/19/2002 11:27:35
    ProductVersion : 2.1.12 2.1.12 04/19/2002 11:27:35
    ProductName : Agere SoftModem Messaging Applet
    CompanyName : Agere Systems
    FileDescription : SoftModem Messaging Applet
    InternalName : smdmstat.exe
    LegalCopyright : Copyright © Agere Systems 1998-2000
    OriginalFilename : smdmstat.exe

    #:22 [mm_tray.exe]
    FilePath : C:\Program Files\Musicmatch\Musicmatch Jukebox\
    ProcessID : 1648
    ThreadCreationTime : 05-12-2006 14:58:21
    BasePriority : Normal
    FileVersion : 9.00.5100
    ProductVersion : 9.00.5100
    ProductName : Musicmatch Jukebox
    CompanyName : Musicmatch, Inc.
    FileDescription : mm_tray
    InternalName : mm_tray
    LegalCopyright : Copyright © Musicmatch 1998-2004
    LegalTrademarks :
    OriginalFilename : mm_tray.exe

    #:23 [pptd40nt.exe]
    FilePath : C:\Program Files\Scansoft\PaperPort\
    ProcessID : 1656
    ThreadCreationTime : 05-12-2006 14:58:22
    BasePriority : Normal
    FileVersion : 8.10
    ProductVersion : 8.10
    ProductName : PaperPort
    CompanyName : ScanSoft, Inc.
    FileDescription : PaperPort Print to Desktop for NT
    InternalName : PPTD40NT
    LegalCopyright : Copyright © 1993-2001 Scansoft Inc.
    OriginalFilename : PPTD40NT.EXE

    #:24 [wkufind.exe]
    FilePath : C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\
    ProcessID : 1688
    ThreadCreationTime : 05-12-2006 14:58:22
    BasePriority : Normal
    FileVersion : 9.00.0603.0
    ProductVersion : 9.00.0603.0
    ProductName : Update Detection Module
    CompanyName : Microsoft® Corporation
    FileDescription : Détection Microsoft® Works Update
    InternalName : WkUFind
    LegalCopyright : Copyright © 1987-2003 Microsoft Corporation.
    OriginalFilename : WkUFind.exe

    #:25 [apdproxy.exe]
    FilePath : C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\
    ProcessID : 1732
    ThreadCreationTime : 05-12-2006 14:58:22
    BasePriority : Normal

    #:26 [brctrcen.exe]
    FilePath : C:\Program Files\Brother\ControlCenter2\
    ProcessID : 1764
    ThreadCreationTime : 05-12-2006 14:58:22
    BasePriority : Normal

    #:27 [mmtask.exe]
    FilePath : C:\Program Files\Musicmatch\Musicmatch Jukebox\
    ProcessID : 1772
    ThreadCreationTime : 05-12-2006 14:58:22
    BasePriority : Normal
    FileVersion : 9.0.0.1
    ProductVersion : 9.0.0.1
    ProductName : Musicmatch Jukebox
    CompanyName : Musicmatch Inc.
    FileDescription : <Musicmatch System Tray Application>
    InternalName : mmtask.exe
    LegalCopyright : (c) Musicmatch Inc.. All rights reserved.
    OriginalFilename : mmtask.exe

    #:28 [motivesb.exe]
    FilePath : C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\
    ProcessID : 1780
    ThreadCreationTime : 05-12-2006 14:58:22
    BasePriority : Normal
    FileVersion : 5.8.11.asst_classic.smartbridge.20041022_173000
    ProductVersion : 5.8.11.asst_classic.smartbridge
    ProductName : Motive System
    CompanyName : Motive Communications, Inc.
    FileDescription : Motive SmartBridge
    InternalName : version
    LegalCopyright : Copyright 1998-2003
    OriginalFilename : version

    #:29 [datalayer.exe]
    FilePath : C:\Program Files\Fichiers communs\PCSuite\DataLayer\
    ProcessID : 1796
    ThreadCreationTime : 05-12-2006 14:58:22
    BasePriority : Normal
    FileVersion : 6, 60, 109, 3
    ProductVersion : 6, 0
    ProductName : Nokia PC Suite
    CompanyName : Nokia Mobile Phones Ltd.
    FileDescription : DataLayer 2.0 Module
    InternalName : DataLayer 2.0
    LegalCopyright : Copyright (c) 2005. Nokia. All rights reserved.
    OriginalFilename : DataLayer.exe

    #:30 [launchapplication.exe]
    FilePath : C:\Program Files\Nokia\Nokia PC Suite 6\
    ProcessID : 1816
    ThreadCreationTime : 05-12-2006 14:58:22
    BasePriority : Normal

    #:31 [ashdisp.exe]
    FilePath : C:\PROGRA~1\ALWILS~1\Avast4\
    ProcessID : 1828
    ThreadCreationTime : 05-12-2006 14:58:23
    BasePriority : Normal
    FileVersion : 5, 0, 0, 0
    ProductVersion : 5, 0, 0, 0
    ProductName : avast! Antivirus
    FileDescription : avast! service GUI component
    InternalName : aswDisp
    LegalCopyright : Copyright (c) 2006 ALWIL Software
    OriginalFilename : aswDisp.exe

    #:32 [qttask.exe]
    FilePath : C:\Program Files\QuickTime\
    ProcessID : 1836
    ThreadCreationTime : 05-12-2006 14:58:23
    BasePriority : Normal
    FileVersion : 7.1.3
    ProductVersion : QuickTime 7.1.3
    ProductName : QuickTime
    CompanyName : Apple Computer, Inc.
    FileDescription : QuickTime Task
    InternalName : QuickTime Task
    LegalCopyright : Copyright Apple Computer, Inc. 1989-2006
    OriginalFilename : QTTask.exe

