Pb de connexion internet virus
vincent
-
Océane -
Océane -
Bonjour,
Depuis quelques jours et sans avoir effectué de modification particulière j'ai des problèmes de connexions internet. En effet lorsque je lance une page web, la première page s'affiche correctement mais ensuite impossible d'en afficher une deuxième. Je ne peux pas non plus mettre mon antivirus à jour. Le problème ne vient pas de la connexion en elle- même puisque msn et emule fonctionne normalement et que je poste ce message avec le portable de mon boulot connecter à ma freebox et tout va pour le mieux. S'il vous plait venez moi en aide car je commence à desespérer.
Modèle : portable Compaq Presario R3000
La config de mon pc:
-Windows XP Serice pack 2 Edition 2002
-AMD Athlon 3000, 797 MHz, 512 Mo
Firewall : Sygate
Antivirus principal : AVG
FAI : Free en dégroupé
Voici une copie du log de mon Hijack:
Logfile of HijackThis v1.99.1
Scan saved at 22:49:13, on 12/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\System32\gearsec.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\System32\hphmon05.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Vincent\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {94E5716B-CD1A-C3D8-7C7B-834B724F78CA} - C:\DOCUME~1\Vincent\APPLIC~1\EQBOLD~1\ping for.exe (file missing)
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [iso axis ante glue] C:\Documents and Settings\All Users\Application Data\BaitRealIsoAxis\rect live.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [HP Software Update] "c:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [second curb] C:\DOCUME~1\Vincent\APPLIC~1\THATME~1\OnceDoes.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=https://www8.hp.com/fr/fr/home.html
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A256F4FF-43B9-4B15-B7CE-DA9605D7E8F6}: NameServer = 195.83.76.59,129.88.30.1
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: MsgPlusLoader.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: ANSYS FLEXlm license manager - Macrovision Corporation - C:\PROGRA~1\ANSYSI~1\SHARED~1\LICENS~1\Intel\lmgrd.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Service de sécurité matérielle (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
Voici une copie du compte rendu du scan de a-squared :
Version - a-squared Free 2.1
Réglages Scan:
Objets: Mémoire, Traces, Cookies, C:\WINDOWS\, C:\Program Files
Scan archives: Marche
Heuristiques: Marche
Scan ADS: Marche
Début du scan: 12/12/2006 18:56:28
C:\Documents and Settings\Vincent\Local Settings\temp\fsg_tmp Détecter: Trace.Directory.Claria.DateManager
C:\WINDOWS\gatorpdpsetup.log Détecter: Trace.File.Claria.CommonComponents
C:\WINDOWS\gatorpdpsetup.log Détecter: Trace.File.Gator
Key: HKEY_CLASSES_ROOT\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} Détecter: Trace.Registry.Claria.CommonComponents
Key: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} Détecter: Trace.Registry.Claria.CommonComponents
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gef Détecter: Trace.Registry.Claria.CommonComponents
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gmg Détecter: Trace.Registry.Claria.CommonComponents
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gmi Détecter: Trace.Registry.Claria.CommonComponents
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> uets Détecter: Trace.Registry.Claria.CommonComponents
Key: HKEY_LOCAL_MACHINE\software\gator.com Détecter: Trace.Registry.Claria.CommonComponents
Key: HKEY_LOCAL_MACHINE\software\gator.com\gator Détecter: Trace.Registry.Claria.WebSecureAlert
Key: HKEY_CLASSES_ROOT\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} Détecter: Trace.Registry.Gator
Key: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} Détecter: Trace.Registry.Gator
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gef Détecter: Trace.Registry.Gator
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gmg Détecter: Trace.Registry.Gator
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gmi Détecter: Trace.Registry.Gator
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> uets Détecter: Trace.Registry.Gator
Key: HKEY_LOCAL_MACHINE\software\gator.com\gator\dyn Détecter: Trace.Registry.Gator
Key: HKEY_LOCAL_MACHINE\software\gator.com Détecter: Trace.Registry.Gator
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> PartnerDesc Détecter: Trace.Registry.Spy Cleaner
Key: HKEY_CLASSES_ROOT\acm.acmfactory.1 Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\acm.acmfactory Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\appid\{127df9b4-d75d-44a6-af78-8c3a8ceb03db} Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\appid\acm.dll Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_CLASSES_ROOT\CLSID\{A9AAE1AB-9688-42C5-86F5-C12F6B9015AD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\clsid\{a9aae1ab-9688-42c5-86f5-c12f6b9015ad} Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\interface\{43382522-a846-46f4-ac57-1f71ae6e1086} Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\interface\{572fb162-c0ba-4edf-8cff-e3846153b9b0} Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\interface\{72a836d1-bc00-43c0-a941-17960e4fb842} Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\WhenU --> Order Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\ACM.DLL --> AppID Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A9AAE1AB-9688-42C5-86F5-C12F6B9015AD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> acm_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> brandskin_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> brandstrip_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> brandstrip_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> bstat_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> db_script_update Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> db_server_update Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> db_stamp_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> dbc_chunks_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> extra_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> extraver_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> FullDBTime Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> fword_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> HeartbeatCount Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> HeartbeatTime Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> himp_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> InstallDir Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> InstallTime Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> iptomsa_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> IPToMsaTime_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> LastPartner Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> maxPopups_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> MSA Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> newuser_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> Partner Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> PartnerB Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> PartnerDesc Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> pat_chunks_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> pats_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> redir3p_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> script_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> src_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> SystemParam_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> timedDBUpdate_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> TotalPartner Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> TotalPopup Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> uninst_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> uninstall_cmd_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> uninstalltag_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> update_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> UrlChangeCount Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> ver_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> Version Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> ziptomsa_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run --> whenusave Détecter: Trace.Registry.WhenUSave
Key: HKEY_LOCAL_MACHINE\software\whenusave Détecter: Trace.Registry.WhenUSave
Value: HKEY_LOCAL_MACHINE\software\whenusave --> zip Détecter: Trace.Registry.WhenUSave
Key: HKEY_CLASSES_ROOT\typelib\{df901432-1b9f-4f5b-9e56-301c553f9095} Détecter: Trace.Registry.WhenUSearch
Value: HKEY_CLASSES_ROOT\CLSID\{62289CBE-3BE2-4ba9-AC20-A911C900039A}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{66A21AEA-5A05-46b5-B7CD-C1AAAF4770CD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{795514CB-A81C-48f6-87AB-5B22D433D5D8}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{B195FE25-16D9-4d1b-AD10-0701F9A5E277}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{BA8C584B-209C-4d54-8BB1-8AB5F1DCA18E}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{D1698320-77BD-4776-96FD-C3C8D71E57E2}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{E28DD8A6-E9BC-4d3e-A7F7-BC9644138CE2}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{EC2EC911-E047-4810-9535-6CAFE1ADC3AD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{EDBA2AAC-8A00-4eed-A2E4-74BFB760BE10}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00F442C2-5C9E-4ae5-AF7D-FB4E0350C2E3}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{13AFA3A3-5687-487c-93F2-63D5DA468F4E}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32239586-29DE-4268-8AF3-CE7658D3D672}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5AAECB3B-3D56-47c7-8706-77899E73802A}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{62289CBE-3BE2-4ba9-AC20-A911C900039A}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{66A21AEA-5A05-46b5-B7CD-C1AAAF4770CD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{795514CB-A81C-48f6-87AB-5B22D433D5D8}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B195FE25-16D9-4d1b-AD10-0701F9A5E277}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BA8C584B-209C-4d54-8BB1-8AB5F1DCA18E}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D1698320-77BD-4776-96FD-C3C8D71E57E2}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E28DD8A6-E9BC-4d3e-A7F7-BC9644138CE2}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EC2EC911-E047-4810-9535-6CAFE1ADC3AD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EDBA2AAC-8A00-4eed-A2E4-74BFB760BE10}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
C:\Documents and Settings\Vincent\Cookies\vincent@adtech[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@atdmt[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@bluestreak[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@bs.serving-sys[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@doubleclick[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@mediaplex[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@mediastay.directtrack[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@serving-sys[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@statse.webtrendslive[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@tradedoubler[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@weborama[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:47 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:91 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:94 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:95 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:97 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:166 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:172 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:173 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:220 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:221 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:222 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:223 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:224 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:225 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:228 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:229 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:230 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:231 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:232 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:233 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:234 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:235 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:236 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:237 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:238 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:239 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:240 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:322 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:368 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:374 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:375 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:376 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:377 