Help me sil vous plait je n'y arrive plus...

Résolu

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention -
Utilisateur anonyme - 29 juil. 2008 à 18:40

Bonjour,
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:16:51, on 28/07/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\ServiceWrapper-6588780.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Motive\McciCMService.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
C:\PROGRA~1\ANTIVI~1\Anti-Spyware\fsaw.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Live Toolbar\msn_sl.exe
C:\Documents and Settings\SC\Bureau\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - (no file)
O2 - BHO: (no name) - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - (no file)
O2 - BHO: (no name) - {3F672B11-C155-4D51-B013-4AF8C162380D} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: (no name) - {CA32A693-EDFE-4371-B0E0-CEBE2E687458} - (no file)
O2 - BHO: (no name) - {DB036A52-3A88-466B-BD39-05A6D9D9B18A} - (no file)
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: fdkowvbp - {BF53502D-3BEF-4273-9925-89D7526A5F87} - C:\WINDOWS\fdkowvbp.dll (file missing)
O4 - HKLM\..\Run: [ClockGen] C:\Program Files\logiciele pour l'overclocking\ClockGen\ClockGen.exe -i p=0
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DelReg] C:\Program Files\MSI\DualCoreCenter\DelReg.exe
O4 - HKLM\..\Run: [PCShowBuzz] C:\Program Files\inKline Global\PCShowBuzz\PCShowBuzz.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [BM7bb3b43d] Rundll32.exe "C:\WINDOWS\system32\cuxcdksv.dll",s
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Miro] C:\Program Files\Participatory Culture Foundation\Miro\Miro.exe
O4 - HKCU\..\Run: [Sys281.exe] C:\Windows\Sys281.exe
O4 - HKCU\..\Run: [Sys282.exe] C:\Windows\Sys282.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm
O8 - Extra context menu item: Send by Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
O8 - Extra context menu item: Send via &Message... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://*.orange.fr
O15 - Trusted Zone: http://rw.search.ke.voila.fr
O15 - Trusted Zone: http://orange.weborama.fr
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070711/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15030/CTSUEng.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O16 - DPF: {B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} (TSEasyInstallX Control) - http://www.trendsecure.com/easy_install/_activex/fr/TSEasyInstallX.CAB
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - https://driveragent.com/files/driveragent.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15030/CTPID.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\WINDOWS\system32\skype4com.dll
O20 - Winlogon Notify: qoMccBut - qoMccBut.dll (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe (file missing)
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\ServiceWrapper-6588780.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Fichiers communs\Motive\McciCMService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Afficher la suite

A voir également:

Help me sil vous plait je n'y arrive plus...
Sil 3gp vidéos - Télécharger - Montage & Édition
Mon adresse email s'il vous plaît ✓ - Forum Mail
S'il te plait ne pars pas oh mon amour ✓ - Forum Cinéma / Télé
Comment dézoomer dans InDe sil vous plaît ??! - Forum Graphisme
Aide pour lettre de motivation sil vous plait ✓ - Forum Études / Formation High-Tech

96 réponses

Réponse 41 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

voilà le rapport

--------------------\\ Lop S&D 4.2.2-4 XP/Vista

[ Windows XP (NT 5.1) Build 2600, Service Pack 3 ]
[ USER : SC ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 29/07/2008 | 3:56:44,96 ] [ PC : ACER ]
[ MAJ : 25-07-2008 | 17:45 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Frag great bend logo\Wipe Skip.exe
Supprime! - C:\DOCUME~1\SC\Cookies\sc@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\SC\Cookies\sc@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\SC\Cookies\sc@2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\SC\Cookies\sc@www.2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Barb Info Hold Audio
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Frag great bend logo
Supprime! - C:\Program Files\Circle Developement

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[25/07/2008|04:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[25/06/2005|07:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[25/06/2005|07:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[25/07/2008|04:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[25/06/2005|07:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/06/2005|07:51] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec

[20/07/2008|04:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\118300.34
[16/06/2007|04:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[11/05/2007|22:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acoustica
[07/04/2008|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[06/07/2007|16:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[13/05/2008|00:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[30/04/2007|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bluetooth
[01/06/2007|23:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[08/07/2007|00:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CR2007
[03/10/2007|16:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative
[05/07/2007|03:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[25/06/2005|07:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[02/06/2008|13:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[22/04/2007|17:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eConsole
[05/03/2008|22:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ezsid.dat
[18/07/2008|16:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[25/07/2008|00:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GetRight.lst
[25/07/2008|00:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GetRight.snk
[15/06/2007|00:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[29/07/2008|00:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[30/05/2008|21:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GRFolder.ini
[24/07/2008|23:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GRGames.ini
[05/06/2007|22:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[06/06/2007|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[16/06/2007|19:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[25/07/2008|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[08/06/2008|03:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LogMeIn
[23/07/2008|18:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[03/06/2007|01:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[28/07/2008|21:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[17/08/2007|22:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[09/07/2008|18:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[24/07/2008|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Corporation
[18/07/2008|10:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[18/04/2008|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[21/04/2007|04:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NtiDvdCopy
[27/05/2007|03:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[21/04/2007|11:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[04/08/2007|01:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[19/09/2007|02:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Raxco
[05/03/2008|22:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[26/07/2008|11:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[06/10/2007|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SRS Labs
[31/07/2007|17:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[24/04/2006|00:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[20/07/2008|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trend Micro
[13/03/2008|21:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[17/05/2007|14:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[23/05/2007|02:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[04/07/2007|22:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[12/05/2008|15:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[07/09/2005|00:18] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[25/06/2005|07:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[25/06/2005|07:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[01/10/2007|00:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[04/07/2007|22:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[25/06/2005|07:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[25/05/2007|08:45] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[25/05/2007|08:45] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[25/06/2005|07:33] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[17/05/2007|23:16] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

