|
|
Auteur
|
Message
|
1
2
|
|
|
Blablabla !
|
|
|
Bonjour Super Maman 
On se serait pas déjà croisé ?
Télécharge Deckard's System Scanner (DSS) sur le bureau
>>> http://www.techsupportforum.com/sectools/Deckard/dss.exe
ou
>>> http://deckard.geekstogo.com/dss.exe
Ferme toutes les fenêtres et toutes les applications en cours.
=> Double clique sur dss.exe pour lancer l'outil.
=> Clique sur OK à chaque fois que cela sera demandé.
=> L'analyse finie, un fichier texte s'affichera (main.txt).
Enregistre ce rapport sur le bureau.
=> Ferme cette fenêtre.
Il y a 2 rapports, poste moi seulement le rapport main.txt de DSS dans ta prochaine réponse.
Note : le rapport se trouve aussi à cet emplacement C:\Deckard\System Scanner\main.txt
Une aide à l'utilisation
http://bibou0007.com/outils-specifiques-f78/tutorial-deckard-s-system-scanner(...)
|
|
|
|
|
Oui c'est vrai j'ai fais appel à vous il y a quelques mois pour le pc de mon fils et j'avoue avoir été vraiment contente de vous trouver 
Voici le rapport demandé, merci beaucoup Accass
Deckard's System Scanner v20071014.68
Run by gilda on 2008-05-25 13:24:18
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
Successfully created a Deckard's System Scanner Restore Point.
-- Last 5 Restore Point(s) --
94: 2008-05-25 11:24:26 UTC - RP547 - Deckard's System Scanner Restore Point
93: 2008-05-24 10:17:50 UTC - RP546 - Point de vérification système
92: 2008-05-23 07:37:27 UTC - RP545 - Software Distribution Service 3.0
91: 2008-05-22 13:09:19 UTC - RP544 - Point de vérification système
90: 2008-05-21 09:13:08 UTC - RP543 - Software Distribution Service 3.0
-- First Restore Point --
1: 2008-02-28 12:31:48 UTC - RP454 - Point de vérification système
Backed up registry hives.
Performed disk cleanup.
-- HijackThis Clone ------------------------------------------------------------
Emulating logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2008-05-25 13:26:18
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\hp\KBD\kbd.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\system\hpsysdrv.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\RTHDCPL.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\arservice.exe
C:\WINDOWS\ehome\ehrecvr.exe
C:\WINDOWS\ehome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
C:\Program Files\Wireless 802.11g Monitor\WLService.exe
C:\Program Files\Wireless 802.11g Monitor\WLanCfgG.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\searchindexer.exe
C:\WINDOWS\ehome\ehmsas.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\gilda\Local Settings\Temporary Internet Files\Content.IE5\4RWVVSCO\dss[1].exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c(...)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.com/search?q=%s
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://picasa.google.com/support/bin/request.py?contact_type=uninstall&hl(...)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&(...)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\GoogleToolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\GoogleToolbar3.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [AliceSAV] C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE
O4 - Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - http://ipgweb.cce.hp.com/rdqemea/downloads/sysinfo.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {8F48147B-78D9-40F9-ACC0-BDDE59B246F4} (AccountHelper Class) - http://abonnement.aliceadsl.fr/configurateur/AccountHelper.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (MediaBar) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
O18 - Protocol: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O20 - Winlogon Notify: AtiExtEvent - C:\WINDOWS\system32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain - C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet - C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll - C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: ScCertProp - C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule - C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: SensLogn - C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv - C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: wlballoon - C:\WINDOWS\system32\wlnotify.dll
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O21 - SSODL: system32 - {CC74F4C9-28F9-4174-9FF0-E83F6432F229} - sysprinters.dll (file missing)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\ati2evxx.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: R54G Wireless Service - Unknown owner - C:\Program Files\Wireless 802.11g Monitor\WLService.exe
--
End of file - 17393 bytes
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R0 bb-run (Promise driver accelerator) - c:\windows\system32\drivers\bb-run.sys <Not Verified; Promise Technology, Inc.; Promise® Disk Accelerator>
R0 ftsata2 - c:\windows\system32\drivers\ftsata2.sys <Not Verified; Promise Technology, Inc.; Promise FastTrak Series Driver>
R1 DVDVRRdr_xp - c:\windows\system32\drivers\dvdvrrdr_xp.sys <Not Verified; Windows (R) 2000 DDK provider; Windows (R) 2000 DDK driver>
R1 SSHDRV76 - c:\windows\system32\drivers\sshdrv76.sys <Not Verified; ; ProtectCD>
R2 MDC8021X (AEGIS Protocol (IEEE 802.1x) v2.3.1.9) - c:\windows\system32\drivers\mdc8021x.sys <Not Verified; Meetinghouse Data Communications; AEGIS Client 2.3.1.9>
R3 aracpi - c:\windows\system32\drivers\aracpi.sys <Not Verified; Microsoft Corporation; Microsoft AR ACPI Driver>
R3 arhidfltr (MS Ar HID Filter Driver) - c:\windows\system32\drivers\arhidfltr.sys <Not Verified; Microsoft Corporation; Microsoft AR Human Interface Device Filter Driver>
R3 arkbcfltr (Microsoft PS2 Keyboard Filter) - c:\windows\system32\drivers\arkbcfltr.sys <Not Verified; Microsoft Corporation; Microsoft AR PS/2 Keyboard Filter Driver>
R3 armoucfltr (Microsoft PS2 Mouse Filter) - c:\windows\system32\drivers\armoucfltr.sys <Not Verified; Microsoft Corporation; Microsoft AR PS/2 Mouse Filter Driver>
R3 ARPolicy - c:\windows\system32\drivers\arpolicy.sys <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
R3 Ps2 - c:\windows\system32\drivers\ps2.sys <Not Verified; Hewlett-Packard Company; Hewlett-Packard Company PS2 SYS>
S3 61883 (Pilote d'unité 61883) - c:\windows\system32\drivers\61883.sys <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
S3 Ad-Watch Connect Filter (Ad-Watch Connect Kernel Filter) - c:\windows\system32\drivers\nsdriver.sys <Not Verified; Lavasoft AB; Ad-Watch Connections>
S3 Avc (Périphérique AVC) - c:\windows\system32\drivers\avc.sys <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
S3 AVCSTRM (AVC Streaming Filter Driver) - c:\windows\system32\drivers\avcstrm.sys <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
S3 ddxgb - c:\docume~1\gilda\locals~1\temp\ddxgb.sys (file missing)
S3 MSDV (Microsoft DV Camera and VCR) - c:\windows\system32\drivers\msdv.sys <Not Verified; Microsoft Corporation; Microsoft(R) Windows(R) Operating System>
S3 MSTAPE (Microsoft AV/C Tape Subunit Device) - c:\windows\system32\drivers\mstape.sys <Not Verified; Microsoft Corporation; Microsoft(R) Windows(R) Operating System>