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:378 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:421 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:422 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:423 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:424 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:425 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:441 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:489 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:490 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:491 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:494 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:501 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:502 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:503 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:603 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:604 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:605 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:606 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:658 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:665 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:684 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:685 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:687 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:726 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:727 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:745 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:756 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:815 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:844 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:861 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:895 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:909 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:910 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:911 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:912 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:916 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:917 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:929 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:930 Détecter: Trace.TrackingCookie
C:\Program Files\Colubris Networks\NetConnect\Data1.cab/NetConnect.exe Détecter: Heuristic.Dialer
C:\Program Files\DivX\DivX Pro Codec\gain_trickler_3202.exe Détecter: Adware.Gator.3202
C:\Program Files\Free.fr\Dialer\Dialer.exe Détecter: Heuristic.Dialer
Scanné
Fichiers: 39960
Traces: 84342
Cookies: 1112
Processus: 48
Trouver
Fichiers: 3
Traces: 102
Cookies: 83
Processus: 0
Clés de Registre: 0
Fin du Scan: 12/12/2006 20:07:21
Temps du Scan: 01:10:53
Quarantaine
Fichiers: 0
Traces: 0
Cookies: 0
Depuis quelques jours et sans avoir effectué de modification particulière j'ai des problèmes de connexions internet. En effet lorsque je lance une page web, la première page s'affiche correctement mais ensuite impossible d'en afficher une deuxième. Je ne peux pas non plus mettre mon antivirus à jour. Le problème ne vient pas de la connexion en elle- même puisque msn et emule fonctionne normalement et que je poste ce message avec le portable de mon boulot connecter à ma freebox et tout va pour le mieux. S'il vous plait venez moi en aide car je commence à desespérer.
Modèle : portable Compaq Presario R3000
La config de mon pc:
-Windows XP Serice pack 2 Edition 2002
-AMD Athlon 3000, 797 MHz, 512 Mo
Firewall : Sygate
Antivirus principal : AVG
FAI : Free en dégroupé
Voici une copie du log de mon Hijack:
Logfile of HijackThis v1.99.1
Scan saved at 22:49:13, on 12/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\System32\gearsec.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\System32\hphmon05.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Vincent\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {94E5716B-CD1A-C3D8-7C7B-834B724F78CA} - C:\DOCUME~1\Vincent\APPLIC~1\EQBOLD~1\ping for.exe (file missing)
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [iso axis ante glue] C:\Documents and Settings\All Users\Application Data\BaitRealIsoAxis\rect live.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [HP Software Update] "c:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [second curb] C:\DOCUME~1\Vincent\APPLIC~1\THATME~1\OnceDoes.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=https://www8.hp.com/fr/fr/home.html
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A256F4FF-43B9-4B15-B7CE-DA9605D7E8F6}: NameServer = 195.83.76.59,129.88.30.1
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: MsgPlusLoader.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: ANSYS FLEXlm license manager - Macrovision Corporation - C:\PROGRA~1\ANSYSI~1\SHARED~1\LICENS~1\Intel\lmgrd.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Service de sécurité matérielle (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
Voici une copie du compte rendu du scan de a-squared :
Version - a-squared Free 2.1
Réglages Scan:
Objets: Mémoire, Traces, Cookies, C:\WINDOWS\, C:\Program Files
Scan archives: Marche
Heuristiques: Marche
Scan ADS: Marche
Début du scan: 12/12/2006 18:56:28
C:\Documents and Settings\Vincent\Local Settings\temp\fsg_tmp Détecter: Trace.Directory.Claria.DateManager
C:\WINDOWS\gatorpdpsetup.log Détecter: Trace.File.Claria.CommonComponents
C:\WINDOWS\gatorpdpsetup.log Détecter: Trace.File.Gator
Key: HKEY_CLASSES_ROOT\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} Détecter: Trace.Registry.Claria.CommonComponents
Key: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} Détecter: Trace.Registry.Claria.CommonComponents
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gef Détecter: Trace.Registry.Claria.CommonComponents
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gmg Détecter: Trace.Registry.Claria.CommonComponents
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gmi Détecter: Trace.Registry.Claria.CommonComponents
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> uets Détecter: Trace.Registry.Claria.CommonComponents
Key: HKEY_LOCAL_MACHINE\software\gator.com Détecter: Trace.Registry.Claria.CommonComponents
Key: HKEY_LOCAL_MACHINE\software\gator.com\gator Détecter: Trace.Registry.Claria.WebSecureAlert
Key: HKEY_CLASSES_ROOT\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} Détecter: Trace.Registry.Gator
Key: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} Détecter: Trace.Registry.Gator
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gef Détecter: Trace.Registry.Gator
