Sujet Précédent Sujet Suivant

E mails

Fermé
Florence - 13 mai 2008 à 17:00
 carlita - 6 févr. 2011 à 13:04
Bonjour,

Je reçois 700 mails par nuits (et autant le jour !) intitulés : failure notice ou mail delivery system...
Il semble que mon ordi envoie des mails à des adresses inconnues et que ces mails reviennent sur ma messagerie comme "non délivrés" !!
Je ne connais aucun de ces contacts, cela ressemble à un virus ...???

Merci de me dire si vous avez une solution pour arreter cette reception de mails.
A voir également:

17 réponses

Réponse 1 / 17
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
13 mai 2008 à 17:49
Bonjour,

télécharge GenProc http://www.alt-shift-return.org/Info/Fichiers/GenProc.zip sur ton bureau

dézippe le dossier, double-clique sur GenProc.bat et poste le contenu du rapport qui s'ouvre

Aide en images : http://www.alt-shift-return.org/Info/GenProc-HowTo.html
0
Florence
14 mai 2008 à 14:59
Bonjour,

Et un grand merci pour ton aide !

Voilà le rapport : j'attends les ordres !

Rapport GenProc 1.951 [1] effectué le 14/05/2008 à 14:55:50,25 - Windows XP

# Etape 1/ Télécharge :

- CCleaner https://www.ccleaner.com/ccleaner/download
Ce logiciel va permettre de supprimer tous les fichiers temporaires. Lance-le et clique sur "Options", "Avancé" et décoche la case "Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures". Par la suite, laisse-le avec ses réglages par défaut. Ferme le programme.

- MSNFix.zip (de !aur3n7) http://sosvirus.changelog.fr/MSNFix.zip et décompresse-le sur le Bureau.


***** Copie ce qui suit dans un fichier texte et redémarre en mode sans échec comme indiqué ici https://www.wekyo.com/demarrer-le-pc-en-mode-sans-echec-windows-7-et-8/ (choisis ta session courante "Administrateur") *****


# Etape 2/

Lance le fichier MSNFix.bat qui se trouve dans le dossier MSNfix, sur le bureau.
- Exécute l'option R.
- Si l'infection est détectée, exécute l'option N.
- Sauvegarde ce rapport sur ton bureau.

# Etape 3/

Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.

# Etape 4/

Redémarre normalement et poste, dans la même réponse :
- Un nouveau rapport HijackThis, toutes fenêtres et applications fermées http://www.trendsecure.com/portal/en-US/threat_analytics/HiJackThis.exe ;
- Le contenu du rapport MSNfix situé sur le Bureau ;


Précise les difficultés que tu as eu (ce que tu n'as pas pu faire...) ainsi que l'évolution de la situation.
0
Réponse 2 / 17
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
14 mai 2008 à 15:04
Suis la procédure entièrement
0
Florence
14 mai 2008 à 15:12
Merci !

J'essaie !!!
0
Florence
14 mai 2008 à 16:52
je n'arrive pas à redemarrer l'ordi en mode sans echec ! (pas de bip)
0
Florence
14 mai 2008 à 17:39
MSNFix 1.716

C:\Documents and Settings\Administrateur\Mes documents\MSNFix
Fix exécuté le 14/05/2008 - 17:07:20,12 By Administrateur
mode sans échec

************************ Recherche les fichiers présents

Aucun Fichier trouvé

************************ Recherche les dossiers présents

Aucun dossier trouvé


************************ Fichiers suspects

Aucun Fichier trouvé


************************ HKLM\...\Winlogon\Userinit

Userinit = C:\WINDOWS\system32\userinit.exe,
0
Florence
14 mai 2008 à 17:43
Bonjour,

J'ai fait toutes les manips et toujours des mails qui arrivent 5 à 6 mails toutes les minutes :

MSNFix 1.716

C:\Documents and Settings\Administrateur\Mes documents\MSNFix
Fix exécuté le 14/05/2008 - 17:07:20,12 By Administrateur
mode sans échec

************************ Recherche les fichiers présents

Aucun Fichier trouvé

************************ Recherche les dossiers présents

Aucun dossier trouvé


************************ Fichiers suspects

Aucun Fichier trouvé


************************ HKLM\...\Winlogon\Userinit

Userinit = C:\WINDOWS\system32\userinit.exe,




Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:32:28, on 14/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsgk32st.exe
C:\Program Files\Securitoo\Av_Fw\Anti-Virus\FSGK32.EXE
C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Securitoo\Av_Fw\Common\FSMB32.EXE
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Securitoo\Av_Fw\Common\FCH32.EXE
C:\Program Files\SPAMfighter\sfus.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsqh.exe
C:\Program Files\Securitoo\Av_Fw\Common\FAMEH32.EXE
C:\Program Files\Securitoo\Av_Fw\FSAUA\program\fsaua.exe
C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fssm32.exe
C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdfwd.exe
C:\Program Files\Securitoo\Av_Fw\FSAUA\program\fsus.exe
C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsav32.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Securitoo\Av_Fw\Common\FSM32.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Securitoo\Av_Fw\FSGUI\fsguidll.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [DefenseNetSurfage] "C:\Program Files\DefenseNetSurfage\GDC.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\Av_Fw\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\Av_Fw\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Securitoo\Av_Fw\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
0
Réponse 3 / 17
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
14 mai 2008 à 17:55
Oui c'est normal, rien n'a été trouvé à part sans doute un faux-positif. Il va donc fallir continuer de chercher la vilaine bête qui aurait décider de spammer la planète entière avec l'accord de ton PC

1. Télécharge le script "Silent Runners"
Clic droit > "enregistrer sous" (et non pas clic gauche) sur le lien suivant :
https://www.silentrunners.org/Silent%20Runners.vbs
clique ensuite 2 fois sur "yes"
Laisse lui le temps de faire son analyse (compte une minute, montre en main)
Poste le rapport généré qui se trouve dans le meme dossier que Silent Runners...

Si ton antivirus s'affole, autorise ce script. Ou au pire, désactive-le juste le temps du téléchargement et du scan. Ce script n'est pas dangereux.

2. Télécharge Avira AntiRootkit Tool et dézippe-le sur ton bureau. Ouvre le dossier antivir_rootkit créé, double-clique sur le fichier setup.exe, et suis les instructions d'installation du programme. Lorsque c'est terminé, lance l'outil par le menu démarrer / tous les programmes / Avira RootKit Detection / Avira RootKit Detection.
Vérifie que les cases "Scan files", "Scan registry", "Scan processes", "Scan all drives" et "Show progress" soient bien cochées. Clique à présent sur "Start scan" et patiente.
Lorsque le scan est terminé, clique sur "View report" et dans ta prochaine réponse, poste le contenu du rapport qui s'est ouvert.
0
Réponse 4 / 17
Florence
14 mai 2008 à 18:22
"Silent Runners.vbs", revision 57, https://www.silentrunners.org/
Operating System: Windows XP SP2
Output limited to non-default values, except where indicated by "{++}"


Startup items buried in registry:
---------------------------------

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"WOOKIT" = "C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=" [file not found]
"swg" = "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" ["Google Inc."]
"ctfmon.exe" = "C:\WINDOWS\system32\ctfmon.exe" [MS]
"WMPNSCFG" = "C:\Program Files\Windows Media Player\WMPNSCFG.exe" [MS]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++}
"Smapp" = "C:\Program Files\Analog Devices\SoundMAX\SMTray.exe" ["Analog Devices, Inc."]
"SetRefresh" = "C:\Program Files\Compaq\SetRefresh\SetRefresh.exe" ["Hewlett-Packard Company"]
"RoxioDragToDisc" = ""C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe"" ["Roxio"]
"QuickTime Task" = ""C:\Program Files\QuickTime\qttask.exe" -atboottime" ["Apple Computer, Inc."]
"iTunesHelper" = ""C:\Program Files\iTunes\iTunesHelper.exe"" ["Apple Computer, Inc."]
"igfxtray" = "C:\WINDOWS\system32\igfxtray.exe" ["Intel Corporation"]
"igfxpers" = "C:\WINDOWS\system32\igfxpers.exe" ["Intel Corporation"]
"igfxhkcmd" = "C:\WINDOWS\system32\hkcmd.exe" ["Intel Corporation"]
"HP Software Update" = "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" ["Hewlett-Packard Development Company, L.P."]
"DefenseNetSurfage" = ""C:\Program Files\DefenseNetSurfage\GDC.exe"" [file not found]
"Adobe Reader Speed Launcher" = ""C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"" ["Adobe Systems Incorporated"]
"F-Secure Manager" = ""C:\Program Files\Securitoo\Av_Fw\Common\FSM32.EXE" /splash" ["F-Secure Corporation"]
"F-Secure TNB" = ""C:\Program Files\Securitoo\Av_Fw\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW" ["F-Secure Corporation"]
"SPAMfighter Agent" = ""C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60" ["SPAMfighter ApS"]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Aide pour le lien d'Adobe PDF Reader"
\InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll" ["Adobe Systems Incorporated"]
{AA58ED58-01DD-4d91-8333-CF10577473F7}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Google Toolbar Helper"
\InProcServer32\(Default) = "c:\program files\google\googletoolbar3.dll" ["Google Inc."]
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Google Toolbar Notifier BHO"
\InProcServer32\(Default) = "C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll" ["Google Inc."]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Extension Affichage Panorama du Panneau de configuration"
-> {HKLM...CLSID} = "Extension Affichage Panorama du Panneau de configuration"
\InProcServer32\(Default) = "deskpan.dll" [file not found]
"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Extension icône HyperTerminal"
-> {HKLM...CLSID} = "HyperTerminal Icon Ext"
\InProcServer32\(Default) = "C:\WINDOWS\system32\hticons.dll" ["Hilgraeve, Inc."]
"{0873D142-79EF-49fa-81B5-211AAC0B0A7F}" = "Target Finder Shell Extension"
-> {HKLM...CLSID} = "TargetFinderShlExt Class"
\InProcServer32\(Default) = "C:\Program Files\Roxio\Easy Media Creator 7\Creator Classic\TargetFinder.dll" [empty string]
"{5E44E225-A408-11CF-B581-008029601108}" = "Roxio DragToDisc Shell Extension"
-> {HKLM...CLSID} = "Roxio DragToDisc Shell Extension"
\InProcServer32\(Default) = "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\Shellex.dll" ["Roxio"]
"{42042206-2D85-11D3-8CFF-005004838597}" = "Microsoft Office HTML Icon Handler"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\Program Files\Microsoft Office\OFFICE11\msohev.dll" [MS]
"{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF}" = "iTunes"
-> {HKLM...CLSID} = "iTunes"
\InProcServer32\(Default) = "C:\Program Files\iTunes\iTunesMiniPlayer.dll" ["Apple Computer, Inc."]
"{993BE281-6695-4BA5-8A2A-7AACBFAAB69E}" = "Microsoft Office Metadata Handler"
-> {HKLM...CLSID} = "Microsoft Office Metadata Handler"
\InProcServer32\(Default) = "C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\msoshext.dll" [MS]
"{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97}" = "Microsoft Office Thumbnail Handler"
-> {HKLM...CLSID} = "Microsoft Office Thumbnail Handler"
\InProcServer32\(Default) = "C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\msoshext.dll" [MS]
"{23170F69-40C1-278A-1000-000100020000}" = "7-Zip Shell Extension"
-> {HKLM...CLSID} = "7-Zip Shell Extension"
\InProcServer32\(Default) = "C:\Program Files\7-Zip\7-zip.dll" ["Igor Pavlov"]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\
"WPDShServiceObj" = "{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
-> {HKLM...CLSID} = "WPDShServiceObj Class"
\InProcServer32\(Default) = "C:\WINDOWS\system32\WPDShServiceObj.dll" [MS]