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 AntiVirScheduler (AntiVir PersonalEdition Classic Scheduler) - "c:\program files\avira\antivir personaledition classic\sched.exe" <Not Verified; Avira GmbH; AntiVir Workstation>
R2 Apple Mobile Device - "c:\program files\fichiers communs\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>
R2 ARSVC - c:\windows\arservice.exe <Not Verified; Microsoft; ARSVC Application>
R2 R54G Wireless Service - c:\program files\wireless 802.11g monitor\wlservice.exe
S2 LiveUpdate Notice Ex (LiveUpdate Notice Service Ex) - "c:\program files\fichiers communs\symantec shared\ccsvchst.exe" /h cccommon (file missing)
S3 Boonty Games - "c:\program files\fichiers communs\boonty shared\service\boonty.exe" <Not Verified; BOONTY; Boonty Games>
S3 MHN - c:\windows\system32\svchost.exe -k netsvcs <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
S3 WLSetupSvc (Windows Live Setup Service) - "c:\program files\windows live\installer\wlsetupsvc.exe" <Not Verified; Microsoft Corporation; Windows Live installer>
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Scheduled Tasks -------------------------------------------------------------
2008-05-25 13:04:00 254 --a------ C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job
2008-05-25 11:02:33 330 --ah----- C:\WINDOWS\Tasks\MP Scheduled Scan.job
2008-05-23 17:15:00 408 --a------ C:\WINDOWS\Tasks\Maintenance en 1 clic.job
2008-05-19 19:00:02 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
-- Files created between 2008-04-25 and 2008-05-25 -----------------------------
2008-05-25 10:59:34 0 dr-h----- C:\Documents and Settings\gilda\Recent
2008-05-02 18:51:36 0 d-------- C:\Logs
2008-04-30 23:12:18 59264 --a------ C:\WINDOWS\system32\drivers\USBAUDIO.sys <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
-- Find3M Report ---------------------------------------------------------------
2008-05-24 10:11:50 0 d-------- C:\Documents and Settings\gilda\Application Data\SecondLife
2008-05-21 13:38:48 13240 --a------ C:\Documents and Settings\gilda\Application Data\wklnhst.dat
2008-05-20 12:10:54 0 d-------- C:\Documents and Settings\gilda\Application Data\LimeWire
2008-05-04 22:43:38 0 d-------- C:\Program Files\eMule
2008-05-04 21:39:38 196 --a------ C:\Documents and Settings\gilda\Application Data\G-Force Prefs (WindowsMediaPlayer).txt
2008-05-02 18:57:17 0 d-------- C:\Program Files\World of Warcraft
2008-04-24 21:32:07 0 d-------- C:\Program Files\Picasa2
2008-04-13 04:03:27 0 d-------- C:\Program Files\Realtek
2008-04-13 04:03:22 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-04-13 04:01:35 315392 --a------ C:\WINDOWS\HideWin.exe <Not Verified; Realtek Semiconductor Corp.; HD Audio Hide windows program>
2008-04-11 03:02:56 501138 --a------ C:\WINDOWS\system32\perfh00C.dat
2008-04-11 03:02:56 87668 --a------ C:\WINDOWS\system32\perfc00C.dat
2008-04-09 22:03:20 0 d-------- C:\Program Files\SecondLife
2008-04-05 10:08:36 0 d-------- C:\Program Files\LimeWire
2008-04-04 09:51:05 0 d-------- C:\Program Files\Circle Developement
2008-04-04 09:51:02 0 d-------- C:\Program Files\Messenger Plus! Live
2008-04-01 21:19:20 105220 --a------ C:\WINDOWS\hpqins16.dat
2008-03-31 09:06:50 0 d-------- C:\Documents and Settings\gilda\Application Data\uTorrent
2008-03-26 16:14:12 16859136 --a------ C:\WINDOWS\RTHDCPL.exe <Not Verified; Realtek Semiconductor Corp.; Realtek HD Audio Sound Effect Manager>
2008-03-20 10:09:22 1845376 --a------ C:\WINDOWS\system32\win32k.sys <Not Verified; Microsoft Corporation; Système d'exploitation Microsoft® Windows®>
2008-03-09 16:46:59 43520 --a------ C:\WINDOWS\system32\CmdLineExt03.dll
2008-03-05 18:07:48 520192 --a------ C:\WINDOWS\RtlExUpd.dll <Not Verified; Realtek Semiconductor Corp.; RtlExUpd Dynamic Link Library>
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [05/08/2005 20:34]
"ftutil2"="ftutil2.dll" [07/06/2004 14:05 C:\WINDOWS\system32\ftutil2.dll]
"AlwaysReady Power Message APP"="ARPWRMSG.EXE" [03/08/2005 02:15 C:\WINDOWS\arpwrmsg.exe]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [22/07/2005 22:14]
"Symantec PIF AlertEng"="C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [12/03/2007 10:22]
"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [24/04/2008 21:30]
"KBD"="C:\HP\KBD\KBD.EXE" [03/02/2005 01:44]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [05/04/2006 04:05]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [07/05/1998 18:04]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [22/02/2008 05:25]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [19/02/2006 02:41]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [03/11/2006 19:20]
"AliceSAV"="C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe" [16/12/2005 17:57]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe" []
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [11/01/2008 23:16]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [17/04/2008 12:55]
"RTHDCPL"="RTHDCPL.EXE" [26/03/2008 16:14 C:\WINDOWS\RTHDCPL.exe]
"Alcmtr"="ALCMTR.EXE" [03/05/2005 18:43 C:\WINDOWS\Alcmtr.exe]
"Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [26/02/2008 03:23]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [10/08/2004 13:00]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [28/01/2008 12:43]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [18/10/2007 12:34]
"ccleaner"="C:\Program Files\CCleaner\CCleaner.exe" [23/04/2008 18:19]
C:\Documents and Settings\gilda\Menu D‚marrer\Programmes\D‚marrage\
Pin.lnk - C:\hp\bin\CLOAKER.EXE [27/10/2006 16:30:44]
PinMcLnk.lnk - C:\hp\bin\cloaker.exe [27/10/2006 16:30:44]
C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [19/02/2006 04:21:22]
Outil de mise … jour Google.lnk - C:\Program Files\Google\Google Updater\GoogleUpdater.exe [25/05/2007 16:02:21]
Windows Desktop Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe [05/02/2007 16:40:46]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
"DisableCAD"=1 (0x1)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [05/02/2007 16:39 294400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"system32"= {CC74F4C9-28F9-4174-9FF0-E83F6432F229} - sysprinters.dll [ ]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{75b90cc0-a48c-11db-9e3e-00192156d387}]
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{845216de-1865-11dd-a0e3-00192156d387}]
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e54ce067-852f-11dc-a003-00192156d387}]
Auto\command- pagefile.pif
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL pagefile.pif
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{E4066320-E4AE-11CF-B1B0-00AA00BBAD66}]
rundll32.exe advpack.dll,LaunchINFSection %SystemRoot%\INF\fpxpress.inf,PerUserRemove
-- Hosts -----------------------------------------------------------------------
127.0.0.1 007guard.com
127.0.0.1 www.007guard.com
127.0.0.1 008i.com
127.0.0.1 008k.com
127.0.0.1 www.008k.com
127.0.0.1 00hq.com
127.0.0.1 www.00hq.com
127.0.0.1 010402.com
127.0.0.1 032439.com
127.0.0.1 www.032439.com
8335 more entries in hosts file.
