brunflarbe
-
Compteur de contenus
15 -
Inscription
-
Dernière visite
brunflarbe's Achievements
Junior Member (3/12)
0
Réputation sur la communauté
-
MERCI BEAUCOUP POUR VOTRE PATIENCE BONNE FETES DE FIN D ANNEE JE PENSE QUE LES PROBLEMES SONT RESOLUS ENCORE MERCI...........
-
ca yé en forçant g reussi voila le rapport : C:\Navilog1.exe: trouvé ! C:\fixnavi.txt: trouvé ! C:\cleannavi.txt: trouvé ! C:\UsbFix.txt: trouvé ! C:\_OTM: trouvé ! C:\UsbFix: trouvé ! C:\Rsit: trouvé ! C:\Program Files\Navilog1: trouvé ! C:\Program Files\Trend Micro\HijackThis.exe: trouvé ! C:\Program Files\Trend Micro\hijackthis.log: trouvé ! C:\Program Files\Trend Micro\HijackThis: trouvé ! C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé ! C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé ! C:\Program Files\TrendMicro\HijackThis: trouvé ! C:\Program Files\TrendMicro\HiJackThis\HijackThis.exe: trouvé ! C:\Program Files\TrendMicro\HiJackThis\hijackthis.log: trouvé ! C:\Users\Administrateur\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HijackThis.exe: trouvé ! C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Recent\HijackThis.lnk: trouvé ! C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\HijackThis: trouvé ! C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HijackThis: trouvé ! C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis\HijackThis.lnk: trouvé ! C:\Users\Administrateur\Desktop\HijackThis.lnk: trouvé ! C:\Users\Administrateur\Desktop\hijackthis.log: trouvé ! C:\Windows\msnfix.txt: trouvé ! --------------------------------- --> Suppression: C:\Navilog1.exe: supprimé ! C:\Program Files\Trend Micro\HijackThis.exe: supprimé ! C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé ! C:\Program Files\TrendMicro\HiJackThis\HijackThis.exe: supprimé ! C:\Users\Administrateur\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HijackThis.exe: ERREUR DE SUPPRESSION !! C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Recent\HijackThis.lnk: supprimé ! C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis\HijackThis.lnk: supprimé ! C:\Users\Administrateur\Desktop\HijackThis.lnk: supprimé ! C:\fixnavi.txt: supprimé ! C:\cleannavi.txt: supprimé ! C:\UsbFix.txt: supprimé ! C:\Program Files\Trend Micro\hijackthis.log: supprimé ! C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé ! C:\Program Files\TrendMicro\HiJackThis\hijackthis.log: supprimé ! C:\Users\Administrateur\Desktop\hijackthis.log: supprimé ! C:\Windows\msnfix.txt: supprimé ! C:\_OTM: supprimé ! C:\UsbFix: supprimé ! C:\Rsit: supprimé ! C:\Program Files\Navilog1: supprimé ! C:\Program Files\Trend Micro\HijackThis: supprimé ! C:\Program Files\TrendMicro\HijackThis: supprimé ! C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\HijackThis: ERREUR DE SUPPRESSION !! C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HijackThis: supprimé !
-
QUAND JE LANCE LANCE LA RECHERCHE TOOLSCLEANER J AI LA REPONSE "ne repond pas " par contre les autres onglets fonctionne vidage de la corbeille ..etc...
-
quel genre d'outil car j'en ai beaucoup ???
-
bonjour a premiere vu plus d'alerte antivir impossible d'installer RSIT au lancement du scan fenetre d"'erreur qui me dit : autolt error line-1: error: variable used without being declared !!!!!
