Gros probleme de lag !!! besoin d'aide SVP !!
Fermé
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
-
18 juil. 2007 à 14:22
lordak Messages postés 45 Date d'inscription mercredi 18 juillet 2007 Statut Membre Dernière intervention 13 août 2008 - 19 juil. 2007 à 18:59
lordak Messages postés 45 Date d'inscription mercredi 18 juillet 2007 Statut Membre Dernière intervention 13 août 2008 - 19 juil. 2007 à 18:59
A voir également:
- Gros probleme de lag !!! besoin d'aide SVP !!
- Souris qui lag ✓ - Forum Windows
- Mon pc lag - Guide
- Sims 3 lag ✓ - Forum Jeux vidéo
- Lag pc ✓ - Forum Windows
- Mon pc lag sans raison - Forum Windows 10
47 réponses
jlpjlp
Messages postés
51574
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 042
18 juil. 2007 à 18:31
18 juil. 2007 à 18:31
je vais regarder pour les virus peut etre.... sinon les lag ca peut etre autre chose , il faut parfois il me semble modifier la config internet de ton fournisseur
____________
zone alarm et avast ont trouvé quoi?
_____
tu as avast antivirus et zone alarm avec antivirus?
___________
colle un rapport hijackthis
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/29061.html
manuel :
https://leblogdeclaude.blogspot.com/2006/10/informatique-section-hijackthis.html
_________________________
télécharger sur le bureau
Navilog.zip
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
= Double-Clic navilog1.zip
= Extraire tout sur le bureau
= Double-Clic navilog1 qui est sur le bureau
= Appuyer sur une touche jusqu' arriver aux options
= Choisir option 1
un rapport : fixnavi.txt dans C : va se creer
le copier/coller dans ton prochain message
____________
zone alarm et avast ont trouvé quoi?
_____
tu as avast antivirus et zone alarm avec antivirus?
___________
colle un rapport hijackthis
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/29061.html
manuel :
https://leblogdeclaude.blogspot.com/2006/10/informatique-section-hijackthis.html
_________________________
télécharger sur le bureau
Navilog.zip
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
= Double-Clic navilog1.zip
= Extraire tout sur le bureau
= Double-Clic navilog1 qui est sur le bureau
= Appuyer sur une touche jusqu' arriver aux options
= Choisir option 1
un rapport : fixnavi.txt dans C : va se creer
le copier/coller dans ton prochain message
jlpjlp
Messages postés
51574
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 042
18 juil. 2007 à 18:49
18 juil. 2007 à 18:49
si c'est pas un virus fait le test ping : regarde la:
http://www.sos-adsl.com/modules/wfsection/article.php?articleid=45
http://www.sos-adsl.com/modules/wfsection/article.php?articleid=45
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 18:56
18 juil. 2007 à 18:56
je vais essayer ce que tu ma dis et je te tiens au courant merci bcp ! toutefois le lag survient mm quand je suis en vacances sans aucunes connexions internet ! ca vien du systeme je crois c pour cela que je pense que c'est un virus !
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 19:01
18 juil. 2007 à 19:01
le test de ping est entierement positif ca ne vient donc pas d'internet comme je le pensai
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 19:02
18 juil. 2007 à 19:02
voici le rapport :
Logfile of HijackThis v1.99.1
Scan saved at 19:02:17, on 18/07/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Itunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\JEAN-P~1\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0914953A-B6C0-42C3-983E-5213C64AFA9B} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {f4d74aaa-a178-4463-846b-b4bc87a024e0} - (no file)
O3 - Toolbar: (no name) - {18668683-731c-48fa-b1b9-ad013748fb00} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: (no name) - {5D956A61-05E7-427B-A2B1-BF32FB18B1BE} - (no file)
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\Itunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Zone Labs Client] D:\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin9USA.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw+0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - (no file)
O18 - Protocol: bwg0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwg0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Filter: text/x-mrml - {C51721BE-858B-4A66-A8BF-D2882FF49820} - C:\Program Files\Fichiers communs\A&W\MidRadio.ocx
O20 - Winlogon Notify: LBTWlgn - c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
Logfile of HijackThis v1.99.1
Scan saved at 19:02:17, on 18/07/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Itunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\JEAN-P~1\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0914953A-B6C0-42C3-983E-5213C64AFA9B} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {f4d74aaa-a178-4463-846b-b4bc87a024e0} - (no file)
O3 - Toolbar: (no name) - {18668683-731c-48fa-b1b9-ad013748fb00} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: (no name) - {5D956A61-05E7-427B-A2B1-BF32FB18B1BE} - (no file)
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\Itunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Zone Labs Client] D:\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin9USA.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw+0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - (no file)
O18 - Protocol: bwg0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwg0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Filter: text/x-mrml - {C51721BE-858B-4A66-A8BF-D2882FF49820} - C:\Program Files\Fichiers communs\A&W\MidRadio.ocx
O20 - Winlogon Notify: LBTWlgn - c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 19:11
18 juil. 2007 à 19:11
ET VOICI CELUI DE FIXNAVI :
Search Navipromo version 2.0.5 commencé le 18/07/2007 à 19:06:49,98
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Poster ce rapport sur le forum pour le faire analyser !!!
