ka-limero

Bonjour Quand je télécharge c'est tres instable, j’étais chez free ADSL, je pouvais tres bien monter dans les 900 ko/s, normale et redescendre dans la seconde a 300, 200, 100, 50 mème parfois 0 ko/s, J'ai changé de FAI, maintenant je suis avec la fibre optique SFR, je rencontre le mème problème, j'ai pansé a un virus, j'ai fais plusieurs contrôles sur différent forum, et ce problème n'a jamais été résolut. J'ai l'impression qu'il ya un ou des programmes qui pourrait être en causse, je vous ai fait des captures d'ecran des programmes actifs quand je telecharge, pouvez vous me dire s'il ya une anomalie ? ps: c'est pas mon par-feu, je l'ai désactive, et le par-feu windows dans processus aussi, le problème persiste: Gestionnaire des taches -Dans processus: 44A - HostingPics.net - Hébergement d'images gratuit 95C - HostingPics.net - Hébergement d'images gratuit puis: winlogon.exe Bich 2160k, kwisptis.exe Bich 4216k Composant de saisie tactile ou avec stylet microsoft - Dans services: 471 - HostingPics.net - Hébergement d'images gratuit 992 - HostingPics.net - Hébergement d'images gratuit Capture3 - HostingPics.net - Hébergement d'images gratuit 864 - HostingPics.net - Hébergement d'images gratuit 815 - HostingPics.net - Hébergement d'images gratuit 626 - HostingPics.net - Hébergement d'images gratuit Merci beaucoup.

bonjour on m'a oublié, le dernier message date du 16 Nov, merci : http://forum.zebulon.fr/rapport-hijackthis-ralentissement-et-crash-t180795.html

toujours pareil, j'ai fait des recherches, apparemment c'est un bug du logiciel, tu n'aurais pas un autre programme à me proposer ?

pas de changement, toujours à 36% avec le même message

oops,désolé, je veux trop faire tout rapidement bien j'ai lancé l'analyse ZHPDiag, mais à chaque fois ca stoppe à 36% avec une fenêtre qui s' ouvre "Erreur d'insertion de ligne RichEdit"

Bonjour excusez moi, mais je ne savais pas ou poster ce type de message voila mon problème, je dois envoyer une pièce jointe sur le forum, mais je n'ai pas d'onglet "Ajouter des fichiers joints" comment je peux faire ? et quand je clique pour configurer les options du message:

j'ai un tout petit problème, c'est que je n'ai pas d'onglet "Ajouter des fichiers joints" et quand je clique pour configurer les options du message:

Bonjour on m'a oublié, la dernière réponse date du 12 novembre 2010 c'est ici http://forum.zebulon.fr/rapport-hijackthis-ralentissement-et-crash-t180795.html merci

