S'abonner :  Newsletters    Magazines
Avis sur les produits Avis sur les logiciels Avis sur les jeux Actualités A propos de 01net
151 utilisateurs connectés
Forum de 01net / Sécurité / pc trés lent
page précédente  1 - 2
ou aller à la page
 page suivante

pc trés lent

chdu57 le 06 janvier 2009 à 09h53
bonjour et bonne année a tous

je recherche de l'aide car j'ai mon pc qui est devenu trés lent a l'utilisation
de plus lorsque je l'allume , plusieurs messages d'erreur apparaissent
répondre
chdu57 le 06 janvier 2009 à 18h13
personne pour m'aider SVP
répondre
kum-fu panda le 06 janvier 2009 à 18h18
salut, chdu57

PEUT TU ME FAIR SE SI SVP

http://www.pcentraide.com/index.php?showtopic=796
répondre
chdu57 le 06 janvier 2009 à 18h24
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:23:05, on 06/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\WINDOWS\system32\ps2.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\AOL\1185947804\ee\aolsoftware.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\RamBoost XP\rambxpfr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr9.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://aol.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-fr9.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://fr9.hpwis.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (User 'Default user')
O4 - Global Startup: AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O24 - Desktop Component 0: (no name) - http://ecom.bmwgroup.com/ecom32/proxy.jsp?URL=http%3A%2F%2Flpecomu%3A5864%2Fc(...)
O24 - Desktop Component 1: (no name) - http://f004.mail.caramail.lycos.fr/img/lycos/bigicon/videofile.gif
O24 - Desktop Component 2: (no name) - http://byfiles.storage.msn.com/y1pHrK1j8TzecCyCoERfaPIEFZlu5AYsmgznI9I2h5cGHV(...)
O24 - Desktop Component 3: (no name) - http://www.viamichelin.fr/viamichelin/fra/img/cmn/newvague.jpg

--
End of file - 9608 bytes
répondre
chdu57 le 06 janvier 2009 à 18h26
merci kum-fu panda de m'aider
répondre
kum-fu panda le 06 janvier 2009 à 18h33
RE,fais se si svp

Télécharge SmitfraudFix (de de S!Ri, balltrap34 et moe31) :
http://siri.urz.free.fr/Fix/SmitfraudFix.exe ou http://siri.geekstogo.com/SmitfraudFix.exe

- Enregistre-le sur le bureau

- Double-clique sur SmitfraudFix.exe et choisis l'option 1 puis Entrée

- Un rapport sera généré, poste-le dans ta prochaine réponse.

# process.exe est détecté par certains antivirus comme étant un risktool. Il ne s'agit pas d'un virus mais d'un utilitaire destiné à mettre fin à des processus.
#

** Ne fais l'étape 2 que si on te le demande, on doit d'abord examiner le premier rapport .
répondre
chdu57 le 06 janvier 2009 à 22h28
SmitFraudFix v2.388

Rapport fait à 22:26:45,85, 06/01/2009
Executé à partir de C:\Documents and Settings\Propri‚taire\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\WINDOWS\system32\ps2.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\AOL\1185947804\ee\aolsoftware.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\RamBoost XP\rambxpfr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts


»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Propri‚taire


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Propri‚taire\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\PROPRI~1\Favoris


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="http://ecom.bmwgroup.com/ecom32/proxy.jsp?URL=http%3A%2F%2Flpecomu%3A5864%2Fcosy%3FVEHICLE%3DBR91%26PAINT%3DP0A08%26FABRIC%3DFN5SW%26LANG%3D3%26ANGLE%3D45%26QUALITY%3D100%26WIDTH%3D576%26VIEW%3DEXTERIEUR%26BRAND%3DWBBM%26BKGND%3D0&TIMEOUT=200000"
"SubscribedURL"="http://ecom.bmwgroup.com/ecom32/proxy.jsp?URL=http%3A%2F%2Flpecomu%3A5864%2Fcosy%3FVEHICLE%3DBR91%26PAINT%3DP0A08%26FABRIC%3DFN5SW%26LANG%3D3%26ANGLE%3D45%26QUALITY%3D100%26WIDTH%3D576%26VIEW%3DEXTERIEUR%26BRAND%3DWBBM%26BKGND%3D0&TIMEOUT=200000"
"FriendlyName"=""

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\1]
"Source"="http://f004.mail.caramail.lycos.fr/img/lycos/bigicon/videofile.gif"
"SubscribedURL"="http://f004.mail.caramail.lycos.fr/img/lycos/bigicon/videofile.gif"
"FriendlyName"=""
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\2]
"Source"="http://byfiles.storage.msn.com/y1pHrK1j8TzecCyCoERfaPIEFZlu5AYsmgznI9I2h5cGHV0Padb9ykjE_y9zlzev031"
"SubscribedURL"="http://byfiles.storage.msn.com/y1pHrK1j8TzecCyCoERfaPIEFZlu5AYsmgznI9I2h5cGHV0Padb9ykjE_y9zlzev031"
"FriendlyName"=""

»»»»»»»»»»»»»»»»»»»»»»»» o4Patch
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

o4Patch
Credits: Malware Analysis & Diagnostic
Code: S!Ri



»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri



»»»»»»»»»»»»»»»»»»»»»»»» Agent.OMZ.Fix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

Agent.OMZ.Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» VACFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» RK



»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.1.1

HKLM\SYSTEM\CCS\Services\Tcpip\..\{3093EE5C-7F67-4EE4-9A9D-571A6F570F36}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\..\{ED67B59D-B4B2-4441-8994-72BD11905521}: DhcpNameServer=192.168.30.1 0.0.0.0
HKLM\SYSTEM\CS1\Services\Tcpip\..\{3093EE5C-7F67-4EE4-9A9D-571A6F570F36}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{ED67B59D-B4B2-4441-8994-72BD11905521}: DhcpNameServer=192.168.30.1 0.0.0.0
HKLM\SYSTEM\CS3\Services\Tcpip\..\{3093EE5C-7F67-4EE4-9A9D-571A6F570F36}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\..\{ED67B59D-B4B2-4441-8994-72BD11905521}: DhcpNameServer=192.168.30.1 0.0.0.0
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

répondre
chdu57 le 07 janvier 2009 à 16h25
kum-fu panda peux tu men dire plus svp
répondre
kum-fu panda le 07 janvier 2009 à 16h31
re,
Maintenant
Télécharge et installe MalwareBytes
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

- Mets le à jour en cliquant sur onglet mise à jour

redémarre ton PC en mode sans échec,tapote sur la touche F8 avant apparition du logo Microsoft, sur l'écran suivant déplace toi avec les flèches de direction et choisis Mode sans échec. Choisis ta session habituelle et non la session Administrateur


tu fais Double clique sur le raccourci de MalwareBytes qui est sur le bureau.
Clique sur onglet recherche et dans la nouvelle fenêtre coche « Examen complet »
et clique sur Rechercher

- Une fois le scan terminé, une fenêtre s'ouvre, clique sur sur Ok

- Si MalwareBytes n'a rien détecté, clique sur Ok Un rapport va apparaître ferme-le.

- Si MalwareBytes a détecté des infections, clique sur Afficher les résultats ensuite sur Supprimer la sélection

- Enregistre le rapport sur ton Bureau comme cela il sera plus facile à retrouver, poste moi ensuite ce rapport.

Si MalwareByte a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok

Tutoriel pour MalwareBytes ici :
http://www.malekal.com/tutorial_MalwareBytes_AntiMalware.php
répondre
chdu57 le 07 janvier 2009 à 18h35
Malwarebytes' Anti-Malware 1.32
Version de la base de données: 1627
Windows 5.1.2600 Service Pack 2

07/01/2009 18:23:03
mbam-log-2009-01-07 (18-23-03).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 139979
Temps écoulé: 1 hour(s), 32 minute(s), 23 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 6
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 6
Fichier(s) infecté(s): 24

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\Interface\{85e06077-c824-43d0-a8dc-5efb17bc348a} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8109fd3d-d891-4f80-8339-50a4913ace6f} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{5937cd7f-1c0b-41e1-9075-60ebdf3c7d34} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{90b5a95a-afd5-4d11-b9bd-a69d53d22226} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8109fd3d-d891-4f80-8339-50a4913ace6f} (Adware.Zango) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\MyWay (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\History (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Settings (Adware.MyWay) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\MyWay\myBar\1.bin\MYWAYPLUGINPROXY.CLASS (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER.BMP (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER2.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER3.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER4.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER5.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER6.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00982C8B (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00BC4880 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00BC4BAC.bin (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00BC4EB9.bin (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00BC5169.bin (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\01BDDF30 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\05717826 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\065A8AA7 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0BC0EB14 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0F100EC1 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\122ACE81 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\files.ini (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\History\search (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Settings\prevcfg.htm (Adware.MyWay) -> Quarantined and deleted successfully.
C:\WINDOWS\smdat32a.sys (Rootkit.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\smdat32m.sys (Rootkit.Agent) -> Quarantined and deleted successfully.
répondre
kum-fu panda le 07 janvier 2009 à 18h52
ok,relance un nouveau hisjacthis svp
répondre
chdu57 le 07 janvier 2009 à 18h54
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:54:27, on 07/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\WINDOWS\system32\ps2.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\AOL\1185947804\ee\aolsoftware.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\RamBoost XP\rambxpfr.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr9.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://aol.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-fr9.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://fr9.hpwis.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (User 'Default user')
O4 - Global Startup: AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O24 - Desktop Component 0: (no name) - http://ecom.bmwgroup.com/ecom32/proxy.jsp?URL=http%3A%2F%2Flpecomu%3A5864%2Fc(...)
O24 - Desktop Component 1: (no name) - http://f004.mail.caramail.lycos.fr/img/lycos/bigicon/videofile.gif
O24 - Desktop Component 2: (no name) - http://byfiles.storage.msn.com/y1pHrK1j8TzecCyCoERfaPIEFZlu5AYsmgznI9I2h5cGHV(...)
O24 - Desktop Component 3: (no name) - http://www.viamichelin.fr/viamichelin/fra/img/cmn/newvague.jpg

--
End of file - 9608 bytes
répondre
kum-fu panda le 07 janvier 2009 à 19h15
comment se comporte le pc
répondre
chdu57 le 07 janvier 2009 à 19h16
il rame encore je trouve
répondre
chdu57 le 07 janvier 2009 à 19h37

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2600+ )
BIOS : BIOS Date: 10/15/03 17:00:28 Ver: 08.00.08
USER : Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.7.1098 [VPS 090106-1] 4.7.1098 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:69 Go (Free:55 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:0 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (CD or DVD)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 07/01/2009|19:34 )

--------------------\\ Listing des dossiers dans APPLIC~1

[31/03/2008|13:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[28/10/2007|21:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[31/03/2007|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[28/10/2007|21:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[20/12/2007|20:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[21/08/2006|20:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GTek
[01/01/2003|16:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[01/01/2003|16:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
[22/11/2008|12:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[07/07/2005|21:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[07/01/2009|16:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[31/10/2007|07:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MGS
[28/12/2008|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[04/01/2005|23:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[05/01/2009|17:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NortonInstaller
[15/05/2007|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[01/01/2003|14:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[29/05/2008|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[30/06/2007|11:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

[02/12/2007|10:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[28/10/2007|23:36] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[02/12/2007|10:04] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[31/03/2008|13:04] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[05/01/2005|14:03] C:\DOCUME~1\PROPRI~1\APPLIC~1\AOL
[17/03/2007|22:55] C:\DOCUME~1\PROPRI~1\APPLIC~1\Apple Computer
[19/03/2007|00:14] C:\DOCUME~1\PROPRI~1\APPLIC~1\Google
[21/12/2007|01:13] C:\DOCUME~1\PROPRI~1\APPLIC~1\Grisoft
[05/01/2005|01:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\Help
[13/05/2005|16:19] C:\DOCUME~1\PROPRI~1\APPLIC~1\HP
[01/01/2003|14:51] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[08/10/2006|19:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\IMVU
[01/01/2003|16:42] C:\DOCUME~1\PROPRI~1\APPLIC~1\InterTrust
[28/01/2005|01:50] C:\DOCUME~1\PROPRI~1\APPLIC~1\InterVideo
[26/08/2006|22:28] C:\DOCUME~1\PROPRI~1\APPLIC~1\Lavasoft
[05/01/2005|14:12] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[07/01/2009|16:37] C:\DOCUME~1\PROPRI~1\APPLIC~1\Malwarebytes
[03/06/2008|20:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[07/03/2005|22:52] C:\DOCUME~1\PROPRI~1\APPLIC~1\MSN6
[01/01/2003|16:52] C:\DOCUME~1\PROPRI~1\APPLIC~1\SampleView
[13/02/2005|14:59] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sonic
[24/03/2005|00:10] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sun
[29/05/2006|21:18] C:\DOCUME~1\PROPRI~1\APPLIC~1\TaoUSign
[08/04/2007|12:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\Vso

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[06/01/2009 01:34][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[20/04/2005 22:54][--a------] C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1100 series#1106258362.job
[03/08/2003 11:17][-rah-c---] C:\WINDOWS\tasks\desktop.ini
[07/01/2009 18:30][--ah-----] C:\WINDOWS\tasks\SA.DAT

--------------------\\ Listing des dossiers dans C:\Program Files

[31/03/2008|12:59] C:\Program Files\Adobe
[22/11/2008|01:17] C:\Program Files\ADSL
[28/10/2007|21:51] C:\Program Files\Alwil Software
[28/10/2007|21:18] C:\Program Files\AOL
[22/11/2008|01:17] C:\Program Files\AOL 9.0
[05/01/2005|14:11] C:\Program Files\AOL Compagnon
[22/08/2005|22:03] C:\Program Files\AOL_adsl
[22/11/2008|01:17] C:\Program Files\Apple Software Update
[22/11/2008|01:18] C:\Program Files\ArcSoft
[28/10/2007|21:24] C:\Program Files\AskTBar
[04/01/2005|16:01] C:\Program Files\ATI Technologies
[22/11/2008|01:17] C:\Program Files\AxBx
[22/08/2005|22:03] C:\Program Files\BeWAN ADSL V1.9.0.8
[09/01/2007|16:48] C:\Program Files\Bonjour
[22/11/2008|01:17] C:\Program Files\Boonty
[31/07/2005|15:38] C:\Program Files\BoontyGames
[20/12/2007|20:13] C:\Program Files\CCleaner
[22/11/2008|01:18] C:\Program Files\Championship Manager 99-00
[22/11/2008|01:17] C:\Program Files\ComPlus Applications
[24/11/2006|19:50] C:\Program Files\CTeam
[08/01/2007|23:15] C:\Program Files\Dial-Messenger
[18/11/2008|20:30] C:\Program Files\DivX
[05/01/2005|13:52] C:\Program Files\DrBewan
[28/10/2007|21:17] C:\Program Files\Easy Internet signup
[03/10/2007|19:09] C:\Program Files\Eidos
[02/11/2008|22:08] C:\Program Files\Fichiers communs
[22/11/2008|01:17] C:\Program Files\Google
[02/11/2008|22:08] C:\Program Files\GRAVEUR
[21/12/2007|00:55] C:\Program Files\Grisoft
[29/05/2008|16:33] C:\Program Files\Hewlett-Packard
[04/11/2008|21:40] C:\Program Files\HP
[22/11/2008|01:17] C:\Program Files\Incomplete
[22/11/2008|01:17] C:\Program Files\INFORAD
[22/11/2008|01:17] C:\Program Files\INFORAD_DRIVERS
[02/11/2008|22:08] C:\Program Files\InstallShield Installation Information
[05/01/2009|17:45] C:\Program Files\Internet Explorer
[22/11/2008|01:18] C:\Program Files\InterVideo
[10/01/2006|22:33] C:\Program Files\Java
[01/01/2003|17:00] C:\Program Files\Java Web Start
[09/01/2005|01:25] C:\Program Files\K-Lite Codec Pack
[22/11/2008|01:16] C:\Program Files\Kodak
[28/12/2008|17:07] C:\Program Files\LimeWire
[22/02/2006|13:11] C:\Program Files\LizardTech
[02/03/2006|22:58] C:\Program Files\Macrogaming
[07/01/2009|16:37] C:\Program Files\Malwarebytes' Anti-Malware
[30/09/2008|22:08] C:\Program Files\Messenger
[01/01/2003|14:51] C:\Program Files\microsoft frontpage
[23/04/2008|18:03] C:\Program Files\Microsoft Money
[16/02/2005|19:22] C:\Program Files\Microsoft Office
[01/01/2003|16:17] C:\Program Files\Microsoft Picture It! 7
[01/01/2003|16:16] C:\Program Files\Microsoft Works
[01/01/2003|16:12] C:\Program Files\Microsoft Works Suite 2003
[18/11/2008|20:30] C:\Program Files\MinitelADSL
[28/10/2007|19:35] C:\Program Files\Movie Maker
[09/01/2005|20:10] C:\Program Files\MSN
[11/09/2005|14:52] C:\Program Files\MSN Apps
[01/01/2003|14:46] C:\Program Files\MSN Gaming Zone
[06/12/2007|17:29] C:\Program Files\MSN Messenger
[11/09/2005|14:52] C:\Program Files\MSN Toolbar Suite
[22/11/2008|01:17] C:\Program Files\MSXML 4.0
[04/01/2005|16:01] C:\Program Files\Multimedia Card Reader
[28/10/2007|19:32] C:\Program Files\NetMeeting
[11/07/2007|12:02] C:\Program Files\Neuf
[04/01/2005|23:16] C:\Program Files\Nullsoft
[30/10/2007|21:46] C:\Program Files\Outlook Express
[28/12/2008|18:01] C:\Program Files\Quicksys
[23/11/2008|15:26] C:\Program Files\QuickTime
[07/01/2009|18:40] C:\Program Files\RamBoost XP
[01/03/2007|17:09] C:\Program Files\Real
[22/11/2008|01:18] C:\Program Files\RecordNow!
[01/01/2003|17:04] C:\Program Files\Services en ligne
[06/12/2008|17:49] C:\Program Files\SFR
[01/04/2005|23:38] C:\Program Files\Softal
[18/11/2008|20:30] C:\Program Files\SolidWorks EE 2002-2003
[06/01/2009|18:22] C:\Program Files\Trend Micro
[05/01/2009|17:45] C:\Program Files\Uninstall Information
[29/05/2008|16:46] C:\Program Files\Viewpoint
[20/01/2006|18:25] C:\Program Files\Wanadoo
[28/12/2008|22:39] C:\Program Files\Windows Defender
[28/12/2007|20:20] C:\Program Files\Windows Media Connect 2
[18/11/2008|20:30] C:\Program Files\Windows Media Player
[16/02/2005|19:18] C:\Program Files\Windows Messaging
[28/10/2007|19:32] C:\Program Files\Windows NT
[01/04/2007|16:22] C:\Program Files\WinRAR
[17/09/2006|15:09] C:\Program Files\WMV9_VCM
[01/01/2003|14:51] C:\Program Files\xerox
[22/11/2008|01:17] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[31/03/2008|12:59] C:\Program Files\Fichiers communs\Adobe
[28/10/2007|21:18] C:\Program Files\Fichiers communs\AOL
[05/01/2005|00:32] C:\Program Files\Fichiers communs\aolback
[22/11/2008|01:17] C:\Program Files\Fichiers communs\aolshare
[31/03/2007|18:54] C:\Program Files\Fichiers communs\Designer
[20/01/2005|22:07] C:\Program Files\Fichiers communs\Hewlett-Packard
[01/01/2003|16:06] C:\Program Files\Fichiers communs\HP
[28/10/2007|22:19] C:\Program Files\Fichiers communs\InstallShield
[23/03/2005|23:58] C:\Program Files\Fichiers communs\Java
[22/11/2008|01:17] C:\Program Files\Fichiers communs\Kodak
[22/11/2008|01:17] C:\Program Files\Fichiers communs\Macrovision Shared
[12/06/2007|11:16] C:\Program Files\Fichiers communs\Microsoft Shared
[01/01/2003|14:47] C:\Program Files\Fichiers communs\MSSoap
[22/11/2008|01:17] C:\Program Files\Fichiers communs\NSV
[05/01/2005|00:31] C:\Program Files\Fichiers communs\Nullsoft
[01/01/2003|14:41] C:\Program Files\Fichiers communs\ODBC
[22/11/2008|01:16] C:\Program Files\Fichiers communs\Real
[04/01/2005|23:33] C:\Program Files\Fichiers communs\Services
[01/01/2003|16:33] C:\Program Files\Fichiers communs\Sonic
[01/01/2003|14:41] C:\Program Files\Fichiers communs\SpeechEngines
[30/10/2007|21:46] C:\Program Files\Fichiers communs\System

--------------------\\ Process

( 44 Processes )

iexplore.exe ~ [PID:2788]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-07 19:35:14
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 22

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:4][D:1]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp
[F:13][D:0]-> C:\DOCUME~1\PROPRI~1\Cookies
[F:488][D:4]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 07/01/2009|19:36 - Option : [1]

--------------------\\ Fin du rapport a 19:36:32
répondre
kum-fu panda le 07 janvier 2009 à 19h41
refait lopsd option 2 svp
répondre
chdu57 le 07 janvier 2009 à 19h47

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2600+ )
BIOS : BIOS Date: 10/15/03 17:00:28 Ver: 08.00.08
USER : Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.7.1098 [VPS 090106-1] 4.7.1098 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:69 Go (Free:55 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:0 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (CD or DVD)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 07/01/2009|19:42 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprime! - C:\Program Files\Viewpoint
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[31/03/2008|13:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[28/10/2007|21:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[31/03/2007|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[28/10/2007|21:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[20/12/2007|20:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[21/08/2006|20:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GTek
[01/01/2003|16:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[01/01/2003|16:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
[22/11/2008|12:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[07/07/2005|21:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[07/01/2009|16:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[31/10/2007|07:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MGS
[28/12/2008|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[04/01/2005|23:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[05/01/2009|17:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NortonInstaller
[15/05/2007|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[01/01/2003|14:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[30/06/2007|11:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

[02/12/2007|10:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[28/10/2007|23:36] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[02/12/2007|10:04] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[31/03/2008|13:04] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[05/01/2005|14:03] C:\DOCUME~1\PROPRI~1\APPLIC~1\AOL
[17/03/2007|22:55] C:\DOCUME~1\PROPRI~1\APPLIC~1\Apple Computer
[19/03/2007|00:14] C:\DOCUME~1\PROPRI~1\APPLIC~1\Google
[21/12/2007|01:13] C:\DOCUME~1\PROPRI~1\APPLIC~1\Grisoft
[05/01/2005|01:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\Help
[13/05/2005|16:19] C:\DOCUME~1\PROPRI~1\APPLIC~1\HP
[01/01/2003|14:51] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[08/10/2006|19:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\IMVU
[01/01/2003|16:42] C:\DOCUME~1\PROPRI~1\APPLIC~1\InterTrust
[28/01/2005|01:50] C:\DOCUME~1\PROPRI~1\APPLIC~1\InterVideo
[26/08/2006|22:28] C:\DOCUME~1\PROPRI~1\APPLIC~1\Lavasoft
[05/01/2005|14:12] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[07/01/2009|16:37] C:\DOCUME~1\PROPRI~1\APPLIC~1\Malwarebytes
[03/06/2008|20:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[07/03/2005|22:52] C:\DOCUME~1\PROPRI~1\APPLIC~1\MSN6
[01/01/2003|16:52] C:\DOCUME~1\PROPRI~1\APPLIC~1\SampleView
[13/02/2005|14:59] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sonic
[24/03/2005|00:10] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sun
[29/05/2006|21:18] C:\DOCUME~1\PROPRI~1\APPLIC~1\TaoUSign
[08/04/2007|12:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\Vso

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[06/01/2009 01:34][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[20/04/2005 22:54][--a------] C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1100 series#1106258362.job
[03/08/2003 11:17][-rah-c---] C:\WINDOWS\tasks\desktop.ini
[07/01/2009 18:30][--ah-----] C:\WINDOWS\tasks\SA.DAT

--------------------\\ Listing des dossiers dans C:\Program Files

[31/03/2008|12:59] C:\Program Files\Adobe
[22/11/2008|01:17] C:\Program Files\ADSL
[28/10/2007|21:51] C:\Program Files\Alwil Software
[28/10/2007|21:18] C:\Program Files\AOL
[22/11/2008|01:17] C:\Program Files\AOL 9.0
[05/01/2005|14:11] C:\Program Files\AOL Compagnon
[22/08/2005|22:03] C:\Program Files\AOL_adsl
[22/11/2008|01:17] C:\Program Files\Apple Software Update
[22/11/2008|01:18] C:\Program Files\ArcSoft
[28/10/2007|21:24] C:\Program Files\AskTBar
[04/01/2005|16:01] C:\Program Files\ATI Technologies
[22/11/2008|01:17] C:\Program Files\AxBx
[22/08/2005|22:03] C:\Program Files\BeWAN ADSL V1.9.0.8
[09/01/2007|16:48] C:\Program Files\Bonjour
[22/11/2008|01:17] C:\Program Files\Boonty
[31/07/2005|15:38] C:\Program Files\BoontyGames
[20/12/2007|20:13] C:\Program Files\CCleaner
[22/11/2008|01:18] C:\Program Files\Championship Manager 99-00
[22/11/2008|01:17] C:\Program Files\ComPlus Applications
[24/11/2006|19:50] C:\Program Files\CTeam
[08/01/2007|23:15] C:\Program Files\Dial-Messenger
[18/11/2008|20:30] C:\Program Files\DivX
[05/01/2005|13:52] C:\Program Files\DrBewan
[28/10/2007|21:17] C:\Program Files\Easy Internet signup
[03/10/2007|19:09] C:\Program Files\Eidos
[02/11/2008|22:08] C:\Program Files\Fichiers communs
[22/11/2008|01:17] C:\Program Files\Google
[02/11/2008|22:08] C:\Program Files\GRAVEUR
[21/12/2007|00:55] C:\Program Files\Grisoft
[29/05/2008|16:33] C:\Program Files\Hewlett-Packard
[04/11/2008|21:40] C:\Program Files\HP
[22/11/2008|01:17] C:\Program Files\Incomplete
[22/11/2008|01:17] C:\Program Files\INFORAD
[22/11/2008|01:17] C:\Program Files\INFORAD_DRIVERS
[02/11/2008|22:08] C:\Program Files\InstallShield Installation Information
[05/01/2009|17:45] C:\Program Files\Internet Explorer
[22/11/2008|01:18] C:\Program Files\InterVideo
[10/01/2006|22:33] C:\Program Files\Java
[01/01/2003|17:00] C:\Program Files\Java Web Start
[09/01/2005|01:25] C:\Program Files\K-Lite Codec Pack
[22/11/2008|01:16] C:\Program Files\Kodak
[28/12/2008|17:07] C:\Program Files\LimeWire
[22/02/2006|13:11] C:\Program Files\LizardTech
[02/03/2006|22:58] C:\Program Files\Macrogaming
[07/01/2009|16:37] C:\Program Files\Malwarebytes' Anti-Malware
[30/09/2008|22:08] C:\Program Files\Messenger
[01/01/2003|14:51] C:\Program Files\microsoft frontpage
[23/04/2008|18:03] C:\Program Files\Microsoft Money
[16/02/2005|19:22] C:\Program Files\Microsoft Office
[01/01/2003|16:17] C:\Program Files\Microsoft Picture It! 7
[01/01/2003|16:16] C:\Program Files\Microsoft Works
[01/01/2003|16:12] C:\Program Files\Microsoft Works Suite 2003
[18/11/2008|20:30] C:\Program Files\MinitelADSL
[28/10/2007|19:35] C:\Program Files\Movie Maker
[09/01/2005|20:10] C:\Program Files\MSN
[11/09/2005|14:52] C:\Program Files\MSN Apps
[01/01/2003|14:46] C:\Program Files\MSN Gaming Zone
[06/12/2007|17:29] C:\Program Files\MSN Messenger
[11/09/2005|14:52] C:\Program Files\MSN Toolbar Suite
[22/11/2008|01:17] C:\Program Files\MSXML 4.0
[04/01/2005|16:01] C:\Program Files\Multimedia Card Reader
[28/10/2007|19:32] C:\Program Files\NetMeeting
[11/07/2007|12:02] C:\Program Files\Neuf
[04/01/2005|23:16] C:\Program Files\Nullsoft
[30/10/2007|21:46] C:\Program Files\Outlook Express
[28/12/2008|18:01] C:\Program Files\Quicksys
[23/11/2008|15:26] C:\Program Files\QuickTime
[07/01/2009|18:40] C:\Program Files\RamBoost XP
[01/03/2007|17:09] C:\Program Files\Real
[22/11/2008|01:18] C:\Program Files\RecordNow!
[01/01/2003|17:04] C:\Program Files\Services en ligne
[06/12/2008|17:49] C:\Program Files\SFR
[01/04/2005|23:38] C:\Program Files\Softal
[18/11/2008|20:30] C:\Program Files\SolidWorks EE 2002-2003
[06/01/2009|18:22] C:\Program Files\Trend Micro
[05/01/2009|17:45] C:\Program Files\Uninstall Information
[20/01/2006|18:25] C:\Program Files\Wanadoo
[28/12/2008|22:39] C:\Program Files\Windows Defender
[28/12/2007|20:20] C:\Program Files\Windows Media Connect 2
[18/11/2008|20:30] C:\Program Files\Windows Media Player
[16/02/2005|19:18] C:\Program Files\Windows Messaging
[28/10/2007|19:32] C:\Program Files\Windows NT
[01/04/2007|16:22] C:\Program Files\WinRAR
[17/09/2006|15:09] C:\Program Files\WMV9_VCM
[01/01/2003|14:51] C:\Program Files\xerox
[22/11/2008|01:17] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[31/03/2008|12:59] C:\Program Files\Fichiers communs\Adobe
[28/10/2007|21:18] C:\Program Files\Fichiers communs\AOL
[05/01/2005|00:32] C:\Program Files\Fichiers communs\aolback
[22/11/2008|01:17] C:\Program Files\Fichiers communs\aolshare
[31/03/2007|18:54] C:\Program Files\Fichiers communs\Designer
[20/01/2005|22:07] C:\Program Files\Fichiers communs\Hewlett-Packard
[01/01/2003|16:06] C:\Program Files\Fichiers communs\HP
[28/10/2007|22:19] C:\Program Files\Fichiers communs\InstallShield
[23/03/2005|23:58] C:\Program Files\Fichiers communs\Java
[22/11/2008|01:17] C:\Program Files\Fichiers communs\Kodak
[22/11/2008|01:17] C:\Program Files\Fichiers communs\Macrovision Shared
[12/06/2007|11:16] C:\Program Files\Fichiers communs\Microsoft Shared
[01/01/2003|14:47] C:\Program Files\Fichiers communs\MSSoap
[22/11/2008|01:17] C:\Program Files\Fichiers communs\NSV
[05/01/2005|00:31] C:\Program Files\Fichiers communs\Nullsoft
[01/01/2003|14:41] C:\Program Files\Fichiers communs\ODBC
[22/11/2008|01:16] C:\Program Files\Fichiers communs\Real
[04/01/2005|23:33] C:\Program Files\Fichiers communs\Services
[01/01/2003|16:33] C:\Program Files\Fichiers communs\Sonic
[01/01/2003|14:41] C:\Program Files\Fichiers communs\SpeechEngines
[30/10/2007|21:46] C:\Program Files\Fichiers communs\System

--------------------\\ Process

( 42 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-07 19:44:07
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 22

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:2][D:1]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp
[F:13][D:0]-> C:\DOCUME~1\PROPRI~1\Cookies
[F:523][D:4]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 07/01/2009|19:36 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 07/01/2009|19:45 - Option : [2]

--------------------\\ Fin du rapport a 19:45:01
répondre
chdu57 le 07 janvier 2009 à 20h34

------- Logfile of AD-Remover 1.0.8.6 by C_XX | ONLY XP/VISTA -------

# START at: 20:31:01 | Mer 07/01/2009 | Microsoft® Windows XP™ SP2 (v5.1.2600)
# BOOT MODE: Normal
# OPTION: Scan | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
# PC: NOM-DOWNCO0B3WU | USER: Propri‚taire ( Current user is an administrator)
# DRIVE(S):
- C:\ (File System: NTFS)
- D:\ (File System: FAT32)
- E:\ (File System: CDFS)
# Internet Explorer v7.0.5730.13

# RUNNING PROCESSES: 40

+-----------------------| Boonty/Boonty Games Elements found :

.
HKCU\SOFTWARE\Boonty
HKLM\Software\Boonty
.
C:\Program Files\Boonty
C:\Program Files\Boonty\Components
C:\Program Files\BoontyGames
C:\Program Files\BoontyGames\Components
C:\Program Files\BoontyGames\Components\bureau.url
C:\Program Files\BoontyGames\Components\Joystick.ico
C:\Program Files\BoontyGames\Components\start.url
C:\Documents and Settings\All Users\MENUDM~1\PROGRA~1\BoontyGames
C:\Documents and Settings\All Users\MENUDM~1\PROGRA~1\BoontyGames\Jeux … t‚l‚charger.lnk

+-----------------------| Eorezo Elements found :

.
.

+-----------------------| Everest Poker Elements found :

.
.
C:\Documents and Settings\All Users\MENUDM~1\PROGRA~1\Everest Poker

+-----------------------| FunWebProducts/MyWay/MyWebSearch/MyGlobalSearch Elements found :

.
HKCR\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179}
HKLM\SOFTWARE\Classes\CLSID\{014DA6CD-189F-421a-88CD-07CFE51CFF10}
HKLM\SOFTWARE\Classes\CLSID\{0494D0D2-F8E0-41ad-92A3-14154ECE70AC}
HKLM\SOFTWARE\Classes\CLSID\{0494D0D3-F8E0-41ad-92A3-14154ECE70AC}
HKLM\SOFTWARE\Classes\CLSID\{0494D0D5-F8E0-41ad-92A3-14154ECE70AC}
HKLM\SOFTWARE\Classes\CLSID\{0494D0D7-F8E0-41ad-92A3-14154ECE70AC}
HKLM\SOFTWARE\Classes\CLSID\{0494D0DB-F8E0-41ad-92A3-14154ECE70AC}
HKLM\SOFTWARE\Classes\CLSID\{0494D0DE-F8E0-41ad-92A3-14154ECE70AC}
HKLM\SOFTWARE\Classes\Interface\{0494D0DA-F8E0-41AD-92A3-14154ECE70AC}
HKLM\SOFTWARE\Classes\Interface\{0494D0DC-F8E0-41AD-92A3-14154ECE70AC}
HKLM\SOFTWARE\Classes\Interface\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC}
HKLM\SOFTWARE\Classes\Interface\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC}
HKLM\SOFTWARE\Classes\TypeLib\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}
HKLM\SOFTWARE\MyWay
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\My Way Speedbar Uninstall
HKLM\SOFTWARE\Classes\MyWayToolBar.NetscapeShutdown
HKLM\SOFTWARE\Classes\MyWayToolBar.NetscapeShutdown.1
HKLM\SOFTWARE\Classes\MyWayToolBar.NetscapeStartup
HKLM\SOFTWARE\Classes\MyWayToolBar.NetscapeStartup.1
HKLM\SOFTWARE\Classes\MyWayToolBar.SettingsPlugin
HKLM\SOFTWARE\Classes\MyWayToolBar.SettingsPlugin.1
HKCU\Software\Netscape\Netscape Navigator\Automation Shutdown\\MyWayToolBar.NetscapeShutdown.1
HKCU\Software\Netscape\Netscape Navigator\Automation Startup\\MyWayToolBar.NetscapeStartup.1
.

+-----------------------| It's TV Elements found :

.

+-----------------------| Sweetim Elements found :

.
.
C:\Program Files\Macrogaming
C:\Program Files\Macrogaming\SweetIM
C:\Program Files\Macrogaming\SweetIMBarForIE
C:\Program Files\Macrogaming\SweetIM\conf
C:\Program Files\Macrogaming\SweetIM\data
C:\Program Files\Macrogaming\SweetIM\default.xml
C:\Program Files\Macrogaming\SweetIM\update
C:\Program Files\Macrogaming\SweetIM\conf\adapter.xml
C:\Program Files\Macrogaming\SweetIM\conf\logger.xml
C:\Program Files\Macrogaming\SweetIM\conf\messages.xml
C:\Program Files\Macrogaming\SweetIM\conf\sweetim.xml
C:\Program Files\Macrogaming\SweetIM\conf\sweetimapp.xml
C:\Program Files\Macrogaming\SweetIM\conf\users
C:\Program Files\Macrogaming\SweetIM\conf\users\carlos20054@msn.com
C:\Program Files\Macrogaming\SweetIM\conf\users\main_user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\carlos20054@msn.com\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\carlos20054@msn.com\user_config.xml
C:\Program Files\Macrogaming\SweetIM\data\contentdb
C:\Program Files\Macrogaming\SweetIM\data\contentdb\cache_indx.dat
C:\Program Files\Macrogaming\SweetIM\update\lastversioninfo.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\affid.dat
C:\Program Files\Macrogaming\SweetIMBarForIE\basis.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\Bookmarks_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Cache
C:\Program Files\Macrogaming\SweetIMBarForIE\Email_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Games_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Greetingcards_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Mobile_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Music_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\News_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Shoping_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\SmileySmile.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\SmileyWink.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\sweetimicons.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.crc
C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\version.txt
C:\Program Files\Macrogaming\SweetIMBarForIE\Cache\eec75c2bc0eb13d9bc317ee99170020c.xml

+-----------------------| ADDED SCAN :

+--[HKEY_CURRENT_USER\..\Internet Explorer\MAIN]

Start Page : hxxp://aol.fr/

+--[HKEY_LOCAL_MACHINE\..\Internet Explorer\MAIN]

Start Page : hxxp://go.microsoft.com/fwlink/?LinkId=69157

+---------------------------------------------------------------------------+

[~5545 bytes] - "C:\AD-report-Scan-07.01.2009.log"

# END at: 20:31:35 | 07/01/2009 - Time elapsed: 33.6 seconds

+---------------------------------------------------------------------------+
+------------------------------- [ E.O.F - 107 lines ]
+---------------------------------------------------------------------------+

répondre
kum-fu panda le 07 janvier 2009 à 20h38
re,ok relance adremover option B
répondre
chdu57 le 07 janvier 2009 à 20h40
l'option B me demande ce que je veux supprimer
répondre
kum-fu panda le 07 janvier 2009 à 20h48
OUI TU SUPRIME 1 BOOTY GAMES
3 EVERESTE POKER
6 SWETIM
ENSUITE TU FAIT S POUR SUPRIME LES ELEMENTS
répondre
chdu57 le 07 janvier 2009 à 20h55

------- Logfile of AD-Remover 1.0.8.6 by C_XX | ONLY XP/VISTA -------

*** Limited to ***

Boonty/BoontyGames
Everest Poker
Sweetim

******************

# START at: 20:52:17 | Mer 07/01/2009 | Microsoft® Windows XP™ SP2 (v5.1.2600)
# BOOT MODE: Normal
# OPTION: Clean | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
# PC: NOM-DOWNCO0B3WU | USER: Propri‚taire ( Current user is an administrator)
# DRIVE(S):
- C:\ (File System: NTFS)
- D:\ (File System: FAT32)
- E:\ (File System: CDFS)
# Internet Explorer v7.0.5730.13

# RUNNING PROCESSES: 41

(!) ---- IE start pages reset

+-----------------------| Boonty/Boonty Games Elements Deleted :

.
HKCU\SOFTWARE\Boonty
HKLM\Software\Boonty
.
C:\Program Files\Boonty
C:\Program Files\BoontyGames
C:\Documents and Settings\All Users\MENUDM~1\PROGRA~1\BoontyGames

+-----------------------| Everest Poker Elements Deleted :

.
.
C:\Documents and Settings\All Users\MENUDM~1\PROGRA~1\Everest Poker

+-----------------------| Sweetim Elements Deleted :

.
.
C:\Program Files\Macrogaming

(!) ---- Temp files deleted.
(!) ---- Recycle bin emptied in all drives.


+-----------------------| ADDED SCAN :

+---------------------------------------------------------------------------+


+--[HKEY_CURRENT_USER\..\Internet Explorer\MAIN]

Start Page : hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

+--[HKEY_LOCAL_MACHINE\..\Internet Explorer\MAIN]

Start Page : hxxp://fr.msn.com/

+---------------------------------------------------------------------------+

[~1601 bytes] - "C:\AD-report-Clean-07.01.2009.log"
[~5880 bytes] - "C:\AD-report-Scan-07.01.2009.log"

# END at: 20:53:30 | 07/01/2009 - Time elapsed: 72.7 seconds

+---------------------------------------------------------------------------+
+------------------------------- [ E.O.F - 42 lines ]
+---------------------------------------------------------------------------+

répondre
kum-fu panda le 07 janvier 2009 à 21h06
OK COMMENT SE PORTE MAINTENANT LE PC
ENSUITE TU VA INSTALLER Télécharger Windows XP Service Pack 3 -
CLICK SUR LE LIEN http://www.01net.com/telecharger/windows/Utilitaire/dll_librairies/fiches/439(...)
répondre
chdu57 le 07 janvier 2009 à 21h07
j'avoue que c'est de mieux en mieux
répondre
kum-fu panda le 07 janvier 2009 à 21h16
ENSUITE POURRA TU RELANCER UN NOUVEAU RAPORT HISJACKTHIS SVP
répondre
chdu57 le 07 janvier 2009 à 21h32
oui mais je pense qu'il y en a pour un long moment de téléchargement
répondre
kum-fu panda le 07 janvier 2009 à 21h37
des que tu aura installer sp3 tu me l envoie s il il faut je regaderai demain ok!!
répondre
chdu57 le 07 janvier 2009 à 21h39
je pense que sa serais demain car il m'indique qu'il y en a encore pour 7h de téléchargement
merci
répondre
chdu57 le 08 janvier 2009 à 17h57
bonjour,
je voudrais désinstaller Windows XP Service Pack 3 car depuis que je l'ai mis je n'arrive plus a me connecter a internet et le pc rame encore plus

je voudrais effacer le message d'erreur : easyshare.exe-composant introuvable

peux tu me dire comment revenir a mes parametre initiaux avant que je télecharge Windows XP Service Pack 3
merci
répondre
kum-fu panda le 08 janvier 2009 à 18h16
peut tu me faire un hijacthis
répondre
chdu57 le 08 janvier 2009 à 18h25
je suis désolé je ne peux t'envoyer aucun rapport en ce moment car je n'arrive plus a me connecter a internet depuis que j'ai téléchargé Windows XP Service Pack 3
la je t'écris d'un autre pc
répondre
kum-fu panda le 08 janvier 2009 à 18h29
ok peut tu aller dans demarer configuree les programme par defaut et modifier ou suprime les programmes ensuite tu cherche window service sp3 et tu desintalle
répondre
chdu57 le 08 janvier 2009 à 20h42
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:42:47, on 08/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\WINDOWS\system32\ps2.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\AOL\1185947804\ee\aolsoftware.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\msiexec.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\SoftwareDistribution\Download\be077a0a5c65554c0fa221a5c8a0529b\update\update.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr9.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-fr9.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://fr9.hpwis.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (User 'Default user')
O4 - Global Startup: AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O24 - Desktop Component 0: (no name) - http://ecom.bmwgroup.com/ecom32/proxy.jsp?URL=http%3A%2F%2Flpecomu%3A5864%2Fc(...)
O24 - Desktop Component 1: (no name) - http://f004.mail.caramail.lycos.fr/img/lycos/bigicon/videofile.gif
O24 - Desktop Component 2: (no name) - http://byfiles.storage.msn.com/y1pHrK1j8TzecCyCoERfaPIEFZlu5AYsmgznI9I2h5cGHV(...)
O24 - Desktop Component 3: (no name) - http://www.viamichelin.fr/viamichelin/fra/img/cmn/newvague.jpg

--
End of file - 9691 bytes
répondre
kum-fu panda le 08 janvier 2009 à 20h52
ok, c et revenu bon on va le faire autrement tu va aller dans demarer ensuite tous les programme et la windowx update la tu fait une recherche de mise a jour et si il te propose de telecharger le service pack 3 telecharge le et la sa marchera pour internet explorer , tien moi au courant
répondre
chdu57 le 08 janvier 2009 à 23h22
j'ai du a nouveau enlevé la mise a jour car sinon je ne peux plus me connecter a internet
répondre
chdu57 le 08 janvier 2009 à 23h28
les message d'erreur que j'essaie d'effacer depuis le début sont
1) windowname : easyshare.exe - composant introuvable
2) Easyshare one or more system DLL's could not be loaded : ESApp.dll
3) Easyshare could not boot the application !
répondre
kum-fu panda le 09 janvier 2009 à 06h19
re,il te reste du symantec sur ta becanne il faut le desinstaller

prend se lien http://service1.symantec.com/SUPPORT/INTER/tsgeninfointl.nsf/fr_docid/2005041(...)
répondre
kum-fu panda le 09 janvier 2009 à 06h47
je pense que sa vient de la tes messages . tien je te donne le chemin pour desinstaller manuellement C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe

ensuite tu me dit si il te le remet le message mai normalement non!!
répondre
page précédente  1 - 2
ou aller à la page
 page suivante


PRODUITS

TÉLÉCHARGER - LOGICIELS

JEUX VIDÉOS

LOISIRS

01NET PRO

AVIS ET COMMENTAIRES

A PROPOS DE 01NET

Forum de 01net / Sécurité / pc trés lent
publicité
Livre
Plongée dans les archives secrètes de la Brigade Mondaine.

Service 01net
Newsletters 01net
abonnez vous gratuitement !
Actus
Voir le dernier numéro
Entreprise
Voir le dernier numéro
  
01Informatique
01 INFORMATIQUE
L'hebdo de référence des décideurs informatiques.
Micro Hebdo
MICRO HEBDO
L'hebdo qui vous simplifie la micro
et Internet.
L'Ordinateur Individuel
L'ORDINATEUR INDIVIDUEL
Le mensuel informatique qui vous informe et vous conseille.
Nous contacter  |  Charte de confiance  |  Voir notice légale

01net.  -  01men  -  RMC  -  BFM Radio  -  BFM TV  -  TousLesPodcasts  -  01informatique.fr  -  Association RMC-BFM
Tous droits réservés © 1999 - 2009 Internext - 01net.