!!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!
Fix lancé depuis C:\Program Files\navilog1
Mise a jour le 01.07.2007 a 12h00 by IL-MAFIOSO
Executé en mode normal
*** Recherche Programmes installes ***
*** Recherche dossiers dans C:\WINDOWS ***
*** Recherche dossiers dans C:\Program Files ***
*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***
*** Recherche dossiers dans C:\Documents and Settings\Jean-Pierre\Application Data ***
*** Recherche avec BlackLight Engine/F-secure ***
BlackLight Engine est un produit de F-secure, pour + d'infos :
https://www.f-secure.com/en
F-SECURE BLACKLIGHT ROOTKIT ELIMINATOR
======================================
Copyright 2005-2006 F-Secure Corporation. All rights reserved.
This is a beta version. It will expire on 1st of October, 2007.
Version information: 2.2.1064.
[+] Started on 07/18/07 at 19:06:51.
[+] Initializing ...
[+] Starting scan, press Ctrl-C to abort.
[+] Scanning for hidden items ........................
[+] Scan complete.
[+] Summary: 0 hidden item(s) found, 0 scheduled for renaming.
[+] Exited on 07/18/07 at 19:07:42 (return code = 0).
*** Recherche fichiers ***
*** Recherche cles registre ***
Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]
Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]
Recherche Clé Magic Control
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche fichiers connus:
2)Recherche Heuristique :
*
**
***
****
*****
******
*******
********
3)Recherche Certificats :
*** Analyse Terminé le 18/07/2007 à 19:08:23,09 ***
Search Navipromo version 2.0.5 commencé le 18/07/2007 à 19:06:49,98
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Poster ce rapport sur le forum pour le faire analyser !!!
!!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!
Fix lancé depuis C:\Program Files\navilog1
Mise a jour le 01.07.2007 a 12h00 by IL-MAFIOSO
Executé en mode normal
*** Recherche Programmes installes ***
*** Recherche dossiers dans C:\WINDOWS ***
*** Recherche dossiers dans C:\Program Files ***
*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***
*** Recherche dossiers dans C:\Documents and Settings\Jean-Pierre\Application Data ***
*** Recherche avec BlackLight Engine/F-secure ***
BlackLight Engine est un produit de F-secure, pour + d'infos :
https://www.f-secure.com/en
F-SECURE BLACKLIGHT ROOTKIT ELIMINATOR
======================================
Copyright 2005-2006 F-Secure Corporation. All rights reserved.
This is a beta version. It will expire on 1st of October, 2007.
Version information: 2.2.1064.
[+] Started on 07/18/07 at 19:06:51.
[+] Initializing ...
[+] Starting scan, press Ctrl-C to abort.
[+] Scanning for hidden items ........................
[+] Scan complete.
[+] Summary: 0 hidden item(s) found, 0 scheduled for renaming.
[+] Exited on 07/18/07 at 19:07:42 (return code = 0).
*** Recherche fichiers ***
*** Recherche cles registre ***
Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]
Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]
Recherche Clé Magic Control
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche fichiers connus:
2)Recherche Heuristique :
*
**
***
****
*****
******
*******
********
3)Recherche Certificats :
*** Analyse Terminé le 18/07/2007 à 19:08:23,09 ***
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 19:12
18 juil. 2007 à 19:12
voila j'attend votre avis ^^ et merci encore
jlpjlp
Messages postés
51574
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 042
18 juil. 2007 à 19:39
18 juil. 2007 à 19:39
tu avais du matereil logitech que tu as viré?
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 20:38
18 juil. 2007 à 20:38
mmm possible mais je suis pas sur car pour enrayer le lag javais supprimer quelques programmes inutiles ... Mais en quoi cela me causerait des lags ?
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 20:43
18 juil. 2007 à 20:43
mais le lag est preuve d'un disfonctionnement car en dehors des periodes de lag les jeux guild wars , counter strike etc. tourne PARFAITEMENT bien. mais je le precise encore ca ne vient pas d'internet ca me le ffait meme hors connection sur d'autres applications
jlpjlp
Messages postés
51574
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 042
18 juil. 2007 à 21:21
18 juil. 2007 à 21:21
c'est pour comprendre pourquoi ces lignes sont manquantes : si tu avais logitech et viré fix ces lignes
O18 - Protocol: bw+0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw+0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - (no file)
O18 - Protocol: bwg0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwg0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
_____________________________
fix ces lignes
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {0914953A-B6C0-42C3-983E-5213C64AFA9B} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {f4d74aaa-a178-4463-846b-b4bc87a024e0} - (no file)
O3 - Toolbar: (no name) - {18668683-731c-48fa-b1b9-ad013748fb00} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: (no name) - {5D956A61-05E7-427B-A2B1-BF32FB18B1BE} - (no file)
___________________________
mets à jour java
https://www.01net.com/telecharger/windows/Programmation/java/fiches/8138.html
_________________________
scan avec des antiespions (en mode sans échec):
spybot :
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/26157.html
voir demo d utilisation (merci Balltrap)
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
___________________________
Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :
• Redémarre ton ordinateur
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
• Choisis ton compte.
