stplease

oici le rapport! ------------------------------------------------------------------ # DelFix v7.4 - Rapport créé le 24/02/2011 à 11:55 # Mis à jour le 09/02/11 à 23h par Xplode # Système d'exploitation : Windows 7 Professional (64 bits) [version 6.1.7600] # Nom d'utilisateur : khriss - KHRISS-PC (Administrateur) # Exécuté depuis : C:\Users\khriss\Downloads\DelFix.exe # Option [suppression] ~~~~~~ Dossier(s) ~~~~~~ Supprimé : C:\_OTM Supprimé : C:\Program Files (x86)\ZHPDiag Supprimé : C:\Program Files (x86)\trend micro\Hijackthis Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP ~~~~~~ Fichier(s) ~~~~~~ Supprimé : C:\ZHPExportRegistry-22-02-2011-16-26-23.txt Supprimé : C:\Users\khriss\Desktop\OTM.exe Supprimé : C:\Users\khriss\Desktop\HiJackThis.lnk Supprimé : C:\Users\khriss\Desktop\ZHPDiag.txt Supprimé : C:\Users\khriss\Desktop\ZHPDiag2.exe Supprimé : C:\Users\khriss\Desktop\ZHPFix.exe Supprimé : C:\Users\khriss\Desktop\ZHPFixReport.txt Supprimé : C:\Users\Public\Desktop\ZHPFix.lnk Supprimé : C:\Users\khriss\Downloads\HijackThis.msi Supprimé : C:\Users\khriss\Downloads\ZHPDiag2.zip ~~~~~~ Registre ~~~~~~ Clé Supprimée : HKLM\Software\OldTimer Tools Clé Supprimée : HKLM\Software\TrendMicro\Hijackthis Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1 ~~~~~~ Autre ~~~~~~ -> Prefetch vidé ########## EOF - "C:\DelFixSuppr.txt" - [1437 octets] ########## merci encore pour ton aide

oui je voulais dire activer! hihi en ce qui concerne le pare feu et le partage de connexion ils étaient desactiver, donc j'ai fais le nécéssaire! l'ordi roule maintenant comme un petit bolide! merci encore

voici le rapport de ZHPfix ------------------------------------------------------------------- Rapport de ZHPFix 1.12.3255 par Nicolas Coolman, Update du 19/02/2011 Fichier d'export Registre : C:\ZHPExportRegistry-22-02-2011-16-26-23.txt Run by khriss at 22/02/2011 16:26:23 Windows 7 Business Edition, 64-bit (Build 7600) Web site : ZHPFix Fix de rapport Contact : nicolascoolman@yahoo.fr ========== Processus mémoire ========== c:\program files (x86)\microsoft antimalware\fr-fr\malwarempasdesc.exe [137728] => Supprimé et mis en quarantaine c:\program files (x86)\common files\adobe systems shared\service\adobeservice.exe [137728] => Supprimé et mis en quarantaine c:\program files (x86)\quicktime\qtsystem\quicktimestreaming.resources\pt.lproj\streamingquicktime7.6.9.exe [137728] => Supprimé et mis en quarantaine ========== Clé(s) du Registre ========== [HKEY_CURRENT_USER\SOFTWARE\Classes\Wow6432Node\CLSID\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}] => Clé supprimée avec succès [HKCR\CLSID\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}] => Clé supprimée avec succès HKCU\Software\AntiVirus AntiSpyware 2011 => Clé supprimée avec succès HKCU\Software\AppDataLow\Software\PriceGong => Clé supprimée avec succès HKCU\Software\AppDataLow\Software\uTorrentBar_FR => Clé supprimée avec succès HKCU\Software\AppDataLow\Toolbar => Clé supprimée avec succès HKCU\Software\HLTCDMS83A => Clé supprimée avec succès HKCU\Software\NJZJ58QLI9 => Clé supprimée avec succès HKCU\Software\OfferBox => Clé supprimée avec succès ========== Valeur(s) du Registre ========== R3 - URLSearchHook: uTorrentBar_FR Toolbar - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.7.3) -- C:\Program Files (x86)\uTorrentBar_FR\tbuTor.dll => Valeur supprimée avec succès O4 - HKLM\..\Run: [Nvidia driver] C:\Users\khriss\AppData\Roaming\nvdisp.exe (.not file.) => Valeur supprimée avec succès O4 - HKLM\..\Wow6432Node\Run: [tebub] c:\users\khriss\appdata\local\temp\tebub.exe (.not file.) => Valeur absente O4 - HKLM\..\Wow6432Node\Run: [upgraderVMware] . (.It Systems - Covering Software.) -- C:\Program Files (x86)\VMware\VMware Workstation\tools-upgraders\upgraderVMware.exe => Valeur absente FirewallRaz : Aucune valeur présente dans la clé de registre "Standard Profile" FirewallRaz : Aucune valeur présente dans la clé de registre "Domain Profile" FirewallRaz (Domain) : FPS-SpoolSvc-In-TCP-NoScope => Valeur supprimée avec succès FirewallRaz (Public) : FPS-SpoolSvc-In-TCP => Valeur supprimée avec succès FirewallRaz (Domain) : CoreNet-GP-LSASS-Out-TCP => Valeur supprimée avec succès FirewallRaz (Domain) : RemoteSvcAdmin-In-TCP-NoScope => Valeur supprimée avec succès FirewallRaz (Public) : RemoteSvcAdmin-In-TCP => Valeur supprimée avec succès FirewallRaz (Public) : SPPSVC-In-TCP => Valeur supprimée avec succès FirewallRaz (Domain) : SPPSVC-In-TCP-NoScope => Valeur supprimée avec succès FirewallRaz (Domain) : NetPres-In-TCP-NoScope => Valeur supprimée avec succès FirewallRaz (Domain) : NetPres-Out-TCP-NoScope => Valeur supprimée avec succès FirewallRaz (None) : NetPres-WSD-In-UDP => Valeur supprimée avec succès FirewallRaz (None) : NetPres-WSD-Out-UDP => Valeur supprimée avec succès FirewallRaz (Public) : NetPres-In-TCP => Valeur supprimée avec succès FirewallRaz (Public) : NetPres-Out-TCP => Valeur supprimée avec succès FirewallRaz (Private) : {366EA84E-B76E-4C7A-8187-4235A7F65E19} => Valeur supprimée avec succès FirewallRaz (Private) : {44509415-8069-48C2-81D2-1C3E964911FA} => Valeur supprimée avec succès FirewallRaz (Private) : {74B1076A-A8B3-45CF-85D9-439BB435F3D9} => Valeur supprimée avec succès FirewallRaz (Private) : TCP Query User{A938AB13-9C27-49B9-BFFC-042C68C4A26D}C:\users\khriss\downloads\tinyumbrella-4.1.12.exe => Valeur supprimée avec succès FirewallRaz (Private) : UDP Query User{C88B7F77-9C98-42F7-876A-07C56BFF29BA}C:\users\khriss\downloads\tinyumbrella-4.1.12.exe => Valeur supprimée avec succès FirewallRaz (Private) : TCP Query User{48D4AA0B-9A9E-40F5-906B-527F7FBF4AD9}C:\users\khriss\downloads\tinyumbrella-4.21.02.exe => Valeur supprimée avec succès FirewallRaz (Private) : UDP Query User{A3008677-92B8-4632-9AB7-880836A6079C}C:\users\khriss\downloads\tinyumbrella-4.21.02.exe => Valeur supprimée avec succès FirewallRaz (Private) : TCP Query User{ADAA6738-D8F6-456C-A294-ECC9B2F8A2AD}C:\users\khriss\appdata\local\temp\167166318525.exe => Valeur supprimée avec succès FirewallRaz (Private) : UDP Query User{0E13A0DA-122D-4A3D-9024-0D6B2BDCF248}C:\users\khriss\appdata\local\temp\167166318525.exe => Valeur supprimée avec succès FirewallRaz (Public) : {D53A57CD-8508-459E-AF64-A9CD9F341D93} => Valeur supprimée avec succès FirewallRaz (Public) : {FD15A1C5-BC26-41E5-8509-51057D41FD90} => Valeur supprimée avec succès FirewallRaz (Private) : TCP Query User{8183A5A5-8068-4A78-94A9-3AC1736F00E5}C:\users\khriss\appdata\local\temp\187162561999.exe => Valeur supprimée avec succès FirewallRaz (Private) : UDP Query User{EFBE8DFC-3A68-41B5-8207-D9818659DF65}C:\users\khriss\appdata\local\temp\187162561999.exe => Valeur supprimée avec succès FirewallRaz (Public) : {377401E5-1BC3-45A3-9498-4F68300B8AC7} => Valeur supprimée avec succès FirewallRaz (Public) : {413C077A-7E3D-4315-A661-F2F3E9255FB9} => Valeur supprimée avec succès FirewallRaz (Public) : {DDE42A67-267D-4DAF-87C0-5865AAA36495} => Valeur supprimée avec succès FirewallRaz (Public) : {19A35AB0-0E80-4305-B134-0BA142712FBD} => Valeur supprimée avec succès ========== Elément(s) de donnée du Registre ========== R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Babylon Search => Donnée supprimée avec succès R0 - HKUS\S-1-5-21-1265689221-2602250506-1958569996-1001\Software\Microsoft\Internet Explorer\Main,Start Page = Babylon Search => Donnée supprimée avec succès R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local => Donnée supprimée avec succès ========== Dossier(s) ========== Dossiers temporaires Windows supprimés: 117 ========== Fichier(s) ========== Fichiers temporaires Windows supprimés : 168 ========== Tache planifiée ========== Task : {5234BE0C-4CD9-44DE-BB2E-68B2E2C9B9D3} => Tâche supprimée avec succès Task : {79EF4D89-F93B-452C-BE31-A06751A24698} => Tâche supprimée avec succès Task : {B9CD73FA-BA83-4F80-B21F-54427F7FF2C7} => Tâche supprimée avec succès Task : {F9EC8247-4A27-4372-AB3D-C09856D9E1E1} => Tâche supprimée avec succès ========== Récapitulatif ========== 3 : Processus mémoire 9 : Clé(s) du Registre 36 : Valeur(s) du Registre 3 : Elément(s) de donnée du Registre 1 : Dossier(s) 1 : Fichier(s) 4 : Tache planifiée End of the scan -------------------------------------------------------------------------------------------------------------- voila mon pc se sent bien et je vais le rebooter de suite afin de voir la demarrage par contre je n'arrive plus depuis tt ca, a activer le service de centre de securité windows! Edit: j'ai restaurer la restauration du systeme! par contre je n'arrive pas a reactiver le pare feu message erreur 0x80070422 merci pour ton aide

lol voici le rapport de malwarebyte's -------------------------------------------------------------------------- Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 5832 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 21/02/2011 21:50:42 mbam-log-2011-02-21 (21-50-42).txt Type d'examen: Examen complet (C:\|D:\|) Elément(s) analysé(s): 272818 Temps écoulé: 46 minute(s), 28 seconde(s) Processus mémoire infecté(s): 8 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 5 Valeur(s) du Registre infectée(s): 14 Elément(s) de données du Registre infecté(s): 1 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 22 Processus mémoire infecté(s): c:\Users\khriss\AppData\Roaming\antivirus antispyware 2011\securitymanager.exe (Trojan.FakeAlert) -> 1080 -> Unloaded process successfully. c:\program files (x86)\Adobe\adobe help center\Browser\es26232browser.exe (Trojan.FakeAlert) -> 3264 -> Unloaded process successfully. c:\program files (x86)\quicktime\propertypanels\panelhelperbase.resources\pt.lproj\recursosquicktimequicktime.exe (Trojan.FakeAlert) -> 3432 -> Unloaded process successfully. c:\Windows\Tzefua.exe (Trojan.Agent) -> 3624 -> Unloaded process successfully. c:\program files (x86)\quicktime\QTSystem\quicktimempeg4authoring.resources\ru.lproj\quicktimequicktimeresources.exe (Trojan.FakeAlert) -> 4016 -> Unloaded process successfully. c:\program files (x86)\VMware\vmware workstation\tools-upgraders\upgradervmware.exe (Trojan.FakeAlert) -> 4536 -> Unloaded process successfully. c:\program files (x86)\common files\Apple\mobile device support\syncservices\Clients\com.apple.safari\appleisregistered.exe (Trojan.FakeAlert) -> 4644 -> Unloaded process successfully. c:\Users\khriss\AppData\Roaming\googledownload.exe (Trojan.Downloader) -> 3156 -> Unloaded process successfully. Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AntiVirus AntiSpyware 2011 (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\CE8SIIFGSU (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\NtWqIVLZEWZU (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\AntiVirus AntiSpyware 2011 Security (Trojan.FakeAlert) -> Value: AntiVirus AntiSpyware 2011 Security -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\InternetOpera (Trojan.FakeAlert) -> Value: InternetOpera -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\es26232Opera (Trojan.FakeAlert) -> Value: es26232Opera -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\Browseres26232 (Trojan.FakeAlert) -> Value: Browseres26232 -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\QuickTimeRecursosQuickTime (Trojan.FakeAlert) -> Value: QuickTimeRecursosQuickTime -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\SoftWaregfgrert1.2.8800.0 (Trojan.FakeAlert) -> Value: SoftWaregfgrert1.2.8800.0 -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\QuickTimeRecursosQuickTime (Trojan.FakeAlert) -> Value: QuickTimeRecursosQuickTime -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\gfgrertsdffdfc1.2.8800.00108171148 (Trojan.FakeAlert) -> Value: gfgrertsdffdfc1.2.8800.00108171148 -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\sdffdfcupgrader (Trojan.FakeAlert) -> Value: sdffdfcupgrader -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Safarisdffdfc (Trojan.FakeAlert) -> Value: Safarisdffdfc -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MailSMapi (Trojan.FakeAlert) -> Value: MailSMapi -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Nvidia Driver (Trojan.MSIL) -> Value: Nvidia Driver -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\AntiVirus AntiSpyware 2011 (Trojan.FakeAlert) -> Value: AntiVirus AntiSpyware 2011 -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\GoogleDownload (Trojan.Downloader) -> Value: GoogleDownload -> Quarantined and deleted successfully. Elément(s) de données du Registre infecté(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully. Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): c:\Users\khriss\AppData\Roaming\antivirus antispyware 2011\securitymanager.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\program files (x86)\Adobe\adobe help center\Browser\es26232browser.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\program files (x86)\quicktime\propertypanels\panelhelperbase.resources\pt.lproj\recursosquicktimequicktime.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\Windows\Tzefua.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\program files (x86)\quicktime\QTSystem\quicktimempeg4authoring.resources\ru.lproj\quicktimequicktimeresources.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\program files (x86)\VMware\vmware workstation\tools-upgraders\upgradervmware.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\program files (x86)\common files\Apple\mobile device support\syncservices\Clients\com.apple.safari\appleisregistered.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\program files (x86)\windows live\Mail\addresswcics15.4.3502.0922.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\Users\khriss\AppData\Roaming\nvdisp.exe (Trojan.MSIL) -> Quarantined and deleted successfully. c:\Users\khriss\AppData\Roaming\antivirus antispyware 2011\antivirus antispyware.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\Users\khriss\AppData\Roaming\3skkl7088sk.exe (Trojan.MSIL) -> Quarantined and deleted successfully. c:\Users\khriss\AppData\Roaming\antivirus antispyware 2011\securityhelper.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\Users\khriss\downloads\downloads\the.cleaner.2011.v7.0.0.3120.multilingual.incl.keymaker-core\the.cleaner.2011.v7.0.0.3120.multilingual.incl.keymaker-core\cr-tc120\CORE10k.EXE (Dont.Steal.Our.Software) -> Quarantined and deleted successfully. c:\_OTM\movedfiles\02212011_204734\c_users\khriss\appdata\local\temp\tebub.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\_OTM\movedfiles\02212011_204734\c_users\khriss\appdata\local\temp\Txt.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\_OTM\movedfiles\02212011_204734\c_users\khriss\appdata\local\temp\Txu.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\Users\khriss\AppData\Roaming\googledownload.exe (Trojan.Downloader) -> Quarantined and deleted successfully. c:\Users\khriss\AppData\Local\Temp\ppddfcfux.exxe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\Users\khriss\AppData\Local\Temp\w32rim_mem.exe (Trojan.Downloader) -> Quarantined and deleted successfully. c:\Windows\Tasks\{22116563-108c-42c0-a7ce-60161b75e508}.job (Trojan.Downloader) -> Quarantined and deleted successfully. c:\Windows\Tasks\{62c40aa6-4406-467a-a5a5-dfdf1b559b7a}.job (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\Windows\Tasks\{bbaeaeaf-1275-40e2-bd6c-bc8f88bd114a}.job (Trojan.Downloader) -> Quarantined and deleted successfully. -------------------------------------------------------------------------------------------------------------------------------- et le rapport de ZHPdiag merci encore PS: Le logiciel "antivirus antimalware 2011" a disparu! lol il a eu peur de toi!!!

