Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

LOGFILE HijackThis

pchobby

Par pchobby
dans Analyses et éradication malwares

 Partager

Messages recommandés

pchobby Junior Member

pchobby

Posté(e)
Posté(e)

Bonsoir,

 

Voici le resultat:

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 21:53:38, on 08/03/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.17184)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Sygate\SPF\smc.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe

C:\Program Files\Analog Devices\SoundMAX\Smax4.exe

C:\WINDOWS\System32\igfxtray.exe

C:\WINDOWS\System32\hkcmd.exe

C:\Program Files\Microsoft Hardware\Keyboard\type32.exe

C:\Program Files\HP\hpcoretech\hpcmpmgr.exe

C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Zamaan's Software\Browser Hijack Retaliator

 

3.5\BHR3.5.exe

C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe

C:\PROGRA~1\MESSAG~1\StartMessager.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

C:\Program Files\Orange\Systray\SystrayApp.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\SuperCopier\SuperCopier.exe

C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe

C:\Program Files\ClipTray\ClipTray.exe

C:\WINDOWS\system32\ctfmon.exe

C:\PROGRA~1\FICHIE~1\France Telecom\Shared

 

Modules\AlertModule\0\AlertModule.exe

C:\Program Files\Windows Media Player\WMPNSCFG.exe

C:\Program Files\Google\Google Updater\GoogleUpdater.exe

C:\Program Files\program\soffice.exe

C:\Program Files\OpenOffice.org 2.4\program\soffice.exe

C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN

C:\Program Files\Fichiers communs\Apple\Mobile Device

 

Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\WINDOWS\system32\cisvc.exe

C:\PROGRA~1\FICHIE~1\France Telecom\Shared

 

Modules\FTRTSVC\0\FTRTSVC.exe

C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Alwil Software\Avast4\ashSimpl.exe

C:\WINDOWS\system32\cidaemon.exe

C:\Program Files\Picasa2\PicasaMediaDetector.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

 

http://www.orange.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

 

http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL

 

= http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

 

http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

 

http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName

 

= Liens

R3 - URLSearchHook: Search Class -

 

{08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program

 

Files\Orange\SearchURLHook\SearchPageURL.dll

R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up -

 

{EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O2 - BHO: Adobe PDF Reader Link Helper -

 

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers

 

communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Spybot-S&D IE Protection -

 

{53707962-6F74-2D53-2644-206D7942484F} -

 

C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -

 

C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O2 - BHO: Google Toolbar Notifier BHO -

 

{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program

 

Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll

O2 - BHO: (no name) - {C86AE9C0-0909-4DDC-B661-C1AFB9F5AE53} - (no

 

file)

O3 - Toolbar: Copernic Desktop Search -

 

{C5F7A735-70F1-477F-8C36-6FF3C736017B} - C:\Program Files\Copernic

 

Desktop Search\CopernicDesktopSearchIntegration974.dll

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog

 

Devices\SoundMAX\SMax4PNP.exe

O4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog

 

Devices\SoundMAX\Smax4.exe" /tray

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe

O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [intelliType] "C:\Program Files\Microsoft

 

Hardware\Keyboard\type32.exe"

O4 - HKLM\..\Run: [HP Component Manager] "C:\Program

 

Files\HP\hpcoretech\hpcmpmgr.exe"

O4 - HKLM\..\Run: [HP Software Update] "C:\Program

 

Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"

O4 - HKLM\..\Run: [HPDJ Taskbar Utility]

 

C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe

O4 - HKLM\..\Run: [DeviceDiscovery] C:\Program

 

Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [bHR3.5] C:\Program Files\Zamaan's Software\Browser

 

Hijack Retaliator 3.5\BHR3.5.exe

O4 - HKLM\..\Run: [smcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program

 

Files\Java\jre1.6.0_05\bin\jusched.exe"

O4 - HKLM\..\Run: [MessagerStarter Wanadoo]

 

C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo

O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows

 

Defender\MSASCui.exe" -hide

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers

 

communs\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [systrayORAHSS] "C:\Program

 

Files\Orange\Systray\SystrayApp.exe"

O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program

 

Files\Orange\SessionManager\SessionManager.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program

 

Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program

 

Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program

 

Files\iTunes\iTunesHelper.exe"

O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe"

 

/AUTO

O4 - HKCU\..\Run: [superCopier.exe] C:\Program

 

Files\SuperCopier\SuperCopier.exe

O4 - HKCU\..\Run: [Copernic Desktop Search] "C:\Program Files\Copernic

 

Desktop Search\CopernicDesktopSearch.exe" /tray

O4 - HKCU\..\Run: [ClipTray] C:\Program Files\ClipTray\ClipTray.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program

 

Files\Picasa2\PicasaMediaDetector.exe

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media

 

Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting]

 

"c:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting]

 

"c:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default

 

user')

O4 - Startup: OpenOffice.org 1.1.4.lnk = C:\Program

 

Files\program\quickstart.exe

O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org

 

2.4\program\quickstart.exe

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers

 

communs\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Global Startup: Google Updater.lnk = C:\Program

 

Files\Google\Google Updater\GoogleUpdater.exe

O8 - Extra context menu item: &eBay Search - res://C:\Program

 

Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -

 

C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) -

 

{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program

 

Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra button: (no name) - {11316B13-33F0-4C9F-BD55-09994CCFA8EB} -

 

C:\WINDOWS\System32\shdocvw.dll

O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} -

 

C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer -

 

{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows

 

Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Run WinHTTrack -

 

{36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program

 

Files\WinHTTrack\WinHTTrackIEBar.dll

O9 - Extra 'Tools' menuitem: Launch WinHTTrack -

 

{36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program

 

Files\WinHTTrack\WinHTTrackIEBar.dll

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -

 

C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration -

 

{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -

 

C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} -

 

C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 -

 

{e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network

 

Diagnostic\xpnetdiag.exe

O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} -

 

http://www.wanadoo.fr (file missing) (HKCU)

O14 - IERESET.INF: START_PAGE_URL=http://www.bsi.fr

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine

 

Advantage Validation Tool) -

 

http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class)

 

- C:\Program Files\Yahoo!\Common\yinsthelper.dll

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class)

 

-

 

http://update.microsoft.com/windowsupdate/...en/x86/client/w

 

uweb_site.cab?1120169351609

O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document

 

4.0) - file://C:\TempEI4\EI40_\msxml4.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer

 

Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O17 -

 

HKLM\System\CCS\Services\Tcpip\..\{AE1E4A18-CC57-417C-A2A5-2B657312DC2F

 

}: NameServer = 62.4.16.70,62.4.17.69

O23 - Service: Adobe LM Service - Unknown owner - C:\Program

 

Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program

 

Files\Fichiers communs\Apple\Mobile Device

 

Support\bin\AppleMobileDeviceService.exe

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software

 

- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program

 

Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program

 

Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program

 

Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. -

 

C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France

 

Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared

 

Modules\FTRTSVC\0\FTRTSVC.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program

 

Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision

 

Corporation - C:\Program Files\Fichiers

 

communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. -

 

C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Sygate Personal Firewall (SmcService) - Sygate

 

Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service

 

(default)) - Analog Devices, Inc. - C:\Program Files\Analog

 

Devices\SoundMAX\SMAgent.exe

O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation -

 

C:\Program Files\Fichiers communs\Symantec Shared\Security

 

Center\SymWSC.exe

 

--

End of file - 12034 bytes

 

 

Merci d'avance,

pchobby

mem Junior Member

mem

Posté(e)
Posté(e)
Bonsoir,

 

Voici le resultat:

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 21:53:38, on 08/03/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.17184)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Sygate\SPF\smc.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe

C:\Program Files\Analog Devices\SoundMAX\Smax4.exe

C:\WINDOWS\System32\igfxtray.exe

C:\WINDOWS\System32\hkcmd.exe

C:\Program Files\Microsoft Hardware\Keyboard\type32.exe

C:\Program Files\HP\hpcoretech\hpcmpmgr.exe

C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Zamaan's Software\Browser Hijack Retaliator

 

3.5\BHR3.5.exe

C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe

C:\PROGRA~1\MESSAG~1\StartMessager.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

C:\Program Files\Orange\Systray\SystrayApp.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\SuperCopier\SuperCopier.exe

C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe

C:\Program Files\ClipTray\ClipTray.exe

C:\WINDOWS\system32\ctfmon.exe

C:\PROGRA~1\FICHIE~1\France Telecom\Shared

 

Modules\AlertModule\0\AlertModule.exe

C:\Program Files\Windows Media Player\WMPNSCFG.exe

C:\Program Files\Google\Google Updater\GoogleUpdater.exe

C:\Program Files\program\soffice.exe

C:\Program Files\OpenOffice.org 2.4\program\soffice.exe

C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN

C:\Program Files\Fichiers communs\Apple\Mobile Device

 

Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\WINDOWS\system32\cisvc.exe

C:\PROGRA~1\FICHIE~1\France Telecom\Shared

 

Modules\FTRTSVC\0\FTRTSVC.exe

C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Alwil Software\Avast4\ashSimpl.exe

C:\WINDOWS\system32\cidaemon.exe

C:\Program Files\Picasa2\PicasaMediaDetector.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

 

http://www.orange.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

 

http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL

 

= http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

 

http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

 

http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName

 

= Liens

R3 - URLSearchHook: Search Class -

 

{08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program

 

Files\Orange\SearchURLHook\SearchPageURL.dll

R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up -

 

{EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O2 - BHO: Adobe PDF Reader Link Helper -

 

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers

 

communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Spybot-S&D IE Protection -

 

{53707962-6F74-2D53-2644-206D7942484F} -

 

C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -

 

C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O2 - BHO: Google Toolbar Notifier BHO -

 

{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program

 

Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll

O2 - BHO: (no name) - {C86AE9C0-0909-4DDC-B661-C1AFB9F5AE53} - (no

 

file)

O3 - Toolbar: Copernic Desktop Search -

 

{C5F7A735-70F1-477F-8C36-6FF3C736017B} - C:\Program Files\Copernic

 

Desktop Search\CopernicDesktopSearchIntegration974.dll

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog

 

Devices\SoundMAX\SMax4PNP.exe

O4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog

 

Devices\SoundMAX\Smax4.exe" /tray

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe

O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [intelliType] "C:\Program Files\Microsoft

 

Hardware\Keyboard\type32.exe"

O4 - HKLM\..\Run: [HP Component Manager] "C:\Program

 

Files\HP\hpcoretech\hpcmpmgr.exe"

O4 - HKLM\..\Run: [HP Software Update] "C:\Program

 

Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"

O4 - HKLM\..\Run: [HPDJ Taskbar Utility]

 

C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe

O4 - HKLM\..\Run: [DeviceDiscovery] C:\Program

 

Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [bHR3.5] C:\Program Files\Zamaan's Software\Browser

 

Hijack Retaliator 3.5\BHR3.5.exe

O4 - HKLM\..\Run: [smcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program

 

Files\Java\jre1.6.0_05\bin\jusched.exe"

O4 - HKLM\..\Run: [MessagerStarter Wanadoo]

 

C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo

O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows

 

Defender\MSASCui.exe" -hide

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers

 

communs\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [systrayORAHSS] "C:\Program

 

Files\Orange\Systray\SystrayApp.exe"

O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program

 

Files\Orange\SessionManager\SessionManager.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program

 

Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program

 

Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program

 

Files\iTunes\iTunesHelper.exe"

O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe"

 

/AUTO

O4 - HKCU\..\Run: [superCopier.exe] C:\Program

 

Files\SuperCopier\SuperCopier.exe

O4 - HKCU\..\Run: [Copernic Desktop Search] "C:\Program Files\Copernic

 

Desktop Search\CopernicDesktopSearch.exe" /tray

O4 - HKCU\..\Run: [ClipTray] C:\Program Files\ClipTray\ClipTray.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program

 

Files\Picasa2\PicasaMediaDetector.exe

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media

 

Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting]

 

"c:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting]

 

"c:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default

 

user')

O4 - Startup: OpenOffice.org 1.1.4.lnk = C:\Program

 

Files\program\quickstart.exe

O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org

 

2.4\program\quickstart.exe

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers

 

communs\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Global Startup: Google Updater.lnk = C:\Program

 

Files\Google\Google Updater\GoogleUpdater.exe

O8 - Extra context menu item: &eBay Search - res://C:\Program

 

Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -

 

C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) -

 

{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program

 

Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra button: (no name) - {11316B13-33F0-4C9F-BD55-09994CCFA8EB} -

 

C:\WINDOWS\System32\shdocvw.dll

O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} -

 

C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer -

 

{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows

 

Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Run WinHTTrack -

 

{36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program

 

Files\WinHTTrack\WinHTTrackIEBar.dll

O9 - Extra 'Tools' menuitem: Launch WinHTTrack -

 

{36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program

 

Files\WinHTTrack\WinHTTrackIEBar.dll

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -

 

C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration -

 

{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -

 

C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} -

 

C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 -

 

{e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network

 

Diagnostic\xpnetdiag.exe

O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} -

 

http://www.wanadoo.fr (file missing) (HKCU)

O14 - IERESET.INF: START_PAGE_URL=http://www.bsi.fr

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine

 

Advantage Validation Tool) -

 

http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class)

 

- C:\Program Files\Yahoo!\Common\yinsthelper.dll

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class)

 

-

 

http://update.microsoft.com/windowsupdate/...en/x86/client/w

 

uweb_site.cab?1120169351609

O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document

 

4.0) - file://C:\TempEI4\EI40_\msxml4.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer

 

Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O17 -

 

HKLM\System\CCS\Services\Tcpip\..\{AE1E4A18-CC57-417C-A2A5-2B657312DC2F

 

}: NameServer = 62.4.16.70,62.4.17.69

O23 - Service: Adobe LM Service - Unknown owner - C:\Program

 

Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program

 

Files\Fichiers communs\Apple\Mobile Device

 

Support\bin\AppleMobileDeviceService.exe

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software

 

- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program

 

Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program

 

Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program

 

Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. -

 

C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France

 

Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared

 

Modules\FTRTSVC\0\FTRTSVC.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program

 

Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision

 

Corporation - C:\Program Files\Fichiers

 

communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. -

 

C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Sygate Personal Firewall (SmcService) - Sygate

 

Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service

 

(default)) - Analog Devices, Inc. - C:\Program Files\Analog

 

Devices\SoundMAX\SMAgent.exe

O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation -

 

C:\Program Files\Fichiers communs\Symantec Shared\Security

 

Center\SymWSC.exe

 

--

End of file - 12034 bytes

 

 

Merci d'avance,

pchobby

Invité
Ce sujet ne peut plus recevoir de nouvelles réponses.
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...