-- End of Deckard's System Scanner: finished at 2008-05-25 13:26:55 ------------
|
|
Blablabla !
|
|
|
Ok
Télécharge et utilise LopSD (de Eric-71 & AngelDark)
http://eric.71.mespages.googlepages.com/LopSD.exe
=> Double-clique sur Lop S&D.exe pour lancer l'installation,
=> Puis double-clique sur le raccourci Lop S&D présent sur le Bureau,
=> Attention Désactive les protections résidentes : Antivirus, antispywares etc...
=> Sélectionne la langue souhaitée , puis choisis l'option 1 (Recherche)
=> Le bloc note va s'ouvrir avec le résultat de la recherche , poste le rapport dans ta prochaine réponse s'il te plait. Le rapport se trouve aussi ici C:\LopR.txt
N'oublie pas de réactiver tes protections résidentes
Si le Bureau ne réapparaît pas :
=> presse Ctrl + Alt + Suppr
=> Onglet Fichier , Nouvelle tâche
=> tape explorer et valide
Une aide à l'utilisation
>>> http://bibou0007.com/outils-specifiques-f78/tutorial-lop-sd-t956.htm
|
|
|
|
|
voici le rapport:
-----------------------[ Lop S&D 4.2.0-9 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : gilda ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 25/05/2008 | 14:19:26,87 ] [ PC : NOM-TEMPOGILDA ]
[ MAJ : 16-05-2008 | 23:35 ]
-------------[ Listing des dossiers dans Application Data ]------------
[15/02/2008|23:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
[07/02/2008|10:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/09/2007|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[05/06/2007|09:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[14/02/2008|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[21/06/2007|09:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[20/03/2007|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Broderbund Software
[18/06/2007|22:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BufferZone
[10/10/2005|15:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[18/06/2007|23:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[24/05/2008|15:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[27/10/2006|17:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[09/01/2007|16:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[01/04/2008|21:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[27/10/2006|17:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[22/02/2008|11:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[12/09/2007|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LUUnInstall.LiveUpdate
[10/11/2007|23:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[01/11/2007|18:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/09/2007|09:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[21/05/2007|02:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[07/07/2007|11:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[10/01/2007|11:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Roxio
[27/10/2006|16:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[27/10/2006|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[25/02/2008|10:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[12/09/2007|10:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[06/11/2007|14:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[05/07/2007|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[21/05/2007|10:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[04/06/2007|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[04/07/2007|13:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[20/11/2007|10:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[30/10/2007|13:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[10/10/2005|15:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[15/11/2005|04:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[27/10/2006|17:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[27/10/2006|17:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[18/01/2008|00:19] C:\DOCUME~1\gilda\APPLIC~1\Adobe
[05/06/2007|09:47] C:\DOCUME~1\gilda\APPLIC~1\Apple Computer
[05/07/2007|07:34] C:\DOCUME~1\gilda\APPLIC~1\Azureus
[02/06/2007|01:39] C:\DOCUME~1\gilda\APPLIC~1\BitTorrent
[10/10/2005|15:24] C:\DOCUME~1\gilda\APPLIC~1\desktop.ini
[02/06/2007|08:46] C:\DOCUME~1\gilda\APPLIC~1\DivX
[18/01/2008|01:05] C:\DOCUME~1\gilda\APPLIC~1\FileZilla
[04/05/2008|21:39] C:\DOCUME~1\gilda\APPLIC~1\G-Force Prefs (WindowsMediaPlayer).txt
[20/07/2007|02:02] C:\DOCUME~1\gilda\APPLIC~1\Google
[06/06/2007|19:18] C:\DOCUME~1\gilda\APPLIC~1\Help
[07/06/2007|09:31] C:\DOCUME~1\gilda\APPLIC~1\HP
[08/06/2007|07:57] C:\DOCUME~1\gilda\APPLIC~1\HPQ
[15/11/2005|04:22] C:\DOCUME~1\gilda\APPLIC~1\Identities
[19/11/2007|15:36] C:\DOCUME~1\gilda\APPLIC~1\Image Zone Express
[16/07/2007|16:29] C:\DOCUME~1\gilda\APPLIC~1\Leadertech
[20/05/2008|12:10] C:\DOCUME~1\gilda\APPLIC~1\LimeWire
[01/06/2007|17:22] C:\DOCUME~1\gilda\APPLIC~1\Macromedia
[24/10/2007|00:17] C:\DOCUME~1\gilda\APPLIC~1\Media Player Classic
[20/04/2008|11:44] C:\DOCUME~1\gilda\APPLIC~1\Microsoft
[22/03/2008|20:46] C:\DOCUME~1\gilda\APPLIC~1\Mozilla
[04/06/2007|10:32] C:\DOCUME~1\gilda\APPLIC~1\MSNInstaller
[17/01/2008|02:18] C:\DOCUME~1\gilda\APPLIC~1\Nvu
[21/10/2007|18:21] C:\DOCUME~1\gilda\APPLIC~1\Printer Info Cache
[01/06/2007|16:59] C:\DOCUME~1\gilda\APPLIC~1\Real
[12/08/2007|16:49] C:\DOCUME~1\gilda\APPLIC~1\Roxio
[24/05/2008|10:11] C:\DOCUME~1\gilda\APPLIC~1\SecondLife
[06/07/2007|23:45] C:\DOCUME~1\gilda\APPLIC~1\SecuROM
[05/10/2007|15:28] C:\DOCUME~1\gilda\APPLIC~1\Sun
[03/06/2007|10:30] C:\DOCUME~1\gilda\APPLIC~1\Talkback
[06/06/2007|12:47] C:\DOCUME~1\gilda\APPLIC~1\Template
[05/07/2007|07:07] C:\DOCUME~1\gilda\APPLIC~1\TuneUp Software
