Problème avec un pc. Quelqu'un peut lire le HJT svp

Bonjour,

Dans un 1er temps fait ca :

1/ Lance HijackThis
puis --> Do a system scan only
coche les lignes indiquées ci-dessous
puis --> Fix checked
puis oui à la question de confirmation

O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O16 - DPF: {01BE5BD7-B2DD-48B3-A759-59265A91E787} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {07C9CFC7-DE33-4A0C-9FFB-CDFBA843B157} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...
O16 - DPF: {0D1011B3-89C8-4F8E-8693-BB970E2E81E0} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {0DA910BC-6919-489E-B584-D9A4AAC7B8DE} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {201D3DA8-B495-4A3B-BEE8-6D8DDCCC5762} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {2A3DFC59-8A87-49A1-85D1-42903410911F} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_10...
O16 - DPF: {3616F4B5-F6AD-4E67-966A-C218673648A0} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {3AEA6239-7D97-4B70-A342-A824B55E5A5B} (Adam Class) - http://htmldialer.parisvoyeur.com/CABSPOLY/cd/1,0,3,8/f...
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {624321F1-0581-49D8-99BD-2E952C2DF31B} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...
O16 - DPF: {7504F0D5-644A-4103-9D02-95488B6CB9A1} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {78F584DF-BBF5-4296-839C-31DE60914DBC} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {7CAA184C-91E7-4E84-8681-32F2A0D68DF1} (Apollon Class) - http://htmldialer.parisvoyeur.com/CABSPOLY/cd/1,0,3,8/f...
O16 - DPF: {82FC4503-8459-4239-9B85-0617BEAA950A} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_10...
O16 - DPF: {87C1805D-C5AE-4455-AB39-E245BB516136} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_10...
O16 - DPF: {8D8BAF56-B581-4B90-A549-C4AC6B03F1BB} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {95460ABD-946A-46FF-9F56-268718323EEE} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {AF7410C1-FBA3-415E-800A-4110CED40536} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_10...
O16 - DPF: {B2B0AEDF-7CDF-4792-BB67-7654AD1E1B13} - http://scripts.downloadv3.com/binaries/IA/sysinetsvc32_...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
O16 - DPF: {BA749BC1-143E-430D-B1DA-1D2AF67A3658} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://jeux.wanadoo.fr/online2/zuma/zylomgamesplayer.ca...
O16 - DPF: {C2481ED1-9896-4D49-AE90-69858DFDE446} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {C6760A07-A574-4705-B113-7856315922C3} - http://akamai.downloadv3.com/binaries/IA/sysnetsvc32_FR...
O16 - DPF: {E24E8472-89B7-479F-8AD8-BBD7206A6A02} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {E7AE1661-EBEB-492B-AE0D-860DF24174C6} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...
O16 - DPF: {EC4AFBF3-4540-4306-AF10-4CAC509EA16B} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {EF4DCD99-D26B-44A4-BA77-CFDCC97E7291} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...
O16 - DPF: {EFB23983-5803-4914-ADA3-C0EA2CFBDC37} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACC...
O16 - DPF: {FA83E942-B796-46DE-9155-1632ECC5473B} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...

2/ Télécharge, installe et mets à jour ewido
Pendant l'installation, sur la page "Additional Options" décoche les deux options "Install background guard" et "Install scan via context menu".

http://www.infos-du-net.com/telecharger/Ewido-Security-...

Redémarre en mode sans échec (Pour cela : démarrer le PC en tapotant sur la touche F8 du clavier jusqu'à ce que le menu des options avancées de Windows apparaisse puis avec les touches fléchées du clavier, sélectionner Mode sans échec puis appuyer sur la touche Entrée...)
Attention tu n'as pas accès à Internet dans ce mode donc note ou imprime les consignes qui suivent.

Lance ewido (Scan complet du système) et supprime tout ce qu'il trouve. Sauvegarde le rapport sur le bureau.

Redémarre normalement et poste le rapport d'ewido ainsi qu’un nouveau Log HijackThis et on terminera le reste à la main.

Merci je le fait cash  

Oups Ewedo ne s'était pas mis à jour correctement (c'est pas la première fois que ca me le fait) Donc je refait le scan ewedo et le rapport HJT  

Je reprend la suite du collègue alors voilà les rapports sont enfin terminés à noté que le rapport Ewido (le 2nd donc) a pas trouvé tellement de malwares mais le premier en contenais 173  

---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------

+ Créé le: 16:36:16, 08/06/2006
+ Somme de contrôle: 2512351A

+ Résultats du scan:

C:\Program Files\backups\backup-20060608-142617-941.dll -> Dialer.EgroupDial.v : Nettoyer et sauvegarder
C:\Program Files\backups\backup-20060608-142620-711.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\Program Files\backups\backup-20060608-142620-788.dll -> Dialer.InstantAccess.r : Nettoyer et sauvegarder
C:\Program Files\backups\backup-20060608-142621-690.dll -> Dialer.InstantAccess.r : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP373\A0066344.exe -> Adware.NaviPromo : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068296.dll -> Dialer.EgroupDial.v : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068305.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068306.dll -> Dialer.InstantAccess.r : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068329.exe -> Heuristic.Win32.Dialer : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068330.dll -> Adware.WinAD : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068332.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068333.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068334.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068335.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068336.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068337.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068338.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068339.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068340.dll -> Dialer.InstantAccess.n : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068341.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068342.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068343.dll -> Dialer.InstantAccess.m : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068344.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068345.dll -> Dialer.InstantAccess.e : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068346.dll -> Dialer.InstantAccess.e : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068347.dll -> Dialer.InstantAccess.m : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068348.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068349.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068350.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068351.dll -> Dialer.InstantAccess.f : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068352.dll -> Dialer.InstantAccess.d : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068353.exe -> Adware.WinShow : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068354.exe -> Adware.EliteBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068355.exe -> Adware.Apropos : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068356.dll -> Adware.NaviPromo : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068381.dll -> Adware.NaviPromo : Nettoyer et sauvegarder
C:\System Volume Information\_restore{7A58EDCB-84F1-498E-85D9-3F4949DE091B}\RP397\A0068462.dll -> Adware.NaviPromo : Nettoyer et sauvegarder
C:\WINDOWS\system32\egaccess4_1061.dll -> Dialer.InstantAccess.r : Nettoyer et sauvegarder


::Fin du rapport



______________________________________________________________________________________





Logfile of HijackThis v1.99.1
Scan saved at 16:41:16, on 08/06/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\UsrPrmpt.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\Program Files\Compaq\Easy Access Button Support\CPQEAKSYSTEMTRAY.EXE
C:\Program Files\Compaq\Easy Access Button Support\CPQEADM.EXE
C:\Compaq\EAKDRV\EAUSBKBD.EXE
C:\PROGRA~1\Compaq\EASYAC~1\BttnServ.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\System32\ctfmon.exe
C:\program files\mailskinner\mailskinner.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Securitoo\av_fw\Common\FSLAUNCH.EXE
C:\Program Files\Securitoo\av_fw\Common\FSLAUNCH.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = quercyrouergue.cario.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.compaq.com/1Q00CDT/040C/bl8.asp
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.compaq.com/1Q00CDT/040C/bl7.asp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [Microsoft Services] lssrv.exe
O4 - HKLM\..\Run: [SSC_UserPrompt] C:\Program Files\Fichiers communs\Symantec Shared\Security Center\UsrPrmpt.exe
O4 - HKLM\..\Run: [Windows media service] crsss.exe
O4 - HKLM\..\Run: [Start Uppings] mssupdate.exe
O4 - HKLM\..\Run: [Mcafee Auto Protect] mcafeshield.exe
O4 - HKLM\..\Run: [msnsched] msnsched.exe
O4 - HKLM\..\Run: [Nero] C:\WINDOWS\qttasks.exe /i
O4 - HKLM\..\Run: [NAV Auto Updates] slserves.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [Microsoft AOL Instant Messenger] MSAOL32.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
O4 - HKLM\..\Run: [turhylmdnw] c:\windows\system32\turhylmdnw.exe turhylmdnw
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [vnkuwgmxo] c:\windows\system32\vnkuwgmxo.exe vnkuwgmxo
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [urszkwtnx] c:\windows\system32\urszkwtnx.exe urszkwtnx
O4 - HKLM\..\Run: [hidqjbwxle] c:\windows\system32\hidqjbwxle.exe hidqjbwxle
O4 - HKLM\..\RunServices: [Microsoft Services] lssrv.exe
O4 - HKLM\..\RunServices: [Windows media service] crsss.exe
O4 - HKLM\..\RunServices: [Start Uppings] mssupdate.exe
O4 - HKLM\..\RunServices: [Mcafee Auto Protect] mcafeshield.exe
O4 - HKLM\..\RunServices: [msnsched] msnsched.exe
O4 - HKLM\..\RunServices: [NAV Auto Updates] slserves.exe
O4 - HKLM\..\RunServices: [Microsoft AOL Instant Messenger] MSAOL32.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Start Uppings] mssupdate.exe
O4 - HKCU\..\Run: [Mcafee Auto Protect] mcafeshield.exe
O4 - HKCU\..\Run: [Windows media service] crsss.exe
O4 - HKCU\..\Run: [NAV Auto Updates] slserves.exe
O4 - HKCU\..\Run: [Microsoft AOL Instant Messenger] MSAOL32.exe
O4 - HKCU\..\Run: [Instant Access] rundll32.exe EGACCESS4_1061.dll,InstantAccess
O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\RunServices: [Start Uppings] mssupdate.exe
O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Mouse Hardware Sync (mousehs) - Unknown owner - C:\WINDOWS\System32\mousehs.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe

Petit truc à signaler quand même, c'est marrant mais ca me fait comme si j'appuyais sur la touche entrée toutes les 5 secondes donc c'est plutot difficle à effectuer toutes les manip, autre chose le scan online kaspersky ne marche pas.

Up