Aller au contenu

celinou75015

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    14

  • Inscription

  • Dernière visite

celinou75015's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. celinou75015
    Pour le jeux c'est bien le vrai, j'ai tout acheté lol je vais voir ça. Merci pour ton aide
  2. celinou75015
    Bonsoir, Encore merci de ton aide J'ai tout fait pour Java, j'avais bien les deux versions installées. Pour adobe j'ai mis la 9 par contre pour flash je n'y arrive pas. Pour la souris non plus, je ne sais pas ce qu'il se passe mais oui il y a bien des piles lol C'est fait également pour Hijackthis. Tous les virus et autres "problemes" sont finis? Hier j'ai vu qu'un fichier de Farcry avait été effacé, que dois je faire pour pouvoir y jouer de nouveau? Autre petite question (j'en profite je sais... lol) comment faire pour que mon ordi démarre plus rapidement?
  3. celinou75015
    Ma souris vient de s'arrêter bursquement de fonctionner.. cela est-il en lien? De plus je ne peux plus jouer à FarCry 2.. (j'énnonce les quelques problèmes que je rencontre simplement pour voir s'il y a une solution possible..)
  4. celinou75015
    Voici le dernier rapport HijackThis Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:19:03, on 23/12/2008 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18000) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Windows\WindowsMobile\wmdc.exe C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Windows\System32\rundll32.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\OLITEC\Common\RaUI.exe C:\Windows\ehome\ehmsas.exe C:\Windows\System32\mobsync.exe C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\conime.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [skytel] Skytel.exe O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [stxTrayMenu] C:\Program Files\Seagate\SystemTray\FreeAgentLauncher.exe C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdc.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: AutoBackup Launcher.lnk = C:\Program Files\Memeo\AutoBackup\MemeoLauncher.exe O4 - Startup: bloc-notes3863154183.lnk = Celine\Desktop\Bloc-notes\bloc-notes.exe O4 - Startup: Enregistrement de FIFA 09.lnk = C:\Program Files\EA SPORTS\FIFA 09\Support\EAregister.exe O4 - Startup: Registration Brothers In Arms.LNK = K:\Support\Register\RegistrationReminder.exe O4 - Startup: RocketDock.lnk = C:\Windows\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe O4 - Startup: Y'z Toolbar.lnk = C:\Windows\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe O4 - Global Startup: Moniteur réseau 802.11g OLITEC.lnk = C:\Program Files\OLITEC\Common\RaUI.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing) O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing) O13 - Gopher Prefix: O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://fichiers.touslesdrivers.com/fichier...ion_3_0_4_0.cab O16 - DPF: {BA3BAF69-72B1-4BCE-BE96-A4D304EAFBB4} (PhotoBox uploader) - http://assets.photobox.com/assets/aurigma/...?20080925104645 O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshe...ronGameHost.cab O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AutoBackup (BMUService) - Memeo - C:\Program Files\Memeo\AutoBackup\MemeoService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- End of file - 9545 bytes
  5. celinou75015
    Voici le rapport de Java JavaRa 1.12 Removal Log. Report follows after line. ------------------------------------ The JavaRa removal process was started on Tue Dec 23 11:07:52 2008 Found and removed: C:\Program Files\Java\jre1.6.0_06 There was an error removing C:\Program Files\Java\jre1.6.0_07. The error returned was 32. Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC} Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610006 Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610006 Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610006 Found and removed: SOFTWARE\Classes\JavaPlugin.160_06 Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_06 Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_06 Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610006 Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610006 Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610006 Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160060} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB} Found and removed: Software\Classes\JavaPlugin.160_06 Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA} Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1 Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02 Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03 Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04 Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2 Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01 Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_06 Found and removed: Software\JavaSoft\Java2D\1.6.0_06 Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_06 Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA} Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA} Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB} Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_06\ Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_06\bin\ Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_07\bin\ Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\C:\Program Files\Common Files\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_06.b02\ ------------------------------------ Finished reporting. JavaRa 1.12 Removal Log. Report follows after line. ------------------------------------ The JavaRa removal process was started on Tue Dec 23 11:08:18 2008 There was an error removing C:\Program Files\Java\jre1.6.0_07. The error returned was 32. ------------------------------------ Finished reporting. JavaRa 1.12 Removal Log. Report follows after line. ------------------------------------ The JavaRa removal process was started on Tue Dec 23 11:08:25 2008 There was an error removing C:\Program Files\Java\jre1.6.0_07. The error returned was 32. ------------------------------------ Finished reporting. JavaRa 1.12 Removal Log. Report follows after line. ------------------------------------ The JavaRa removal process was started on Tue Dec 23 11:09:17 2008 There was an error removing C:\Program Files\Java\jre1.6.0_07. The error returned was 32. ------------------------------------ Finished reporting.
