Pc d'un ami [rédolu]

Xeti · le 23 avril 2007

Slt,

:P Le scan a trouvé qq chose:

GMER 1.0.12.12244 - http://www.gmer.net
Rootkit scan 2007-04-28 21:42:52

Windows 5.1.2600 Service Pack 2

---- Kernel code sections - GMER 1.0.12 ----

? C:\WINDOWS\System32\DRIVERS\update.sys

---- Files - GMER 1.0.12 ----

ADS C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\[email protected]\DFSR\Staging\CS{D4436CCA-BD84-F477-D8F5-ECC3FD9C092E}1\10-{D4436CCA-BD84-F477-D8F5-ECC3FD9C092E}-v1-{85E3CDDE-5587-4AD4-B2B9-C339AA3CCC77}-v10-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS

ADS C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\[email protected]\DFSR\Staging\CS{D4436CCA-BD84-F477-D8F5-ECC3FD9C092E}\11\11-{85E3CDDE-5587-4AD4-B2B9-C339AA3CCC77}-v11-{85E3CDDE-5587-4AD4-B2B9-C339AA3CCC77}-v11-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1

ADS C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\[email protected]\DFSR\Staging\CS{D4436CCA-BD84-F477-D8F5-ECC3FD9C092E}\11\11-{85E3CDDE-5587-4AD4-B2B9-C339AA3CCC77}-v11-{85E3CDDE-5587-4AD4-B2B9-C339AA3CCC77}-v11-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS

ADS C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\[email protected]\DFSR\Staging\CS{D4436CCA-BD84-F477-D8F5-ECC3FD9C092E}\36\36-{914D646D-BA06-4496-83CD-A0F342803DDB}-v36-{914D646D-BA06-4496-83CD-A0F342803DDB}-v36-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS

ADS C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\[email protected]\DFSR\Staging\CS{D4436CCA-BD84-F477-D8F5-ECC3FD9C092E}\37\37-{914D646D-BA06-4496-83CD-A0F342803DDB}-v37-{914D646D-BA06-4496-83CD-A0F342803DDB}-v37-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS

---- EOF - GMER 1.0.12 ----

Le message du premier post est entier donc il n'y a pas d'adresse mail.

Le "svp" dans le message me choque, en toute lettre ça irait mieu, non?

Lamise à jour est faite?

@+

Xeti

Modifié le 23 avril 2007 par Xeti

Xeti · le 24 avril 2007

Ce matin j'ai refait des scans et Ad-Aware a trouvé quelque chose: SahAgent

et je l'ai supprimé.

Par rapport au scan précédent, est se qu'il faut faire quelque chose??

J'aimerais, rajouté qu'en mode ss échec, le message n'apparait pas.

Modifié le 25 avril 2007 par Xeti

Thanos · le 25 avril 2007

salut

Stp, poste moi ce rapport >

Télécharge SREng (par Smallfrogs) de ce lien:

http://www.kztechs.com/eng/download.html

Extrais tout son contenu sur ton Bureau

Du dossier sreng2 qui se trouve maintenant sur ton Bureau, double clique sur SREng.exe afin de lancer l'outil

Clique sur Smart Scan

Ensuite, clique sur le bouton [scan]

Lorsque complété, clique sur le bouton [save Reports]

Sauvegarde le rapport sur ton Bureau

Copie/colle le contenu du fichier SREnglLOG.log dans ta prochaine réponse, s'il te plaît.

Fais ce scan en ligne >

Fais un scan en ligne avec Panda :

http://www.pandasoftware.fr/Activescan/Activescan.html .

Et poste le rapport qu'il t'affichera à la fin, pour cela, assure toi que IE est correctement configuré pour le scan en ligne comme indiqué ici : http://www.malekal.com/scan_Av_en_ligne.html#mozTocId898809 .

Si tu n'y arrives pas, le tuto est : http://www.malekal.com/scan_Av_en_ligne.html#mozTocId237368

Tu n'es pas obligé de donner ton email, tu peux utiliser une adresse jetable si tu le souhaites : http://www.jetable.org/fr/index

Attention!! Panda et Avast entrent en conflit, pour pouvoir télécharger le contrôle active x de Panda, il faut que tu désactives le bouclier web d'Avast le temps du scan.

En cas de souci >

Fais un scan en ligne Kaspersky avec Internet Explorer :
Clique sur
Clique maintenant sur J'accepte.
Valide l'installation d'un ou de plusieurs ActiveX si c'est nécessaire.
Patiente pendant l'installation des Mises à jour.
Choisis par la suite l'analyse du Poste de travail
Sauvegarde puis colle le rapport généré en fin d'analyse.

AIDE : Configurer le contrôle des ActiveX

Note : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", vas dans Ajout/Suppression de programmes et désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.