[16/06/2007|04:43] C:\DOCUME~1\SC\APPLIC~1\ACD Systems
[11/05/2007|22:45] C:\DOCUME~1\SC\APPLIC~1\Acoustica
[04/03/2008|15:05] C:\DOCUME~1\SC\APPLIC~1\Adobe
[22/04/2007|17:54] C:\DOCUME~1\SC\APPLIC~1\AdobeUM
[12/12/2007|18:31] C:\DOCUME~1\SC\APPLIC~1\ArcSoft
[28/05/2008|01:29] C:\DOCUME~1\SC\APPLIC~1\ATI
[24/07/2008|22:30] C:\DOCUME~1\SC\APPLIC~1\Azureus
[29/05/2008|05:55] C:\DOCUME~1\SC\APPLIC~1\COAL TYPE DATE
[09/10/2007|15:25] C:\DOCUME~1\SC\APPLIC~1\CopyToDvd
[18/05/2008|21:29] C:\DOCUME~1\SC\APPLIC~1\Crae Interactives
[03/10/2007|17:03] C:\DOCUME~1\SC\APPLIC~1\Creative
[24/08/2007|05:00] C:\DOCUME~1\SC\APPLIC~1\CyberLink
[18/05/2008|01:45] C:\DOCUME~1\SC\APPLIC~1\DAEMON Tools
[16/05/2007|22:48] C:\DOCUME~1\SC\APPLIC~1\Datalayer
[25/06/2005|07:34] C:\DOCUME~1\SC\APPLIC~1\desktop.ini
[17/05/2007|05:35] C:\DOCUME~1\SC\APPLIC~1\DivX
[18/08/2007|23:54] C:\DOCUME~1\SC\APPLIC~1\EoRezo
[05/09/2007|01:53] C:\DOCUME~1\SC\APPLIC~1\F-Secure
[30/05/2008|21:19] C:\DOCUME~1\SC\APPLIC~1\GetRight
[23/05/2007|00:47] C:\DOCUME~1\SC\APPLIC~1\Google
[10/07/2007|21:21] C:\DOCUME~1\SC\APPLIC~1\gtopala
[10/07/2007|04:53] C:\DOCUME~1\SC\APPLIC~1\Help
[06/06/2007|11:41] C:\DOCUME~1\SC\APPLIC~1\HP
[25/06/2005|07:45] C:\DOCUME~1\SC\APPLIC~1\Identities
[25/04/2008|14:12] C:\DOCUME~1\SC\APPLIC~1\Image Zone Express
[26/07/2008|19:55] C:\DOCUME~1\SC\APPLIC~1\InstallShield
[23/05/2007|01:14] C:\DOCUME~1\SC\APPLIC~1\internaldb41.dat
[23/05/2007|02:21] C:\DOCUME~1\SC\APPLIC~1\internaldb6334.dat
[23/05/2007|01:14] C:\DOCUME~1\SC\APPLIC~1\internaldb8467.dat
[02/03/2008|20:42] C:\DOCUME~1\SC\APPLIC~1\InterTrust
[04/09/2007|20:12] C:\DOCUME~1\SC\APPLIC~1\ispnews
[26/05/2007|14:47] C:\DOCUME~1\SC\APPLIC~1\ItsLabel
[01/05/2008|23:11] C:\DOCUME~1\SC\APPLIC~1\JLC's Software
[04/09/2007|19:31] C:\DOCUME~1\SC\APPLIC~1\Lavasoft
[10/03/2006|16:39] C:\DOCUME~1\SC\APPLIC~1\Leadertech
[21/04/2007|20:15] C:\DOCUME~1\SC\APPLIC~1\Macromedia
[28/07/2008|21:12] C:\DOCUME~1\SC\APPLIC~1\Malwarebytes
[18/05/2008|01:10] C:\DOCUME~1\SC\APPLIC~1\Microsoft
[18/04/2008|17:47] C:\DOCUME~1\SC\APPLIC~1\Motive
[23/05/2007|01:18] C:\DOCUME~1\SC\APPLIC~1\Mozilla
[12/06/2007|12:09] C:\DOCUME~1\SC\APPLIC~1\MSNInstaller
[17/05/2007|04:35] C:\DOCUME~1\SC\APPLIC~1\NetMedia Providers
[29/07/2007|01:21] C:\DOCUME~1\SC\APPLIC~1\NMM-MetaData.db
[22/04/2007|15:27] C:\DOCUME~1\SC\APPLIC~1\Nokia
[16/05/2007|13:25] C:\DOCUME~1\SC\APPLIC~1\Nokia Multimedia Player
[30/06/2007|01:37] C:\DOCUME~1\SC\APPLIC~1\OpenOffice.org2
[26/04/2008|21:28] C:\DOCUME~1\SC\APPLIC~1\OtakuSoftware
[26/07/2008|20:22] C:\DOCUME~1\SC\APPLIC~1\Participatory Culture Foundation
[21/04/2007|11:12] C:\DOCUME~1\SC\APPLIC~1\PC Suite
[23/05/2007|01:10] C:\DOCUME~1\SC\APPLIC~1\PC Tools
[26/07/2008|20:30] C:\DOCUME~1\SC\APPLIC~1\PCF-VLC
[29/04/2008|15:01] C:\DOCUME~1\SC\APPLIC~1\pcouffin.cat
[29/04/2008|15:01] C:\DOCUME~1\SC\APPLIC~1\pcouffin.inf
[29/04/2008|15:01] C:\DOCUME~1\SC\APPLIC~1\pcouffin.log
[29/04/2008|15:01] C:\DOCUME~1\SC\APPLIC~1\pcouffin.sys
[04/09/2007|20:14] C:\DOCUME~1\SC\APPLIC~1\PEX
[17/05/2007|04:35] C:\DOCUME~1\SC\APPLIC~1\Publish Providers
[26/07/2008|20:21] C:\DOCUME~1\SC\APPLIC~1\Real
[19/05/2008|02:28] C:\DOCUME~1\SC\APPLIC~1\Screaming Bee
[27/04/2008|18:48] C:\DOCUME~1\SC\APPLIC~1\Skype
[27/04/2008|16:22] C:\DOCUME~1\SC\APPLIC~1\skypePM
[17/05/2007|04:35] C:\DOCUME~1\SC\APPLIC~1\Sony
[30/03/2008|15:07] C:\DOCUME~1\SC\APPLIC~1\SoundSpectrum
[22/04/2007|18:00] C:\DOCUME~1\SC\APPLIC~1\Sun
[11/06/2007|17:31] C:\DOCUME~1\SC\APPLIC~1\Symantec
[23/05/2007|01:19] C:\DOCUME~1\SC\APPLIC~1\Talkback
[09/01/2007|14:57] C:\DOCUME~1\SC\APPLIC~1\Template
[13/05/2008|14:10] C:\DOCUME~1\SC\APPLIC~1\Todae
[13/03/2008|21:57] C:\DOCUME~1\SC\APPLIC~1\TuneUp Software
[16/03/2008|01:42] C:\DOCUME~1\SC\APPLIC~1\U3
[01/06/2007|20:51] C:\DOCUME~1\SC\APPLIC~1\Uniblue
[17/06/2007|03:14] C:\DOCUME~1\SC\APPLIC~1\vlc
[29/04/2008|15:01] C:\DOCUME~1\SC\APPLIC~1\Vso