    #:33 [ituneshelper.exe]
    FilePath : C:\Program Files\iTunes\
    ProcessID : 1856
    ThreadCreationTime : 05-12-2006 14:58:23
    BasePriority : Normal
    FileVersion : 7.0.2.16
    ProductVersion : 7.0.2.16
    ProductName : iTunes
    CompanyName : Apple Computer, Inc.
    FileDescription : iTunesHelper Module
    InternalName : iTunesHelper
    LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
    OriginalFilename : iTunesHelper.exe

    #:34 [winampa.exe]
    FilePath : C:\Program Files\Winamp\
    ProcessID : 1872
    ThreadCreationTime : 05-12-2006 14:58:23
    BasePriority : Normal

    #:35 [avgas.exe]
    FilePath : C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\
    ProcessID : 1928
    ThreadCreationTime : 05-12-2006 14:58:23
    BasePriority : Normal
    FileVersion : 7, 5, 0, 50
    ProductVersion : 7, 5, 0, 50
    ProductName : AVG Anti-Spyware
    CompanyName : Anti-Malware Development a.s.
    FileDescription : AVG Anti-Spyware
    InternalName : AVG Anti-Spyware
    LegalCopyright : Copyright © 2006 Anti-Malware Development a.s.
    OriginalFilename : avgas.exe

    #:36 [msnmsgr.exe]
    FilePath : C:\Program Files\MSN Messenger\
    ProcessID : 1972
    ThreadCreationTime : 05-12-2006 14:58:24
    BasePriority : Normal
    FileVersion : 8.0.0812.00
    ProductVersion : 8.0.0812
    ProductName : Messenger
    CompanyName : Microsoft Corporation
    FileDescription : Messenger
    InternalName : msnmsgr.exe
    LegalCopyright : Copyright (c) Microsoft Corporation. All rights reserved.
    OriginalFilename : msnmsgr.exe

    #:37 [servic~1.exe]
    FilePath : C:\PROGRA~1\FICHIE~1\PCSuite\Services\
    ProcessID : 1980
    ThreadCreationTime : 05-12-2006 14:58:24
    BasePriority : Normal
    FileVersion : 6, 60, 36, 1
    ProductVersion : 6.0
    ProductName : Nokia Connectivity Library
    CompanyName : Nokia.
    FileDescription : ServiceLayer Module
    InternalName : ServiceLayer
    LegalCopyright : Copyright © 2002-2005 Nokia. All Rights Reserved.
    OriginalFilename : ServiceLayer.exe

    #:38 [wcescomm.exe]
    FilePath : C:\Program Files\Microsoft ActiveSync\
    ProcessID : 1996
    ThreadCreationTime : 05-12-2006 14:58:24
    BasePriority : Normal
    FileVersion : 3.8.0.5004
    ProductVersion : 3.8.5004
    ProductName : Microsoft ActiveSync
    CompanyName : Microsoft Corporation
    FileDescription : ActiveSync Connection Manager
    InternalName : wcescomm
    LegalCopyright : Copyright © 1995-2004 Microsoft Corp. All rights reserved.
    LegalTrademarks : Microsoft® and Windows® are registered trademarks of Microsoft Corporation.
    OriginalFilename : WCESCOMM.EXE

    #:39 [ctfmon.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 2004
    ThreadCreationTime : 05-12-2006 14:58:24
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : CTF Loader
    InternalName : CTFMON
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : CTFMON.EXE

    #:40 [pcsync2.exe]
    FilePath : C:\Program Files\Nokia\Nokia PC Suite 6\
    ProcessID : 2040
    ThreadCreationTime : 05-12-2006 14:58:24
    BasePriority : Normal
    FileVersion : 2.00 (449)
    ProductVersion : 2.00
    ProductName : PC Sync
    CompanyName : Time Information Services Ltd.
    FileDescription : PC Sync
    InternalName : PcSync2
    LegalCopyright : Copyright © Time I.S. Ltd. 2002 - 2005
    OriginalFilename : PcSync2.EXE

    #:41 [netscp.exe]
    FilePath : C:\Program Files\Netscape\Netscape\
    ProcessID : 140
    ThreadCreationTime : 05-12-2006 14:58:24
    BasePriority : Normal

    #:42 [smartui.exe]
    FilePath : C:\Program Files\Scansoft\PaperPort\SmartUI\
    ProcessID : 164
    ThreadCreationTime : 05-12-2006 14:58:25
    BasePriority : Normal
    FileVersion : 1, 0, 0, 31
    ProductVersion : 3, 0, 0, 0
    ProductName : SmartUI Application
    CompanyName : Scansoft, Inc.
    FileDescription : SmartUI MFC Application
    InternalName : SmartUI
    LegalCopyright : Copyright (C) 2002
    OriginalFilename : SmartUI.EXE

    #:43 [brmfcwnd.exe]
    FilePath : C:\Program Files\Brother\Brmfcmon\
    ProcessID : 216
    ThreadCreationTime : 05-12-2006 14:58:25
    BasePriority : Normal
    FileVersion : 1, 2, 0, 6
    ProductVersion : 1, 2, 0, 6
    ProductName : Status Monitor
    CompanyName : Brother Industries, Ltd.
    FileDescription : Status Monitor (Main)
    InternalName : Brmfcwnd
    LegalCopyright : Copyright (C) 2004 Brother Industries, Ltd.
    OriginalFilename : Brmfcwnd.exe

    #:44 [kodak software updater.exe]
    FilePath : C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\
    ProcessID : 312
    ThreadCreationTime : 05-12-2006 14:58:26
    BasePriority : Normal

    #:45 [wkcalrem.exe]
    FilePath : C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\
    ProcessID : 352
    ThreadCreationTime : 05-12-2006 14:58:26
    BasePriority : Normal
    FileVersion : 7.02.0710.1
    ProductVersion : 7.02.0710.1
    ProductName : Microsoft® Works 7.0
    CompanyName : Microsoft® Corporation
    FileDescription : Microsoft® Works Calendar Reminder Service
    InternalName : WkCalRem
    LegalCopyright : Copyright © Microsoft Corporation. All rights reserved.
    OriginalFilename : WKCALREM.EXE