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\
<<!>> igfxcui\DLLName = "igfxdev.dll" ["Intel Corporation"]

HKLM\SOFTWARE\Classes\PROTOCOLS\Filter\
<<!>> text/xml\CLSID = "{807553E5-5146-11D5-A672-00B0D022E945}"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL" [MS]

HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\
{F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info"
-> {HKLM...CLSID} = "PDF Shell Extension"
\InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."]

HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\
7-Zip\(Default) = "{23170F69-40C1-278A-1000-000100020000}"
-> {HKLM...CLSID} = "7-Zip Shell Extension"
\InProcServer32\(Default) = "C:\Program Files\7-Zip\7-zip.dll" ["Igor Pavlov"]

HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\
7-Zip\(Default) = "{23170F69-40C1-278A-1000-000100020000}"
-> {HKLM...CLSID} = "7-Zip Shell Extension"
\InProcServer32\(Default) = "C:\Program Files\7-Zip\7-zip.dll" ["Igor Pavlov"]


Group Policies {GPedit.msc branch and setting}:
-----------------------------------------------

Note: detected settings may not have any effect.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\

"shutdownwithoutlogon" = (REG_DWORD) dword:0x00000001
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
Shutdown: Allow system to be shut down without having to log on}

"undockwithoutlogon" = (REG_DWORD) dword:0x00000001
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
Devices: Allow undock without having to log on}


Active Desktop and Wallpaper:
-----------------------------

Active Desktop may be disabled at this entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

Displayed if Active Desktop enabled and wallpaper not set by Group Policy:
HKCU\Software\Microsoft\Internet Explorer\Desktop\General\
"Wallpaper" = "C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft\Wallpaper1.bmp"

Displayed if Active Desktop disabled and wallpaper not set by Group Policy:
HKCU\Control Panel\Desktop\
"Wallpaper" = "C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\Wallpaper1.bmp"


Enabled Screen Saver:
---------------------

HKCU\Control Panel\Desktop\
"SCRNSAVE.EXE" = "C:\WINDOWS\system32\ssflwbox.scr" [MS]


Windows Portable Device AutoPlay Handlers
-----------------------------------------

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\

HPAutoplayExpress\
"Provider" = "Logiciel HP Photosmart Express"
"InvokeProgID" = "HpqUnApl.Autoplay"
"InvokeVerb" = "Express"
HKLM\SOFTWARE\Classes\HpqUnApl.Autoplay\shell\Express\DropTarget\CLSID = "{57FA3F08-E36E-4820-9CC4-122D46114993}"
-> {HKLM...CLSID} = (no title provided)
\LocalServer32\(Default) = "C:\Program Files\HP\Digital Imaging\Unload\HpqUnApl.exe" ["Hewlett-Packard"]

HPUnloadAutoplay\
"Provider" = "Logiciel de transfert HP Photosmart"
"InvokeProgID" = "HpqUnApl.Autoplay"
"InvokeVerb" = "Play"
HKLM\SOFTWARE\Classes\HpqUnApl.Autoplay\shell\Play\DropTarget\CLSID = "{E1A1C814-FD09-4c9d-BB4A-0394B836A1F0}"
-> {HKLM...CLSID} = (no title provided)
\LocalServer32\(Default) = "C:\Program Files\HP\Digital Imaging\Unload\HpqUnApl.exe" ["Hewlett-Packard"]

iTunesBurnCDOnArrival\
"Provider" = "iTunes"
"InvokeProgID" = "iTunes.BurnCD"
"InvokeVerb" = "burn"
HKLM\SOFTWARE\Classes\iTunes.BurnCD\shell\burn\command\(Default) = ""C:\Program Files\iTunes\iTunes.exe" /AutoPlayBurn "%L"" ["Apple Computer, Inc."]

iTunesImportSongsOnArrival\
"Provider" = "iTunes"
"InvokeProgID" = "iTunes.ImportSongsOnCD"
"InvokeVerb" = "import"
HKLM\SOFTWARE\Classes\iTunes.ImportSongsOnCD\shell\import\command\(Default) = ""C:\Program Files\iTunes\iTunes.exe" /AutoPlayImportSongs "%L"" ["Apple Computer, Inc."]

iTunesPlaySongsOnArrival\
"Provider" = "iTunes"
"InvokeProgID" = "iTunes.PlaySongsOnCD"
"InvokeVerb" = "play"
HKLM\SOFTWARE\Classes\iTunes.PlaySongsOnCD\shell\play\command\(Default) = ""C:\Program Files\iTunes\iTunes.exe" /playCD "%L"" ["Apple Computer, Inc."]

iTunesShowSongsOnArrival\
"Provider" = "iTunes"
"InvokeProgID" = "iTunes.ShowSongsOnCD"
"InvokeVerb" = "showsongs"
HKLM\SOFTWARE\Classes\iTunes.ShowSongsOnCD\shell\showsongs\command\(Default) = ""C:\Program Files\iTunes\iTunes.exe" /AutoPlayShowSongs "%L"" ["Apple Computer, Inc."]

IviDVDEventHandler\
"Provider" = "InterVideo WinDVD"
"InvokeProgID" = "Ivi.MediaFile"
"InvokeVerb" = "play"
HKLM\SOFTWARE\Classes\Ivi.MediaFile\shell\play\command\(Default) = ""C:\Program Files\InterVideo\WinDVD\WinDVD.exe" %1" ["InterVideo Inc."]

IviVideoCDHandler\
"Provider" = "InterVideo WinDVD"
"InvokeProgID" = "Ivi.MediaFile"
"InvokeVerb" = "play"
HKLM\SOFTWARE\Classes\Ivi.MediaFile\shell\play\command\(Default) = ""C:\Program Files\InterVideo\WinDVD\WinDVD.exe" %1" ["InterVideo Inc."]

MSWPDShellNamespaceHandler\
"Provider" = "@%SystemRoot%\System32\WPDShextRes.dll,-501"
"CLSID" = "{A55803CC-4D53-404c-8557-FD63DBA95D24}"
"InitCmdLine" = " "
-> {HKLM...CLSID} = "WPDShextAutoplay"
\LocalServer32\(Default) = "C:\WINDOWS\system32\WPDShextAutoplay.exe" [MS]

PictureProject\
"Provider" = "PictureProject"
"InvokeProgID" = "PictureProject"
"InvokeVerb" = "open"
HKLM\SOFTWARE\Classes\PictureProject\shell\open\command\(Default) = "C:\Program Files\Nikon\PictureProject\NkbTransfer.exe /D=%L" ["Nikon Corporation"]

RoxioCreatorPlayCDAudioOnArrival\
"Provider" = "Roxio Creator Classic"
"InvokeProgID" = "Creator7"
"InvokeVerb" = "open"
HKLM\SOFTWARE\Classes\Creator7\shell\open\Command\(Default) = "C:\Program Files\Roxio\Easy Media Creator 7\Creator Classic\creator7.exe" ["Roxio"]

RoxioDataAudioCD\
"Provider" = "Easy Media Creator 7 Basic Edition"
"InvokeProgID" = "RoxioDataHome"
"InvokeVerb" = "Get"
HKLM\SOFTWARE\Classes\RoxioDataHome\shell\Get\Command\(Default) = "C:\Program Files\Roxio\Easy Media Creator 7\Data Home Page\DataHomePageApp.exe" ["Roxio, Inc."]

RoxioDataBurning\
"Provider" = "Easy Media Creator 7 Basic Edition"
"InvokeProgID" = "RoxioDataHome"
"InvokeVerb" = "Get"
HKLM\SOFTWARE\Classes\RoxioDataHome\shell\Get\Command\(Default) = "C:\Program Files\Roxio\Easy Media Creator 7\Data Home Page\DataHomePageApp.exe" ["Roxio, Inc."]