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[24/04/2006 00:01][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
[29/07/2008 02:38][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[31/07/2007 16:26][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[24/04/2006 00:16][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[22/05/2007|09:44] C:\Program Files\2kxpinf
[23/04/2008|22:46] C:\Program Files\ABF software
[25/06/2005|19:15] C:\Program Files\acer
[15/05/2007|19:50] C:\Program Files\Acoustica Mixcraft 3
[25/07/2008|06:43] C:\Program Files\Acoustica Mixcraft 4
[10/05/2008|15:17] C:\Program Files\Acoustica Shared Effects
[04/02/2008|10:03] C:\Program Files\Activision
[13/07/2008|00:13] C:\Program Files\Adobe
[27/05/2007|06:04] C:\Program Files\AnalogX
[18/07/2008|16:12] C:\Program Files\AntivirusFirewall
[14/08/2007|04:01] C:\Program Files\AskPBar
[09/06/2008|17:43] C:\Program Files\ATI
[24/07/2008|14:40] C:\Program Files\ATI Technologies
[25/07/2008|06:43] C:\Program Files\AV Vcs 6.0 DIAMOND
[25/07/2008|06:43] C:\Program Files\AV Vcs 6.0 GOLD
[30/05/2008|20:24] C:\Program Files\AviSynth 2.5
[03/07/2008|20:07] C:\Program Files\Azureus
[26/07/2008|20:26] C:\Program Files\Babelgum
[23/04/2008|22:46] C:\Program Files\BOINC
[03/06/2007|01:32] C:\Program Files\Boonty
[03/06/2007|21:13] C:\Program Files\Buzz
[29/05/2008|05:54] C:\Program Files\COAL TYPE DATE
[16/06/2007|05:27] C:\Program Files\Corel
[04/04/2006|16:16] C:\Program Files\COREL40
[15/05/2008|01:14] C:\Program Files\CPUCooL
[18/05/2008|21:26] C:\Program Files\Crae Interactives
[03/10/2007|17:43] C:\Program Files\Creative
[24/08/2007|16:50] C:\Program Files\CyberLink
[18/05/2008|14:16] C:\Program Files\DAEMON Tools Lite
[09/03/2008|23:45] C:\Program Files\Data
[21/04/2007|11:13] C:\Program Files\DIFX
[04/05/2007|00:29] C:\Program Files\directx
[02/07/2008|04:06] C:\Program Files\DivX
[17/05/2007|04:40] C:\Program Files\DivXInstaller.exe
[22/10/2007|03:31] C:\Program Files\DSETUP.dll
[22/10/2007|03:31] C:\Program Files\dsetup32.dll
[09/07/2008|20:03] C:\Program Files\EA GAMES
[26/07/2008|20:33] C:\Program Files\Easy-TV
[31/07/2007|15:43] C:\Program Files\E-Color
[18/05/2008|19:26] C:\Program Files\Electronic Arts
[09/06/2008|20:01] C:\Program Files\eMule
[02/06/2007|23:08] C:\Program Files\eoRezo
[30/05/2008|20:23] C:\Program Files\ffdshow
[29/07/2008|02:53] C:\Program Files\Fichiers communs
[24/07/2008|17:11] C:\Program Files\FreshDevices
[24/08/2007|19:21] C:\Program Files\Futuremark
[18/05/2008|18:13] C:\Program Files\GameSpy
[25/07/2008|06:43] C:\Program Files\GameSpy Arcade
[29/03/2007|14:05] C:\Program Files\GEOSPACW
[25/07/2008|06:43] C:\Program Files\GetRight
[25/07/2008|20:17] C:\Program Files\Google
[30/06/2007|21:56] C:\Program Files\Graphex3
[17/07/2008|01:57] C:\Program Files\Hair Pro 2008 Light
[11/05/2007|23:44] C:\Program Files\Help
[09/07/2007|21:20] C:\Program Files\Hercules
[05/06/2007|22:46] C:\Program Files\Hewlett-Packard
[05/06/2007|22:53] C:\Program Files\HP
[07/06/2007|19:26] C:\Program Files\hp deskjet 3820 series
[17/07/2008|17:49] C:\Program Files\Incomplete
[02/06/2007|00:52] C:\Program Files\InfraRecorder
[26/07/2008|20:19] C:\Program Files\inKline Global
[28/07/2008|02:01] C:\Program Files\InstallShield Installation Information
[20/07/2008|20:34] C:\Program Files\Internet Explorer
[24/05/2007|14:07] C:\Program Files\Inventel
[25/07/2008|06:43] C:\Program Files\i-ScanCam DX
[14/05/2008|21:50] C:\Program Files\IVT Corporation
[09/10/2007|15:05] C:\Program Files\Java
[12/05/2008|17:48] C:\Program Files\Jeskola Buzz
[16/06/2007|19:25] C:\Program Files\Kodak
[28/05/2008|00:29] C:\Program Files\Lavalys
[25/07/2008|18:14] C:\Program Files\Lavasoft
[17/07/2008|17:49] C:\Program Files\LimeWire
[24/08/2007|18:21] C:\Program Files\logiciele pour l'overclocking
[29/08/2007|17:21] C:\Program Files\logiciele pour l'overclocking0
[23/07/2008|18:34] C:\Program Files\ma-config.com
[16/06/2007|03:07] C:\Program Files\Macrogaming
[28/07/2008|21:12] C:\Program Files\Malwarebytes' Anti-Malware
[28/05/2008|01:22] C:\Program Files\Marvell
[06/07/2008|20:41] C:\Program Files\Maxis
[10/05/2008|15:10] C:\Program Files\MediaCoder
[31/07/2007|15:45] C:\Program Files\MediaRing Dialer
[12/05/2008|17:48] C:\Program Files\Messenger
[02/04/2008|01:49] C:\Program Files\Messenger Plus! Live
[24/05/2007|15:25] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[25/06/2005|07:37] C:\Program Files\microsoft frontpage
[04/02/2008|21:01] C:\Program Files\Microsoft Office
[04/03/2008|23:29] C:\Program Files\Microsoft SQL Server Compact Edition
[04/02/2008|21:01] C:\Program Files\Microsoft Visual Studio
[04/02/2008|20:55] C:\Program Files\Microsoft Visual Studio 8
[24/07/2008|21:47] C:\Program Files\Microsoft Windows Vista Upgrade Advisor
[12/05/2008|17:48] C:\Program Files\Microsoft Works
[04/02/2008|21:00] C:\Program Files\Microsoft.NET
[19/09/2007|18:09] C:\Program Files\mis … jours de bios
[13/05/2007|13:03] C:\Program Files\Misc
[20/05/2008|23:52] C:\Program Files\Movie Maker
[28/07/2008|17:30] C:\Program Files\Mozilla Firefox
[02/05/2008|00:41] C:\Program Files\MP3Gain
[04/02/2008|21:01] C:\Program Files\MSBuild
[13/04/2008|20:48] C:\Program Files\MSECache
[26/07/2008|15:14] C:\Program Files\MSI
[12/06/2007|12:09] C:\Program Files\MSN
[25/06/2005|07:35] C:\Program Files\MSN Gaming Zone
[05/07/2007|02:54] C:\Program Files\msn1
[06/06/2007|11:36] C:\Program Files\MSXML 4.0
[02/05/2008|01:40] C:\Program Files\NetMeeting
[01/06/2007|20:31] C:\Program Files\NewSoft
[25/06/2005|07:48] C:\Program Files\NewTech Infosystems
[15/05/2007|20:02] C:\Program Files\Nokia
[07/06/2007|00:25] C:\Program Files\Norton AntiVirus
[24/07/2008|19:54] C:\Program Files\Nouveau Dossier compress‚.zip
[11/09/2007|20:16] C:\Program Files\NVIDIA
[08/07/2008|04:03] C:\Program Files\OpenAL
[25/01/2007|14:49] C:\Program Files\OpenOffice.org 2.0
[25/07/2008|06:44] C:\Program Files\Orange
[18/04/2008|17:43] C:\Program Files\OrangeHSS
[11/05/2007|23:44] C:\Program Files\OtsFiles
[24/08/2007|16:57] C:\Program Files\OtsLabs
[20/05/2008|23:52] C:\Program Files\Outlook Express
[21/06/2007|22:49] C:\Program Files\PC Camera
[28/07/2008|01:56] C:\Program Files\PeerTV
[08/09/2007|16:27] C:\Program Files\Photo Story 3 for Windows
[17/05/2007|04:11] C:\Program Files\PhotoFiltre
[17/06/2007|03:07] C:\Program Files\PhotoFiltre0
[21/04/2008|12:41] C:\Program Files\Picasa2
[26/07/2008|11:03] C:\Program Files\PowerStrip
[18/08/2007|21:15] C:\Program Files\Prime95
[20/05/2008|23:56] C:\Program Files\Raveille
[28/07/2007|18:31] C:\Program Files\RayV
[30/05/2008|01:33] C:\Program Files\RC410-M2(3.0)pilote audio
[30/05/2008|01:33] C:\Program Files\Realtek
[26/07/2008|18:28] C:\Program Files\Registry Mechanic
[26/07/2008|02:37] C:\Program Files\Remote Task Manager
[11/04/2008|12:31] C:\Program Files\Render Plus Systems
[15/05/2008|01:15] C:\Program Files\RivaTuner v2.08
[11/06/2007|16:32] C:\Program Files\RogueRemover
[19/05/2008|02:20] C:\Program Files\Screaming Bee
[18/05/2007|13:58] C:\Program Files\SeekmoToolbar
[15/05/2007|19:39] C:\Program Files\Services en ligne
[24/07/2008|20:36] C:\Program Files\Setup Files
[28/05/2008|01:22] C:\Program Files\setup_v10.60.6.3 ( carte r‚seaux )
[05/03/2008|22:02] C:\Program Files\Skype
[26/07/2008|20:31] C:\Program Files\SopCast
[30/03/2008|15:06] C:\Program Files\SoundSpectrum
[25/07/2008|06:58] C:\Program Files\SpeedFan
[25/07/2008|17:34] C:\Program Files\Spybot - Search & Destroy
[29/07/2008|00:59] C:\Program Files\Spyware Doctor
[31/07/2007|16:03] C:\Program Files\Symantec
[23/04/2007|19:11] C:\Program Files\SymNetDrv
[18/07/2008|23:58] C:\Program Files\TF1Vision
[19/06/2007|01:15] C:\Program Files\th‚me pour limewire
[01/06/2007|23:40] C:\Program Files\TurboNTv521
[30/05/2008|20:14] C:\Program Files\ULi_Integrated220
[28/05/2008|01:23] C:\Program Files\ULi_Integrated220 ( carte m‚re )
[30/05/2008|20:15] C:\Program Files\ULi5287
[30/05/2008|20:34] C:\Program Files\UltraDefrag
[25/06/2005|07:45] C:\Program Files\Uninstall Information
[17/08/2007|19:41] C:\Program Files\USB Vibration
[25/05/2007|18:28] C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter
[17/06/2007|00:12] C:\Program Files\VCW VicMan's Photo Editor
[12/05/2008|17:48] C:\Program Files\VideoLAN
[02/06/2008|13:12] C:\Program Files\VirginMega
[16/09/2007|23:49] C:\Program Files\VirtualDJ
[28/05/2007|16:16] C:\Program Files\visualisation pour windows m‚dia player
[29/04/2008|15:02] C:\Program Files\VSO
[15/05/2007|19:50] C:\Program Files\VST
[18/04/2008|01:12] C:\Program Files\Wanadoo
[30/05/2008|20:24] C:\Program Files\WinASPI
[10/07/2007|04:08] C:\Program Files\WinAVI Video Converter
[08/04/2008|16:17] C:\Program Files\Windows Live
[04/03/2008|23:28] C:\Program Files\Windows Live Favorites
[25/07/2008|07:00] C:\Program Files\Windows Live Safety Center
[04/03/2008|23:28] C:\Program Files\Windows Live Toolbar
[14/06/2007|20:59] C:\Program Files\Windows Media Connect 2
[13/05/2008|14:10] C:\Program Files\Windows Media Player
[20/05/2008|01:23] C:\Program Files\Windows NT
[25/06/2005|07:36] C:\Program Files\WindowsUpdate
[21/04/2008|23:54] C:\Program Files\WMV9_VCM
[25/06/2005|07:37] C:\Program Files\xerox
[05/07/2007|10:57] C:\Program Files\Xilisoft
[01/06/2007|23:16] C:\Program Files\Zapu