[31/03/2008|09:06] C:\DOCUME~1\gilda\APPLIC~1\uTorrent
[02/11/2007|11:24] C:\DOCUME~1\gilda\APPLIC~1\Windows Desktop Search
[28/10/2007|13:46] C:\DOCUME~1\gilda\APPLIC~1\WinRAR
[21/05/2008|13:38] C:\DOCUME~1\gilda\APPLIC~1\wklnhst.dat
[09/03/2007|13:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\HP
[29/05/2007|10:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[27/10/2006|16:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[25/05/2008 14:04][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[25/05/2008 11:02][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[23/05/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[19/05/2008 19:00][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[25/05/2008 10:59][--ah-----] C:\WINDOWS\tasks\SA.DAT
[10/08/2004 13:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[01/02/2008|11:48] C:\Program Files\AbiSuite2
[07/02/2008|10:27] C:\Program Files\Adobe
[01/11/2007|18:19] C:\Program Files\Adverts
[21/10/2007|18:07] C:\Program Files\Age of Wonders Shadow Magic
[16/02/2007|12:46] C:\Program Files\ahead
[15/10/2007|10:12] C:\Program Files\Alice
[22/09/2007|11:02] C:\Program Files\Alice SSID
[20/05/2007|23:14] C:\Program Files\Alwil Software
[18/12/2007|17:10] C:\Program Files\Ankama Games
[30/09/2007|19:19] C:\Program Files\Apple Software Update
[27/10/2006|16:57] C:\Program Files\ATI Technologies
[14/02/2008|23:55] C:\Program Files\Avira
[06/12/2007|19:44] C:\Program Files\B-Association
[18/06/2007|22:46] C:\Program Files\BufferZone
[30/10/2007|13:20] C:\Program Files\CCleaner
[04/04/2008|09:51] C:\Program Files\Circle Developement
[12/11/2005|02:09] C:\Program Files\ComPlus Applications
[22/05/2007|14:53] C:\Program Files\Creative
[05/07/2007|22:19] C:\Program Files\CVitae
[03/02/2007|20:15] C:\Program Files\directx
[24/10/2007|00:10] C:\Program Files\DivX
[25/09/2007|22:15] C:\Program Files\Dofus
[01/01/2008|20:00] C:\Program Files\EA GAMES
[12/10/2007|12:26] C:\Program Files\ecran-de-veille.org
[27/12/2007|16:19] C:\Program Files\Electronic Arts
[04/05/2008|22:43] C:\Program Files\eMule
[12/12/2007|18:39] C:\Program Files\Fichiers communs
[31/05/2007|14:24] C:\Program Files\Gestass
[09/06/2007|12:57] C:\Program Files\GoldWave
[19/03/2008|19:14] C:\Program Files\Google
[05/08/2007|09:44] C:\Program Files\Hewlett-Packard
[05/08/2007|09:44] C:\Program Files\HP
[20/06/2007|11:52] C:\Program Files\IncrediMail
[13/04/2008|04:03] C:\Program Files\InstallShield Installation Information
[09/04/2008|13:04] C:\Program Files\Internet Explorer
[22/03/2008|19:46] C:\Program Files\Java
[08/01/2008|17:18] C:\Program Files\K-Lite Codec Pack
[14/07/2007|11:10] C:\Program Files\Lavasoft
[05/04/2008|10:08] C:\Program Files\LimeWire
[09/03/2008|13:19] C:\Program Files\LucasArts
[08/03/2007|20:32] C:\Program Files\Managed DirectX (0901)
[26/12/2007|18:45] C:\Program Files\Maxis
[27/10/2006|16:46] C:\Program Files\Messenger
[04/04/2008|09:51] C:\Program Files\Messenger Plus! Live
[22/03/2008|00:06] C:\Program Files\MICRO APPLICATION
[15/11/2005|04:24] C:\Program Files\microsoft frontpage
[17/01/2008|10:42] C:\Program Files\Microsoft FrontPage Express
[04/10/2007|14:17] C:\Program Files\Microsoft Games
[14/11/2007|22:32] C:\Program Files\Microsoft Office
[01/11/2007|18:08] C:\Program Files\Microsoft SQL Server Compact Edition
[11/09/2007|09:49] C:\Program Files\Microsoft Works
[15/11/2005|04:24] C:\Program Files\Movie Maker
[24/10/2007|00:23] C:\Program Files\MSN
[15/11/2005|04:25] C:\Program Files\MSN Gaming Zone
[21/05/2007|10:45] C:\Program Files\MSXML 4.0
[15/11/2005|04:25] C:\Program Files\NetMeeting
[07/11/2007|13:59] C:\Program Files\Nouveau dossier.rar
[15/11/2005|04:25] C:\Program Files\Online Services
[13/06/2007|12:05] C:\Program Files\Outlook Express
[07/02/2008|10:07] C:\Program Files\PDFCreator
[24/10/2007|14:55] C:\Program Files\PhotoFiltre
[24/04/2008|21:32] C:\Program Files\Picasa2
[22/06/2007|12:31] C:\Program Files\Player Tool
[14/02/2008|15:46] C:\Program Files\Pots
[27/10/2006|17:06] C:\Program Files\Real
[13/04/2008|04:03] C:\Program Files\Realtek
[10/01/2007|11:57] C:\Program Files\Roxio
[09/04/2008|22:03] C:\Program Files\SecondLife
[27/10/2006|17:26] C:\Program Files\Services en ligne
[07/02/2008|10:06] C:\Program Files\settings.dat
[25/10/2007|10:32] C:\Program Files\Simitex lab
[01/06/2007|17:03] C:\Program Files\Sonic
[24/02/2008|09:13] C:\Program Files\Spybot - Search & Destroy
[12/09/2007|10:29] C:\Program Files\Symantec
[19/05/2007|10:46] C:\Program Files\TechCity Solutions
[25/05/2007|09:42] C:\Program Files\Telecom Italia France
[26/12/2007|20:20] C:\Program Files\THQ
[16/02/2008|00:44] C:\Program Files\Trend Micro
[01/06/2007|16:49] C:\Program Files\Ubi Soft
[12/11/2005|02:09] C:\Program Files\Uninstall Information
[20/07/2007|20:49] C:\Program Files\uTorrent
[14/06/2007|17:27] C:\Program Files\VirtualDJ
[11/09/2007|01:31] C:\Program Files\Web Media Player
[12/12/2007|11:22] C:\Program Files\Web Photo Album
[01/06/2007|15:06] C:\Program Files\Web Publish
[30/10/2007|11:57] C:\Program Files\WebMediaPlayer
[18/08/2007|02:45] C:\Program Files\Windows Defender
[01/11/2007|18:07] C:\Program Files\Windows Desktop Search
[28/02/2008|01:22] C:\Program Files\Windows Live
[02/11/2007|11:22] C:\Program Files\Windows Live Toolbar
[11/06/2007|14:01] C:\Program Files\Windows Media Connect 2
[09/09/2007|11:54] C:\Program Files\Windows Media Player
[15/11/2005|04:25] C:\Program Files\Windows NT
[15/11/2005|04:25] C:\Program Files\Windows Plus
[17/01/2008|01:31] C:\Program Files\WindowsUpdate
[06/01/2008|16:51] C:\Program Files\WinRAR
[22/09/2007|11:02] C:\Program Files\Wireless 802.11g Monitor
[02/05/2008|18:57] C:\Program Files\World of Warcraft
[23/01/2008|17:02] C:\Program Files\WowCartographe
[20/05/2007|15:46] C:\Program Files\wt3d.ini
[15/11/2005|04:26] C:\Program Files\xerox
[30/10/2007|13:20] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[07/02/2008|10:27] C:\Program Files\Fichiers communs\Adobe
[30/09/2007|19:25] C:\Program Files\Fichiers communs\Apple
[12/12/2007|18:39] C:\Program Files\Fichiers communs\Blizzard Entertainment
[21/06/2007|09:30] C:\Program Files\Fichiers communs\BOONTY Shared
[21/07/2007|12:31] C:\Program Files\Fichiers communs\DVDVIDEOSOFT
[09/01/2007|16:40] C:\Program Files\Fichiers communs\Hewlett-Packard
[03/09/2007|16:00] C:\Program Files\Fichiers communs\HP
[06/01/2007|14:45] C:\Program Files\Fichiers communs\InstallShield
[27/10/2006|16:41] C:\Program Files\Fichiers communs\Java
[27/10/2006|17:08] C:\Program Files\Fichiers communs\LightScribe
[27/10/2006|17:08] C:\Program Files\Fichiers communs\LS Getting Started
[20/11/2007|10:55] C:\Program Files\Fichiers communs\Microsoft Shared
[15/11/2005|04:24] C:\Program Files\Fichiers communs\MSSoap
[15/11/2005|04:24] C:\Program Files\Fichiers communs\ODBC
[01/06/2007|16:59] C:\Program Files\Fichiers communs\Real
[10/01/2007|11:58] C:\Program Files\Fichiers communs\Roxio Shared
[15/11/2005|04:24] C:\Program Files\Fichiers communs\Services
[15/11/2005|04:24] C:\Program Files\Fichiers communs\SpeechEngines
[12/09/2007|10:31] C:\Program Files\Fichiers communs\Symantec Shared
[22/06/2007|13:43] C:\Program Files\Fichiers communs\System
[20/11/2007|10:55] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[04/10/2007|14:32] C:\Program Files\Fichiers communs\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 62
iexplore.exe ~ [3092]
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\Program Files\Adverts
C:\Program Files\Circle Developement
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-25 14:20:26
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
C:\WINDOWS\pack.epk
C:\WINDOWS\system32\gykecoirsd_navps.dat
C:\WINDOWS\system32\mlqxddaaff_navps.dat
C:\WINDOWS\system32\sstahfmcm_navps.dat
C:\WINDOWS\system32\xhrblvgpaj_navps.dat
C:\WINDOWS\system32\gykecoirsd_nav.dat
C:\WINDOWS\system32\gykecoirsd.dat
C:\WINDOWS\system32\sstahfmcm_nav.dat
C:\WINDOWS\system32\sstahfmcm.dat
C:\WINDOWS\system32\xhrblvgpaj_nav.dat
C:\WINDOWS\system32\xhrblvgpaj.dat
! EGDACCESS !
[F:2][D:1]-> C:\DOCUME~1\gilda\LOCALS~1\Temp
[F:42][D:0]-> C:\DOCUME~1\gilda\Cookies
[F:1151][D:4]-> C:\DOCUME~1\gilda\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 14:22:09,70 ]----------------------
|
|
Blablabla !
|
|
|
Ok, on continue
Relance Lop S&D
=> Choisis l'Option 2 (Suppression)
=> Ne ferme pas la fenêtre lors de la suppression !
=> Poste le rapport généré (C:\lopR.txt)
Si le Bureau ne réapparaît pas :
=> presse Ctrl + Alt + Suppr
=> Onglet Fichier , Nouvelle tâche
=> tape explorer et valide
--------------------
Télécharge Navilog1 (de Il Mafioso) sur le bureau.
>>> http://bibou0007.com/outils-specifiques-f78/fixnavilog1-t122.htm
Poste moi le rapport dans ta prochaine réponse
Le rapport se trouve ici C:fixnavi.txt
|
|
|
|
|
Voici le rapport Lop
-----------------------[ Lop S&D 4.2.0-9 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : gilda ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 25/05/2008 | 15:09:46,67 ] [ PC : NOM-TEMPOGILDA ]
[ MAJ : 16-05-2008 | 23:35 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\Program Files\Adverts
Supprimé! - C:\Program Files\Circle Developement
Restauré! - Fichier Hosts
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[15/02/2008|23:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
[07/02/2008|10:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/09/2007|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[05/06/2007|09:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[14/02/2008|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[21/06/2007|09:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[20/03/2007|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Broderbund Software
[18/06/2007|22:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BufferZone
[10/10/2005|15:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[18/06/2007|23:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[24/05/2008|15:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[27/10/2006|17:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[09/01/2007|16:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[01/04/2008|21:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[27/10/2006|17:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[22/02/2008|11:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[12/09/2007|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LUUnInstall.LiveUpdate
[10/11/2007|23:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[01/11/2007|18:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/09/2007|09:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[21/05/2007|02:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[07/07/2007|11:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[10/01/2007|11:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Roxio