RoxioDiscCopierPlayCDAudioOnArrival\
"Provider" = "Roxio Disc Copier"
"InvokeProgID" = "disccopier"
"InvokeVerb" = "open"
HKLM\SOFTWARE\Classes\disccopier\shell\open\Command\(Default) = "C:\Program Files\Roxio\Easy Media Creator 7\Disc Copier\DiscCopier7.exe" ["Roxio"]


Startup items in "Administrateur" & "All Users" startup folders:
----------------------------------------------------------------

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
"Démarrage rapide de HP Photosmart Premier" -> shortcut to: "C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe -s" [null data]
"HP Digital Imaging Monitor" -> shortcut to: "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" ["Hewlett-Packard Development Company, L.P."]
"NkbMonitor.exe" -> shortcut to: "C:\Program Files\Nikon\PictureProject\NkbMonitor.exe" ["Nikon Corporation"]


Enabled Scheduled Tasks:
------------------------

"AppleSoftwareUpdate" -> launches: "C:\Program Files\Apple Software Update\SoftwareUpdate.exe -Task" ["Apple Computer, Inc."]
"Scheduled scanning task" -> launches: "C:\PROGRA~1\SECURI~1\Av_Fw\ANTI-V~1\fsav.exe /HARD /POLICY /SCHED /NOBREAK /REPORT=C:\PROGRA~1\SECURI~1\Av_Fw\ANTI-V~1\report.txt " ["F-Secure Corporation"]


Winsock2 Service Provider DLLs:
-------------------------------

Namespace Service Providers

HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}
000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]
000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]

Transport Service Providers

HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}
0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:
%SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 11
%SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05


Toolbars, Explorer Bars, Extensions:
------------------------------------

Toolbars

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"
-> {HKLM...CLSID} = "&Google"
\InProcServer32\(Default) = "c:\program files\google\googletoolbar3.dll" ["Google Inc."]

HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}" = (no title provided)
-> {HKLM...CLSID} = "&Google"
\InProcServer32\(Default) = "c:\program files\google\googletoolbar3.dll" ["Google Inc."]

Explorer Bars

HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\

HKLM\SOFTWARE\Classes\CLSID\{FF059E31-CC5A-4E2E-BF3B-96E929D65503}\(Default) = "&Rechercher"
Implemented Categories\{00021493-0000-0000-C000-000000000046}\ [vertical bar]
InProcServer32\(Default) = "C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL" [MS]

Extensions (Tools menu items, main toolbar menu buttons)

HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\
"MenuText" = "Console Java (Sun)"
"CLSIDExtension" = "{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}"
-> {HKLM...CLSID} = "Java Plug-in 1.5.0"
\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll" ["Sun Microsystems, Inc."]

{92780B25-18CC-41C8-B9BE-3C9C571A8263}\
"ButtonText" = "Recherche"

{E2E2DD38-D088-4134-82B7-F2BA38496583}\
"MenuText" = "@xpsp3res.dll,-20001"
"Exec" = "%windir%\Network Diagnostic\xpnetdiag.exe" [MS]

{FB5F1910-F110-11D2-BB9E-00C04F795683}\
"ButtonText" = "Messenger"
"MenuText" = "Windows Messenger"
"Exec" = "C:\Program Files\Messenger\msmsgs.exe" [MS]


Running Services (Display Name, Service Name, Path {Service DLL}):
------------------------------------------------------------------

F-Secure Anti-Virus Firewall Daemon, FSDFWD, ""C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdfwd.exe"" ["F-Secure Corporation"]
F-Secure Automatic Update Agent, FSAUA, ""C:\Program Files\Securitoo\Av_Fw\FSAUA\program\fsaua.exe"" ["F-Secure Corporation"]
F-Secure Management Agent, FSMA, ""C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.EXE"" ["F-Secure Corporation"]
FSGKHS, F-Secure Gatekeeper Handler Starter, ""C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsgk32st.exe"" ["F-Secure Corporation"]
iPod Service, iPod Service, ""C:\Program Files\iPod\bin\iPodService.exe"" ["Apple Computer, Inc."]
LightScribeService Direct Disc Labeling Service, LightScribeService, ""C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe"" [empty string]
Pml Driver HPZ12, Pml Driver HPZ12, "C:\WINDOWS\system32\HPZipm12.exe" ["HP"]
Service Partage réseau du Lecteur Windows Media, WMPNetworkSvc, ""C:\Program Files\Windows Media Player\WMPNetwk.exe"" [MS]
SoundMAX Agent Service, SoundMAX Agent Service (default), "C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe" ["Analog Devices, Inc."]
SPAMfighter Update Service, SPAMfighter Update Service, ""C:\Program Files\SPAMfighter\sfus.exe"" ["SPAMfighter ApS"]


Print Monitors:
---------------

HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors\
HP Standard TCP/IP Port\Driver = "HpTcpMon.dll" ["Hewlett Packard"]
Microsoft Document Imaging Writer Monitor\Driver = "mdimon.dll" [MS]
PCL hpz3l054\Driver = "hpz3l054.dll" ["Hewlett-Packard Company"]


---------- (launch time: 2008-05-14 18:14:52)
<<!>>: Suspicious data at a malware launch point.

+ This report excludes default entries except where indicated.
+ To see *everywhere* the script checks and *everything* it finds,
launch it from a command prompt or a shortcut with the -all parameter.
+ To search all directories of local fixed drives for DESKTOP.INI
DLL launch points, use the -supp parameter or answer "No" at the
first message box and "Yes" at the second message box.
---------- (total run time: 50 seconds, including 10 seconds for message boxes)
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 17
Florence
14 mai 2008 à 18:41
Voilà qui est fait !

Petite précision : j'avais msn sur mon pc mais je l'ai désinstaller lorsque mes mails ont commencé à s'affoler !

Avira AntiRootkit Tool - Beta (1.0.1.17)

========================================================================================================
- Scan started mercredi 14 mai 2008 - 18:35:54
========================================================================================================

--------------------------------------------------------------------------------------------------------
Configuration:
--------------------------------------------------------------------------------------------------------
- [X] Scan files
- [X] Scan registry
- [X] Scan processes
- [ ] Fast scan
- Working disk total size : 74.52 GB
- Working disk free size : 58.87 GB (79 %)
--------------------------------------------------------------------------------------------------------

Results:
Value data mismatch : HKEY_USERS\S-1-5-21-2328175327-1156885562-3214993227-500\Software\SPAMfighter\Rules\Sender\Allow -> addresses

--------------------------------------------------------------------------------------------------------
Files: 0/53432
Registry items: 1/311138
Processes: 0/56
Scan time: 00:03:25
--------------------------------------------------------------------------------------------------------
Active processes:
- syvgrafj.exe (PID 2900) (Avira AntiRootkit Tool - Beta)
- System (PID 4)
- smss.exe (PID 668)
- csrss.exe (PID 716)
- winlogon.exe (PID 740)
- services.exe (PID 784)
- lsass.exe (PID 796)
- svchost.exe (PID 956)
- svchost.exe (PID 1040)
- svchost.exe (PID 1160)
- svchost.exe (PID 1252)
- svchost.exe (PID 1396)
- spoolsv.exe (PID 1572)
- fsgk32st.exe (PID 1692)
- fsgk32.exe (PID 1708)
- FSMA32.EXE (PID 1716)
- svchost.exe (PID 1768)
- LSSrvc.exe (PID 1784)
- FSMB32.EXE (PID 1792)
- HPZipm12.exe (PID 1900)
- SMAgent.exe (PID 1936)
- sfus.exe (PID 132)
- FCH32.EXE (PID 136)
- svchost.exe (PID 192)
- wmpnetwk.exe (PID 488)
- fsqh.exe (PID 600)
- FAMEH32.EXE (PID 620)
- fsaua.exe (PID 1180)
- fssm32.exe (PID 1216)
- fsdfwd.exe (PID 1376)
- alg.exe (PID 2136)
- fsus.exe (PID 2352)
- fsav32.exe (PID 3184)
- explorer.exe (PID 3956)
- SMTray.exe (PID 1476)
- DrgToDsc.exe (PID 2020)
- qttask.exe (PID 2416)
- iTunesHelper.exe (PID 688)
- igfxtray.exe (PID 2452)
- igfxpers.exe (PID 852)
- hkcmd.exe (PID 692)
- hpwuSchd2.exe (PID 2488)
- FSM32.EXE (PID 1992)
- iPodService.exe (PID 2640)
- SFAgent.exe (PID 2780)
- GoogleToolbarNotifier.exe (PID 2896)
- ctfmon.exe (PID 2912)
- wmpnscfg.exe (PID 2940)
- fsguidll.exe (PID 3260)
- hpqtra08.exe (PID 3368)
- NkbMonitor.exe (PID 1868)
- hpqimzone.exe (PID 3800)
- hpqste08.exe (PID 3324)
- msimn.exe (PID 3908)
- iexplore.exe (PID 3428)
- avirarkd.exe (PID 3736)
========================================================================================================
- Scan finished mercredi 14 mai 2008 - 18:39:19
========================================================================================================
0
Réponse 6 / 17
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
14 mai 2008 à 18:46
Télécharge [b]OAD[/b] http://sosvirus.changelog.fr/OAD.exe sur ton bureau, puis double clique sur OAD pour le lancer
- Nom de fichier à rechercher : syvgrafj
- Type de recherche : sélectionne l'option 6 puis valide par Entrée
OAD va maintenant rechercher le fichier. Laisse le travailler jusqu'à ce qu'il ait terminé : le rapport de recherche s'affichera automatiquement, colle-le dans ta prochaine réponse.