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[07/04/2008|15:04] C:\Program Files\Fichiers communs\Adobe
[09/07/2007|21:20] C:\Program Files\Fichiers communs\ArcSoft
[01/06/2007|23:32] C:\Program Files\Fichiers communs\BOONTY Shared
[04/02/2008|21:01] C:\Program Files\Fichiers communs\DESIGNER
[18/04/2008|01:12] C:\Program Files\Fichiers communs\France Telecom
[20/05/2008|23:39] C:\Program Files\Fichiers communs\GTK
[05/06/2007|22:43] C:\Program Files\Fichiers communs\Hewlett-Packard
[05/06/2007|22:53] C:\Program Files\Fichiers communs\HP
[20/09/2007|01:00] C:\Program Files\Fichiers communs\InstallShield
[07/09/2005|00:12] C:\Program Files\Fichiers communs\Java
[16/06/2007|19:23] C:\Program Files\Fichiers communs\Kodak
[03/06/2007|01:22] C:\Program Files\Fichiers communs\Macrovision Shared
[27/05/2008|23:27] C:\Program Files\Fichiers communs\Microsoft Shared
[18/04/2008|17:45] C:\Program Files\Fichiers communs\Motive
[25/06/2005|07:36] C:\Program Files\Fichiers communs\MSSoap
[25/06/2005|07:48] C:\Program Files\Fichiers communs\muvee Technologies
[25/06/2005|07:48] C:\Program Files\Fichiers communs\NewTech Infosystems
[29/07/2007|01:35] C:\Program Files\Fichiers communs\Nokia
[26/07/2008|20:52] C:\Program Files\Fichiers communs\NSV
[26/07/2008|20:52] C:\Program Files\Fichiers communs\Nullsoft
[25/06/2005|07:34] C:\Program Files\Fichiers communs\ODBC
[21/06/2007|22:49] C:\Program Files\Fichiers communs\PCCamera
[29/07/2007|01:35] C:\Program Files\Fichiers communs\PCSuite
[19/05/2008|02:22] C:\Program Files\Fichiers communs\Screaming Bee
[25/06/2005|07:36] C:\Program Files\Fichiers communs\Services
[05/03/2008|22:02] C:\Program Files\Fichiers communs\Skype
[25/06/2005|07:34] C:\Program Files\Fichiers communs\SpeechEngines
[13/03/2008|21:32] C:\Program Files\Fichiers communs\Symantec Shared
[02/05/2008|01:40] C:\Program Files\Fichiers communs\System
[04/03/2008|23:26] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[25/07/2008|21:29] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 51 Processus )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-29 03:58:44
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 922

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

=> C:\DOCUME~1\SC\Application Data\Azureus\torrents\Microsoft_Office_2007_Ultimate_edition_+_Crack_[Works_100%]-[www.search-torrent.com].torrent
=> C:\DOCUME~1\SC\Bureau\jeux\The_Sims_All_Keygens.lnk
=> C:\DOCUME~1\SC\Recent\Acoustica.Mixcraft.v4.1.b88_Keygen_NeoX (2).lnk
=> C:\DOCUME~1\SC\Recent\Acoustica.Mixcraft.v4.1.b88_Keygen_NeoX.lnk
=> C:\DOCUME~1\SC\Recent\bluelist_xp_keygen.lnk
=> C:\DOCUME~1\SC\Recent\Windows_XP_Keygen_NEW.lnk
=> C:\DOCUME~1\ALLUSE~1\Application Data\Acoustica\Mixcraft\loops\Sound Effects\Egg Crack.ogg

[F:35][D:3]-> C:\DOCUME~1\SC\LOCALS~1\Temp
[F:129][D:0]-> C:\DOCUME~1\SC\Cookies
[F:252][D:5]-> C:\DOCUME~1\SC\LOCALS~1\TEMPOR~1\content.IE5
[F:2][D:0]-> C:\Recycled

--------------------\\ Fin du rapport a 3:59:45,62

Réponse 42 / 96

Utilisateur anonyme

Télécharge ce fichier sur le bureau :

http://downloads.malwareremoval.com/Nel/FixP.zip

Extrait et double clique sur Fix_Protocol_zones_ranges.reg.

Acceptes lorsqu'il te demande de fusionner avec le registre.

ensuite refais un scan hijackthis et post le rapport stp

Réponse 43 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

dit moi tu pourra m'expliquer une fois tous ça fini que faut il regarder dans les rapports, j'imagine que c'est les noms de fichier, mais sur quel "basse" te pose tu, ton experience biensur, mais y'a t il des basse de donnés trés précise à ce sujet?

Réponse 44 / 96

Utilisateur anonyme

t expliqué oui je peux mais pas ce soir lol demain si tu veux enfin en début de soirée

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 45 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

^^ oui aucun probleme merçi beaucoup.

Voilà le rapport (il y à u une erreur lor de la création du rapport. oui/non , j'ai mis oui se qui était conseiller.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 04:13:21, on 29/07/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\ServiceWrapper-6588780.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Motive\McciCMService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\ANTIVI~1\Anti-Spyware\fsaw.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\WINDOWS\explorer.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\DOCUME~1\SC\Bureau\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - (no file)
O2 - BHO: (no name) - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - (no file)
O2 - BHO: (no name) - {3F672B11-C155-4D51-B013-4AF8C162380D} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: (no name) - {CA32A693-EDFE-4371-B0E0-CEBE2E687458} - (no file)
O2 - BHO: (no name) - {DB036A52-3A88-466B-BD39-05A6D9D9B18A} - (no file)
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ClockGen] C:\Program Files\logiciele pour l'overclocking\ClockGen\ClockGen.exe -i p=0
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DelReg] C:\Program Files\MSI\DualCoreCenter\DelReg.exe
O4 - HKLM\..\Run: [PCShowBuzz] C:\Program Files\inKline Global\PCShowBuzz\PCShowBuzz.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm
O8 - Extra context menu item: Send by Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
O8 - Extra context menu item: Send via &Message... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070711/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\WINDOWS\system32\skype4com.dll
O20 - Winlogon Notify: qoMccBut - C:\WINDOWS\
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe (file missing)
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\ServiceWrapper-6588780.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Fichiers communs\Motive\McciCMService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Réponse 46 / 96

Utilisateur anonyme

télécharge OTMoveIt http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer.
Assure toi que la case Unregister Dll's and Ocx's soit bien cochée
copie la liste qui se trouve en gras ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

C:\DOCUME~1\SC\Application Data\Azureus\torrents\Microsoft_Office_2007_Ultimate_edition_+_Crack_[Works_100%]-[www.search-torrent.com].torrent
C:\DOCUME~1\SC\Bureau\jeux\The_Sims_All_Keygens.lnk
C:\DOCUME~1\SC\Recent\Acoustica.Mixcraft.v4.1.b88_Keygen_NeoX (2).lnk
C:\DOCUME~1\SC\Recent\Acoustica.Mixcraft.v4.1.b88_Keygen_NeoX.lnk
C:\DOCUME~1\SC\Recent\bluelist_xp_keygen.lnk
C:\DOCUME~1\SC\Recent\Windows_XP_Keygen_NEW.lnk
C:\DOCUME~1\ALLUSE~1\Application Data\Acoustica\Mixcraft\loops\Sound Effects\Egg Crack.ogg
C:\WINDOWS\system32\tmp.reg
C:\WINDOWS\system32\VCCLSID.exe
C:\WINDOWS\system32\SrchSTS.exe
C:\WINDOWS\system32\VACFix.exe
C:\WINDOWS\system32\404Fix.exe
C:\WINDOWS\system32\Process.exe
C:\WINDOWS\system32\dumphive.exe
C:\WINDOWS\system32\WS2Fix.exe
C:\Program Files\Fichiers communs\BOONTY Shared\
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\bend logo clock film

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

ensuite réouvre hijackthis
fais scan only
coches ces lignes :

O2 - BHO: (no name) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - (no file)
O2 - BHO: (no name) - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - (no file)
O2 - BHO: (no name) - {3F672B11-C155-4D51-B013-4AF8C162380D} - (no file)

O2 - BHO: (no name) - {CA32A693-EDFE-4371-B0E0-CEBE2E687458} - (no file)
O2 - BHO: (no name) - {DB036A52-3A88-466B-BD39-05A6D9D9B18A} - (no file)

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe (file missing)

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab

O20 - Winlogon Notify: qoMccBut - C:\WINDOWS\

tu les coches et tu clic sur fix checked

ensuite :

Rends toi sur ce site :

https://www.virustotal.com/gui/

Clique sur parcourir et cherche ce fichier : C:\Program Files\inKline Global\PCShowBuzz\PCShowBuzz.exe

Clique sur Send File.

Un rapport va s'élaborer ligne à ligne.

Attends la fin. Il doit comprendre la taille du fichier envoyé.

Sauvegarde le rapport avec le bloc-note.

Copie le dans ta réponse.

Réponse 47 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

ok je fait tous ça.

les fichier que je doit copier coller vont il influé sur l'utilisation de "certain" logiciel, (pour pas sité).

est ce que je peut rester connecte à internet exploreur pendant tous sa?

Réponse 48 / 96

Utilisateur anonyme

tu peux tout supprimer sans hésiter mais ferme internet exploerer

Réponse 49 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

ok merçi je fait tt ça tt de suite.

Réponse 50 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

voilà le premier rapport
OTMoveIT:

< C:\DOCUME~1\SC\Application Data\Azureus\torrents\Microsoft_Office_2007_Ultimate_edition_+_Crack_[Works_100%]-[www.search-torrent.com].torrent >
File/Folder C:\DOCUME~1\SC\Application Data\Azureus\torrents\Microsoft_Office_2007_Ultimate_edition_+_Crack_[Works_100%]-[www.search-torrent.com].torrent not found.
C:\DOCUME~1\SC\Bureau\jeux\The_Sims_All_Keygens.lnk moved successfully.
File/Folder C:\DOCUME~1\SC\Recent\Acoustica.Mixcraft.v4.1.b88_Keygen_NeoX (2).lnk not found.
File/Folder C:\DOCUME~1\SC\Recent\Acoustica.Mixcraft.v4.1.b88_Keygen_NeoX.lnk not found.
C:\DOCUME~1\SC\Recent\bluelist_xp_keygen.lnk moved successfully.
C:\DOCUME~1\SC\Recent\Windows_XP_Keygen_NEW.lnk moved successfully.
C:\DOCUME~1\ALLUSE~1\Application Data\Acoustica\Mixcraft\loops\Sound Effects\Egg Crack.ogg moved successfully.
C:\WINDOWS\system32\tmp.reg moved successfully.
C:\WINDOWS\system32\VCCLSID.exe moved successfully.
C:\WINDOWS\system32\SrchSTS.exe moved successfully.
C:\WINDOWS\system32\VACFix.exe moved successfully.
C:\WINDOWS\system32\404Fix.exe moved successfully.
C:\WINDOWS\system32\Process.exe moved successfully.
C:\WINDOWS\system32\dumphive.exe moved successfully.
C:\WINDOWS\system32\WS2Fix.exe moved successfully.
C:\Program Files\Fichiers communs\BOONTY Shared\Service moved successfully.
C:\Program Files\Fichiers communs\BOONTY Shared moved successfully.
< HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\bend logo clock film >
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\bend logo clock film \\ not found.

OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 07292008_043914

Réponse 51 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

voilà le rapport pour le fichier. veut tu aussi le rapport de hijackthis?

