Après avoir été infecté...

Sachab · le 10 décembre 2007

Bonjour,

Après avoir lu ~ Avast! ne vous protège pas ~

Je l'ai désinstallé, et j'ai fait:

Nettoyage avec Ccleaner

Antivirus Antivir -- A détecté: Trojan horse TR/Crypt.FKM.Gen

Desinfection par Antivir.

Relancement d'Antivir -- Rien a signaler.

Antivirus en ligne BitDefender -- Rien a signaler.

Voici un rapport Hijackthis

si vous voyez des choses indésirables, merci de m'aider à les supprimer.

Logfile of SachaHijackThis v1.99.1

Scan saved at 08:37:13, on 10/12/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16544)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\rundll32.exe

C:\Program Files\MGE\PersonalSolutionPac\mgenetsystray.exe

C:\Program Files\Unlocker\UnlockerAssistant.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

C:\Program Files\Comodo\Firewall\CPF.exe

C:\Program Files\GPSoftware\Directory Opus\dopusrt.exe

C:\Program Files\PopupMenu Editeur\Barre de lancement\PopupMenu Bar.exe

C:\Program Files\SpeedFan\speedfan.exe

C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Comodo\Firewall\cmdagent.exe

C:\WINDOWS\System32\dllhost.exe

C:\WINDOWS\system32\ufdsvc.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\wuauclt.exe

C:\WINDOWS\system32\SearchProtocolHost.exe

C:\Program Files\Hijackthis VF\Sachackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zebulon.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local.,;*.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: IE7pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IE7Pro\IE7Pro.dll

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: AL2Spy Class - {DC200356-0864-4F66-8964-5D43A19300F5} - C:\WINDOWS\AUTOLO~1\AL2DLL.dll

O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll

O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

O4 - HKLM\..\Run: [pspNetSystray] C:\Program Files\MGE\PersonalSolutionPac\mgenetsystray.exe

O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\Comodo\Firewall\CPF.exe" /background

O4 - HKCU\..\Run: [$Volumouse$] "C:\Program Files\volumouse\volumouse.exe" /nodlg

O4 - HKCU\..\Run: [DeskCalc] "c:\program files\deskcalc pro\deskcalc.exe" /hide

O4 - HKCU\..\Run: [POP Peeper] "C:\Program Files\POP Peeper\POPPeeper.exe" -min

O4 - HKCU\..\Run: [KeePass Password Safe] "C:\Program Files\KeePass Password Safe\KeePass.exe"

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [Directory Opus Desktop Dblclk] "C:\Program Files\GPSoftware\Directory Opus\dopusrt.exe" /dblclk

O4 - Startup: FastStone Capture.lnk = C:\Program Files\FastStone Capture\FSCapture.exe

O4 - Startup: PopupMenu Bar.lnk = C:\Program Files\PopupMenu Editeur\Barre de lancement\PopupMenu Bar.exe

O4 - Startup: SpeedFan.lnk = C:\Program Files\SpeedFan\speedfan.exe

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O8 - Extra context menu item: Add to EverNote - res://C:\Program Files\EverNote\EverNote\enbar.dll/2000

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: IE7pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IE7Pro\IE7Pro.dll

O9 - Extra 'Tools' menuitem: IE7pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IE7Pro\IE7Pro.dll

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll

O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll

O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Add to EverNote - {A5ABA0BB-F195-40d8-A5E9-0801153E6597} - C:\Program Files\EverNote\EverNote\enbar.dll

O9 - Extra 'Tools' menuitem: Add to EverNote - {A5ABA0BB-F195-40d8-A5E9-0801153E6597} - C:\Program Files\EverNote\EverNote\enbar.dll

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\Program Files\Druide\Antidote\Internet Explorer\7\Antidote K - IE 7.htm (HKCU)

O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\Program Files\Druide\Antidote\Internet Explorer\7\Antidote D - IE 7.htm (HKCU)

O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\Program Files\Druide\Antidote\Internet Explorer\7\Antidote G - IE 7.htm (HKCU)

O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll

O11 - Options group: [iNTERNATIONAL] International*

O15 - Trusted Zone: http://www.secuser.com

O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab

O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab

O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} - https://components.viewpoint.com/MTSInstall...mobile/N411.php

O16 - DPF: {0B79F48A-E8D6-11DB-9283-E25056D89593} (F-Secure Online Scanner 3.1) - http://support.f-secure.com/ols/fscax.cab

O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab

O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab

O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - http://a516.g.akamai.net/f/516/25175/7d/ru...cat-no-eula.cab

O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascinstie.cab

O16 - DPF: {556EEC63-31E2-47C3-BF29-DFF799D2FE04} (Remote Access ActiveX Client) - https://secure.logmein.com/activex/RACtrl.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1123661516546

O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} (FotovistaPhotoUploader.ctrFpu) - http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab

O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab

O20 - Winlogon Notify: LMIinit - C:\WINDOWS\SYSTEM32\LMIinit.dll

O20 - Winlogon Notify: PixVue - C:\WINDOWS\

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\PROGRA~1\A-SQUA~1\a2service.exe

O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: Bonjour Service - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Comodo Application Agent (CmdAgent) - COMODO - C:\Program Files\Comodo\Firewall\cmdagent.exe

O23 - Service: Droppix Service - Droppix - C:\Program Files\Fichiers communs\Droppix\DxService.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: MGE Service module - Unknown owner - C:\Program Files\MGE\PersonalSolutionPac\RunSC.exe

O23 - Service: UFD Command Service (UFDSVC) - Generic - C:\WINDOWS\system32\ufdsvc.exe

O23 - Service: Onduleur (UPS) - Unknown owner - C:\WINDOWS\System32\ups2.exe (file missing)

Merci

Zonk · le 10 décembre 2007

Allô

J'ai des doutes .........comment se porte ton ordi ???

on va vérifier les démarches

Ce que j'écris ci-bas est au cas où tu n'aurais pas fait un pré-nettoyage comme recommandé:

Télécharge ATF Cleaner par Atribune....(petit programme sans danger qui ne s'installe pas.... il ne fait que s'exécuter

....parfois avec des ordis moins performants, le nettoyage est lourd....alors si tu veux alléger la tache, va y deux cases à la fois et fait "Empty selected"......

Nettoyeur ATF

Installe-le sur le bureau.

Double-clique ATF-Cleaner.exe afin de lancer le programme.

Sous l'onglet Main, choisis : Select All (ou deux cases à la fois....mais fait toutes les cases )

Cliquer sur le bouton Empty Selected

Tuto Antivir....si ca peut être utile....à toi de choisir mais assure toi de bien suivre les conseils .....surveille à bien activer la recherche de " rootkits" (cette fonction est souvent oublier par les gens)

http://www.libellules.ch/tuto_antivir.php

http://tutopat.hostonet.org/viewtopic.php?t=2417

Tuto AVG...au besoin

http://www.kachouri.com/tuto/imprimer161.html

applique ceci...le pré-nettoyage si ce n'est pas fait :

http://forum.zebulon.fr/index.php?showtopic=83986

tu devras aller en mode sans échec.....parfois lent à démarrer/fermer...soit très patient.....l'affichage sera altéré, ça reviendra suite à un redémarrage (on parle de supprimer Antivir....il est présentement ton antivirus,tu oublie cette désinstallation)

Tandis que tu es en "sans échec" profite en pour passer tout tes antipestes en ce mode....et souvent le pré-nettoyage n'est pas suffisant pour tout supprimer...ça peut arriver que ça règle les ennuis...donne tout tes rapports (Antivir,HJT,AVG ,etc.........)

@+

édit: désactive TeaTimer durant ces procédures......

Modifié le 10 décembre 2007 par Zonk

Sachab · le 10 décembre 2007

Bonjour,

Je refais tout et je donne les tests demain.

Merci

Zonk · le 10 décembre 2007

Bonjour,

Je refais tout et je donne les tests demain.

Merci

Parfait! ....je devrais être là!

Sachab · le 11 décembre 2007

Bonjour,

Voici le rapport Antivir:

AntiVir PersonalEdition Classic

Report file date: lundi 10 décembre 2007 21:47

Scanning for 965629 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic

Serial number: 0000149996-ADJIE-0001

Platform: Windows XP

Windows version: (Service Pack 2) [5.1.2600]

Username: Sacha

Computer name: VIRE-8Y0VFP11LW

Version information:

BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00

AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29

AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51

LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47

LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20

ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15

ANTIVIR1.VDF : 7.0.0.0 1640448 Bytes 13/09/2007 14:26:55

ANTIVIR2.VDF : 7.0.1.30 1575424 Bytes 30/11/2007 09:52:04

ANTIVIR3.VDF : 7.0.1.66 138752 Bytes 10/12/2007 16:04:04

AVEWIN32.DLL : 7.6.0.40 3064320 Bytes 08/12/2007 09:39:15

AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26

AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17

AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24

AVPACK32.DLL : 7.3.0.15 360488 Bytes 03/08/2007 08:46:00

AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06

AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33

AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18

NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42

RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13

RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37

SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21

Configuration settings for the scan:

Jobname..........................: Complete system scan

Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp

Logging..........................: low

Primary action...................: repair

Secondary action.................: delete

Scan master boot sector..........: on

Scan boot sector.................: on

Boot sectors.....................: G:,

Scan memory......................: on

Process scan.....................: on

Scan registry....................: on

Search for rootkits..............: on

Scan all files...................: All files

Scan archives....................: on

Recursion depth..................: 20

Smart extensions.................: on

Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,

Macro heuristic..................: on

File heuristic...................: high

Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,

Start of the scan: lundi 10 décembre 2007 21:47

Starting search for hidden objects.

The driver could not be initialized.

The scan of running processes will be started

Scan process 'avscan.exe' - '1' Module(s) have been scanned

Scan process 'avcenter.exe' - '1' Module(s) have been scanned

Scan process 'dopusrt.exe' - '1' Module(s) have been scanned

Scan process 'explorer.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'guard.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'lsass.exe' - '1' Module(s) have been scanned

Scan process 'services.exe' - '1' Module(s) have been scanned

Scan process 'winlogon.exe' - '1' Module(s) have been scanned

Scan process 'csrss.exe' - '1' Module(s) have been scanned

Scan process 'smss.exe' - '1' Module(s) have been scanned

13 processes with 13 modules were scanned

Starting master boot sector scan:

Master boot sector HD0

[NOTE] No virus was found!

Master boot sector HD1

[NOTE] No virus was found!

Master boot sector HD2

[NOTE] No virus was found!

Master boot sector HD3

[NOTE] No virus was found!

[WARNING] The boot sector file could not be read!

[WARNING] Error code: 0x0015

Master boot sector HD4

[NOTE] No virus was found!

[WARNING] The boot sector file could not be read!

[WARNING] Error code: 0x0015

Master boot sector HD5

[NOTE] No virus was found!

[WARNING] The boot sector file could not be read!

[WARNING] Error code: 0x0015

Master boot sector HD6

[NOTE] No virus was found!

[WARNING] The boot sector file could not be read!

[WARNING] Error code: 0x0015

Start scanning boot sectors:

Boot sector 'C:\'

[NOTE] No virus was found!

Boot sector 'D:\'

[NOTE] No virus was found!

Boot sector 'E:\'

[NOTE] No virus was found!

Boot sector 'F:\'

[NOTE] No virus was found!

Boot sector 'G:\'

[NOTE] No virus was found!

Starting to scan the registry.

The registry was scanned ( '30' files ).

Starting the file scan:

Begin scan in 'C:\'

C:\pagefile.sys

[WARNING] The file could not be opened!

C:\WINDOWS\system32\drivers\sptd.sys

[WARNING] The file could not be opened!

Begin scan in 'D:\' <Téléchargement>

Begin scan in 'E:\' <MesDonnées>

Begin scan in 'F:\' <Temp Divers>

Begin scan in 'G:\' <Backup>

End of the scan: mardi 11 décembre 2007 03:12

Used time: 5:25:12 min

The scan has been done completely.

26808 Scanning directories

697771 Files were scanned

0 viruses and/or unwanted programs were found

0 Files were classified as suspicious:

0 files were deleted

0 files were repaired

0 files were moved to quarantine

0 files were renamed

2 Files cannot be scanned

697771 Files not concerned

10908 Archives were scanned

2 Warnings

8 Notes

Zonk · le 11 décembre 2007

Tout semble parfait pour Antivir.....

comment se porte ton ordi???....

peux tu me donner le rapport de AVG ???

...ensuite pense à ceci:

http://webscanner.kaspersky.fr/

passe par Internet Explorer....

si kaspersky ne trouve que des cookies traceurs,alors y a des bonnes chances que ton ordi soit guérit!

Les trackings cookies sont la très grande partie du temps de futiles menaces

http://www.malekal.com/cookies_danger.php

mais mérite tout de même ce sort : suppression (tu peux les supprimer en nettoyant ton ou tes navigateurs )

http://www.safer-networking.org/fr/faq/37.html

http://forum.zebulon.fr/index.php?act=ST&a...=38&t=54484

@+

Modifié le 11 décembre 2007 par Zonk

Sachab · le 11 décembre 2007

Bonsoir,

Dabord merci pour votre aide et le temps que vous passer.

Mon ordi se comporte plutot bien, par de ralentissement, pas de pub.

Voici le rapport AVG sauf erreur que des cookies traceur. Je fais cette nuit un scan kaspersky,

et je poste le rapport demain matin.

Bonne nuit.

Rapport AVG:

---------------------------------------------------------

AVG Anti-Spyware - Rapport d'analyse

---------------------------------------------------------

+ Créé à: 18:28:02 11/12/2007

+ Résultat de l'analyse:

:mozilla.82:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.

:mozilla.82:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.

:mozilla.82:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.

:mozilla.82:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.

:mozilla.143:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Adtech : Nettoyé.

:mozilla.143:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Adtech : Nettoyé.

:mozilla.143:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Adtech : Nettoyé.

:mozilla.143:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Adtech : Nettoyé.

:mozilla.66:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.

:mozilla.66:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.

:mozilla.66:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.

:mozilla.66:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.

:mozilla.282:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Bfast : Nettoyé.

:mozilla.282:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Bfast : Nettoyé.

:mozilla.282:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Bfast : Nettoyé.

:mozilla.282:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Bfast : Nettoyé.

:mozilla.139:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.

:mozilla.139:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.

:mozilla.139:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.

:mozilla.139:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.

:mozilla.354:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.354:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.354:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.354:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.61:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.

:mozilla.61:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.

:mozilla.61:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.

:mozilla.61:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.

:mozilla.167:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Falkag : Nettoyé.

:mozilla.167:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Falkag : Nettoyé.

:mozilla.167:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Falkag : Nettoyé.

:mozilla.167:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Falkag : Nettoyé.

:mozilla.228:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Falkag : Nettoyé.

:mozilla.228:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Falkag : Nettoyé.

:mozilla.228:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Falkag : Nettoyé.

:mozilla.228:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Falkag : Nettoyé.

:mozilla.133:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.133:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.133:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.133:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.161:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.161:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.161:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.161:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.176:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.176:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.176:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.176:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.189:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.189:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.189:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.189:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.238:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.238:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.238:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.238:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.242:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.242:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.242:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.242:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.305:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.305:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.305:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.305:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.69:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.69:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.69:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.69:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.295:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.295:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.295:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.295:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.40:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.

:mozilla.40:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.

:mozilla.40:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.

:mozilla.40:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.

:mozilla.365:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.

:mozilla.365:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.

:mozilla.365:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.

:mozilla.365:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.

:mozilla.270:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Revenue : Nettoyé.

:mozilla.270:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Revenue : Nettoyé.

:mozilla.270:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Revenue : Nettoyé.

:mozilla.270:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Revenue : Nettoyé.

:mozilla.311:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.311:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.311:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.311:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.25:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.25:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.25:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.25:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.31:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.31:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.31:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.31:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.102:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.102:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.102:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.102:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.276:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.276:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.276:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.276:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.110:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.

:mozilla.110:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.

:mozilla.110:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.

:mozilla.110:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.

:mozilla.159:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Trafficmp : Nettoyé.

:mozilla.159:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Trafficmp : Nettoyé.

:mozilla.159:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Trafficmp : Nettoyé.

:mozilla.159:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Trafficmp : Nettoyé.

:mozilla.321:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Trafic : Nettoyé.

:mozilla.321:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Trafic : Nettoyé.

:mozilla.321:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Trafic : Nettoyé.

:mozilla.321:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Trafic : Nettoyé.

:mozilla.88:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.

:mozilla.88:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.

:mozilla.88:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.

:mozilla.88:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.

:mozilla.90:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.

:mozilla.90:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.

:mozilla.90:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.

:mozilla.90:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.

:mozilla.113:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.113:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.113:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.113:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.56:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.56:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.56:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.56:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.298:C:\Documents and Settings\Reparation\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.

:mozilla.298:C:\Documents and Settings\Sacha\Application Data\Mozilla\Firefox\Profiles\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.

:mozilla.298:E:\Firefox\Profiles\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.

:mozilla.298:G:\Disque E\E\Firefox\Profiles\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.

Fin du rapport

Sachab · le 12 décembre 2007

Re Bonjour,

J'ai fais un scan en ligne avec Kaspersky.

Résultat:

L'analyse est terminée.

Pas de logiciel malveillant détecté. Les sections analysées sont SAINES.

Le rapport est vide.

Voici le log Hijackthis. Pouvez vous m'indiquer si tout est ok dans ce log.

Merci est bonne journée.

Logfile of HijackThis v1.99.1

Scan saved at 09:37:33, on 12/12/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16544)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\rundll32.exe

C:\Program Files\MGE\PersonalSolutionPac\mgenetsystray.exe

C:\Program Files\Unlocker\UnlockerAssistant.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

C:\Program Files\Comodo\Firewall\CPF.exe

C:\Program Files\GPSoftware\Directory Opus\dopusrt.exe

C:\Program Files\PopupMenu Editeur\Barre de lancement\PopupMenu Bar.exe

C:\Program Files\SpeedFan\speedfan.exe

c:\PROGRA~1\A-SQUA~1\a2service.exe

C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Comodo\Firewall\cmdagent.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\dllhost.exe

C:\WINDOWS\system32\ufdsvc.exe

C:\WINDOWS\System32\vssvc.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\WINDOWS\System32\dllhost.exe

C:\WINDOWS\system32\SearchProtocolHost.exe

C:\Program Files\Hijackthis VF\Sachackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.clubic.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local