j'ai pas mis (FCopy:)je sais pas si c'est important sinon, j'ai du m'y reprendre a deux fois, car la première, il m'a sortie un rapport, mais l'a pas enregistré. voici: ComboFix 10-11-10.03 - Sax 12/11/2010 18:29:59.8.4 - x86 Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3069.1519 [GMT 1:00] Lancé depuis: c:\users\Sax\Desktop\ComboFix.exe Commutateurs utilisés :: c:\users\Sax\Desktop\CFScript.txt SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} . ((((((((((((((((((((((((((((( Fichiers créés du 2010-10-12 au 2010-11-12 )))))))))))))))))))))))))))))))))))) . 2010-11-12 17:37 . 2010-11-12 17:37 -------- d-----w- c:\users\Tib\AppData\Local\temp 2010-11-12 17:37 . 2010-11-12 17:37 -------- d-----w- c:\users\TEMP\AppData\Local\temp 2010-11-12 17:37 . 2010-11-12 17:37 -------- d-----w- c:\users\Mcx1\AppData\Local\temp 2010-11-12 17:37 . 2010-11-12 17:37 -------- d-----w- c:\users\Invité\AppData\Local\temp 2010-11-12 17:37 . 2010-11-12 17:37 -------- d-----w- c:\users\freenet\AppData\Local\temp 2010-11-12 17:37 . 2010-11-12 17:37 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-11-12 17:37 . 2010-11-12 17:37 -------- d-----w- c:\users\Administrateur\AppData\Local\temp 2010-11-12 07:57 . 2010-10-07 23:21 6146896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{091C3F0F-068D-40AB-AFE4-6C5FF8671DE0}\mpengine.dll 2010-11-10 14:11 . 2010-10-07 11:37 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat 2010-11-09 20:41 . 2010-11-09 20:41 -------- d-----w- c:\users\Sax\AppData\Roaming\mkvtoolnix 2010-11-09 20:40 . 2010-11-11 06:55 -------- d-----w- c:\program files\MKVtoolnix 2010-11-07 19:47 . 2010-11-07 19:47 -------- d-----w- c:\program files\Ad-Remover 2010-10-27 05:34 . 2010-08-26 16:34 1696256 ----a-w- c:\windows\system32\gameux.dll 2010-10-27 05:34 . 2010-08-26 16:33 28672 ----a-w- c:\windows\system32\Apphlpdm.dll 2010-10-27 05:34 . 2010-08-26 14:23 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll 2010-10-22 05:34 . 2010-10-22 05:34 94040 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\DSETUP.dll 2010-10-22 05:34 . 2010-10-22 05:34 525656 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\DXSETUP.exe 2010-10-22 05:34 . 2010-10-22 05:34 1691480 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\dsetup32.dll 2010-10-22 05:34 . 2010-10-22 05:34 94040 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\DSETUP.dll 2010-10-22 05:34 . 2010-10-22 05:34 525656 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\DXSETUP.exe 2010-10-22 05:34 . 2010-10-22 05:34 1691480 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\dsetup32.dll 2010-10-22 05:33 . 2010-11-11 03:39 -------- d-----w- c:\users\Sax\AppData\Local\Windows Live 2010-10-22 05:31 . 2009-08-04 08:02 754688 ----a-w- c:\windows\system32\webservices.dll 2010-10-21 22:12 . 2010-10-21 22:12 -------- d-----w- c:\users\Sax\AppData\Local\Cooliris 2010-10-19 07:07 . 2010-09-13 13:56 8147456 ----a-w- c:\windows\system32\wmploc.DLL 2010-10-19 07:07 . 2010-09-13 13:56 168960 ----a-w- c:\program files\Windows Media Player\wmplayer.exe 2010-10-19 07:06 . 2010-09-06 16:20 125952 ----a-w- c:\windows\system32\srvsvc.dll 2010-10-19 07:06 . 2010-09-06 16:19 17920 ----a-w- c:\windows\system32\netevent.dll 2010-10-19 07:06 . 2010-09-06 13:45 304128 ----a-w- c:\windows\system32\drivers\srv.sys 2010-10-19 07:06 . 2010-09-06 13:45 145408 ----a-w- c:\windows\system32\drivers\srv2.sys 2010-10-19 07:06 . 2010-09-06 13:45 102400 ----a-w- c:\windows\system32\drivers\srvnet.sys 2010-10-19 07:06 . 2010-08-10 15:53 274944 ----a-w- c:\windows\system32\schannel.dll 2010-10-19 07:03 . 2010-08-31 15:46 954752 ----a-w- c:\windows\system32\mfc40.dll 2010-10-19 07:03 . 2010-08-31 15:46 954288 ----a-w- c:\windows\system32\mfc40u.dll 2010-10-19 07:03 . 2010-08-31 13:27 2038272 ----a-w- c:\windows\system32\win32k.sys 2010-10-19 07:03 . 2010-05-04 19:13 231424 ----a-w- c:\windows\system32\msshsq.dll 2010-10-19 07:03 . 2010-08-20 16:05 867328 ----a-w- c:\windows\system32\wmpmde.dll 2010-10-19 07:02 . 2010-08-31 15:44 531968 ----a-w- c:\windows\system32\comctl32.dll 2010-10-16 09:24 . 2010-10-16 11:18 -------- d-----w- c:\users\Sax\AppData\Roaming\IDM 2010-10-16 00:48 . 2010-10-16 00:48 -------- d-----w- c:\program files\CodeGazer 2010-10-15 16:14 . 2010-10-15 16:14 -------- d-----w- c:\program files\Switcher . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-10-19 09:41 . 2009-10-03 00:15 222080 ------w- c:\windows\system32\MpSigStub.exe 2010-10-16 00:53 . 2009-09-11 07:11 615424 ----a-w- c:\windows\system32\themeui.dll 2010-09-22 22:47 . 2010-09-22 22:47 49016 ----a-w- c:\windows\system32\sirenacm.dll 2010-09-15 02:50 . 2010-04-28 08:27 472808 ----a-w- c:\windows\system32\deployJava1.dll 2010-08-26 16:33 . 2010-10-27 05:34 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll 2010-08-26 16:33 . 2010-10-27 05:34 542720 ----a-w- c:\windows\apppatch\AcLayers.dll 2010-08-26 16:33 . 2010-10-27 05:34 458752 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2010-08-26 16:33 . 2010-10-27 05:34 2159616 ----a-w- c:\windows\apppatch\AcGenral.dll 2010-08-17 14:11 . 2010-09-15 06:49 128000 ----a-w- c:\windows\system32\spoolsv.exe 2010-05-02 15:57 . 2010-05-02 15:56 644 ----a-w- c:\program files\mpc5.reg 2010-05-02 15:57 . 2010-05-02 15:56 218 ----a-w- c:\program files\mpc6.reg 2010-05-02 15:57 . 2010-05-02 15:56 1636 ----a-w- c:\program files\mpc7.reg 2010-05-02 15:57 . 2010-05-02 15:56 816 ----a-w- c:\program files\ffdssetts.reg 2010-05-02 15:57 . 2010-05-02 15:56 680 ----a-w- c:\program files\mpc2.reg 2010-05-02 15:57 . 2010-05-02 15:56 226 ----a-w- c:\program files\mpc3.reg 2010-05-02 15:57 . 2010-05-02 15:56 218 ----a-w- c:\program files\mpc1.reg 2010-05-02 15:57 . 2010-05-02 15:56 1406 ----a-w- c:\program files\ffdsasetts.reg 2010-07-23 08:34 . 2009-11-21 08:47 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll . ------- Sigcheck ------- [-] 2010-10-16 . 690D53BD10A804BB6D0A772D1C0E6907 . 247296 . . [6.0.6000.16386] . . c:\windows\System32\shsvcs.dll [7] 2009-04-11 . C818C44C201898399BF999BB6B35D4E3 . 247296 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6002.18005_none_cf1bd6361a0f622e\shsvcs.dll [7] 2008-01-19 . 27F10F348E508243F6254846F8370D0D . 247296 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6001.18000_none_cd305d2a1ced96e2\shsvcs.dll [7] 2006-11-02 . B264DFA21677728613267FE63802B332 . 245248 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6000.16386_none_caf99b2e2002860e\shsvcs.