Le fichier a déjà été analysé:
MD5: d17dec3abb5903f5b0ce693846039dc7
First received: 2008.07.19 20:35:42 (CET)
Date 2008.07.19 20:35:45 (CET) [>9D]
Résultats 1/33
Permalink: analisis/b36616b2ef01e5837184586a509b4106

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.7.17.0 2008.07.18 -
AntiVir 7.8.1.11 2008.07.19 -
Authentium 5.1.0.4 2008.07.19 -
Avast 4.8.1195.0 2008.07.19 -
AVG 8.0.0.130 2008.07.19 -
BitDefender 7.2 2008.07.19 -
CAT-QuickHeal 9.50 2008.07.18 -
ClamAV 0.93.1 2008.07.19 -
DrWeb 4.44.0.09170 2008.07.19 -
eSafe 7.0.17.0 2008.07.17 -
eTrust-Vet 31.6.5966 2008.07.18 -
Ewido 4.0 2008.07.19 -
F-Prot 4.4.4.56 2008.07.18 -
F-Secure 7.60.13501.0 2008.07.19 Suspicious:W32/Kronos.b!Gemini
Fortinet 3.14.0.0 2008.07.19 -
GData 2.0.7306.1023 2008.07.19 -
Ikarus T3.1.1.34.0 2008.07.19 -
Kaspersky 7.0.0.125 2008.07.19 -
McAfee 5342 2008.07.18 -
Microsoft 1.3704 2008.07.19 -
NOD32v2 3281 2008.07.18 -
Norman 5.80.02 2008.07.18 -
Panda 9.0.0.4 2008.07.19 -
Prevx1 V2 2008.07.19 -
Rising 20.53.52.00 2008.07.19 -
Sophos 4.31.0 2008.07.19 -
Sunbelt 3.1.1536.1 2008.07.18 -
Symantec 10 2008.07.19 -
TheHacker 6.2.96.384 2008.07.19 -
TrendMicro 8.700.0.1004 2008.07.18 -
VBA32 3.12.8.1 2008.07.19 -
VirusBuster 4.5.11.0 2008.07.19 -
Webwasher-Gateway 6.6.2 2008.07.19 -
Information additionnelle
File size: 5066752 bytes
MD5...: d17dec3abb5903f5b0ce693846039dc7
SHA1..: 153ea965633816d378f91ea7834bcc505b84592f
SHA256: 3b2ae7c416ade4b71d4621f719a018f4e6749c36505fff0a2b47d0542c9cca01
SHA512: 1515006afe33b21853cff6710900116c16b69555a5391733968b93dfacebe9a6
02eec4f3a0be32bd4f1fcd329ca11e8a59708c65cf7de8447c38ff4ad1a29801
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x493bf4
timedatestamp.....: 0x436090e9 (Thu Oct 27 08:33:45 2005)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x10b1b6 0x10c000 6.48 43eec090efb1e0e28670ffed916ef3fe
.rdata 0x10d000 0x38310 0x39000 5.10 b0cc152c0712fc25c2e2c25271cebc26
.data 0x146000 0x1ea44 0x18000 3.64 9a7d72ab63fd5e27a38f703e4108d982
.rsrc 0x165000 0x3766e0 0x377000 4.47 50cf9b1bb1c9378afeb11c6bc5da4619