@+

Xeti · le 26 avril 2007

2007-04-30,21:58:50

System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been choosed:
All Boot Items (Including Registry, Startup Folders, Services and so on)
Browser Add-ons
Runing Processes (Including process model information)
File Associations
Winsock Provider
Autorun.Inf
HOSTS File


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<NVIEW><rundll32.exe nview.dll,nViewLoadHook>  [(Verified)Microsoft Windows Publisher]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Publisher]
<SpybotSD TeaTimer><C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe>  [(Verified)Safer Networking Ltd.]
<LogitechSoftwareUpdate><"C:\Program Files\Logitech\Video\ManifestEngine.exe" boot>  [N/A]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Recguard><C:\WINDOWS\SMINST\RECGUARD.EXE>  []
<vptray><C:\PROGRA~1\SYMANT~1\VPTray.exe>  [(Verified)Symantec Corporation]
<Cloneur Expert Monitor><"C:\Program Files\Micro Application\Cloneur Expert\TrueImageMonitor.exe">  [Acronis]
<Acronis Scheduler2 Service><"C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe">  [Acronis]
<SunJavaUpdateSched><"C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe">  [(Verified)"Sun Microsystems, Inc."]
<ZoneAlarm Client><"C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe">  [(Verified)Check Point Software Technologies Ltd.]
<OneCareUI><"C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe">  [(Verified)Microsoft Corporation]
<LogProtect><"C:\Program Files\LogProtect\LogProtect.exe">  [LogProtect]
<LVCOMSX><C:\WINDOWS\system32\LVCOMSX.EXE>  [Logitech Inc.]
<LogitechVideoRepair><C:\Program Files\Logitech\Video\ISStart.exe >  [Logitech Inc.]
<LogitechVideoTray><C:\Program Files\Logitech\Video\LogiTray.exe>  [Logitech Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe>  [(Verified)Microsoft Windows Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}><C:\PROGRA~1\WINDOW~4\MpShHook.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<CDBurn><>  [N/A]
<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
<WinlogonNotify: NavLogon><C:\WINDOWS\system32\NavLogon.dll>  [(Verified)Symantec Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
<WinlogonNotify: WgaLogon><WgaLogon.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
<WinlogonNotify: WRNotifier><WRLogonNTF.dll>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_CURRENT_USER\Control Panel\Desktop]
<SCRNSAVE.EXE><C:\WINDOWS\PHOTOS~1.SCR>  []

==================================
Startup Folders
[BlueSoleil.lnk.disa]
 <C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\BlueSoleil.lnk.disabled --> C:\PROGRA~1\IVTCOR~1\BLUESO~1\BLUESO~1.EXE [IVT Corporation]><N>
[Microsoft Office.lnk.disa]
 <C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk.disabled --> C:\PROGRA~1\MICROS~3\Office10\OSA.EXE [Microsoft Corporation]><N>
[MRU-Blaster Silent Clean]
 <C:\Documents and Settings\Propriétaire\Menu Démarrer\Programmes\Démarrage\MRU-Blaster Silent Clean.lnk --> C:\PROGRA~1\MRU-BL~1\MRUBLA~1.EXE []><N>

==================================
Services
[Acronis Scheduler2 Service / AcrSch2Svc][Running/Auto Start]
 <"C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe"><Acronis>
[BlueSoleil Hid Service / BlueSoleil Hid Service][Running/Auto Start]
 <C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe><N/A>
[Symantec Event Manager / ccEvtMgr][Running/Auto Start]
 <"C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation>
[Symantec Settings Manager / ccSetMgr][Running/Auto Start]
 <"C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe"><Symantec Corporation>
[Symantec AntiVirus Definition Watcher / DefWatch][Running/Auto Start]
 <"C:\Program Files\Symantec AntiVirus\DefWatch.exe"><Symantec Corporation>
[Windows Presentation Foundation Font Cache 3.0.0.0 / FontCache3.0.0.0][Stopped/Manual Start]
 <c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe><Microsoft Corporation>
[Windows CardSpace / idsvc][Stopped/Manual Start]
 <"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"><Microsoft Corporation>
[LexBce Server / LexBceS][Running/Auto Start]
 <C:\WINDOWS\system32\LEXBCES.EXE><Lexmark International, Inc.>
[LiveUpdate / LiveUpdate][Stopped/Manual Start]
 <"C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE"><Symantec Corporation>
[Net.Tcp Port Sharing Service / NetTcpPortSharing][Stopped/Disabled]
 <"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"><Microsoft Corporation>
[NVIDIA Driver Helper Service / NVSvc][Running/Auto Start]
 <C:\WINDOWS\System32\nvsvc32.exe><NVIDIA Corporation>
[SavRoam / SavRoam][Stopped/Manual Start]
 <"C:\Program Files\Symantec AntiVirus\SavRoam.exe"><symantec>
[Symantec Network Drivers Service / SNDSrvc][Stopped/Manual Start]
 <"C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe"><Symantec Corporation>
[SPBBCSvc / SPBBCSvc][Stopped/Manual Start]
 <"C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe"><Symantec Corporation>
[Symantec AntiVirus / Symantec AntiVirus][Running/Auto Start]
 <"C:\Program Files\Symantec AntiVirus\Rtvscan.exe"><Symantec Corporation>
[TrueVector Internet Monitor / vsmon][Running/Auto Start]
 <C:\WINDOWS\system32\ZoneLabs\vsmon.exe -service><Zone Labs, LLC>

==================================
Drivers
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
 <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[Bluetooth Audio Service / BlueletAudio][Running/Manual Start]
 <system32\DRIVERS\blueletaudio.sys><IVT Corporation>
[Bluetooth PAN Network Adapter / BT][Stopped/Manual Start]
 <system32\DRIVERS\btnetdrv.sys><IVT Corporation>
[Bluetooth USB For Bluetooth Service / Btcsrusb][Stopped/Manual Start]
 <System32\Drivers\btcusb.sys><IVT Corporation>
[Bluetooth HID Enumerator / BTHidEnum][Running/Manual Start]
 <system32\DRIVERS\vbtenum.sys><N/A>
[Bluetooth HID Manager Service / BTHidMgr][Running/Boot Start]
 <\SystemRoot\System32\Drivers\BTHidMgr.sys><IVT Corporation>
[CO_Mon / CO_Mon][Stopped/Manual Start]
 <\??\C:\WINDOWS\system32\Drivers\CO_Mon.sys><N/A>
[Dev_UNIDRV / Dev_UNIDRV][Running/System Start]
 <\??\C:\WINDOWS\system32\Drivers\UNIDRV.SYS><TwinSSoft Co.>
[Symantec Eraser Control driver / eeCtrl][Running/System Start]
 <\??\C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys><Symantec Corporation>
[Pilote de la carte EtherLink XL 90XB/C 3Com / EL90XBC][Stopped/Manual Start]
 <System32\DRIVERS\el90xbc5.sys><3Com Corporation>
[EraserUtilRebootDrv / EraserUtilRebootDrv][Running/Manual Start]
 <\??\C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys><Symantec Corporation>
[VIA Rhine-Family Fast-Ethernet Adapter Driver Service / FET5X86V][Running/Manual Start]
 <system32\DRIVERS\fetnd5bv.sys><VIA Technologies, Inc.>
[VIA Rhine Family Fast Ethernet Adapter Driver Service / FETNDISB][Stopped/Manual Start]
 <System32\DRIVERS\fetnd5b.sys><VIA Technologies, Inc.>
[gmer / gmer][Stopped/Manual Start]
 <System32\DRIVERS\gmer.sys><GMER>
[HSFHWBS2 / HSFHWBS2][Running/Manual Start]
 <System32\DRIVERS\HSFHWBS2.sys><Conexant Systems, Inc.>
[HSF_DP / HSF_DP][Running/Manual Start]
 <System32\DRIVERS\HSF_DP.sys><Conexant Systems, Inc.>
[ialm / ialm][Stopped/Manual Start]
 <System32\DRIVERS\ialmnt5.sys><Intel Corporation>
[Logitech USB Monitor Filter / LVUSBSta][Running/Manual Start]
 <system32\drivers\lvusbsta.sys><Logitech Inc.>
[mdmxsdk / mdmxsdk][Running/Auto Start]
 <System32\DRIVERS\mdmxsdk.sys><Conexant>
[MSFWDrv / MSFWDrv][Running/Auto Start]
 <system32\DRIVERS\msfwdrv.sys><Microsoft Corporation>
[MSFWHLPR / MSFWHLPR][Running/System Start]
 <system32\DRIVERS\msfwhlpr.sys><Microsoft Corporation>
[NAVENG / NAVENG][Running/Manual Start]
 <\??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20070424.020\naveng.sys><Symantec Corporation>
[NAVEX15 / NAVEX15][Running/Manual Start]
 <\??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20070424.020\navex15.sys><Symantec Corporation>
[nv / nv][Running/Manual Start]
 <System32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[NVIDIA nForce AGP Bus Filter / nv_agp][Running/Boot Start]
 <\SystemRoot\System32\DRIVERS\nv_agp.sys><NVIDIA Corporation>
[Volume Adapter / pepifilter][Running/Manual Start]
 <system32\DRIVERS\lv302af.sys><Logitech Inc.>
[Padus ASPI Shell / pfc][Running/Manual Start]
 <system32\drivers\pfc.sys><Padus, Inc.>
[QuickCam IM(PID_08A0) / PID_08A0][Running/Manual Start]
 <system32\DRIVERS\LV302AV.SYS><Logitech Inc.>
[Logitech QuickCam IM(PID_PEPI) / PID_PEPI][Stopped/Manual Start]
 <system32\DRIVERS\LV302V32.SYS><N/A>
[Ps2 / Ps2][Running/Manual Start]
 <System32\DRIVERS\PS2.sys><Hewlett-Packard Company>
[Pilote de liaison parallèle directe / Ptilink][Running/Manual Start]
 <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
 <\SystemRoot\System32\DRIVERS\PxHelp20.sys><Sonic Solutions>
[SAVRT / SAVRT][Running/System Start]
 <\??\C:\Program Files\Symantec AntiVirus\savrt.sys><Symantec Corporation>
[SAVRTPEL / SAVRTPEL][Running/System Start]
 <\??\C:\Program Files\Symantec AntiVirus\Savrtpel.sys><Symantec Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
 <System32\DRIVERS\secdrv.sys><N/A>
[SiS315 / SiS315][Stopped/Manual Start]
 <System32\DRIVERS\sisgrp.sys><Silicon Integrated Systems Corporation>
[SiS AGP Filter / SISAGP][Running/Boot Start]
 <\SystemRoot\System32\DRIVERS\SISAGPX.sys><Silicon Integrated Systems Corporation>
[SiSkp / SiSkp][Running/System Start]
 <System32\DRIVERS\srvkp.sys><Silicon Integrated Systems Corporation>
[Acronis Snapshots Manager / snapman][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\snapman.sys><Acronis>
[SPBBCDrv / SPBBCDrv][Stopped/Manual Start]
 <\??\C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys><Symantec Corporation>
[Spyware Terminator Driver 2 / sp_rsdrv2][Running/System Start]
 <\??\C:\Documents and Settings\All Users\Application Data\Spyware Terminator\sp_rsdrv2.sys><>
[srescan / srescan][Running/Boot Start]
 <\SystemRoot\system32\ZoneLabs\srescan.sys><Zone Labs, LLC>
[Alcor Micro Corp - 9360 / SunkFilt][Running/Manual Start]
 <\??\C:\WINDOWS\System32\Drivers\sunkfilt.sys><Alcor Micro Corp.>
[SymEvent / SymEvent][Running/Manual Start]
 <\??\C:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation>
[SYMREDRV / SYMREDRV][Stopped/Manual Start]
 <\SystemRoot\System32\Drivers\SYMREDRV.SYS><Symantec Corporation>
[SYMTDI / SYMTDI][Running/System Start]
 <\SystemRoot\System32\Drivers\SYMTDI.SYS><Symantec Corporation>
[Acronis TrueImage FS Filter / tifsfilter][Running/Auto Start]
 <system32\DRIVERS\tifsfilt.sys><Acronis>
[Acronis TrueImage Backup Archive Explorer / timounter][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\timntr.sys><Acronis>
[Virtual Serial port driver / VComm][Running/Manual Start]
 <system32\DRIVERS\VComm.sys><IVT Corporation>
[Bluetooth VComm Manager Service / VcommMgr][Running/Manual Start]
 <System32\Drivers\VcommMgr.sys><IVT Corporation>
[VIA AGP Filter / viaagp1][Running/Boot Start]
 <\SystemRoot\System32\DRIVERS\viaagp1.sys><VIA Technologies, Inc.>
[viagfx / viagfx][Stopped/Manual Start]
 <System32\DRIVERS\vtmini.sys><Copyright (C) VIA/S3 Graphics, Inc.>
[ViaIde / ViaIde][Running/Boot Start]
 <\SystemRoot\System32\DRIVERS\viaide.sys><Microsoft Corporation>
[vsdatant / vsdatant][Running/System Start]
 <System32\vsdatant.sys><Zone Labs, LLC>
[winachsf / winachsf][Running/Manual Start]
 <System32\DRIVERS\HSF_CNXT.sys><Conexant Systems, Inc.>
[Codec Teletext standard / WSTCODEC][Stopped/Manual Start]
 <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
[Intel(R) Graphics Platform (SoftBIOS) Driver / {6080A529-897E-4629-A488-ABA0C29B635E}][Stopped/Manual Start]
 <system32\drivers\ialmsbw.sys><Intel Corporation>
[Intel(R) Graphics Chipset (KCH) Driver / {D31A0762-0CEB-444e-ACFF-B049A1F6FE91}][Stopped/Manual Start]
 <system32\drivers\ialmkchw.sys><Intel Corporation>