    #:46 [aswupdsv.exe]
    FilePath : C:\Program Files\Alwil Software\Avast4\
    ProcessID : 816
    ThreadCreationTime : 05-12-2006 14:58:27
    BasePriority : Normal

    #:47 [ashserv.exe]
    FilePath : C:\Program Files\Alwil Software\Avast4\
    ProcessID : 892
    ThreadCreationTime : 05-12-2006 14:58:27
    BasePriority : High
    FileVersion : 4, 7, 889, 0
    ProductVersion : 4, 7, 0, 0
    ProductName : avast! Antivirus
    FileDescription : avast! antivirus service
    InternalName : aswServ
    LegalCopyright : Copyright (c) 2006 ALWIL Software
    OriginalFilename : aswServ.exe

    #:48 [guard.exe]
    FilePath : C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\
    ProcessID : 1064
    ThreadCreationTime : 05-12-2006 14:58:29
    BasePriority : Normal
    FileVersion : 7, 5, 0, 47
    ProductVersion : 7, 5, 0, 47
    ProductName : AVG Anti-Spyware
    CompanyName : Anti-Malware Development a.s.
    FileDescription : AVG Anti-Spyware guard
    InternalName : AVG Anti-Spyware guard
    LegalCopyright : Copyright © 2006 Anti-Malware Development a.s.
    OriginalFilename : guard.exe

    #:49 [mpapi3s.exe]
    FilePath : C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\
    ProcessID : 1300
    ThreadCreationTime : 05-12-2006 14:58:31
    BasePriority : Normal
    FileVersion : 6.60.158.0
    ProductVersion : 6.0
    ProductName : Nokia Connectivity Library
    CompanyName : Nokia Corporation
    FileDescription : Mobile Phone API
    InternalName : MPAPI
    LegalCopyright : Copyright © 1999-2004 Nokia. All Rights Reserved
    OriginalFilename : MPAPI.EXE

    #:50 [brmfrmps.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1412
    ThreadCreationTime : 05-12-2006 14:58:31
    BasePriority : Normal
    FileVersion : 1.10.10.144
    ProductVersion : 1.45.11.403
    ProductName : Brother MFL Pro
    CompanyName : Brother Industries, Ltd.
    FileDescription : Brother Popup Suspend service ( for R/M )
    InternalName : Brother Popup Suspend service for Brother MFL-PRO Resource Manager
    LegalCopyright : Copyright (C) 2002 brother
    OriginalFilename : BrmfRmps.exe

    #:51 [mdm.exe]
    FilePath : C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\
    ProcessID : 1360
    ThreadCreationTime : 05-12-2006 14:58:32
    BasePriority : Normal
    FileVersion : 7.00.9466
    ProductVersion : 7.00.9466
    ProductName : Microsoft® Visual Studio .NET
    CompanyName : Microsoft Corporation
    FileDescription : Machine Debug Manager
    InternalName : mdm.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : mdm.exe

    #:52 [mad.exe]
    FilePath : c:\Program Files\Numericable\Mon Assistant Internet\bin\
    ProcessID : 1724
    ThreadCreationTime : 05-12-2006 14:58:34
    BasePriority : Normal
    FileVersion : 5.08.01
    ProductVersion : 5.8.11.asst_classic.asst_mad
    ProductName : Motive System
    CompanyName : Motive Communications, Inc.
    FileDescription : Motive Chorus Daemon
    InternalName : mad
    LegalCopyright : Copyright 1998-2003
    OriginalFilename : mad

    #:53 [brmfcmon.exe]
    FilePath : C:\Program Files\Brother\Brmfcmon\
    ProcessID : 1740
    ThreadCreationTime : 05-12-2006 14:58:34
    BasePriority : Normal
    FileVersion : 1, 1, 0, 4
    ProductVersion : 1, 1, 0, 4
    ProductName : Status Monitor
    CompanyName : Brother Industries, Ltd.
    FileDescription : Status Monitor (Local)
    InternalName : Brmfcmon
    LegalCopyright : Copyright (C) 2004 Brother Industries, Ltd.
    OriginalFilename : Brmfcmon.exe

    #:54 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 2140
    ThreadCreationTime : 05-12-2006 14:58:38
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:55 [symlcsvc.exe]
    FilePath : C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\
    ProcessID : 2200
    ThreadCreationTime : 05-12-2006 14:58:39
    BasePriority : Normal
    FileVersion : 1, 8, 54, 478
    ProductVersion : 1, 8, 54, 478
    ProductName : Symantec Core Component
    CompanyName : Symantec Corporation
    FileDescription : Symantec Core Component
    InternalName : symlcsvc
    LegalCopyright : Copyright (C) 2003
    OriginalFilename : symlcsvc.exe

    #:56 [mpbtn.exe]
    FilePath : c:\Program Files\Numericable\Mon Assistant Internet\bin\
    ProcessID : 2336
    ThreadCreationTime : 05-12-2006 14:58:44
    BasePriority : Normal

    #:57 [winvnc.exe]
    FilePath : C:\Program Files\TightVNC-unstable\
    ProcessID : 2452
    ThreadCreationTime : 05-12-2006 14:58:53
    BasePriority : Normal
    FileVersion : 1, 3, 6, 0
    ProductVersion : 1, 3, 6, 0
    ProductName : TightVNC Win32 Server
    CompanyName : Constantin Kaplinsky
    FileDescription : TightVNC Win32 Server
    InternalName : WinVNC
    LegalCopyright : Copyright (C) 1998-2004 [many holders]
    OriginalFilename : WinVNC.exe
    Comments : Based on TridiaVNC by Tridia Corporation