( 18 imports )
> URL.dll: InetIsOffline
> WINMM.dll: mixerSetControlDetails, mixerGetLineInfoA, mixerGetLineControlsA
> VERSION.dll: GetFileVersionInfoSizeA, GetFileVersionInfoA, VerQueryValueA
> KERNEL32.dll: CreateThread, TerminateProcess, HeapSize, SetStdHandle, GetFileType, QueryPerformanceCounter, GetCurrentProcessId, LCMapStringA, LCMapStringW, GetTimeZoneInformation, FatalAppExitA, HeapDestroy, HeapCreate, VirtualFree, IsBadWritePtr, SetHandleCount, GetStdHandle, UnhandledExceptionFilter, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, SetUnhandledExceptionFilter, GetStringTypeA, GetStringTypeW, GetDriveTypeA, IsBadReadPtr, IsBadCodePtr, GetUserDefaultLCID, EnumSystemLocalesA, IsValidLocale, IsValidCodePage, SetConsoleCtrlHandler, GetLocaleInfoW, SetEnvironmentVariableA, ExitThread, InterlockedExchange, GetACP, GetLocaleInfoA, GetThreadLocale, GetVersionExA, SizeofResource, LockResource, LoadResource, FindResourceA, WideCharToMultiByte, WaitForSingleObject, GetWindowsDirectoryA, TerminateThread, Sleep, ResumeThread, GetModuleFileNameA, FormatMessageA, GetLastError, GetCurrentDirectoryA, CreateDirectoryA, GetFileAttributesA, ReleaseMutex, CreateMutexA, lstrcpynA, MultiByteToWideChar, RaiseException, InitializeCriticalSection, DeleteCriticalSection, GetVersion, lstrcmpiA, lstrlenW, lstrcmpiW, lstrlenA, CompareStringA, CompareStringW, HeapReAlloc, GetCommandLineA, GetStartupInfoA, VirtualQuery, GetSystemInfo, VirtualAlloc, VirtualProtect, HeapFree, HeapAlloc, GetDateFormatA, GetTimeFormatA, GetSystemTimeAsFileTime, RtlUnwind, ExitProcess, LocalLock, LocalUnlock, SetErrorMode, GetPrivateProfileStringA, WritePrivateProfileStringA, GetPrivateProfileIntA, GetDiskFreeSpaceA, GetTempFileNameA, GetOEMCP, GetCPInfo, TlsFree, LocalReAlloc, TlsSetValue, TlsAlloc, TlsGetValue, GlobalHandle, InterlockedIncrement, GlobalFlags, GetShortPathNameA, GetFullPathNameA, GetVolumeInformationA, GetCurrentProcess, DuplicateHandle, SetEndOfFile, UnlockFile, LockFile, FlushFileBuffers, ReadFile, MoveFileA, GetFileTime, SetFileTime, LocalFileTimeToFileTime, SystemTimeToFileTime, LeaveCriticalSection, EnterCriticalSection, LocalAlloc, GetCurrentThread, ConvertDefaultLocale, EnumResourceLanguagesA, lstrcpyA, lstrcmpA, CreateEventA, SuspendThread, GetEnvironmentVariableA, GetEnvironmentVariableW, SetEvent, SetThreadPriority, GetCurrentThreadId, GlobalGetAtomNameA, GlobalAddAtomA, GlobalFindAtomA, GlobalDeleteAtom, lstrcatA, lstrcmpW, SetLastError, CopyFileA, GlobalSize, FreeResource, SearchPathA, CreateProcessA, _lopen, _lread, _lclose, GetModuleHandleA, GlobalAlloc, GlobalLock, GlobalUnlock, GlobalReAlloc, GlobalFree, GetUserDefaultLangID, FileTimeToLocalFileTime, FileTimeToSystemTime, SetFileAttributesA, SetFilePointer, FindFirstFileA, FindNextFileA, FindClose, GetFileSize, GetTempPathA, CreateFileA, WriteFile, CloseHandle, FreeLibrary, LocalFree, RemoveDirectoryA, DeleteFileA, InterlockedDecrement, MulDiv, LoadLibraryA, GetProcAddress, GetTickCount, GetStringTypeExW, GetStringTypeExA
> USER32.dll: SetParent, LockWindowUpdate, GetDCEx, PostThreadMessageA, GetTabbedTextExtentA, IsClipboardFormatAvailable, UnionRect, RegisterClipboardFormatA, GetNextDlgGroupItem, DestroyIcon, DeleteMenu, WaitMessage, GetWindowThreadProcessId, CharNextA, UnpackDDElParam, ReuseDDElParam, LoadAcceleratorsA, InsertMenuItemA, SetRectEmpty, BringWindowToTop, SetMenu, TranslateAcceleratorA, InvalidateRgn, CopyAcceleratorTableA, GetDialogBaseUnits, WindowFromPoint, SetWindowContextHelpId, ShowOwnedPopups, PostQuitMessage, EndPaint, BeginPaint, DestroyMenu, GetMenuItemInfoA, InflateRect, MapVirtualKeyA, GetKeyNameTextA, GetMessageA, TranslateMessage, ValidateRect, SetMenuItemBitmaps, ModifyMenuA, CheckMenuItem, GetMenuCheckMarkDimensions, DrawIcon, IsRectEmpty, ScrollWindowEx, MoveWindow, SetWindowTextA, IsDialogMessageA, IsDlgButtonChecked, SetDlgItemTextA, SetDlgItemInt, GetDlgItemTextA, GetDlgItemInt, CheckRadioButton, CheckDlgButton, RegisterWindowMessageA, WinHelpA, GetCapture, CreateWindowExA, SetWindowsHookExA, CallNextHookEx, GetClassLongA, GetClassInfoExA, GetClassNameA, SetPropA, GetPropA, RemovePropA, SendDlgItemMessageA, GetFocus, IsChild, GetWindowTextLengthA, GetWindowTextA, GetForegroundWindow, GetLastActivePopup, DispatchMessageA, BeginDeferWindowPos, EndDeferWindowPos, GetTopWindow, UnhookWindowsHookEx, GetMessageTime, GetMessagePos, PeekMessageA, MapWindowPoints, ScrollWindow, TrackPopupMenuEx, TrackPopupMenu, GetKeyState, SetScrollRange, GetScrollRange, SetScrollPos, GetScrollPos, GetMenu, AdjustWindowRectEx, EqualRect, DeferWindowPos, SetScrollInfo, GetClassInfoA, RedrawWindow, EnableWindow, SendMessageA, SetCursor, LoadCursorA, SetTimer, KillTimer, CreatePopupMenu, AppendMenuA, ClientToScreen, GetCursorPos, LoadIconA, GetWindowRect, UpdateWindow, RegisterClassA, SetWindowPlacement, GetDlgCtrlID, DefWindowProcA, CallWindowProcA, SetWindowLongA, SetWindowPos, IntersectRect, IsIconic, GetWindowPlacement, GetWindow, GetMenuState, GetMenuStringA, GetMenuItemID, InsertMenuA, GetMenuItemCount, GetActiveWindow, CreateDialogIndirectParamA, DestroyWindow, GetDlgItem, IsWindowEnabled, GetNextDlgTabItem, EndDialog, ScreenToClient, GetScrollInfo, CopyIcon, ShowScrollBar, GetSysColor, IsWindow, GetParent, OffsetRect, ReleaseCapture, SetCapture, GetWindowRgn, wsprintfA, GetDesktopWindow, ShowWindow, GetDC, MessageBoxA, GrayStringA, DrawTextExA, TabbedTextOutA, MessageBeep, FillRect, GetSysColorBrush, SystemParametersInfoA, GetSystemMetrics, LoadImageA, SetWindowRgn, DrawTextA, CopyRect, SetRect, GetWindowDC, ReleaseDC, UnregisterClassA, CharUpperW, CharUpperA, InvalidateRect, CreateMenu, SetForegroundWindow, FindWindowA, mouse_event, SetCursorPos, GetClientRect, LoadBitmapA, ShowCursor, SetFocus, PostMessageA, GetSystemMenu, IsWindowVisible, SetActiveWindow, EnableMenuItem, GetSubMenu, RemoveMenu, LoadMenuA, PtInRect, GetWindowLongA, CharLowerA, CharLowerW, MapDialogRect
> GDI32.dll: RestoreDC, SetPolyFillMode, SetStretchBltMode, SetMapMode, ExcludeClipRect, IntersectClipRect, OffsetClipRgn, LineTo, MoveToEx, SetTextAlign, SetTextJustification, SetTextCharacterExtra, SetMapperFlags, SetArcDirection, SetColorAdjustment, GetClipRgn, SelectClipPath, GetViewportExtEx, GetWindowExtEx, GetPixel, StartDocA, OffsetViewportOrgEx, SetViewportExtEx, ScaleViewportExtEx, SetWindowOrgEx, OffsetWindowOrgEx, SetWindowExtEx, ScaleWindowExtEx, GetCurrentPositionEx, ArcTo, SaveDC, PolylineTo, PolyBezierTo, ExtSelectClipRgn, CreateDIBPatternBrushPt, SelectPalette, PlayMetaFileRecord, GetObjectType, EnumMetaFile, PlayMetaFile, ExtCreatePen, CreateHatchBrush, SetRectRgn, GetTextColor, StretchDIBits, GetCharWidthA, CreateFontA, StartPage, EndPage, SetAbortProc, AbortDoc, EndDoc, PatBlt, CreateRectRgnIndirect, Ellipse, CreateEllipticRgn, GetClipBox, GetDCOrgEx, CreateDCA, CopyMetaFileA, SelectClipRgn, CreatePalette, CreateDIBSection, SelectObject, ExtCreateRegion, DeleteDC, SetBitmapDimensionEx, GetMapMode, SetPixel, CreatePen, GetViewportOrgEx, SetViewportOrgEx, GetStockObject, Rectangle, PtInRegion, GetRgnBox, OffsetRgn, SetROP2, FrameRgn, GetBkColor, CreatePolygonRgn, CreateSolidBrush, SetBkMode, SetBkColor, SetTextColor, GetDIBits, GetObjectA, RealizePalette, GetTextMetricsA, GetDeviceCaps, Escape, ExtTextOutA, TextOutA, CreateBitmap, RectVisible, PtVisible, GetTextExtentPoint32A, StretchBlt, FillRgn, LPtoDP, PolyDraw, CreateCompatibleBitmap, CreateFontIndirectA, CreateCompatibleDC, BitBlt, DeleteObject, CombineRgn, CreateRectRgn, CreatePatternBrush, DPtoLP
> MSIMG32.dll: TransparentBlt
> comdlg32.dll: CommDlgExtendedError, PrintDlgA, PageSetupDlgA, FindTextA, ReplaceTextA, GetOpenFileNameA, GetFileTitleA, GetSaveFileNameA
> WINSPOOL.DRV: DocumentPropertiesA, ClosePrinter, OpenPrinterA, GetJobA
> ADVAPI32.dll: IsTextUnicode, RegFlushKey, RegSetValueExA, RegCreateKeyExA, RegOpenKeyExA, RegQueryValueExA, RegDeleteValueA, RegEnumValueA, RegDeleteKeyA, RegQueryInfoKeyA, RegEnumKeyExA, CloseServiceHandle, StartServiceA, QueryServiceStatus, RegCreateKeyA, GetFileSecurityA, SetFileSecurityA, RegQueryValueA, RegEnumKeyA, RegCloseKey, RegOpenKeyA, RegSetValueA, GetUserNameA, ControlService, OpenSCManagerA, OpenServiceA
> SHELL32.dll: ShellExecuteA, Shell_NotifyIconA, SHGetMalloc, SHGetFileInfoA, DragFinish, DragQueryFileA, ExtractIconA
> COMCTL32.dll: ImageList_AddMasked, _TrackMouseEvent, PropertySheetA, -, -, ImageList_Read, ImageList_Write, -, ImageList_Destroy, ImageList_Create, ImageList_LoadImageA, ImageList_Merge, ImageList_Draw, ImageList_GetImageInfo
> SHLWAPI.dll: PathFindExtensionA, PathRemoveExtensionA, PathFindFileNameA, UrlUnescapeA, PathStripToRootA, PathIsUNCA
> oledlg.dll: -
> ole32.dll: CoTaskMemAlloc, ReleaseStgMedium, CreateBindCtx, CreateStreamOnHGlobal, CoGetClassObject, CLSIDFromProgID, CLSIDFromString, CoRegisterMessageFilter, OleFlushClipboard, OleIsCurrentClipboard, OleSetClipboard, CoRevokeClassObject, CoRegisterClassObject, OleInitialize, CoFreeUnusedLibraries, OleUninitialize, OleRun, CreateILockBytesOnHGlobal, StgCreateDocfileOnILockBytes, StgOpenStorageOnILockBytes, CoDisconnectObject, CoTreatAsClass, StringFromCLSID, ReadClassStg, ReadFmtUserTypeStg, OleRegGetUserType, WriteClassStg, WriteFmtUserTypeStg, SetConvertStg, CoTaskMemFree, CoInitialize, CoUninitialize, CoCreateInstance, OleDuplicateData, StringFromGUID2
> OLEAUT32.dll: -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -
> WININET.dll: InternetConnectA, FtpFindFirstFileA, GopherCreateLocatorA, FtpCommandA, FtpOpenFileA, GopherGetAttributeA, HttpSendRequestExA, HttpEndRequestA, HttpSendRequestA, InternetReadFile, InternetWriteFile, InternetSetFilePointer, InternetSetStatusCallback, InternetOpenA, GopherFindFirstFileA, InternetGetLastResponseInfoA, InternetCloseHandle, InternetFindNextFileA, HttpQueryInfoA, HttpAddRequestHeadersA, GopherOpenFileA, FtpGetFileA, FtpPutFileA, FtpGetCurrentDirectoryA, FtpSetCurrentDirectoryA, FtpRemoveDirectoryA, FtpCreateDirectoryA, FtpRenameFileA, FtpDeleteFileA, InternetQueryDataAvailable, InternetSetOptionExA, InternetQueryOptionA, InternetCanonicalizeUrlA, InternetCrackUrlA, FindFirstUrlCacheEntryA, DeleteUrlCacheEntry, FindNextUrlCacheEntryA, FindCloseUrlCache, InternetGetCookieA, InternetSetCookieA, InternetGetConnectedState, InternetOpenUrlA, HttpOpenRequestA, InternetErrorDlg
> WS2_32.dll: -, -, -, -, -, -, -, -, -, -, -, -