Note importante : Suivant la taille des disques dur cette recherche peut prendre plusieurs minutes.
0
Réponse 7 / 17
Florence
14 mai 2008 à 20:18
14/05/2008 ---- 20:15:58,68

----------------------------------
§§§§§§ [syvgrafj] §§§§§§
----------------------------------
[X] Registre

-------------- [ ] rapide
-- Fichier --- [ ] disque systeme
------------- [X] complete


********************
[Registre]
********************


[HKEY_USERS\S-1-5-21-2328175327-1156885562-3214993227-500\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\DOCUME~1\\ADMINI~1\\LOCALS~1\\Temp\\syvgrafj.exe"="Avira AntiRootkit Tool - Beta"

*******************
[Fichier]
*******************

c:\WINDOWS\Prefetch\SYVGRAFJ.EXE-0F1BEF2B.pf


*********************
[Même date]
*********************

[14/05/2008 ] --- REP ---> C:\Program Files\7-Zip
[14/05/2008 ] --- REP ---> C:\Program Files\Avira GmbH
[14/05/2008 ] --- REP ---> C:\Program Files\CCleaner
[14/05/2008 ] ---> C:\GenProc.txt
[14/05/2008 ] ---> C:\hiberfil.sys
[14/05/2008 ] ---> C:\HijackThis.exe
[14/05/2008 ] ---> C:\hijackthis.log
[14/05/2008 ] ---> C:\WINDOWS\0.log
[14/05/2008 ] ---> C:\WINDOWS\FSSTM.LOG
[14/05/2008 ] ---> C:\WINDOWS\msnfix.txt
[14/05/2008 ] ---> C:\WINDOWS\SchedLgU.Txt
[14/05/2008 ] ---> C:\WINDOWS\Sti_Trace.log
[14/05/2008 ] ---> C:\WINDOWS\system32\drivers\avipbb.sys
[14/05/2008 ] ---> C:\WINDOWS\system32\drivers\ssmdrv.sys
[14/05/2008 ] ---> C:\WINDOWS\wiadebug.log
[14/05/2008 ] ---> C:\WINDOWS\wiaservc.log
[14/05/2008 ] ---> C:\WINDOWS\WindowsUpdate.log



Outil Aide Diagnostic By !aur3n7 Version 1.1
----------------------------------
§§§§§ Fin Rapport §§§§§
-------------------------------
0
Réponse 8 / 17
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
14 mai 2008 à 20:23
il semblerait que ce fichier soit lié au scan avira, bref de toutes manières il n'y est plus.
Il n'y a rien de convaincant dans tous ces rapports. Depuis quand et quoi as-tu ces problèmes, et quel logiciel utilises-tu pour lire tes messages ?

poste un rapport Panda https://www.pandasecurity.com/?ref=www.pandasoftware.com/activescan/fr/activescan_principal.htm (il faut utiliser internet explorer)
0
Réponse 9 / 17
Florence
14 mai 2008 à 20:46
Bonsoir,

J'a eu ce problème il y a deux mois, mon pc est retourné chez le vendeur qui m'a installé un fichier "courrier non sollicité" mais qui n'a rien changé au problème de reception de mails, j'ai quand même constaté une légère diminution...je n'avais pas utilisé msn depuis longtemps et quand j'y suis retournée (sur msn), j'ai l'impression que les mails sont revenus à la charge, c'est pourquoi j'ai désinstallé msn... mais là c'est de pire en pire.

J'utilise outlook express

J'ai 4 adresses, 2 professionnelles (serveur : ns5.calami.com)et 2 privées (wanadoo et hotmail), une seule est infectée : une des deux professionnelles...

Bref, pour bosser, ça devient compliqué, ce qui m'inquiète c'est que ça s'agrave

Merci en tous cas de m'aider, mais vous faites cela pourquoi ?!
0
Réponse 10 / 17
Florence
14 mai 2008 à 22:52
Vous êtes infecté !



Nous avons détecté que la protection AntiVirus Firewall 7.00 de votre PC est activée et à jour.



Vous avez besoin d'une meilleure protection pour votre PC. Les solutions Panda vous protégeront contre plus de 3 millions de virus, logiciels espions et autres menaces.

Achetez Panda pour désinfecter et protéger votre PC !


















BASIC

Exporter vers :
Menaces avec désinfection gratuite (0)

Menaces désinfectées avec la version payante (2)
Niveau de risque faible (2) Cookie/Xiti Cookie de surveillance Latent(e) Afficher +Infos
1. C:\Documents and Settings\Administrateur\Cookies\administrateur@xiti[1].txt
2. C:\Documents and Settings\Alizée\Cookies\alizée@xiti[1].txt

Application/Pr... Application de surveillance Latent(e) Afficher +Infos
1. C:\Documents and Settings\Administrateur\Mes documents\MSNFix\incl\Process.exe
2. C:\Documents and Settings\Administrateur\Mes ...MSNFix.zip[MSNFix/incl/Process.exe]


Uniquement disponible en version payante.
Acheter - Je suis un client
Fichiers suspects (1)
C:\PROGRAM FILES\SECURITOO\AV_FW\FSGUI\FSAVURES.ENG
0
Réponse 11 / 17
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
15 mai 2008 à 07:23
Toujours rien.

Télécharge SREng (de Smallfrogs) : http://www.kztechs.com/eng/download.html
# Dézippe tout son contenu sur ton bureau (clic droit >Extraire ici).
# Ouvre le dossier SReng2 et double-clique sur SREngPS.exe.
# Clique sur "smart scan".
# Clique sur le bouton "scan".
# Quand l'analyse est terminée, clique sur le bouton "save reports".
# Sauvegarde alors le rapport sur ton bureau.
# Copie/colle le contenu du rapport SREnglLOG.log dans ta prochaine réponse.
0
Réponse 12 / 17
Florence
15 mai 2008 à 09:46
Bonjour,

628 mails dans ma boite ce matin !

[CODE]

2008-05-15,09:41:40

System Repair Engineer 2.5.16.900
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been choosed:
All Boot Items (Including Registry, Startup Folders, Services and so on)
Browser Add-ons
Runing Processes (Including process model information)
File Associations
Winsock Provider
Autorun.Inf
HOSTS File
Process Privileges Scan


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<WOOKIT><C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=> [N/A]
<swg><C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe> [(Verified)Google Inc]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<WMPNSCFG><C:\Program Files\Windows Media Player\WMPNSCFG.exe> [(Verified)Microsoft Windows Component Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Smapp><C:\Program Files\Analog Devices\SoundMAX\SMTray.exe> [Analog Devices, Inc.]
<SetRefresh><C:\Program Files\Compaq\SetRefresh\SetRefresh.exe> [Hewlett-Packard Company]
<RoxioDragToDisc><"C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe"> [Roxio]
<QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Computer, Inc.]
<iTunesHelper><"C:\Program Files\iTunes\iTunesHelper.exe"> [(Verified)"Apple Computer, Inc."]
<igfxtray><C:\WINDOWS\system32\igfxtray.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<igfxpers><C:\WINDOWS\system32\igfxpers.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<igfxhkcmd><C:\WINDOWS\system32\hkcmd.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<HP Software Update><C:\Program Files\HP\HP Software Update\HPWuSchd2.exe> [Hewlett-Packard Development Company, L.P.]
<DefenseNetSurfage><"C:\Program Files\DefenseNetSurfage\GDC.exe"> [N/A]
<Adobe Reader Speed Launcher><"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"> [(Verified)"Adobe Systems, Incorporated"]
<F-Secure Manager><"C:\Program Files\Securitoo\Av_Fw\Common\FSM32.EXE" /splash> [F-Secure Corporation]
<F-Secure TNB><"C:\Program Files\Securitoo\Av_Fw\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW> [F-Secure Corporation]
<SPAMfighter Agent><"C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
<WinlogonNotify: igfxcui><igfxdev.dll> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
<WinlogonNotify: WgaLogon><WgaLogon.dll> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<Carnet d'adresses 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
<N/A><c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install> [(Verified)Microsoft Corporation]

==================================
Startup Folders
[Démarrage rapide de HP Photosmart Premier]
<C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Démarrage rapide de HP Photosmart Premier.lnk --> C:\PROGRA~1\HP\DIGITA~1\bin\hpqthb08.exe [Hewlett-Packard Development Company, L.P.]><N>
[HP Digital Imaging Monitor]
<C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\HP Digital Imaging Monitor.lnk --> C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [Hewlett-Packard Development Company, L.P.]><N>
[NkbMonitor.exe]
<C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\NkbMonitor.exe.lnk --> C:\PROGRA~1\Nikon\PICTUR~1\NKBMON~1.EXE [Nikon Corporation]><N>