Déroule la liste des instructions ci-dessous :
• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuie sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuie sur une touche pour redémarrer le PC.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum
___________________________
combofix (colle le rapport)
http://mickael.barroux.free.fr/securite/combofix.php
_________________________
colle le rapport:
Clean permettra de faire du nettoyage et supprimer des fichiers que des anti-virus et anti-spywares n'ont pas pu trouver. Le logiciel est régulièrement mis à jour, vous devrez donc le re-téléchargé pour obtenir une version plus récente.
· Téléchargez clean.zip, décompressez-le sur votre bureau (clic droit / extraire tout), vous obtenez alors un dossier clean
· Démarrez Windows en mode sans échec : Guide pour redémarrer en mode sans échec
· Ouvrez le dossier clean qui se trouve sur ton bureau, et double-cliquez sur clean.cmd, une fenêtre noire va apparaître pendant un instant, laissez la ouverte jusqu'à ce qu'elle se ferme.
http://kerio.probb.fr/tuto-Clean-h37.html
______________________________
colle le rapport d'un scan en ligne
avec un des suivants:
bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html
Panda en ligne :
http://pandasoftware.fr
scan en ligne firefox
https://www.trendmicro.com/fr_fr/business.html
____________
utilise aussi pour supprimer tes traces
CCLEANER: (lance un nettoyage et répare erreurs) sans la barre yahoo
https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
-----------------------
encore des pbs?
recolle hijackthis
O18 - Protocol: bw+0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw+0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - (no file)
O18 - Protocol: bwg0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwg0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
_____________________________
fix ces lignes
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {0914953A-B6C0-42C3-983E-5213C64AFA9B} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {f4d74aaa-a178-4463-846b-b4bc87a024e0} - (no file)
O3 - Toolbar: (no name) - {18668683-731c-48fa-b1b9-ad013748fb00} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: (no name) - {5D956A61-05E7-427B-A2B1-BF32FB18B1BE} - (no file)
___________________________
mets à jour java
https://www.01net.com/telecharger/windows/Programmation/java/fiches/8138.html
_________________________
scan avec des antiespions (en mode sans échec):
spybot :
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/26157.html
voir demo d utilisation (merci Balltrap)
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
___________________________
Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :
• Redémarre ton ordinateur
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
• Choisis ton compte.
Déroule la liste des instructions ci-dessous :
• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuie sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuie sur une touche pour redémarrer le PC.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum
___________________________
combofix (colle le rapport)
http://mickael.barroux.free.fr/securite/combofix.php
_________________________
colle le rapport:
Clean permettra de faire du nettoyage et supprimer des fichiers que des anti-virus et anti-spywares n'ont pas pu trouver. Le logiciel est régulièrement mis à jour, vous devrez donc le re-téléchargé pour obtenir une version plus récente.
· Téléchargez clean.zip, décompressez-le sur votre bureau (clic droit / extraire tout), vous obtenez alors un dossier clean
· Démarrez Windows en mode sans échec : Guide pour redémarrer en mode sans échec
· Ouvrez le dossier clean qui se trouve sur ton bureau, et double-cliquez sur clean.cmd, une fenêtre noire va apparaître pendant un instant, laissez la ouverte jusqu'à ce qu'elle se ferme.
http://kerio.probb.fr/tuto-Clean-h37.html
______________________________
colle le rapport d'un scan en ligne
avec un des suivants:
bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html
Panda en ligne :
http://pandasoftware.fr
scan en ligne firefox
https://www.trendmicro.com/fr_fr/business.html
____________
utilise aussi pour supprimer tes traces
CCLEANER: (lance un nettoyage et répare erreurs) sans la barre yahoo
https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
-----------------------
encore des pbs?
recolle hijackthis
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 22:01
18 juil. 2007 à 22:01
JE VAIS FAIRE TOUT CE QUE TU MA DIT POINT PAR POINT MAIS QU'ENTEND TU PARS " FIXER CES LIGNES"
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 22:34
18 juil. 2007 à 22:34
j'ai mis a jour java et voici le resultat de SDfix
SDFix: Version 1.92
Run by Jean-Pierre on 2007-07-18 at 22:22
Microsoft Windows XP [version 5.1.2600]
Running From: C:\DOCUME~1\JEAN-P~1\Bureau\SDFix
Safe Mode:
Checking Services:
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Restoring Missing Security Center Service
Restoring Missing SharedAccess Service
Rebooting...