( 0 exports )

Réponse 52 / 96

Utilisateur anonyme

tu y tiens a ce programme : C:\Program Files\inKline Global\PCShowBuzz\PCShowBuzz.exe

F-Secure 7.60.13501.0 2008.07.19 Suspicious:W32/Kronos.b!Gemini

Réponse 53 / 96

Utilisateur anonyme

bon 01 Net le propose en telechargement donc

ouii refais un scan hijackthis et post le rapport et dis moi si encore des soucis ou pas

Réponse 54 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

non pas du tt, avant hier j'ai un peu merder en payant 46€ et des pousier pour regarder soit disant la télé, mais enfaite j'ai pas payer un logiciel précis il m'ont envoyer un mail avec une 15 de lien sur un site avec des p'tits programme pourri quon peut avoir n'importe ou gratuitement jss ver^^.

je n'arrive pas à le suprimer moi, donc si ta la soluce, se que tu veut me donné je pense y a vraiment aucun probléme.^^

Réponse 55 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

en prob je n'est toujours pas accés au gestionnaire de tâche et internet exploreur a vraiment du mal à affiché les pages.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 05:08:54, on 29/07/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\ServiceWrapper-6588780.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Motive\McciCMService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\ANTIVI~1\Anti-Spyware\fsaw.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\WINDOWS\explorer.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\Program Files\internet explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Live Toolbar\msn_sl.exe
C:\DOCUME~1\SC\Bureau\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ClockGen] C:\Program Files\logiciele pour l'overclocking\ClockGen\ClockGen.exe -i p=0
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DelReg] C:\Program Files\MSI\DualCoreCenter\DelReg.exe
O4 - HKLM\..\Run: [PCShowBuzz] C:\Program Files\inKline Global\PCShowBuzz\PCShowBuzz.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm
O8 - Extra context menu item: Send by Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
O8 - Extra context menu item: Send via &Message... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\WINDOWS\system32\skype4com.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe (file missing)
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\ServiceWrapper-6588780.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Fichiers communs\Motive\McciCMService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Réponse 56 / 96

Utilisateur anonyme

double-clique sur OTMoveIt.exe pour le lancer.
Assure toi que la case Unregister Dll's and Ocx's soit bien cochée
copie la ligne qui se trouve en gras ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

C:\Program Files\inKline Global\PCShowBuzz\

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles. + un nouveau rapport hijackthis et dis si t as encore des soucis
il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

Réponse 57 / 96

Utilisateur anonyme

on s est croisé

ok pour les derniers soucis

Réponse 58 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

oui exacte^^ je vien de redémarré internet et relativement rapide, mais toujours se rapport d'erreur. je ne peu pas te l'est réécrire trop compliquer comment je peut t'envoyer une capture d'écrant? bref je fait ske tu ma dit pour l'instant, je garde le screenshot pour l'instant ont vera apré si il revien.

Réponse 59 / 96

Utilisateur anonyme

t as fait ça :

http://www.commentcamarche.net/forum/affich 7634320 help me sil vous plait je n y arrive plus?page=3#56

Réponse 60 / 96

teyz Messages postés 181 Date d'inscription Statut Membre Dernière intervention 8

le results:

C:\Program Files\inKline Global\PCShowBuzz moved successfully.

OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 07292008_052745

le rapport:

C:\Program Files\inKline Global\PCShowBuzz moved successfully.

OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 07292008_052745

hijackthis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 05:30:18, on 29/07/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\ServiceWrapper-6588780.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Motive\McciCMService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\PROGRA~1\ANTIVI~1\Anti-Spyware\fsaw.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\SC\Bureau\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ClockGen] C:\Program Files\logiciele pour l'overclocking\ClockGen\ClockGen.exe -i p=0
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DelReg] C:\Program Files\MSI\DualCoreCenter\DelReg.exe
O4 - HKLM\..\Run: [PCShowBuzz] C:\Program Files\inKline Global\PCShowBuzz\PCShowBuzz.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm
O8 - Extra context menu item: Send by Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
O8 - Extra context menu item: Send via &Message... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\WINDOWS\system32\skype4com.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe (file missing)
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\ServiceWrapper-6588780.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Fichiers communs\Motive\McciCMService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Discussions similaires

Bonjour, S'il vous plaît je travaille actuellement sur la norme EBIOS, quelqu'u

comment pouvez vous m'aide s'il vous plait. Urgent

Bonjour, s'il vous plaît aidez moi j'essaie désespérément co

j'ai oublier mon adresse email !! Comment faire ??

je cherche le nom d'une musique svp aider moi

Votre réponse

Discussions similaires