-
VOILA C FAIT 00:57:00:193 3912 TDSSKiller 2.1.1 Dec 20 2009 02:40:02 00:57:00:193 3912 ================================================================================ 00:57:00:193 3912 SystemInfo: 00:57:00:193 3912 OS Version: 6.0.6001 ServicePack: 1.0 00:57:00:193 3912 Product type: Workstation 00:57:00:193 3912 ComputerName: LHSWEET-VY4PEH2 00:57:00:193 3912 UserName: Administrateur 00:57:00:193 3912 Windows directory: C:\Windows 00:57:00:193 3912 Processor architecture: Intel x86 00:57:00:193 3912 Number of processors: 2 00:57:00:193 3912 Page size: 0x1000 00:57:00:193 3912 Boot type: Normal boot 00:57:00:193 3912 ================================================================================ 00:57:00:193 3912 ForceUnloadDriver: NtUnloadDriver error 2 00:57:00:193 3912 ForceUnloadDriver: NtUnloadDriver error 2 00:57:00:193 3912 ForceUnloadDriver: NtUnloadDriver error 2 00:57:00:209 3912 MyNtCreateFileW: NtCreateFile(\??\C:\Windows\system32\Drivers\KLMD.sys) returned status 0 00:57:00:209 3912 main: Driver KLMD successfully dropped 00:57:00:271 3912 main: Driver KLMD successfully loaded 00:57:00:271 3912 Scanning Registry ... 00:57:00:271 3912 ScanServices: Searching service UACd.sys 00:57:00:271 3912 ScanServices: Open/Create key error 2 00:57:00:271 3912 ScanServices: Searching service TDSSserv.sys 00:57:00:271 3912 ScanServices: Open/Create key error 2 00:57:00:271 3912 ScanServices: Searching service gaopdxserv.sys 00:57:00:271 3912 ScanServices: Open/Create key error 2 00:57:00:271 3912 ScanServices: Searching service gxvxcserv.sys 00:57:00:271 3912 ScanServices: Open/Create key error 2 00:57:00:271 3912 ScanServices: Searching service MSIVXserv.sys 00:57:00:271 3912 ScanServices: Open/Create key error 2 00:57:00:271 3912 UnhookRegistry: Kernel module file name: C:\Windows\system32\ntkrnlpa.exe, base addr: 81E1A000 00:57:00:302 3912 UnhookRegistry: Kernel local addr: 1D60000 00:57:00:302 3912 UnhookRegistry: KeServiceDescriptorTable addr: 1E97B00 00:57:00:380 3912 UnhookRegistry: KiServiceTable addr: 1E188E0 00:57:00:380 3912 UnhookRegistry: NtEnumerateKey service number (local): 85 00:57:00:380 3912 UnhookRegistry: NtEnumerateKey local addr: 1F67BAC 00:57:00:380 3912 KLMD_OpenDevice: Trying to open KLMD device 00:57:00:380 3912 KLMD_GetSystemRoutineAddressA: Trying to get system routine address ZwEnumerateKey 00:57:00:380 3912 KLMD_GetSystemRoutineAddressW: Trying to get system routine address ZwEnumerateKey 00:57:00:380 3912 KLMD_ReadMem: Trying to ReadMemory 0x81E6FAAD[0x4] 00:57:00:380 3912 UnhookRegistry: NtEnumerateKey service number (kernel): 85 00:57:00:380 3912 KLMD_ReadMem: Trying to ReadMemory 0x81ED2AF4[0x4] 00:57:00:380 3912 UnhookRegistry: NtEnumerateKey real addr: 82021BAC 00:57:00:380 3912 UnhookRegistry: NtEnumerateKey calc addr: 82021BAC 00:57:00:380 3912 UnhookRegistry: No SDT hooks found on NtEnumerateKey 00:57:00:380 3912 KLMD_ReadMem: Trying to ReadMemory 0x82021BAC[0xA] 00:57:00:380 3912 UnhookRegistry: No splicing found on NtEnumerateKey 00:57:00:380 3912 Scanning Kernel memory ... 00:57:00:380 3912 KLMD_OpenDevice: Trying to open KLMD device 00:57:00:380 3912 KLMD_GetSystemObjectAddressByNameA: Trying to get system object address by name \Driver\Disk 00:57:00:380 3912 KLMD_GetSystemObjectAddressByNameW: Trying to get system object address by name \Driver\Disk 00:57:00:380 3912 DetectCureTDL3: \Driver\Disk PDRIVER_OBJECT: 860A14F8 00:57:00:380 3912 DetectCureTDL3: KLMD_GetDeviceObjectList returned 6 DevObjects 00:57:00:380 3912 DetectCureTDL3: 0 Curr stack PDEVICE_OBJECT: 873FCAC8 00:57:00:380 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 873FCAC8 00:57:00:380 3912 DetectCureTDL3: 0 Curr stack PDEVICE_OBJECT: 8746ECD0 00:57:00:380 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 8746ECD0 00:57:00:380 3912 KLMD_ReadMem: Trying to ReadMemory 0x8746ECD0[0x38] 00:57:00:380 3912 DetectCureTDL3: DRIVER_OBJECT addr: 87471D30 00:57:00:380 3912 KLMD_ReadMem: Trying to ReadMemory 0x87471D30[0xA8] 00:57:00:380 3912 KLMD_ReadMem: Trying to ReadMemory 0x8746B338[0x208] 00:57:00:380 3912 DetectCureTDL3: DRIVER_OBJECT name: \Driver\USBSTOR, Driver Name: USBSTOR 00:57:00:380 3912 DetectCureTDL3: IrpHandler (0) addr: 86A3E1E8 00:57:00:380 3912 DetectCureTDL3: IrpHandler (1) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (2) addr: 86A3E1E8 00:57:00:380 3912 DetectCureTDL3: IrpHandler (3) addr: 86A3E1E8 00:57:00:380 3912 DetectCureTDL3: IrpHandler (4) addr: 86A3E1E8 00:57:00:380 3912 DetectCureTDL3: IrpHandler (5) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (6) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (7) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler ( addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (9) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (10) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (11) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (12) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (13) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (14) addr: 86A3E1E8 00:57:00:380 3912 DetectCureTDL3: IrpHandler (15) addr: 86A3E1E8 00:57:00:380 3912 DetectCureTDL3: IrpHandler (16) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (17) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (18) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (19) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (20) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (21) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (22) addr: 86A3E1E8 00:57:00:380 3912 DetectCureTDL3: IrpHandler (23) addr: 86A3E1E8 00:57:00:380 3912 DetectCureTDL3: IrpHandler (24) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (25) addr: 81E3FFE3 00:57:00:380 3912 DetectCureTDL3: IrpHandler (26) addr: 81E3FFE3 00:57:00:380 3912 KLMD_ReadMem: Trying to ReadMemory 0x89DEDA44[0x400] 00:57:00:380 3912 TDL3_StartIoHookDetect: CheckParameters: 5, 89DF1000, 0, 0 00:57:00:380 3912 TDL3_FileDetect: Processing driver: USBSTOR 00:57:00:396 3912 TDL3_FileDetect: Parameters: C:\Windows\system32\drivers\usbstor.sys, C:\Windows\system32\Drivers\usbstor.tsk, SYSTEM\CurrentControlSet\Services\USBSTOR, system32\Drivers\usbstor.tsk 00:57:00:396 3912 TDL3_FileDetect: Processing driver file: C:\Windows\system32\drivers\usbstor.sys 00:57:00:396 3912 KLMD_CreateFileW: Trying to open file C:\Windows\system32\drivers\usbstor.sys 00:57:00:396 3912 DetectCureTDL3: 1 Curr stack PDEVICE_OBJECT: 87446030 00:57:00:396 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 87446030 00:57:00:396 3912 DetectCureTDL3: 1 Curr stack PDEVICE_OBJECT: 8746E3E8 00:57:00:396 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 8746E3E8 00:57:00:396 3912 KLMD_ReadMem: Trying to ReadMemory 0x8746E3E8[0x38] 00:57:00:396 3912 DetectCureTDL3: DRIVER_OBJECT addr: 87471D30 00:57:00:396 3912 KLMD_ReadMem: Trying to ReadMemory 0x87471D30[0xA8] 00:57:00:396 3912 KLMD_ReadMem: Trying to ReadMemory 0x8746B338[0x208] 00:57:00:396 3912 DetectCureTDL3: DRIVER_OBJECT name: \Driver\USBSTOR, Driver Name: USBSTOR 00:57:00:396 3912 DetectCureTDL3: IrpHandler (0) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (1) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (2) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (3) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (4) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (5) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (6) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (7) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler ( addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (9) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (10) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (11) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (12) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (13) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (14) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (15) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (16) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (17) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (18) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (19) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (20) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (21) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (22) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (23) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (24) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (25) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (26) addr: 81E3FFE3 00:57:00:396 3912 KLMD_ReadMem: Trying to ReadMemory 0x89DEDA44[0x400] 00:57:00:396 3912 TDL3_StartIoHookDetect: CheckParameters: 5, 89DF1000, 0, 0 00:57:00:396 3912 TDL3_FileDetect: Processing driver: USBSTOR 00:57:00:396 3912 TDL3_FileDetect: Parameters: C:\Windows\system32\drivers\usbstor.sys, C:\Windows\system32\Drivers\usbstor.tsk, SYSTEM\CurrentControlSet\Services\USBSTOR, system32\Drivers\usbstor.tsk 00:57:00:396 3912 TDL3_FileDetect: Processing driver file: C:\Windows\system32\drivers\usbstor.sys 00:57:00:396 3912 KLMD_CreateFileW: Trying to open file C:\Windows\system32\drivers\usbstor.sys 00:57:00:396 3912 DetectCureTDL3: 2 Curr stack PDEVICE_OBJECT: 873FC030 00:57:00:396 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 