  6. celinou75015
    Bonjour Aprés une courte nuit voici le résultat, encore 4 infections mais mais me paraissent minimes car je peux de nouveau utiliser mon gros PC. Voici le rapport MBAM Malwarebytes' Anti-Malware 1.31 Version de la base de données: 1456 Windows 6.0.6001 Service Pack 1 23/12/2008 10:43:40 mbam-log-2008-12-23 (10-43-40).txt Type de recherche: Examen complet (C:\|) Eléments examinés: 261513 Temps écoulé: 1 hour(s), 44 minute(s), 44 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 1 Clé(s) du Registre infectée(s): 1 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 2 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): C:\Users\Celine\AppData\Local\Temp\ntdll64.dll (Trojan.FakeAlert) -> Delete on reboot. Clé(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\instkey (Trojan.Vundo) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): C:\Windows\System32\nnnoLDVN.dll (Trojan.Vundo) -> Quarantined and deleted successfully. C:\Users\Celine\AppData\Local\Temp\ntdll64.dll (Trojan.FakeAlert) -> Delete on reboot. Et celui de Hikachthis Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:49:28, on 23/12/2008 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18000) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe C:\Windows\WindowsMobile\wmdc.exe C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Windows\System32\rundll32.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\OLITEC\Common\RaUI.exe C:\Windows\ehome\ehmsas.exe C:\Windows\System32\mobsync.exe C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [skytel] Skytel.exe O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [stxTrayMenu] C:\Program Files\Seagate\SystemTray\FreeAgentLauncher.exe C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdc.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: AutoBackup Launcher.lnk = C:\Program Files\Memeo\AutoBackup\MemeoLauncher.exe O4 - Startup: bloc-notes3863154183.lnk = Celine\Desktop\Bloc-notes\bloc-notes.exe O4 - Startup: Enregistrement de FIFA 09.lnk = C:\Program Files\EA SPORTS\FIFA 09\Support\EAregister.exe O4 - Startup: Registration Brothers In Arms.LNK = K:\Support\Register\RegistrationReminder.exe O4 - Startup: RocketDock.lnk = C:\Windows\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe O4 - Startup: Y'z Toolbar.lnk = C:\Windows\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe O4 - Global Startup: Moniteur réseau 802.11g OLITEC.lnk = C:\Program Files\OLITEC\Common\RaUI.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing) O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing) O13 - Gopher Prefix: O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://fichiers.touslesdrivers.com/fichier...ion_3_0_4_0.cab O16 - DPF: {BA3BAF69-72B1-4BCE-BE96-A4D304EAFBB4} (PhotoBox uploader) - http://assets.photobox.com/assets/aurigma/...?20080925104645 O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshe...ronGameHost.cab O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AutoBackup (BMUService) - Memeo - C:\Program Files\Memeo\AutoBackup\MemeoService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- End of file - 9616 bytes
  7. celinou75015
    J'ai lancé ATF Cleaner = ok Je viens de lancer MBAM = en cours (tout à l'heure à peine lancé, il m'en trouvé . Vu que tout à l'heure a bout de 30 min il n'avait toujours pas fini, je te mettrai le rapport demain pour pas te retenir plus longtemps. Et je te copie colle aprés un nouveau rapport de HijackThis. En tout cas vraiment merci du plus profond de moi lol parce que tu es génial de prendre autant de temps pour chacun et t'expliquer de manière aussi simple, efficace et rapide. C'est vraiment génial et votre site est génial ! S'il y a un service de don j'en ferrai un volontier parce que je trouve réellement rare de nos jours. Encore merci et je te poste ça demain matin sans faute ! Et j'attends avec plaisir tous tes conseils concernant les programmes qui ont des failles et ceux que je dois désinstaller !
  8. celinou75015
    Impecable merci beaucoup m'sieur !
  9. celinou75015
    Nikel merci ! Voici le fichier Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 03:12:22, on 23/12/2008 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18000) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\conime.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe C:\Windows\WindowsMobile\wmdc.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Windows\System32\rundll32.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehmsas.exe C:\Windows\System32\mobsync.exe C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe C:\Windows\Explorer.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [skytel] Skytel.exe O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [stxTrayMenu] C:\Program Files\Seagate\SystemTray\FreeAgentLauncher.exe C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdc.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: AutoBackup Launcher.lnk = C:\Program Files\Memeo\AutoBackup\MemeoLauncher.exe O4 - Startup: bloc-notes3863154183.lnk = Celine\Desktop\Bloc-notes\bloc-notes.exe O4 - Startup: Enregistrement de FIFA 09.lnk = C:\Program Files\EA SPORTS\FIFA 09\Support\EAregister.exe O4 - Startup: Registration Brothers In Arms.LNK = K:\Support\Register\RegistrationReminder.exe O4 - Startup: RocketDock.lnk = C:\Windows\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe O4 - Startup: Y'z Toolbar.lnk = C:\Windows\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe O4 - Global Startup: Moniteur réseau 802.11g OLITEC.lnk = C:\Program Files\OLITEC\Common\RaUI.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing) O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing) O10 - Unknown file in Winsock LSP: c:\users\celine\appdata\local\temp\ntdll64.dll O10 - Unknown file in Winsock LSP: c:\users\celine\appdata\local\temp\ntdll64.dll O13 - Gopher Prefix: O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://fichiers.touslesdrivers.com/fichier...ion_3_0_4_0.cab O16 - DPF: {BA3BAF69-72B1-4BCE-BE96-A4D304EAFBB4} (PhotoBox uploader) - http://assets.photobox.com/assets/aurigma/...?20080925104645 O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshe...ronGameHost.cab O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AutoBackup (BMUService) - Memeo - C:\Program Files\Memeo\AutoBackup\MemeoService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- End of file - 9570 bytes