==================================
Browser Add-ons
[Adobe PDF Reader Link Helper]
 {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[]
 {53707962-6F74-2D53-2644-206D7942484F} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, Safer Networking Limited>
[SSVHelper Class]
 {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
 {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll, Sun Microsystems, Inc.>
[]
 {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, N/A>
[Windows Genuine Advantage Validation Tool]
 {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, Microsoft Corporation>
[Symantec AntiVirus scanner]
 {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} <C:\WINDOWS\Downloaded Program Files\avsniff.dll, Symantec Corporation>
[Windows Live Safety Center Base Module]
 {5ED80217-570B-4DA9-BF44-BE107C0EC166} <C:\WINDOWS\Downloaded Program Files\wlscBase.dll, Microsoft Corporation>
[Symantec RuFSI Utility Class]
 {644E432F-49D3-41A1-8DD5-E099162EEEC5} <C:\WINDOWS\Downloaded Program Files\rufsi.dll, Symantec Corporation>
[MUWebControl Class]
 {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, Microsoft Corporation>
[Java Plug-in 1.5.0_10]
 {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll, Sun Microsystems, Inc.>
[MessengerStatsClient Class]
 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} <C:\WINDOWS\Downloaded Program Files\MessengerStatsPAClient.dll, Microsoft Corporation>
[Java Plug-in 1.4.2]
 {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
 {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll, Sun Microsystems, Inc.>
[Shockwave Flash Object]
 {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[Adobe PDF Reader Link Helper]
 {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Web Browser Applet Control]
 {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, N/A>
[Windows Genuine Advantage Validation Tool]
 {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, Microsoft Corporation>
[Windows Media Player]
 {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[XML DOM Document]
 {2933BF90-7B36-11D2-B20E-00C04F983E60} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[Symantec AntiVirus scanner]
 {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} <C:\WINDOWS\Downloaded Program Files\avsniff.dll, Symantec Corporation>
[Tabular Data Control]
 {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, Microsoft Corporation>
[]
 {4F07F79F-087F-42CF-8B36-7A88D06088E9} <C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL, Microsoft Corporation>
[]
 {53707962-6F74-2D53-2644-206D7942484F} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, Safer Networking Limited>
[Shell Name Space]
 {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
[Windows Live Safety Center Base Module]
 {5ED80217-570B-4DA9-BF44-BE107C0EC166} <C:\WINDOWS\Downloaded Program Files\wlscBase.dll, Microsoft Corporation>
[WUWebControl Class]
 {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
[Symantec RuFSI Utility Class]
 {644E432F-49D3-41A1-8DD5-E099162EEEC5} <C:\WINDOWS\Downloaded Program Files\rufsi.dll, Symantec Corporation>
[Windows Media Player]
 {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[MUWebControl Class]
 {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, Microsoft Corporation>
[Windows Media Services DRM Storage object]
 {760C4B83-E211-11D2-BF3E-00805FBE84A6} <C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
[SSVHelper Class]
 {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Microsoft Web Browser]
 {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
[Windows Live Safety Center Control Module]
 {8E5C8BEE-1887-414C-8AC9-7C3951F28476} <C:\Program Files\Windows Live Safety Center\wlscCtrl.dll, Microsoft Corporation>
[Vue HP]
 {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} <c:\Program Files\HP\Digital Imaging\bin\hpdtlk02.dll, Hewlett-Packard Company>
[Symantec RuFSI File information Class]
 {C2FCEF4E-ACE9-11D3-BEBD-00105AA9B6AE} <C:\WINDOWS\Downloaded Program Files\rufsi.dll, Symantec Corporation>
[Symantec RuFSI Registry Information Class]
 {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} <C:\WINDOWS\Downloaded Program Files\rufsi.dll, Symantec Corporation>
[Adobe PDF Reader]
 {CA8A9780-280D-11CF-A24D-444553540000} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroPDF.dll, Adobe Systems, Inc.>
[VIDEO__X_MS_ASF Moniker Class]
 {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Msxml]
 {CFC399AF-D876-11D0-9C10-00C04FC99C8E} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[Shockwave Flash Object]
 {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[]
 {E1771B7F-98BE-407F-BA67-AA16ADA5D0C5} <C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL, Microsoft Corporation>
[XML HTTP Request]
 {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[]
 {F06608C7-1874-4EEA-B3B2-DF99EBB144B8} <C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL, Microsoft Corporation>
[XML DOM Document 3.0]
 {F5078F32-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML DOM Document]
 {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML HTTP]
 {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>