    #:58 [motive~1.exe]
    FilePath : C:\PROGRA~1\Motive\ASSTCO~1\
    ProcessID : 2728
    ThreadCreationTime : 05-12-2006 14:59:13
    BasePriority : Normal
    FileVersion : 5.01.00
    ProductVersion : 5.8.11.asst_classic.asst_motivedirectory
    ProductName : Motive System
    CompanyName : Motive Communications, Inc.
    FileDescription : Motive Directory
    InternalName : motivedirectory
    LegalCopyright : Copyright 1998-2003
    OriginalFilename : motivedirectory

    #:59 [ipodservice.exe]
    FilePath : C:\Program Files\iPod\bin\
    ProcessID : 3188
    ThreadCreationTime : 05-12-2006 15:00:35
    BasePriority : Normal
    FileVersion : 7.0.2.16
    ProductVersion : 7.0.2.16
    ProductName : iTunes
    CompanyName : Apple Computer, Inc.
    FileDescription : iPodService Module
    InternalName : iPodService
    LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
    OriginalFilename : iPodService.exe

    #:60 [ashmaisv.exe]
    FilePath : C:\Program Files\Alwil Software\Avast4\
    ProcessID : 3328
    ThreadCreationTime : 05-12-2006 15:01:16
    BasePriority : Normal

    #:61 [ashwebsv.exe]
    FilePath : C:\Program Files\Alwil Software\Avast4\
    ProcessID : 3448
    ThreadCreationTime : 05-12-2006 15:01:36
    BasePriority : Normal

    #:62 [alg.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 3984
    ThreadCreationTime : 05-12-2006 15:02:04
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Application Layer Gateway Service
    InternalName : ALG.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : ALG.exe

    #:63 [spybotsd.exe]
    FilePath : C:\Program Files\Spybot - Search & Destroy\
    ProcessID : 3416
    ThreadCreationTime : 05-12-2006 18:26:14
    BasePriority : Normal
    FileVersion : 1.4.0.3
    ProductVersion : 1, 4, 0, 3
    ProductName : SpyBot-S&D
    CompanyName : Safer Networking Limited
    FileDescription : Spybot - Search & Destroy
    InternalName : SpybotSD
    LegalCopyright : © 2000-2005 Patrick M. Kolla / Safer Networking Limited. Alle Rechte vorbehalten.
    LegalTrademarks : "Spybot" und "Spybot - Search & Destroy" sind registrierte Warenzeichen.
    OriginalFilename : SpyBotSD.exe
    Comments : Software zum Entfernen von Spyware und ähnlichen Bedrohungen.

    #:64 [ad-aware.exe]
    FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
    ProcessID : 772
    ThreadCreationTime : 05-12-2006 18:27:27
    BasePriority : Normal
    FileVersion : 6.2.0.236
    ProductVersion : SE 106
    ProductName : Lavasoft Ad-Aware SE
    CompanyName : Lavasoft Sweden
    FileDescription : Ad-Aware SE Core application
    InternalName : Ad-Aware.exe
    LegalCopyright : Copyright © Lavasoft AB Sweden
    OriginalFilename : Ad-Aware.exe
    Comments : All Rights Reserved

    Memory scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 0

    Started registry scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Registry Scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 0

    Started deep registry scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Deep registry scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 0

    Started Tracking Cookie scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : kinou@247realmedia[1].txt
    TAC Rating : 3
    Category : Data Miner
    Comment : Hits:6
    Value : Cookie:kinou@247realmedia.com/
    Expires : 01-01-2021 01:00:00
    LastSync : Hits:6
    UseCount : 0
    Hits : 6

    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : kinou@adtech[2].txt
    TAC Rating : 3
    Category : Data Miner
    Comment : Hits:2
    Value : Cookie:kinou@adtech.de/
    Expires : 02-12-2016 19:21:22
    LastSync : Hits:2
    UseCount : 0
    Hits : 2

    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : kinou@weborama[2].txt
    TAC Rating : 3
    Category : Data Miner
    Comment : Hits:13
    Value : Cookie:kinou@weborama.fr/
    Expires : 03-06-2007 09:26:06
    LastSync : Hits:13
    UseCount : 0
    Hits : 13

    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : kinou@www.smartadserver[1].txt
    TAC Rating : 3
    Category : Data Miner
    Comment : Hits:18
    Value : Cookie:kinou@www.smartadserver.com/
    Expires : 30-11-2026 16:05:40
    LastSync : Hits:18
    UseCount : 0
    Hits : 18

    Tracking cookie scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 4
    Objects found so far: 4

    Deep scanning and examining files...
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Disk Scan Result for C:\WINDOWS
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 4

    Disk Scan Result for C:\WINDOWS\system32
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 4

    Disk Scan Result for C:\DOCUME~1\KINOU\LOCALS~1\Temp\
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 4

    Scanning Hosts file......
    Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Hosts file scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    1 entries scanned.
    New critical objects:0
    Objects found so far: 4

    MRU List Object Recognized!
    Location: : C:\Documents and Settings\KINOU\recent
    Description : list of recently opened documents

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\automap\11.0\findmru
    Description : list of recently used find queries used in microsoft automap-based products

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\clipart gallery\2.0\mrudescription
    Description : most recently used description in microsoft clipart gallery

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\direct3d\mostrecentapplication
    Description : most recent application to use microsoft direct3d

    MRU List Object Recognized!
    Location: : software\microsoft\direct3d\mostrecentapplication
    Description : most recent application to use microsoft direct3d

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\direct3d\mostrecentapplication
    Description : most recent application to use microsoft direct X

    MRU List Object Recognized!
    Location: : software\microsoft\direct3d\mostrecentapplication
    Description : most recent application to use microsoft direct X

    MRU List Object Recognized!
    Location: : software\microsoft\directdraw\mostrecentapplication
    Description : most recent application to use microsoft directdraw

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\directinput\mostrecentapplication
    Description : most recent application to use microsoft directinput