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_1] @="{01702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{01702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_10] @="{10702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{10702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_2] @="{02702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{02702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_3] @="{03702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{03702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_4] @="{04702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{04702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_5] @="{05702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{05702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_6] @="{06702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{06702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_7] @="{07702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{07702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_8] @="{08702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{08702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_9] @="{09702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{09702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="oobefldr.dll" [2009-04-11 2153472] "DellSupportCenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe" [2007-09-20 202024] "Netlog Music Tool"="c:\program files\Netlog Music Tool\NetlogMusicTool.exe" [2009-06-24 1728456] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] "Google Update"="c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-01-26 135664] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="RtHDVCpl.exe" [2007-05-11 4452352] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-07-23 30192] "dscactivate"="c:\program files\Dell Support Center\gs_agent\custom\dsca.exe" [2008-03-11 16384] "DellSupportCenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064] "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136] "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 1836328] "Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072] "CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2009-01-29 57344] "Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Elements 6.0\apdproxy.exe" [2007-09-10 67488] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-02-15 141608] "UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2009-10-26 15872] "AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe" [2010-09-14 352976] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-08-29 202256] "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-01 1164584] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] c:\users\Tib\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OpenOffice.org 3.2.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008] c:\users\Sax\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Outil de notification Live Search.lnk - c:\users\Sax\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe [2008-12-18 143360] c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ WinZip Quick Pick.lnk - c:\program files\WinZip\WZQKPICK.EXE [2007-6-6 394856] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2010-01-26 16:15 135664 ----atw- c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] 2010-09-22 22:47 4240760 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VPbubble] 2008-08-25 09:30 239120 ----a-w- c:\program files\Nosibay\VPbubble\Launcher.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "AntiVirusOverride"=dword:00000001 R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-07-23 30192] S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys [2010-06-09 11352] S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2010-04-22 22104] S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-10-20 50704] S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-11-02 19984] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Contenu du dossier 'Tâches planifiées' 2010-11-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-527785819-3466132717-2700656992-1000Core.job - c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [2010-01-26 16:15] 2010-11-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-527785819-3466132717-2700656992-1000UA.job - c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [2010-01-26 16:15] . . ------- Examen supplémentaire ------- . mWindow Title = uInternet Settings,ProxyOverride = *.local IE: &Télécharger avec NetTransport - c:\program files\Xi\NetTransport 2\NTAddLink.html IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: Ajouter à l'Anti-bannière - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm IE: Tout t&élécharger avec NetTransport - c:\program files\Xi\NetTransport 2\NTAddList.html TCP: {7C7F0920-689B-43E1-88C2-0622986547D6} = 212.27.40.240,212.27.40.241 FF - ProfilePath - c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\ FF - prefs.js: browser.startup.homepage - hxxp://google.fr FF - component: c:\program files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru\components\abhelperxpcom.dll FF - component: c:\program files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru\components\kavlinkfilter.dll FF - component: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll FF - component: c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\components\qscanff.dll FF - component: c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\extensions\piclens@cooliris.com\components\coolirisstub.dll FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\Veetle\Player\npvlc.dll FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll FF - plugin: c:\program files\Veetle\VLCBroadcast\npvbp.dll FF - plugin: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll FF - plugin: c:\users\Sax\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll FF - plugin: c:\users\Sax\AppData\Roaming\Move Networks\plugins\npqmp071700000016.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- PARAMETRES FIREFOX ---- c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false); . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-11-12 18:37 Windows 6.0.6002 Service Pack 2 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'Explorer.exe'(4128) c:\windows\RESOUR~1\Themes\BADGES~1.0\BADGES~1.DLL . Heure de fin: 2010-11-12 18:40:35 ComboFix-quarantined-files.txt 2010-11-12 17:40 ComboFix2.txt 2010-11-12 17:13 ComboFix3.txt 2010-11-11 14:27 Avant-CF: 18 586 443 776 octets libres Après-CF: 18 541 514 752 octets libres - - End Of File - - AD8CFA4DC902DABA57732241C052ACE3

dans : FCopy:: c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6002.18005_none_cf1bd6361a0f622e\shsvcs.dll | c:\windows\System32\shsvcs.dll je dois marquer (FCopy) aussi ?

Il y'a eu du changement depuis: bug de windows également Voici: ComboFix 10-11-10.03 - Sax 11/11/2010 15:15:56.6.4 - x86 Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3069.1659 [GMT 1:00] Lancé depuis: c:\users\Sax\Desktop\ComboFix.exe SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} . ((((((((((((((((((((((((((((( Fichiers créés du 2010-10-11 au 2010-11-11 )))))))))))))))))))))))))))))))))))) . 2010-11-11 14:23 . 2010-11-11 14:23 -------- d-----w- c:\users\Tib\AppData\Local\temp 2010-11-11 14:23 . 2010-11-11 14:23 -------- d-----w- c:\users\TEMP\AppData\Local\temp 2010-11-11 14:23 . 2010-11-11 14:23 -------- d-----w- c:\users\Mcx1\AppData\Local\temp 2010-11-11 14:23 . 2010-11-11 14:23 -------- d-----w- c:\users\Invité\AppData\Local\temp 2010-11-11 14:23 . 2010-11-11 14:23 -------- d-----w- c:\users\freenet\AppData\Local\temp 2010-11-11 14:23 . 2010-11-11 14:23 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-11-11 14:23 . 2010-11-11 14:23 -------- d-----w- c:\users\Administrateur\AppData\Local\temp 2010-11-10 14:11 . 2010-10-07 11:37 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat 2010-11-09 20:41 . 2010-11-09 20:41 -------- d-----w- c:\users\Sax\AppData\Roaming\mkvtoolnix 2010-11-09 20:40 . 2010-11-11 06:55 -------- d-----w- c:\program files\MKVtoolnix 2010-11-09 16:18 . 2010-10-07 23:21 6146896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1D095B98-8C87-4403-A3A7-1FE42F3390CE}\mpengine.dll 2010-11-07 19:47 . 2010-11-07 19:47 -------- d-----w- c:\program files\Ad-Remover 2010-10-27 05:34 . 2010-08-26 16:34 1696256 ----a-w- c:\windows\system32\gameux.dll 2010-10-27 05:34 . 2010-08-26 16:33 28672 ----a-w- c:\windows\system32\Apphlpdm.dll 2010-10-27 05:34 . 2010-08-26 14:23 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll 2010-10-22 05:34 . 2010-10-22 05:34 94040 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\DSETUP.dll 2010-10-22 05:34 . 2010-10-22 05:34 525656 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\DXSETUP.exe 2010-10-22 05:34 . 2010-10-22 05:34 1691480 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\dsetup32.dll 2010-10-22 05:34 . 2010-10-22 05:34 94040 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\DSETUP.dll 2010-10-22 05:34 . 2010-10-22 05:34 525656 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\DXSETUP.exe 2010-10-22 05:34 . 2010-10-22 05:34 1691480 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\dsetup32.dll 2010-10-22 05:33 . 2010-11-11 03:39 -------- d-----w- c:\users\Sax\AppData\Local\Windows Live 2010-10-22 05:31 . 2009-08-04 08:02 754688 ----a-w- c:\windows\system32\webservices.dll 2010-10-21 22:12 . 2010-10-21 22:12 -------- d-----w- c:\users\Sax\AppData\Local\Cooliris 2010-10-19 07:07 . 2010-09-13 13:56 8147456 ----a-w- c:\windows\system32\wmploc.DLL 2010-10-19 07:07 . 2010-09-13 13:56 168960 ----a-w- c:\program files\Windows Media Player\wmplayer.exe 2010-10-19 07:06 . 2010-09-06 16:20 125952 ----a-w- c:\windows\system32\srvsvc.dll 2010-10-19 07:06 . 2010-09-06 16:19 17920 ----a-w- c:\windows\system32\netevent.dll 2010-10-19 07:06 . 2010-09-06 13:45 304128 ----a-w- c:\windows\system32\drivers\srv.sys 2010-10-19 07:06 . 2010-09-06 13:45 145408 ----a-w- c:\windows\system32\drivers\srv2.sys 2010-10-19 07:06 . 2010-09-06 13:45 102400 ----a-w- c:\windows\system32\drivers\srvnet.sys 2010-10-19 07:06 . 2010-08-10 15:53 274944 ----a-w- c:\windows\system32\schannel.dll 2010-10-19 07:03 . 2010-08-31 15:46 954752 ----a-w- c:\windows\system32\mfc40.dll 2010-10-19 07:03 . 2010-08-31 15:46 954288 ----a-w- c:\windows\system32\mfc40u.dll 2010-10-19 07:03 . 2010-08-31 13:27 2038272 ----a-w- c:\windows\system32\win32k.sys 2010-10-19 07:03 . 2010-05-04 19:13 231424 ----a-w- c:\windows\system32\msshsq.dll 2010-10-19 07:03 . 2010-08-20 16:05 867328 ----a-w- c:\windows\system32\wmpmde.dll 2010-10-19 07:02 . 2010-08-31 15:44 531968 ----a-w- c:\windows\system32\comctl32.dll 2010-10-16 09:24 . 2010-10-16 11:18 -------- d-----w- c:\users\Sax\AppData\Roaming\IDM 2010-10-16 00:48 . 2010-10-16 00:48 -------- d-----w- c:\program files\CodeGazer 2010-10-15 16:14 . 2010-10-15 16:14 -------- d-----w- c:\program files\Switcher 2010-10-13 14:28 . 2010-10-13 14:28 -------- d-----w- c:\users\Tib\AppData\Roaming\OpenOffice.org . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-10-19 09:41 . 2009-10-03 00:15 222080 ------w- c:\windows\system32\MpSigStub.exe 2010-10-16 00:53 . 2009-09-11 07:11 615424 ----a-w- c:\windows\system32\themeui.dll 2010-09-22 22:47 . 2010-09-22 22:47 49016 ----a-w- c:\windows\system32\sirenacm.dll 2010-09-15 02:50 . 2010-04-28 08:27 472808 ----a-w- c:\windows\system32\deployJava1.dll 2010-08-26 16:33 . 2010-10-27 05:34 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll 2010-08-26 16:33 . 2010-10-27 05:34 542720 ----a-w- c:\windows\apppatch\AcLayers.dll 2010-08-26 16:33 . 2010-10-27 05:34 458752 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2010-08-26 16:33 . 2010-10-27 05:34 2159616 ----a-w- c:\windows\apppatch\AcGenral.dll 2010-08-17 14:11 . 2010-09-15 06:49 128000 ----a-w- c:\windows\system32\spoolsv.exe 2010-05-02 15:57 . 2010-05-02 15:56 644 ----a-w- c:\program files\mpc5.reg 2010-05-02 15:57 . 2010-05-02 15:56 218 ----a-w- c:\program files\mpc6.reg 2010-05-02 15:57 . 2010-05-02 15:56 1636 ----a-w- c:\program files\mpc7.reg 2010-05-02 15:57 . 2010-05-02 15:56 816 ----a-w- c:\program files\ffdssetts.reg 2010-05-02 15:57 . 2010-05-02 15:56 680 ----a-w- c:\program files\mpc2.reg 2010-05-02 15:57 . 2010-05-02 15:56 226 ----a-w- c:\program files\mpc3.reg 2010-05-02 15:57 . 2010-05-02 15:56 218 ----a-w- c:\program files\mpc1.reg 2010-05-02 15:57 . 2010-05-02 15:56 1406 ----a-w- c:\program files\ffdsasetts.reg 2010-07-23 08:34 . 2009-11-21 08:47 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll . ------- Sigcheck ------- [-] 2010-10-16 . 690D53BD10A804BB6D0A772D1C0E6907 . 247296 . . [6.0.6000.16386] . . c:\windows\System32\shsvcs.dll [7] 2009-04-11 . C818C44C201898399BF999BB6B35D4E3 . 247296 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6002.18005_none_cf1bd6361a0f622e\shsvcs.dll [7] 2008-01-19 . 27F10F348E508243F6254846F8370D0D . 247296 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6001.18000_none_cd305d2a1ced96e2\shsvcs.dll [7] 2006-11-02 . B264DFA21677728613267FE63802B332 . 245248 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6000.16386_none_caf99b2e2002860e\shsvcs.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_1] @="{01702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{01702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_10] @="{10702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{10702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_2] @="{02702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{02702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_3] @="{03702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{03702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_4] @="{04702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{04702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_5] @="{05702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{05702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_6] @="{06702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{06702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_7] @="{07702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{07702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_8] @="{08702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{08702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_9] @="{09702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{09702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="oobefldr.dll" [2009-04-11 2153472] "DellSupportCenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe" [2007-09-20 202024] "Netlog Music Tool"="c:\program files\Netlog Music Tool\NetlogMusicTool.exe" [2009-06-24 1728456] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] "Google Update"="c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-01-26 135664] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="RtHDVCpl.exe" [2007-05-11 4452352] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-07-23 30192] "dscactivate"="c:\program files\Dell Support Center\gs_agent\custom\dsca.exe" [2008-03-11 16384] "DellSupportCenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064] "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136] "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 1836328] "Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072] "CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2009-01-29 57344] "Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Elements 6.0\apdproxy.exe" [2007-09-10 67488] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-02-15 141608] "UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2009-10-26 15872] "AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe" [2010-09-14 352976] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-08-29 202256] "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-01 1164584] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] c:\users\Tib\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OpenOffice.org 3.2.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008] c:\users\Sax\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Outil de notification Live Search.lnk - c:\users\Sax\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe [2008-12-18 143360] c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ WinZip Quick Pick.lnk - c:\program files\WinZip\WZQKPICK.EXE [2007-6-6 394856] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2010-01-26 16:15 135664 ----atw- c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] 2010-09-22 22:47 4240760 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VPbubble] 2008-08-25 09:30 239120 ----a-w- c:\program files\Nosibay\VPbubble\Launcher.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "AntiVirusOverride"=dword:00000001 R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-07-23 30192] R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys [2008-10-06 15656] R3 WPFFontCache_v0400;Cache de police de Windows Presentation Foundation 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys [2010-06-09 11352] S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2010-04-22 22104] S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-10-20 50704] S2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [2008-12-11 2749736] S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-11-02 19984] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Contenu du dossier 'Tâches planifiées' 2010-11-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-527785819-3466132717-2700656992-1000Core.job - c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [2010-01-26 16:15] 2010-11-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-527785819-3466132717-2700656992-1000UA.job - c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [2010-01-26 16:15] . . ------- Examen supplémentaire ------- . mWindow Title = uInternet Settings,ProxyOverride = *.local IE: &Télécharger avec NetTransport - c:\program files\Xi\NetTransport 2\NTAddLink.html IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: Ajouter à l'Anti-bannière - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm IE: Tout t&élécharger avec NetTransport - c:\program files\Xi\NetTransport 2\NTAddList.html TCP: {7C7F0920-689B-43E1-88C2-0622986547D6} = 212.27.40.240,212.27.40.241 FF - ProfilePath - c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\ FF - prefs.js: browser.startup.homepage - hxxp://google.fr FF - component: c:\program files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru\components\abhelperxpcom.dll FF - component: c:\program files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru\components\kavlinkfilter.dll FF - component: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll FF - component: c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\components\qscanff.dll FF - component: c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\extensions\piclens@cooliris.com\components\coolirisstub.dll FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\Veetle\Player\npvlc.dll FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll FF - plugin: c:\program files\Veetle\VLCBroadcast\npvbp.dll FF - plugin: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll FF - plugin: c:\users\Sax\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll FF - plugin: c:\users\Sax\AppData\Roaming\Move Networks\plugins\npqmp071700000016.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- PARAMETRES FIREFOX ---- c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false); . - - - - ORPHELINS SUPPRIMES - - - - MSConfigStartUp-eMuleAutoStart - c:\program files\eMule\emule.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-11-11 15:23 Windows 6.0.6002 Service Pack 2 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... c:\users\Sax\AppData\Local\Temp\catchme.dll 53248 bytes executable Scan terminé avec succès Fichiers cachés: 1 ************************************************************************** . Heure de fin: 2010-11-11 15:26:59 ComboFix-quarantined-files.txt 2010-11-11 14:26 Avant-CF: 21 795 786 752 octets libres Après-CF: 21 704 196 096 octets libres Current=8 Default=8 Failed=30 LastKnownGood=17 Sets=1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,30 - - End Of File - - 1477B9FBB04C592197ADBD1BBF9561EC

Bonsoir J'ai des ralentissements, et parfois des crash des navigateurs que j'utilise: mozilla, google chrome j'ai fais des scan Kaspersky internet secur 2011, et depuis les sites Nod32 et BitDefender, j'ai passé un coup de Ccleaner, le problème persiste. J'ai suivi les procédure suivante : http://forum.zebulon.fr/rapport-hijackthis-ralentissement-et-crash-t180742.html&gopid=1519071?do=findComment&comment=1519071 Que dois je faire à pressent ?

ok, merci

recommandation # 9 ? Attention aux cracks et Keygens, le P2P.,: je comprends pas je les ai supprimés

arff ca a pas duré longtemps, ce matin même problème

Oui, et je viens de supprimer les fichiers manuellement, apparemment je n'ai plus de problème. C'est ok alors ?

le problème est toujours présent, voici mon dernier rapport ToolBarSD : -----------\\ ToolBar S&D 1.2.9 XP/Vista Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6002 ) Service Pack 2 X86-based PC ( Multiprocessor Free : Intel® Core2 Quad CPU Q6600 @ 2.40GHz ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Sax ( Not Administrator ! ) BOOT : Normal boot C:\ (Local Disk) - NTFS - Total:455 Go (Free:17 Go) D:\ (Local Disk) - NTFS - Total:9 Go (Free:5 Go) E:\ (CD or DVD) F:\ (USB) G:\ (USB) H:\ (USB) I:\ (USB) J:\ (Local Disk) - NTFS - Total:465 Go (Free:214 Go) K:\ (USB) L:\ (Local Disk) - NTFS - Total:931 Go (Free:316 Go) "C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 ) Option : [2] ( 07/11/2010|21:01 ) [ UAC => 1 ] -----------\\ Recherche de Fichiers / Dossiers ... -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\Windows\\system32\\blank.htm" "Start Page"="http://fr.msn.com/" "Default_search_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"'>http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"'>http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Default_page_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" "Search bar"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?linkid=54896" "Url"="http://go.microsoft.com/fwlink/?LinkId=75720" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Local Page"="C:\\Windows\\System32\\blank.htm" "Search bar"="http://search.msn.com/spbasic.htm" --------------------\\ Recherche d'autres infections --------------------\\ Cracks & Keygens .. C:\Users\Sax\Desktop\a mettre sur bureau\flv, mp3\capture\cl‚ usb\photoshop\photoshop CS3 Fr by Movi.com\Crack C:\Users\Sax\Desktop\a mettre sur bureau\flv, mp3\capture\cl‚ usb\photoshop\photoshop CS3 Fr by Movi.com\Crack\Photoshop.exe C:\Users\Sax\Documents\photoshop\photoshop CS3 Fr by Movi\Crack C:\Users\Sax\Documents\photoshop\photoshop CS3 Fr by Movi\Crack\Photoshop.exe C:\Users\Sax\dwhelper\F F vid of cracking my T o C.flv [ UAC => 1 ] 1 - "C:\ToolBar SD\TB_1.txt" - 07/11/2010|21:02 - Option : [2] -----------\\ Fin du rapport a 21:02:19,16

merci beaucoup bleuet Je te tiens au courant pour voir la suite.

merci j'ai eu cette première fenêtre, j'ai cliqué sur oui, après j'ai eu celle ci: je sais pas si c'est bon sinon voici le rapport: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 17:14:44, on 07/11/2010 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.18975) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\SYSTEM32\WISPTIS.EXE C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe C:\Windows\Explorer.EXE C:\Windows\RtHDVCpl.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Dell Support Center\bin\sprtcmd.exe C:\Windows\WindowsMobile\wmdc.exe C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Windows\system32\WTablet\Pen_TabletUser.exe C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe C:\Windows\ehome\ehtray.exe C:\Users\Sax\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Users\Sax\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe C:\Users\Sax\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe C:\Windows\system32\taskeng.exe C:\Windows\System32\mobsync.exe L:\Document\telechargment2\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: NTIECatcher Class - {C56CB6B0-0D96-11D6-8C65-B2868B609932} - C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe" O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 6.0\apdproxy.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [Netlog Music Tool] "C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [Google Update] "C:\Users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - Startup: Outil de notification Live Search.lnk = C:\Users\Sax\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{7C7F0920-689B-43E1-88C2-0622986547D6}: NameServer = 212.27.40.240,212.27.40.241 O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Windows\system32\Pen_Tablet.exe -- End of file - 10979 bytes

Comment je fais pour me débarrasser de :Ask.com\GenericAskToolbar.dll et c:\program files\eMule\emule.exe emule faut juste le désinstaller et le supprimer ? re:As-tu possibilité d'un rapport HijackThis ? j'ai pas compris, c'est pas un rapport ce que j'ai donné ?

Bonjour J'ai des ralentissements, et parfois des crash des navigateurs que j'utilise: mozilla, google chrome j'ai fais des scan Kaspersky internet secur 2011, et depuis les sites Nod32 et BitDefender, j'ai passé un coup de Ccleaner, le problème persiste. Pouvez vous voir s'il y a des anomalies sur dans rapport, merci : ComboFix 10-11-07.03 - Sax 07/11/2010 12:25:55.5.4 - x86 Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3069.1779 [GMT 1:00] Lancé depuis: l:\document\telechargment2\ComboFix.exe SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} . ((((((((((((((((((((((((((((( Fichiers créés du 2010-10-07 au 2010-11-07 )))))))))))))))))))))))))))))))))))) . 2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\Tib\AppData\Local\temp 2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\TEMP\AppData\Local\temp 2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\Mcx1\AppData\Local\temp 2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\Invité\AppData\Local\temp 2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\freenet\AppData\Local\temp 2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\Administrateur\AppData\Local\temp 2010-11-05 08:18 . 2010-10-07 23:21 6146896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{628E6E1D-4BC5-4ABB-B078-C190E5B3E2A9}\mpengine.dll 2010-10-27 05:34 . 2010-08-26 16:34 1696256 ----a-w- c:\windows\system32\gameux.dll 2010-10-27 05:34 . 2010-08-26 16:33 28672 ----a-w- c:\windows\system32\Apphlpdm.dll 2010-10-27 05:34 . 2010-08-26 14:23 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll 2010-10-22 05:34 . 2010-10-22 05:34 94040 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\DSETUP.dll 2010-10-22 05:34 . 2010-10-22 05:34 525656 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\DXSETUP.exe 2010-10-22 05:34 . 2010-10-22 05:34 1691480 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\dsetup32.dll 2010-10-22 05:34 . 2010-10-22 05:34 94040 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\DSETUP.dll 2010-10-22 05:34 . 2010-10-22 05:34 525656 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\DXSETUP.exe 2010-10-22 05:34 . 2010-10-22 05:34 1691480 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\dsetup32.dll 2010-10-22 05:33 . 2010-11-07 08:03 -------- d-----w- c:\users\Sax\AppData\Local\Windows Live 2010-10-22 05:31 . 2009-08-04 08:02 754688 ----a-w- c:\windows\system32\webservices.dll 2010-10-21 22:12 . 2010-10-21 22:12 -------- d-----w- c:\users\Sax\AppData\Local\Cooliris 2010-10-20 10:24 . 2010-10-20 10:24 -------- d-----w- c:\users\Sax\AppData\Local\AskToolbar 2010-10-19 07:07 . 2010-09-13 13:56 8147456 ----a-w- c:\windows\system32\wmploc.DLL 2010-10-19 07:07 . 2010-09-13 13:56 168960 ----a-w- c:\program files\Windows Media Player\wmplayer.exe 2010-10-19 07:06 . 2010-09-06 16:20 125952 ----a-w- c:\windows\system32\srvsvc.dll 2010-10-19 07:06 . 2010-09-06 16:19 17920 ----a-w- c:\windows\system32\netevent.dll 2010-10-19 07:06 . 2010-09-06 13:45 304128 ----a-w- c:\windows\system32\drivers\srv.sys 2010-10-19 07:06 . 2010-09-06 13:45 145408 ----a-w- c:\windows\system32\drivers\srv2.sys 2010-10-19 07:06 . 2010-09-06 13:45 102400 ----a-w- c:\windows\system32\drivers\srvnet.sys 2010-10-19 07:06 . 2010-08-10 15:53 274944 ----a-w- c:\windows\system32\schannel.dll 2010-10-19 07:03 . 2010-08-31 15:46 954752 ----a-w- c:\windows\system32\mfc40.dll 2010-10-19 07:03 . 2010-08-31 15:46 954288 ----a-w- c:\windows\system32\mfc40u.dll 2010-10-19 07:03 . 2010-08-31 13:27 2038272 ----a-w- c:\windows\system32\win32k.sys 2010-10-19 07:03 . 2010-05-04 19:13 231424 ----a-w- c:\windows\system32\msshsq.dll 2010-10-19 07:03 . 2010-08-20 16:05 867328 ----a-w- c:\windows\system32\wmpmde.dll 2010-10-19 07:02 . 2010-08-31 15:44 531968 ----a-w- c:\windows\system32\comctl32.dll 2010-10-16 09:24 . 2010-10-16 11:18 -------- d-----w- c:\users\Sax\AppData\Roaming\IDM 2010-10-16 00:48 . 2010-10-16 00:48 -------- d-----w- c:\program files\CodeGazer 2010-10-15 16:14 . 2010-10-15 16:14 -------- d-----w- c:\program files\Switcher 2010-10-13 14:28 . 2010-10-13 14:28 -------- d-----w- c:\users\Tib\AppData\Roaming\OpenOffice.org . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-10-19 09:41 . 2009-10-03 00:15 222080 ------w- c:\windows\system32\MpSigStub.exe 2010-10-16 00:53 . 2009-09-11 07:11 615424 ----a-w- c:\windows\system32\themeui.dll 2010-09-22 22:47 . 2010-09-22 22:47 49016 ----a-w- c:\windows\system32\sirenacm.dll 2010-09-15 02:50 . 2010-04-28 08:27 472808 ----a-w- c:\windows\system32\deployJava1.dll 2010-08-26 16:33 . 2010-10-27 05:34 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll 2010-08-26 16:33 . 2010-10-27 05:34 542720 ----a-w- c:\windows\apppatch\AcLayers.dll 2010-08-26 16:33 . 2010-10-27 05:34 458752 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2010-08-26 16:33 . 2010-10-27 05:34 2159616 ----a-w- c:\windows\apppatch\AcGenral.dll 2010-08-17 14:11 . 2010-09-15 06:49 128000 ----a-w- c:\windows\system32\spoolsv.exe 2010-08-12 04:07 . 2009-10-10 16:19 126448 ------w- c:\windows\system32\pxinsi64.exe 2010-08-12 04:07 . 2009-10-10 16:19 123888 ------w- c:\windows\system32\pxcpyi64.exe 2010-08-12 04:07 . 2009-10-10 16:19 133616 ------w- c:\windows\system32\pxafs.dll 2010-08-12 04:07 . 2007-11-14 02:00 45648 ------w- c:\windows\system32\drivers\pxhelp20.sys 2010-05-02 15:57 . 2010-05-02 15:56 644 ----a-w- c:\program files\mpc5.reg 2010-05-02 15:57 . 2010-05-02 15:56 218 ----a-w- c:\program files\mpc6.reg 2010-05-02 15:57 . 2010-05-02 15:56 1636 ----a-w- c:\program files\mpc7.reg 2010-05-02 15:57 . 2010-05-02 15:56 816 ----a-w- c:\program files\ffdssetts.reg 2010-05-02 15:57 . 2010-05-02 15:56 680 ----a-w- c:\program files\mpc2.reg 2010-05-02 15:57 . 2010-05-02 15:56 226 ----a-w- c:\program files\mpc3.reg 2010-05-02 15:57 . 2010-05-02 15:56 218 ----a-w- c:\program files\mpc1.reg 2010-05-02 15:57 . 2010-05-02 15:56 1406 ----a-w- c:\program files\ffdsasetts.reg 2010-07-23 08:34 . 2009-11-21 08:47 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll . ------- Sigcheck ------- [-] 2010-10-16 . 690D53BD10A804BB6D0A772D1C0E6907 . 247296 . . [6.0.6000.16386] . . c:\windows\System32\shsvcs.dll [7] 2009-04-11 . C818C44C201898399BF999BB6B35D4E3 . 247296 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6002.18005_none_cf1bd6361a0f622e\shsvcs.dll [7] 2008-01-19 . 27F10F348E508243F6254846F8370D0D . 247296 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6001.18000_none_cd305d2a1ced96e2\shsvcs.dll [7] 2006-11-02 . B264DFA21677728613267FE63802B332 . 245248 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6000.16386_none_caf99b2e2002860e\shsvcs.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] 2010-02-04 14:50 1197448 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448] [HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}] [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1] [HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448] [HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}] [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1] [HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_1] @="{01702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{01702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_10] @="{10702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{10702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_2] @="{02702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{02702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_3] @="{03702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{03702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_4] @="{04702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{04702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_5] @="{05702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{05702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_6] @="{06702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{06702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_7] @="{07702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{07702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_8] @="{08702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{08702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_9] @="{09702EF5-1B33-487F-995F-6FA23F1D6652}" [HKEY_CLASSES_ROOT\CLSID\{09702EF5-1B33-487F-995F-6FA23F1D6652}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="oobefldr.dll" [2009-04-11 2153472] "DellSupportCenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe" [2007-09-20 202024] "Netlog Music Tool"="c:\program files\Netlog Music Tool\NetlogMusicTool.exe" [2009-06-24 1728456] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] "Google Update"="c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-01-26 135664] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-09-22 4240760] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="RtHDVCpl.exe" [2007-05-11 4452352] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-07-23 30192] "dscactivate"="c:\program files\Dell Support Center\gs_agent\custom\dsca.exe" [2008-03-11 16384] "DellSupportCenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064] "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136] "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 1836328] "Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072] "CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2009-01-29 57344] "Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Elements 6.0\apdproxy.exe" [2007-09-10 67488] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-02-15 141608] "UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2009-10-26 15872] "AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe" [2010-09-14 352976] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-08-29 202256] "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-01 1164584] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] c:\users\Tib\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OpenOffice.org 3.2.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008] c:\users\Sax\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Outil de notification Live Search.lnk - c:\users\Sax\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe [2008-12-18 143360] c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ WinZip Quick Pick.lnk - c:\program files\WinZip\WZQKPICK.EXE [2007-6-6 394856] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll c:\progra~1\KASPER~1\KASPER~1\mzvkbd3.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eMuleAutoStart] 2008-08-02 13:52 5484544 ----a-w- c:\program files\eMule\emule.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2010-01-26 16:15 135664 ----atw- c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] 2010-09-22 22:47 4240760 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VPbubble] 2008-08-25 09:30 239120 ----a-w- c:\program files\Nosibay\VPbubble\Launcher.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "AntiVirusOverride"=dword:00000001 R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-07-23 30192] R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys [2008-10-06 15656] R3 WPFFontCache_v0400;Cache de police de Windows Presentation Foundation 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys [2010-06-09 11352] S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2010-04-22 22104] S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-10-20 50704] S2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [2008-12-11 2749736] S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-11-02 19984] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Contenu du dossier 'Tâches planifiées' 2010-11-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-527785819-3466132717-2700656992-1000Core.job - c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [2010-01-26 16:15] 2010-11-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-527785819-3466132717-2700656992-1000UA.job - c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [2010-01-26 16:15] . . ------- Examen supplémentaire ------- . mStart Page = about:blank uInternet Settings,ProxyOverride = *.local IE: &Télécharger avec NetTransport - c:\program files\Xi\NetTransport 2\NTAddLink.html IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: Ajouter à l'Anti-bannière - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm IE: Tout t&élécharger avec NetTransport - c:\program files\Xi\NetTransport 2\NTAddList.html TCP: {7C7F0920-689B-43E1-88C2-0622986547D6} = 212.27.40.240,212.27.40.241 FF - ProfilePath - c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\ FF - prefs.js: browser.startup.homepage - hxxp://google.fr FF - component: c:\program files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru\components\abhelperxpcom.dll FF - component: c:\program files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru\components\kavlinkfilter.dll FF - component: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll FF - component: c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\components\qscanff.dll FF - component: c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\extensions\piclens@cooliris.com\components\coolirisstub.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- PARAMETRES FIREFOX ---- c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false); . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-11-07 12:32 Windows 6.0.6002 Service Pack 2 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'Explorer.exe'(5940) c:\windows\RESOUR~1\Themes\BADGES~1.0\BADGES~1.DLL c:\windows\System32\NLSLexicons000c.dll . Heure de fin: 2010-11-07 12:34:43 ComboFix-quarantined-files.txt 2010-11-07 11:34 ComboFix2.txt 2010-11-07 11:21 ComboFix3.txt 2008-10-19 16:04 Avant-CF: 17 084 264 448 octets libres Après-CF: 16 997 617 664 octets libres Current=8 Default=8 Failed=30 LastKnownGood=16 Sets=1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,30 - - End Of File - - 0BD839E39EA1617385FE48820E8D0A65