873FC030 00:57:00:396 3912 DetectCureTDL3: 2 Curr stack PDEVICE_OBJECT: 873DF9A8 00:57:00:396 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 873DF9A8 00:57:00:396 3912 KLMD_ReadMem: Trying to ReadMemory 0x873DF9A8[0x38] 00:57:00:396 3912 DetectCureTDL3: DRIVER_OBJECT addr: 87471D30 00:57:00:396 3912 KLMD_ReadMem: Trying to ReadMemory 0x87471D30[0xA8] 00:57:00:396 3912 KLMD_ReadMem: Trying to ReadMemory 0x8746B338[0x208] 00:57:00:396 3912 DetectCureTDL3: DRIVER_OBJECT name: \Driver\USBSTOR, Driver Name: USBSTOR 00:57:00:396 3912 DetectCureTDL3: IrpHandler (0) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (1) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (2) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (3) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (4) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (5) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (6) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (7) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler ( addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (9) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (10) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (11) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (12) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (13) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (14) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (15) addr: 86A3E1E8 00:57:00:396 3912 DetectCureTDL3: IrpHandler (16) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (17) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (18) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (19) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (20) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (21) addr: 81E3FFE3 00:57:00:396 3912 DetectCureTDL3: IrpHandler (22) addr: 86A3E1E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (23) addr: 86A3E1E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (24) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (25) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (26) addr: 81E3FFE3 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x89DEDA44[0x400] 00:57:00:412 3912 TDL3_StartIoHookDetect: CheckParameters: 5, 89DF1000, 0, 0 00:57:00:412 3912 TDL3_FileDetect: Processing driver: USBSTOR 00:57:00:412 3912 TDL3_FileDetect: Parameters: C:\Windows\system32\drivers\usbstor.sys, C:\Windows\system32\Drivers\usbstor.tsk, SYSTEM\CurrentControlSet\Services\USBSTOR, system32\Drivers\usbstor.tsk 00:57:00:412 3912 TDL3_FileDetect: Processing driver file: C:\Windows\system32\drivers\usbstor.sys 00:57:00:412 3912 KLMD_CreateFileW: Trying to open file C:\Windows\system32\drivers\usbstor.sys 00:57:00:412 3912 DetectCureTDL3: 3 Curr stack PDEVICE_OBJECT: 8746E768 00:57:00:412 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 8746E768 00:57:00:412 3912 DetectCureTDL3: 3 Curr stack PDEVICE_OBJECT: 8746E030 00:57:00:412 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 8746E030 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x8746E030[0x38] 00:57:00:412 3912 DetectCureTDL3: DRIVER_OBJECT addr: 87471D30 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x87471D30[0xA8] 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x8746B338[0x208] 00:57:00:412 3912 DetectCureTDL3: DRIVER_OBJECT name: \Driver\USBSTOR, Driver Name: USBSTOR 00:57:00:412 3912 DetectCureTDL3: IrpHandler (0) addr: 86A3E1E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (1) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (2) addr: 86A3E1E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (3) addr: 86A3E1E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (4) addr: 86A3E1E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (5) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (6) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (7) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler ( addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (9) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (10) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (11) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (12) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (13) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (14) addr: 86A3E1E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (15) addr: 86A3E1E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (16) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (17) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (18) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (19) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (20) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (21) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (22) addr: 86A3E1E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (23) addr: 86A3E1E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (24) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (25) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (26) addr: 81E3FFE3 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x89DEDA44[0x400] 00:57:00:412 3912 TDL3_StartIoHookDetect: CheckParameters: 5, 89DF1000, 0, 0 00:57:00:412 3912 TDL3_FileDetect: Processing driver: USBSTOR 00:57:00:412 3912 TDL3_FileDetect: Parameters: C:\Windows\system32\drivers\usbstor.sys, C:\Windows\system32\Drivers\usbstor.tsk, SYSTEM\CurrentControlSet\Services\USBSTOR, system32\Drivers\usbstor.tsk 00:57:00:412 3912 TDL3_FileDetect: Processing driver file: C:\Windows\system32\drivers\usbstor.sys 00:57:00:412 3912 KLMD_CreateFileW: Trying to open file C:\Windows\system32\drivers\usbstor.sys 00:57:00:412 3912 DetectCureTDL3: 4 Curr stack PDEVICE_OBJECT: 862A7AC8 00:57:00:412 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 862A7AC8 00:57:00:412 3912 DetectCureTDL3: 4 Curr stack PDEVICE_OBJECT: 853BEB68 00:57:00:412 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 853BEB68 00:57:00:412 3912 DetectCureTDL3: 4 Curr stack PDEVICE_OBJECT: 853BEC90 00:57:00:412 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 853BEC90 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x853BEC90[0x38] 00:57:00:412 3912 DetectCureTDL3: DRIVER_OBJECT addr: 853D4F38 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x853D4F38[0xA8] 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x853A2630[0x208] 00:57:00:412 3912 DetectCureTDL3: DRIVER_OBJECT name: \Driver\nvstor, Driver Name: nvstor 00:57:00:412 3912 DetectCureTDL3: IrpHandler (0) addr: 849C11E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (1) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (2) addr: 849C11E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (3) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (4) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (5) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (6) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (7) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler ( addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (9) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (10) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (11) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (12) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (13) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (14) addr: 828626CB 00:57:00:412 3912 DetectCureTDL3: IrpHandler (15) addr: 849C11E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (16) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (17) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (18) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (19) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (20) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (21) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (22) addr: 849C11E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (23) addr: 849C11E8 00:57:00:412 3912 DetectCureTDL3: IrpHandler (24) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (25) addr: 81E3FFE3 00:57:00:412 3912 DetectCureTDL3: IrpHandler (26) addr: 81E3FFE3 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x854264BF[0x400] 00:57:00:412 3912 TDL3_StartIoHookDetect: CheckParameters: 7, FFDF0308, 334, 1 00:57:00:412 3912 Driver "nvstor" StartIo handler infected by TDSS rootkit ... 00:57:00:412 3912 TDL3_StartIoHookCure: Number of patches 1 00:57:00:412 3912 KLMD_WriteMem: Trying to WriteMemory 0x854265B6[0x6] 00:57:00:412 3912 cured 00:57:00:412 3912 TDL3_FileDetect: Processing driver: nvstor 00:57:00:412 3912 TDL3_FileDetect: Parameters: C:\Windows\system32\drivers\nvstor.sys, C:\Windows\system32\Drivers\nvstor.tsk, SYSTEM\CurrentControlSet\Services\nvstor, system32\Drivers\nvstor.tsk 00:57:00:412 3912 TDL3_FileDetect: Processing driver file: C:\Windows\system32\drivers\nvstor.sys 00:57:00:412 3912 KLMD_CreateFileW: Trying to open file C:\Windows\system32\drivers\nvstor.sys 00:57:00:412 3912 DetectCureTDL3: 5 Curr stack PDEVICE_OBJECT: 861A4860 00:57:00:412 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 861A4860 00:57:00:412 3912 DetectCureTDL3: 5 Curr stack PDEVICE_OBJECT: 853B93E8 00:57:00:412 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 853B93E8 00:57:00:412 3912 DetectCureTDL3: 5 Curr stack PDEVICE_OBJECT: 853B9030 00:57:00:412 3912 KLMD_GetLowerDeviceObject: Trying to get lower device object for 853B9030 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x853B9030[0x38] 00:57:00:412 3912 DetectCureTDL3: DRIVER_OBJECT addr: 869945D8 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x869945D8[0xA8] 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x853A0958[0x38] 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x853D4F38[0xA8] 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x853A2630[0x208] 00:57:00:412 3912 DetectCureTDL3: DRIVER_OBJECT name: \Driver\nvstor, Driver Name: nvstor 00:57:00:412 3912 DetectCureTDL3: IrpHandler (0) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (1) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (2) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (3) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (4) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (5) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (6) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (7) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler ( addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (9) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (10) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (11) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (12) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (13) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (14) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (15) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (16) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (17) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (18) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (19) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (20) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (21) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (22) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (23) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (24) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (25) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: IrpHandler (26) addr: 85426618 00:57:00:412 3912 DetectCureTDL3: All IRP handlers pointed to one addr: 85426618 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x85426618[0x400] 00:57:00:412 3912 TDL3_IrpHookDetect: CheckParameters: 4, FFDF0308, 313, 101, 3, 89 00:57:00:412 3912 Driver "nvstor" Irp handler infected by TDSS rootkit ... 00:57:00:412 3912 KLMD_WriteMem: Trying to WriteMemory 0x8542667D[0xD] 00:57:00:412 3912 cured 00:57:00:412 3912 KLMD_ReadMem: Trying to ReadMemory 0x854264BF[0x400] 00:57:00:412 3912 TDL3_StartIoHookDetect: CheckParameters: 7, FFDF0308, 334, 0 00:57:00:412 3912 TDL3_FileDetect: Processing driver: nvstor 00:57:00:412 3912 TDL3_FileDetect: Parameters: C:\Windows\system32\drivers\nvstor.sys, C:\Windows\system32\Drivers\nvstor.tsk, SYSTEM\CurrentControlSet\Services\nvstor, system32\Drivers\nvstor.tsk 00:57:00:412 3912 TDL3_FileDetect: Processing driver file: C:\Windows\system32\drivers\nvstor.sys 00:57:00:412 3912 KLMD_CreateFileW: Trying to open file C:\Windows\system32\drivers\nvstor.sys 00:57:00:427 3912 File C:\Windows\system32\drivers\nvstor.sys infected by TDSS rootkit ... 00:57:00:427 3912 TDL3_FileCure: Processing driver file: C:\Windows\system32\drivers\nvstor.sys 00:57:00:427 3912 KLMD_CreateFileW: Trying to open file C:\Windows\system32\drivers\nvstor.sys 00:57:00:427 3912 TDL3_FileCure: Dumping cured buffer to file C:\Windows\system32\Drivers\nvstor.tsk 00:57:00:458 3912 TDL3_FileCure: Image path (system32\Drivers\nvstor.tsk) was set for service (SYSTEM\CurrentControlSet\Services\nvstor) 00:57:00:458 3912 TDL3_FileCure: KLMD_PendCopyFileW (C:\Windows\system32\Drivers\nvstor.tsk, C:\Windows\system32\drivers\nvstor.sys) success 00:57:00:458 3912 will be cured on next reboot 00:57:00:458 3912 Completed Results: 00:57:00:458 3912 Infected objects in memory: 2 00:57:00:458 3912 Cured objects in memory: 2 00:57:00:458 3912 Infected objects on disk: 1 00:57:00:458 3912 Objects on disk cured on reboot: 1 00:57:00:458 3912 Objects on disk deleted on reboot: 0 00:57:00:458 3912 Registry nodes deleted on reboot: 0 00:57:00:458 3912
-
