Sujet Précédent Sujet Suivant

Fenetre pubs intempestives et favoris innefac

Résolu/Fermé
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 - 18 mars 2007 à 19:11
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 - 21 mars 2007 à 16:39
Bonsoir,

J'ai un probleme avec mon PC, j'ai des favoris qui sont affichés et qui sont impossibles à effacer, ainsi que des fenetres publicitaires intempestives qui s'affichent d'elles meme telle que des pub de casino de sites adultes et autres..........
Pouvez vous m'aider , merci d'avance

lionel
A voir également:

5 réponses

Réponse 1 / 5
dokipok Messages postés 69 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 30 mars 2011 86
18 mars 2007 à 19:13
télécharche la barre google qui bloque les fenètres intempestives http://www.google.com/intl/fr/toolbar/ie/index.html
0
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 1
19 mars 2007 à 10:34
J'ai deja google toolbar mais ca ne marche pas c'est des pubs cid et elles s'affichent qd meme
0
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275 > lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007
19 mars 2007 à 10:35
Lionel tu es vérolé

Suit les recommandations de Régis59

A++
0
Réponse 2 / 5
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
18 mars 2007 à 21:44
Salut Lionel,

télécharge HijackThis ici:
http://telechargement.zebulon.fr/138-hijackthis-1991.html

Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif

Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum

Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm

Bon courage

A+

0
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 1
19 mars 2007 à 10:35
Merci regis, voici le rapport hijackthis

Merci d'avance de ton aide

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 10:16:46, on 19/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
c:\mysql\bin\mysqld-nt.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
c:\fotowin\RTETPISv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\HiJackThis_v2.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neuf.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F3 - REG:win.ini: load=
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {2FFE9665-E47A-E3CE-B312-64FFAF9D7224} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Ulead AutoDetector] C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ATOMTHISTESTKNOB] C:\Documents and Settings\All Users\Application Data\multiactiveatomthis\BendCopy.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe (file missing)
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe (file missing)
O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
O14 - IERESET.INF: START_PAGE_URL=https://www.01net.com/telecharger/
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {01FE8D0A-51AD-459B-B62B-85E135128B32} (DD_v4.DDv4) - https://www.driversupport.com/
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {31E68DE2-5548-4B23-88F0-C51E6A0F695E} (Microsoft PID Sniffer) - https://support.serviceshub.microsoft.com/supportforbusiness/create
O16 - DPF: {4B62C0F0-DCFF-11D2-91E2-004005195FF7} (EcritMath.EcritMathCtl) - file://C:\Documents and Settings\HP_Propriétaire\Mes documents\Unzipped\controleAID\EcritMath.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://metaboli.neuf.fr/components/Metaboli.ocx
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/hardwaredetection.cab
O16 - DPF: {8731163E-77B9-4F91-9122-F112521C28AF} (MMSPlayerX Class) - http://mmt.bouyguestelecom.fr/mmawap/jsp/composer/player/mmsPlayer.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {92E7E45A-D8C8-480E-AF99-176E43997CAA} (Aurigma Image Uploader 3.5 Combo Control) - http://www.pixdiscount.fr/clients/ImageUploader3.cab
O16 - DPF: {963BE66B-121D-4E6C-BF9F-1A774D9A2E41} (MSN Money Charting) - https://www.msn.com/fr-fr/
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DA6462AC-9024-11D2-8454-004005195FED} (GP0.GP0Ctl) - file://C:\Documents and Settings\HP_Propriétaire\Mes documents\Unzipped\controleAID\GP0.CAB
O16 - DPF: {E29016D7-8E99-11D2-8454-004005195FED} (GE0.GE0Ctl) - file://C:\Documents and Settings\HP_Propriétaire\Mes documents\Unzipped\controleAID\GE0.CAB
O18 - Filter hijack: text/html - (no CLSID) - (no file)
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: InCD File System Service (InCDsrv) - Unknown owner - C:\Program Files\Ahead\InCD\InCDsrv.exe (file missing)
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Miscrosoft Updates Service (MsUpdate) - Unknown owner - C:\WINDOWS\system32\msupd.exe (file missing)
O23 - Service: MySQL - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe (file missing)
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: RTE : Partage TAPI (RTETAPIService) - Unknown owner - c:\fotowin\RTETPISv.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
0
Réponse 3 / 5
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
19 mars 2007 à 10:51


Prends connaissance du contenu le lien suivant:

http://www.f-secure.com/products/license-terms/eult_fra.pdf

Tu as donc pris connaissance et accepté les conditions d'utilisations du programme blacklight qui est inclus dans le dossier compressé navilog1.zip que tu vas télécharger.

Maintenant fais un clic droit sur ce lien :

http://perso.orange.fr/il.mafioso/Navifix/navilog1.zip

Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.

Fais un clic droit sur navilog1.zip et choisis "tout extraire"

Ensuite double clique sur navilog1.bat
Laisses-toi guider.

Au menu principal, choisis 1 et valides.

(Ne fais pas le choix 2 sans notre avis/accord)

Patientes jusqu'au message :

*** Analyse Termine le ..... ***

Appuies sur une touche comme demandé, le bloc note va s'ouvrir.

Copies-colles l'intégralité dans une réponse.

Refermes le bloc note.

Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)


0
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 1
19 mars 2007 à 11:21
merci Marie,

Voici le rapport que tu m'as demandé:

Search Navipromo version 1.0.7 commencé le 19/03/2007 à 11:05:12,59

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Poster ce rapport sur le forum pour le faire analyser !!!
!!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!

Fix lancé depuis C:\Documents and Settings\HP_Propri‚taire\Bureau
Mise a jour le 12.03.2007 a 18h00 by IL-MAFIOSO

Executé en mode normal

*** Recherche Programmes installes ***




*** Recherche dossiers dans C:\WINDOWS ***




*** Recherche dossiers dans C:\Program Files ***




*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***




*** Recherche dossiers dans C:\Documents and Settings\HP_Propri‚taire\Application Data ***



*** Recherche avec BlackLight Engine/F-secure ***
BlackLight Engine est un produit de F-secure, pour + d'infos :
https://www.f-secure.com/en


F-SECURE BLACKLIGHT ROOTKIT ELIMINATOR
======================================

Copyright 2005-2006 F-Secure Corporation. All rights reserved.
This is a beta version. It will expire on 1st of April, 2007.
Version information: 2.2.1055.

[+] Started on 03/19/07 at 11:05:13.
[+] Initializing ...
[+] Starting scan, press Ctrl-C to abort.
[+] Scanning for hidden items ......................................................................................
[+] Scan complete.
[+] Summary: 0 hidden item(s) found, 0 scheduled for renaming.
[+] Exited on 03/19/07 at 11:14:06 (return code = 0).


*** Recherche fichiers ***




*** Recherche cles registre ***


Recharche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]



Recharche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]



Recherche Clé Magic Control



*** Module de recherche complémentaire ***
(recherche fichiers spécifiques)

1)Recherche fichiers connus:


2)Recherche Heuristique :
*
**
***
****
*****
******
*******
********


*** Analyse Terminé le 19/03/2007 à 11:14:27,18 ***
0
Réponse 4 / 5
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
19 mars 2007 à 17:34
C - Ccleaner : (nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc.)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php
ET
http://perso.orange.fr/jesses/Docs/Logiciels/CCleaner.htm


D – Ewido – AVG
AVG Anti-Spyware :
https://www.avg.com/en-ww/free-antivirus-download
Tu l'installes.
Lance AVG Anti-Spyware et clique sur le bouton Mise à jour.
Patiente!
Lance AVG Anti-Spyware
Clique sur le bouton Analyse (de la barre d'outils)
Puis sur l'onglets Comment réagir, clique sur Actions recommandées.
Sélectionne Quarantaine.

Reviens à l'onglet Analyse. Clique sur Analyse complète du système.
/!\ Si un fichier est infecté en fin d'analyse /!\
choisis l'option " Appliquer toutes les actions " en bas.

Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous"
Enregistre ce fichier texte sur ton bureau.

Copie/colle le rapport


E - Scan online avec BitDefender

(fonctionne uniquement sous Internet Explorer en acceptant l’ activX) la barre anti-popup du SP (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.

https://assiste.com/404_La_page_demandee_n_existe_pas.php
http://www.bitdefender.fr/scan8/ie.html
TUTO
http://perso.orange.fr/rginformatique/section%20virus/defender.htm
Copie/COLLE le rapport entier

A++
0
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 1
19 mars 2007 à 22:12
merci marie je lance ccleaner et bit defender et des que c'est fini je poste les rapports , a plus trad .

lionel
0
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 1
19 mars 2007 à 23:28
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 21:09:06 19/03/2007

+ Résultat de l'analyse:



C:\Documents and Settings\Eloïse\Local Settings\Temporary Internet Files\Content.IE5\8HOMRCXA\cr_obj[1].htm -> Downloader.Psyme.cd : Aucune action entreprise.
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP960\A0121234.exe -> Downloader.VB.fi : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Application Data\errorsafefrenchnewreleaseinstall[1].exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Aucune action entreprise.


Fin du rapport
et mnt le rapport bit defender

BitDefender Online Scanner
Scan report generated at: Mon, Mar 19, 2007 - 23:22:25

Scan path: A:\;C:\;D:\;E:\;F:\;G:\;H:\;I:\;J:\;K:\;L:\;

Statistics
Time 02:09:45
Files 611221
Folders 10215
Boot Sectors 7
Archives 18846
Packed Files 43671

Results
Identified Viruses 5
Infected Files 9
Suspect Files 0
Warnings 0
Disinfected 0
Deleted Files 12

Engines Info
Virus Definitions 405790
Engine build AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)
Scan plugins 14
Archive plugins 38
Unpack plugins 6
E-mail plugins 6
System plugins 1

Scan Settings
First Action Disinfect
Second Action Delete
Heuristics Yes
Enable Warnings Yes
Scanned Extensions *;
Exclude Extensions
Scan Emails Yes
Scan Archives Yes
Scan Packed Yes
Scan Files Yes
Scan Boot Yes


Scanned File Status
C:\Documents and Settings\All Users\Application Data\multiactiveatomthis\BendCopy.exe Infected with: Trojan.FatObfus.Gen
C:\Documents and Settings\All Users\Application Data\multiactiveatomthis\BendCopy.exe Disinfection failed
C:\Documents and Settings\All Users\Application Data\multiactiveatomthis\BendCopy.exe Deleted
C:\Documents and Settings\Eloïse\Local Settings\Temporary Internet Files\Content.IE5\8HOMRCXA\cr_obj[1].htm Infected with: Generic.XPL.ADODB.71D635A5
C:\Documents and Settings\Eloïse\Local Settings\Temporary Internet Files\Content.IE5\8HOMRCXA\cr_obj[1].htm Disinfection failed
C:\Documents and Settings\Eloïse\Local Settings\Temporary Internet Files\Content.IE5\8HOMRCXA\cr_obj[1].htm Deleted
C:\Documents and Settings\HP_Propriétaire\Application Data\errorsafefrenchnewreleaseinstall[1].exe Infected with: Trojan.Downloader.Winfixer.O
C:\Documents and Settings\HP_Propriétaire\Application Data\errorsafefrenchnewreleaseinstall[1].exe Disinfection failed
C:\Documents and Settings\HP_Propriétaire\Application Data\errorsafefrenchnewreleaseinstall[1].exe Deleted
C:\Program Files\Norton AntiVirus\Quarantine\01372561.exe=>(Quarantine-2) Infected with: Trojan.Downloader.VB.WP
C:\Program Files\Norton AntiVirus\Quarantine\01372561.exe=>(Quarantine-2) Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\01372561.exe=>(Quarantine-2) Deleted
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP895\A0101513.exe=>(Quarantine-2) Infected with: Trojan.Zlob.2.Gen
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP895\A0101513.exe=>(Quarantine-2) Disinfection failed
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP895\A0101513.exe=>(Quarantine-2) Deleted
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP950\A0113254.exe Infected with: Trojan.FatObfus.Gen
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP950\A0113254.exe Disinfection failed
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP950\A0113254.exe Deleted
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP970\A0122827.exe Infected with: Trojan.FatObfus.Gen
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP970\A0122827.exe Disinfection failed
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP970\A0122827.exe Deleted
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP970\A0122828.exe Infected with: Trojan.Downloader.Winfixer.O
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP970\A0122828.exe Disinfection failed
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP970\A0122828.exe Deleted
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP970\A0122830.exe=>(Quarantine-2) Infected with: Trojan.Downloader.VB.WP
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP970\A0122830.exe=>(Quarantine-2) Disinfection failed
C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP970\A0122830.exe=>(Quarantine-2) Deleted
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_f1903.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_f1903.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_f1903.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_f1904.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_f1904.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_f1904.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_f1905.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_f1905.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_f1905.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_f2304.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_f2304.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_f2304.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1530.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1530.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1530.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1702.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1702.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1702.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1730.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1730.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1730.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1740.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1740.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1740.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1755.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1755.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1755.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1902.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1902.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1902.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1925.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1925.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L1925.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1940.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1940.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1940.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1955.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1955.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_L1955.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L2035.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L2035.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L2035.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L2335.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L2335.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_L2335.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_m703.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_m703.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_m703.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_mx703.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_mx703.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_mx703.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_mx704.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_mx704.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_mx704.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_v52.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_v52.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_v52.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_v72.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_v72.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_v72.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_v75.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_v75.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_v75.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vf15.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vf15.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vf15.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vf17.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vf17.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vf17.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vf52.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vf52.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vf52.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vs15.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vs15.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vs15.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vs17.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vs17.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vs17.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vs19.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vs19.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vs19.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vx73.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vx73.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vx73.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vx74.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vx74.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/hp_vx74.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vx75.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vx75.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/HP_vx75.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/L1502.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/L1502.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/L1502.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/mx50.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/MX50.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/mx70.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/MX70.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/MX70.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/mx75.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/MX75.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/MX75.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/mx90.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/MX90.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/MX90.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/P1350B.INF Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/p3902a.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/v50.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/V50.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/vf51.cat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/vf51.icm Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/src/vf51.inf Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/Validate.py Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/variable/do.bat Clean
D:\I386\drv\APP04659\App04659.exe=>(ZIP Sfx s)=>hp/tmp/variable/dont.bat Clean
D:\I386\drv\APP16399\App16399.exe Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s) Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/Agere_Sequoia_Modem_B2_2_1_41_10_ALL_ALL_WW-01.block Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/Agere_Sequoia_Modem_B2_2_1_41_10_ALL_ALL_WW.txt Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/cpc_ke.txt Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/cpl.REG Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/cpl.REG=>(unicode) Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/devcon.exe Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/DoDont.bat Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/GenerateDeviceList.bat Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/GetSummaryPCI.py Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/IsDeviceThere.bat Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/PCIDUMPR.SYS Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/PCIFINDX.exe Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/SandR.exe Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/SandR.exe=>(Embedded EXE o) Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/executable/UpdateDeviceDirectly.py Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/FindDev.py Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/install.bat Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/lg.ini Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/PCI.py Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/PCI.pyc Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/PCIDUMPR.SYS Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/PCIFINDX.exe Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/src/AGRSM.sys Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/src/agrsmdel.exe Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/src/AGRSMMsg.exe Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/src/AGRSMxp.cat Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/src/AGRSMxp.inf Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/Validate.py Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/variable/do.bat Clean
D:\I386\drv\APP16399\App16399.exe=>(ZIP Sfx s)=>hp/tmp/variable/dont.bat Clean
D:\I386\drv\APP16526\App16526.exe Clean
D:\I386\drv\APP16526\App16526.exe=>(ZIP Sfx s) Clean
D:\I386\drv\APP16526\App16526.exe=>(ZIP Sfx s)=>hp/tmp/executable/cpl.REG Clean
D:\I386\drv\APP16526\App16526.exe=>(ZIP Sfx s)=>hp/tmp/executable/cpl.REG=>(unicode) Clean
D:\I386\drv\APP16526\App16526.exe=>(ZIP Sfx s)=>hp/tmp/executable/devcon.exe Clean

A++

Lionel
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 5
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
20 mars 2007 à 10:11
Re

AVG ==> Aucune action entreprise

Suis la démo, faut le refaire

A++
0
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 1
20 mars 2007 à 12:53
Voici le nouveau rapport d'AVG

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 12:51:21 20/03/2007

+ Résultat de l'analyse:



C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP960\A0121234.exe -> Downloader.VB.fi : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@247realmedia[2].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@stat.dealtime[2].txt -> TrackingCookie.Dealtime : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ehg-neuftelecom.hitbox[1].txt -> TrackingCookie.Hitbox : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@hitbox[2].txt -> TrackingCookie.Hitbox : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@weborama[2].txt -> TrackingCookie.Weborama : Aucune action entreprise.


Fin du rapport

A+++
0
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 1
20 mars 2007 à 14:22
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 14:21:01 20/03/2007

+ Résultat de l'analyse:



C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP960\A0121234.exe -> Downloader.VB.fi : Nettoyé.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@stat.dealtime[2].txt -> TrackingCookie.Dealtime : Nettoyé.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ehg-neuftelecom.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : Nettoyé.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.


Fin du rapport

Voila tout a ete nettoye
0
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275 > lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007
20 mars 2007 à 20:14
Salut


Je passe en courant d'air

Refait moi un hitjackthis
Je passerai demain matin

0
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 1 > ^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020
20 mars 2007 à 20:56
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 20:54:27, on 20/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
c:\mysql\bin\mysqld-nt.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
c:\fotowin\RTETPISv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\HiJackThis_v2.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neuf.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
F3 - REG:win.ini: load=
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {2FFE9665-E47A-E3CE-B312-64FFAF9D7224} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Ulead AutoDetector] C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe (file missing)
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe (file missing)
O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
O14 - IERESET.INF: START_PAGE_URL=https://www.01net.com/telecharger/
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {01FE8D0A-51AD-459B-B62B-85E135128B32} (DD_v4.DDv4) - https://www.driversupport.com/
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {31E68DE2-5548-4B23-88F0-C51E6A0F695E} (Microsoft PID Sniffer) - https://support.serviceshub.microsoft.com/supportforbusiness/create
O16 - DPF: {4B62C0F0-DCFF-11D2-91E2-004005195FF7} (EcritMath.EcritMathCtl) - file://C:\Documents and Settings\HP_Propriétaire\Mes documents\Unzipped\controleAID\EcritMath.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://metaboli.neuf.fr/components/Metaboli.ocx
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/hardwaredetection.cab
O16 - DPF: {8731163E-77B9-4F91-9122-F112521C28AF} (MMSPlayerX Class) - http://mmt.bouyguestelecom.fr/mmawap/jsp/composer/player/mmsPlayer.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {92E7E45A-D8C8-480E-AF99-176E43997CAA} (Aurigma Image Uploader 3.5 Combo Control) - http://www.pixdiscount.fr/clients/ImageUploader3.cab
O16 - DPF: {963BE66B-121D-4E6C-BF9F-1A774D9A2E41} (MSN Money Charting) - https://www.msn.com/fr-fr/
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DA6462AC-9024-11D2-8454-004005195FED} (GP0.GP0Ctl) - file://C:\Documents and Settings\HP_Propriétaire\Mes documents\Unzipped\controleAID\GP0.CAB
O16 - DPF: {E29016D7-8E99-11D2-8454-004005195FED} (GE0.GE0Ctl) - file://C:\Documents and Settings\HP_Propriétaire\Mes documents\Unzipped\controleAID\GE0.CAB
O18 - Filter hijack: text/html - (no CLSID) - (no file)
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: InCD File System Service (InCDsrv) - Unknown owner - C:\Program Files\Ahead\InCD\InCDsrv.exe (file missing)
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Miscrosoft Updates Service (MsUpdate) - Unknown owner - C:\WINDOWS\system32\msupd.exe (file missing)
O23 - Service: MySQL - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe (file missing)
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: RTE : Partage TAPI (RTETAPIService) - Unknown owner - c:\fotowin\RTETPISv.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
0
lionelnevers Messages postés 24 Date d'inscription dimanche 18 mars 2007 Statut Membre Dernière intervention 3 octobre 2007 1 > ^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020
21 mars 2007 à 16:39
Marie,

Je te remercie de m'avoir aide, mais maintenant mon ordi est clean , je n'ai plus de pubs intempestives ni de favoris indesirables.

Merci et à un de ces jours.

Bonne journée.
Lionel
0

Discussions similaires

favoris et autre favoris
Houcine -
BloodyAngel -

3 réponses
vérifier la validité des liens des favoris
arcenciel -
arcenciel -

2 réponses
Où trouver le dossier des favoris de Chrome ?
Fefewil -
sephi -

4 réponses