merci pour ton aide! je suis en train d'analyser avec malwarebytes je te poste le resultat apres mais voici deja le rapport OTM ------------------------------------------------------------------------------------------------------------ All processes killed ========== REGISTRY ========== Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Project1cunt deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\cuntcunt deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\WindowsProject1 deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\cuntProject1 deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\CE8SIIFGSU deleted successfully. ========== FILES ========== c:\users\khriss\appdata\local\temp\Txt.exe moved successfully. c:\users\khriss\appdata\local\temp\tebub.exe moved successfully. File/Folder c:\program files\offerbox not found. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: khriss ->Temp folder emptied: 2632685240 bytes ->Temporary Internet Files folder emptied: 56010966 bytes ->Java cache emptied: 41426 bytes ->FireFox cache emptied: 102886316 bytes ->Flash cache emptied: 64187 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 77746823 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50540 bytes RecycleBin emptied: 11850796463 bytes Total Files Cleaned = 14 038,00 mb OTM by OldTimer - Version 3.1.17.2 log created on 02212011_204734 Files moved on Reboot... C:\Users\khriss\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. C:\Users\khriss\AppData\Local\Temp\Txu.exe moved successfully. C:\Windows\temp\vmware-Système\vmware-usbarb-Système-1776.log moved successfully. Registry entries deleted on Reboot... Pour le logiciel antivirus qui s'est installer sans ma permission j'ai tenter de le désinstaller par le panneau de configuration mais ca ne fonctionne pas. Je vais retenter de m'en debarrasser apres avoir fais ce que tu m'a demander! merci encore

Bonjour a tous!! Merci tt d'abord pour le travail (bénévole et oui) que vous faites afin de nous venir en aide! Mon pb est la suivant depuis 3 jours ou j'ai eu le malheurs de cocher "install babylon toolbar" par megarde, mon pc devient une vrai porte ouverte! j'ai eu mille misère a la désinstaller de mon navigateur cette barre mais depuis j'ai des fenêtre intempestive "Internet explorer" qui s'ouvre alors que mon navigateur par défaut est Mozilla firefox. Je n'avais pas de session de créer, mon ordi se lançait directement sur le bureau et la bisarrement je me retrouve avec un icone session sur lequel je dois cliquer pour lancer celle ci. Le plus penible c'est ce pseudo antivirus qui a fais son apparition sur mon bureau "Antivirus antispyware 2011" que je n'ai jamais desirer. Ma config Windows 7 AMD athlon 64 4000+ Antivirus: Microsoft security essentiel Navigateur: Mozilla Firefox --------------------------------------------------------- rapport Hijackthis --------------------------------------------------------- Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:54:01, on 21/02/2011 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16722) Boot mode: Normal Running processes: C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin C:\Users\khriss\AppData\Roaming\GoogleDownload.exe C:\Program Files (x86)\MSI\Live Update 3\LMonitor.exe C:\Program Files (x86)\QuickTime\PropertyPanels\PanelHelperBase.Resources\pt.lproj\RecursosQuickTimeQuickTime.exe c:\program files (x86)\adobe\adobe help center\browser\es26232browser.exe c:\program files (x86)\common files\apple\mobile device support\syncservices\clients\com.apple.safari\appleisregistered.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe c:\program files (x86)\quicktime\qtsystem\quicktimempeg4authoring.resources\ru.lproj\quicktimequicktimeresources.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\Tzefua.exe C:\Users\khriss\AppData\Local\Temp\Txu.exe C:\Users\khriss\AppData\Local\Temp\Txt.exe c:\users\khriss\appdata\local\temp\tebub.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Babylon Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: uTorrentBar_FR Toolbar - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - C:\Program Files (x86)\uTorrentBar_FR\tbuTor.dll F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: uTorrentBar_FR Toolbar - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - C:\Program Files (x86)\uTorrentBar_FR\tbuTor.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: OfferBox - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} - C:\Program Files (x86)\OfferBox\OfferBoxBHO.dll (file missing) O3 - Toolbar: uTorrentBar_FR Toolbar - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - C:\Program Files (x86)\uTorrentBar_FR\tbuTor.dll O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe" O4 - HKLM\..\Run: [GoogleDownload] C:\Users\khriss\AppData\Roaming\GoogleDownload.exe O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files (x86)\MSI\Live Update 3\LMonitor.exe O4 - HKLM\..\Run: [DelReg] C:\Program Files (x86)\MSI\DualCoreCenter\DelReg.exe O4 - HKLM\..\Run: [Project1cunt] C:\Users\khriss\AppData\Local\Temp\tebub.exe O4 - HKLM\..\Run: [internetOpera] c:\program files (x86)\adobe\adobe help center\browser\es26232browser.exe O4 - HKLM\..\Run: [safarisdffdfc] c:\program files (x86)\common files\apple\mobile device support\syncservices\clients\com.apple.safari\appleisregistered.exe O4 - HKLM\..\Run: [MailSMapi] c:\program files (x86)\windows live\mail\addresswcics15.4.3502.0922.exe O4 - HKLM\..\Run: [QuickTimeRecursosQuickTime] C:\Program Files (x86)\QuickTime\PropertyPanels\PanelHelperBase.Resources\pt.lproj\RecursosQuickTimeQuickTime.exe O4 - HKLM\..\Run: [cuntcunt] C:\Users\khriss\AppData\Local\Temp\tebub.exe O4 - HKLM\..\RunServices: [WindowsProject1] C:\Users\khriss\AppData\Local\Temp\tebub.exe O4 - HKLM\..\RunServices: [softWaregfgrert1.2.8800.0] c:\program files (x86)\quicktime\propertypanels\panelhelperbase.resources\pt.lproj\recursosquicktimequicktime.exe O4 - HKLM\..\RunServices: [gfgrertsdffdfc1.2.8800.00108171148] c:\program files (x86)\quicktime\qtsystem\quicktimempeg4authoring.resources\ru.lproj\quicktimequicktimeresources.exe O4 - HKLM\..\RunServices: [sdffdfcupgrader] c:\program files (x86)\vmware\vmware workstation\tools-upgraders\upgradervmware.exe O4 - HKLM\..\RunServices: [QuickTimeRecursosQuickTime] C:\Program Files (x86)\QuickTime\PropertyPanels\PanelHelperBase.Resources\pt.lproj\RecursosQuickTimeQuickTime.exe O4 - HKLM\..\RunServices: [cuntProject1] C:\Users\khriss\AppData\Local\Temp\tebub.exe O4 - HKCU\..\Run: [superCopier2.exe] C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [Nvidia Driver] C:\Users\khriss\AppData\Roaming\nvdisp.exe O4 - HKCU\..\Run: [Logitech Vid HD] "C:\Program Files (x86)\Logitech\Vid\vid.exe" -bootmode O4 - HKCU\..\Run: [CE8SIIFGSU] C:\Users\khriss\AppData\Local\Temp\Txt.exe O4 - HKCU\..\Run: [AntiVirus AntiSpyware 2011] "C:\Users\khriss\AppData\Roaming\AntiVirus AntiSpyware 2011\AntiVirus AntiSpyware.exe" /STARTUP O4 - HKCU\..\Run: [AntiVirus AntiSpyware 2011 Security] C:\Users\khriss\AppData\Roaming\AntiVirus AntiSpyware 2011\securitymanager.exe O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU') O4 - Startup: Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe O4 - Global Startup: DualCoreCenter.lnk = C:\Program Files (x86)\MSI\DualCoreCenter\StartUpDualCoreCenter.exe O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\vmware\vmware workstation\vsocklib.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\vmware\vmware workstation\vsocklib.dll O15 - Trusted Zone: http://asia.msi.com.tw O15 - Trusted Zone: MSI Global - Computer, Laptop, Notebook, Desktop, Mainboard, Graphics and more O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/LOnline/install.cab O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files (x86)\ma-config.com\maconfservice.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Superfetch (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Workstation\vmware-ufad.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe -- End of file - 25489 bytes Merci par avance de l'aide que vous m'apporterez