[27/10/2006|16:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[27/10/2006|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[25/02/2008|10:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[12/09/2007|10:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[06/11/2007|14:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[05/07/2007|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[21/05/2007|10:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[04/06/2007|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[04/07/2007|13:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[20/11/2007|10:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[30/10/2007|13:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[10/10/2005|15:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[15/11/2005|04:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[27/10/2006|17:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[27/10/2006|17:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[18/01/2008|00:19] C:\DOCUME~1\gilda\APPLIC~1\Adobe
[05/06/2007|09:47] C:\DOCUME~1\gilda\APPLIC~1\Apple Computer
[05/07/2007|07:34] C:\DOCUME~1\gilda\APPLIC~1\Azureus
[02/06/2007|01:39] C:\DOCUME~1\gilda\APPLIC~1\BitTorrent
[10/10/2005|15:24] C:\DOCUME~1\gilda\APPLIC~1\desktop.ini
[02/06/2007|08:46] C:\DOCUME~1\gilda\APPLIC~1\DivX
[18/01/2008|01:05] C:\DOCUME~1\gilda\APPLIC~1\FileZilla
[04/05/2008|21:39] C:\DOCUME~1\gilda\APPLIC~1\G-Force Prefs (WindowsMediaPlayer).txt
[20/07/2007|02:02] C:\DOCUME~1\gilda\APPLIC~1\Google
[06/06/2007|19:18] C:\DOCUME~1\gilda\APPLIC~1\Help
[07/06/2007|09:31] C:\DOCUME~1\gilda\APPLIC~1\HP
[08/06/2007|07:57] C:\DOCUME~1\gilda\APPLIC~1\HPQ
[15/11/2005|04:22] C:\DOCUME~1\gilda\APPLIC~1\Identities
[19/11/2007|15:36] C:\DOCUME~1\gilda\APPLIC~1\Image Zone Express
[16/07/2007|16:29] C:\DOCUME~1\gilda\APPLIC~1\Leadertech
[20/05/2008|12:10] C:\DOCUME~1\gilda\APPLIC~1\LimeWire
[01/06/2007|17:22] C:\DOCUME~1\gilda\APPLIC~1\Macromedia
[24/10/2007|00:17] C:\DOCUME~1\gilda\APPLIC~1\Media Player Classic
[20/04/2008|11:44] C:\DOCUME~1\gilda\APPLIC~1\Microsoft
[22/03/2008|20:46] C:\DOCUME~1\gilda\APPLIC~1\Mozilla
[04/06/2007|10:32] C:\DOCUME~1\gilda\APPLIC~1\MSNInstaller
[17/01/2008|02:18] C:\DOCUME~1\gilda\APPLIC~1\Nvu
[21/10/2007|18:21] C:\DOCUME~1\gilda\APPLIC~1\Printer Info Cache
[01/06/2007|16:59] C:\DOCUME~1\gilda\APPLIC~1\Real
[12/08/2007|16:49] C:\DOCUME~1\gilda\APPLIC~1\Roxio
[24/05/2008|10:11] C:\DOCUME~1\gilda\APPLIC~1\SecondLife
[06/07/2007|23:45] C:\DOCUME~1\gilda\APPLIC~1\SecuROM
[05/10/2007|15:28] C:\DOCUME~1\gilda\APPLIC~1\Sun
[03/06/2007|10:30] C:\DOCUME~1\gilda\APPLIC~1\Talkback
[06/06/2007|12:47] C:\DOCUME~1\gilda\APPLIC~1\Template
[05/07/2007|07:07] C:\DOCUME~1\gilda\APPLIC~1\TuneUp Software
[31/03/2008|09:06] C:\DOCUME~1\gilda\APPLIC~1\uTorrent
[02/11/2007|11:24] C:\DOCUME~1\gilda\APPLIC~1\Windows Desktop Search
[28/10/2007|13:46] C:\DOCUME~1\gilda\APPLIC~1\WinRAR
[21/05/2008|13:38] C:\DOCUME~1\gilda\APPLIC~1\wklnhst.dat
[09/03/2007|13:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\HP
[29/05/2007|10:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[27/10/2006|16:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[25/05/2008 15:04][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[25/05/2008 11:02][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[23/05/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[19/05/2008 19:00][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[25/05/2008 10:59][--ah-----] C:\WINDOWS\tasks\SA.DAT
[10/08/2004 13:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[01/02/2008|11:48] C:\Program Files\AbiSuite2
[07/02/2008|10:27] C:\Program Files\Adobe
[21/10/2007|18:07] C:\Program Files\Age of Wonders Shadow Magic
[16/02/2007|12:46] C:\Program Files\ahead
[15/10/2007|10:12] C:\Program Files\Alice
[22/09/2007|11:02] C:\Program Files\Alice SSID
[20/05/2007|23:14] C:\Program Files\Alwil Software
[18/12/2007|17:10] C:\Program Files\Ankama Games
[30/09/2007|19:19] C:\Program Files\Apple Software Update
[27/10/2006|16:57] C:\Program Files\ATI Technologies
[14/02/2008|23:55] C:\Program Files\Avira
[06/12/2007|19:44] C:\Program Files\B-Association
[18/06/2007|22:46] C:\Program Files\BufferZone
[30/10/2007|13:20] C:\Program Files\CCleaner
[12/11/2005|02:09] C:\Program Files\ComPlus Applications
[22/05/2007|14:53] C:\Program Files\Creative
[05/07/2007|22:19] C:\Program Files\CVitae
[03/02/2007|20:15] C:\Program Files\directx
[24/10/2007|00:10] C:\Program Files\DivX
[25/09/2007|22:15] C:\Program Files\Dofus
[01/01/2008|20:00] C:\Program Files\EA GAMES
[12/10/2007|12:26] C:\Program Files\ecran-de-veille.org
[27/12/2007|16:19] C:\Program Files\Electronic Arts
[04/05/2008|22:43] C:\Program Files\eMule
[12/12/2007|18:39] C:\Program Files\Fichiers communs
[31/05/2007|14:24] C:\Program Files\Gestass
[09/06/2007|12:57] C:\Program Files\GoldWave
[19/03/2008|19:14] C:\Program Files\Google
[05/08/2007|09:44] C:\Program Files\Hewlett-Packard
[05/08/2007|09:44] C:\Program Files\HP
[20/06/2007|11:52] C:\Program Files\IncrediMail
[13/04/2008|04:03] C:\Program Files\InstallShield Installation Information
[09/04/2008|13:04] C:\Program Files\Internet Explorer
[22/03/2008|19:46] C:\Program Files\Java
[08/01/2008|17:18] C:\Program Files\K-Lite Codec Pack
[14/07/2007|11:10] C:\Program Files\Lavasoft
[05/04/2008|10:08] C:\Program Files\LimeWire
[09/03/2008|13:19] C:\Program Files\LucasArts
[08/03/2007|20:32] C:\Program Files\Managed DirectX (0901)
[26/12/2007|18:45] C:\Program Files\Maxis
[27/10/2006|16:46] C:\Program Files\Messenger
[04/04/2008|09:51] C:\Program Files\Messenger Plus! Live
[22/03/2008|00:06] C:\Program Files\MICRO APPLICATION
[15/11/2005|04:24] C:\Program Files\microsoft frontpage
[17/01/2008|10:42] C:\Program Files\Microsoft FrontPage Express
[04/10/2007|14:17] C:\Program Files\Microsoft Games
[14/11/2007|22:32] C:\Program Files\Microsoft Office
[01/11/2007|18:08] C:\Program Files\Microsoft SQL Server Compact Edition