  10. celinou75015
    Executer c'est l'invit commande? Sinon, où cela se trouve sur vista?
  11. celinou75015
    Voila le fichier log ComboFix 08-12-21.04 - Celine 2008-12-23 2:22:29.1 - NTFSx86 Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.1.1036.18.2047.1203 [GMT 1:00] Lancé depuis: c:\users\Celine\Desktop\ComboFix.exe * Un nouveau point de restauration a été créé . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\programdata\Microsoft\Network\Downloader\qmgr0.dat c:\programdata\Microsoft\Network\Downloader\qmgr1.dat c:\users\Celine\AppData\Local\Microsoft\Windows\Temporary Internet Files\fbk.sts c:\users\Celine\AppData\Roaming\gadcom c:\users\Celine\AppData\Roaming\gadcom\gadcom.exe c:\windows\system32\ahtn.htm c:\windows\system32\fcccyArP.dll c:\windows\system32\frmwrk32.exe c:\windows\system32\ntdll64.exe c:\windows\system32\test.ttt c:\windows\system32\uniq.tll c:\windows\system32\warning.gif c:\windows\system32\win32hlp.cnf ----- BITS: Il y a peut-être des sites infectés ----- hxxp://childhe.com . ((((((((((((((((((((((((((((( Fichiers créés du 2008-11-23 au 2008-12-23 )))))))))))))))))))))))))))))))))))) . 2008-12-23 01:26 . 2008-12-23 01:26 <REP> d-------- c:\users\Celine\AppData\Roaming\Malwarebytes 2008-12-23 01:26 . 2008-12-23 01:26 <REP> d-------- c:\users\All Users\Malwarebytes 2008-12-23 01:26 . 2008-12-23 01:26 <REP> d-------- c:\programdata\Malwarebytes 2008-12-23 01:26 . 2008-12-23 01:26 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware 2008-12-23 01:26 . 2008-12-03 19:52 38,496 --a------ c:\windows\System32\drivers\mbamswissarmy.sys 2008-12-23 01:26 . 2008-12-03 19:52 15,504 --a------ c:\windows\System32\drivers\mbam.sys 2008-12-23 01:21 . 2008-12-23 01:22 <REP> d-------- C:\rsit 2008-12-23 00:54 . 2008-12-23 00:54 <REP> d-------- c:\program files\Trend Micro 2008-12-23 00:25 . 2008-12-23 00:25 <REP> d-------- c:\users\All Users\WindowsSearch 2008-12-23 00:25 . 2008-12-23 00:25 <REP> d-------- c:\programdata\WindowsSearch 2008-12-22 21:11 . 2008-12-22 21:12 45,056 --a------ c:\windows\System32\nnnoLDVN.dll 2008-12-22 14:04 . 2008-12-22 14:04 <REP> d-------- c:\program files\EA GAMES 2008-12-21 23:56 . 2008-12-21 23:56 <REP> d-------- c:\users\Celine\AppData\Roaming\Acreon 2008-12-21 22:34 . 2008-12-21 22:40 <REP> d-------- c:\program files\GameSpy Arcade 2008-12-21 21:46 . 2005-05-17 15:24 311,296 --a------ c:\windows\System32\AegisI5.exe 2008-12-21 21:46 . 2006-01-18 13:55 290,918 --a------ c:\windows\System32\Install7x.dll 2008-12-21 21:46 . 2005-10-17 19:50 245,376 --a------ c:\windows\System32\drivers\rt2500usb.SYS 2008-12-21 21:46 . 2005-11-24 19:51 245,248 --a------ c:\windows\System32\drivers\rt73.sys 2008-12-21 21:46 . 2008-12-21 21:46 20,747 --a------ c:\windows\System32\drivers\AegisP.sys 2008-12-21 21:46 . 2005-11-30 11:33 2,048 --a------ c:\windows\System32\drivers\rt73.bin 2008-12-21 21:46 . 2005-08-19 15:51 138 --a------ c:\windows\filespec7x 2008-12-21 21:45 . 2008-12-21 21:45 <REP> d-------- c:\program files\OLITEC 2008-12-16 22:03 . 2008-12-22 00:24 <REP> d-------- C:\WOW 2008-12-16 21:21 . 2008-12-16 22:53 <REP> d-------- c:\program files\WowCartographe 2008-12-16 21:03 . 2008-12-22 14:44 <REP> d-------- C:\A GRAVER 2008-12-15 23:09 . 2008-12-15 23:09 <REP> d-------- c:\program files\uTorrent 2008-12-15 23:08 . 2008-12-22 21:19 <REP> d-------- c:\users\Celine\AppData\Roaming\uTorrent 2008-12-15 08:44 . 2008-12-16 21:55 <REP> d-------- C:\World of Warcraft 2008-12-15 06:05 . 2008-12-15 06:05 <REP> d-------- c:\users\All Users\Blizzard 2008-12-15 06:05 . 2008-12-15 06:05 <REP> d-------- c:\programdata\Blizzard 2008-12-14 19:25 . 2008-12-14 19:25 24 --a------ C:\url_history.xml 2008-12-14 19:24 . 2008-12-14 19:24 <REP> d-------- c:\users\Celine\AppData\Roaming\SecondLife 2008-12-14 19:23 . 2008-12-14 19:25 <REP> d-------- c:\program files\SecondLife 2008-12-13 14:52 . 2008-12-13 14:53 <REP> d-------- c:\users\Celine\AppData\Roaming\Vso 2008-12-13 14:52 . 2008-12-13 17:07 <REP> d-------- c:\program files\Video Convert Master 2008-12-13 14:52 . 2008-12-13 14:52 81,920 --a------ c:\users\Celine\AppData\Roaming\ezpinst.exe 2008-12-13 14:52 . 2008-12-13 14:52 47,360 --a------ c:\windows\System32\drivers\pcouffin.sys 2008-12-13 14:52 . 2008-12-13 14:52 47,360 --a------ c:\users\Celine\AppData\Roaming\pcouffin.sys 2008-12-13 14:51 . 2008-12-13 14:51 <REP> d-------- c:\users\Celine\AppData\Roaming\VisiPPT 2008-12-13 14:30 . 2008-12-13 14:30 <REP> d-------- c:\windows\System32\QuickTime 2008-12-13 14:30 . 2008-07-10 14:56 107,864 --a------ c:\windows\System32\tsccvid.dll 2008-12-13 14:29 . 2008-12-13 14:29 <REP> d-------- c:\program files\TechSmith 2008-12-13 14:29 . 2008-12-13 14:29 <REP> d-------- c:\program files\Common Files\TechSmith Shared 2008-12-13 12:11 . 2008-12-13 12:11 <REP> d-------- c:\users\Celine\AppData\Roaming\GeoVid 2008-12-13 12:11 . 