voila le rapport Processus en mémoire: C:\Windows\system32\svchost.exe:748 BackDoor.Tdss.565 Eradiqué. Process.exe C:\Windows\system32 Tool.Prockill Quarantaine. nvstor.sys C:\Windows\system32\drivers BackDoor.Tdss.1365 Désinfecté. nvstor.sys c:\windows\system32\drivers BackDoor.Tdss.1365 Désinfecté. SmitfraudFix.exe\SmitfraudFix\Process.exe C:\Documents and Settings\Administrateur\Desktop\SmitfraudFix.exe Tool.Prockill SmitfraudFix.exe\SmitfraudFix\restart.exe C:\Documents and Settings\Administrateur\Desktop\SmitfraudFix.exe Tool.ShutDown.14 SmitfraudFix.exe C:\Documents and Settings\Administrateur\Desktop L'archive contient des éléments infectés Quarantaine. UsbFix.exe\Tools\Kill_P.exe C:\Documents and Settings\Administrateur\Desktop\UsbFix.exe Tool.Prockill UsbFix.exe C:\Documents and Settings\Administrateur\Desktop L'archive contient des éléments infectés Quarantaine. SmitfraudFix.exe\SmitfraudFix\Process.exe C:\Documents and Settings\Administrateur\DoctorWeb\Quarantine\SmitfraudFix.exe Tool.Prockill SmitfraudFix.exe\SmitfraudFix\restart.exe C:\Documents and Settings\Administrateur\DoctorWeb\Quarantine\SmitfraudFix.exe Tool.ShutDown.14 SmitfraudFix.exe C:\Documents and Settings\Administrateur\DoctorWeb\Quarantine L'archive contient des éléments infectés Quarantaine. UsbFix.exe\Tools\Kill_P.exe C:\Documents and Settings\Administrateur\DoctorWeb\Quarantine\UsbFix.exe Tool.Prockill UsbFix.exe C:\Documents and Settings\Administrateur\DoctorWeb\Quarantine L'archive contient des éléments infectés Quarantaine. keygen.exe C:\Documents and Settings\Administrateur\Downloads\TUNE UP\TuneUp.2010.FR\tune up utilities 2010 français\Keygen Trojan.Packed.654 Supprimé. 4b052dd6.qua/data001\Install.exe C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b052dd6.qua/data001 Trojan.MulDrop.33367 data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED L'archive contient des éléments infectés 4b052dd6.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b3285ee.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b3285ee.qua Win32.HLLM.Beagle.282 4b3285ee.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a441b.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a441b.qua Trojan.NtRootKit.4965 4b6a441b.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a4420.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a4420.qua Trojan.NtRootKit.4965 4b6a4420.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a455e.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a455e.qua Trojan.NtRootKit.4965 4b6a455e.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a47d9.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a47d9.qua Trojan.NtRootKit.4965 4b6a47d9.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a47dd.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a47dd.qua Trojan.NtRootKit.4965 4b6a47dd.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a4ba4.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a4ba4.qua Trojan.NtRootKit.4965 4b6a4ba4.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a50a1.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a50a1.qua Trojan.NtRootKit.4965 4b6a50a1.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a50a3.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a50a3.qua Trojan.NtRootKit.4965 4b6a50a3.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a55df.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a55df.qua Trojan.NtRootKit.4965 4b6a55df.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a55e2.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a55e2.qua Trojan.NtRootKit.4965 4b6a55e2.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a5718.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a5718.qua Trojan.NtRootKit.4965 4b6a5718.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a571a.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a571a.qua Trojan.NtRootKit.4965 4b6a571a.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a5853.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a5853.qua Trojan.NtRootKit.4965 4b6a5853.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b6a5855.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b6a5855.qua Trojan.NtRootKit.4965 4b6a5855.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b8a3adc.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b8a3adc.qua Trojan.Packed.706 4b8a3adc.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4b8d3b21.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b8d3b21.qua Trojan.Packed.706 4b8d3b21.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. 4cb7f795.qua\data001 C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4cb7f795.qua Trojan.Packed.706 4cb7f795.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Conteneur comporte des objets infectés Quarantaine. RegUBP2b-Administrateur.reg C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2 Trojan.StartPage.1505 Supprimé. Kill_P.exe C:\UsbFix\Tools Tool.Prockill Quarantaine. Process.exe C:\Windows\System32 Tool.Prockill Chemin invalide pour le fichier nvstor.sys C:\Windows\System32\drivers BackDoor.Tdss.1365 Désinfecté.
-
oui ca continu derniere recu a 20:10 Dans le fichier 'C:\Windows\Temp\qstm.tmp\svchost.exe' un virus ou un programme indésirable 'TR/Hijacker.Gen' [trojan] a été détecté. Action exécutée : Refuser l'accès
-
VOILA C FAIT.... ========== REGISTRY ========== ========== COMMANDS ========== [EMPTYTEMP] User: Administrateur ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 27745625 bytes ->Java cache emptied: 9904774 bytes ->FireFox cache emptied: 34264767 bytes ->Google Chrome cache emptied: 182265510 bytes User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes Windows Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 335603 bytes RecycleBin emptied: 2692245 bytes Total Files Cleaned = 245,00 mb OTM by OldTimer - Version 3.1.4.0 log created on 12292009_195516 Files moved on Reboot... Registry entries deleted on Reboot...
-
ALERTE AVIRA SANS ARRET...... Dans le fichier 'C:\Windows\Temp\amew.tmp\svchost.exe' un virus ou un programme indésirable 'TR/Hijacker.Gen' [trojan] a été détecté. Action exécutée : Déplacer le fichier en quarantaine
-
RE SCAN TERMINE AUCUN FICHIER INFECTE......
-
bonsoir rapport malwarebites: ype de recherche: Examen complet (C:\|) Eléments examinés: 203118 Temps écoulé: 29 minute(s), 32 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) rapport hitjackthis: Logfile of Trend Micro HijackThis v2.0.3 (BETA) Scan saved at 17:19:28, on 29/12/2009 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v8.00 (8.00.6001.18865) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Lingoes\Translator2\Lingoes.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe C:\Windows\system32\DllHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.free.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [Lingoes] C:\Program Files\Lingoes\Translator2\Lingoes.exe -minimize O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User '?') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User '?') O4 - HKUS\S-1-5-21-2043352710-4183882830-3522516647-500\..\Run: [Lingoes] C:\Program Files\Lingoes\Translator2\Lingoes.exe -minimize (User '?') O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} - O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{2B6EB9C4-AEF1-4A21-8507-6057EC3F5917}: NameServer = 212.27.40.241,212.27.40.240 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Atheros Configuration Service (ACS) - Atheros - C:\Windows\system32\acs.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe O23 - Service: @%SystemRoot%\system32\dhcpcsvc.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\emdmgmt.dll,-1000 (EMDMgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-200 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netprof.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\Windows\system32\oodag.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe O23 - Service: @%SystemRoot%\system32\SLUINotify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Thèmes (Themes) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Gestionnaire de sessions du Gestionnaire de fenêtrage (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Centre de sécurité (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Windows Search (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe -- End of file - 19931 bytes desolé
-
-
personn pour m'aider
-
bonjour depuis hier j'ai remarque de nombreux problemes sur mon pc changement de fond d ecran au demarrage (ecran bleu) -pub intempestive - changement de page d'accueil ..... voici un rapport hitjackthis merci d'avance pour votre aide Logfile of Trend Micro HijackThis v2.0.3 (BETA) Scan saved at 12:31:08, on 29/12/2009 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v8.00 (8.00.6001.18865) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Lingoes\Translator2\Lingoes.exe C:\Users\Administrateur\AppData\Roaming\SystemProc\lsass.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe C:\Windows\system32\DllHost.exe R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [Lingoes] C:\Program Files\Lingoes\Translator2\Lingoes.exe -minimize O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [RTHDBPL] C:\Users\Administrateur\AppData\Roaming\SystemProc\lsass.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User '?') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User '?') O4 - HKUS\S-1-5-21-2043352710-4183882830-3522516647-500\..\Run: [Lingoes] C:\Program Files\Lingoes\Translator2\Lingoes.exe -minimize (User '?') O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll O13 - Gopher Prefix: O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} - O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{2B6EB9C4-AEF1-4A21-8507-6057EC3F5917}: NameServer = 212.27.40.241,212.27.40.240 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Atheros Configuration Service (ACS) - Atheros - C:\Windows\system32\acs.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe O23 - Service: @%SystemRoot%\system32\dhcpcsvc.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\emdmgmt.dll,-1000 (EMDMgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-200 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netprof.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\Windows\system32\oodag.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe O23 - Service: @%SystemRoot%\system32\SLUINotify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Thèmes (Themes) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Gestionnaire de sessions du Gestionnaire de fenêtrage (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Centre de sécurité (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Windows Search (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe -- End of file - 19818 bytes