Aller au contenu

Jagaumo

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    124

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par Jagaumo

  1. Jagaumo
    Salut Charles Hingals Alors voilà : 1 KEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/McAfee Personal Firewall Service n'existe pas selon regedit (...je n'ai rien rouvé au nom de macfee la d'dans) 2 Fix cheked effectué sur les lignes indiquées 3 ActiveX laissés pour mes prochains scan. 4 Dont see! est un prg de contrôle parental (j'ai 3 p'tits à protéger alors bon... ) 5 Désactivation-restauration system - ok 6 Fichiers systeme cachés - ok 7 Easy cleaner - Ok 8 Zeb Protect -> rien compris au paramétrage (...je consulterai le tuto) 9 Regprot pas bien pigé le fonctionnement (faut il dire "yes" delete dès qu'il trouve un truc ?) -------------------------------------- Logfile of HijackThis v1.99.1 Scan saved at 22:05:31, on 23/01/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\fxssvc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\PRISMSVR.EXE C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe C:\WINDOWS\stsystra.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe C:\Program Files\Dell\Media Experience\DMXLauncher.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe C:\Program Files\LCPA Lite\Lcpa Lite.exe C:\WINDOWS\system32\dlcccoms.exe C:\Program Files\Winamp\winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Soft4Ever\looknstop\looknstop.exe C:\Program Files\Don't see!\don't see.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Dell sans fil\PRISMCFG.exe C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe C:\Program Files\regprot\regprot.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.fr/myway R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [dlccmon.exe] "C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe" O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Diskeeper 10 Professional Edition Registration.lnk = C:\Program Files\Diskeeper Corporation\Diskeeper\ESIRegister.exe O4 - Startup: HDDlife.lnk = C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe O4 - Global Startup: Carte pour réseau sans fil WLAN (USB 2.0).lnk = ? O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/downloads/kws/kav...can_unicode.cab O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: dlcc_device - Unknown owner - C:\WINDOWS\system32\dlcccoms.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe O23 - Service: Lsdiorw - Logiciels & Services Duhem, Paris, France - C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Security - (no file) O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe Voili, voilou... Excellente soirée, merci encore et à très + j'espère.
  2. Jagaumo
    Salut Charles Hingals Rooolalahhhh !!!! Quel post encore... J'en suis baba ! Je suis au boulot mais ce soir je liste les points un par un. Ils seront éxécutés fidèlement. J'aurai certainement encore une ou deux questions... (tu me dit si j'abuse ou si je dois poster ailleurs, hein ?) PS : le fonctionnement de zebulon m'échappe totalement. Le site doit avoir des dizaines de milliards de demande d'analyse (pour ne parler que de ça...), non ? Comment faites vous pour gérer le flux, tranquillement en prenant le temps comme si chaque personne était la seule ? Je me répète mais je trouve ça si ahurissant... :P A++.
  3. Jagaumo
    Salut Charles Ingals Impossible de virer les TEMP restant (même après redémarrage et sans prg ouvert) Peut-être qu'un p'tit coup de Copylock suffirait... Je veux bien oui. A propos de mon firewall, j'avais macafee qui m'inquiétait un peu plus chaque jour. Il m'a ensuite été conseillé KERIO... qui plantait constamment le système (erreur grave etc...) Et puis j'ai vu que look n'était pas si mal noté. J'ai tout de même récupéré KERIO 2.1.5 qui parait t'il est plus stable. Je le testerai dans quelques jours quand ma version d'essai look sera épuisée. Mais si là encore, je peux profiter de tes conseils, je suis preneur les yeux fermés. Concernant macafee j'avais crû le désinstaller complet (avec unlooker) A priori ça n'est pas le cas... J'ai un peu l'impression de découvrir le monde depuis que je suis arrivé sur zebulon... Merci et très bonne journée. Je dois partir au taf... PS : c'est tout de même dingue ce site ! Plus j'y pense, plus je me dis qu'un tel service n'est tout simplement... pas concevable. Une telle précision dans les procédures, une telle efficacité, une telle patience et tout cela en toute simplicité. C'est trop remarquable pour être vrai ! Donc, sois je rêve (mais là ça commence à faire un peu long...) sois... ben je sais pas ? WHY ?
  4. Jagaumo
    J'ai pas pû virer ces 3 trucs TEMP : ~DF4237.tmp - ~DFB85F.tmp - ~DFBA4B.tmp Sinion, MYWAYSEARCHASSISTANTDE.AUXILIARY.1 -> supprimé et cleanmgr effectué ------------------------------------------- Logfile of HijackThis v1.99.1 Scan saved at 01:11:15, on 23/01/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\fxssvc.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\PRISMSVR.EXE C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe C:\WINDOWS\stsystra.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\Program Files\Dell\Media Experience\DMXLauncher.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe C:\Program Files\LCPA Lite\Lcpa Lite.exe C:\WINDOWS\system32\dlcccoms.exe C:\Program Files\Winamp\winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Dell sans fil\PRISMCFG.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Soft4Ever\looknstop\looknstop.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.fr/myway R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.fr/myway R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.fr/myway O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [DLCCCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLCCtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [dlccmon.exe] "C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe" O4 - HKLM\..\Run: [LcpaLite] "C:\Program Files\LCPA Lite\Lcpa Lite.exe" O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto O4 - HKLM\..\Run: [don't see] C:\Program Files\Don't see!\don't see.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Diskeeper 10 Professional Edition Registration.lnk = C:\Program Files\Diskeeper Corporation\Diskeeper\ESIRegister.exe O4 - Startup: HDDlife.lnk = C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe O4 - Global Startup: Carte pour réseau sans fil WLAN (USB 2.0).lnk = ? O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/downloads/kws/kav...can_unicode.cab O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: dlcc_device - Unknown owner - C:\WINDOWS\system32\dlcccoms.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe O23 - Service: Lsdiorw - Logiciels & Services Duhem, Paris, France - C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Security - (no file) O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe Je file car j'ai un gros gros taf demain. Bonne nuit à toi et bien sûr : Merci pour ton service ultra-précieux !!!
  5. Jagaumo
    Pendant le scan AVAST a pisté un pskavs.dll (virus Win32:CTX - origine ActveScan) Je l'ai placé en quarantaine et le scan à continué (dois je le supprimer ?) --------------------------------------------------------------------- Incident Statut Analyse Outil indésirable:application/myway No Désinfecté HKEY_CLASSES_ROOT\MYWAYSEARCHASSISTANTDE.AUXILIARY.1 Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@atdmt[2].txt Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@doubleclick[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@xiti[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\6l1gqqz5.default\cookies.txt[.xiti.com/] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.xiti.com/] Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.atdmt.com/] Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[as1.falkag.de/] Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.tradedoubler.com/] Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.weborama.fr/] Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.tradedoubler.com/] Spyware:Cookie/Valueclick No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.valueclick.com/] Spyware:Cookie/Mediaplex No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.mediaplex.com/] Spyware:Cookie/24/7 Realmedia No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.247realmedia.com/] Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.bluestreak.com/] Spyware:Cookie/Com.com No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.com.com/] Spyware:Cookie/Apmebf No Désinfecté C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@apmebf[2].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@fe.lea.lycos[1].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@fe.lea.lycos[2].txt Spyware:Cookie/Maxserving No Désinfecté C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@maxserving[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@xiti[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt[] Spyware:Cookie/Maxserving No Désinfecté C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@maxserving[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@xiti[1].txt Spyware:Cookie/Advertising No Désinfecté C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt[] Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@as1.falkag[1].txt Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@atdmt[2].txt Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@bluestreak[2].txt Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@weborama[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@xiti[1].txt Spyware:Cookie/Zedo No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@zedo[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\6l1gqqz5.default\cookies.txt[] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[] Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@atdmt[2].txt Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@doubleclick[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@xiti[1].txt Hacktool:HackTool/EvID No Désinfecté C:\Documents and Settings\Manuel Destoney\Local Settings\Temp\zos293sh.exe Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt[] Spyware:Cookie/did-it No Désinfecté C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@did-it[1].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@fe.lea.lycos[1].txt Spyware:Cookie/Maxserving No Désinfecté C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@maxserving[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@xiti[1].txt --------------------------------------------------------------------- Logfile of HijackThis v1.99.1 Scan saved at 00:36:53, on 23/01/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\fxssvc.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\PRISMSVR.EXE C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe C:\WINDOWS\stsystra.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\Program Files\Dell\Media Experience\DMXLauncher.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe C:\Program Files\LCPA Lite\Lcpa Lite.exe C:\WINDOWS\system32\dlcccoms.exe C:\Program Files\Winamp\winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Don't see!\don't see.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Dell sans fil\PRISMCFG.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Soft4Ever\looknstop\looknstop.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.fr/myway R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.fr/myway R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.fr/myway O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [DLCCCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLCCtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [dlccmon.exe] "C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe" O4 - HKLM\..\Run: [LcpaLite] "C:\Program Files\LCPA Lite\Lcpa Lite.exe" O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto O4 - HKLM\..\Run: [don't see] C:\Program Files\Don't see!\don't see.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Diskeeper 10 Professional Edition Registration.lnk = C:\Program Files\Diskeeper Corporation\Diskeeper\ESIRegister.exe O4 - Startup: HDDlife.lnk = C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe O4 - Global Startup: Carte pour réseau sans fil WLAN (USB 2.0).lnk = ? O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/downloads/kws/kav...can_unicode.cab O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: dlcc_device - Unknown owner - C:\WINDOWS\system32\dlcccoms.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe O23 - Service: Lsdiorw - Logiciels & Services Duhem, Paris, France - C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Security - (no file) O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe Merci à toi.
  6. Jagaumo
    Le nettoyeur a eu du mal a liquider les entrées. J'ai dû m'y reprendre à 3 fois pour qu'il me propose enfin la suppression... Je suis sur panda (j'ai déja 41 log espions + 2 outils de piratage et outils indésirables...) A++.
  7. Jagaumo
    Salut Charles Ingals et merci pour ta réponse. Je me colle au boulot tout de suite... HKEY_LOCAL_MACHINE/SOFTWARE/PANDA J'ai viré ce truc. Je ne sais pas si j'ai bien fait mais le scan panda à démarré sans erreur ensuite. A++.
  8. Jagaumo
    Bonjour Charles Hingals Après le rapport symantec (voir plus haut) j'ai enfin pû lancer panda... (après avoir supprimé le dossier panda avec regedit, j'ai relancé le scan. Le contrôle ActiveX était peut-être mal installé la première fois. Enfin, j'en sais trop rien mais à l'arrivée ça a fonctionné comme sur des roulettes...) Voici le rapport. Merci pour ton analyse. Bien à toi. Incident Statut Analyse Outil indésirable:application/myway No Désinfecté HKEY_CLASSES_ROOT\MYWAYSEARCHASSISTANTDE.AUXILIARY Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@atdmt[2].txt Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@doubleclick[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@xiti[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\6l1gqqz5.default\cookies.txt[.xiti.com/] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.xiti.com/] Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[as1.falkag.de/] Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.atdmt.com/] Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.tradedoubler.com/] Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.weborama.fr/] Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.tradedoubler.com/] Spyware:Cookie/Valueclick No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.valueclick.com/] Spyware:Cookie/Mediaplex No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.mediaplex.com/] Spyware:Cookie/24/7 Realmedia No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.247realmedia.com/] Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.bluestreak.com/] Spyware:Cookie/Com.com No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[.com.com/] Spyware:Cookie/Apmebf No Désinfecté C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@apmebf[2].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@fe.lea.lycos[1].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@fe.lea.lycos[2].txt Spyware:Cookie/Maxserving No Désinfecté C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@maxserving[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@xiti[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt[] Spyware:Cookie/Maxserving No Désinfecté C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@maxserving[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@xiti[1].txt Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt[] Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@as1.falkag[1].txt Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@atdmt[2].txt Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@bluestreak[2].txt Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@weborama[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@xiti[1].txt Spyware:Cookie/Zedo No Désinfecté C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@zedo[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\6l1gqqz5.default\cookies.txt[] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\f4zsk7ic.default\cookies.txt[] Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@atdmt[2].txt Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@doubleclick[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@xiti[1].txt Hacktool:HackTool/EvID No Désinfecté C:\Documents and Settings\Manuel Destoney\Local Settings\Temp\zos293sh.exe Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt[] Spyware:Cookie/did-it No Désinfecté C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@did-it[1].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@fe.lea.lycos[1].txt Spyware:Cookie/Maxserving No Désinfecté C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@maxserving[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@xiti[1].txt
  9. Jagaumo
    Salut Charles Hingals Et voilà le rapport de symantec : Virus Status: Safe! Your computer is free of known threats. 67274 files scanned, 0 file(s) infected on your disk drives. No viruses were detected in memory. Your computer is free of known threats. Virus Detection does not check compressed files. Your computer appears safe for now. For real-time protection from viruses, hackers and privacy threats, upgrade to Norton Internet Security™. Autre chose ? Merci à toi et bonne soirée.
  10. Jagaumo
    Salut Charles Ingals Le PC fonctionnait bien. Je n'avais rien remarqué d'anormal. J'ai suivi la procédure et refait un test Kaspersky : ------------------------------------------------------------------------------- KASPERSKY ON-LINE SCANNER REPORT Sunday, January 22, 2006 09:56:42 Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600) Kaspersky On-line Scanner version: 5.0.67.0 Kaspersky Anti-Virus database last update: 21/01/2006 Kaspersky Anti-Virus database records: 172346 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: extended Scan Archives: true Scan Mail Bases: true Scan Target - My Computer: C:\ D:\ E:\ F:\ G:\ H:\ I:\ Scan Statistics: Total number of scanned objects: 66889 Number of viruses found: 0 Number of infected objects: 0 Number of suspicious objects: 0 Duration of the scan process: 3287 sec No malware has been detected. The sections that have been scanned are CLEAN. Scan process completed. Qu'en penses tu ? J'ai retenté panda et trendmicro sans succès. Merci encore et bon dimanche.
  11. Jagaumo
    Salut Charles Ingals Ma connection laisse à désirer ce soir... Un temps fou pour faire ce scan. C'est pas joli, joli, non ? ------------------------------------------------------------------------------- KASPERSKY ON-LINE SCANNER REPORT Saturday, January 21, 2006 23:06:41 Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600) Kaspersky On-line Scanner version: 5.0.67.0 Kaspersky Anti-Virus database last update: 21/01/2006 Kaspersky Anti-Virus database records: 172343 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: extended Scan Archives: true Scan Mail Bases: true Scan Target - My Computer: C:\ D:\ E:\ F:\ G:\ H:\ I:\ Scan Statistics: Total number of scanned objects: 78746 Number of viruses found: 2 Number of infected objects: 2 Number of suspicious objects: 0 Duration of the scan process: 2959 sec Infected Object Name - Virus Name C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP59\A0026603.exe Infected: Trojan-Downloader.Win32.INService.gen C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0000574.dll Infected: HackTool.Win32.Hidd.b Scan process completed.
  12. Jagaumo
    Bon... J'ai annulé le scan. Prb vraisemblablement. Que dois je faire ? Merci.
  13. Jagaumo
    Après 2h de scan sur trendmicro, je suis tjs en transfert... Dois y'a avoir un souci quelque part, non ? J'annule et je relance le test.
  14. Jagaumo
    Salut charles ingals, On recommence quand tu veux ! D'ailleurs y a t'il un rythme à prendre pour poster des rapports hijackthis sur zebulon.fr ? ------------------------------ Je viens de relancer le test PANDA sur explorer : Une erreur s'est produite lors du téléchargement de Panda ActiveScan. Recommencez l'opération. Si l'erreur se produit de nouveau, redémarrez votre ordinateur et essayer une nouvelle foisLes raisons de l’erreur peuvent être: Ne pas autoriser le téléchargement du contrôle ActiveScan de l’application. Des problèmes avec la connexion Internet. Une erreur est survenue au cours de l’installation d’ActiveScan. Merci de vérifier que votre connexion Internet fonctionne puis cliquez sur 'Réessayer'. ------------------------------ Je suis tjs en "Transfert d'informations" sur trendmicro... Je poste le rapport dès qu'il est terminé. A++ j'espère.
  15. Jagaumo
    Et voici un nouveau rapport. --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 17:51:03, 20/01/2006 + Somme de contrôle: A03D1E97 + Résultats du scan: :mozilla.6:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.7:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.8:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.9:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.10:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder :mozilla.11:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder :mozilla.12:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.13:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Googleadservices : Nettoyer et sauvegarder :mozilla.16:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Advertising : Nettoyer et sauvegarder :mozilla.17:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Advertising : Nettoyer et sauvegarder :mozilla.30:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder :mozilla.37:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder :mozilla.38:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder :mozilla.48:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder :mozilla.49:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder :mozilla.50:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Mediaplex : Nettoyer et sauvegarder :mozilla.51:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder :mozilla.58:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.59:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.60:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.73:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.247realmedia : Nettoyer et sauvegarder :mozilla.74:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.247realmedia : Nettoyer et sauvegarder :mozilla.75:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.247realmedia : Nettoyer et sauvegarder :mozilla.93:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder :mozilla.101:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.102:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.103:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.104:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.111:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder :mozilla.113:C:\Documents and Settings\Françoise Ressauche\Application Data\Mozilla\Firefox\Profiles\ceydubxb.default\cookies.txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@247realmedia[2].txt -> Spyware.Cookie.247realmedia : Nettoyer et sauvegarder C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@atdmt[1].txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@bluestreak[2].txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@estat[1].txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@mediaplex[1].txt -> Spyware.Cookie.Mediaplex : Nettoyer et sauvegarder C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@tradedoubler[1].txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@weborama[2].txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\Françoise Ressauche\Cookies\françoise Ressauche@www.smartadserver[2].txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.12:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.13:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.14:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.15:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.16:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.17:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.18:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder :mozilla.31:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.32:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.39:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder :mozilla.43:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Mediaplex : Nettoyer et sauvegarder :mozilla.44:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Googleadservices : Nettoyer et sauvegarder :mozilla.51:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder :mozilla.52:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder :mozilla.53:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder :mozilla.54:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Googleadservices : Nettoyer et sauvegarder :mozilla.66:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Googleadservices : Nettoyer et sauvegarder :mozilla.70:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Googleadservices : Nettoyer et sauvegarder :mozilla.72:C:\Documents and Settings\Gauthier Destoney\Application Data\Mozilla\Firefox\Profiles\gi9e44z2.default\cookies.txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@adtech[2].txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@advertising[1].txt -> Spyware.Cookie.Advertising : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@atdmt[2].txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@bluestreak[2].txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@e-2dj6wfkiqoazsaq.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@ehg-paintball.hitbox[2].txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@estat[1].txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@hitbox[2].txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@weborama[2].txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\Gauthier Destoney\Cookies\gauthier Destoney@www.smartadserver[2].txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.6:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.7:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.12:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Comclick : Nettoyer et sauvegarder :mozilla.13:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Comclick : Nettoyer et sauvegarder :mozilla.14:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Comclick : Nettoyer et sauvegarder :mozilla.17:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Valueclick : Nettoyer et sauvegarder :mozilla.18:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Valueclick : Nettoyer et sauvegarder :mozilla.33:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder :mozilla.34:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder :mozilla.35:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder :mozilla.36:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder :mozilla.41:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder :mozilla.57:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.58:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.59:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.63:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder :mozilla.71:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder :mozilla.80:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.81:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.82:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.89:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder :mozilla.91:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder :mozilla.97:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Advertising : Nettoyer et sauvegarder :mozilla.98:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Advertising : Nettoyer et sauvegarder :mozilla.105:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.106:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.107:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.108:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.109:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.110:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.111:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.115:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Nettoyer et sauvegarder :mozilla.120:C:\Documents and Settings\Jade Destoney\Application Data\Mozilla\Firefox\Profiles\5tnx6jw4.default\cookies.txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@2o7[2].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@ads.pointroll[1].txt -> Spyware.Cookie.Pointroll : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@adtech[2].txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@advertising[2].txt -> Spyware.Cookie.Advertising : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@as1.falkag[2].txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@atdmt[2].txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@bluestreak[2].txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@doubleclick[2].txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@estat[1].txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@fl01.ct2.comclick[2].txt -> Spyware.Cookie.Comclick : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@mediaplex[1].txt -> Spyware.Cookie.Mediaplex : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@statcounter[2].txt -> Spyware.Cookie.Statcounter : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@tradedoubler[1].txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@valueclick[2].txt -> Spyware.Cookie.Valueclick : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@weborama[2].txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@wreport.weborama[1].txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\Jade Destoney\Cookies\jade Destoney@www.smartadserver[2].txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.13:C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\6l1gqqz5.default\cookies.txt -> Spyware.Cookie.Com : Nettoyer et sauvegarder :mozilla.14:C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\6l1gqqz5.default\cookies.txt -> Spyware.Cookie.Com : Nettoyer et sauvegarder :mozilla.21:C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\6l1gqqz5.default\cookies.txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder :mozilla.24:C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\6l1gqqz5.default\cookies.txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder :mozilla.25:C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\6l1gqqz5.default\cookies.txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder :mozilla.29:C:\Documents and Settings\Manuel Destoney\Application Data\Mozilla\Firefox\Profiles\6l1gqqz5.default\cookies.txt -> Spyware.Cookie.Googleadservices : Nettoyer et sauvegarder C:\Documents and Settings\Manuel Destoney\Cookies\manuel Destoney@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder :mozilla.12:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.13:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.14:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.15:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder :mozilla.16:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder :mozilla.19:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Casinotropez : Nettoyer et sauvegarder :mozilla.23:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Advertising : Nettoyer et sauvegarder :mozilla.24:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Advertising : Nettoyer et sauvegarder :mozilla.36:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder :mozilla.37:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder :mozilla.46:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.47:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.48:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder :mozilla.55:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Onestat : Nettoyer et sauvegarder :mozilla.56:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Onestat : Nettoyer et sauvegarder :mozilla.58:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder :mozilla.59:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder :mozilla.60:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder :mozilla.62:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder :mozilla.70:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.82:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Ivwbox : Nettoyer et sauvegarder :mozilla.84:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Mediaplex : Nettoyer et sauvegarder :mozilla.93:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder :mozilla.94:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder :mozilla.109:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.110:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.116:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder :mozilla.119:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Serving-sys : Nettoyer et sauvegarder :mozilla.120:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Serving-sys : Nettoyer et sauvegarder :mozilla.121:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Serving-sys : Nettoyer et sauvegarder :mozilla.122:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\4wwfn9a9.default\cookies.txt -> Spyware.Cookie.Serving-sys : Nettoyer et sauvegarder :mozilla.6:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\vdbahf08.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.7:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\vdbahf08.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.13:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\vdbahf08.default\cookies.txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder :mozilla.14:C:\Documents and Settings\Morane Destoney\Application Data\Mozilla\Firefox\Profiles\vdbahf08.default\cookies.txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@2o7[2].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@ads.pointroll[1].txt -> Spyware.Cookie.Pointroll : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@as1.falkag[2].txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@atdmt[2].txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@bluestreak[1].txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@bs.serving-sys[1].txt -> Spyware.Cookie.Serving-sys : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@doubleclick[2].txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@serving-sys[2].txt -> Spyware.Cookie.Serving-sys : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@statcounter[2].txt -> Spyware.Cookie.Statcounter : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@statse.webtrendslive[1].txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@tradedoubler[2].txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@weborama[1].txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\Morane Destoney\Cookies\morane Destoney@www.smartadserver[1].txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder ::Fin du rapport
  16. Jagaumo
    Aaarghh !!! Je suis au taf... Je ferai donc cela dès ce soir. Merci pour tout. Ce forum est complètement sidérant...
  17. Jagaumo
    J'ai essayé 3 fois sans succès (j'avais désactivé avast) : "Une erreur s'est produite lors du téléchargement de Panda ActiveScan. Recommencez l'opération. Si l'erreur se produit de nouveau, redémarrez votre ordinateur et essayer une nouvelle fois Les raisons de l’erreur peuvent être: Ne pas autoriser le téléchargement du contrôle ActiveScan de l’application. Des problèmes avec la connexion Internet. Une erreur est survenue au cours de l’installation d’ActiveScan. Merci de vérifier que votre connexion Internet fonctionne puis cliquez sur 'Réessayer'. ---------------------------------------- Sinon voici le rapport : StartupList report, 20/01/2006, 01:04:05 StartupList version: 1.52.2 Started from : C:\Program Files\HijackThis\HijackThis.EXE Detected: Windows XP SP2 (WinNT 5.01.2600) Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180) * Using default options * Including empty and uninteresting sections * Showing rarely important sections ================================================== Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\fxssvc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\PRISMSVR.EXE C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe C:\WINDOWS\stsystra.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\Program Files\Dell\Media Experience\DMXLauncher.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe C:\Program Files\LCPA Lite\Lcpa Lite.exe C:\Program Files\Winamp\winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\dlcccoms.exe C:\Program Files\Soft4Ever\looknstop\looknstop.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Dell sans fil\PRISMCFG.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Windows NT\Accessoires\wordpad.exe C:\Program Files\HijackThis\HijackThis.exe -------------------------------------------------- Listing of startup folders: Shell folders Startup: [C:\Documents and Settings\Manuel Destoney\Menu Démarrer\Programmes\Démarrage] Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe Diskeeper 10 Professional Edition Registration.lnk = C:\Program Files\Diskeeper Corporation\Diskeeper\ESIRegister.exe HDDlife.lnk = C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe Shell folders AltStartup: *Folder not found* User shell folders Startup: *Folder not found* User shell folders AltStartup: *Folder not found* Shell folders Common Startup: [C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage] Carte pour réseau sans fil WLAN (USB 2.0).lnk = ? WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE Shell folders Common AltStartup: *Folder not found* User shell folders Common Startup: *Folder not found* User shell folders Alternate Common Startup: *Folder not found* -------------------------------------------------- Checking Windows NT UserInit: [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] UserInit = C:\WINDOWS\system32\userinit.exe, [HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* [HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] *Registry value not found* [HKCU\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run SunJavaUpdateSched = C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe SigmatelSysTrayApp = stsystra.exe IAAnotif = C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe ATIPTA = "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" DVDLauncher = "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" QuickTime Task = "C:\Program Files\QuickTime\qttask.exe" -atboottime DMXLauncher = C:\Program Files\Dell\Media Experience\DMXLauncher.exe dla = C:\WINDOWS\system32\dla\tfswctrl.exe ISUSPM Startup = C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup ISUSScheduler = "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run MSMSGS = "C:\Program Files\Messenger\msmsgs.exe" /background -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\Run *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\Run *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- File association entry for .EXE: HKEY_CLASSES_ROOT\exefile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .COM: HKEY_CLASSES_ROOT\comfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .BAT: HKEY_CLASSES_ROOT\batfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .PIF: HKEY_CLASSES_ROOT\piffile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .SCR: HKEY_CLASSES_ROOT\scrfile\shell\open\command (Default) = "%1" /S -------------------------------------------------- File association entry for .HTA: HKEY_CLASSES_ROOT\htafile\shell\open\command (Default) = C:\WINDOWS\system32\mshta.exe "%1" %* -------------------------------------------------- File association entry for .TXT: HKEY_CLASSES_ROOT\txtfile\shell\open\command (Default) = %SystemRoot%\system32\NOTEPAD.EXE %1 -------------------------------------------------- Enumerating Active Setup stub paths: HKLM\Software\Microsoft\Active Setup\Installed Components (* = disabled by HKCU twin) [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] StubPath = C:\WINDOWS\inf\unregmp2.exe /ShowWMP [>{26923b43-4d38-484f-9b9e-de460746276c}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE [>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] * StubPath = RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP [>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] * StubPath = %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT [{5945c046-1e7d-11d1-bc44-00c04fd912be}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub [{7790769C-0471-11d2-AF11-00C04FA35D02}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install [{89820200-ECBD-11cf-8B85-00AA005B4340}] * StubPath = regsvr32.exe /s /n /i:U shell32.dll [{89820200-ECBD-11cf-8B85-00AA005B4383}] * StubPath = %SystemRoot%\system32\ie4uinit.exe [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] * StubPath = C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install [{8b15971b-5355-4c82-8c07-7e181ea07608}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser -------------------------------------------------- Enumerating ICQ Agent Autostart apps: HKCU\Software\Mirabilis\ICQ\Agent\Apps *Registry key not found* -------------------------------------------------- Load/Run keys from C:\WINDOWS\WIN.INI: load=*INI section not found* run=*INI section not found* Load/Run keys from Registry: HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\Windows: load= HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs= -------------------------------------------------- Shell & screensaver key from C:\WINDOWS\SYSTEM.INI: Shell=*INI section not found* SCRNSAVE.EXE=*INI section not found* drivers=*INI section not found* Shell & screensaver key from Registry: Shell=Explorer.exe SCRNSAVE.EXE=C:\WINDOWS\system32\THE_LO~1.SCR drivers=*Registry value not found* Policies Shell key: HKCU\..\Policies: Shell=*Registry value not found* HKLM\..\Policies: Shell=*Registry value not found* -------------------------------------------------- Checking for EXPLORER.EXE instances: C:\WINDOWS\Explorer.exe: PRESENT! C:\Explorer.exe: not present C:\WINDOWS\Explorer\Explorer.exe: not present C:\WINDOWS\System\Explorer.exe: not present C:\WINDOWS\System32\Explorer.exe: not present C:\WINDOWS\Command\Explorer.exe: not present C:\WINDOWS\Fonts\Explorer.exe: not present -------------------------------------------------- Checking for superhidden extensions: .lnk: HIDDEN! (arrow overlay: yes) .pif: HIDDEN! (arrow overlay: yes) .exe: not hidden .com: not hidden .bat: not hidden .hta: not hidden .scr: not hidden .shs: HIDDEN! .shb: HIDDEN! .vbs: not hidden .vbe: not hidden .wsh: not hidden .scf: HIDDEN! (arrow overlay: NO!) .url: HIDDEN! (arrow overlay: yes) .js: not hidden .jse: not hidden -------------------------------------------------- Verifying REGEDIT.EXE integrity: - Regedit.exe found in C:\WINDOWS - .reg open command is normal (regedit.exe %1) - Regedit.exe has no CompanyName property! It is either missing or named something else. - Regedit.exe has no OriginalFilename property! It is either missing or named something else. - Regedit.exe has no FileDescription property! It is either missing or named something else. Registry check failed! -------------------------------------------------- Enumerating Browser Helper Objects: (no name) - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (no name) - C:\WINDOWS\system32\dla\tfswshx.dll - {5CA3D70E-1895-11CF-8E15-001234567890} (no name) - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} (no name) - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} -------------------------------------------------- Enumerating Task Scheduler jobs: Rappel d'abonnement 1 auprès de l'ISP.job -------------------------------------------------- Enumerating Download Program Files: [{4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21}] CODEBASE = http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab [Java Plug-in 1.4.2_03] InProcServer32 = C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll CODEBASE = http://java.sun.com/products/plugin/autodl...indows-i586.cab [ActiveScan Installer Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\asinst.dll CODEBASE = http://acs.pandasoftware.com/activescan/as5free/asinst.cab [{BCC0FF27-31D9-4614-A68E-C18E1ADA4389}] CODEBASE = http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab [Java Plug-in 1.4.2_03] InProcServer32 = C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll CODEBASE = http://java.sun.com/products/plugin/autodl...indows-i586.cab -------------------------------------------------- Enumerating Winsock LSP files: NameSpace #1: C:\WINDOWS\System32\mswsock.dll NameSpace #2: C:\WINDOWS\System32\winrnr.dll NameSpace #3: C:\WINDOWS\System32\mswsock.dll Protocol #1: C:\WINDOWS\system32\mswsock.dll Protocol #2: C:\WINDOWS\system32\mswsock.dll Protocol #3: C:\WINDOWS\system32\mswsock.dll Protocol #4: C:\WINDOWS\system32\rsvpsp.dll Protocol #5: C:\WINDOWS\system32\rsvpsp.dll Protocol #6: C:\WINDOWS\system32\mswsock.dll Protocol #7: C:\WINDOWS\system32\mswsock.dll Protocol #8: C:\WINDOWS\system32\mswsock.dll Protocol #9: C:\WINDOWS\system32\mswsock.dll Protocol #10: C:\WINDOWS\system32\mswsock.dll Protocol #11: C:\WINDOWS\system32\mswsock.dll Protocol #12: C:\WINDOWS\system32\mswsock.dll Protocol #13: C:\WINDOWS\system32\mswsock.dll Protocol #14: C:\WINDOWS\system32\mswsock.dll Protocol #15: C:\WINDOWS\system32\mswsock.dll -------------------------------------------------- Enumerating Windows NT/2000/XP services abp480n5: \SystemRoot\system32\DRIVERS\ABP480N5.SYS (disabled) Pilote ACPI Microsoft: system32\DRIVERS\ACPI.sys (system) Adobe LM Service: "C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe" (manual start) adpu160m: \SystemRoot\system32\DRIVERS\adpu160m.sys (disabled) Suppresseur d'écho acoustique (Noyau Microsoft): system32\drivers\aec.sys (manual start) AEGIS Protocol (IEEE 802.1x) v3.1.0.0: system32\DRIVERS\AegisP.sys (autostart) AFD: \SystemRoot\System32\drivers\afd.sys (system) Filtre de bus AGP Intel: \SystemRoot\system32\DRIVERS\agp440.sys (disabled) Filtre de bus AGP Compaq: \SystemRoot\system32\DRIVERS\agpCPQ.sys (disabled) Aha154x: \SystemRoot\system32\DRIVERS\aha154x.sys (disabled) aic78u2: \SystemRoot\system32\DRIVERS\aic78u2.sys (disabled) aic78xx: \SystemRoot\system32\DRIVERS\aic78xx.sys (disabled) Avertissement: %SystemRoot%\system32\svchost.exe -k LocalService (disabled) Service de la passerelle de la couche Application: %SystemRoot%\System32\alg.exe (manual start) AliIde: \SystemRoot\system32\DRIVERS\aliide.sys (disabled) Filtre de bus AGP ALI: \SystemRoot\system32\DRIVERS\alim1541.sys (disabled) Pilote de filtre du bus AMD AGP: \SystemRoot\system32\DRIVERS\amdagp.sys (disabled) amsint: \SystemRoot\system32\DRIVERS\amsint.sys (disabled) Gestion d'applications: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) asc: \SystemRoot\system32\DRIVERS\asc.sys (disabled) asc3350p: \SystemRoot\system32\DRIVERS\asc3350p.sys (disabled) asc3550: \SystemRoot\system32\DRIVERS\asc3550.sys (disabled) Service d'état ASP.NET: %SystemRoot%\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe (manual start) avast! iAVS4 Control Service: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" (autostart) Pilote de média asynchrone RAS: system32\DRIVERS\asyncmac.sys (manual start) Contrôleur de disque dur IDE/ESDI standard: system32\DRIVERS\atapi.sys (system) Ati HotKey Poller: %SystemRoot%\system32\Ati2evxx.exe (autostart) ati2mtag: system32\DRIVERS\ati2mtag.sys (manual start) Protocole client ATM ARP: system32\DRIVERS\atmarpc.sys (manual start) Audio Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote audio Stub: system32\DRIVERS\audstub.sys (manual start) avast! Antivirus: "C:\Program Files\Alwil Software\Avast4\ashServ.exe" (autostart) avast! Mail Scanner: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (manual start) avast! Web Scanner: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (manual start) Service de transfert intelligent en arrière-plan: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) Explorateur d'ordinateur: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) cbidf: \SystemRoot\system32\DRIVERS\cbidf2k.sys (disabled) cd20xrnt: \SystemRoot\system32\DRIVERS\cd20xrnt.sys (disabled) Pilote de CD-ROM: system32\DRIVERS\cdrom.sys (system) Service d'indexation: %SystemRoot%\system32\cisvc.exe (manual start) Gestionnaire de l'Album: %SystemRoot%\system32\clipsrv.exe (disabled) CmdIde: \SystemRoot\system32\DRIVERS\cmdide.sys (disabled) Application système COM+: C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} (manual start) Cpqarray: \SystemRoot\system32\DRIVERS\cpqarray.sys (disabled) Services de cryptographie: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) dac2w2k: \SystemRoot\system32\DRIVERS\dac2w2k.sys (disabled) dac960nt: \SystemRoot\system32\DRIVERS\dac960nt.sys (disabled) Lanceur de processus serveur DCOM: %SystemRoot%\system32\svchost -k DcomLaunch (autostart) Client DHCP: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Pilote de disque: system32\DRIVERS\disk.sys (system) Diskeeper: "C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe" (autostart) dlcc_device: C:\WINDOWS\system32\dlcccoms.exe -service (manual start) Service d'administration du Gestionnaire de disque logique: %SystemRoot%\System32\dmadmin.exe /com (manual start) dmboot: System32\drivers\dmboot.sys (disabled) dmio: System32\drivers\dmio.sys (disabled) dmload: System32\drivers\dmload.sys (disabled) Gestionnaire de disque logique: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Synthétiseur DLS du noyau Microsoft: system32\drivers\DMusic.sys (manual start) Client DNS: %SystemRoot%\system32\svchost.exe -k NetworkService (autostart) dpti2o: \SystemRoot\system32\DRIVERS\dpti2o.sys (disabled) Filtre de décodeur DRM (Noyau Microsoft): system32\drivers\drmkaud.sys (manual start) drvmcdb: system32\drivers\drvmcdb.sys (system) drvnddm: system32\drivers\drvnddm.sys (autostart) Pilote de carte Intel ® PRO: system32\DRIVERS\e100b325.sys (manual start) Intel® PRO/1000 PCI Express Network Connection Driver: system32\DRIVERS\e1e5132.sys (manual start) Service de rapport d'erreurs: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Journal des événements: %SystemRoot%\system32\services.exe (autostart) Système d'événements de COM+: C:\WINDOWS\system32\svchost.exe -k netsvcs (manual start) Compatibilité avec le Changement rapide d'utilisateur: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Fax: %systemroot%\system32\fxssvc.exe (autostart) Carte réseau virtuelle FreeBox USB: system32\DRIVERS\fbxusb32.sys (manual start) Pilote de contrôleur de lecteur de disquettes: system32\DRIVERS\fdc.sys (manual start) Pilote de lecteur de disquettes: system32\DRIVERS\flpydisk.sys (manual start) FltMgr: system32\DRIVERS\fltMgr.sys (system) Pilote du Gestionnaire de volume: system32\DRIVERS\ftdisk.sys (system) Classificateur de paquets générique: system32\DRIVERS\msgpc.sys (manual start) Microsoft UAA Bus Driver for High Definition Audio: system32\DRIVERS\HDAudBus.sys (manual start) Aide et support: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) HID Input Service: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote de classe HID Microsoft: system32\DRIVERS\hidusb.sys (manual start) hpn: \SystemRoot\system32\DRIVERS\hpn.sys (disabled) HTTP: System32\Drivers\HTTP.sys (manual start) HTTP SSL: %SystemRoot%\System32\svchost.exe -k HTTPFilter (manual start) i2omp: \SystemRoot\system32\DRIVERS\i2omp.sys (disabled) Pilote pour clavier i8042 et souris sur port PS/2: system32\DRIVERS\i8042prt.sys (system) Intel® Matrix Storage Event Monitor: C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe (autostart) Intel AHCI Controller: system32\drivers\iastor.sys (system) Pilote de filtre de gravure CD: system32\DRIVERS\imapi.sys (system) Service COM de gravage de CD IMAPI: C:\WINDOWS\system32\imapi.exe (manual start) ini910u: \SystemRoot\system32\DRIVERS\ini910u.sys (disabled) IntelIde: \SystemRoot\system32\DRIVERS\intelide.sys (disabled) Pilote de processeur Intel: system32\DRIVERS\intelppm.sys (system) Pilote du pare-feu Windows IPv6: system32\DRIVERS\Ip6Fw.sys (manual start) Pilote de filtre de trafic IP: System32\DRIVERS\ipfltdrv.sys (manual start) Pilote de tunnelage IP dans IP: system32\DRIVERS\ipinip.sys (manual start) Traducteur d'adresses réseau IP: system32\DRIVERS\ipnat.sys (manual start) Pilote IPSEC: system32\DRIVERS\ipsec.sys (system) Service énumérateur IR: system32\DRIVERS\irenum.sys (manual start) Pilote de bus Plug-and-Play ISA/EISA: system32\DRIVERS\isapnp.sys (system) Pilote de la classe Clavier: system32\DRIVERS\kbdclass.sys (system) Pilote HID de clavier: system32\DRIVERS\kbdhid.sys (system) Mélangeur audio Wave de noyau Microsoft: system32\drivers\kmixer.sys (manual start) Serveur: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Station de travail: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Assistance TCP/IP NetBIOS: %SystemRoot%\system32\svchost.exe -k LocalService (autostart) Lsdiorw: C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe (autostart) Macromedia Licensing Service: "C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe" (manual start) Affichage des messages: %SystemRoot%\system32\svchost.exe -k netsvcs (disabled) Partage de Bureau à distance NetMeeting: C:\WINDOWS\system32\mnmsrvc.exe (manual start) Pilote de la classe Souris: system32\DRIVERS\mouclass.sys (system) Pilote HID de souris: system32\DRIVERS\mouhid.sys (manual start) MPFIREWL: System32\Drivers\MpFirewall.sys (system) McAfee Personal Firewall Service: C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe (autostart) mraid35x: \SystemRoot\system32\DRIVERS\mraid35x.sys (disabled) Redirecteur client WebDav: system32\DRIVERS\mrxdav.sys (manual start) MRXSMB: system32\DRIVERS\mrxsmb.sys (system) Distributed Transaction Coordinator: C:\WINDOWS\system32\msdtc.exe (manual start) Windows Installer: C:\WINDOWS\system32\msiexec.exe /V (manual start) Proxy de service de répartition Microsoft: system32\drivers\MSKSSRV.sys (manual start) Proxy d'horloge de répartition Microsoft: system32\drivers\MSPCLOCK.sys (manual start) Proxy de gestion de qualité de répartition Microsoft: system32\drivers\MSPQM.sys (manual start) Pilote BIOS de gestion de systèmes Microsoft: system32\DRIVERS\mssmbios.sys (manual start) Pilote TAPI NDIS d'accès distant: system32\DRIVERS\ndistapi.sys (manual start) NDIS mode utilisateur E/S Protocole: system32\DRIVERS\ndisuio.sys (manual start) Pilote réseau étendu NDIS d'accès distant: system32\DRIVERS\ndiswan.sys (manual start) Interface NetBIOS: system32\DRIVERS\netbios.sys (system) NetBIOS sur TCP/IP: system32\DRIVERS\netbt.sys (system) DDE réseau: %SystemRoot%\system32\netdde.exe (disabled) DSDM DDE réseau: %SystemRoot%\system32\netdde.exe (disabled) Ouverture de session réseau: %SystemRoot%\system32\lsass.exe (manual start) Connexions réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Intel NCS NetService: C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe (manual start) NLA (Network Location Awareness): %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) Fournisseur de la prise en charge de sécurité LM NT: %SystemRoot%\system32\lsass.exe (manual start) Stockage amovible: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) nv: system32\DRIVERS\nv4_mini.sys (manual start) Pilote de filtre de trafic IPX: system32\DRIVERS\nwlnkflt.sys (manual start) Pilote de transfert de trafic IPX: system32\DRIVERS\nwlnkfwd.sys (manual start) Pilote de port parallèle: system32\DRIVERS\parport.sys (manual start) Pilote de bus PCI: system32\DRIVERS\pci.sys (system) PCIIde: system32\DRIVERS\pciide.sys (system) perc2: \SystemRoot\system32\DRIVERS\perc2.sys (disabled) perc2hib: \SystemRoot\system32\DRIVERS\perc2hib.sys (disabled) Plug-and-Play: %SystemRoot%\system32\services.exe (autostart) Services IPSEC: %SystemRoot%\system32\lsass.exe (autostart) Miniport réseau étendu (PPTP): system32\DRIVERS\raspptp.sys (manual start) PRISMSVC: C:\WINDOWS\system32\PRISMSVC.EXE (disabled) Emplacement protégé: %SystemRoot%\system32\lsass.exe (autostart) Planificateur de paquets QoS: system32\DRIVERS\psched.sys (manual start) Pilote de liaison parallèle directe: system32\DRIVERS\ptilink.sys (manual start) PxHelp20: System32\Drivers\PxHelp20.sys (system) ql1080: \SystemRoot\system32\DRIVERS\ql1080.sys (disabled) Ql10wnt: \SystemRoot\system32\DRIVERS\ql10wnt.sys (disabled) ql12160: \SystemRoot\system32\DRIVERS\ql12160.sys (disabled) ql1240: \SystemRoot\system32\DRIVERS\ql1240.sys (disabled) ql1280: \SystemRoot\system32\DRIVERS\ql1280.sys (disabled) Pilote de connexion automatique d'accès distant: system32\DRIVERS\rasacd.sys (system) Gestionnaire de connexion automatique d'accès distant: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) Miniport réseau étendu (L2TP): system32\DRIVERS\rasl2tp.sys (manual start) Gestionnaire de connexions d'accès distant: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) Pilote PPPOE d'accès à distance: system32\DRIVERS\raspppoe.sys (manual start) Parallèle direct: system32\DRIVERS\raspti.sys (manual start) Rdbss: system32\DRIVERS\rdbss.sys (system) RDPCDD: System32\DRIVERS\RDPCDD.sys (system) Pilote de redirecteur de périphérique Terminal Server: system32\DRIVERS\rdpdr.sys (manual start) Gestionnaire de session d'aide sur le Bureau à distance: C:\WINDOWS\system32\sessmgr.exe (manual start) Pilote de filtre de lecture digitale de CD audio: system32\DRIVERS\redbook.sys (system) Routage et accès distant: %SystemRoot%\system32\svchost.exe -k netsvcs (disabled) Microsoft Legacy Modem Driver: System32\Drivers\RootMdm.sys (manual start) Localisateur d'appels de procédure distante (RPC): %SystemRoot%\system32\locator.exe (manual start) Appel de procédure distante (RPC): %SystemRoot%\system32\svchost -k rpcss (autostart) QoS RSVP: %SystemRoot%\system32\rsvp.exe (manual start) Gestionnaire de comptes de sécurité: %SystemRoot%\system32\lsass.exe (autostart) Carte à puce: %SystemRoot%\System32\SCardSvr.exe (manual start) Planificateur de tâches: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Secdrv: system32\DRIVERS\secdrv.sys (manual start) Connexion secondaire: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Notification d'événement système: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Pilote de filtre Serenum: system32\DRIVERS\serenum.sys (manual start) Pilote de port série: system32\DRIVERS\serial.sys (system) Look 'n' Stop Driver: system32\DRIVERS\lnsfw.sys (manual start) Pare-feu Windows / Partage de connexion Internet: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Détection matériel noyau: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Filtre de bus AGP SIS: \SystemRoot\system32\DRIVERS\sisagp.sys (disabled) Sparrow: \SystemRoot\system32\DRIVERS\sparrow.sys (disabled) Splitter audio du noyau Microsoft: system32\drivers\splitter.sys (manual start) Spouleur d'impression: %SystemRoot%\system32\spoolsv.exe (autostart) Pilote de filtre de restauration système: system32\DRIVERS\sr.sys (system) Service de restauration système: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Srv: system32\DRIVERS\srv.sys (manual start) sscdbhk5: system32\drivers\sscdbhk5.sys (system) Service de découvertes SSDP: %SystemRoot%\system32\svchost.exe -k LocalService (manual start) ssrtln: system32\drivers\ssrtln.sys (system) High Definition Audio Driver (WDM) - SigmaTel CODEC: system32\drivers\sthda.sys (manual start) Acquisition d'image Windows (WIA): %SystemRoot%\system32\svchost.exe -k imgsvc (autostart) Pilote de bus logiciel: system32\DRIVERS\swenum.sys (manual start) Synthétiseur de table de sons GC noyau Microsoft: system32\drivers\swmidi.sys (manual start) MS Software Shadow Copy Provider: C:\WINDOWS\system32\dllhost.exe /Processid:{907CAEFE-0BA5-4923-8906-9A32D4212B14} (manual start) symc810: \SystemRoot\system32\DRIVERS\symc810.sys (disabled) symc8xx: \SystemRoot\system32\DRIVERS\symc8xx.sys (disabled) sym_hi: \SystemRoot\system32\DRIVERS\sym_hi.sys (disabled) sym_u3: \SystemRoot\system32\DRIVERS\sym_u3.sys (disabled) Périphérique audio système du noyau Microsoft: system32\drivers\sysaudio.sys (manual start) Journaux et alertes de performance: %SystemRoot%\system32\smlogsvc.exe (manual start) Téléphonie: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote du protocole TCP/IP: system32\DRIVERS\tcpip.sys (system) Pilote de périphérique terminal: system32\DRIVERS\termdd.sys (system) Services Terminal Server: %SystemRoot%\System32\svchost -k DComLaunch (manual start) tfsnboio: system32\dla\tfsnboio.sys (autostart) tfsncofs: system32\dla\tfsncofs.sys (autostart) tfsndrct: system32\dla\tfsndrct.sys (autostart) tfsndres: system32\dla\tfsndres.sys (autostart) tfsnifs: system32\dla\tfsnifs.sys (autostart) tfsnopio: system32\dla\tfsnopio.sys (autostart) tfsnpool: system32\dla\tfsnpool.sys (autostart) tfsnudf: system32\dla\tfsnudf.sys (autostart) tfsnudfa: system32\dla\tfsnudfa.sys (autostart) Thèmes: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) TosIde: \SystemRoot\system32\DRIVERS\toside.sys (disabled) Client de suivi de lien distribué: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) ultra: \SystemRoot\system32\DRIVERS\ultra.sys (disabled) Windows User Mode Driver Framework: C:\WINDOWS\system32\wdfmgr.exe (autostart) Pilote de mise à jour microcode: system32\DRIVERS\update.sys (manual start) Hôte de périphérique universel Plug-and-Play: %SystemRoot%\system32\svchost.exe -k LocalService (manual start) Onduleur: %SystemRoot%\System32\ups.exe (manual start) Pilote parent générique USB Microsoft: system32\DRIVERS\usbccgp.sys (manual start) Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0: system32\DRIVERS\usbehci.sys (manual start) Concentrateur USB2: system32\DRIVERS\usbhub.sys (manual start) Classe d'imprimantes USB Microsoft: system32\DRIVERS\usbprint.sys (manual start) Pilote de scanneur USB: system32\DRIVERS\usbscan.sys (manual start) Pilote de stockage de masse USB: system32\DRIVERS\USBSTOR.SYS (manual start) Pilote miniport de contrôleur hôte universel USB Microsoft: system32\DRIVERS\usbuhci.sys (manual start) VgaSave: \SystemRoot\System32\drivers\vga.sys (system) Filtre de bus AGP VIA: \SystemRoot\system32\DRIVERS\viaagp.sys (disabled) ViaIde: \SystemRoot\system32\DRIVERS\viaide.sys (disabled) Cliché instantané de volume: %SystemRoot%\System32\vssvc.exe (manual start) Windows Time: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Pilote ARP IP d'accès distant: system32\DRIVERS\wanarp.sys (manual start) WAN Miniport (ATW): system32\DRIVERS\wanatw4.sys (manual start) Pilote WINMM de compatibilité audio WDM Microsoft: system32\drivers\wdmaud.sys (manual start) WebClient: %SystemRoot%\system32\svchost.exe -k LocalService (autostart) Infrastructure de gestion Windows: %systemroot%\system32\svchost.exe -k netsvcs (autostart) Service de numéro de série du lecteur multimédia portable: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Carte de performance WMI: C:\WINDOWS\system32\wbem\wmiapsrv.exe (manual start) Centre de sécurité: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Mises à jour automatiques: %systemroot%\system32\svchost.exe -k netsvcs (autostart) Configuration automatique sans fil: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Service d'approvisionnement réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) -------------------------------------------------- Enumerating Windows NT logon/logoff scripts: *No scripts set to run* Windows NT checkdisk command: BootExecute = *Registry value not found* Windows NT 'Wininit.ini': PendingFileRenameOperations: *Registry value not found* -------------------------------------------------- Enumerating ShellServiceObjectDelayLoad items: PostBootReminder: C:\WINDOWS\system32\SHELL32.dll CDBurn: C:\WINDOWS\system32\SHELL32.dll WebCheck: C:\WINDOWS\system32\webcheck.dll SysTray: C:\WINDOWS\system32\stobject.dll -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run *Registry key not found* -------------------------------------------------- End of report, 38 224 bytes Report generated in 0,156 seconds Command line options: /verbose - to add additional info on each section /complete - to include empty sections and unsuspicious data /full - to include several rarely-important sections /force9x - to include Win9x-only startups even if running on WinNT /forcent - to include WinNT-only startups even if running on Win9x /forceall - to include all Win9x and WinNT startups, regardless of platform /history - to list version history only Merci encore et bonne nuit
  18. Jagaumo
    Et voilà, merci de ton aide : MyWebSearch n'exite pas par contre MyWay Search Assistant existe. Impossible de le désinstaller en mode sans echec... J'ai viré le dossier via Program Files Logfile of HijackThis v1.99.1 Scan saved at 23:56:22, on 19/01/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\fxssvc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\PRISMSVR.EXE C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe C:\WINDOWS\stsystra.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\Program Files\Dell\Media Experience\DMXLauncher.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe C:\Program Files\LCPA Lite\Lcpa Lite.exe C:\Program Files\Winamp\winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\dlcccoms.exe C:\Program Files\Soft4Ever\looknstop\looknstop.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Dell sans fil\PRISMCFG.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\wuauclt.exe C:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.fr/myway R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.fr/myway R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.fr/myway O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - (no file) O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [DLCCCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLCCtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [dlccmon.exe] "C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe" O4 - HKLM\..\Run: [LcpaLite] "C:\Program Files\LCPA Lite\Lcpa Lite.exe" O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Diskeeper 10 Professional Edition Registration.lnk = C:\Program Files\Diskeeper Corporation\Diskeeper\ESIRegister.exe O4 - Startup: HDDlife.lnk = C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe O4 - Global Startup: Carte pour réseau sans fil WLAN (USB 2.0).lnk = ? O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: dlcc_device - Unknown owner - C:\WINDOWS\system32\dlcccoms.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe O23 - Service: Lsdiorw - Logiciels & Services Duhem, Paris, France - C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - Unknown owner - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe (file missing) O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe ------------------------------------ http://virusscan.jotti.org/de/ : Auslastung: 0% 100% Datei: dlcccoms.exe Status: OK (Anmerkung: diese Datei wurde bereits vorher gescannt. Die Scanergebnisse werden daher nicht in der Datenbank gespeichert.) Entdeckte Packprogramme: AntiVir Keine Viren gefunden ArcaVir Keine Viren gefunden Avast Keine Viren gefunden AVG Antivirus Keine Viren gefunden BitDefender Keine Viren gefunden ClamAV Keine Viren gefunden Dr.Web Keine Viren gefunden F-Prot Antivirus Keine Viren gefunden Fortinet Keine Viren gefunden Kaspersky Anti-Virus Keine Viren gefunden NOD32 Keine Viren gefunden Norman Virus Control Keine Viren gefunden UNA Keine Viren gefunden VBA32 Keine Viren gefunden Ca je sais pas si c'est à moi... : Zuletzt gefundene Malware war PatchJan19.zip, gefunden von: Scanner Name der Malware AntiVir X ArcaVir X Avast X AVG Antivirus X BitDefender X ClamAV X Dr.Web BACKDOOR.Trojan F-Prot Antivirus X Fortinet X Kaspersky Anti-Virus X NOD32 X Norman Virus Control X UNA X VBA32 X -------------------------------------- http://www.virustotal.com/flash/respuesta_...b89b50f2af0:eng : Antivirus Version Update Result AntiVir 6.33.0.77 01.19.2006 no virus found Avast 4.6.695.0 01.18.2006 no virus found AVG 718 01.19.2006 no virus found Avira 6.33.0.77 01.19.2006 no virus found BitDefender 7.2 01.19.2006 no virus found CAT-QuickHeal 8.00 01.18.2006 no virus found ClamAV devel-20051123 01.19.2006 no virus found DrWeb 4.33 01.19.2006 no virus found eTrust-InoculateIT 23.71.54 01.19.2006 no virus found eTrust-Vet 12.4.2050 01.19.2006 no virus found Ewido 3.5 01.19.2006 no virus found Fortinet 2.54.0.0 01.19.2006 no virus found F-Prot 3.16c 01.19.2006 no virus found Ikarus 0.2.59.0 01.18.2006 no virus found Kaspersky 4.0.2.24 01.19.2006 no virus found McAfee 4678 01.19.2006 no virus found NOD32v2 1.1372 01.19.2006 no virus found Norman 5.70.10 01.19.2006 no virus found Panda 9.0.0.4 01.19.2006 no virus found Sophos 4.01.0 01.19.2006 no virus found Symantec 8.0 01.19.2006 no virus found TheHacker 5.9.2.076 01.18.2006 no virus found UNA 1.83 01.19.2006 no virus found VBA32 3.10.5 01.19.2006 no virus found VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware. POUR FINIR, j'AI BLOQUE LE SCAN PANDA : AVAST AYANT TROUVE UN VIRUS VER LORS DU TELECHARGEMENT ACTIVE X DEPUIS LE SITE http://www.pandasoftware.com !!!
  19. Jagaumo
    Hello, Voici mon rapport hijackthis après avoir respecté la procédure ( http://forum.zebulon.fr/index.php?showtopic=83986 ) Souci par rapport à la procédure : 1) "Antivir tools - Activer = load the guard system start - C'est cette option qui active le scan résident" ANTIVIR TOOLS SE DESACTIVE TOUT SEUL APRES VALIDATION ?!! 2) IMPOSSIBLE D'ACTIVER ANTIVIR GUARD (configuration grisée) ----------------------------------------------------------- Logfile of HijackThis v1.99.1 Scan saved at 21:29:09, on 19/01/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\fxssvc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\PRISMSVR.EXE C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe C:\WINDOWS\stsystra.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\Program Files\Dell\Media Experience\DMXLauncher.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe C:\Program Files\LCPA Lite\Lcpa Lite.exe C:\Program Files\Winamp\winampa.exe C:\WINDOWS\system32\dlcccoms.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Soft4Ever\looknstop\looknstop.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Dell sans fil\PRISMCFG.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.fr/myway R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://mysearch.myway.com/jsp/dellsidebar.jsp?p=DR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.fr/myway R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.fr/myway R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\deSrcAs.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {4D25F921-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\deSrcAs.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (file missing) O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe O4 - HKLM\..\Run: [DLCCCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLCCtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [dlccmon.exe] "C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe" O4 - HKLM\..\Run: [LcpaLite] "C:\Program Files\LCPA Lite\Lcpa Lite.exe" O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Diskeeper 10 Professional Edition Registration.lnk = C:\Program Files\Diskeeper Corporation\Diskeeper\ESIRegister.exe O4 - Startup: HDDlife.lnk = C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe O4 - Global Startup: Carte pour réseau sans fil WLAN (USB 2.0).lnk = ? O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: dlcc_device - Unknown owner - C:\WINDOWS\system32\dlcccoms.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe O23 - Service: Lsdiorw - Logiciels & Services Duhem, Paris, France - C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - Unknown owner - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe (file missing) O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe Pouvez vous me dire ou j'en suis svp ? Si mon PC est propre ou pas... Merci.
  20. Jagaumo
    En rentrant chez moi je procéderai donc au nettoyage selon tes conseils. Merci encore. L'internet est certes - potentiellement dangereux - mais on y trouve aussi des sites et des personnes qui valent vraiment le détour. Suivez mon regard...
  21. Jagaumo
    Mais... Kerio, look n' stop et j'en passe ne sont t'ils pas justement programmés pour nous éviter ce genre de problème ? Si je te demande comment se prémunir contre les "spywares et autres joyeusetés" issus par ex. d'emule, tu vas forcément me répondre que l'idéal est d'éviter ce programme. Mais as tu une autre vraie et bonne solution ? Merci de ton aide.
  22. Jagaumo
    Bah... oui j'utilise emule comme des millions de gens. Rien de bien méchant. Les esprits évoluent et le téléchargement est sur la voix de la légalisation. Je ne suis pas quelqu'un qui abuse de ce système (loin de là !) mais plûtot un curieux qui aime voir avant d'acheter. Néanmoins, je respecte votre charte et je salue le formidable travail effectué par les personnes qui anime zebulon.fr Petite question cependant, le nettoyage de mon PC d'après vos conseils implique t'il nécessairement la désinstallation d'emule ? Merci et très bonne continuation.
  23. Jagaumo
    Infecté ? Par quoi ? Avast et look n' stop n'ont rien vu... Bon... je ferai ce que tu me dis dès ce soir et je reposte. Merci.
  24. Jagaumo
    Bonjour Qui pourrait me faire une interprétation de ce résultat svp. Je ne comprend vraiment pas grand chose... Merci de votre aide. --------------------------------------------------------------- Logfile of HijackThis v1.99.1 Scan saved at 00:13:16, on 19/01/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\fxssvc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\PRISMSVR.EXE C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe C:\WINDOWS\stsystra.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\Program Files\Dell\Media Experience\DMXLauncher.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe C:\Program Files\LCPA Lite\Lcpa Lite.exe C:\Program Files\Winamp\winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Soft4Ever\looknstop\looknstop.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\dlcccoms.exe C:\Program Files\Dell sans fil\PRISMCFG.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe C:\Program Files\eMule\emule.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\Robby Wen\Bureau\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.fr/myway R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://mysearch.myway.com/jsp/dellsidebar.jsp?p=DR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.fr/myway R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.fr/myway R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\deSrcAs.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {4D25F921-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\deSrcAs.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (file missing) O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe O4 - HKLM\..\Run: [DLCCCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLCCtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [dlccmon.exe] "C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe" O4 - HKLM\..\Run: [LcpaLite] "C:\Program Files\LCPA Lite\Lcpa Lite.exe" O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Diskeeper 10 Professional Edition Registration.lnk = C:\Program Files\Diskeeper Corporation\Diskeeper\ESIRegister.exe O4 - Startup: HDDlife.lnk = C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe O4 - Global Startup: Carte pour réseau sans fil WLAN (USB 2.0).lnk = ? O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: dlcc_device - Unknown owner - C:\WINDOWS\system32\dlcccoms.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe O23 - Service: Lsdiorw - Logiciels & Services Duhem, Paris, France - C:\Program Files\LS_Duhem\lsdiorw\lsdiorw2.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - Unknown owner - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe (file missing) O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
×
×
  • Créer...