Aller au contenu

marcissique

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    2

  • Inscription

  • Dernière visite

marcissique's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. marcissique
    Merci du coup de pouce Rapport lopxpMH2 version 2.0 fait à 12:03:35,89 le 2008-01-21 E:\Documents and Settings\Vicky\Bureau\lopxpMH2 ****************************************** ## Répertoires Application Data Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\Administrateur\Application Data 2007-01-29 06:21 <REP> . 2007-01-29 06:21 <REP> .. 2007-01-29 06:21 <REP> Microsoft 2007-01-29 06:22 <REP> Mozilla 2007-01-29 06:21 62 desktop.ini 1 fichier(s) 62 octets 4 Rép(s) 15 279 226 880 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\Administrateur\Local Settings\Application Data 2007-01-29 06:21 <REP> . 2007-01-29 06:21 <REP> .. 2007-01-29 06:21 <REP> Microsoft 2007-01-29 06:22 <REP> Mozilla 0 fichier(s) 0 octets 4 Rép(s) 15 279 222 784 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\All Users\Application Data 2007-01-28 01:52 <REP> . 2007-01-28 01:52 <REP> .. 2007-10-23 16:21 <REP> Acoustica 2007-11-12 02:43 <REP> Adobe 2007-07-04 19:18 <REP> Apple 2007-02-15 07:52 <REP> Apple Computer 2007-01-29 00:58 <REP> avg7 2007-01-29 15:05 <REP> Avocent AdminWorks 2008-01-21 00:01 <REP> ConeXware 2007-06-04 03:27 <REP> CyberLink 2007-12-27 20:03 <REP> eBay 2007-11-12 02:50 <REP> FLEXnet 2007-02-15 07:38 <REP> GRETECH 2007-01-29 00:58 <REP> Grisoft 2008-01-18 03:23 <REP> Long slow road itch 2008-01-20 02:04 <REP> MailFrontier 2007-01-28 01:52 <REP> Microsoft 2007-04-01 00:27 <REP> Microsoft Games 2007-12-22 07:32 <REP> NFS Underground 2007-08-08 20:31 <REP> Palo Alto Software 2007-08-08 20:28 <REP> PAS 2008-01-10 03:07 <REP> Pure Networks 2007-12-22 05:00 <REP> ScrapWorkshop 2007-07-12 22:45 <REP> SmallFunFarkle 2007-05-23 19:10 <REP> SmartSound Software Inc 2007-01-29 05:30 <REP> Symantec 2007-04-12 06:54 <REP> TEMP 2007-02-04 06:27 <REP> Trymedia 2007-02-04 11:21 <REP> TuneUp Software 2007-12-27 20:03 <REP> WholeSecurity 2007-01-28 23:51 <REP> Windows Genuine Advantage 2007-07-08 03:24 <REP> Yahoo! 2007-07-09 08:12 <REP> Yahoo! Companion 2007-03-07 03:27 <REP> Zylom 2007-11-07 06:38 13 1ÌØ13.sys 2007-01-28 01:53 62 desktop.ini 2007-06-13 04:49 2 153 QTSBandwidthCache 2007-11-07 06:41 13 ÝÃÄ›Ò3113›.sys 4 fichier(s) 2 241 octets 34 Rép(s) 15 279 222 784 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\Default User\Application Data 2007-01-28 01:52 <REP> . 2007-01-28 01:52 <REP> .. 2007-01-28 01:52 <REP> Microsoft 2007-01-28 01:53 62 desktop.ini 1 fichier(s) 62 octets 3 Rép(s) 15 279 206 400 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\Default User\Local Settings\Application Data 2007-01-28 01:53 <REP> . 2007-01-28 01:53 <REP> .. 2007-01-28 15:45 <REP> Microsoft 0 fichier(s) 0 octets 3 Rép(s) 15 279 206 400 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\LocalService\Application Data 2007-01-28 15:49 <REP> . 2007-01-28 15:49 <REP> .. 2007-01-29 00:58 <REP> AVG7 2007-01-28 15:49 <REP> Microsoft 0 fichier(s) 0 octets 4 Rép(s) 15 279 202 304 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\LocalService\Local Settings\Application Data 2007-01-28 15:49 <REP> . 2007-01-28 15:49 <REP> .. 2007-01-28 15:49 <REP> Microsoft 2007-02-02 16:52 63 520 FontCache3.0.0.0.dat 1 fichier(s) 63 520 octets 3 Rép(s) 15 279 202 304 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\Marc\Application Data Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\Marc\Local Settings\Application Data 2007-01-28 15:51 <REP> . 