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\directinput\mostrecentapplication
    Description : most recent application to use microsoft directinput

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\internet explorer
    Description : last download directory used in microsoft internet explorer

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\internet explorer\main
    Description : last save directory used in microsoft internet explorer

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\internet explorer\typedurls
    Description : list of recently entered addresses in microsoft internet explorer

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\mediaplayer\medialibraryui
    Description : last selected node in the microsoft windows media player media library

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\mediaplayer\player\recentfilelist
    Description : list of recently used files in microsoft windows media player

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\mediaplayer\player\settings
    Description : last open directory used in jasc paint shop pro

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\mediaplayer\preferences
    Description : last cd record path used in microsoft windows media player

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\mediaplayer\preferences
    Description : last playlist index loaded in microsoft windows media player

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\mediaplayer\preferences
    Description : last playlist loaded in microsoft windows media player

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\mediaplayer\preferences
    Description : last search path used in microsoft windows media player

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\microsoft management console\recent file list
    Description : list of recent snap-ins used in the microsoft management console

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\office\9.0\excel\recent files
    Description : list of recent files used by microsoft excel

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\office\9.0\powerpoint\recent file list
    Description : list of recent files used by microsoft powerpoint

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\office\9.0\publisher\recent file list
    Description : list of recent files used by microsoft publisher

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\search assistant\acmru
    Description : list of recent search terms used with the search assistant

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\windows\currentversion\applets\paint\recent file list
    Description : list of files recently opened using microsoft paint

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\windows\currentversion\applets\regedit
    Description : last key accessed using the microsoft registry editor

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\windows\currentversion\applets\wordpad\recent file list
    Description : list of recent files opened using wordpad

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
    Description : list of recent programs opened

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
    Description : list of recently saved files, stored according to file extension

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\windows\currentversion\explorer\recentdocs
    Description : list of recent documents opened

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\windows\currentversion\explorer\runmru
    Description : mru list for items opened in start | run

    MRU List Object Recognized!
    Location: : software\musicmatch
    Description : download location of the musicmatch installer

    MRU List Object Recognized!
    Location: : software\musicmatch\musicmatch jukebox\4.0\fileconv
    Description : file conversion location settings in musicmatch jukebox

    MRU List Object Recognized!
    Location: : software\musicmatch\musicmatch jukebox\4.0\mmradio
    Description : information on the last station listened to using musicmatch radio

    MRU List Object Recognized!
    Location: : .DEFAULT\software\microsoft\windows media\wmsdk\general
    Description : windows media sdk

    MRU List Object Recognized!
    Location: : S-1-5-18\software\microsoft\windows media\wmsdk\general
    Description : windows media sdk

    MRU List Object Recognized!
    Location: : S-1-5-21-45758197-590260106-813958858-1005\software\microsoft\windows media\wmsdk\general
    Description : windows media sdk

    Performing conditional scans...
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Conditional scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 42

    19:36:29 Scan Complete

    Summary Of This Scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    Total scanning time:00:07:05.610
    Objects scanned:102232
    Objects identified:4
    Objects ignored:0
    New critical objects:4

    Logfile of HijackThis v1.99.1
    Scan saved at 21:15:19, on 05/12/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.5730.0011)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\brsvc01a.exe
    C:\WINDOWS\system32\LEXBCES.EXE
    C:\WINDOWS\System32\brss01a.exe
    C:\WINDOWS\system32\LEXPPS.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
    C:\WINDOWS\AGRSMMSG.exe
    C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
    C:\Program Files\Scansoft\PaperPort\pptd40nt.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
    C:\Program Files\Brother\ControlCenter2\brctrcen.exe
    C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
    C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
    C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
    C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Winamp\Winampa.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE
    C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
    C:\Program Files\Netscape\Netscape\Netscp.exe
    C:\Program Files\Scansoft\PaperPort\SmartUI\SmartUI.exe
    C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
    C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
    C:\WINDOWS\system32\Brmfrmps.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
    c:\Program Files\Numericable\Mon Assistant Internet\bin\mad.exe
    C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    c:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
    C:\Program Files\TightVNC-unstable\WinVNC.exe
    C:\PROGRA~1\Motive\ASSTCO~1\MOTIVE~1.EXE
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
    C:\Documents and Settings\KINOU\Bureau\HijackThis.exe
    C:\Program Files\Internet Explorer\iexplore.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo! France
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
    O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\Scansoft\PaperPort\pptd40nt.exe
    O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\Scansoft\PaperPort\IndexSearch.exe
    O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl03a\BrStDvPt.exe
    O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
    O4 - HKLM\..\Run: [Mercora] "C:\Program Files\Mercora\MercoraClient.exe" -startup
    O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\TightVNC-unstable\WinVNC.exe" -servicehelper
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [SetDefPrt2] C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
    O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
    O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
    O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
    O4 - HKLM\..\Run: [DataLayer] C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
    O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray
    O4 - HKLM\..\Run: [OpiStat] C:\Program Files\OpiStat\OpiStat\OpiStat.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
    O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\Program Files\Netscape\Netscape\Netscp.exe" -turbo
    O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O4 - Global Startup: SmartUI.lnk = ?
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: Contrôleur d’état.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
    O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: KODAK Software Updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
    O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O11 - Options group: [INTERNATIONAL] International*
    O14 - IERESET.INF: START_PAGE_URL=https://www.acer.com/worldwide/selection.html
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
    O16 - DPF: {062F8D88-F204-11D8-ADFD-00062919A34C} (TelechargementPhS.ActiveXPhS) - https://www.photoservice.com/
    O16 - DPF: {08D390AE-5101-4701-A89F-6C6DADCCC402} (MSN Photo Select Tool) - https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fphotos.msn.fr%2fresources%2fneutral%2fcontrols%2fMsnPPick.cab%3f10%2c0%2c910%2c0
    O16 - DPF: {106E49CF-797A-11D2-81A2-00E02C015623} (AlternaTIFF ActiveX) - https://www.alternatiff.com/install/00/alttiff.cab
    O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowsonecare.com/install/cli/1.1.1067.8/WinSSWebAgent.CAB
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
    O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/fr/fr/importer/MypixUploader.cab
    O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
    O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
    O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/yinst20040510.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://galeriedekinouenligne.spaces.msn.com//PhotoUpload/MsnPUpld.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1107370094500
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
    O16 - DPF: {65FDEDF3-8ED9-4F5B-825E-18C2D44191A7} (OneCCCtl Class) - http://d.69.25.47.82.downloads.estara.com./as/OneCCDM.php?template=41001&sessionid=196893971_69.25.47.82_36491&=&req=1134120996468OneCC.cab
    O16 - DPF: {693A2822-F041-49E7-940A-AB0FE868B776} (Federated Upload Control) - http://fr-fr.ms.fujifilmnet.com/FedUpload.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
    O16 - DPF: {6F750200-1362-4815-A476-88533DE61D0C} (Ofoto Upload Manager Class) - htt
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    bonsoir ton log a l'air propre
    tes probleme sont ils resolu?

    a++++
    0
    1. kinoucharlot Messages postés 37 Statut Membre
       
      je remarque tout de même une lenteur anormale du process éteindre l'ordinateur une fenetre trackerwindows... doit être terminer
      de m^me à l'allumage de mon ordi une fenetre m'indique que le point d'entree à la bibliotheque psapi.dll est manaquant
      je l'ai telecharger sur tous les dll.com mais je n'ai pas ramarqué d'amelioration il faut dire que je ne sais pas si je dois le "ranger" quelques part
      merci de tes lumieres
      tu m'avais mis un lien pour pc cleaner tu me conseilles quoi ?
      bonne journée à toi merci de ta lecture.
      0
  7. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    bonjour as tu mit psapi.dll au bonne endroit? il faut la mettre dans ce dossier :)

    C:\WINDOWS\system32

    tu m'avais mis un lien pour pc cleaner tu me conseilles quoi ? 


    tu veut dire Ccleaner ???
    https://www.malekal.com/tutoriel-ccleaner/

    a++++
    0
  8. kinoucharlot Messages postés 37 Statut Membre
     
    bonjour
    l'ordi est par moment tres lent et se bloque
    je suis obligée de l'arreter et de recommencer par le touche power en facade de tour car il ne répond plus au commande demarré arreter
    j ai un message à l'allumage de l'ordi "
    point d'entrée de procedure get/processimagefilenamw est introuvable dans la bibliotheque de liaisons dynamiques psapi.dll
    titre : samrt bridge alerts motive sb.exe point d'entrée introuvable.

    il ne reconnait plus mon pocket pc ...

    je suis navrée d'avoir encore des soucis à te sousmettre
    je te remercie par avnce de ton aide providentielle.
    0
  9. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    bonjour as tu ce programe Mon assistant internet installé sur ton ordi?

    a++++
    0
  10. kinoucharlot Messages postés 37 Statut Membre
     
    oui j tuilise numericable comme fournisseur d'acces
    et tui coris que c'est grave ?
    merci d'avance
    0
  11. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    non rien de grave tu doit tout simplement

    désinstaller/réinstaller Mon assistant internet

    si le probleme persiste
    désinstalles/réinstalles smartbridge

    j'espere que tu as tjr les cd :)

    a+++
    0
  12. kinoucharlot Messages postés 37 Statut Membre
     
    alors là bravo encore bravo et encore bravo
    j ai desinstallé mon assistant internet
    je ne sais pas si je dois le reinstaller
    je ne l'utilise jamais
    qu'en penses tu ?
    depuis même mon pocket se connecte ...
    c'est noël avant l'heure
    je te remercie pour ton aide
    tu as été si patient avec une inculte informatique comme moi et je t'en remercie

    bonne continuation à toi
    je remercie salwa 5 pour sa disponibilité
    =))))))))))))))))
    0
  13. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    de rien :)

    si tu ne l'utilise pas alors pas besoin de le reinstallé :)

    pour finir quelque conseilles de base

    - installe un parefeu ca va renforcé la securité de l'ordi je te conseille un firewall gratuit ( si tu peu te procurer la version payant c'est encore mieu :)

    Kerio (parefeu)

    https://www.clubic.com/telecharger-fiche11071-sunbelt-personal-firewall-ex-kerio.html

    tuto

    https://forums.cnetfrance.fr

    - passe reglierement les antispyware (adaware , spybot , avg .. ect) pense a les mettre ajour avant de les lancé c'est tres important

    -supprime regulierement les fichiers inutiles (fichiers temporaire , cookies .. ect a l'aide de CCleaner

    -maintenant que ton ordinateur est propre je te conseille de creer un point de restauration comme ca en cas de probleme (virus , plantage ..ect) tu poura tjr revenir en arriere
    http://www.aidoforum.com/tutoriaux-371-creer-un-point-de-restauration-sous-windows.html

    a+++
    0
    1. kinoucharlot Messages postés 37 Statut Membre
       
      maintenant que ton ordinateur est propre je te conseille de creer un point de restauration comme ca en cas de probleme (virus , plantage ..ect) tu poura tjr revenir en arriere
      c'est fait j ai crée un point
      mais j ai toujours quelques soucis j ai crié victoire ...
      il beuggue c'est à dire il ne reconnait plus aucune commande clavier et souris m^me ctrl alt supp

      je suis obligé de l'enteindre manuellement au rallumage verification disque ect ...
      loprsque je le peux je l'éteinds demarrer etreindre et là une fenetre de programme ne repond pas s'ouvre twaintracker windows

      et ensuite le bureau reste bleu tres longtemps ....
      qu'en penses tu ?
      merci encore de ton aide providentielle