Normal Mode:
Checking Files:
Trojan Files Found:
C:\WINDOWS\antiv.exe - Deleted
Removing Temp Files...
ADS Check:
C:\WINDOWS
No streams found.
C:\WINDOWS\system32
No streams found.
C:\WINDOWS\system32\svchost.exe
No streams found.
C:\WINDOWS\system32\ntoskrnl.exe
No streams found.
Final Check:
Remaining Services:
------------------
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\\Jeux\\game.dat"="D:\\Jeux\\game.dat:*:Enabled:La Bataille pour la Terre du Milieu T II"
"D:\\Jeux\\silkroad\\Silkroad\\Silkroad.exe"="D:\\Jeux\\silkroad\\Silkroad\\Silkroad.exe:*:Enabled:Silkroad"
"D:\\Battle Field 2142\\BF2142.exe"="D:\\Battle Field 2142\\BF2142.exe:*:Enabled:Battlefield 2"
"C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Disabled:Logitech Desktop Messenger"
"D:\\eMule\\emule.exe"="D:\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"D:\\Jeux\\Medal Of Honor\\mohpa.exe"="D:\\Jeux\\Medal Of Honor\\mohpa.exe:*:Enabled:Medal of Honor Pacific Assault(tm)"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Disabled:LimeWire"
"D:\\bit torrent\\bittorrent.exe"="D:\\bit torrent\\bittorrent.exe:*:Enabled:BitTorrent"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\WINDOWS\\System32\\FXSCLNT.exe"="C:\\WINDOWS\\System32\\FXSCLNT.exe:*:Enabled:Microsoft Fax Console"
"C:\\Program Files\\MSN Messenger\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\MSN Messenger\\msnmsgr.exe:*:Enabled:Messenger"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"D:\\counter strike\\cz\\czero.exe"="D:\\counter strike\\cz\\czero.exe:*:Enabled:Condition Zero Launcher"
"D:\\Pes 6\\PES6.exe"="D:\\Pes 6\\PES6.exe:*:Enabled:pes6.exe"
"D:\\UrbanTerror\\ioUrbanTerror.exe"="D:\\UrbanTerror\\ioUrbanTerror.exe:*:Enabled:ioUrbanTerror"
"C:\\ijji\\ENGLISH\\u_sf\\soldierfront.exe"="C:\\ijji\\ENGLISH\\u_sf\\soldierfront.exe:*:Enabled:soldierfront"
"C:\\WINDOWS\\System32\\dpvsetup.exe"="C:\\WINDOWS\\System32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\\WINDOWS\\System32\\rundll32.exe"="C:\\WINDOWS\\System32\\rundll32.exe:*:Enabled:Ex‚cuter une DLL en tant qu'application"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\84exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\84exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\64exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\64exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\22exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\22exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\88exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\88exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\36exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\36exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\37exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\37exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\80exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\80exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\6exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\6exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\71exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\71exinjs.a9.exe:*:Enabled:Microsoft Update"
"D:\\Zapu\\Zapu\\wDivi.exe"="D:\\Zapu\\Zapu\\wDivi.exe:*:Enabled:Zapu Control"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\53exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\53exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\39exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\39exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\2exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\2exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\76exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\76exinjs.a9.exe:*:Enabled:Microsoft Update"
"D:\\red faction\\rf.exe"="D:\\red faction\\rf.exe:*:Enabled:rf"
"D:\\Mohaa\\MOHAA.exe"="D:\\Mohaa\\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault(tm)"
"D:\\jeux videos\\Mohaa\\MOHAA.exe"="D:\\jeux videos\\Mohaa\\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault(tm)"
"D:\\jeux videos\\counter strike\\hl.exe"="D:\\jeux videos\\counter strike\\hl.exe:*:Enabled:Half-Life Launcher"
"D:\\jeux videos\\UrbanTerror\\ioUrbanTerror.exe"="D:\\jeux videos\\UrbanTerror\\ioUrbanTerror.exe:*:Enabled:ioUrbanTerror"
"D:\\Itunes\\iTunes.exe"="D:\\Itunes\\iTunes.exe:*:Enabled:iTunes"
"D:\\Lime Wire\\LimeWire\\LimeWire.exe"="D:\\Lime Wire\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"D:\\Skype\\Phone\\Skype.exe"="D:\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
Remaining Files:
---------------
Backups Folder: - C:\DOCUME~1\JEAN-P~1\Bureau\SDFix\backups\backups.zip
Files with Hidden Attributes:
C:\WINDOWS\system32\NTICDMK7.dll
C:\WINDOWS\system32\NTIMP3.dll
C:\WINDOWS\system32\NTIMPEG2.dll
C:\WINDOWS\system32\NTIFCD3.dll
C:\WINDOWS\system32\NTIBUN4.dll
C:\WINDOWS\system32\KGyGaAvL.sys
C:\System Volume Information\_restore{2DB37729-7E03-4F82-ADEF-4057C22A22C7}\RP267\A0041311.sys
C:\Documents and Settings\All Users\DRM\Cache\Indiv02.tmp
Finished
:
SDFix: Version 1.92
Run by Jean-Pierre on 2007-07-18 at 22:22
Microsoft Windows XP [version 5.1.2600]
Running From: C:\DOCUME~1\JEAN-P~1\Bureau\SDFix
Safe Mode:
Checking Services:
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Restoring Missing Security Center Service
Restoring Missing SharedAccess Service
Rebooting...
Normal Mode:
Checking Files:
Trojan Files Found:
C:\WINDOWS\antiv.exe - Deleted
Removing Temp Files...
ADS Check:
C:\WINDOWS
No streams found.
C:\WINDOWS\system32
No streams found.
C:\WINDOWS\system32\svchost.exe
No streams found.
C:\WINDOWS\system32\ntoskrnl.exe
No streams found.
Final Check:
Remaining Services:
------------------
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\\Jeux\\game.dat"="D:\\Jeux\\game.dat:*:Enabled:La Bataille pour la Terre du Milieu T II"
"D:\\Jeux\\silkroad\\Silkroad\\Silkroad.exe"="D:\\Jeux\\silkroad\\Silkroad\\Silkroad.exe:*:Enabled:Silkroad"
"D:\\Battle Field 2142\\BF2142.exe"="D:\\Battle Field 2142\\BF2142.exe:*:Enabled:Battlefield 2"
"C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Disabled:Logitech Desktop Messenger"
"D:\\eMule\\emule.exe"="D:\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"D:\\Jeux\\Medal Of Honor\\mohpa.exe"="D:\\Jeux\\Medal Of Honor\\mohpa.exe:*:Enabled:Medal of Honor Pacific Assault(tm)"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Disabled:LimeWire"
"D:\\bit torrent\\bittorrent.exe"="D:\\bit torrent\\bittorrent.exe:*:Enabled:BitTorrent"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\WINDOWS\\System32\\FXSCLNT.exe"="C:\\WINDOWS\\System32\\FXSCLNT.exe:*:Enabled:Microsoft Fax Console"
"C:\\Program Files\\MSN Messenger\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\MSN Messenger\\msnmsgr.exe:*:Enabled:Messenger"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"D:\\counter strike\\cz\\czero.exe"="D:\\counter strike\\cz\\czero.exe:*:Enabled:Condition Zero Launcher"
"D:\\Pes 6\\PES6.exe"="D:\\Pes 6\\PES6.exe:*:Enabled:pes6.exe"
"D:\\UrbanTerror\\ioUrbanTerror.exe"="D:\\UrbanTerror\\ioUrbanTerror.exe:*:Enabled:ioUrbanTerror"
"C:\\ijji\\ENGLISH\\u_sf\\soldierfront.exe"="C:\\ijji\\ENGLISH\\u_sf\\soldierfront.exe:*:Enabled:soldierfront"
"C:\\WINDOWS\\System32\\dpvsetup.exe"="C:\\WINDOWS\\System32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\\WINDOWS\\System32\\rundll32.exe"="C:\\WINDOWS\\System32\\rundll32.exe:*:Enabled:Ex‚cuter une DLL en tant qu'application"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\84exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\84exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\64exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\64exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\22exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\22exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\88exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\88exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\36exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\36exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\37exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\37exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\80exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\80exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\6exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\6exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\71exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\71exinjs.a9.exe:*:Enabled:Microsoft Update"
"D:\\Zapu\\Zapu\\wDivi.exe"="D:\\Zapu\\Zapu\\wDivi.exe:*:Enabled:Zapu Control"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\53exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\53exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\39exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\39exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\2exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\2exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\76exinjs.a9.exe"="C:\\DOCUME~1\\JEAN-P~1\\LOCALS~1\\Temp\\76exinjs.a9.exe:*:Enabled:Microsoft Update"
"D:\\red faction\\rf.exe"="D:\\red faction\\rf.exe:*:Enabled:rf"
"D:\\Mohaa\\MOHAA.exe"="D:\\Mohaa\\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault(tm)"
"D:\\jeux videos\\Mohaa\\MOHAA.exe"="D:\\jeux videos\\Mohaa\\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault(tm)"
"D:\\jeux videos\\counter strike\\hl.exe"="D:\\jeux videos\\counter strike\\hl.exe:*:Enabled:Half-Life Launcher"
"D:\\jeux videos\\UrbanTerror\\ioUrbanTerror.exe"="D:\\jeux videos\\UrbanTerror\\ioUrbanTerror.exe:*:Enabled:ioUrbanTerror"
"D:\\Itunes\\iTunes.exe"="D:\\Itunes\\iTunes.exe:*:Enabled:iTunes"
"D:\\Lime Wire\\LimeWire\\LimeWire.exe"="D:\\Lime Wire\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"D:\\Skype\\Phone\\Skype.exe"="D:\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
Remaining Files:
---------------
Backups Folder: - C:\DOCUME~1\JEAN-P~1\Bureau\SDFix\backups\backups.zip
Files with Hidden Attributes:
C:\WINDOWS\system32\NTICDMK7.dll
C:\WINDOWS\system32\NTIMP3.dll
C:\WINDOWS\system32\NTIMPEG2.dll
C:\WINDOWS\system32\NTIFCD3.dll
C:\WINDOWS\system32\NTIBUN4.dll
C:\WINDOWS\system32\KGyGaAvL.sys
C:\System Volume Information\_restore{2DB37729-7E03-4F82-ADEF-4057C22A22C7}\RP267\A0041311.sys
C:\Documents and Settings\All Users\DRM\Cache\Indiv02.tmp
Finished
:
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 22:45
18 juil. 2007 à 22:45
rapport combofix :
"Jean-Pierre" - 2007-07-18 22:43:20 - ComboFix 07-07-14.6 - Service Pack 2 [color=red][b]FAT32 [/b][/color]
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\WINDOWS\system32\components
((((((((((((((((((((((((( Files Created from 2007-06-18 to 2007-07-18 )))))))))))))))))))))))))))))))
2007-07-18 22:20 <REP> d-------- C:\WINDOWS\ERUNT
2007-07-18 22:11 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-18 22:07 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
2007-07-18 19:05 <REP> d-------- C:\Program Files\Navilog1
2007-07-18 14:43 <REP> d-------- C:\DOCUME~1\JEAN-P~1\Incomplete
2007-07-18 14:43 <REP> d-------- C:\DOCUME~1\JEAN-P~1\APPLIC~1\LimeWire
2007-07-17 17:09 54,960 --a------ C:\WINDOWS\system32\vsutil_loc040c.dll
2007-07-17 17:09 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2007-07-17 17:09 <REP> d-------- C:\WINDOWS\system32\ZoneLabs
2007-07-17 17:07 <REP> d-------- C:\WINDOWS\Internet Logs
2007-07-17 11:43 <REP> d-------- C:\Program Files\iPod
2007-07-17 11:42 <REP> d-------- C:\Program Files\QuickTime
2007-07-17 11:42 <REP> d-------- C:\Program Files\Apple Software Update
2007-07-17 11:41 <REP> d-------- C:\Program Files\Fichiers communs\Apple
2007-07-17 11:41 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
2007-07-17 11:22 <REP> d--hs---- C:\WINDOWS\ftpcache
2007-07-17 09:21 <REP> d-------- C:\Program Files\CONEXANT
2007-07-03 12:14 <REP> d-------- C:\Program Files\Adobe Photoshop CS3
2007-07-02 22:52 <REP> d-------- C:\DOCUME~1\JEAN-P~1\APPLIC~1\Corel
2007-07-02 22:52 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
2007-07-02 22:51 <REP> d-------- C:\Program Files\Fichiers communs\Corel
2007-07-02 22:51 <REP> d-------- C:\Program Files\Corel
2007-07-02 22:49 2,828 --ahs---- C:\WINDOWS\system32\KGyGaAvL.sys
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2007-07-17 14:54:44 726 ----a-w C:\WINDOWS\system32\tmp.reg
2007-07-16 19:22:30 77,160 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-07-16 19:22:30 471,312 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-05-29 16:42:00 20,480 ----a-w C:\WINDOWS\system32\H@tKeysH@@k.DLL
2007-05-29 16:32:30 -------- d-----w C:\Program Files\Share_Accelerator_MM
2007-05-24 12:28:24 -------- d-----w C:\Program Files\Fichiers communs\ANWSOFT
2007-05-24 12:28:04 -------- d-----w C:\Program Files\Fichiers communs\A&W
2007-05-18 13:57:46 552 ----a-w C:\WINDOWS\system32\d3d8caps.dat
2007-05-16 15:13:54 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-09 14:19:02 284 ----a-w C:\DOCUME~1\JEAN-P~1\APPLIC~1\ViewerApp.dat
2007-04-30 15:46:10 745,600 ----a-w C:\WINDOWS\system32\aswBoot.exe
2007-04-30 15:35:28 95,872 ----a-w C:\WINDOWS\system32\AVASTSS.scr
2007-04-25 14:22:36 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2006-12-09 01:56:46 278,528 ----a-w C:\Program Files\Fichiers communs\FDEUnInstaller.exe
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
2004-12-14 01:56 63136 --a------ c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0914953A-B6C0-42C3-983E-5213C64AFA9B}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
2005-05-31 01:04 853672 --a------ C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
2007-07-12 04:00 501136 --a------ C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{f4d74aaa-a178-4463-846b-b4bc87a024e0}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-05-30 12:11]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-04-30 17:42]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-06-29 06:24]
"iTunesHelper"="D:\Itunes\iTunesHelper.exe" [2007-07-10 09:18]
"Zone Labs Client"="D:\Zone Labs\ZoneAlarm\zlclient.exe" [2006-03-16 11:34]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 12:55]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 20:00]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll --a------ 2005-09-06 02:44 53248 c:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTWlgn.DLL
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"D:\QuickTime Alternative\qttask.exe" -atboottime
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"LBTServ"=2 (0x2)
"iPod Service"=3 (0x3)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{72880ed4-a621-11db-a644-0016d419e244}]
AutoRun\command- F:\autorun\autorun.exe
Contents of the 'Scheduled Tasks' folder
2007-07-18 20:00:02 C:\WINDOWS\tasks\B6ED309F9032DA4F.job
2007-07-18 15:02:02 C:\WINDOWS\tasks\AppleSoftwareUpdate.job
**************************************************************************
catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-18 22:44:43
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2007-07-18 22:45:22
--- E O F ---
"Jean-Pierre" - 2007-07-18 22:43:20 - ComboFix 07-07-14.6 - Service Pack 2 [color=red][b]FAT32 [/b][/color]
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\WINDOWS\system32\components
((((((((((((((((((((((((( Files Created from 2007-06-18 to 2007-07-18 )))))))))))))))))))))))))))))))
2007-07-18 22:20 <REP> d-------- C:\WINDOWS\ERUNT
2007-07-18 22:11 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-18 22:07 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
2007-07-18 19:05 <REP> d-------- C:\Program Files\Navilog1
2007-07-18 14:43 <REP> d-------- C:\DOCUME~1\JEAN-P~1\Incomplete
2007-07-18 14:43 <REP> d-------- C:\DOCUME~1\JEAN-P~1\APPLIC~1\LimeWire
2007-07-17 17:09 54,960 --a------ C:\WINDOWS\system32\vsutil_loc040c.dll
2007-07-17 17:09 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2007-07-17 17:09 <REP> d-------- C:\WINDOWS\system32\ZoneLabs
2007-07-17 17:07 <REP> d-------- C:\WINDOWS\Internet Logs
2007-07-17 11:43 <REP> d-------- C:\Program Files\iPod
2007-07-17 11:42 <REP> d-------- C:\Program Files\QuickTime
2007-07-17 11:42 <REP> d-------- C:\Program Files\Apple Software Update
2007-07-17 11:41 <REP> d-------- C:\Program Files\Fichiers communs\Apple
2007-07-17 11:41 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
2007-07-17 11:22 <REP> d--hs---- C:\WINDOWS\ftpcache
2007-07-17 09:21 <REP> d-------- C:\Program Files\CONEXANT
2007-07-03 12:14 <REP> d-------- C:\Program Files\Adobe Photoshop CS3
2007-07-02 22:52 <REP> d-------- C:\DOCUME~1\JEAN-P~1\APPLIC~1\Corel
2007-07-02 22:52 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
2007-07-02 22:51 <REP> d-------- C:\Program Files\Fichiers communs\Corel
2007-07-02 22:51 <REP> d-------- C:\Program Files\Corel
2007-07-02 22:49 2,828 --ahs---- C:\WINDOWS\system32\KGyGaAvL.sys
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2007-07-17 14:54:44 726 ----a-w C:\WINDOWS\system32\tmp.reg
2007-07-16 19:22:30 77,160 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-07-16 19:22:30 471,312 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-05-29 16:42:00 20,480 ----a-w C:\WINDOWS\system32\H@tKeysH@@k.DLL
2007-05-29 16:32:30 -------- d-----w C:\Program Files\Share_Accelerator_MM
2007-05-24 12:28:24 -------- d-----w C:\Program Files\Fichiers communs\ANWSOFT
2007-05-24 12:28:04 -------- d-----w C:\Program Files\Fichiers communs\A&W
2007-05-18 13:57:46 552 ----a-w C:\WINDOWS\system32\d3d8caps.dat
2007-05-16 15:13:54 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-09 14:19:02 284 ----a-w C:\DOCUME~1\JEAN-P~1\APPLIC~1\ViewerApp.dat
2007-04-30 15:46:10 745,600 ----a-w C:\WINDOWS\system32\aswBoot.exe
2007-04-30 15:35:28 95,872 ----a-w C:\WINDOWS\system32\AVASTSS.scr
2007-04-25 14:22:36 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2006-12-09 01:56:46 278,528 ----a-w C:\Program Files\Fichiers communs\FDEUnInstaller.exe
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
2004-12-14 01:56 63136 --a------ c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0914953A-B6C0-42C3-983E-5213C64AFA9B}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
2005-05-31 01:04 853672 --a------ C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
2007-07-12 04:00 501136 --a------ C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{f4d74aaa-a178-4463-846b-b4bc87a024e0}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-05-30 12:11]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-04-30 17:42]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-06-29 06:24]
"iTunesHelper"="D:\Itunes\iTunesHelper.exe" [2007-07-10 09:18]
"Zone Labs Client"="D:\Zone Labs\ZoneAlarm\zlclient.exe" [2006-03-16 11:34]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 12:55]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 20:00]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll --a------ 2005-09-06 02:44 53248 c:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTWlgn.DLL
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"D:\QuickTime Alternative\qttask.exe" -atboottime
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"LBTServ"=2 (0x2)
"iPod Service"=3 (0x3)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{72880ed4-a621-11db-a644-0016d419e244}]
AutoRun\command- F:\autorun\autorun.exe
Contents of the 'Scheduled Tasks' folder
2007-07-18 20:00:02 C:\WINDOWS\tasks\B6ED309F9032DA4F.job
2007-07-18 15:02:02 C:\WINDOWS\tasks\AppleSoftwareUpdate.job
**************************************************************************
catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-18 22:44:43
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2007-07-18 22:45:22
--- E O F ---
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 22:54
18 juil. 2007 à 22:54
je viens de faire tourner spybot et il ma supprimer 7 espions !! je sais pas si c ca qui merdait en tt cas je vais quand meme faire la suite de ton tuto { merci encore :)
jlpjlp
Messages postés
51574
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 042
18 juil. 2007 à 23:04
18 juil. 2007 à 23:04
ok je regarderai demain
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
18 juil. 2007 à 23:08
18 juil. 2007 à 23:08
ok moi ossi je vais me reposer la tete :p
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
19 juil. 2007 à 09:45
19 juil. 2007 à 09:45
je n'ai plus AUCUN problèmes !! merci t'es un vrai pote ! :p ils n'y a plus un seul lag depuis tout les scans etc ^^ a+
jlpjlp
Messages postés
51574
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 042
19 juil. 2007 à 10:02
19 juil. 2007 à 10:02
parfait recolle un hijackthis svp
lordak
Messages postés
45
Date d'inscription