2007-01-28 15:51 <REP> .. 2007-06-04 23:56 <REP> {3248F0A6-6813-11D6-A77B-00B0D0150000} 2007-11-25 06:09 <REP> Adobe 2007-02-02 18:06 <REP> Ahead 2007-07-04 19:19 <REP> Apple 2007-02-15 07:53 <REP> Apple Computer 2007-02-14 04:51 <REP> ApplicationHistory 2007-02-11 03:09 <REP> ATI 2007-02-04 13:26 <REP> Google 2007-02-04 09:14 <REP> Help 2007-02-01 10:45 <REP> Identities 2007-06-12 08:23 <REP> jarjar 2007-01-28 15:51 <REP> Microsoft 2007-01-29 04:01 <REP> Mozilla 2008-01-02 18:51 <REP> NFS Underground 2 2007-04-12 06:54 <REP> PassMark 2007-08-15 00:27 <REP> TheDevShop 2007-02-16 15:07 <REP> WMTools Downloaded Files 2007-02-05 15:24 <REP> z-PEN Secured 2007-01-28 17:16 24 064 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2007-02-14 04:51 127 fusioncache.dat 2007-01-29 02:16 8 224 GDIPFONTCACHEV1.DAT 2007-08-24 00:01 8 659 686 IconCache.db 2006-05-02 09:27 6 254 IDU.ico 2007-06-18 04:21 162 LaunchVE3DInstaller.log 6 fichier(s) 8 698 517 octets 20 Rép(s) 15 279 202 304 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\NetworkService\Application Data 2007-01-28 15:49 <REP> . 2007-01-28 15:49 <REP> .. 2007-01-29 01:07 <REP> AVG7 2007-10-04 18:54 <REP> CyberLink 2007-01-28 15:49 <REP> Microsoft 0 fichier(s) 0 octets 5 Rép(s) 15 279 202 304 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\NetworkService\Local Settings\Application Data 2007-01-28 15:49 <REP> . 2007-01-28 15:49 <REP> .. 2007-07-07 14:35 <REP> Apple 2007-01-28 15:49 <REP> Microsoft 2007-06-30 01:26 <REP> PCHealth 0 fichier(s) 0 octets 5 Rép(s) 15 279 202 304 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\Temp Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\Vicky\Application Data 2007-01-29 01:36 <REP> . 2007-01-29 01:36 <REP> .. 2007-01-29 11:27 <REP> Adobe 2007-02-03 15:26 <REP> Ahead 2007-03-02 19:06 <REP> Apple Computer 2007-02-03 15:31 <REP> ArcSoft 2007-02-11 10:49 <REP> ATI 2007-01-29 01:36 <REP> AVG7 2007-10-04 18:45 <REP> CyberLink 2007-03-05 19:00 <REP> DivX 2007-03-07 19:01 <REP> EPSON 2007-09-10 15:19 <REP> GRETECH 2007-03-19 19:10 <REP> Help 2007-01-29 01:36 <REP> Identities 2007-09-24 12:13 <REP> iLike 2007-07-08 13:03 <REP> IMVU 2007-01-29 21:39 <REP> Intel 2007-01-29 01:36 <REP> Jetico Personal Firewall 2007-01-29 11:34 <REP> Macromedia 2007-09-12 14:54 <REP> Media Player Classic 2007-01-29 01:36 <REP> Microsoft 2007-04-01 00:27 <REP> Microsoft Games 2007-01-29 04:08 <REP> Mozilla 2007-02-25 15:26 <REP> OpenOffice.org2 2007-02-07 14:02 <REP> Real 2007-12-23 05:02 <REP> SecuROM 2008-01-19 19:45 <REP> Sonic Focus 2007-02-03 16:13 <REP> Sun 2008-01-20 16:22 <REP> SuperAdBlocker.com 2007-02-04 11:22 <REP> TuneUp Software 2007-02-04 09:36 <REP> uTorrent 2007-11-19 05:19 <REP> Vso 2007-01-29 01:36 62 desktop.ini 1 fichier(s) 62 octets 32 Rép(s) 15 279 198 208 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Documents and Settings\Vicky\Local Settings\Application Data 2007-01-29 01:36 <REP> . 2007-01-29 01:36 <REP> .. 2007-11-12 02:50 <REP> Adobe 2007-02-02 22:42 <REP> Ahead 2007-07-07 14:35 <REP> Apple 2007-02-19 11:15 <REP> Apple Computer 2007-02-14 05:47 <REP> ApplicationHistory 2007-02-11 10:49 <REP> ATI 2007-02-07 14:03 <REP> Google 2007-03-19 19:10 <REP> Help 2007-01-30 00:56 <REP> Identities 2007-01-29 01:36 <REP> Microsoft 2007-01-29 04:08 <REP> Mozilla 2008-01-06 20:49 <REP> NFS Underground 2 2007-02-04 12:27 <REP> z-PEN Secured 2007-01-29 21:55 104 960 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2007-02-14 05:47 128 fusioncache.dat 2007-01-29 04:11 180 856 GDIPFONTCACHEV1.DAT 2007-02-11 12:24 8 638 970 IconCache.db 4 fichier(s) 8 924 914 octets 15 Rép(s) 15 279 198 208 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\WINDOWS\system32\config\systemprofile\Application Data 2007-01-28 15:48 <REP> . 2007-01-28 15:48 <REP> .. 2007-01-28 15:48 <REP> Microsoft 2007-01-28 15:48 62 desktop.ini 1 fichier(s) 62 octets 3 Rép(s) 15 279 198 208 octets libres Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data 2007-01-28 15:48 <REP> . 2007-01-28 15:48 <REP> .. 2007-01-28 15:48 <REP> Microsoft 0 fichier(s) 0 octets 3 Rép(s) 15 279 198 208 octets libres ****************************************** Recherche des taches planifiées dans E:\WINDOWS\tasks E:\WINDOWS\Tasks\1-Click 1-Click inexploitable E:\WINDOWS\Tasks\AD654EF694A2C03E.job ˆHi <ÐÅG¾£}Q~ƒF Ò < s "ˆ!Ø 5 e : \ d o c u m e ~ 1 \ v i c k y \ a p p l i c ~ 1 \ s e t u p d ~ 1 \ M e a l L o g W a y . e x e V i c k y € 0 Ñ E:\WINDOWS\Tasks\AppleSoftwareUpdate.job s €!Ø : E : \ P r o g r a m F i l e s \ A p p l e S o f t w a r e U p d a t e \ S o f t w a r e U p d a t e . e x e - t a s k M a r c 0 Ø @ ****************************************** ## Répertoires de E:\Program Files Le volume dans le lecteur E s'appelle Windows Le numéro de série du volume est F082-3DD1 Répertoire de E:\Program Files 2008-01-21 08:51 <REP> . 2008-01-21 08:51 <REP> .. 2007-10-23 16:21 <REP> Acoustica Shared Effects 2007-11-12 02:35 <REP> Adobe 2007-09-05 04:40 <REP> Alchemy Mindworks 2007-02-02 18:41 <REP> Alcohol Soft 2007-02-01 15:19 <REP> Apecsoft Web Flash Catcher 2007-09-23 02:53 <REP> Apple Software Update 2007-02-21 02:04 <REP> ArcSoft 2007-02-11 03:05 <REP> ATI Technologies 2007-02-12 06:07 <REP> AutoPlay Media Studio 6.0 Trial 2008-01-02 17:01 <REP> Bonjour 2007-10-23 22:01 <REP> Bus Driver 2007-12-08 06:53 <REP> Camfrog 2007-10-24 09:14 <REP> Cribbage 2007-05-23 19:16 <REP> CyberLink 2007-03-06 08:02 <REP> DAEMON Tools 2007-10-24 06:50 <REP> denouvel 2007-02-11 01:37 <REP> Diagnostic Tool for the Microsoft VM 2008-01-10 03:09 <REP> DIFX 2007-01-29 05:28 <REP> Diskeeper Corporation 2007-12-31 03:10 <REP> DOSBox-0.65 2007-02-05 21:15 <REP> DVDFab Platinum 3 2008-01-04 18:34 <REP> eBay 2007-02-04 13:00 <REP> Eclypse 2007-02-21 02:05 <REP> EPSON 2007-05-25 00:46 <REP> FANTAZIORKA 2008-01-15 16:22 <REP> Fichiers communs 2007-09-05 02:56 <REP> GIF Recuperateur 2007-02-21 09:19 <REP> GlobFX Technologies 2007-02-04 13:34 <REP> Google 2007-06-03 14:03 <REP> Goto 2007-02-15 07:38 <REP> GRETECH 2007-01-29 00:58 <REP> Grisoft 2008-01-20 17:28 <REP> IDT 2007-12-19 14:52 <REP> iLike 2007-12-31 03:10 <REP> i-Media 2007-07-23 06:54 <REP> IMVU 2007-06-20 21:02 <REP> innotek VirtualBox 2008-01-15 13:54 <REP> Intel 2008-01-21 09:16 <REP> Intel Audio Studio 2007-11-05 02:29 <REP> Intel Desktop Board Audio Driver 2007-12-15 00:49 <REP> InterActual 2008-01-02 09:02 <REP> Internet Explorer 2008-01-18 11:43 <REP> iPod 2008-01-18 11:44 <REP> iTunes 2007-12-17 20:37 <REP> Java 2007-02-15 07:43 <REP> K-Lite Codec Pack 2007-02-11 11:17 <REP> Messenger 2007-12-19 17:21 <REP> Microsoft ActiveSync 2007-02-10 22:40 <REP> Microsoft Baseline Security Analyzer 2 2007-07-07 20:48 <REP> Microsoft CAPICOM 2.1.0.2 2007-01-28 15:46 <REP> microsoft frontpage 2007-12-19 18:34 <REP> Microsoft Visual Studio 2008-01-02 08:43 <REP> Microsoft Works 2007-12-19 17:21 <REP> Microsoft.NET 2007-01-28 15:43 <REP> Movie Maker 2008-01-21 09:33 <REP> Mozilla Firefox 2007-02-02 16:52 <REP> MSBuild 2007-06-19 23:02 <REP> MSN 2007-09-23 12:37 <REP> MSN Games 2007-01-28 15:42 <REP> MSN Gaming Zone 2007-05-18 17:46 <REP> MSN Messenger 2007-01-29 02:29 <REP> MSXML 4.0 2008-01-02 08:30 <REP> MSXML 6.0 2007-10-20 21:20 <REP> MyPlayCity.com 2007-02-02 17:47 <REP> Nero 2007-12-31 03:10 <REP> NetMeeting 2007-01-28 15:42 <REP> Online Services 2007-02-21 11:51 <REP> OpenOffice.org 2.1 2007-10-12 01:05 <REP> Outils 2007-07-07 20:49 <REP> Outlook Express 2007-02-14 05:13 <REP> Popims 2008-01-21 12:02 <REP> PowerArchiver 2008-01-18 11:41 <REP> QuickTime 2007-02-07 14:03 <REP> Real 2007-02-02 16:49 <REP> Reference Assemblies 2007-01-28 15:45 <REP> Services en ligne 2007-04-13 02:00 <REP> Singles 2008-01-20 17:07 <REP> SuperAdBlocker.com 2007-09-12 15:30 <REP> SuperVideoCap 2008-01-20 04:03 <REP> Trend Micro 2007-12-31 03:09 <REP> TuneUp Utilities 2007 2007-02-04 08:52 <REP> uTorrent 2007-10-23 16:21 <REP> VST 2007-12-31 03:10 <REP> Webutility 2007-12-30 11:36 <REP> Winamp 2007-02-12 06:01 <REP> Windows Media Player 2007-01-28 15:42 <REP> Windows NT 2008-01-19 13:49 <REP> WinRAR 2007-02-15 07:02 <REP> WirelessMon 2007-12-31 03:10 <REP> WMR11 2007-01-28 15:46 <REP> xerox 2007-07-08 03:23 <REP> Yahoo! 2007-02-05 19:14 <REP> YouTUBE movie downloader 2008-01-20 02:03 <REP> Zone Labs 0 fichier(s) 0 octets 96 Rép(s) 15 279 173 632 octets libres ****************************************** ## Popups autorisées * Internet Explorer ! REG.EXE VERSION 3.0 HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow *.zylom.com REG_BINARY 00000000 *.zylomgames.com REG_BINARY 00000000 zonenxt.msn-int.com REG_BINARY zonenxt.msn-ppe.com REG_BINARY zone.msn.com REG_BINARY host-domain-lookup.com REG_SZ www.host-domain-lookup.com REG_SZ mysearchnow.com REG_SZ www.mysearchnow.com REG_SZ searchweb2.com REG_SZ www.searchweb2.com REG_SZ * Mozilla Firefox (1 autorisé 2 interdit) ---------- E:\DOCUMENTS AND SETTINGS\VICKY\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\AAVFR6VZ.DEFAULT\HOSTPERM.1 host popup 1 www.gamedesire.com host popup 1 loopinglive.free.fr host popup 1 www.playthem.net host popup 1 www.crazymonkeygames.com host popup 1 www.paypal.com host popup 1 www.pizzahut.ca host popup 1 video.google.fr host popup 1 telusmobilite.com host popup 1 www.zebest-3000.com host popup 1 199.243.181.10 ****************************************** ## Registre * [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] Windowthird REG_SZ E:\DOCUME~1\Vicky\APPLIC~1\SETUPD~1\Liteeggsidle.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Windowthird] command REG_SZ E:\DOCUME~1\Marc\APPLIC~1\SETUPD~1\Liteeggsidle.exe ****************************************** ## Zones de sécurité * HKCU Domains (4) * P3P History (5) ****************************************** ## Recherche E:\WINDOWS\*.htm, "E:\WINDOWS\*.gif" *************** Fin du rapport ****************
  2. marcissique
    Salut J'ai un prob de pub qui reviennent sans cesse avec IE. pourtant je n'utilise que firefox... jai essayer pleins de trucs de l'anti-virus au nettoyement partiel de l'ordi fichiers par fichiers... ca ne semble pas marcher Il y a un programme qui reviens meme apres avoir effacer (voir log en 04), je réussi a bloquer les fenetres de IE mais le probleme est loin d'etre regler ya quelqu'un peut m'aider... ca fait 3 nuits blanches que je passe a cause de ca ------------------ Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 09:48:37, on 2008-01-21 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16574) Boot mode: Normal Running processes: E:\WINDOWS\System32\smss.exe E:\WINDOWS\system32\winlogon.exe E:\WINDOWS\system32\services.exe E:\WINDOWS\system32\lsass.exe E:\WINDOWS\system32\Ati2evxx.exe E:\WINDOWS\system32\svchost.exe E:\WINDOWS\System32\svchost.exe E:\WINDOWS\system32\ZoneLabs\vsmon.exe E:\WINDOWS\system32\Ati2evxx.exe E:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABSVC.EXE E:\WINDOWS\system32\spoolsv.exe E:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe c:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe E:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe E:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe E:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe E:\WINDOWS\system32\cisvc.exe E:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe E:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE E:\Program Files\CyberLink\Shared Files\RichVideo.exe E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe E:\WINDOWS\system32\svchost.exe E:\Program Files\Fichiers communs\Pure Networks Shared\Platform\nmsrvc.exe E:\WINDOWS\system32\wbem\wmiapsrv.exe E:\WINDOWS\Explorer.EXE E:\WINDOWS\system32\ctfmon.exe E:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe E:\Program Files\ATI Technologies\ATI.ACE\cli.exe E:\Program Files\Fichiers communs\Pure Networks Shared\Platform\nmctxth.exe E:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe E:\Program Files\iTunes\iTunesHelper.exe E:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe E:\Program Files\Intel Audio Studio\IntelAudioStudio.exe E:\Program Files\MSN Messenger\msnmsgr.exe E:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SAdBlock.exe E:\Program Files\Trend Micro\HijackThis\HijackThis.exe E:\Program Files\iPod\bin\iPodService.exe E:\Program Files\iTunes\iTunes.exe E:\Program Files\ATI Technologies\ATI.ACE\cli.exe E:\Program Files\ATI Technologies\ATI.ACE\cli.exe E:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe E:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe E:\PROGRA~1\MOZILL~1\FIREFOX.EXE R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: SuperAdBlockerBHO Class - {00000000-6C30-11D8-9363-000AE6309654} - E:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABBHO.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O3 - Toolbar: Super Ad Blocker Toolbar - {B4B3001E-0F56-4E51-8250-BDE11547EC55} - E:\Program Files\SuperAdBlocker.com\Super Ad Blocker\sabtb.dll O4 - HKLM\..\Run: [AVG7_CC] E:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [ATICCC] "E:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [EPSON Stylus CX4200 Series] E:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAEA.EXE /P26 "EPSON Stylus CX4200 Series" /O6 "USB001" /M "Stylus CX4200" O4 - HKLM\..\Run: [nmctxth] "E:\Program Files\Fichiers communs\Pure Networks Shared\Platform\nmctxth.exe" O4 - HKLM\..\Run: [TkBellExe] "E:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "E:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [ZoneAlarm Client] "E:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [intelAudioStudio] "E:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" TRAY O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "E:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [superAdBlocker] E:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SAdBlock.exe O4 - HKCU\..\Run: [HijackThis startup scan] E:\Program Files\Trend Micro\HijackThis\HijackThis.exe /startupscan ?????? O4 - HKCU\..\Run: [Windowthird] E:\DOCUME~1\Vicky\APPLIC~1\SETUPD~1\Liteeggsidle.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] E:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Gamma Loader.lnk = E:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Rechercher sur eBay - res://E:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O8 - Extra context menu item: Sothink SWF Catcher - E:\Program Files\Fichiers communs\SourceTec\SWF Catcher\InternetExplorer.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v10/StagingUI.cab55579.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - E:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (MSN Games – Buddy Invite) - http://zone.msn.com/BinFrameWork/v10/ZBuddy.cab55579.cab O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-CA/a-UNO1/GAME_UNO1.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1199256937406 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1199256915828 O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://rockmanifeste.spaces.live.com/Photo...ad/MsnPUpld.cab O16 - DPF: {8C279F4E-917E-4CD2-8DF0-D9C73C0CE763} (ZPA_WheelOfFortune Object) - http://zone.msn.com/bingame/zpagames/zpa_wof.cab55579.cab O16 - DPF: {9BDF4724-10AA-43D5-BD15-AEA0D2287303} (MSN Games – Texas Holdem Poker) - http://zone.msn.com/bingame/zpagames/zpa_txhe.cab60231.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/...ro.cab56649.cab O16 - DPF: {BCF9A64D-1440-4404-863C-F5DF2B99F798} (MSN Games - Catan Online) - http://zone.msn.com/bingame/zpagames/zpa_catan.cab55579.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/StProxy.cab55579.cab O16 - DPF: {E85362EF-40D4-4E5D-BE07-D6B036CCA277} (GoPets Control) - https://secure.gopetslive.com/dev/gopets.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab O16 - DPF: {FF3C5A9F-5A99-4930-80E8-4709194C2AD3} (MSN Games – Backgammon) - http://zone.msn.com/bingame/zpagames/ZPA_B...on.cab64162.cab O20 - Winlogon Notify: !SABWinLogon - E:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABWINLO.DLL O23 - Service: Apple Mobile Device - Apple, Inc. - E:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - E:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - c:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - E:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - E:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - E:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: Diskeeper - Diskeeper® Corporation - E:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - E:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - E:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - E:\Program Files\iPod\bin\iPodService.exe O23 - Service: NBService - Nero AG - E:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: Pure Networks Net2Go Service (nmraapache) - Pure Networks, Inc. - C:\Program Files\Pure Networks\Network Magic\WebServer\bin\nmraapache.exe O23 - Service: Pure Networks Platform Service (nmservice) - Pure Networks, Inc. - E:\Program Files\Fichiers communs\Pure Networks Shared\Platform\nmsrvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - E:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: Super Ad Blocker Service (SABSVC) - SuperAdBlocker.com - E:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABSVC.EXE O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - E:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 11668 bytes
×
×
  • Créer...