2008-12-13 12:11 <REP> d-------- c:\program files\Common Files\GeoVid 2008-12-13 12:11 . 2005-06-07 15:11 60,416 --a------ c:\windows\System32\dsetup.dll 2008-12-13 11:59 . 2008-12-13 12:10 <REP> d-------- c:\users\Celine\AppData\Roaming\ALLCapture 2008-12-13 11:29 . 2008-12-13 11:29 <REP> d-------- c:\program files\Paint.NET 2008-12-13 11:24 . 2008-12-13 11:24 <REP> d-------- c:\users\Celine\AppData\Roaming\OpenCandy 2008-12-12 18:00 . 2008-12-13 18:04 <REP> d-------- c:\program files\Presentersoft PowerVideoMaker 2008-12-12 18:00 . 2000-08-23 17:00 33,280 --a------ c:\windows\System32\huffyuv.dll 2008-12-12 18:00 . 2006-10-29 14:30 77 --a------ c:\windows\huffyuv.ini 2008-12-12 17:53 . 2008-12-13 11:12 <REP> d-------- c:\program files\Wondershare 2008-12-12 17:26 . 2008-12-12 18:13 <REP> d-------- c:\program files\Acoolsoft 2008-12-12 17:26 . 2008-09-25 17:24 16,384 --a------ c:\windows\System32\drivers\vad.sys 2008-12-12 03:04 . 2008-10-22 02:22 2,048 --a------ c:\windows\System32\tzres.dll 2008-12-07 12:49 . 2008-12-07 12:49 <REP> d-------- c:\users\Celine\AppData\Roaming\Shareaza 2008-12-07 12:49 . 2008-12-07 12:49 <REP> d-------- c:\program files\Shareaza 2008-12-06 23:30 . 2008-12-06 23:31 <REP> d-------- c:\program files\ActionLog 2008-12-06 23:30 . 1998-06-24 00:00 244,024 --a------ c:\windows\System32\MSFLXGRD.OCX 2008-12-06 17:20 . 2008-12-06 17:22 <REP> d-------- c:\users\Celine\AppData\Roaming\Windows Sidebar Styler 2008-12-06 17:20 . 2008-12-06 17:20 <REP> d-------- c:\program files\Stanimir Stoyanov 2008-11-30 18:40 . 2008-11-30 18:40 <REP> d-------- c:\users\All Users\Office Genuine Advantage 2008-11-30 18:40 . 2008-11-30 18:40 <REP> d-------- c:\programdata\Office Genuine Advantage 2008-11-27 18:52 . 2004-01-28 15:03 21,456 --a------ c:\windows\System32\drivers\SilvrLnk.sys 2008-11-26 19:05 . 2008-11-26 19:05 2,250,024 --a------ c:\windows\System32\pbsvc.exe 2008-11-26 09:43 . 2008-10-22 04:57 241,152 --a------ c:\windows\System32\PortableDeviceApi.dll 2008-11-26 09:41 . 2008-08-28 04:37 712,704 --a------ c:\windows\System32\WindowsCodecs.dll 2008-11-26 09:41 . 2008-08-28 04:40 425,472 --a------ c:\windows\System32\PhotoMetadataHandler.dll 2008-11-26 09:41 . 2008-08-28 04:37 347,648 --a------ c:\windows\System32\WindowsCodecsExt.dll 2008-11-26 09:39 . 2008-10-21 06:25 1,645,568 --a------ c:\windows\System32\connect.dll 2008-11-23 00:07 . 2008-11-23 00:07 <REP> d-------- c:\program files\Yahoo! . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-12-22 22:58 --------- d-----w c:\programdata\Sonic 2008-12-22 13:14 --------- d-----w c:\program files\Pochette Express 2 2008-12-22 13:04 --------- d--h--w c:\program files\InstallShield Installation Information 2008-12-22 09:53 138,696 ----a-w c:\windows\system32\drivers\PnkBstrK.sys 2008-12-22 09:52 201,816 ----a-w c:\windows\System32\PnkBstrB.exe 2008-12-21 13:20 --------- d-----w c:\program files\Everest Poker 2008-12-15 21:48 --------- d-----w c:\programdata\Messenger Plus! 2008-12-15 08:17 --------- d-----w c:\program files\World of Warcraft 2008-12-14 20:28 66,872 ----a-w c:\windows\System32\PnkBstrA.exe 2008-12-13 12:50 --------- d-----w c:\program files\The KMPlayer 2008-12-13 10:54 --------- d-----w c:\program files\MediaCoder 2008-12-12 17:11 --------- d-----w c:\users\Celine\AppData\Roaming\AVSMedia 2008-12-12 02:17 --------- d-----w c:\program files\Windows Mail 2008-12-12 02:11 --------- d-----w c:\programdata\Microsoft Help 2008-12-07 16:45 --------- d-----w c:\program files\eMule 2008-12-07 11:17 --------- d-----w c:\program files\Bonjour 2008-12-06 16:20 --------- d-----w c:\program files\Windows Sidebar 2008-12-06 15:58 --------- d-----w c:\program files\1&1 2008-12-06 15:57 --------- d-----w c:\programdata\ma-config.com 2008-12-06 15:57 --------- d-----w c:\program files\ma-config.com 2008-12-06 15:55 --------- d-----w c:\program files\Common Files\Wise Installation Wizard 2008-12-06 15:50 38 ----a-w c:\program files\notepadsettings.ini 2008-11-27 02:08 --------- d-----w c:\program files\Google 2008-11-26 18:06 22,328 ----a-w c:\users\Celine\AppData\Roaming\PnkBstrK.sys 2008-11-26 18:01 --------- d-----w c:\program files\Ubisoft 2008-11-22 09:56 --------- d-----w c:\program files\Parrot Software Update Tool 2008-11-22 09:55 --------- d-----w c:\program files\WinSesame 2008-11-22 09:55 --------- d-----w c:\program files\WebAnimé 2008-11-19 21:42 --------- d-----w c:\programdata\NVIDIA 2008-11-19 21:38 --------- d-----w c:\program files\AGEIA Technologies 2008-11-19 20:52 --------- d-----w c:\users\Celine\AppData\Roaming\DeskSoft 2008-11-12 20:19 107,888 ----a-w c:\windows\System32\CmdLineExt.dll 2008-11-12 20:15 --------- d-----w c:\programdata\Electronic Arts 2008-11-12 20:15 --------- d-----w c:\program files\Electronic Arts 2008-11-12 20:14 --------- d-----w c:\users\Celine\AppData\Roaming\Leadertech 2008-11-12 19:34 --------- d-----w c:\program files\EA SPORTS 2008-11-12 19:15 --------- d-----w c:\users\Celine\AppData\Roaming\CoSoSys 2008-11-08 17:23 0 ---ha-w c:\windows\system32\drivers\Msft_User_WpdRapi_01_00_00.Wdf 2008-11-08 17:21 --------- d-----w c:\program files\Windows Mobile Device Handbook 2008-11-05 16:51 --------- d-----w c:\program files\Activision Value 2008-11-02 11:02 --------- d-----w c:\program files\Recovery for Word 2008-11-01 03:44 541,696 ----a-w c:\windows\AppPatch\AcLayers.dll 2008-11-01 03:44 52,736 ----a-w c:\windows\AppPatch\iebrshim.dll 2008-11-01 03:44 460,288 ----a-w c:\windows\AppPatch\AcSpecfc.dll 2008-11-01 03:44 28,672 ----a-w c:\windows\System32\Apphlpdm.dll 2008-11-01 03:44 2,154,496 ----a-w c:\windows\AppPatch\AcGenral.dll 2008-11-01 03:44 173,056 ----a-w c:\windows\AppPatch\AcXtrnal.dll 2008-11-01 01:21 4,240,384 ----a-w c:\windows\System32\GameUXLegacyGDFs.dll 2008-10-29 06:29 2,927,104 ----a-w c:\windows\explorer.exe 2008-10-21 05:25 296,960 ----a-w c:\windows\System32\gdi32.dll 2008-10-16 21:13 1,809,944 ----a-w c:\windows\System32\wuaueng.dll 2008-10-16 21:12 561,688 ----a-w c:\windows\System32\wuapi.dll 2008-10-16 21:09 51,224 ----a-w c:\windows\System32\wuauclt.exe 2008-10-16 21:09 43,544 ----a-w c:\windows\System32\wups2.dll 2008-10-16 21:08 34,328 ----a-w c:\windows\System32\wups.dll 2008-10-16 20:56 1,524,736 ----a-w c:\windows\System32\wucltux.dll 2008-10-16 20:55 83,456 ----a-w c:\windows\System32\wudriver.dll 2008-10-16 13:08 162,064 ----a-w c:\windows\System32\wuwebv.dll 2008-10-16 12:56 31,232 ----a-w c:\windows\System32\wuapp.exe 2008-10-16 04:47 827,392 ----a-w c:\windows\System32\wininet.dll 2008-10-04 09:36 4,895 ----a-w c:\windows\BricoPackFoldersDelete.cmd 2008-10-04 09:36 36,919 ----a-w c:\windows\BricoPackUninst.cmd 2008-10-02 09:07 453,152 ----a-w c:\windows\System32\NVUNINST.EXE 2008-09-30 15:43 1,286,152 ----a-w c:\windows\System32\msxml4.dll 2008-08-04 10:38 174 --sha-w c:\program files\desktop.ini 2008-05-24 13:13 1,376 ----a-w c:\users\Celine\AppData\Roaming\filterclsid.dat 2008-02-10 10:34 20 ---h--w c:\users\All Users\PKP_DLec.DAT 2008-02-10 10:34 20 ---h--w c:\programdata\PKP_DLec.DAT 2004-08-04 12:29 94,208 ----a-w c:\program files\mozilla firefox\components\BrandRes.dll 2004-08-04 12:29 150,912 ----a-w c:\program files\mozilla firefox\components\fullsoft.dll 2004-08-04 12:28 53,349 ----a-w c:\program files\mozilla firefox\components\jar50.dll 2004-08-04 12:29 61,535 ----a-w c:\program files\mozilla firefox\components\jsd3250.dll 2008-06-18 07:06 34,952 ----a-w c:\program files\mozilla firefox\components\myspell.dll 2004-08-04 12:29 24,685 ----a-w c:\program files\mozilla firefox\components\qfaservices.dll 2008-06-18 07:06 46,720 ----a-w c:\program files\mozilla firefox\components\spellchk.dll 2004-08-04 12:28 168,039 ----a-w c:\program files\mozilla firefox\components\xpinstal.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe" [2007-08-03 202024] "ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RoxWatchTray"="c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [2007-01-11 232184] "toolbar_eula_launcher"="c:\program files\Packard Bell\GOOGLE_EULA\EULALauncher.exe" [2007-02-20 28672] "avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-07-17 266497] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-08-08 1828136] "StxTrayMenu"="c:\program files\Seagate\SystemTray\FreeAgentLauncher.exe" [2007-01-18 79416] "SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784] "Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdc.exe" [2007-01-24 563080] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-09-06 413696] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-10-01 289576] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13584928] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-10-07 92704] "RtHDVCpl"="RtHDVCpl.exe" [2007-05-10 c:\windows\RtHDVCpl.exe] "Skytel"="Skytel.exe" [2007-05-07 c:\windows\SkyTel.exe] c:\users\Celine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 113664] AutoBackup Launcher.lnk - c:\program files\Memeo\AutoBackup\MemeoLauncher.exe [2007-02-08 211992] c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Moniteur r‚seau 802.11g OLITEC.lnk - c:\program files\OLITEC\Common\RaUI.exe [2008-12-21 643072] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.I420"= i420vfw.dll "VIDC.LAGS"= lagarith.dll "VIDC.HFYU"= huffyuv.dll [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-978352666-3736346285-1586556564-1002] "EnableNotificationsRef"=dword:00000002 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules] "{4A9E8CE8-92CB-4C28-A7F7-BA952705AD3F}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote "{BDA82392-5B0B-41ED-BD1F-C367C36A8828}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote "{148F4CC0-C304-4191-A03B-D6D6BE5B305E}"= UDP:c:\program files\Skype\Phone\Skype.exe:Skype "{FF9D2792-06A2-43C0-A599-5F03CDE8FDC4}"= TCP:c:\program files\Skype\Phone\Skype.exe:Skype "TCP Query User{9811142E-5234-4E6C-9CAD-E2E2429311F1}c:\\program files\\emule\\emule.exe"= UDP:c:\program files\emule\emule.exe:eMule "UDP Query User{26F4C2ED-8D87-466B-89E1-897F6861056D}c:\\program files\\emule\\emule.exe"= TCP:c:\program files\emule\emule.exe:eMule "{98DC0C55-49B5-44D9-A36E-E7660121FF53}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook "TCP Query User{50001961-BB12-4B93-A8E4-9F048C2C823D}c:\\téléchargement\\wow-frfr-installer-downloader.exe"= Disabled:UDP:c:\téléchargement\wow-frfr-installer-downloader.exe:Blizzard Downloader "UDP Query User{95083EB9-4CED-4305-8CAF-5D7EE3AE5ABF}c:\\téléchargement\\wow-frfr-installer-downloader.exe"= Disabled:TCP:c:\téléchargement\wow-frfr-installer-downloader.exe:Blizzard Downloader "TCP Query User{F4F65DA1-61C0-475C-9F21-EFA1301B752B}c:\\téléchargement\\wow1-frfr-installer-downloader.exe"= Disabled:UDP:c:\téléchargement\wow1-frfr-installer-downloader.exe:Blizzard Downloader "UDP Query User{2138FB96-F5D3-4212-93A4-E791D617F77B}c:\\téléchargement\\wow1-frfr-installer-downloader.exe"= Disabled:TCP:c:\téléchargement\wow1-frfr-installer-downloader.exe:Blizzard Downloader "TCP Query User{AEC5F27E-E48D-429B-ADEA-423DFD10FB0C}c:\\users\\celine\\appdata\\local\\microsoft\\windows\\temporary internet files\\content.ie5\\fr6z1c8n\\wow-frfr-installer-downloader[1].exe"= Disabled:UDP:c:\users\celine\appdata\local\microsoft\windows\temporary internet files\content.ie5\fr6z1c8n\wow-frfr-installer-downloader[1].exe:wow-frfr-installer-downloader[1].exe "UDP Query User{0FD5AA47-803D-44C2-9454-412B9FC21175}c:\\users\\celine\\appdata\\local\\microsoft\\windows\\temporary internet files\\content.ie5\\fr6z1c8n\\wow-frfr-installer-downloader[1].exe"= Disabled:TCP:c:\users\celine\appdata\local\microsoft\windows\temporary internet files\content.ie5\fr6z1c8n\wow-frfr-installer-downloader[1].exe:wow-frfr-installer-downloader[1].exe "TCP Query User{5B850AA1-9232-489C-A507-297DE9D4D6C2}c:\\program files\\world of warcraft\\repair.exe"= Disabled:UDP:c:\program files\world of warcraft\repair.exe:Blizzard Repair Utility "UDP Query User{9CF1484F-5533-4D9E-BFA2-8368225F0BDA}c:\\program files\\world of warcraft\\repair.exe"= Disabled:TCP:c:\program files\world of warcraft\repair.exe:Blizzard Repair Utility "{EAE92555-04FE-4351-B742-9F09F3FB7329}"= UDP:c:\windows\System32\PnkBstrA.exe:PnkBstrA "{07BA8E53-4136-4E91-8C4B-390CDFAA3733}"= TCP:c:\windows\System32\PnkBstrA.exe:PnkBstrA "{9FDE2E5A-51D2-4801-A30F-2AA244A57551}"= UDP:c:\windows\System32\PnkBstrB.exe:PnkBstrB "{EC54C262-4945-425A-BD1D-E2B70A4740BB}"= TCP:c:\windows\System32\PnkBstrB.exe:PnkBstrB "{79D4EB96-C991-4E3D-8514-A2BC6252EAD2}"= Disabled:UDP:c:\program files\Skype\Phone\Skype.exe:Skype "{A39CB81E-ABE3-483B-9274-A029E1587082}"= Disabled:TCP:c:\program files\Skype\Phone\Skype.exe:Skype "{EE0E695E-B409-4BAF-8F07-5E8463ED4D57}"= UDP:990:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}|%SystemRoot%\system32\svchost.exe|Svc=rapimgr:@%systemroot%\WindowsMobile\wmdSync.exe,-4001 "{23715FA6-5DD1-4D72-87C3-32F7743D8B84}"= UDP:5721:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}:@%systemroot%\WindowsMobile\wmdc.exe,-4002 "{A2736507-8E7B-4A4E-98E8-248195AA94E6}"= UDP:1034:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}:@%systemroot%\WindowsMobile\wmdc.exe,-4003 "{3294601D-76B5-419B-90E0-A19ECE38D71B}"= UDP:5678:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}|%systemroot%\WindowsMobile\wmdHost.exe:@%systemroot%\WindowsMobile\wmdc.exe,-4004 "{FA20FB01-4466-455E-B43F-833CD3783CEC}"= UDP:999:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}|%systemroot%\WindowsMobile\wmdHost.exe:@%systemroot%\WindowsMobile\wmdc.exe,-4005 "{CF7C42B3-A59A-4D19-868E-FB8C6E851E4F}"= UDP:26675:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}:@%systemroot%\WindowsMobile\wmdc.exe,-4006 "{B456FA7F-B34A-4605-8EAC-96DC2E2395DD}"= UDP:990:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}|%SystemRoot%\system32\svchost.exe|Svc=rapimgr:@%systemroot%\WindowsMobile\wmdc.exe,-4001 "{8D7461E5-7ECC-4EA7-B22F-FCFA2C41D94D}"= UDP:5721:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}:@%systemroot%\WindowsMobile\wmdc.exe,-4002 "{1C53A6E0-136F-4B75-AA6E-A152D031ABAB}"= UDP:1034:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}:@%systemroot%\WindowsMobile\wmdc.exe,-4003 "{82E7BCAD-5BC0-4B1A-A431-EC7BD1F75DDD}"= UDP:5678:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}|%systemroot%\WindowsMobile\wmdHost.exe:@%systemroot%\WindowsMobile\wmdc.exe,-4004 "{9AA86895-161C-47C1-BEB6-6F2215936518}"= UDP:999:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}|%systemroot%\WindowsMobile\wmdHost.exe:@%systemroot%\WindowsMobile\wmdc.exe,-4005 "{686B9138-A890-458C-8A0C-D59D4C69A32A}"= UDP:26675:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}:@%systemroot%\WindowsMobile\wmdc.exe,-4006 "{AD847B5E-95DC-450F-854A-CA461B5BBDC3}"= UDP:990:LocalSubnet:LocalSubnet|IF={728C58AE-F5D1-4894-B8D6-56646CB2BA85}|%SystemRoot%\system32\svchost.exe|Svc=rapimgr:@%systemroot%\WindowsMobile\wmdc.exe,-4001 "{3AD57647-1AF1-4371-B5D3-5DDC9D2C047A}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImpCnt.exe:IncrediMail "{0F510DFD-F5CA-4A71-88DB-B76E824EC069}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImpCnt.exe:IncrediMail "{BE2565C9-4FFE-4339-9A03-26CF448DAF52}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail "{67AB2F0E-A852-481F-9710-1161EDC65DDC}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail "{B459BB6A-AD20-4239-BE9B-F1F1D3084FA7}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour "{AA786DEB-F3F7-4523-B553-A4557E6EF7EF}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour "{3D6CF5FA-0BA7-45BE-855D-02624BF24A0D}"= Disabled:UDP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail "{11A73A58-14B7-48C9-81A1-16C466121C45}"= Disabled:TCP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail "{1B2FFCF5-0975-4C18-91D8-B91E271F3F78}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail "{44560B33-62DB-49F6-A5A6-1F29B056AC66}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail "{6136255E-45EE-4E5E-A2F9-A5A62BD1CD6C}"= Disabled:UDP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail "{28D9B92B-D41F-4BCC-A401-A046A20A4F5B}"= Disabled:TCP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail "{74582679-8C1D-4396-AACA-03905471A365}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone) "{9A399F67-D880-4228-98C2-6DF975132526}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour "{92808896-D0CB-47C0-9B0D-3AF0A1F3E10B}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour "{A4CA4CF5-2B69-47E2-BD93-9424C3653022}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes "{3AAEA687-FCEE-4B12-A183-F5BD08C25C11}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes "TCP Query User{81F5A081-2861-4AC5-B6C0-14F780D02524}c:\\program files\\filezilla\\filezilla.exe"= UDP:c:\program files\filezilla\filezilla.exe:FileZilla "UDP Query User{5A06B9BA-6162-46EE-B21D-A0EE59EA45D0}c:\\program files\\filezilla\\filezilla.exe"= TCP:c:\program files\filezilla\filezilla.exe:FileZilla "TCP Query User{2D46BB28-7F4E-4BFB-8E89-8946D229B8D0}c:\\program files\\emule\\emule.exe"= UDP:c:\program files\emule\emule.exe:eMule "UDP Query User{E8681F05-CEA0-48C2-B14D-AB282E4F8110}c:\\program files\\emule\\emule.exe"= TCP:c:\program files\emule\emule.exe:eMule "{5DB48199-CA9C-4BC6-A788-2A5B690F1AF9}"= UDP:990:LocalSubnet:LocalSubnet|IF={741D1234-E624-4FA3-B341-CA07CDB264F0}|%SystemRoot%\system32\svchost.exe|Svc=rapimgr:@%systemroot%\WindowsMobile\wmdSync.exe,-4001 "{DF2BEA30-F4CD-4E98-AA1D-57EAB958591F}"= UDP:5721:LocalSubnet:LocalSubnet|IF={741D1234-E624-4FA3-B341-CA07CDB264F0}:@%systemroot%\WindowsMobile\wmdc.exe,-4002 "{A05DE6CB-5381-4BCA-83A9-7521B0590F15}"= UDP:1034:LocalSubnet:LocalSubnet|IF={741D1234-E624-4FA3-B341-CA07CDB264F0}:@%systemroot%\WindowsMobile\wmdc.exe,-4003 "{2A8D5095-EF0C-4F7F-9E81-E73C622D1E39}"= UDP:5678:LocalSubnet:LocalSubnet|IF={741D1234-E624-4FA3-B341-CA07CDB264F0}|%systemroot%\WindowsMobile\wmdHost.exe:@%systemroot%\WindowsMobile\wmdc.exe,-4004 "{D6636200-E652-4241-8564-34041FA07DF1}"= UDP:999:LocalSubnet:LocalSubnet|IF={741D1234-E624-4FA3-B341-CA07CDB264F0}|%systemroot%\WindowsMobile\wmdHost.exe:@%systemroot%\WindowsMobile\wmdc.exe,-4005 "{40FE2710-108B-4D19-B197-D57C7D5E0E44}"= UDP:26675:LocalSubnet:LocalSubnet|IF={741D1234-E624-4FA3-B341-CA07CDB264F0}:@%systemroot%\WindowsMobile\wmdc.exe,-4006 "{6D2962D8-3419-4F9D-8FF9-1B99E9ADE5BE}"= UDP:990:LocalSubnet:LocalSubnet|IF={741D1234-E624-4FA3-B341-CA07CDB264F0}|%SystemRoot%\system32\svchost.exe|Svc=rapimgr:@%systemroot%\WindowsMobile\wmdc.exe,-4001 "TCP Query User{953177EE-8DE7-45E9-B91A-8986BB3F3CE6}c:\\program files\\shareaza\\shareaza.exe"= UDP:c:\program files\shareaza\shareaza.exe:Shareaza Ultimate File Sharing "UDP Query User{FDA00076-3BED-430C-8833-943F13FA8982}c:\\program files\\shareaza\\shareaza.exe"= TCP:c:\program files\shareaza\shareaza.exe:Shareaza Ultimate File Sharing "{3973F0C2-FF86-480E-87D9-81DC591522D0}"= UDP:48113:LocalSubnet:LocalSubnet:maconfig_tcp "{89564AA5-B790-46E5-89F7-19C241CAFD3F}"= TCP:48113:LocalSubnet:LocalSubnet:maconfig_udp "{EE969707-5382-4A71-8B9B-C34AF5B9B608}"= UDP:c:\program files\ma-config.com\maconfservice.exe:maconfservice "{C1A58A63-B731-4954-B590-4D62762AC2E3}"= TCP:c:\program files\ma-config.com\maconfservice.exe:maconfservice "{8F95B176-0162-407F-9C2E-0D879D6BDBB0}"= UDP:c:\program files\Ubisoft\Far Cry 2\bin\FarCry2.exe:Far Cry 2 "{CB2D473A-180F-4675-8032-9F0FF161F655}"= TCP:c:\program files\Ubisoft\Far Cry 2\bin\FarCry2.exe:Far Cry 2 "{5F90D1DC-8C18-4A59-9F68-EC9A5DB7B156}"= UDP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:Far Cry 2 Updater "{59527550-FE5E-4C30-ACBA-182470E7A3A6}"= TCP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:Far Cry 2 Updater "{8B1CA3BD-B208-49E5-992A-DEE1D0EB70B0}"= UDP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:Editeur "{F91072E0-D77B-47AD-A551-824D979A65EB}"= TCP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:Editeur "{D433B2F0-580D-4962-B4E8-33996CBFE0A6}"= UDP:c:\program files\Shareaza\Shareaza.exe:Shareaza "{74E930BB-46C5-4C8C-AD86-89155E56DB14}"= TCP:c:\program files\Shareaza\Shareaza.exe:Shareaza "{BCB6810E-27E6-4F84-821A-E79149A9FD00}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In) "{12445160-01C2-4F50-89DD-30FD6CDD43F6}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In) "{69D5E743-4308-421F-9044-03025038C695}"= UDP:c:\users\Celine\AppData\Local\Temp\init.exe:ENABLE "{11C9CFAA-C832-422E-85C0-545779409606}"= TCP:c:\users\Celine\AppData\Local\Temp\init.exe:ENABLE "{1D97317D-A257-458C-B095-CBF9F221B760}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone) "{9DA164E7-F831-4AC4-A4D1-DA03520314CF}"= UDP:c:\users\Celine\AppData\Local\Temp\init.exe:ENABLE "{A0D0BC65-8546-4F28-818A-3F5D04BE0157}"= TCP:c:\users\Celine\AppData\Local\Temp\init.exe:ENABLE [HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile] "EnableFirewall"= 0 (0x0) R3 VAD_DEV;Virtual Audio Service;c:\windows\system32\drivers\vad.sys [2008-12-12 16384] S3 CrystalSysInfo;CrystalSysInfo;\??\c:\program files\MediaCoder\SysInfo.sys [2007-09-25 15152] S3 MRVW225;802.11g/b Wireless LAN Dirver for Windows XP;c:\windows\system32\DRIVERS\MRVW225.sys [2008-10-09 299904] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr bthsvcs REG_MULTI_SZ BthServ [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E] \shell\AutoRun\command - "E:\Install FreeAgent Tools.exe" /run [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{52f2d681-bf21-11dc-857a-001a4ddcc274}] \shell\AutoRun\command - "E:\Install FreeAgent Tools.exe" /run [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6695477f-204c-11dd-80e8-001a4ddcc274}] \shell\AutoRun\command - K:\autorun.exe install.exe \shell\configure\command - K:\install.exe \shell\install\command - K:\install.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{954c9df0-0f77-11dd-b6ec-001a4ddcc274}] \shell\AutoRun\command - K:\setup.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d2b929ab-8ba2-11dc-85f6-001a4ddcc274}] \shell\AutoRun\command - E:\InstallTomTomHOME.exe . Contenu du dossier 'Tâches planifiées' 2008-12-23 c:\windows\Tasks\User_Feed_Synchronization-{CE0203B3-4643-4B00-A785-207A60E2E642}.job - c:\windows\system32\msfeedssync.exe [2008-01-19 08:33] 2008-12-22 c:\windows\Tasks\zawbynvk.job - c:\windows\system32\rundll32.exe [2006-11-02 10:45] . - - - - ORPHELINS SUPPRIMES - - - - HKCU-RunOnce-Shockwave Updater - c:\windows\System32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1100429 -Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506; .NET HKLM-Run-winsesame_del - c:\program files\WinSesame\effaceur.exe HKLM-Run-HomeKeyLogger - c:\program files\HomeKeylogger\KeyLogger.exe HKLM-Run-Wspi - (no file) HKU-Default-Run-Picasa Media Detector - c:\program files\Picasa2\PicasaMediaDetector.exe ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-12-23 02:39:39 Windows 6.0.6001 Service Pack 1 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . ------------------------ Autres processus actifs ------------------------ . c:\windows\System32\nvvsvc.exe c:\windows\System32\audiodg.exe c:\program files\Lavasoft\Ad-Aware 2007\aawservice.exe c:\program files\Avira\AntiVir PersonalEdition Classic\avguard.exe c:\program files\Avira\AntiVir PersonalEdition Classic\sched.exe c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe c:\windows\System32\PnkBstrA.exe c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe c:\windows\System32\WUDFHost.exe c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe c:\windows\System32\conime.exe c:\program files\Windows Media Player\wmpnetwk.exe c:\windows\ehome\ehmsas.exe c:\program files\Windows Media Player\wmplayer.exe c:\program files\Common Files\Nero\Lib\NMIndexingService.exe c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe c:\program files\iPod\bin\iPodService.exe c:\windows\servicing\TrustedInstaller.exe c:\windows\System32\dllhost.exe c:\windows\System32\WerFault.exe . ************************************************************************** . Heure de fin: 2008-12-23 2:50:11 - La machine a redémarré ComboFix-quarantined-files.txt 2008-12-23 01:49:59 Avant-CF: 30 301 310 976 octets libres Après-CF: 28,938,174,464 octets libres 380 --- E O F --- 2008-12-19 00:31:31
  12. celinou75015
    Oui oui elle est dessus... windows redemarre..
  13. celinou75015
    Combofix est en train de tourner Par contre je ne peux pas perdre la connexion vue que je n'en ai plus sur l'autre, j'accepte au net vi mon pc portable et transfere les différents prog que tu me donnes via ma clé USB lol quelle galère ! MAis c'est certain que les cracks c'est finis ! Dès que j'ai le rapport je te le mets là Merci encore de ton aide
  14. celinou75015
    Bonsoir à tous, Suite au téléchargement d'un crack car j'avais perdu le CD de mohaa, plus rien ne marche sur mon PC. J'écris de mon portable car sur le pc bureau toutes les secondes quasiment, antivir me notifie un viru TR/Crypt.XPACK.Gen et un autre TR/Dropper.Gen. J'ai fais hijack this, voici le rapport... Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 00:56:45, on 23/12/2008 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18000) Boot mode: Safe mode Running processes: C:\Users\Celine\AppData\Local\Temp\init.exe C:\Windows\Explorer.EXE C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Aware2007.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,C:\Users\Celine\AppData\Local\Temp\init.exe O1 - Hosts: 80.239.180.112 O1 - Hosts: ::1 localhost O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: (no name) - {FB4136D9-ED11-4042-B832-9E92F2B6E1C7} - C:\Windows\system32\ssqQjHyx.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [skytel] Skytel.exe O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [stxTrayMenu] C:\Program Files\Seagate\SystemTray\FreeAgentLauncher.exe C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe O4 - HKLM\..\Run: [winsesame_del] C:\Program Files\WinSesame\effaceur.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdc.exe O4 - HKLM\..\Run: [HomeKeyLogger] C:\Program Files\HomeKeylogger\KeyLogger.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [Framework Windows] frmwrk32.exe O4 - HKLM\..\Run: [MSServer] rundll32.exe C:\Windows\system32\opnlJdcb.dll,#1 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [gadcom] "C:\Users\Celine\AppData\Roaming\gadcom\gadcom.exe" 61A847B5BBF72810339E3F466188719AB689201522886B092CBD44BD8689220221DD3257 O4 - HKCU\..\RunOnce: [shockwave Updater] C:\Windows\System32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1100429 -Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506; .NET CLR 1.1.4322; InfoPath.2) O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: AutoBackup Launcher.lnk = C:\Program Files\Memeo\AutoBackup\MemeoLauncher.exe O4 - Startup: bloc-notes3863154183.lnk = Celine\Desktop\Bloc-notes\bloc-notes.exe O4 - Startup: Enregistrement de FIFA 09.lnk = C:\Program Files\EA SPORTS\FIFA 09\Support\EAregister.exe O4 - Startup: Registration Brothers In Arms.LNK = K:\Support\Register\RegistrationReminder.exe O4 - Startup: RocketDock.lnk = C:\Windows\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe O4 - Startup: Y'z Toolbar.lnk = C:\Windows\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe O4 - Global Startup: Moniteur réseau 802.11g OLITEC.lnk = C:\Program Files\OLITEC\Common\RaUI.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing) O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing) O10 - Unknown file in Winsock LSP: c:\users\celine\appdata\local\temp\ntdll64.dll O10 - Unknown file in Winsock LSP: c:\users\celine\appdata\local\temp\ntdll64.dll O13 - Gopher Prefix: O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://fichiers.touslesdrivers.com/fichier...ion_3_0_4_0.cab O16 - DPF: {BA3BAF69-72B1-4BCE-BE96-A4D304EAFBB4} (PhotoBox uploader) - http://assets.photobox.com/assets/aurigma/...?20080925104645 O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshe...ronGameHost.cab O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AutoBackup (BMUService) - Memeo - C:\Program Files\Memeo\AutoBackup\MemeoService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- End of file - 10801 bytes Je suis en train de faire Malwarebytes' (l'ayant lu sur votre forum). Meci d'avance de votre aide car là je suis perdue, sans net, sans rien pouvoir faire..
×
×
  • Créer...