==================================
Services
[FSGKHS / F-Secure Gatekeeper Handler Starter][Running/Auto Start]
<"C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsgk32st.exe"><F-Secure Corporation>
[Windows Presentation Foundation Font Cache 3.0.0.0 / FontCache3.0.0.0][Stopped/Manual Start]
<c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe><Microsoft Corporation>
[F-Secure Automatic Update Agent / FSAUA][Running/Manual Start]
<"C:\Program Files\Securitoo\Av_Fw\FSAUA\program\fsaua.exe"><F-Secure Corporation>
[F-Secure Anti-Virus Firewall Daemon / FSDFWD][Running/Manual Start]
<"C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdfwd.exe"><F-Secure Corporation>
[F-Secure Management Agent / FSMA][Running/Auto Start]
<"C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.EXE"><F-Secure Corporation>
[Google Updater Service / gusvc][Stopped/Manual Start]
<"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
[Accès du périphérique d'interface utilisateur / HidServ][Stopped/Disabled]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[HP Port Resolver / HP Port Resolver][Stopped/Manual Start]
<C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE><Hewlett-Packard Company>
[HP Status Server / HP Status Server][Stopped/Manual Start]
<C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE><Hewlett-Packard Company>
[Windows CardSpace / idsvc][Stopped/Manual Start]
<"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"><Microsoft Corporation>
[iPod Service / iPod Service][Running/Manual Start]
<"C:\Program Files\iPod\bin\iPodService.exe"><Apple Computer, Inc.>
[LightScribeService Direct Disc Labeling Service / LightScribeService][Running/Auto Start]
<"C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe"><>
[Net.Tcp Port Sharing Service / NetTcpPortSharing][Stopped/Disabled]
<"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"><Microsoft Corporation>
[Pml Driver HPZ12 / Pml Driver HPZ12][Running/Auto Start]
<C:\WINDOWS\system32\HPZipm12.exe><HP>
[SoundMAX Agent Service / SoundMAX Agent Service (default)][Running/Auto Start]
<C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe><Analog Devices, Inc.>
[SPAMfighter Update Service / SPAMfighter Update Service][Running/Auto Start]
<"C:\Program Files\SPAMfighter\sfus.exe"><SPAMfighter ApS>

==================================
Drivers
[Service d'installation du pilote audio Intel(r) 82801 (WDM) / ac97intc][Stopped/Manual Start]
<system32\drivers\ac97intc.sys><Intel Corporation>
[adpu160m / adpu160m][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\adpu160m.sys><Microsoft Corporation>
[adpu320 / adpu320][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\adpu320.sys><Adaptec, Inc.>
[aeaudio / aeaudio][Running/Manual Start]
<system32\drivers\aeaudio.sys><Andrea Electronics Corporation>
[aic78u2 / aic78u2][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\aic78u2.sys><Microsoft Corporation>
[aic78xx / aic78xx][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\aic78xx.sys><Microsoft Corporation>
[avipbb / avipbb][Running/System Start]
<system32\DRIVERS\avipbb.sys><Avira GmbH>
[Broadcom NetXtreme Gigabit Ethernet / b57w2k][Running/Manual Start]
<system32\DRIVERS\b57xp32.sys><Broadcom Corporation>
[Broadcom Advanced Server Program Driver / Blfp][Stopped/Manual Start]
<system32\DRIVERS\baspxp32.sys><Broadcom Corporation>
[dpti2o / dpti2o][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\dpti2o.sys><Microsoft Corporation>
[Pilote de carte Intel (R) PRO / E100B][Stopped/Manual Start]
<system32\DRIVERS\e100b325.sys><Intel Corporation>
[F-Secure File System Filter / F-Secure Filter][Stopped/Disabled]
<\??\C:\Program Files\Securitoo\Av_Fw\Anti-Virus\Win2K\FSfilter.sys><>
[F-Secure Gatekeeper / F-Secure Gatekeeper][Running/Manual Start]
<\??\C:\Program Files\Securitoo\Av_Fw\Anti-Virus\minifilter\fsgk.sys><>
[F-Secure HIPS / F-Secure HIPS][Running/System Start]
<\??\C:\Program Files\Securitoo\Av_Fw\HIPS\fshs.sys><N/A>
[F-Secure File System Recognizer / F-Secure Recognizer][Stopped/Disabled]
<\??\C:\Program Files\Securitoo\Av_Fw\Anti-Virus\Win2K\FSrec.sys><>
[F-Secure Firewall Driver / FSFW][Running/Boot Start]
<\SystemRoot\System32\drivers\fsdfw.sys><F-Secure Corporation>
[GEARAspiWDM / GEARAspiWDM][Running/Manual Start]
<System32\Drivers\GEARAspiWDM.sys><GEAR Software Inc.>
[IEEE-1284.4 Driver HPZid412 / HPZid412][Running/Manual Start]
<system32\DRIVERS\HPZid412.sys><HP>
[Print Class Driver for IEEE-1284.4 HPZipr12 / HPZipr12][Running/Manual Start]
<system32\DRIVERS\HPZipr12.sys><HP>
[USB to IEEE-1284.4 Translation Driver HPZius12 / HPZius12][Running/Manual Start]
<system32\DRIVERS\HPZius12.sys><HP>
[i81x / i81x][Stopped/Manual Start]
<system32\DRIVERS\i81xnt5.sys><Intel(R) Corporation>
[iAimFP0 / iAimFP0][Stopped/Manual Start]
<system32\DRIVERS\wADV01nt.sys><Intel(R) Corporation>
[iAimFP1 / iAimFP1][Stopped/Manual Start]
<system32\DRIVERS\wADV02NT.sys><Intel(R) Corporation>
[iAimFP2 / iAimFP2][Stopped/Manual Start]
<system32\DRIVERS\wADV05NT.sys><Intel(R) Corporation>
[iAimFP3 / iAimFP3][Stopped/Manual Start]
<system32\DRIVERS\wSiINTxx.sys><Intel(R) Corporation>
[iAimFP4 / iAimFP4][Stopped/Manual Start]
<system32\DRIVERS\wVchNTxx.sys><Intel(R) Corporation>
[iAimFP5 / iAimFP5][Stopped/Manual Start]
<system32\DRIVERS\wADV07nt.sys><Intel(R) Corporation>
[iAimFP6 / iAimFP6][Stopped/Manual Start]
<system32\DRIVERS\wADV08nt.sys><Intel(R) Corporation>
[iAimFP7 / iAimFP7][Stopped/Manual Start]
<system32\DRIVERS\wADV09nt.sys><Intel(R) Corporation>
[iAimTV0 / iAimTV0][Stopped/Manual Start]
<system32\DRIVERS\wATV01nt.sys><Intel(R) Corporation>
[iAimTV1 / iAimTV1][Stopped/Manual Start]
<system32\DRIVERS\wATV02NT.sys><Intel(R) Corporation>
[iAimTV3 / iAimTV3][Stopped/Manual Start]
<system32\DRIVERS\wATV04nt.sys><Intel(R) Corporation>
[iAimTV4 / iAimTV4][Stopped/Manual Start]
<system32\DRIVERS\wCh7xxNT.sys><Intel(R) Corporation>
[iAimTV5 / iAimTV5][Stopped/Manual Start]
<system32\DRIVERS\wATV10nt.sys><Intel(R) Corporation>
[iAimTV6 / iAimTV6][Stopped/Manual Start]
<system32\DRIVERS\wATV06nt.sys><Intel(R) Corporation>
[ialm / ialm][Running/Manual Start]
<system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[Pilote de liaison parallèle directe / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
<\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[smwdm / smwdm][Running/Manual Start]
<system32\drivers\smwdm.sys><Analog Devices, Inc.>
[ssmdrv / ssmdrv][Running/System Start]
<system32\DRIVERS\ssmdrv.sys><Avira GmbH>
[symc810 / symc810][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\symc810.sys><Symbios Logic Inc.>
[symc8xx / symc8xx][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\symc8xx.sys><LSI Logic>
[Symmpi / Symmpi][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\symmpi.sys><LSI Logic>
[sym_hi / sym_hi][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\sym_hi.sys><LSI Logic>
[sym_u3 / sym_u3][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\sym_u3.sys><LSI Logic>
[ViaIde / ViaIde][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\viaide.sys><Microsoft Corporation>

==================================
Browser Add-ons
[Aide pour le lien d'Adobe PDF Reader]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Google Toolbar Helper]
{AA58ED58-01DD-4d91-8333-CF10577473F7} <c:\program files\google\googletoolbar3.dll, Google Inc.>
[Google Toolbar Notifier BHO]
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll, Google Inc.>
[Java Plug-in 1.5.0]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll, Sun Microsystems, Inc.>
[&Rechercher]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[]
{e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, N/A>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[&Google]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar3.dll, Google Inc.>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\LegitCheckControl.DLL, Microsoft Corporation>
[ActiveScan 2.0 Installer Class]
{2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} <C:\WINDOWS\Downloaded Program Files\as2stubie.dll, Panda Security>
[Java Plug-in 1.5.0]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0]
{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll, Sun Microsystems, Inc.>
[QuickTime Object]
{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Computer, Inc.>
[Aide pour le lien d'Adobe PDF Reader]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\LegitCheckControl.DLL, Microsoft Corporation>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[&Google]
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar3.dll, Google Inc.>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[Microsoft HTML Document 6.0]
{25336921-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[XML DOM Document]
{2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Fichiers communs\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[ActiveScan 2.0 Installer Class]
{2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} <C:\WINDOWS\Downloaded Program Files\as2stubie.dll, Panda Security>
[QuickTime Object]
{4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Computer, Inc.>
[ActiveScan 2.0 AV Class]
{41524153-46FB-488C-8E53-7624AB83C46F} <C:\Program Files\Panda Security\ActiveScan 2.0\as2guiie.dll, Panda Security>
[Microsoft Office Control]
{4453D895-F2A1-4A38-A285-1EF9BD3F6D5D} <C:\PROGRA~1\MICROS~2\OFFICE11\AUTHZAX.DLL, Microsoft Corporation>
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
[WUWebControl Class]
{6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[MUWebControl Class]
{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, Microsoft Corporation>
[Microsoft Web Browser]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
[XML DOM Document 4.0]
{88D969C0-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
[Free Threaded XML DOM Document 4.0]
{88D969C1-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
[XSL Template 4.0]
{88D969C3-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
[XML HTTP 4.0]
{88D969C5-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
[Google Toolbar Helper]
{AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar3.dll, Google Inc.>
[Google Toolbar Notifier BHO]
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll, Google Inc.>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[RDS.DataSpace]
{BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Fichiers communs\System\msadc\msadco.dll, Microsoft Corporation>
[Adobe PDF Reader]
{CA8A9780-280D-11CF-A24D-444553540000} <C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroPDF.dll, Adobe Systems, Inc.>
[AUDIO__MP3 Moniker Class]
{CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx, Adobe Systems, Inc.>
[QuickTimeCheck Class]
{DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx, Apple Computer, Inc.>
[AgControl Class]
{DFEAF541-F3E1-4C24-ACAC-99C30715084A} <c:\Program Files\Microsoft Silverlight\npctrl.1.0.30109.0.dll, Microsoft Corporation>
[XML HTTP Request]
{ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\system32\msxml3.dll, N/A>
[XML DOM Document 3.0]
{F5078F32-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, N/A>
[XML HTTP]
{F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, N/A>
[&Bloquer cette fenêtre publicitaire]
<F1910-F110-11D2-BB9E-00C04F795683}, N/A>
[E&xporter vers Microsoft Excel]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>

==================================
Running Processes
[PID: 668 / SYSTEM][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 716 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 740 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\WINDOWS\system32\WgaLogon.dll] [Microsoft Corporation, 1.5.0532.2]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 784 / SYSTEM][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\AppPatch\AcAdProc.dll] [Microsoft Corporation, 5.1.2600.3008 (xpsp.061004-0027)]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 796 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 952 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[PID: 1032 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[PID: 1144 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\System32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16640 (vista_gdr.080213-1606)]
[C:\WINDOWS\system32\wups2.dll] [Microsoft Corporation, 7.0.6000.381 (winmain(wmbla).070730-1740)]
[PID: 1248 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[PID: 1380 / SERVICE LOCAL][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16640 (vista_gdr.080213-1606)]
[PID: 1560 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[C:\WINDOWS\system32\HpTcpMon.dll] [Hewlett Packard, 6.01.00.009]
[C:\WINDOWS\system32\hpzjrd01.dll] [Hewlett Packard, 2.01.00.005]
[C:\WINDOWS\system32\HPTcpMUI.dll] [Microsoft Corporation, 6.01.00.009]
[C:\WINDOWS\system32\hptcpmib.dll] [Hewlett Packard, 6.01.00.009]
[C:\WINDOWS\system32\mdimon.dll] [Microsoft Corporation, 11.3.8166.2]
[C:\WINDOWS\system32\hpz3l054.dll] [Hewlett-Packard Company, 60.054.45.00]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp054.dll] [Hewlett-Packard Corporation, 60.054.45.00]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll] [Microsoft Corporation, 11.3.8166.2]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll] [Microsoft Corporation, 6.0.5824.16384 (winmain(wmbla).060911-0725)]
[PID: 1684 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsgk32st.exe] [F-Secure Corporation, 7.30.13110]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 1700 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\Anti-Virus\FSGK32.EXE] [F-Secure Corp., 7.50.13130.10133]
[c:\program files\securitoo\av_fw\common\fspmapi.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\common\fsma32s.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\avperf.dll] [F-Secure Corp., 6.70.12360.10133]
[C:\Program Files\Securitoo\Av_Fw\Scanner-Interface\fsgkiapi.dll] [F-Secure Corp., 6.60.12296.14989]
[C:\Program Files\Securitoo\Av_Fw\HIPS\fships.dll] [F-Secure Corporation, 2.02.119]
[c:\program files\securitoo\av_fw\common\fsma32.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\daas\fsclm.dll] [F-Secure Corporation, 2.2.11 ]
[PID: 1704 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.EXE] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\FSPMAPI.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\fsexc.dll] [F-Secure Corporation, 7.50.10035 ]
[PID: 1768 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\System32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[PID: 1784 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\Common\FSMB32.EXE] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\fsexc.dll] [F-Secure Corporation, 7.50.10035 ]
[PID: 1792 / SYSTEM][C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe] [, 1.0.17.4]
[C:\Program Files\Fichiers communs\LightScribe\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Fichiers communs\LightScribe\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 1900 / SYSTEM][C:\WINDOWS\system32\HPZipm12.exe] [HP, 10, 1, 1, 6]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[C:\WINDOWS\system32\HPZidr12.dll] [HP, 10, 1, 1, 5]
[PID: 1932 / SYSTEM][C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe] [Analog Devices, Inc., 3, 2, 6, 0]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 136 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\Common\FCH32.EXE] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\FSPMAPI.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\fsexc.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\FSPMENG.DLL] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\daas\fsclm.dll] [F-Secure Corporation, 2.2.11 ]
[PID: 132 / SYSTEM][C:\Program Files\SPAMfighter\sfus.exe] [SPAMfighter ApS, 1, 0, 0, 7]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16640 (vista_gdr.080213-1606)]
[C:\Program Files\SPAMfighter\sfsg.dll] [, 1.0.3.2]
[C:\Program Files\SPAMfighter\sfse.dll] [, 3.0.9.7]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 208 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\WINDOWS\system32\hpowiax2.dll] [Hewlett-Packard, 7.0.0.177]
[PID: 488 / SERVICE RÉSEAU][C:\Program Files\Windows Media Player\WMPNetwk.exe] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\wmpmde.dll] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\MFPlat.DLL] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\WINDOWS\system32\wmpps.dll] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 604 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsqh.exe] [F-Secure Corporation, 6.00.100 ]
[c:\program files\securitoo\av_fw\common\fsma32.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\common\fspmapi.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\Qrt.dll] [F-Secure Corporation, 1.01.12370]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 608 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\Common\FAMEH32.EXE] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\FSPMAPI.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\fslapi.dll] [F-Secure Corporation, 7.02.3140 ]
[C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\fsexc.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\AMEHEVN.DLL] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\AMEHLOG.DLL] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\AMEHSMT.DLL] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\AMEHTVL.DLL] [F-Secure Corporation, 7.50.10035 ]
[PID: 1172 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\FSAUA\program\fsaua.exe] [F-Secure Corporation, 8.21.1923 ]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16640 (vista_gdr.080213-1606)]
[c:\program files\securitoo\av_fw\common\fspmapi.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\common\fsma32.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 1228 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fssm32.exe] [F-Secure Corp., 7.50.13261.0]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\FM4AV.dll] [, ]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\avperf.dll] [F-Secure Corp., 6.70.12360.10133]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\avpproxy.dll] [F-Secure Corporation, 1.2.12160]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\avpfpi0.dll] [Kaspersky Lab, 7.0.171.8410]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\avp_iont.dll] [Kaspersky Labs, 5.0.0.0]
[C:\Program Files\Securitoo\Av_Fw\Anti-Spyware\LSSE.DLL] [Lavasoft, 1.0.35.0]
[C:\Program Files\Securitoo\Av_Fw\Gemini\fsgem.dll] [F-Secure Corporation, 1.00.148]
[C:\Program Files\Securitoo\Av_Fw\Gemini\fsgeme.dll] [F-Secure Corporation, 2.00.460]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fslfpi.dll] [F-Secure Corporation, 2.04.04]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\dffpi.dll] [F-Secure Corporation, 1.02.37]
[C:\Program Files\Securitoo\Av_Fw\Pegasus\fpinor.dll] [F-Secure Corporation, 1.20.13100]
[C:\Program Files\Securitoo\Av_Fw\Pegasus\NSE_W32.DLL] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\fsas.dll] [, ]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsuss.dll] [F-Secure Corporation, 2.0.13120]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsusscr.dll] [F-Secure Corporation, 2.0.13120]
[c:\program files\securitoo\av_fw\daas\fsclm.dll] [F-Secure Corporation, 2.2.11 ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\fspl58.dll] [, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\Socket\Socket.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\Time\HiRes\HiRes.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\Sys\Hostname\Hostname.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\Fcntl\Fcntl.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\POSIX\POSIX.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\MIME\Base64\Base64.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\File\Glob\Glob.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\dlib\auto\HTML\Parser\Parser.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\IO\IO.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\dlib\auto\Net\DNS\DNS.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\Win32\WinError\WinError.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\Win32\Registry\Registry.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\Cwd\Cwd.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\List\Util\Util.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\Digest\MD5\MD5.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\lib\auto\Compress\Zlib\Zlib.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\avpfpi1.dll] [Kaspersky Lab, 7.0.171.8410]
[PID: 1364 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdfwd.exe] [F-Secure Corporation, 6.16.61]
[c:\program files\securitoo\av_fw\common\fsma32.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\common\fspmapi.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\tnb\fstnb.dll] [F-Secure Corporation, 2.10.13134 ]
[c:\program files\securitoo\av_fw\common\fslapi.dll] [F-Secure Corporation, 7.02.3140 ]
[c:\program files\securitoo\av_fw\common\fswscs.dll] [F-Secure Corporation, 1.00.400]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsmirror.dll] [F-Secure Corporation, 2.00.378]
[c:\program files\securitoo\av_fw\scanner-interface\fsgkiapi.dll] [F-Secure Corp., 6.60.12296.14989]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsesperf.dll] [F-Secure Corporation, 2.00.378]
[C:\Program Files\Securitoo\Av_Fw\Common\fsdfwres.eng] [F-Secure Corporation, 6.16.61]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsfwperf.dll] [F-Secure Corporation, 6.16.61]
[c:\program files\securitoo\av_fw\fsaua\program\fsaua_api_dll.dll] [F-Secure Corporation, 8.21.1923 ]
[PID: 2080 / SERVICE LOCAL][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\System32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 2368 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\FSAUA\program\fsus.exe] [F-Secure Corporation, 8.21.1923 ]
[C:\Program Files\Securitoo\Av_Fw\FSAUA\program\fsbwups_.dll] [F-Secure Corporation, 8.21.1923 ]
[C:\Program Files\Securitoo\Av_Fw\FSAUA\program\fsaua_api_dll.dll] [F-Secure Corporation, 8.21.1923 ]
[c:\program files\securitoo\av_fw\common\fspmapi.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\common\fsma32.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\tnb\fstnb.dll] [F-Secure Corporation, 2.10.13134 ]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 3148 / Administrateur][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16640 (vista_gdr.080213-1606)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\WINDOWS\system32\ieframe.dll] [Microsoft Corporation, 7.00.6000.16640 (vista_gdr.080213-1606)]
[C:\WINDOWS\system32\WPDShServiceObj.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\Shellex.dll] [Roxio, 7.1.0.217 ]
[C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\Shellex.LOC] [Roxio, 7.1.0.217 ]
[C:\WINDOWS\system32\PortableDeviceTypes.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\PortableDeviceApi.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 92]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\fsscoepl.dll] [F-Secure Corporation, 1.02.6950]
[C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA] [Adobe Systems, Inc., 8.0.0.0]
[C:\Program Files\Securitoo\Av_Fw\Common\FSPMAPI.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\fpshx.eng] [, ]
[C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 8.0.0.2006102200]
[C:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510]
[C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 8.1.0.0]
[PID: 3756 / SYSTEM][C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsav32.exe] [F-Secure Corporation, 7.50.13130]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\FSCHED.dll] [F-Secure Corporation, 6.20.11460]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\FSTSM.DLL] [F-Secure Corporation, 5.40.8160]
[c:\program files\securitoo\av_fw\common\fsma32s.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\common\fspmapi.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\fswscs.dll] [F-Secure Corporation, 1.00.400]
[C:\Program Files\Securitoo\Av_Fw\TNB\fstnb.dll] [F-Secure Corporation, 2.10.13134 ]
[c:\program files\securitoo\av_fw\common\fslapi.dll] [F-Secure Corporation, 7.02.3140 ]
[C:\Program Files\Securitoo\Av_Fw\Anti-Virus\FSAVHRES.eng] [N/A, ]
[c:\program files\securitoo\av_fw\fsaua\program\fsaua_api_dll.dll] [F-Secure Corporation, 8.21.1923 ]
[c:\program files\securitoo\av_fw\common\fsma32.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\daas\fsclm.dll] [F-Secure Corporation, 2.2.11 ]
[PID: 4044 / Administrateur][C:\Program Files\Analog Devices\SoundMAX\SMTray.exe] [Analog Devices, Inc., 3, 2, 18, 0]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[PID: 1492 / Administrateur][C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe] [Roxio, 7.1.0.217 ]
[C:\WINDOWS\system32\CDRTC.DLL] [Roxio, 7.1.0.217 ]
[C:\WINDOWS\system32\cdral.DLL] [Roxio, 7.1.0.217 ]
[C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.LOC] [Roxio, 7.1.0.217 ]
[C:\Program Files\Fichiers communs\Roxio Shared\DLLShared\apm.dll] [, 1, 0, 0, 1]
[PID: 1516 / Administrateur][C:\Program Files\QuickTime\qttask.exe] [Apple Computer, Inc., 7.1.3]
[PID: 2024 / Administrateur][C:\Program Files\iTunes\iTunesHelper.exe] [Apple Computer, Inc., 7.0.2.16]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16640 (vista_gdr.080213-1606)]
[C:\Program Files\iTunes\iTunesHelper.Resources\fr.lproj\iTunesHelperLocalized.DLL] [Apple Computer, Inc., 7.0.2.1]
[C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL] [Apple Computer, Inc., 7.0.2.16]
[PID: 2152 / Administrateur][C:\WINDOWS\system32\igfxtray.exe] [Intel Corporation, 3.0.0.4396]
[C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.4396]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4396]
[C:\WINDOWS\system32\igfxres.dll] [Intel Corporation, 3.0.0.4396]
[C:\WINDOWS\system32\igfxress.dll] [Intel Corporation, 3.0.0.4396]
[PID: 2180 / Administrateur][C:\WINDOWS\system32\igfxpers.exe] [Intel Corporation, 3.0.0.4396]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4396]
[PID: 2076 / Administrateur][C:\WINDOWS\system32\hkcmd.exe] [Intel Corporation, 3.0.0.4396]
[C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.4396]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4396]
[C:\WINDOWS\system32\igfxres.dll] [Intel Corporation, 3.0.0.4396]
[PID: 2356 / Administrateur][C:\Program Files\HP\HP Software Update\HPWuSchd2.exe] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[PID: 2548 / Administrateur][C:\Program Files\Securitoo\Av_Fw\Common\FSM32.EXE] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\FSPMAPI.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\fslapi.dll] [F-Secure Corporation, 7.02.3140 ]
[C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\fsexc.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\about.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\Common\fsmres.eng] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\fsmuiav.dll] [F-Secure Corporation, 6, 80, 2540, 0]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\FSAVURES.ENG] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\TNB\fstnb.dll] [F-Secure Corporation, 2.10.13134 ]
[C:\Program Files\Securitoo\Av_Fw\FSAUA\program\fsauainfo.dll] [F-Secure Corporation, 8.21.1923 ]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\guilaunc.dll] [F-Secure Corporation, 6, 80, 2540, 0]
[C:\Program Files\Securitoo\Av_Fw\Common\fsmaui32.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Common\fsmaures.eng] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\fsscoepl.dll] [F-Secure Corporation, 1.02.6950]
[c:\program files\securitoo\av_fw\fsgui\fsscgui.dll] [F-Secure Corporation, 6, 80, 2540, 0]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\aboutres.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\strres.eng] [N/A, ]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 92]
[PID: 2324 / SYSTEM][C:\Program Files\iPod\bin\iPodService.exe] [Apple Computer, Inc., 7.0.2.16]
[C:\Program Files\iPod\bin\iPodService.Resources\fr.lproj\iPodServiceLocalized.DLL] [Apple Computer, Inc., 7.0.2.1]
[C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL] [Apple Computer, Inc., 7.0.2.16]
[PID: 2648 / Administrateur][C:\Program Files\SPAMfighter\SFAgent.exe] [SPAMfighter ApS, 1, 2, 3, 2]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16640 (vista_gdr.080213-1606)]
[C:\Program Files\SPAMfighter\sfsg.dll] [, 1.0.3.2]
[C:\Program Files\SPAMfighter\sfse.dll] [, 3.0.9.7]
[C:\Program Files\SPAMfighter\LazyMail.dll] [SPAMfighter ApS, 1, 1, 4, 4]
[C:\Program Files\SPAMfighter\Core.dll] [SPAMfighter ApS, 3, 1, 4, 0]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\fsscoepl.dll] [F-Secure Corporation, 1.02.6950]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 92]
[PID: 1192 / Administrateur][C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe] [Google Inc., 2, 0, 301, 1654]
[C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\gtn.dll] [Google Inc., 2, 0, 301, 7164]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16640 (vista_gdr.080213-1606)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\res_fr.dll] [Google Inc., 2, 0, 301, 7164]
[C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll] [Google Inc., 2, 0, 301, 7164]
[PID: 2704 / Administrateur][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[PID: 2816 / Administrateur][C:\Program Files\Windows Media Player\WMPNSCFG.exe] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\Program Files\Windows Media Player\wmpnssci.dll] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[PID: 3124 / Administrateur][C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\bin\hpqcxm08.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\bin\hpotra08.dll] [Hewlett-Packard Development Company, L.P., 70.0.219.000]
[C:\Program Files\HP\Digital Imaging\bin\hpotra08.rsc] [Hewlett-Packard Development Company, L.P., 70.0.219.000]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\fsscoepl.dll] [F-Secure Corporation, 1.02.6950]
[C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 92]
[C:\Program Files\HP\Digital Imaging\bin\hpotradd.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\bin\hpqrif08.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\Unload\hpnkhTA.dll] [Hewlett-Packard, 7.0.0.229]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\ATL71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71FRA.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\HP\Digital Imaging\bin\hpqmif08.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\bin\hpodvd09.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\bin\hpoddcomm09.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\WINDOWS\system32\hpzipr12.dll] [HP, 10, 1, 1, 5]
[C:\Program Files\HP\Digital Imaging\bin\hpocxi08.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\WINDOWS\system32\hpzidr12.dll] [HP, 10, 1, 1, 5]
[C:\Program Files\HP\Digital Imaging\bin\hpqusg.dll] [Hewlett-Packard Development Company, L.P., 70.0.172.000]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16640 (vista_gdr.080213-1606)]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdc.dll] [F-Secure Corporation, 6.16.61]
[PID: 3164 / Administrateur][C:\Program Files\Nikon\PictureProject\NkbMonitor.exe] [Nikon Corporation, 1, 7, 4, 3001]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71FRA.DLL] [Microsoft Corporation, 7.10.3077.0]
[PID: 1400 / Administrateur][C:\Program Files\Securitoo\Av_Fw\FSGUI\fsguidll.exe] [F-Secure Corporation, 6, 80, 2540, 0]
[C:\Program Files\Securitoo\Av_Fw\Common\fsexc.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\common\fslapi.dll] [F-Secure Corporation, 7.02.3140 ]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\guiplugn.dll] [F-Secure Corporation, 6, 80, 2540, 0]
[c:\program files\securitoo\av_fw\tnb\fstnb.dll] [F-Secure Corporation, 2.10.13134 ]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\flyer.dll] [F-Secure Corporation, 6, 80, 2540, 0]
[c:\program files\securitoo\av_fw\common\fsma32.dll] [F-Secure Corporation, 7.50.10035 ]
[c:\program files\securitoo\av_fw\common\fspmapi.dll] [F-Secure Corporation, 7.50.10035 ]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\fsavesui.dll] [F-Secure Corporation, 6, 80, 2540, 0]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\gres.dll] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\strres.eng] [N/A, ]
[C:\Program Files\Securitoo\Av_Fw\FSGUI\flyerres.eng] [N/A, ]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 92]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\fsscoepl.dll] [F-Secure Corporation, 1.02.6950]
[PID: 3880 / Administrateur][C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[C:\WINDOWS\system32\mscoree.dll] [Microsoft Corporation, 2.0.50727.1433 (REDBITS.050727-1400)]
[c:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll] [Microsoft Corporation, 1.1.4322.2407]
[c:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[c:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll] [Microsoft Corporation, 1.1.4322.2032]
[c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll] [Microsoft Corporation, 1.1.4322.2407]
[c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_53d9fcc8\mscorlib.dll] [N/A, ]
[c:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll] [Microsoft Corporation, 1.1.4322.2407]
[C:\Program Files\Securitoo\Av_Fw\Spam Control\fsscoepl.dll] [F-Secure Corporation, 1.02.6950]
[c:\windows\assembly\gac\hpqiface\4.0.0.0__a53cf5803f4c3827\hpqiface.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll] [Microsoft Corporation, 1.1.4322.2032]
[c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_f8fe70eb\system.windows.forms.dll] [N/A, ]
[c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll] [Microsoft Corporation, 1.1.4322.2032]
[c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_6655cad6\system.drawing.dll] [N/A, ]
[c:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL] [Microsoft Corporation, 1.1.4322.2407]
[c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll] [Microsoft Corporation, 1.1.4322.2407]
[c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_8b229e05\system.dll] [N/A, ]
[c:\windows\assembly\gac\hpqcc2\3.0.0.0__a53cf5803f4c3827\hpqcc2.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqutils\4.0.0.0__a53cf5803f4c3827\hpqutils.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqfmrsc\4.0.0.0__a53cf5803f4c3827\hpqfmrsc.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqtray\4.0.0.0__a53cf5803f4c3827\hpqtray.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqovskn\3.0.0.0__a53cf5803f4c3827\hpqovskn.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqthumb\3.0.0.0__a53cf5803f4c3827\hpqthumb.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqimvlt\3.0.0.0__a53cf5803f4c3827\hpqimvlt.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqimgrc\4.0.0.0__a53cf5803f4c3827\hpqimgrc.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\program files\hp\digital imaging\bin\fr\hpqimzone.resources.dll] [ , 065.000.099.000]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 92]
[c:\windows\assembly\gac\hpqntrop\4.0.0.0__a53cf5803f4c3827\hpqntrop.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\interop.hpqcxm08\3.0.0.0__a53cf5803f4c3827\interop.hpqcxm08.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[C:\Program Files\HP\Digital Imaging\bin\hpqcxm08.dll] [Hewlett-Packard Development Company, L.P., 70.0.170.000]
[c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll] [Microsoft Corporation, 1.1.4322.2032]
[c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_5e7a78f1\system.xml.dll] [N/A, ]
[c:\windows\assembly\gac\lead\13.0.0.113__9cf889f53ea9b907\lead.dll] [LEAD Technologies, Inc., 13.0.0.113]
[c:\windows\assembly\gac\lead.wrapper\13.0.0.113__9cf889f53ea9b907\lead.wrapper.dll] [LEAD Technologies, Inc., 13.0.0.113]
[C:\Program Files\HP\Digital Imaging\bin\ltkrn13n.dll] [LEAD Technologies, Inc., 13.0.0.098]
[c:\windows\assembly\gac\hpqtray.resources\4.0.0.0_fr_a53cf5803f4c3827\hpqtray.resources.dll] [ , 065.000.099.000]
[c:\windows\assembly\gac\hpqfmrsc.resources\4.0.0.0_fr_a53cf5803f4c3827\hpqfmrsc.resources.dll] [ , 065.000.099.000]
[c:\windows\assembly\gac\lead.windows.forms\13.0.0.113__9cf889f53ea9b907\lead.windows.forms.dll] [LEAD Technologies, Inc., 13.0.0.113]
[c:\windows\assembly\gac\lead.drawing\13.0.0.113__9cf889f53ea9b907\lead.drawing.dll] [LEAD Technologies, Inc., 13.0.0.113]
[c:\windows\assembly\gac\interop.hpqimgr\4.0.0.0__a53cf5803f4c3827\interop.hpqimgr.dll] [ , 4.0.0.0]
[C:\Program Files\HP\Digital Imaging\Bin\hpqimgr.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\ATL71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71FRA.DLL] [Microsoft Corporation, 7.10.3077.0]
[c:\windows\assembly\gac\hpqasset\4.0.0.0__a53cf5803f4c3827\hpqasset.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\program files\hp\digital imaging\bin\hpqmirsc.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\program files\hp\digital imaging\bin\fr\hpqmirsc.resources.dll] [ , 065.000.099.000]
[c:\windows\assembly\gac\hpqedit\3.0.0.0__a53cf5803f4c3827\hpqedit.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqvideo\3.0.0.0__a53cf5803f4c3827\hpqvideo.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\lead.windows.forms.drawingcontainer\13.0.0.113__9cf889f53ea9b907\lead.windows.forms.drawingcontainer.dll] [LEAD Technologies, Inc., 13.0.0.113]
[c:\windows\assembly\gac\hpqmdmr\4.0.0.0__a53cf5803f4c3827\hpqmdmr.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\lead.drawing.imaging.imageprocessing\13.0.0.113__9cf889f53ea9b907\lead.drawing.imaging.imageprocessing.dll] [LEAD Technologies, Inc., 13.0.0.113]
[c:\windows\assembly\gac\hpqimlib\3.0.0.0__a53cf5803f4c3827\hpqimlib.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqedit.resources\3.0.0.0_fr_a53cf5803f4c3827\hpqedit.resources.dll] [ , 065.000.099.000]
[c:\windows\assembly\gac\hpqglutl\4.0.0.0__a53cf5803f4c3827\hpqglutl.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqcc2.resources\3.0.0.0_fr_a53cf5803f4c3827\hpqcc2.resources.dll] [ , 065.000.099.000]
[c:\program files\hp\digital imaging\bin\fr\hpqvideo.resources.dll] [ , 065.000.099.000]
[c:\windows\assembly\gac\interop.hpqvideo\4.0.0.0__a53cf5803f4c3827\interop.hpqvideo.dll] [ , 4.0.0.0]
[C:\Program Files\HP\Digital Imaging\bin\hpqvdcom.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[C:\WINDOWS\system32\SYNCOR11.DLL] [SoundMAX, 1.2.3]
[c:\windows\assembly\gac\accessibility\1.0.5000.0__b03f5f7f11d50a3a\accessibility.dll] [Microsoft Corporation, 1.1.4322.573]
[c:\windows\assembly\gac\hpqprrsc\4.0.0.0__a53cf5803f4c3827\hpqprrsc.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqprrsc.resources\4.0.0.0_fr_a53cf5803f4c3827\hpqprrsc.resources.dll] [ , 065.000.099.000]
[c:\windows\assembly\gac\system.resources\1.0.5000.0_fr_b77a5c561934e089\system.resources.dll] [Microsoft Corporation, 1.1.4322.573]
[c:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_fr_b77a5c561934e089\mscorlib.resources.dll] [Microsoft Corporation, 1.1.4322.573]
[c:\windows\assembly\gac\interop.hprblog\3.0.0.0__a53cf5803f4c3827\interop.hprblog.dll] [ , 3.0.0.0]
[c:\windows\assembly\gac\hpqcprsc\3.0.0.0__a53cf5803f4c3827\hpqcprsc.dll] [Hewlett-Packard Development Company, L.P., 065.000.117.000]
[c:\windows\assembly\gac\hpqcprsc.resources\3.0.0.0_fr_a53cf5803f4c3827
0
Réponse 13 / 17
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
15 mai 2008 à 17:27
Sauf si j'ai loupé quelque chose, je ne vois pas d'anomalie dans ce rapport effrayant. Un autre scan en ligne, te sentiras-tu le courage ?

https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
0
Réponse 14 / 17
Florence
15 mai 2008 à 17:41
Mes mails arrivent au nombre de 10 par minute maintenant
C'est de la folie
Je suis entrain d'enregistrer les parametres de mon adresse sur un autre ordi pour voir si ça continue

Je te tiendrai au courant

Merci encore
0
Réponse 15 / 17
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
15 mai 2008 à 17:44
pt'et essayer de changer ton mot de passe de messagerie ?
0
Réponse 16 / 17
Florence
15 mai 2008 à 18:22
Alors, les dernières news de la planete SPAM ...
Sur l'autre pc les mails arrivent toujours en aussi grande quantité ...
Par conséquent je me permets de penser que le problème ne vient pas de mon pc (ai-je raison?)

Bon, pour le mot de passe de messagerie, encore faut-il que je sache le changer...

Je te tiens au courant

Je crois que je ne vais pas faire le dernier scan que tu m'as envoyé ...!!!???
0
Réponse 17 / 17
carlita
6 févr. 2011 à 13:04
je suis sur Yahoo mail.
Les mails que j'envoie à mon contact sur gmail reviennent avec 1 failure notice.
Pourquoi ? Que dois-je faire ?
0

Discussions similaires

Réglage pour réception Astra 19.2
10adamr -
10adamr -

4 réponses
erreur e11 epson xp 325
nikobopabo -
Sab -

8 réponses
Problème carte réseau Realtek 8822CE Wireless
Bebert9360 -
Bebert9360 -

8 réponses
"e" trema
wii 000 -
bachuss75 -

24 réponses
écrire "e" avec chapeau au clavier
von neuman -
123 -

49 réponses