==================================
Running Processes
[PID: 492][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 600][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 624][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\WgaLogon.dll]  [Microsoft Corporation, 1.7.0017.0]
[C:\WINDOWS\system32\NavLogon.dll]  [Symantec Corporation, 10.1.0.401]
[C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2812][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16414 (vista_gdr.070108-1520)]
[C:\WINDOWS\system32\VirtualExpander\VEShellExt.dll]  [Sony Corporation, 1, 0, 0, 0]
[C:\PROGRA~1\WINDOW~2\wmpband.dll]  [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16414 (vista_gdr.070108-1520)]
[C:\PROGRA~1\WINDOW~4\MpShHook.dll]  [Microsoft Corporation, 1.1.1593.0]
[C:\WINDOWS\system32\WPDShServiceObj.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\PortableDeviceTypes.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[C:\Program Files\OpenOffice.org 2.2\program\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\LogProtect\DllHook.dll]  [, 1.1.1.0]
[C:\Program Files\OpenOffice.org 2.2\program\shlxthdl.dll]  [Sun Microsystems, Inc., 8.0.0.9118]
[C:\Program Files\OpenOffice.org 2.2\program\uwinapi.dll]  [Sun Microsystems, Inc., 8.0.0.9107]
[C:\Program Files\OpenOffice.org 2.2\program\stlport_vc7145.dll]  [STLport Consulting, Inc., 4.5.2003.0120]
[C:\Program Files\OpenOffice.org 2.2\program\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
[PID: 2944][C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe]  [Microsoft Corporation, 1.5.1890.34]
[C:\Program Files\Microsoft Windows OneCare Live\WinSSNotifyLib.dll]  [Microsoft Corporation, 1.5.1890.34]
[C:\Program Files\Microsoft Windows OneCare Live\WINSSCOMMON.dll]  [Microsoft Corporation, 1.5.1890.34]
[C:\Program Files\Microsoft Windows OneCare Live\WinSSPlatform.dll]  [Microsoft Corporation, 1.5.1890.34]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16414 (vista_gdr.070108-1520)]
[C:\Program Files\Microsoft Windows OneCare Live\Cert.dll]  [Microsoft Corporation, 1.5.1890.34]
[C:\Program Files\Microsoft Windows OneCare Live\ProvidersClient.DLL]  [Microsoft Corporation, 1.5.1890.34]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[C:\Program Files\Microsoft Windows OneCare Live\Providers.DLL]  [Microsoft Corporation, 1.5.1890.34]
[C:\WINDOWS\system32\VirtualExpander\VEShellExt.dll]  [Sony Corporation, 1, 0, 0, 0]
[C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3096][C:\PROGRA~1\SYMANT~1\VPTray.exe]  [Symantec Corporation, 10.1.0.401]
[C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Fichiers communs\Symantec Shared\ccL40.dll]  [Symantec Corporation, 104.0.8.3]
[C:\Program Files\Symantec AntiVirus\SAVRT32.DLL]  [Symantec Corporation, 9.7.1.4]
[C:\Program Files\Fichiers communs\Symantec Shared\ccSetEvt.dll]  [Symantec Corporation, 104.0.8.3]
[C:\Program Files\Fichiers communs\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 104.0.8.3]
[C:\Program Files\Fichiers communs\Symantec Shared\ccProSub.dll]  [Symantec Corporation, 104.0.8.3]
[C:\Program Files\Fichiers communs\Symantec Shared\ccAlert.dll]  [Symantec Corporation, 104.0.8.3]
[C:\Program Files\Symantec AntiVirus\Cliproxy.dll]  [Symantec Corporation, 10.1.0.401]
[C:\Program Files\Symantec AntiVirus\NAVNTUTL.DLL]  [Symantec Corporation, 10.1.0.401]
[C:\Program Files\Fichiers communs\Symantec Shared\ccSet.dll]  [Symantec Corporation, 104.0.8.3]
[c:\program files\fichiers communs\symantec shared\ssc\ScsComms.dll]  [Symantec Corporation, 10.1.0.401]
[C:\WINDOWS\system32\nts.dll]  [LANDesk Software Ltd., 6.12.0.142 E]
[C:\WINDOWS\system32\cba.dll]  [LANDesk Software Ltd., 6.12.0.142 E]
[C:\WINDOWS\system32\MsgSys.dll]  [LANDesk Software Ltd., 6.12.0.142 E]
[C:\WINDOWS\system32\PDS.DLL]  [LANDesk Software Ltd., 6.12.0.142 E]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[PID: 3108][C:\Program Files\Micro Application\Cloneur Expert\TrueImageMonitor.exe]  [Acronis, 8,0,0,937]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[PID: 3128][C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe]  [Acronis, 1,0,0,212]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[PID: 3160][C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe]  [Sun Microsystems, Inc., 6.0.10.6]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16414 (vista_gdr.070108-1520)]
[C:\Program Files\Java\jre1.6.0_01\bin\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[PID: 3280][C:\Program Files\LogProtect\LogProtect.exe]  [LogProtect, 1.1.3.0]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16414 (vista_gdr.070108-1520)]
[C:\Program Files\LogProtect\DllHook.dll]  [, 1.1.1.0]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16414 (vista_gdr.070108-1520)]
[C:\PROGRA~1\WINDOW~4\MpShHook.dll]  [Microsoft Corporation, 1.1.1593.0]
[PID: 3288][C:\WINDOWS\system32\LVCOMSX.EXE]  [Logitech Inc., 8.4.1.1092]
[C:\WINDOWS\system32\lvmaenum.dll]  [Logitech Inc., 8.4.1.1092]
[C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\lvcomcx.dll]  [Logitech Inc., 8.4.1.1092]
[PID: 3300][C:\Program Files\Logitech\Video\LogiTray.exe]  [Logitech Inc., 8.4.6.1012]
[C:\Program Files\Logitech\Video\QCUI2.dll]  [Logitech Inc., 8.4.6.1012]
[C:\Program Files\Logitech\Video\LTWVC12n.dll]  [LEAD Technologies, Inc., 12.1.0.058]
[C:\WINDOWS\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Logitech\Video\LTFIL12n.DLL]  [LEAD Technologies, Inc., 12.1.0.058]
[C:\Program Files\Logitech\Video\LTKRN12n.dll]  [LEAD Technologies, Inc., 12.1.0.058]
[C:\WINDOWS\system32\MFC71FRA.DLL]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Logitech\Video\LQCUI2.dll]  [Logitech Inc., 8.4.6.1012]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[C:\Program Files\Logitech\Video\LLogTray.dll]  [Logitech Inc., 8.4.6.1012]
[C:\Program Files\Logitech\Video\LTDIS12N.DLL]  [LEAD Technologies, Inc., 12.1.0.058]
[C:\Program Files\Logitech\Video\LTIMG12N.DLL]  [LEAD Technologies, Inc., 12.1.0.058]
[C:\Program Files\Logitech\Video\LTEFX12N.DLL]  [LEAD Technologies, Inc., 12.1.0.058]
[C:\Program Files\Logitech\Video\LFFAX12N.DLL]  [LEAD Technologies, Inc., 12.1.0.020]
[C:\Program Files\Logitech\Video\LFCMP12N.DLL]  [LEAD Technologies, Inc., 12.1.0.058]
[C:\Program Files\Logitech\Video\LFTIF12N.DLL]  [LEAD Technologies, Inc., 12.1.0.058]
[C:\Program Files\Logitech\Video\LFBMP12N.DLL]  [LEAD Technologies, Inc., 12.1.0.058]
[C:\WINDOWS\system32\lvmaenum.dll]  [Logitech Inc., 8.4.1.1092]
[C:\WINDOWS\system32\lvcomcx.dll]  [Logitech Inc., 8.4.1.1092]
[C:\Program Files\Logitech\Video\FXSvrps.dll]  [Logitech Inc., 8.4.6.1012]
[PID: 3352][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3368][C:\WINDOWS\system32\rundll32.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\System32\nvshell.dll]  [NVIDIA Corporation, 6.14.10.4528]
[PID: 3504][C:\Program Files\Logitech\Video\FxSvr2.exe]  [Logitech Inc., 8.4.6.1012]
[C:\WINDOWS\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71FRA.DLL]  [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\lvmaenum.dll]  [Logitech Inc., 8.4.1.1092]
[C:\WINDOWS\system32\lvcomcx.dll]  [Logitech Inc., 8.4.1.1092]
[C:\Program Files\Logitech\Video\FXSvrps.dll]  [Logitech Inc., 8.4.6.1012]
[C:\Program Files\Logitech\Video\MsgLnch.dll]  [Logitech Inc., 8.4.6.1012]
[C:\Program Files\Logitech\Video\QCUI2.dll]  [Logitech Inc., 8.4.6.1012]
[C:\Program Files\Logitech\Video\LTWVC12n.dll]  [LEAD Technologies, Inc., 12.1.0.058]
[C:\Program Files\Logitech\Video\LQCUI2.dll]  [Logitech Inc., 8.4.6.1012]
[C:\Program Files\Logitech\Video\LMsgLnch.dll]  [Logitech Inc., 8.4.6.1012]
[PID: 3540][C:\Program Files\LogProtect\lpwchdg.exe]  [N/A, ]
[PID: 4088][C:\Program Files\Mozilla Firefox\firefox.exe]  [Mozilla Corporation, 1.8.1.3: 2007030919]
[C:\Program Files\Mozilla Firefox\js3250.dll]  [Netscape Communications Corporation, 4.0]
[C:\Program Files\Mozilla Firefox\nspr4.dll]  [Netscape Communications Corporation, 4.6.5]
[C:\Program Files\Mozilla Firefox\xpcom_core.dll]  [Mozilla Foundation, 1.8.1.3: 2007030919]
[C:\Program Files\Mozilla Firefox\plc4.dll]  [Netscape Communications Corporation, 4.6.5]
[C:\Program Files\Mozilla Firefox\plds4.dll]  [Netscape Communications Corporation, 4.6.5]
[C:\Program Files\Mozilla Firefox\smime3.dll]  [Mozilla Foundation, 3.11.5 Basic ECC]
[C:\Program Files\Mozilla Firefox\nss3.dll]  [Mozilla Foundation, 3.11.5 Basic ECC]
[C:\Program Files\Mozilla Firefox\softokn3.dll]  [Mozilla Foundation, 3.11.4 Basic ECC]
[C:\Program Files\Mozilla Firefox\ssl3.dll]  [Mozilla Foundation, 3.11.5 Basic ECC]
[C:\Program Files\Mozilla Firefox\xpcom_compat.dll]  [Mozilla Foundation, 1.8.1.3: 2007030919]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[C:\Program Files\Mozilla Firefox\components\myspell.dll]  [Mozilla Foundation, 1.8.1.3: 2007030919]
[C:\Program Files\Mozilla Firefox\components\jar50.dll]  [Mozilla Foundation, 1.8.1.3: 2007030919]
[C:\Program Files\Mozilla Firefox\freebl3.dll]  [Mozilla Foundation, 3.11.4 Basic ECC]
[C:\Program Files\Mozilla Firefox\nssckbi.dll]  [Mozilla Foundation, 1.62]
[C:\Program Files\Mozilla Firefox\components\spellchk.dll]  [Mozilla Foundation, 1.8.1.3: 2007030919]
[C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\vgiwtuc5.default\extensions\{1650a312-02bc-40ee-977e-83f158701739}\components\FFHook.dll]  [N/A, ]
[C:\Program Files\Mozilla Firefox\xpcom.dll]  [Mozilla Foundation, 1.8.1.3: 2007030919]
[C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\Program Files\LogProtect\DllHook.dll]  [, 1.1.1.0]
[C:\Program Files\Mozilla Firefox\components\xpinstal.dll]  [Mozilla Foundation, 1.8.1.3: 2007030919]
[C:\Program Files\Mozilla Firefox\plugins\NPSWF32.dll]  [, ]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16414 (vista_gdr.070108-1520)]
[C:\WINDOWS\system32\VirtualExpander\VEShellExt.dll]  [Sony Corporation, 1, 0, 0, 0]
[C:\PROGRA~1\WINDOW~4\MpShHook.dll]  [Microsoft Corporation, 1.1.1593.0]
[PID: 1400][C:\Documents and Settings\Propriétaire\Bureau\SREng.EXE]  [Smallfrogs Studio, 2.4.12.806]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16414 (vista_gdr.070108-1520)]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]
[PID: 736][C:\Documents and Settings\Propriétaire\Bureau\SREng.EXE]  [Smallfrogs Studio, 2.4.12.806]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16414 (vista_gdr.070108-1520)]
[C:\WINDOWS\system32\nView.dll]  [NVIDIA Corporation, 6.14.10.4528]
[C:\WINDOWS\system32\NVWRSFR.DLL]  [NVIDIA Corporation, 6.14.10.4528]

==================================
File Associations
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
[D:\]
[AUTORUN]
OPEN=Info.exe folder.htt 480 480

==================================
HOSTS File
N/A

==================================
API HOOK
N/A

==================================
Hidden Process
N/A

==================================

Xeti · le 26 avril 2007

scan panda:

Incident																		Statut						Analyse																																																														 

Spyware:Cookie/Weborama														 No Désinfecté				 C:\Documents and Settings\Propriétaire\Cookies\propriétaire@weborama[2].txt																																													 
Spyware:Cookie/Xiti															 No Désinfecté				 C:\Documents and Settings\Propriétaire\Cookies\propriétaire@xiti[1].txt																																														 
Outil indésirable:Application/HideWindow.A									  No Désinfecté				 C:\hp\bin\FondleWindow.exe																																																									  
Outil indésirable:Application/KillApp.B										 No Désinfecté				 C:\hp\bin\KillIt.exe

Modifié le 26 avril 2007 par Xeti

Xeti · le 26 avril 2007

Attention!! Panda et Avast entrent en conflit, pour pouvoir télécharger le contrôle active x de Panda, il faut que tu désactives le bouclier web d'Avast le temps du scan.

Il n'a pas AVAST.

C'est pas grave

@+

Xeti

Thanos · le 26 avril 2007

salut

Oui, tu as raison, j'aurais dû retirer cette phrase que je laisse lorsque l'utilisateur possède Avast!

Rien de mauvais dans tous ces rapports.

A mon avis, ce message d'erreur est produit par le logiciel LogProtect (logiciel qui permet de surveiller l'activité des enfants sur le net et d'inspecter les mots tapés au clavier).Peut être est ce un bug (je ne l'ai jamais utilisé) du programme.Aussi les auteurs demandent d'expédier le contenu de l'erreur pour qu'ils l'analysent.

Si le problème persiste demande à la personne de désinstaller le logiciel: le message ne doit plus apparaitre.

Il y a d'autres programmes qui peuvent le remplacer si besoin est.

Voilà un lien utile à ce propos > http://forum.zebulon.fr/index.php?showtopic=79816

Fais désinstaller LogProtect et dis moi ce qu'il en est

Modifié le 26 avril 2007 par charles ingals

Connexion

Pas encore inscrit ?

Pc d'un ami [rédolu]

Messages recommandés

Xeti

Lien vers le commentaire

Partager sur d’autres sites

Xeti

Lien vers le commentaire

Partager sur d’autres sites

Thanos

Lien vers le commentaire

Partager sur d’autres sites

Xeti

Lien vers le commentaire

Partager sur d’autres sites

Xeti

Lien vers le commentaire

Partager sur d’autres sites

Xeti

Lien vers le commentaire

Partager sur d’autres sites

Thanos

Lien vers le commentaire

Partager sur d’autres sites

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer