Aller au contenu

chtitesora

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    29

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par chtitesora

  1. chtitesora
    Je viens de refaire un coup de spybot. Plus de traces de tagasaurus, par contre mediaplex est toujours là
  2. chtitesora
    Ok c'est bon, ça a fini par marcher. Voici le rapport de HijackThis : Logfile of HijackThis v1.99.1 Scan saved at 22:39:40, on 23/12/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe C:\PROGRA~1\Magentic\bin\MgApp.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Internet Explorer\iexplore.exe C:\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.googecolo.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 64.115.227.6:80 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file) O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe" O4 - HKLM\..\Run: [AdslTaskBar] rundll32.exe stmctrl.dll,TaskBar O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe" O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c O4 - Global Startup: Adobe Gamma Loader.lnk = ? O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe O4 - Global Startup: RFScheduler.lnk = C:\Program Files\Radio Fr Solo\RFScheduler.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Companion\Modules\messmod4\v6\yhexbmes.dll O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Companion\Modules\messmod4\v6\yhexbmes.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{FA956899-A506-4DFD-BA96-21CE9BD4B831}: NameServer = 212.151.137.170 212.151.136.246 O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE Et celui de AVG qui m'a d'ailleurs détecté 62 fichiers infectés Alors que j'ai fait un coup de ad aware et de spybot ce matin, j'avoue que ça m'a surprise : --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 22:30:12 23/12/2006 + Résultat de l'analyse: HKLM\SOFTWARE\Classes\Interface\{06CA2DA3-3A44-4FC7-8FD9-246C0F53407C} -> Adware.CoolWebSearch : Nettoyé et sauvegardé (mise en quarantaine). C:\Documents and Settings\Brelet\Mes documents\lopremover.exe -> Adware.Lop : Nettoyé et sauvegardé (mise en quarantaine). C:\Documents and Settings\Brelet\Mes documents\lopremover.zip/lopremover.exe -> Adware.Lop : Nettoyé et sauvegardé (mise en quarantaine). C:\Documents and Settings\Brelet\Cookies\brelet@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé. :mozilla.280:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.281:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.282:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.283:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.146:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.147:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.31:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.32:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.33:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.34:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.155:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé. :mozilla.237:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Bfast : Nettoyé. :mozilla.60:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé. :mozilla.312:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyé. :mozilla.223:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé. :mozilla.269:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyé. :mozilla.108:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé. :mozilla.109:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé. :mozilla.110:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé. :mozilla.26:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé. :mozilla.114:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Estat : Nettoyé. :mozilla.36:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé. :mozilla.8:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé. :mozilla.9:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé. :mozilla.67:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé. :mozilla.151:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.152:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.153:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.154:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.243:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé. :mozilla.244:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé. :mozilla.261:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.262:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.279:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.27:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.28:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.29:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.30:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. C:\Documents and Settings\Brelet\Cookies\brelet@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.133:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.134:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.135:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.10:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.12:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.13:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.6:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.157:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé. :mozilla.120:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyé. :mozilla.121:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyé. :mozilla.39:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.40:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.41:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. C:\Documents and Settings\Brelet\Cookies\brelet@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.63:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.64:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.65:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.224:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé. :mozilla.225:C:\Documents and Settings\Brelet\Application Data\Mozilla\Firefox\Profiles\8fgnbojh.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé. Fin du rapport
  3. chtitesora
    Ok merci beaucoup de ta réponse Mykerinos. J'ai téléchargé AVG, mais impossible de faire les mises à jour, ils me disent de recommencer plus tard. Je vais donc patienter un peu, on verra bien. En tout cas merci pour tes explications très claires, j'espère que ça va marcher !
  4. chtitesora
    Bonjour, Hier, j'ai fait une analyse avec spybot qui m'a trouvé tagasaurus et mediaplex. Je les ai supprimés mais je recommence aujourd'hui et ils sont toujours là. On m'a conseillée d'utiliser hijackthis, ce que j'ai fait. Maintenant, j'ai besoin quelqu'un me dise ce que je dois faire avec ça, voici les résultats et merci d'avance : Logfile of HijackThis v1.99.1 Scan saved at 16:38:22, on 23/12/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Messenger Plus! 3\MsgPlus.exe C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe C:\PROGRA~1\Magentic\bin\MgApp.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\PROGRA~1\MICROS~2\OFFICE11\OUTLOOK.EXE C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE C:\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.oorrgpuwcckxzuhszcvnlo.info/dRj...JOuQ1FhRuxE.jsp R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.googecolo.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 64.115.227.6:80 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file) O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe" O4 - HKLM\..\Run: [AdslTaskBar] rundll32.exe stmctrl.dll,TaskBar O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe" O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c O4 - Global Startup: Adobe Gamma Loader.lnk = ? O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe O4 - Global Startup: RFScheduler.lnk = C:\Program Files\Radio Fr Solo\RFScheduler.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Companion\Modules\messmod4\v6\yhexbmes.dll O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Companion\Modules\messmod4\v6\yhexbmes.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{FA956899-A506-4DFD-BA96-21CE9BD4B831}: NameServer = 212.151.137.166 212.151.136.242 O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
×
×
  • Créer...