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gmg Détecter: Trace.Registry.Gator
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> gmi Détecter: Trace.Registry.Gator
Value: HKEY_LOCAL_MACHINE\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c} --> uets Détecter: Trace.Registry.Gator
Key: HKEY_LOCAL_MACHINE\software\gator.com\gator\dyn Détecter: Trace.Registry.Gator
Key: HKEY_LOCAL_MACHINE\software\gator.com Détecter: Trace.Registry.Gator
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> PartnerDesc Détecter: Trace.Registry.Spy Cleaner
Key: HKEY_CLASSES_ROOT\acm.acmfactory.1 Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\acm.acmfactory Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\appid\{127df9b4-d75d-44a6-af78-8c3a8ceb03db} Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\appid\acm.dll Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_CLASSES_ROOT\CLSID\{A9AAE1AB-9688-42C5-86F5-C12F6B9015AD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\clsid\{a9aae1ab-9688-42c5-86f5-c12f6b9015ad} Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\interface\{43382522-a846-46f4-ac57-1f71ae6e1086} Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\interface\{572fb162-c0ba-4edf-8cff-e3846153b9b0} Détecter: Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\interface\{72a836d1-bc00-43c0-a941-17960e4fb842} Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\WhenU --> Order Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\ACM.DLL --> AppID Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A9AAE1AB-9688-42C5-86F5-C12F6B9015AD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> acm_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> brandskin_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> brandstrip_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> brandstrip_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> bstat_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> db_script_update Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> db_server_update Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> db_stamp_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> dbc_chunks_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> extra_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> extraver_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> FullDBTime Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> fword_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> HeartbeatCount Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> HeartbeatTime Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> himp_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> InstallDir Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> InstallTime Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> iptomsa_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> IPToMsaTime_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> LastPartner Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> maxPopups_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> MSA Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> newuser_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> Partner Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> PartnerB Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> PartnerDesc Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> pat_chunks_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> pats_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> redir3p_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> script_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> src_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> SystemParam_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> timedDBUpdate_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> TotalPartner Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> TotalPopup Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> uninst_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> uninstall_cmd_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> uninstalltag_rs Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> update_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> UrlChangeCount Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> ver_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> Version Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave --> ziptomsa_url Détecter: Trace.Registry.WhenU.SaveNow
Value: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run --> whenusave Détecter: Trace.Registry.WhenUSave
Key: HKEY_LOCAL_MACHINE\software\whenusave Détecter: Trace.Registry.WhenUSave
Value: HKEY_LOCAL_MACHINE\software\whenusave --> zip Détecter: Trace.Registry.WhenUSave
Key: HKEY_CLASSES_ROOT\typelib\{df901432-1b9f-4f5b-9e56-301c553f9095} Détecter: Trace.Registry.WhenUSearch
Value: HKEY_CLASSES_ROOT\CLSID\{62289CBE-3BE2-4ba9-AC20-A911C900039A}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{66A21AEA-5A05-46b5-B7CD-C1AAAF4770CD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{795514CB-A81C-48f6-87AB-5B22D433D5D8}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{B195FE25-16D9-4d1b-AD10-0701F9A5E277}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{BA8C584B-209C-4d54-8BB1-8AB5F1DCA18E}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{D1698320-77BD-4776-96FD-C3C8D71E57E2}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{E28DD8A6-E9BC-4d3e-A7F7-BC9644138CE2}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{EC2EC911-E047-4810-9535-6CAFE1ADC3AD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_CLASSES_ROOT\CLSID\{EDBA2AAC-8A00-4eed-A2E4-74BFB760BE10}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00F442C2-5C9E-4ae5-AF7D-FB4E0350C2E3}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{13AFA3A3-5687-487c-93F2-63D5DA468F4E}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32239586-29DE-4268-8AF3-CE7658D3D672}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5AAECB3B-3D56-47c7-8706-77899E73802A}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{62289CBE-3BE2-4ba9-AC20-A911C900039A}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{66A21AEA-5A05-46b5-B7CD-C1AAAF4770CD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{795514CB-A81C-48f6-87AB-5B22D433D5D8}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B195FE25-16D9-4d1b-AD10-0701F9A5E277}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BA8C584B-209C-4d54-8BB1-8AB5F1DCA18E}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D1698320-77BD-4776-96FD-C3C8D71E57E2}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E28DD8A6-E9BC-4d3e-A7F7-BC9644138CE2}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EC2EC911-E047-4810-9535-6CAFE1ADC3AD}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EDBA2AAC-8A00-4eed-A2E4-74BFB760BE10}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.YourKeyloggerProgramName
C:\Documents and Settings\Vincent\Cookies\vincent@adtech[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@atdmt[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@bluestreak[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@bs.serving-sys[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@doubleclick[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@mediaplex[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@mediastay.directtrack[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@serving-sys[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@statse.webtrendslive[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@tradedoubler[1].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Cookies\vincent@weborama[2].txt Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:47 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:91 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:94 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:95 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:97 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:166 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:172 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:173 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:220 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:221 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:222 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:223 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:224 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:225 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:228 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:229 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:230 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:231 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:232 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:233 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:234 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:235 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:236 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:237 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:238 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:239 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:240 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:322 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:368 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:374 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:375 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:376 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:377 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:378 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:421 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:422 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:423 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:424 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:425 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:441 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:489 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:490 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:491 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:494 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:501 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:502 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:503 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:603 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:604 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:605 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:606 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:658 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:665 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:684 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:685 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:687 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:726 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:727 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:745 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:756 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:815 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:844 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:861 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:895 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:909 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:910 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:911 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:912 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:916 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:917 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:929 Détecter: Trace.TrackingCookie
C:\Documents and Settings\Vincent\Application Data\Mozilla\Firefox\Profiles\z3vaeu3g.default\cookies.txt:930 Détecter: Trace.TrackingCookie
C:\Program Files\Colubris Networks\NetConnect\Data1.cab/NetConnect.exe Détecter: Heuristic.Dialer
C:\Program Files\DivX\DivX Pro Codec\gain_trickler_3202.exe Détecter: Adware.Gator.3202
C:\Program Files\Free.fr\Dialer\Dialer.exe Détecter: Heuristic.Dialer
Scanné
Fichiers: 39960
Traces: 84342
Cookies: 1112
Processus: 48
Trouver
Fichiers: 3
Traces: 102
Cookies: 83
Processus: 0
Clés de Registre: 0
Fin du Scan: 12/12/2006 20:07:21
Temps du Scan: 01:10:53
Quarantaine
Fichiers: 0
Traces: 0
Cookies: 0
A voir également:
- Pb de connexion internet virus
- Gmail connexion - Guide
- D'où peut venir un problème de connexion internet sur un ordinateur ? - Guide
- Arcep ma connexion internet - Accueil - Box & Connexion Internet
- Comment savoir si quelqu'un utilise ma connexion internet - Guide
- Virus mcafee - Accueil - Piratage
24 réponses
L'option suivante est cochée "Utiliser l'adresse des serveurs DNS suivante :"
Serveur DNS préféré : 195-83-76-59
Serveur DNS auxilaire : 129-88-30-1
Serveur DNS préféré : 195-83-76-59
Serveur DNS auxilaire : 129-88-30-1
j'ai exactement le meme genre de problemes...depuis aujourd'hui.
on dirait bien qu'il s'agit d'un nouveau virus
on dirait bien qu'il s'agit d'un nouveau virus
Lorsque je souhaite ouvrir ma logitech caméra, un message s'affiche en disant que QCUI2.dll est introuvable
Comment faire ??
Voici mon rapport :
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Mixer.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\WINDOWS\system32\P2P Networking\P2P Networking.exe
C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Java\jre1.5.0_09\bin\jucheck.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Aurore\LOCALS~1\Temp\Rar$EX01.840\HijackThis.exe
C:\DOCUME~1\Aurore\LOCALS~1\Temp\Rar$EX12.8701\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL
O2 - BHO: Need2Find Bar BHO - {4D1C4E81-A32A-416b-BCDB-33B3EF3617D3} - C:\Program Files\Need2Find\bar\1.bin\ND2FNBAR.DLL (file missing)
O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Zango Toolbar - {EA0D26BD-9029-431A-86E0-83152D67828A} - C:\Program Files\Zango Programs\Zango Toolbar\ZangoTB.dll (file missing)
O3 - Toolbar: RX Toolbar - {25D8BACF-3DE2-4B48-AE22-D659B8D835B0} - C:\Program Files\RXToolBar\RXToolBar.dll (file missing)
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [P2P Networking] C:\WINDOWS\system32\P2P Networking\P2P Networking.exe /AUTOSTART
O4 - HKLM\..\Run: [KAZAA] C:\Program Files\Kazaa\kazaa.exe /SYSTRAY
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [AltnetPointsManager] c:\program files\altnet\points manager\points manager.exe -s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [explorer] C:\WINDOWS\system32\explori.exe
O4 - HKLM\..\Run: [taskmgra] C:\WINDOWS\system32\taskmgra.com
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\2.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 - HKLM\..\Run: [wait dart proc mags] C:\Documents and Settings\All Users\Application Data\live rect wait dart\Memo Type.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Bone Settings] C:\DOCUME~1\Aurore\APPLIC~1\TEAMFI~1\Bodystopsave.exe
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZJ
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?69da4ff464464272ad641ec450d3b9f6
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?69da4ff464464272ad641ec450d3b9f6
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) -
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{9887F38C-8A23-48C8-8DF3-101E66829B58}: NameServer = 85.255.115.6 85.255.112.20
O17 - HKLM\System\CCS\Services\Tcpip\..\{ADA15813-1465-468B-A255-DB96DE89FC7B}: NameServer = 85.255.115.6,85.255.112.20
O17 - HKLM\System\CCS\Services\Tcpip\..\{F2EEA351-E677-4F02-B7C3-52269F2A700B}: NameServer = 85.255.115.6,85.255.112.20
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.115.6 85.255.112.20
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.115.6 85.255.112.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.115.6 85.255.112.20
O18 - Filter hijack: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
Comment faire ??
Voici mon rapport :
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Mixer.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\WINDOWS\system32\P2P Networking\P2P Networking.exe
C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Java\jre1.5.0_09\bin\jucheck.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Aurore\LOCALS~1\Temp\Rar$EX01.840\HijackThis.exe
C:\DOCUME~1\Aurore\LOCALS~1\Temp\Rar$EX12.8701\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL
O2 - BHO: Need2Find Bar BHO - {4D1C4E81-A32A-416b-BCDB-33B3EF3617D3} - C:\Program Files\Need2Find\bar\1.bin\ND2FNBAR.DLL (file missing)
O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Zango Toolbar - {EA0D26BD-9029-431A-86E0-83152D67828A} - C:\Program Files\Zango Programs\Zango Toolbar\ZangoTB.dll (file missing)
O3 - Toolbar: RX Toolbar - {25D8BACF-3DE2-4B48-AE22-D659B8D835B0} - C:\Program Files\RXToolBar\RXToolBar.dll (file missing)
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [P2P Networking] C:\WINDOWS\system32\P2P Networking\P2P Networking.exe /AUTOSTART
O4 - HKLM\..\Run: [KAZAA] C:\Program Files\Kazaa\kazaa.exe /SYSTRAY
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [AltnetPointsManager] c:\program files\altnet\points manager\points manager.exe -s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [explorer] C:\WINDOWS\system32\explori.exe
O4 - HKLM\..\Run: [taskmgra] C:\WINDOWS\system32\taskmgra.com
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\2.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 - HKLM\..\Run: [wait dart proc mags] C:\Documents and Settings\All Users\Application Data\live rect wait dart\Memo Type.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Bone Settings] C:\DOCUME~1\Aurore\APPLIC~1\TEAMFI~1\Bodystopsave.exe
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZJ
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?69da4ff464464272ad641ec450d3b9f6
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?69da4ff464464272ad641ec450d3b9f6
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) -
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{9887F38C-8A23-48C8-8DF3-101E66829B58}: NameServer = 85.255.115.6 85.255.112.20
O17 - HKLM\System\CCS\Services\Tcpip\..\{ADA15813-1465-468B-A255-DB96DE89FC7B}: NameServer = 85.255.115.6,85.255.112.20
O17 - HKLM\System\CCS\Services\Tcpip\..\{F2EEA351-E677-4F02-B7C3-52269F2A700B}: NameServer = 85.255.115.6,85.255.112.20
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.115.6 85.255.112.20
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.115.6 85.255.112.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.115.6 85.255.112.20
O18 - Filter hijack: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