      merci
      0
  14. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    je pense qu'un reparation windows poura resoudre le probleme mais avant met un log hijack pour voir il n'y a pas de virus

    a++
    0
  15. kinoucharlot Messages postés 37 Statut Membre
     
    Logfile of HijackThis v1.99.1
    Scan saved at 17:24:10, on 11/12/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.5730.0011)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\brsvc01a.exe
    C:\WINDOWS\system32\LEXBCES.EXE
    C:\WINDOWS\System32\brss01a.exe
    C:\WINDOWS\system32\LEXPPS.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
    C:\WINDOWS\AGRSMMSG.exe
    C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
    C:\Program Files\Scansoft\PaperPort\pptd40nt.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
    C:\Program Files\Brother\ControlCenter2\brctrcen.exe
    C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
    C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
    C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Winamp\Winampa.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
    C:\WINDOWS\system32\Brmfrmps.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE
    C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
    C:\Program Files\Scansoft\PaperPort\SmartUI\SmartUI.exe
    C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
    C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\Program Files\TightVNC-unstable\WinVNC.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Windows Live Toolbar\msn_sl.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\KINOU\Bureau\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo! France
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: Burn4Free Toolbar Helper - {60BF5EE3-0105-4858-AD98-17C19F86B042} - C:\Program Files\Burn4Free Toolbar\v3.2.0.0\Burn4Free_Toolbar.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Burn4Free Toolbar - {55FAF0F2-44D4-425F-B5F5-6B275B621EAB} - C:\Program Files\Burn4Free Toolbar\v3.2.0.0\Burn4Free_Toolbar.dll
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
    O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\Scansoft\PaperPort\pptd40nt.exe
    O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\Scansoft\PaperPort\IndexSearch.exe
    O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl03a\BrStDvPt.exe
    O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
    O4 - HKLM\..\Run: [Mercora] "C:\Program Files\Mercora\MercoraClient.exe" -startup
    O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\TightVNC-unstable\WinVNC.exe" -servicehelper
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [SetDefPrt2] C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
    O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
    O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
    O4 - HKLM\..\Run: [DataLayer] C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
    O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray
    O4 - HKLM\..\Run: [OpiStat] C:\Program Files\OpiStat\OpiStat\OpiStat.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
    O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O4 - Global Startup: SmartUI.lnk = ?
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: Contrôleur d’état.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O11 - Options group: [INTERNATIONAL] International*
    O14 - IERESET.INF: START_PAGE_URL=https://www.acer.com/worldwide/selection.html
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
    O16 - DPF: {062F8D88-F204-11D8-ADFD-00062919A34C} (TelechargementPhS.ActiveXPhS) - https://www.photoservice.com/
    O16 - DPF: {08D390AE-5101-4701-A89F-6C6DADCCC402} (MSN Photo Select Tool) - https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fphotos.msn.fr%2fresources%2fneutral%2fcontrols%2fMsnPPick.cab%3f10%2c0%2c910%2c0
    O16 - DPF: {106E49CF-797A-11D2-81A2-00E02C015623} (AlternaTIFF ActiveX) - https://www.alternatiff.com/install/00/alttiff.cab
    O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowsonecare.com/install/cli/1.1.1067.8/WinSSWebAgent.CAB
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
    O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/fr/fr/importer/MypixUploader.cab
    O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
    O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
    O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/yinst20040510.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://galeriedekinouenligne.spaces.msn.com//PhotoUpload/MsnPUpld.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1107370094500
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
    O16 - DPF: {65FDEDF3-8ED9-4F5B-825E-18C2D44191A7} (OneCCCtl Class) - http://d.69.25.47.82.downloads.estara.com./as/OneCCDM.php?template=41001&sessionid=196893971_69.25.47.82_36491&=&req=1134120996468OneCC.cab
    O16 - DPF: {693A2822-F041-49E7-940A-AB0FE868B776} (Federated Upload Control) - http://fr-fr.ms.fujifilmnet.com/FedUpload.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
    O16 - DPF: {6F750200-1362-4815-A476-88533DE61D0C} (Ofoto Upload Manager Class) - https://tuantender.id/
    O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
    O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://camera1.mairie-brest.fr/activex/AxisCamControl.cab
    O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoways.com/clients/ImageUploader3.cab
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing)
    O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\System32\brsvc01a.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: VNC Server (winvnc) - Unknown owner - C:\Program Files\TightVNC-unstable\WinVNC.exe" -service (file missing)

    comment faire une reparation windows deplus as tu une satuce pour supprimer les doublons sur un ordi ?
    j ai un disque dur externe et je crois biens que mes document existent dans plusieurs endroits ..
    merci et encore merci
    tu es le meilleur salwa 5a+++ :-)))))))))))))))
    0
  16. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    bonjour :) avant de reparer windows essay ceci :

    Désactive les programmes inutiles au démarrage pour gagner en performance et un démarrage plus rapide :
    - Menu Démarrer puis executer
    - Tape msconfig dans le champs et clic sur OK
    - Dans la nouvelle fenetre clic sur l'onglet démarrage en haut à droite
    - Décoche tous les programmes qui te semblent inutiles laisse coché que ton antiviris ( alwils software) et ton antispyware ( avg antispyware)
    - Clic sur OK /appliquer/redemarrer maintenant
    -au redemarage une petite fenetre s'affiche coche ne plus afficher ce message

    - Nettoye ton ordinateur avec CCleaner : https://www.malekal.com/tutoriel-ccleaner/
    - Nettoye ta base de registre avec regcleaner : https://www.malekal.com/nettoyer-sa-base-de-registre-avec-windows-registry-cleaner/

    - Faire un test de ton disque : Menu Démarrer / executer / cmd et tu clics sur OK. Dans la nouvelle fenêtre, tape chkdsk /F /R c:
    Il va te dire qu'il ne peut pas scanner une partition montée et va te proposer de scanner au redémarrage, accepte et redémarre l'ordinateur. ca va reparer les erreur sur le disk

    je te conseille aussi de faire une defragmentation de tout les disques https://www.thesiteoueb.net/faq-astuces/fiche-pratique-426-comment-defragmenter-un-disque-dur-sous-xp.html

    bon courage

    a+++
    0
  17. kinoucharlot Messages postés 37 Statut Membre
     
    bonjour j ai des mauvaises nouvelles
    il continue de dysfonctionner cet ordi

    j ainsi a "e te conseille aussi de faire une defragmentation de tout les disques " j ai telecharger le logiciel de defragmentation " que tu indique en lien
    une reponse m'indique qu'il ne peut degragementer mon disque car ma version de windows est trop ancienne ...
    j ai l'environnement windows xp familliale je remarque que mon bureau devient bleu tout seul .....
    bref etrange mutation.....
    je continue aujourd'hui les autres manip

    a j oublié hier un ecran bleue avec inscription signalé qu'un logiciel a vait planté l ordi et blabla..
    au secours ....
    0
  18. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    Bonjour pour la defragmentation pas besoin de telecharger un programe pour ca windows peu le faire tres bien ensuivant ce chemin

    Cliquez sur Démarrer => Tous les programmes => Accessoires => Outils système, puis cliquez sur Défragmenteur de disque.
    Sélectionnez le disque (volume) que vous souhaitez défragmenter.
    Cliquez sur Analyser pour débuter l'analyse qui vous permettra de savoir si il est utile de défragmenter votre disque ou non.
    Si c’est le cas, lancez la défragmentation.

    mais avant de faire la defragmentation il faut faire ce que je t'ai demandé avant

    Désactive les programmes inutiles au démarrage pour gagner en performance et un démarrage plus rapide :
    - Menu Démarrer puis executer
    - Tape msconfig dans le champs et clic sur OK
    - Dans la nouvelle fenetre clic sur l'onglet démarrage en haut à droite
    - Décoche tous les programmes qui te semblent inutiles laisse coché que ton antiviris ( alwils software) et ton antispyware ( avg antispyware)
    - Clic sur OK /appliquer/redemarrer maintenant
    -au redemarage une petite fenetre s'affiche coche ne plus afficher ce message

    - Nettoye ton ordinateur avec CCleaner : https://www.malekal.com/tutoriel-ccleaner/
    - Nettoye ta base de registre avec regcleaner : https://www.malekal.com/nettoyer-sa-base-de-registre-avec-windows-registry-cleaner/

    - Faire un test de ton disque : Menu Démarrer / executer / cmd et tu clics sur OK. Dans la nouvelle fenêtre, tape chkdsk /F /R c:
    Il va te dire qu'il ne peut pas scanner une partition montée et va te proposer de scanner au redémarrage, accepte et redémarre l'ordinateur. ca va reparer les erreur sur le disk

    conceranant l'ecrant blue as tu installé recement un nouveau programe ou materiel ? il se peu que ca vien de la

    a++
    0
  19. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    rebonjour ce n'est pas pour te pressé mais il vaut mieu faire tout ca le plus vite possible parceque plus tu attend et plus les probleme s'accumule et plus ca va endomagé l'ordi :p

    et aussi repond a ma question :)

    conceranant l'ecrant blue as tu installé recement un nouveau programe ou materiel ? il se peu que ca vien de la

    a+++
    0
  20. kinoucharlot Messages postés 37 Statut Membre
     
    bonsoir
    j ai intalle burn4 free burner cd et dvd
    depuis j ai la fenetre bleue
    j ai aussi internet explorere version 7 ... j aurais du garder l'ancienne version
    donc mes soucis
    sont
    le fenetre bleues
    l'ordi ne s'éteint pas normalement reste tres tres longtemps la fenetre de fermeture de windows je dois donc l éteindre manuellement
    donc à chaque rallumage je le laisse verifier l'integrité de mon disque fat 32
    que dois je faire
    je suis perdue
    merci de ton aide
    a++
    0
  21. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    Bonsoir :)

    Ok dans ce cas la desinstalle ce programe burn4 free burner cd et dvd et
    ensuite fait ceci

    Désactive les programmes inutiles au démarrage pour gagner en performance et un démarrage plus rapide :
    - Menu Démarrer puis executer
    - Tape msconfig dans le champs et clic sur OK
    - Dans la nouvelle fenetre clic sur l'onglet démarrage en haut à droite
    - Décoche tous les programmes qui te semblent inutiles laisse coché que ton antiviris ( alwils software) et ton antispyware ( avg antispyware)
    - Clic sur OK /appliquer/redemarrer maintenant
    -au redemarage une petite fenetre s'affiche coche ne plus afficher ce message

    - Nettoye ton ordinateur avec CCleaner : https://www.malekal.com/tutoriel-ccleaner/
    - Nettoye ta base de registre avec regcleaner : https://www.malekal.com/nettoyer-sa-base-de-registre-avec-windows-registry-cleaner/

    - Faire un test de ton disque : Menu Démarrer / executer / cmd et tu clics sur OK. Dans la nouvelle fenêtre, tape chkdsk /F /R c:
    Il va te dire qu'il ne peut pas scanner une partition montée et va te proposer de scanner au redémarrage, accepte et redémarre l'ordinateur. ca va reparer les erreur sur le disk

    - et enfin faire une defragmentation

    Cliquez sur Démarrer => Tous les programmes => Accessoires => Outils système, puis cliquez sur Défragmenteur de disque.
    Sélectionnez le disque (volume) que vous souhaitez défragmenter.
    Cliquez sur Analyser pour débuter l'analyse qui vous permettra de savoir si il est utile de défragmenter votre disque ou non.
    Si c’est le cas, lancez la défragmentation.

    si apres tout ca les problemes persiste on fera une reparation windows :)

    a++

    bon courage
    0
  • 1
  • 2