[11/09/2007|09:49] C:\Program Files\Microsoft Works
[15/11/2005|04:24] C:\Program Files\Movie Maker
[24/10/2007|00:23] C:\Program Files\MSN
[15/11/2005|04:25] C:\Program Files\MSN Gaming Zone
[21/05/2007|10:45] C:\Program Files\MSXML 4.0
[15/11/2005|04:25] C:\Program Files\NetMeeting
[07/11/2007|13:59] C:\Program Files\Nouveau dossier.rar
[15/11/2005|04:25] C:\Program Files\Online Services
[13/06/2007|12:05] C:\Program Files\Outlook Express
[07/02/2008|10:07] C:\Program Files\PDFCreator
[24/10/2007|14:55] C:\Program Files\PhotoFiltre
[24/04/2008|21:32] C:\Program Files\Picasa2
[22/06/2007|12:31] C:\Program Files\Player Tool
[14/02/2008|15:46] C:\Program Files\Pots
[27/10/2006|17:06] C:\Program Files\Real
[13/04/2008|04:03] C:\Program Files\Realtek
[10/01/2007|11:57] C:\Program Files\Roxio
[09/04/2008|22:03] C:\Program Files\SecondLife
[27/10/2006|17:26] C:\Program Files\Services en ligne
[07/02/2008|10:06] C:\Program Files\settings.dat
[25/10/2007|10:32] C:\Program Files\Simitex lab
[01/06/2007|17:03] C:\Program Files\Sonic
[24/02/2008|09:13] C:\Program Files\Spybot - Search & Destroy
[12/09/2007|10:29] C:\Program Files\Symantec
[19/05/2007|10:46] C:\Program Files\TechCity Solutions
[25/05/2007|09:42] C:\Program Files\Telecom Italia France
[26/12/2007|20:20] C:\Program Files\THQ
[16/02/2008|00:44] C:\Program Files\Trend Micro
[01/06/2007|16:49] C:\Program Files\Ubi Soft
[12/11/2005|02:09] C:\Program Files\Uninstall Information
[20/07/2007|20:49] C:\Program Files\uTorrent
[14/06/2007|17:27] C:\Program Files\VirtualDJ
[11/09/2007|01:31] C:\Program Files\Web Media Player
[12/12/2007|11:22] C:\Program Files\Web Photo Album
[01/06/2007|15:06] C:\Program Files\Web Publish
[30/10/2007|11:57] C:\Program Files\WebMediaPlayer
[18/08/2007|02:45] C:\Program Files\Windows Defender
[01/11/2007|18:07] C:\Program Files\Windows Desktop Search
[28/02/2008|01:22] C:\Program Files\Windows Live
[02/11/2007|11:22] C:\Program Files\Windows Live Toolbar
[11/06/2007|14:01] C:\Program Files\Windows Media Connect 2
[09/09/2007|11:54] C:\Program Files\Windows Media Player
[15/11/2005|04:25] C:\Program Files\Windows NT
[15/11/2005|04:25] C:\Program Files\Windows Plus
[17/01/2008|01:31] C:\Program Files\WindowsUpdate
[06/01/2008|16:51] C:\Program Files\WinRAR
[22/09/2007|11:02] C:\Program Files\Wireless 802.11g Monitor
[02/05/2008|18:57] C:\Program Files\World of Warcraft
[23/01/2008|17:02] C:\Program Files\WowCartographe
[20/05/2007|15:46] C:\Program Files\wt3d.ini
[15/11/2005|04:26] C:\Program Files\xerox
[30/10/2007|13:20] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[07/02/2008|10:27] C:\Program Files\Fichiers communs\Adobe
[30/09/2007|19:25] C:\Program Files\Fichiers communs\Apple
[12/12/2007|18:39] C:\Program Files\Fichiers communs\Blizzard Entertainment
[21/06/2007|09:30] C:\Program Files\Fichiers communs\BOONTY Shared
[21/07/2007|12:31] C:\Program Files\Fichiers communs\DVDVIDEOSOFT
[09/01/2007|16:40] C:\Program Files\Fichiers communs\Hewlett-Packard
[03/09/2007|16:00] C:\Program Files\Fichiers communs\HP
[06/01/2007|14:45] C:\Program Files\Fichiers communs\InstallShield
[27/10/2006|16:41] C:\Program Files\Fichiers communs\Java
[27/10/2006|17:08] C:\Program Files\Fichiers communs\LightScribe
[27/10/2006|17:08] C:\Program Files\Fichiers communs\LS Getting Started
[20/11/2007|10:55] C:\Program Files\Fichiers communs\Microsoft Shared
[15/11/2005|04:24] C:\Program Files\Fichiers communs\MSSoap
[15/11/2005|04:24] C:\Program Files\Fichiers communs\ODBC
[01/06/2007|16:59] C:\Program Files\Fichiers communs\Real
[10/01/2007|11:58] C:\Program Files\Fichiers communs\Roxio Shared
[15/11/2005|04:24] C:\Program Files\Fichiers communs\Services
[15/11/2005|04:24] C:\Program Files\Fichiers communs\SpeechEngines
[12/09/2007|10:31] C:\Program Files\Fichiers communs\Symantec Shared
[22/06/2007|13:43] C:\Program Files\Fichiers communs\System
[20/11/2007|10:55] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[04/10/2007|14:32] C:\Program Files\Fichiers communs\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 60
... OK !
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-25 15:10:46
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
C:\WINDOWS\pack.epk
C:\WINDOWS\system32\gykecoirsd_navps.dat
C:\WINDOWS\system32\mlqxddaaff_navps.dat
C:\WINDOWS\system32\sstahfmcm_navps.dat
C:\WINDOWS\system32\xhrblvgpaj_navps.dat
C:\WINDOWS\system32\gykecoirsd_nav.dat
C:\WINDOWS\system32\gykecoirsd.dat
C:\WINDOWS\system32\sstahfmcm_nav.dat
C:\WINDOWS\system32\sstahfmcm.dat
C:\WINDOWS\system32\xhrblvgpaj_nav.dat
C:\WINDOWS\system32\xhrblvgpaj.dat
! EGDACCESS !
[F:9][D:3]-> C:\DOCUME~1\gilda\LOCALS~1\Temp
[F:42][D:0]-> C:\DOCUME~1\gilda\Cookies
[F:1282][D:4]-> C:\DOCUME~1\gilda\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 15:11:49,34 ]----------------------
et voici le rapport Navilog 
Search Navipromo version 3.5.7 commencé le 25/05/2008 à 15:26:08,46
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "gilda"
Mise à jour le 11.05.2008 à 18h00 par IL-MAFIOSO
Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11
Système de fichiers : NTFS
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans "C:\WINDOWS" ***
*** Recherche dossiers dans "C:\Program Files" ***
C:\Program Files\WebMediaPlayer trouvé !
*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***
*** Recherche dossiers dans "c:\docume~1\alluse~1\menudÉ~1\progra~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\gilda\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\gilda\locals~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\gilda\menudm~1\progra~1" ***
...\WebMediaPlayer trouvé !
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net
Aucun Fichier trouvé
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
* Recherche dans "C:\WINDOWS\system32" *
* Recherche dans "C:\Documents and Settings\gilda\locals~1\applic~1" *
*** Recherche fichiers ***
C:\WINDOWS\pack.epk trouvé !
*** Recherche clés spécifiques dans le Registre ***
HKEY_CURRENT_USER\Software\Lanconfig trouvé !
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
* Dans "C:\WINDOWS\system32" :
gykecoirsd.dat trouvé !
gykecoirsd_nav.dat trouvé !
gykecoirsd_navps.dat trouvé !
mlqxddaaff_navps.dat trouvé !
sstahfmcm.dat trouvé !
sstahfmcm_nav.dat trouvé !
sstahfmcm_navps.dat trouvé !
xhrblvgpaj.dat trouvé !
xhrblvgpaj_nav.dat trouvé !
xhrblvgpaj_navps.dat trouvé !
* Dans "C:\Documents and Settings\gilda\locals~1\applic~1" :
3)Recherche Certificats :
Certificat Egroup trouvé !
Certificat Electronic-Group absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche fichiers connus :
*** Analyse terminée le 25/05/2008 à 15:35:19,64 ***
|
|
Blablabla !
|
|
|
|
Ne t'occupe pas ce ça, c'est pour moi
C:\Program Files\Alwil Software
C:\Program Files\Symantec
C:\Program Files\Fichiers communs\BOONTY Shared
C:\Program Files\Fichiers communs\Symantec Shared
--------------------
Si tu as installé le sponsor de Messenger Plus 3 :
=> Lance la désinstallation de Messenger Plus 3
=> Le logiciel te demandera ce que tu veux faire, choisis désinstaller le sponsor et valide.
--------------------
Les programmes suivants installent discrètement l'adware Navipromo.
Par conséquent, leur installation/réinstallation est à proscrire
- Instant Access
- MailSkinner
- InternetGameBox
- GoRecord2
- GoAstro
- SudoPlanet
- HotTVPlayer
- WebMediaPlayer <----- ce que tu as
- MessengerSkinner
Fais tout ce qui est décrit ici
http://bibou0007.com/outils-specifiques-f78/navilog1-procedure-de-nettoyage-t(...)
Poste moi le rapport s'il te plait
|
|
|
|
|
voici le rapport,
Clean Navipromo version 3.5.7 commencé le 25/05/2008 à 16:16:50,68
Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "gilda"
Mise à jour le 11.05.2008 à 18h00 par IL-MAFIOSO
Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11
Système de fichiers : NTFS
Mode suppression automatique
avec prise en charge résultats Catchme et GNS
Nettoyage exécuté au redémarrage de l'ordinateur
*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)
*** Suppression avec sauvegardes résultats GenericNaviSearch ***
* Suppression dans "C:\WINDOWS\System32" *
* Suppression dans "C:\Documents and Settings\gilda\locals~1\applic~1" *
*** Suppression dossiers dans "C:\WINDOWS" ***
*** Suppression dossiers dans "C:\Program Files" ***
C:\Program Files\WebMediaPlayer ...suppression...
C:\Program Files\WebMediaPlayer supprimé !
*** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***
*** Suppression dossiers dans "c:\docume~1\alluse~1\menudÉ~1\progra~1" ***
*** Suppression dossiers dans "C:\Documents and Settings\gilda\applic~1" ***
*** Suppression dossiers dans "C:\Documents and Settings\gilda\locals~1\applic~1" ***
*** Suppression dossiers dans "C:\Documents and Settings\gilda\menudm~1\progra~1" ***
...\WebMediaPlayer ...suppression...
...\WebMediaPlayer supprimé !
*** Suppression fichiers ***
C:\WINDOWS\pack.epk supprimé !
*** Suppression fichiers temporaires ***
Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\gilda\locals~1\Temp effectué !
*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Suppression avec sauvegardes nouveaux fichiers Instant Access :
2)Recherche, création sauvegardes et suppression Heuristique :
* Dans "C:\WINDOWS\system32" *
gykecoirsd.dat trouvé !
Copie gykecoirsd.dat réalisée avec succès !
gykecoirsd.dat supprimé !
sstahfmcm.dat trouvé !
Copie sstahfmcm.dat réalisée avec succès !
sstahfmcm.dat supprimé !
xhrblvgpaj.dat trouvé !
Copie xhrblvgpaj.dat réalisée avec succès !
xhrblvgpaj.dat supprimé !
gykecoirsd_nav.dat trouvé !
Copie gykecoirsd_nav.dat réalisée avec succès !
gykecoirsd_nav.dat supprimé !
sstahfmcm_nav.dat trouvé !
Copie sstahfmcm_nav.dat réalisée avec succès !
sstahfmcm_nav.dat supprimé !
xhrblvgpaj_nav.dat trouvé !
Copie xhrblvgpaj_nav.dat réalisée avec succès !
xhrblvgpaj_nav.dat supprimé !
gykecoirsd_navps.dat trouvé !
Copie gykecoirsd_navps.dat réalisée avec succès !
gykecoirsd_navps.dat supprimé !
mlqxddaaff_navps.dat trouvé !
Copie mlqxddaaff_navps.dat réalisée avec succès !
mlqxddaaff_navps.dat supprimé !
sstahfmcm_navps.dat trouvé !
Copie sstahfmcm_navps.dat réalisée avec succès !
sstahfmcm_navps.dat supprimé !
xhrblvgpaj_navps.dat trouvé !
Copie xhrblvgpaj_navps.dat réalisée avec succès !
xhrblvgpaj_navps.dat supprimé !
* Dans "C:\Documents and Settings\gilda\locals~1\applic~1" *
*** Sauvegarde du Registre vers dossier Safebackup ***
sauvegarde du Registre réalisée avec succès !
*** Nettoyage Registre ***
Nettoyage Registre Ok
*** Certificats ***
Certificat Egroup supprimé !
Certificat Electronic-Group absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltdt absent !
*** Nettoyage terminé le 25/05/2008 à 16:23:28,95 ***
|
|
|
|
|
|
J'ai aussi desinstallé webmedia player
|
|
Blablabla !
|
|
|
Ok, poste moi un nouveau rapport Deckard System Scanner s'il te plait
|
|
|
|
|
Bonjour Accass
Voici le scan demandé :
Deckard's System Scanner v20071014.68
Run by gilda on 2008-05-26 12:23:03
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- HijackThis (run as gilda.exe) -----------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:23:45, on 26/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\arservice.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Wireless 802.11g Monitor\WLService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Wireless 802.11g Monitor\WLanCfgG.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\gilda\Bureau\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\gilda.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c(...)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&(...)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://picasa.google.com/support/bin/request.py?contact_type=uninstall&hl(...)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [ | | |
