Plusieur fenetre s'ouvre pendant navigation
angel64
-
geoffrey5 Messages postés 14008 Statut Contributeur sécurité -
geoffrey5 Messages postés 14008 Statut Contributeur sécurité -
Bonjour,
voilà j'ai un probleme assez enervant d'autant plus que je m'y connais pas beaucoup en ordi(enfin un minimum!)
depuis 3 jours quand je vais sur internet au bout de 10 15 minutes des milliers de fenetre s'ouvre en meme temps!!!la seule solution que j'ai trouvé c'est redamarré mon ordi!j'ai effectué un scan avec avast! rien!!aidé moi s'il vous plait je vais peté un boulon!!!!
voilà j'ai un probleme assez enervant d'autant plus que je m'y connais pas beaucoup en ordi(enfin un minimum!)
depuis 3 jours quand je vais sur internet au bout de 10 15 minutes des milliers de fenetre s'ouvre en meme temps!!!la seule solution que j'ai trouvé c'est redamarré mon ordi!j'ai effectué un scan avec avast! rien!!aidé moi s'il vous plait je vais peté un boulon!!!!
A voir également:
- Plusieur fenetre s'ouvre pendant navigation
- Ouvrir une fenêtre de navigation privée - Guide
- Fenetre windows - Guide
- Fenêtre hors écran windows 11 - Guide
- Effacer les données de navigation sur android - Guide
- Simulateur de navigation maritime gratuit - Télécharger - Loisirs créatifs
45 réponses
Salut !!
Fais un rapport hijackthis pour que je puisses vérifier les infections de ton pc stp
Télécharge hijackthis à cette adresse, tout est expliqué pour bien l installer et pour savoir s'en servir :
https://www.androidworld.fr/
Fais un rapport hijackthis pour que je puisses vérifier les infections de ton pc stp
Télécharge hijackthis à cette adresse, tout est expliqué pour bien l installer et pour savoir s'en servir :
https://www.androidworld.fr/
les fenetres qui s'ouvre sont par exemple quand je suis sur un forum c'est la meme fenetre qui s'ouvre une centaine de fois
tu dois faire un copier/coller du rapport et me l envoyer...
est ce que tu sais faire un copier/coller ?
est ce que tu sais faire un copier/coller ?
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
desolé c bon j'ai pu le faire voilà:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:19:24, on 03/09/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\rundll32.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Power Manager\PM.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Windows\system32\conime.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.6.26.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [PowerManager] C:\Program Files\Power Manager\PM.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [recinfo123] c:\RecInfo\RecInfo.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.6.26.dll/206 (file missing)
O13 - Gopher Prefix:
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/FacebookPhotoUploader5.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD44/JSCDL/jdk/6u7/jinstall-6u7-windows-i586-jc.cab?e=1217107699895&h=c930f33d61c2f3789535a699cce2646f/&filename=jinstall-6u7-windows-i586-jc.cab
O16 - DPF: {BA162249-F2C5-4851-8ADC-FC58CB424243} (Image Uploader Control) - http://copainsdavant.linternaute.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IviRegMgr - InterVideo - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:19:24, on 03/09/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\rundll32.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Power Manager\PM.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Windows\system32\conime.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.6.26.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [PowerManager] C:\Program Files\Power Manager\PM.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [recinfo123] c:\RecInfo\RecInfo.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.6.26.dll/206 (file missing)
O13 - Gopher Prefix:
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/FacebookPhotoUploader5.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD44/JSCDL/jdk/6u7/jinstall-6u7-windows-i586-jc.cab?e=1217107699895&h=c930f33d61c2f3789535a699cce2646f/&filename=jinstall-6u7-windows-i586-jc.cab
O16 - DPF: {BA162249-F2C5-4851-8ADC-FC58CB424243} (Image Uploader Control) - http://copainsdavant.linternaute.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IviRegMgr - InterVideo - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm Supprime ça
ok...commence par faire ceci stp :
Télécharger sur le bureau malwarebytes à cette adresse :
https://www.androidworld.fr/
Voici un tuto pour bien l installer et bien l utiliser :
https://www.androidworld.fr/
Après l analyse, redémarrer le pc et poste le rapport !!
Télécharger sur le bureau malwarebytes à cette adresse :
https://www.androidworld.fr/
Voici un tuto pour bien l installer et bien l utiliser :
https://www.androidworld.fr/
Après l analyse, redémarrer le pc et poste le rapport !!
est ce que tu comprends le francais loic ??!!
http://www.commentcamarche.net/forum/affich 8237358 plusieur fenetre s ouvre pendant navigation#10
http://www.commentcamarche.net/forum/affich 8237358 plusieur fenetre s ouvre pendant navigation#10
fais une mise à jour et une analyse complete stp
aides toi du tuto pour supprimer correctement ce qu il aura trouvé ;-)
aides toi du tuto pour supprimer correctement ce qu il aura trouvé ;-)
ok ne t inquietes pas je ne vais pas te faire exécuter des outils trop puissants ;-)
j attends ton rapport de malwarebytes pour l analyser...prends bien ton temps pour comprendre le tuto et supprimer correctement
j attends ton rapport de malwarebytes pour l analyser...prends bien ton temps pour comprendre le tuto et supprimer correctement
merci beaucoup c'est trés gentil de ta part!il;va etre content quand il verra que ca c'est arranger?tu es informaticien ou quelque chose comme ca?
--------------------\\ Lop S&D 4.2.4-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6000 )
X86-based PC ( Multiprocessor Free : AMD Turion(tm) 64 X2 Mobile Technology TL-52 )
BIOS : Version 1.0
USER : christophe ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080905-0] 4.8.1229 (Activated)
"C:\Lop SD" ( MAJ : 04-09-2008|09:55 )
Option : [1] ( 05/09/2008|21:55 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[27/06/2008|10:56] C:\Users\CHRIST~1\AppData\Local\Adobe
[01/08/2008|19:12] C:\Users\CHRIST~1\AppData\Local\Ahead
[21/06/2008|18:48] C:\Users\CHRIST~1\AppData\Local\Application Data
[03/09/2008|10:45] C:\Users\CHRIST~1\AppData\Local\d3d9caps.dat
[03/09/2008|13:53] C:\Users\CHRIST~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[21/06/2008|18:49] C:\Users\CHRIST~1\AppData\Local\GDIPFONTCACHEV1.DAT
[15/08/2008|16:44] C:\Users\CHRIST~1\AppData\Local\Google
[21/06/2008|18:48] C:\Users\CHRIST~1\AppData\Local\Historique
[05/09/2008|00:28] C:\Users\CHRIST~1\AppData\Local\IconCache.db
[07/08/2008|17:46] C:\Users\CHRIST~1\AppData\Local\Microsoft
[26/08/2008|13:24] C:\Users\CHRIST~1\AppData\Local\Microsoft Games
[21/06/2008|18:51] C:\Users\CHRIST~1\AppData\Local\Seven Zip
[05/09/2008|21:55] C:\Users\CHRIST~1\AppData\Local\Temp
[21/06/2008|18:48] C:\Users\CHRIST~1\AppData\Local\Temporary Internet Files
[25/06/2008|21:36] C:\Users\CHRIST~1\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[05/09/2008 20:34][--ah-----] C:\Windows\tasks\SA.DAT
[05/09/2008 20:31][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[21/06/2008|18:51] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[30/07/2008|07:42] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[21/06/2008|18:43] C:\ProgramData\Bureau
[01/07/2006|19:42] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[21/06/2008|18:43] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[26/07/2008|23:30] C:\ProgramData\Google
[03/09/2008|13:56] C:\ProgramData\Lavasoft
[03/09/2008|11:28] C:\ProgramData\Malwarebytes
[21/06/2008|18:43] C:\ProgramData\Menu D‚marrer
[26/08/2008|17:40] C:\ProgramData\Messenger Plus!
[30/06/2008|14:43] C:\ProgramData\Microsoft
[13/08/2008|11:51] C:\ProgramData\Microsoft Help
[21/06/2008|18:43] C:\ProgramData\ModŠles
[01/07/2006|19:29] C:\ProgramData\Nero
[01/07/2006|20:03] C:\ProgramData\NVIDIA
[03/09/2008|16:46] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[21/06/2008|19:44] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[21/06/2008|20:20] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[21/06/2008|18:51] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[30/07/2008|07:44] C:\Program Files\Adobe
[21/06/2008|19:24] C:\Program Files\Alwil Software
[01/07/2006|19:18] C:\Program Files\Apoint2K
[14/08/2008|19:26] C:\Program Files\BitComet
[26/08/2008|17:38] C:\Program Files\Circle Developement
[03/09/2008|13:54] C:\Program Files\Common Files
[01/07/2006|19:17] C:\Program Files\CONEXANT
[01/07/2006|19:42] C:\Program Files\CyberLink
[21/06/2008|18:43] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[31/07/2008|11:54] C:\Program Files\Google
[13/07/2008|18:36] C:\Program Files\InstallShield Installation Information
[13/08/2008|11:52] C:\Program Files\Internet Explorer
[01/07/2006|19:45] C:\Program Files\InterVideo
[26/07/2008|23:30] C:\Program Files\Java
[26/06/2008|15:50] C:\Program Files\K-Lite Codec Pack
[03/09/2008|13:55] C:\Program Files\Lavasoft
[13/07/2008|18:36] C:\Program Files\LG Electronics
[13/07/2008|18:34] C:\Program Files\LG PC Suite 2
[03/09/2008|11:28] C:\Program Files\Malwarebytes' Anti-Malware
[26/08/2008|17:37] C:\Program Files\Messenger Plus! Live
[22/06/2008|09:00] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[01/07/2006|19:40] C:\Program Files\Microsoft Office
[01/07/2006|19:46] C:\Program Files\Microsoft Works
[01/07/2006|19:39] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[01/07/2006|19:21] C:\Program Files\MSXML 4.0
[01/07/2006|19:29] C:\Program Files\Nero
[01/07/2006|19:18] C:\Program Files\Power Manager
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[03/09/2008|16:11] C:\Program Files\Spybot - Search & Destroy
[03/09/2008|11:11] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[01/07/2006|19:07] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[01/07/2006|19:07] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[21/06/2008|20:29] C:\Program Files\Windows Live
[13/08/2008|11:52] C:\Program Files\Windows Mail
[01/07/2006|19:07] C:\Program Files\Windows Media Player
[21/06/2008|18:43] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[01/07/2006|19:07] C:\Program Files\Windows Sidebar
[22/06/2008|11:00] C:\Program Files\WinRAR
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[30/07/2008|07:42] C:\Program Files\Common Files\Adobe
[01/07/2006|19:31] C:\Program Files\Common Files\Ahead
[01/07/2006|19:40] C:\Program Files\Common Files\DESIGNER
[01/07/2006|19:50] C:\Program Files\Common Files\Fujitsu Siemens Computers
[13/07/2008|18:35] C:\Program Files\Common Files\InstallShield
[01/07/2006|19:45] C:\Program Files\Common Files\InterVideo
[26/07/2008|23:27] C:\Program Files\Common Files\Java
[24/07/2008|11:22] C:\Program Files\Common Files\microsoft shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[21/06/2008|20:12] C:\Program Files\Common Files\Symantec Shared
[01/07/2006|19:07] C:\Program Files\Common Files\System
[21/06/2008|20:29] C:\Program Files\Common Files\WindowsLiveInstaller
[03/09/2008|13:54] C:\Program Files\Common Files\Wise Installation Wizard
--------------------\\ Process
( 67 Processes )
iexplore.exe ~ [PID:4296]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\Program Files\Circle Developement
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-05 21:56:01
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwEnumerateKey, ZwQueryKey, ZwOpenKey, ZwClose, ZwEnumerateValueKey, ZwQueryValueKey, ZwOpenFile, ZwQueryDirectoryFile, ZwQuerySystemInformation
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 8
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:47][D:37]-> C:\Users\CHRIST~1\AppData\Local\Temp
[F:1139][D:1]-> C:\Users\CHRIST~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:3519][D:6]-> C:\Users\CHRIST~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:3][D:3]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 05/09/2008|21:58 - Option : [1]
--------------------\\ Fin du rapport a 21:58:22
[ UAC => 1 ]
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6000 )
X86-based PC ( Multiprocessor Free : AMD Turion(tm) 64 X2 Mobile Technology TL-52 )
BIOS : Version 1.0
USER : christophe ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080905-0] 4.8.1229 (Activated)
"C:\Lop SD" ( MAJ : 04-09-2008|09:55 )
Option : [1] ( 05/09/2008|21:55 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[27/06/2008|10:56] C:\Users\CHRIST~1\AppData\Local\Adobe
[01/08/2008|19:12] C:\Users\CHRIST~1\AppData\Local\Ahead
[21/06/2008|18:48] C:\Users\CHRIST~1\AppData\Local\Application Data
[03/09/2008|10:45] C:\Users\CHRIST~1\AppData\Local\d3d9caps.dat
[03/09/2008|13:53] C:\Users\CHRIST~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[21/06/2008|18:49] C:\Users\CHRIST~1\AppData\Local\GDIPFONTCACHEV1.DAT
[15/08/2008|16:44] C:\Users\CHRIST~1\AppData\Local\Google
[21/06/2008|18:48] C:\Users\CHRIST~1\AppData\Local\Historique
[05/09/2008|00:28] C:\Users\CHRIST~1\AppData\Local\IconCache.db
[07/08/2008|17:46] C:\Users\CHRIST~1\AppData\Local\Microsoft
[26/08/2008|13:24] C:\Users\CHRIST~1\AppData\Local\Microsoft Games
[21/06/2008|18:51] C:\Users\CHRIST~1\AppData\Local\Seven Zip
[05/09/2008|21:55] C:\Users\CHRIST~1\AppData\Local\Temp
[21/06/2008|18:48] C:\Users\CHRIST~1\AppData\Local\Temporary Internet Files
[25/06/2008|21:36] C:\Users\CHRIST~1\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[05/09/2008 20:34][--ah-----] C:\Windows\tasks\SA.DAT
[05/09/2008 20:31][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[21/06/2008|18:51] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[30/07/2008|07:42] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[21/06/2008|18:43] C:\ProgramData\Bureau
[01/07/2006|19:42] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[21/06/2008|18:43] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[26/07/2008|23:30] C:\ProgramData\Google
[03/09/2008|13:56] C:\ProgramData\Lavasoft
[03/09/2008|11:28] C:\ProgramData\Malwarebytes
[21/06/2008|18:43] C:\ProgramData\Menu D‚marrer
[26/08/2008|17:40] C:\ProgramData\Messenger Plus!
[30/06/2008|14:43] C:\ProgramData\Microsoft
[13/08/2008|11:51] C:\ProgramData\Microsoft Help
[21/06/2008|18:43] C:\ProgramData\ModŠles
[01/07/2006|19:29] C:\ProgramData\Nero
[01/07/2006|20:03] C:\ProgramData\NVIDIA
[03/09/2008|16:46] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[21/06/2008|19:44] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[21/06/2008|20:20] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[21/06/2008|18:51] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[30/07/2008|07:44] C:\Program Files\Adobe
[21/06/2008|19:24] C:\Program Files\Alwil Software
[01/07/2006|19:18] C:\Program Files\Apoint2K
[14/08/2008|19:26] C:\Program Files\BitComet
[26/08/2008|17:38] C:\Program Files\Circle Developement
[03/09/2008|13:54] C:\Program Files\Common Files
[01/07/2006|19:17] C:\Program Files\CONEXANT
[01/07/2006|19:42] C:\Program Files\CyberLink
[21/06/2008|18:43] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[31/07/2008|11:54] C:\Program Files\Google
[13/07/2008|18:36] C:\Program Files\InstallShield Installation Information
[13/08/2008|11:52] C:\Program Files\Internet Explorer
[01/07/2006|19:45] C:\Program Files\InterVideo
[26/07/2008|23:30] C:\Program Files\Java
[26/06/2008|15:50] C:\Program Files\K-Lite Codec Pack
[03/09/2008|13:55] C:\Program Files\Lavasoft
[13/07/2008|18:36] C:\Program Files\LG Electronics
[13/07/2008|18:34] C:\Program Files\LG PC Suite 2
[03/09/2008|11:28] C:\Program Files\Malwarebytes' Anti-Malware
[26/08/2008|17:37] C:\Program Files\Messenger Plus! Live
[22/06/2008|09:00] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[01/07/2006|19:40] C:\Program Files\Microsoft Office
[01/07/2006|19:46] C:\Program Files\Microsoft Works
[01/07/2006|19:39] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[01/07/2006|19:21] C:\Program Files\MSXML 4.0
[01/07/2006|19:29] C:\Program Files\Nero
[01/07/2006|19:18] C:\Program Files\Power Manager
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[03/09/2008|16:11] C:\Program Files\Spybot - Search & Destroy
[03/09/2008|11:11] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[01/07/2006|19:07] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[01/07/2006|19:07] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[21/06/2008|20:29] C:\Program Files\Windows Live
[13/08/2008|11:52] C:\Program Files\Windows Mail
[01/07/2006|19:07] C:\Program Files\Windows Media Player
[21/06/2008|18:43] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[01/07/2006|19:07] C:\Program Files\Windows Sidebar
[22/06/2008|11:00] C:\Program Files\WinRAR
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[30/07/2008|07:42] C:\Program Files\Common Files\Adobe
[01/07/2006|19:31] C:\Program Files\Common Files\Ahead
[01/07/2006|19:40] C:\Program Files\Common Files\DESIGNER
[01/07/2006|19:50] C:\Program Files\Common Files\Fujitsu Siemens Computers
[13/07/2008|18:35] C:\Program Files\Common Files\InstallShield
[01/07/2006|19:45] C:\Program Files\Common Files\InterVideo
[26/07/2008|23:27] C:\Program Files\Common Files\Java
[24/07/2008|11:22] C:\Program Files\Common Files\microsoft shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[21/06/2008|20:12] C:\Program Files\Common Files\Symantec Shared
[01/07/2006|19:07] C:\Program Files\Common Files\System
[21/06/2008|20:29] C:\Program Files\Common Files\WindowsLiveInstaller
[03/09/2008|13:54] C:\Program Files\Common Files\Wise Installation Wizard
--------------------\\ Process
( 67 Processes )
iexplore.exe ~ [PID:4296]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\Program Files\Circle Developement
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-05 21:56:01
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwEnumerateKey, ZwQueryKey, ZwOpenKey, ZwClose, ZwEnumerateValueKey, ZwQueryValueKey, ZwOpenFile, ZwQueryDirectoryFile, ZwQuerySystemInformation
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 8
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:47][D:37]-> C:\Users\CHRIST~1\AppData\Local\Temp
[F:1139][D:1]-> C:\Users\CHRIST~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:3519][D:6]-> C:\Users\CHRIST~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:3][D:3]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 05/09/2008|21:58 - Option : [1]
--------------------\\ Fin du rapport a 21:58:22
[ UAC => 1 ]
Je profite de la question que ANGEL64 vient de te poser.
J'ai le meme probleme!
Voici le rapport de hijackthis
Je te remercie d'avance
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:11:24, on 03/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\IFXSPMGT.exe
C:\WINDOWS\system32\IFXTCS.exe
C:\Program Files\PDF Complete\pdfsvc.exe
C:\Program Files\ProtectTools\Embedded Security Software\PSDsrvc.EXE
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\Program Files\ProtectTools\Embedded Security Software\PSDrt.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\PROGRA~1\Wanadoo\EspaceWanadoo.exe
C:\documents and settings\administrateur\local settings\application data\abeor.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://eo.st
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: (no name) - {6345459B-0836-4561-8F1F-DB6D97DF4DAB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: {f0940839-1077-7e28-a884-e11216f0ac28} - {82ca0f61-211e-488a-82e7-77019380490f} - (no file)
O2 - BHO: (no name) - {8FFA28D0-0317-4B76-9258-DF77E94BDD8C} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {914F1F29-1774-4F3B-8AD9-6F00E0FA63E3} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: (no name) - {EAC7C0A4-18E9-44F2-870F-CE1F60D4AB6C} - (no file)
O3 - Toolbar: (no name) - {892B88A3-DC94-4A1F-A75A-9AA50061A683} - (no file)
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe EspaceWanadoo.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [abeor] "c:\documents and settings\administrateur\local settings\application data\abeor.exe" abeor
O4 - HKCU\..\Run: [Instant Access] C:\WINDOWS\system32\nsinet.exe /res
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoplus.fr/ImageUploader3.cab
O16 - DPF: {CAFECAFE-0013-0001-0018-ABCDEFABCDEF} (JInitiator 1.3.1.18) -
O16 - DPF: {DF1C8E21-4045-4D67-B528-335F1A4F0DE9} - http://btpnative.com/click?data=Y2lRdjloOVQ5dlFzRTVtYWtEX2hpc3pkVUJjZnpjX2VjNjJlYXd0WUF2WXFzYXBEOGFURzRiR0ZUdmozbDdDcFhhaFhzWC04NE1oRU04NFg4cVNrdzJQTU9BS2hCUXFUbEFlZkhMRFhKZHNQSnY2WVROUFBlWGN2T0xZYU9IdDU4UnJqLU9ZT3VmZExpZkoxYlZJUGFRMg2&id=676c4b65-fc2f-4055-ae62-0140b1db877e
O17 - HKLM\System\CCS\Services\Tcpip\..\{FF711E23-A959-4B4B-88BD-41E5EBBD7204}: NameServer = 81.253.149.1 80.10.246.3
O20 - AppInit_DLLs: xzbllp.dll
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O20 - Winlogon Notify: rqRLcBTL - rqRLcBTL.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - C:\WINDOWS\system32\IFXSPMGT.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - C:\WINDOWS\system32\IFXTCS.exe
O23 - Service: PC Angel (PCA) - SoftThinks - C:\WINDOWS\SMINST\PCAngel.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - C:\Program Files\ProtectTools\Embedded Security Software\PSDsrvc.EXE
O24 - Desktop Component 0: (no name) - http://www.photoplus.fr/upload/2954/diaporama/photos%20parents%20juin.juill(3).jpg