mercredi 18 juillet 2007
Statut
Membre
Dernière intervention
13 août 2008
19 juil. 2007 à 11:42
19 juil. 2007 à 11:42
j'en ai marre !!!!! tout marchait tres tres bien et tout d'un coup au bout de 30 min ca a recommencer :( voila le rapport :
Logfile of HijackThis v1.99.1
Scan saved at 11:41:39, on 19/07/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\System32\svchost.exe
D:\Itunes\iTunesHelper.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Jean-Pierre\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0914953A-B6C0-42C3-983E-5213C64AFA9B} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {f4d74aaa-a178-4463-846b-b4bc87a024e0} - (no file)
O3 - Toolbar: (no name) - {18668683-731c-48fa-b1b9-ad013748fb00} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: (no name) - {5D956A61-05E7-427B-A2B1-BF32FB18B1BE} - (no file)
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\Itunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Zone Labs Client] D:\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\npjpi160_02.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\npjpi160_02.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin9USA.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw+0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - (no file)
O18 - Protocol: bwg0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwg0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Filter: text/x-mrml - {C51721BE-858B-4A66-A8BF-D2882FF49820} - C:\Program Files\Fichiers communs\A&W\MidRadio.ocx
O20 - Winlogon Notify: LBTWlgn - c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
Logfile of HijackThis v1.99.1
Scan saved at 11:41:39, on 19/07/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\System32\svchost.exe
D:\Itunes\iTunesHelper.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Jean-Pierre\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0914953A-B6C0-42C3-983E-5213C64AFA9B} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {f4d74aaa-a178-4463-846b-b4bc87a024e0} - (no file)
O3 - Toolbar: (no name) - {18668683-731c-48fa-b1b9-ad013748fb00} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: (no name) - {5D956A61-05E7-427B-A2B1-BF32FB18B1BE} - (no file)
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\Itunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Zone Labs Client] D:\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\npjpi160_02.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\npjpi160_02.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin9USA.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw+0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw-0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw00s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw10s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw20s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw30s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw40s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw50s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw60s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw70s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw80s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bw90s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwa0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwb0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwc0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwd0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwe0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwf0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - (no file)
O18 - Protocol: bwg0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwg0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwh0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwi0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwj0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwk0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwl0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwm0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwn0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwo0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwp0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwq0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwr0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bws0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwt0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwu0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwv0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bww0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwx0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwy0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: bwz0s - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {00A1BA7B-8828-472B-A9FC-4D9AA5AB8292} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Filter: text/x-mrml - {C51721BE-858B-4A66-A8BF-D2882FF49820} - C:\Program Files\Fichiers communs\A&W\MidRadio.ocx
O20 - Winlogon Notify: LBTWlgn - c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe