[Résolu] mon pc est trés lent et j'ai des pubs intempestives
Forum Sécurité - Virus : [Résolu] mon pc est trés lent et j'ai des pubs intempestives
Bonjour
Mon pc est trés lent et j'ai des pubs internet trés souvent.
voila mon rapport HijackThis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:29:20, on 12/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\APPS\SMP\SmpSys.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\9129837.exe
C:\WINDOWS\bdir\sdflkj6.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\47681728.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\alex\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/webhp?sourcei [...] r&ie=UTF-8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.avast.com/i_kat_207.php?lang=fre
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SmpcSys] C:\APPS\SMP\SmpSys.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ttool] C:\WINDOWS\9129837.exe
O4 - HKCU\..\Run: [strkjhk] C:\WINDOWS\bdir\sdflkj6.exe
O4 - HKCU\..\Run: [Packard Bell Data Secure] C:\Program Files\Packard Bell Data Secure\PBDataSecure.exe
O4 - HKCU\..\Run: [tlz] C:\WINDOWS\47681728.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RC.exe.lnk = C:\Program Files\DTV\DVB-T USB 2.0\RC.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{B75A3E17-9371-4186-9819-81D9CE992B53}: NameServer = 192.168.1.1
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: USBDeviceService - Unknown owner - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe
--
End of file - 7024 bytes
merci d'avance!
Message édité par manurodr le 12-10-2007 à 22:58:16
Bonjour,
Désinstalle correctement Avast! pour le remplacer par AntiVir.
Pourquoi changer ? Avast! vs AntiVir
Fais un scan complet puis poste le rapport en fin d'analyse.
Répondre à Angeldark
merci pour ton aide
voila le rapport :
AntiVir PersonalEdition Classic
Report file date: vendredi 12 octobre 2007 18:21
Scanning for 835736 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: alex
Computer name: SN100723600324
Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 12:16:29
AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 11:23:51
LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 14:32:47
LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 11:35:20
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 13:27:15
ANTIVIR1.VDF : 7.0.0.0 1640448 Bytes 13/09/2007 13:26:55
ANTIVIR2.VDF : 7.0.0.1 2048 Bytes 13/09/2007 13:27:04
ANTIVIR3.VDF : 7.0.0.2 2048 Bytes 13/09/2007 13:27:13
AVEWIN32.DLL : 7.6.0.15 2806272 Bytes 17/09/2007 16:43:56
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 09:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 06:39:17
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 12:16:24
AVPACK32.DLL : 7.3.0.15 360488 Bytes 03/08/2007 07:46:00
AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 06:17:06
AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 11:26:33
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 06:10:18
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 10:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 11:38:13
RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 11:50:37
SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 08:37:21
Configuration settings for the scan:
Jobname..........................: Local Drives
Configuration file...............: c:\program files\avira\antivir personaledition classic\alldrives.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: D:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: All files
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: vendredi 12 octobre 2007 18:21
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'ATKOSD.exe' - '1' Module(s) have been scanned
Scan process '47681728.exe' - '1' Module(s) have been scanned
Scan process 'kwbfcordbe.exe' - '1' Module(s) have been scanned
Scan process 'sdflkj6.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
Scan process 'SMPSYS.EXE' - '1' Module(s) have been scanned
Scan process 'realsched.exe' - '1' Module(s) have been scanned
Scan process 'issch.exe' - '1' Module(s) have been scanned
Scan process 'DetectorApp.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'HControl.exe' - '1' Module(s) have been scanned
Scan process 'igfxpers.exe' - '1' Module(s) have been scanned
Scan process 'hkcmd.exe' - '1' Module(s) have been scanned
Scan process 'igfxtray.exe' - '1' Module(s) have been scanned
Scan process 'ehmsas.exe' - '1' Module(s) have been scanned
Scan process 'SynTPEnh.exe' - '1' Module(s) have been scanned
Scan process 'ehtray.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'dllhost.exe' - '1' Module(s) have been scanned
Scan process 'mcrdsvc.exe' - '1' Module(s) have been scanned
Scan process 'USBDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'ULCDRSvr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'ehSched.exe' - '1' Module(s) have been scanned
Scan process 'ehrecvr.exe' - '1' Module(s) have been scanned
Scan process 'AOLacsd.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
46 processes with 46 modules were scanned
Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Boot sector 'E:\'
[NOTE] No virus was found!
Starting to scan the registry.
The registry was scanned ( '41' files ).
Starting the file scan:
Begin scan in 'C:\' <HDD>
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\WINDOWS\92510234.exe
[DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
[INFO] The file was moved to '4744a0be.qua'!
C:\WINDOWS\new_drv.sys
[DETECTION] Is the Trojan horse TR/Rootkit.Gen
[INFO] The file was moved to '4786a0fb.qua'!
C:\WINDOWS\system32\drivers\sptd.sys
[WARNING] The file could not be opened!
Begin scan in 'E:\'
Begin scan in 'D:\'
Search path D:\ could not be opened!
Le périphérique n'est pas prêt.
End of the scan: vendredi 12 octobre 2007 18:41
Used time: 19:35 min
The scan has been done completely.
5081 Scanning directories
158792 Files were scanned
2 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
2 files were moved to quarantine
0 files were renamed
3 Files cannot be scanned
158790 Files not concerned
7035 Archives were scanned
3 Warnings
0 Notes
et voila le nouveau rapport hijackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:42:26, on 12/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\APPS\SMP\SmpSys.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\bdir\sdflkj6.exe
C:\WINDOWS\47681728.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\alex\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/webhp?sourcei [...] r&ie=UTF-8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.avast.com/i_kat_207.php?lang=fre
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SmpcSys] C:\APPS\SMP\SmpSys.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ttool] C:\WINDOWS\9129837.exe
O4 - HKCU\..\Run: [strkjhk] C:\WINDOWS\bdir\sdflkj6.exe
O4 - HKCU\..\Run: [Packard Bell Data Secure] C:\Program Files\Packard Bell Data Secure\PBDataSecure.exe
O4 - HKCU\..\Run: [tlz] C:\WINDOWS\47681728.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RC.exe.lnk = C:\Program Files\DTV\DVB-T USB 2.0\RC.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{B75A3E17-9371-4186-9819-81D9CE992B53}: NameServer = 192.168.1.1
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: USBDeviceService - Unknown owner - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe
--
End of file - 6846 bytes
Re,
- Télécharge combofix.exe (par sUBs) sur ton Bureau.
- Double clique combofix.exe.
- Tape sur la touche 1 (Yes) pour démarrer le scan.
- Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.
NOTE : Le rapport se trouve également ici : C:\Combofix.txt
Répondre à Angeldark
voila le rapport de combofix :
ComboFix 07-10-12.4 - alex 2007-10-12 19:13:24.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.537 [GMT 2:00]
Running from: C:\Documents and Settings\alex\Bureau\ComboFix.exe
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\13287859.exe
C:\WINDOWS\14508062.exe
C:\WINDOWS\15711890.exe
C:\WINDOWS\16914468.exe
C:\WINDOWS\18116718.exe
C:\WINDOWS\19321171.exe
C:\WINDOWS\20528484.exe
C:\WINDOWS\21730046.exe
C:\WINDOWS\22935671.exe
C:\WINDOWS\24142015.exe
C:\WINDOWS\25346156.exe
C:\WINDOWS\26554062.exe
C:\WINDOWS\27756921.exe
C:\WINDOWS\28963484.exe
C:\WINDOWS\30165296.exe
C:\WINDOWS\31371234.exe
C:\WINDOWS\32573921.exe
C:\WINDOWS\33786328.exe
C:\WINDOWS\34988546.exe
C:\WINDOWS\36193296.exe
C:\WINDOWS\37398968.exe
C:\WINDOWS\38602875.exe
C:\WINDOWS\39808171.exe
C:\WINDOWS\41013718.exe
C:\WINDOWS\42219062.exe
C:\WINDOWS\43427500.exe
C:\WINDOWS\47681728.exe
C:\WINDOWS\8480625.exe
C:\WINDOWS\bdir
C:\WINDOWS\bdir\ffmiu\mOS.zip
C:\WINDOWS\bdir\ffmiu\Vertigo v1.35 by Orion.zip
C:\WINDOWS\bdir\ffmiu\Vertigo v1.35 by pH.zip
C:\WINDOWS\bdir\ffmiu\VerwaltungsProfi Pro v2.1.0.zip
C:\WINDOWS\bdir\ffmiu\Very PDF - PDF Extract TIFF v1.5.zip
C:\WINDOWS\bdir\ffmiu\Very PDF Image2PDF v1.7.zip
C:\WINDOWS\bdir\ffmiu\Very PDF Password Remover v2.2.zip
C:\WINDOWS\bdir\ffmiu\VeryPDF PDFstamp v1.1.0.zip
C:\WINDOWS\bdir\ffmiu\Veteriner Takip v2.1.1.zip
C:\WINDOWS\bdir\ffmiu\VetoPartner Deluxe v2.58 French by FFF.zip
C:\WINDOWS\bdir\ffmiu\VetoPartner Deluxe v2.58 French.zip
C:\WINDOWS\bdir\ffmiu\VetoPartner Deluxe v2.58.zip
C:\WINDOWS\bdir\ffmiu\VetoPartner Deluxe v2.59 French.zip
C:\WINDOWS\bdir\ffmiu\Vexira Antivirus Corporate Edition v2.zip
C:\WINDOWS\bdir\ffmiu\Vexira Antivirus NT-2K Server Pro v2.10.00.01.zip
C:\WINDOWS\bdir\ffmiu\Vexira AntiVirus v2.00 Personal Edition.zip
C:\WINDOWS\bdir\ffmiu\Vexira Antivirus v2.02 Personal Edition Retail.zip
C:\WINDOWS\bdir\ffmiu\Vexira Antivirus Win9x-ME Professional v2.10.00.05.zip
C:\WINDOWS\bdir\ffmiu\Vexira Antivirus Win9x-ME Professional v2.1x.zip
C:\WINDOWS\bdir\ffmiu\Vexira Antivirus XP-2K-NT Professional v2.10.00.05.zip
C:\WINDOWS\bdir\ffmiu\Vexira Antivirus XP-2K-NT Professional v2.1x.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.2.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.20 by NNHM.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.20 by WKT!.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.30 by h2002c.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.30 by Saltine.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.50 by EPS.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.50 by PGC.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.50 by TSRH.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.6 by FHCF.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.6.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.60 by Eminence.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.60 by TSRH.zip
C:\WINDOWS\bdir\ffmiu\Vextractor v1.80.zip
C:\WINDOWS\bdir\ffmiu\VFAPI Reader Codec v1.05.zip
C:\WINDOWS\bdir\ffmiu\VG Daily Backup v1.1.1 German.zip
C:\WINDOWS\bdir\ffmiu\VGFX v1.00.zip
C:\WINDOWS\bdir\ffmiu\VGStudio MAX v1.1.210.zip
C:\WINDOWS\bdir\ffmiu\VGuize 0.9.zip
C:\WINDOWS\bdir\ffmiu\Vi plugin for Eclipse3 v1.11.0.zip
C:\WINDOWS\bdir\ffmiu\VIA Director v1.07.zip
C:\WINDOWS\bdir\ffmiu\VIA Director v1.10.zip
C:\WINDOWS\bdir\ffmiu\ViaCleaner v7.0.zip
C:\WINDOWS\bdir\ffmiu\Viami VIP 2000 Keygen.zip
C:\WINDOWS\bdir\ffmiu\Viami VIP 2000 Patch.zip
C:\WINDOWS\bdir\ffmiu\ViaVoice Millennium Edition.zip
C:\WINDOWS\bdir\ffmiu\Vibe Internet Media Pad v1.7.zip
C:\WINDOWS\bdir\ffmiu\Vibersoft Cafe Manager Pro v3.5.0.zip
C:\WINDOWS\bdir\ffmiu\ViCalc v1.4.0.4.zip
C:\WINDOWS\bdir\ffmiu\ViceCity No-CD Patch.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Plus v2.3.0.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Plus v2.3.1 by EViDENCE.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Plus v2.3.1 by UCC.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Plus v2.4.0 NEW.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Plus v2.4.0.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Plus v2.4.1.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Plus v2.4.2.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Plus v2.4.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Pro v1.1 by TSRH.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Pro v1.1.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Pro v1.2 by Eclipse.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Pro v1.2 by TSRH.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa PRO v1.2.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Pro v1.3.1 by SND.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Pro v1.3.1.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa Pro v1.3.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa v2.3.1.zip
C:\WINDOWS\bdir\ffmiu\ViceVersa v2.4.1.zip
C:\WINDOWS\bdir\ffmiu\Vicomsoft DHCP Server 6.7.0.zip
C:\WINDOWS\bdir\ffmiu\Vicomsoft DHCP Server v7.0.9.zip
C:\WINDOWS\bdir\ffmiu\Vicomsoft INTERGATE v8.6.zip
C:\WINDOWS\bdir\ffmiu\Vicomsoft Internet Gateway 6.6.3.zip
C:\WINDOWS\bdir\ffmiu\vid2Flash v1.00 by DBC.zip
C:\WINDOWS\bdir\ffmiu\vid2Flash v1.00 by LasH.zip
C:\WINDOWS\bdir\ffmiu\vid2Flash v1.00 by Reform.zip
C:\WINDOWS\bdir\ffmiu\vid2flash v1.040 by LasH.zip
C:\WINDOWS\bdir\ffmiu\vid2flash v1.040 by P@nDr@G0n.zip
C:\WINDOWS\bdir\ffmiu\vid2flash v2.9.8.5.zip
C:\WINDOWS\bdir\ffmiu\vid2flash7t.zip
C:\WINDOWS\bdir\ffmiu\vid2Web 1.0.zip
C:\WINDOWS\bdir\ffmiu\Vidal 2001.zip
C:\WINDOWS\bdir\ffmiu\VidEd v3.6.zip
C:\WINDOWS\bdir\ffmiu\VidEd v5.04.zip
C:\WINDOWS\bdir\ffmiu\Video-Datenbank 2.0 (Dolphin Systems).zip
C:\WINDOWS\bdir\ffmiu\Video 2000 Serial by EViDENCE.zip
C:\WINDOWS\bdir\ffmiu\Video 5 v2.1.0 German.zip
C:\WINDOWS\bdir\ffmiu\Video 5 v2.1.0.0.zip
C:\WINDOWS\bdir\ffmiu\ViDEO CAPTURiX 2000 v3.65 build 125.zip
C:\WINDOWS\bdir\ffmiu\ViDEO CAPTURiX 2000 v3.65 build 147.zip
C:\WINDOWS\bdir\ffmiu\ViDEO CAPTURiX 2000 v3.93 build 202.zip
C:\WINDOWS\bdir\ffmiu\ViDEO CAPTURiX 2001 v3.90 build 0182.zip
C:\WINDOWS\bdir\ffmiu\Video CAPTURiX 2001 v3.92 build 196.zip
C:\WINDOWS\bdir\ffmiu\Video Capturix 2001 v3.93.0203.zip
C:\WINDOWS\bdir\ffmiu\Video Capturix Suite v3.99.238.zip
C:\WINDOWS\bdir\ffmiu\Video Caster v2.59.zip
C:\WINDOWS\bdir\ffmiu\Video Conference Recorder v2.5.zip
C:\WINDOWS\bdir\ffmiu\Video Convert v1.4.zip
C:\WINDOWS\bdir\ffmiu\Video Cutter and Splitter In Depth v1.2.0.0.zip
C:\WINDOWS\bdir\ffmiu\Video Draw Poker 1.2.1.zip
C:\WINDOWS\bdir\ffmiu\Video Edit Magic v1.x.zip
C:\WINDOWS\bdir\ffmiu\Video Edit Magic v2.2 by FaB 0ExM3.zip
C:\WINDOWS\bdir\ffmiu\Video Edit Magic v2.2 by TSZ.zip
C:\WINDOWS\bdir\ffmiu\Video Edit Magic v2.2.zip
C:\WINDOWS\bdir\ffmiu\Video Edit Magic v3.15.zip
C:\WINDOWS\bdir\ffmiu\Video Edit Magic v3.18.zip
C:\WINDOWS\bdir\ffmiu\Video Edit Magic v3.33.zip
C:\WINDOWS\bdir\ffmiu\Video Editor v6.0.zip
C:\WINDOWS\bdir\ffmiu\Video Fixer v3.21 by CPHV.zip
C:\WINDOWS\bdir\ffmiu\Video Fixer v3.21.zip
C:\WINDOWS\bdir\ffmiu\Video Fun Box v1.0.zip
C:\WINDOWS\bdir\ffmiu\Video Fun Box v1.03.zip
C:\WINDOWS\bdir\ffmiu\Video Guardian v2.01.011 Bilingual.zip
C:\WINDOWS\bdir\ffmiu\Video Guardian v2.01.017 Bilingual.zip
C:\WINDOWS\bdir\ffmiu\Video Guardian v2.01.022 Multilanguage.zip
C:\WINDOWS\bdir\ffmiu\Video Guardian v2.01.024 Multilanguage.zip
C:\WINDOWS\bdir\ffmiu\Video Guardian v2.01.025 Bilingual.zip
C:\WINDOWS\bdir\ffmiu\Video Guardian v2.01.025.zip
C:\WINDOWS\bdir\ffmiu\Video Kanoid 1.0.zip
C:\WINDOWS\bdir\ffmiu\Video Karaoke Player v1.0.0.zip
C:\WINDOWS\bdir\ffmiu\Video Karaoke Player v1.0.zip
C:\WINDOWS\bdir\ffmiu\Video Maker v2.0.zip
C:\WINDOWS\bdir\ffmiu\Video Man v2.2.3.582.zip
C:\WINDOWS\bdir\ffmiu\Video Pics v1.1A Demo.zip
C:\WINDOWS\bdir\ffmiu\Video Poker 2.0 by EVC.zip
C:\WINDOWS\bdir\ffmiu\Video Poker 2.0 by Lash.zip
C:\WINDOWS\bdir\ffmiu\Video Poker Buddy by NCR.zip
C:\WINDOWS\bdir\ffmiu\Video Poker Buddy by Zorro.zip
C:\WINDOWS\bdir\ffmiu\Video Poker Buddy v5.zip
C:\WINDOWS\bdir\ffmiu\Video Poker Plus 2.01.zip
C:\WINDOWS\bdir\ffmiu\Video Poker v3.zip
C:\WINDOWS\bdir\ffmiu\Video RMD 5.0.zip
C:\WINDOWS\bdir\ffmiu\Video RMD v2004.1 French.zip
C:\WINDOWS\bdir\ffmiu\Video Solution v2.6.zip
C:\WINDOWS\bdir\ffmiu\Video Store v3.1.1.363 German.zip
C:\WINDOWS\bdir\ffmiu\Video Strip Poker 26 Models Icons.zip
C:\WINDOWS\bdir\ffmiu\Video Strip Poker v1.40.zip
C:\WINDOWS\bdir\ffmiu\Video Timer 1.0.6 German.zip
C:\WINDOWS\bdir\ffmiu\Video to Audio Converter v1.0 by DBZ.zip
C:\WINDOWS\bdir\ffmiu\Video to Audio Converter v1.0 by FFF.zip
C:\WINDOWS\bdir\ffmiu\Video to Audio Converter v1.00 by Explosion.zip
C:\WINDOWS\bdir\ffmiu\Video to Audio Converter v1.00 by FFF.zip
C:\WINDOWS\bdir\ffmiu\Video to Audio Converter v1.00 by SND.zip
C:\WINDOWS\bdir\ffmiu\Video to Audio Converter v1.02.zip
C:\WINDOWS\bdir\ffmiu\Video to Audio Converter v1.04 by TBE.zip
C:\WINDOWS\bdir\ffmiu\Video to Audio Converter v1.04 by TSRH.zip
C:\WINDOWS\bdir\ffmiu\Video to Audio Converter v1.06.zip
C:\WINDOWS\bdir\ffmiu\Video Viewer 1.1.zip
C:\WINDOWS\bdir\ffmiu\Video Vision Plus v6.1.4.zip
C:\WINDOWS\bdir\ffmiu\Video Vision v4.1.1.zip
C:\WINDOWS\bdir\ffmiu\Video VoxPhone Gold 2.0.zip
C:\WINDOWS\bdir\ffmiu\Video VoxPhone Monitor 2.0.zip
C:\WINDOWS\bdir\ffmiu\Video2000 by DBC.zip
C:\WINDOWS\bdir\ffmiu\Video2000 by NEMROD34.zip
C:\WINDOWS\bdir\ffmiu\Video2000 by UCC.zip
C:\WINDOWS\bdir\ffmiu\Video2000 v1.0.zip
C:\WINDOWS\bdir\ffmiu\Video2DV v3.0.135.zip
C:\WINDOWS\bdir\ffmiu\Videobase32 v56.00.zip
C:\WINDOWS\bdir\ffmiu\Videobase32 v92.0.zip
C:\WINDOWS\bdir\ffmiu\VideoCap ActiveX Control v2.0.zip
C:\WINDOWS\bdir\ffmiu\VideoCap Live ActiveX Control v1.5.zip
C:\WINDOWS\bdir\ffmiu\VideoCap Pro ActiveX Control v1.0.zip
C:\WINDOWS\bdir\ffmiu\VideoCap Pro ActiveX Control.zip
C:\WINDOWS\bdir\ffmiu\VideoCapturix 2002.zip
C:\WINDOWS\bdir\ffmiu\VideoCapX ActiveX Control 2.1.zip
C:\WINDOWS\bdir\ffmiu\VideoCapX Control for Win32 v1.6.zip
C:\WINDOWS\bdir\ffmiu\VideoCapX OCX v6.0.zip
C:\WINDOWS\bdir\ffmiu\VideoCapX v2.2.zip
C:\WINDOWS\bdir\ffmiu\Videocharge v2.0.1.00.zip
C:\WINDOWS\bdir\ffmiu\VideoCharge v2.2.3.49.zip
C:\WINDOWS\bdir\ffmiu\Videocharge v2.3.3.23.zip
C:\WINDOWS\bdir\ffmiu\Videoclub Profesional LEM v4.6.zip
C:\WINDOWS\bdir\ffmiu\VideoClubPro v4.5.zip
C:\WINDOWS\bdir\ffmiu\VideoDesktop v2.10.zip
C:\WINDOWS\bdir\ffmiu\VideoDesktop v3.1.0.3.zip
C:\WINDOWS\bdir\ffmiu\VideoDesktop v3.1.zip
C:\WINDOWS\bdir\ffmiu\VideoEdit ActiveX Control v1.6.zip
C:\WINDOWS\bdir\ffmiu\VideoEdit Converter Pro v1.6.zip
C:\WINDOWS\bdir\ffmiu\VideoEdit Converter Pro.zip
C:\WINDOWS\bdir\ffmiu\VideoEdit Converter v1.2.zip
C:\WINDOWS\bdir\ffmiu\VideoEdit Pro ActiveX Control v1.0.zip
C:\WINDOWS\bdir\ffmiu\VideoEdit Pro ActiveX Control.zip
C:\WINDOWS\bdir\ffmiu\VideoFixer v3.21.zip
C:\WINDOWS\bdir\ffmiu\VideoFramer Beta v2c.zip
C:\WINDOWS\bdir\ffmiu\VideoFramer v1.03a.zip
C:\WINDOWS\bdir\ffmiu\VideoFramer v1.06.zip
C:\WINDOWS\bdir\ffmiu\Videogram Creator v1.0.3.1.zip
C:\WINDOWS\bdir\ffmiu\VideoGuardian v1.0.zip
C:\WINDOWS\bdir\ffmiu\VideoHound v1.0.zip
C:\WINDOWS\bdir\ffmiu\VideoInspector v1.2.1.71 Multilanguage.zip
C:\WINDOWS\bdir\ffmiu\Videokartotek 4.0.zip
C:\WINDOWS\bdir\ffmiu\VideoLink Mail 2.1.zip
C:\WINDOWS\bdir\ffmiu\VideoLive Mail 3.11.zip
C:\WINDOWS\bdir\ffmiu\VideoLock for Webcam v1.0 by FFF.zip
C:\WINDOWS\bdir\ffmiu\VideoLock for Webcam v1.0.zip
C:\WINDOWS\bdir\ffmiu\VideoLock v1.0 build 4899.030903 by FFF.zip
C:\WINDOWS\bdir\ffmiu\VideoLock v1.0 build 4899.030903.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.2.0.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.2.1 by Flying Raichu.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.2.1 by LasH.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.3.1.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.3.3.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.3.4.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.3.5 by LasH.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.3.5 by TNT.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.3.5.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.4.0.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.5.1.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.5.2 by Evil.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.5.2 by LasH.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.5.3 by eViL tHoR.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.5.5.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.5.6 by LasH.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.5.6 by TSZ.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.53.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.55.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.6.0 by LasH.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.6.0 by PC.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.6.1.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.6.3.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.62.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.63.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.7.1.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.7.2.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v2.70.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v3.0.5.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v3.1.5.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v3.1.7.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v3.11.zip
C:\WINDOWS\bdir\ffmiu\VideoMach v3.16.zip
C:\WINDOWS\bdir\ffmiu\VideoMan v2.02 by AAOCG.zip
C:\WINDOWS\bdir\ffmiu\VideoMan v2.02 by DBC.zip
C:\WINDOWS\bdir\ffmiu\VideoMAN v2.2.3.582.zip
C:\WINDOWS\bdir\ffmiu\VideoMan v3.0.zip
C:\WINDOWS\bdir\ffmiu\VideoMate v8.0.zip
C:\WINDOWS\bdir\ffmiu\VideoOcx v1.3.1.zip
C:\WINDOWS\bdir\ffmiu\VideoSaver 3.0.zip
C:\WINDOWS\bdir\ffmiu\VideoSnap 1.2.zip
C:\WINDOWS\bdir\ffmiu\VideoSnap v1.1.zip
C:\WINDOWS\bdir\ffmiu\VideoSnap v1.2.zip
C:\WINDOWS\bdir\ffmiu\VideoSoft v2.5.x French.zip
C:\WINDOWS\bdir\ffmiu\Videosoft VSFlexGrid 7.0.zip
C:\WINDOWS\bdir\ffmiu\VideoSoft VSFlexGrid Pro 7.0.zip
C:\WINDOWS\bdir\ffmiu\Videosoft VSVIEW 7.0 by DSI.zip
C:\WINDOWS\bdir\ffmiu\Videosoft VSVIEW 7.0 by VB4free.zip
C:\WINDOWS\bdir\ffmiu\VideoStore v3.x All Versions.zip
C:\WINDOWS\bdir\ffmiu\Videothekenverwaltung v1.3.0.1.zip
C:\WINDOWS\bdir\ffmiu\VideoToolBox v0.6.0.23.zip
C:\WINDOWS\bdir\ffmiu\VideoToolbox v0.8.1.36.zip
C:\WINDOWS\bdir\ffmiu\VideoToolbox v0.9.0.37.zip
C:\WINDOWS\bdir\ffmiu\VideoToolBox v0.9.1.39.zip
C:\WINDOWS\bdir\ffmiu\VideoToolBox v0.9.2.42 Multilanguage.zip
C:\WINDOWS\bdir\ffmiu\VideoToolBox v0.9.3.43 Multilanguage.zip
C:\WINDOWS\bdir\ffmiu\VideoToolbox v0.9.3.43.zip
C:\WINDOWS\bdir\ffmiu\VideoToolbox v0.9.3.44.zip
C:\WINDOWS\bdir\ffmiu\VideoToolbox v0.9.5.45 Multilanguage.zip
C:\WINDOWS\bdir\ffmiu\VideoToolbox v0.9.6.46 Multilanguage.zip
C:\WINDOWS\bdir\ffmiu\Videoueberwachung v1.0.3.1 German.zip
C:\WINDOWS\bdir\ffmiu\VideoViewer v1.1.zip
C:\WINDOWS\bdir\ffmiu\VideoVision v4.0.15.zip
C:\WINDOWS\bdir\ffmiu\VideoWave Movie Creator v1.5 ISO.zip
C:\WINDOWS\bdir\ffmiu\Vidfern RAD VRML v1.0.zip
C:\WINDOWS\bdir\ffmiu\Vidilink Pro 1.70.zip
C:\WINDOWS\bdir\ffmiu\Vidilink Pro 1.71 Crack.zip
C:\WINDOWS\bdir\ffmiu\Vidilink Pro 1.71 Keygen by Elila.zip
C:\WINDOWS\bdir\ffmiu\Vidilink Pro 1.71 Keygen by Intension.zip
C:\WINDOWS\bdir\ffmiu\Vidilink Pro 1.71 Keygen by TNT.zip
C:\WINDOWS\bdir\ffmiu\Vidilink Pro 1.71 Serial by Elila.zip
C:\WINDOWS\bdir\ffmiu\Vidilink Pro 1.71 Serial by TNT.zip
C:\WINDOWS\bdir\ffmiu\Vidilink Pro v1.70.zip
C:\WINDOWS\bdir\ffmiu\VidLizard v1.14.zip
C:\WINDOWS\bdir\ffmiu\VidLizard v1.15.zip
C:\WINDOWS\bdir\ffmiu\VidLizard v1.16 by Lucid.zip
C:\WINDOWS\bdir\ffmiu\VidLizard v1.16 by Revenge.zip
C:\WINDOWS\bdir\ffmiu\VidLizard v1.18 by DIstinct.zip
C:\WINDOWS\bdir\ffmiu\VidLizard v1.18 by TSRH.zip
C:\WINDOWS\bdir\ffmiu\VidLizard v1.19 by Lom.zip
C:\WINDOWS\bdir\ffmiu\VidLizard v1.19.zip
C:\WINDOWS\bdir\ffmiu\Vidtracker v1.0.4.zip
C:\WINDOWS\bdir\ffmiu\Vidtracker v2.0.6.zip
C:\WINDOWS\bdir\ffmiu\Viecon Interchange 07.01.02.24.zip
C:\WINDOWS\bdir\ffmiu\Viecon Review 07.01.01.57.zip
C:\WINDOWS\bdir\ffmiu\Vietcong - US Special Forces in Vietnam v1.01 No-CD Crack.zip
C:\WINDOWS\bdir\ffmiu\Vietcong v1.30.zip
C:\WINDOWS\bdir\ffmiu\VietKey 2000 build 10727 NEW.zip
C:\WINDOWS\bdir\ffmiu\VietKey 2000 build 10727.zip
C:\WINDOWS\bdir\ffmiu\VietKey 4.09d.zip
C:\WINDOWS\bdir\ffmiu\Vietkey Office (VKO) v2.0 and v2.1 for Word 2000.zip
C:\WINDOWS\bdir\ffmiu\Vietkey Office (VKO) v2.0 build 10309.zip
C:\WINDOWS\bdir\ffmiu\Vietkey Office (VKO) v2.1 build 10416.zip
C:\WINDOWS\bdir\ffmiu\Vietkey Office (VKO) v2.1 build 10510 for Word 2000.zip
C:\WINDOWS\bdir\ffmiu\Vietkey Office (VKO) v2.1 build 10510.zip
C:\WINDOWS\bdir\ffmiu\Vietnam 2.zip
C:\WINDOWS\bdir\ffmiu\Vietspell Checker 2000 build 10.10.zip
C:\WINDOWS\bdir\ffmiu\Vietspell Checker 2000 build 10.29.zip
C:\WINDOWS\bdir\ffmiu\View Grid v1.2.13.19.zip
C:\WINDOWS\bdir\ffmiu\VIEW Pro 1.65 Dongle Crack.zip
C:\WINDOWS\bdir\ffmiu\View That Zip v3.0 by Karhu.zip
C:\WINDOWS\bdir\ffmiu\View That Zip v3.0 by LasH.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v1.51.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v1.51d.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v1.51e by FHCF.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v1.51e by Orion.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v1.51f.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v1.51h.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v1.52.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v2.0C Crack.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v2.0C Keygen.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v2.1.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v2.12.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v2.2.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion 2000 v2.21.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion Pro v2.53.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion Pro v2.70.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion Pro v2.71.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion Pro v2.72.zip
C:\WINDOWS\bdir\ffmiu\ViewCompanion Standard v2.71.zip
C:\WINDOWS\bdir\ffmiu\Viewer In Depth v1.2.0.0.zip
C:\WINDOWS\bdir\ffmiu\ViewFolderSize v2.52.zip
C:\WINDOWS\bdir\ffmiu\ViewFolderSize v3.10.zip
C:\WINDOWS\bdir\sdflkj6.exe
C:\WINDOWS\system32\nvs2.inf
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\new_drv
((((((((((((((((((((((((((((( Fichiers créés 2007-09-12 to 2007-10-12 ))))))))))))))))))))))))))))))))))))
.
2007-10-12 19:11 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-10-12 18:16 <REP> d----c--- C:\Program Files\Avira
2007-10-12 18:16 <REP> d----c--- C:\Documents and Settings\All Users\Application Data\Avira
2007-10-11 12:47 <REP> d----c--- C:\Documents and Settings\alex\Application Data\AVG7
2007-10-11 12:46 <REP> d----c--- C:\Documents and Settings\LocalService\Application Data\AVG7
2007-10-10 18:45 582,656 --------- C:\WINDOWS\system32\dllcache\rpcrt4.dll
2007-09-20 18:53 <REP> d----c--- C:\Documents and Settings\alex\Application Data\AdobeUM
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-11 10:58 --------- dc----w C:\Documents and Settings\All Users\Application Data\Avg7
2007-10-10 19:09 --------- d-----w C:\Program Files\eMule
2007-10-07 14:30 12,528 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-09-26 17:00 --------- dc----w C:\Program Files\Java
2007-09-07 16:46 --------- dc----w C:\Documents and Settings\alex\Application Data\Ulead Systems
2007-09-07 16:11 --------- dc----w C:\Documents and Settings\alex\Application Data\Samsung
2007-09-07 16:06 --------- dc-h--w C:\Program Files\InstallShield Installation Information
2007-09-07 16:06 --------- dc----w C:\Program Files\Samsung
2005-09-14 09:58 20,480 -c--a-w C:\Program Files\Fichiers communs\UninstallDrv.exe
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-10 14:00]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 14:00]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 14:00]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-09-29 14:01]
"Raccourci vers la page des propriétés de High Definition Audio"="HDAShCut.exe" [2005-01-07 17:07 C:\WINDOWS\system32\HdAShCut.exe]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-05-12 14:36]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2006-08-14 14:39]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2006-08-14 14:41]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2006-08-14 14:38]
"HControl"="C:\WINDOWS\ATK0100\HControl.exe" [2006-04-17 17:24]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
"DetectorApp"="C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe" [2005-10-20 06:15]
"ISUSPM Startup"="C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 16:50]
"ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2004-07-27 16:50]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-06-19 23:18]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-06-19 21:07]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2007-08-31 12:25]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24]
"SmpcSys"="C:\APPS\SMP\SmpSys.exe" [2005-11-17 09:51]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-28 17:25]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 14:00]
"strkjhk"="C:\WINDOWS\bdir\sdflkj6.exe" []
"Packard Bell Data Secure"="C:\Program Files\Packard Bell Data Secure\PBDataSecure.exe" []
"kwbfcordbe"="c:\documents and settings\alex\local settings\application data\kwbfcordbe.exe" [2007-10-07 15:08]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
R3 SynMini;USB2.0 VGA WebCam;C:\WINDOWS\system32\Drivers\SynMini.sys
R3 SynScan;USB2.0 VGA WebCam Still Image;C:\WINDOWS\system32\Drivers\SynScan.sys
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM);C:\WINDOWS\system32\DRIVERS\sscdbus.sys
S3 sscdmdfl;SAMSUNG CDMA Modem Filter;C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
S3 sscdmdm;SAMSUNG CDMA Modem Drivers;C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
S3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
S3 WDM_Capture_225;Digital-TV Receiver.;C:\WINDOWS\system32\Drivers\WDM_Capture_225.sys
S3 WDM_Loader_225;DVB-T TV;C:\WINDOWS\system32\Drivers\WDM_Loader_225.sys
*Newly Created Service* - SSMDRV
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2007-10-12 17:00:00 C:\WINDOWS\Tasks\Configurer mon PC.job"
.
**************************************************************************
catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-12 19:24:55
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
C:\Documents and Settings\alex\Local Settings\Application Data\kwbfcordbe.exe [3712] 0x84838808
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-10-12 19:26:00 - machine was rebooted
.
--- E O F ---
C'est mieux ?
Répondre à Angeldark
oui, c'est mieux
merci
mon pc ne rame plus mais j'ai encore quelques pubs.
Reposte un rapport Hijackthis.
Répondre à Angeldark
voila le rapport :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:11:47, on 12/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\APPS\SMP\SmpSys.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\alex\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/webhp?sourcei [...] r&ie=UTF-8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.avast.com/i_kat_207.php?lang=fre
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SmpcSys] C:\APPS\SMP\SmpSys.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [strkjhk] C:\WINDOWS\bdir\sdflkj6.exe
O4 - HKCU\..\Run: [Packard Bell Data Secure] C:\Program Files\Packard Bell Data Secure\PBDataSecure.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RC.exe.lnk = C:\Program Files\DTV\DVB-T USB 2.0\RC.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{B75A3E17-9371-4186-9819-81D9CE992B53}: NameServer = 192.168.1.1
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: USBDeviceService - Unknown owner - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe
--
End of file - 6693 bytes
bonjours!! j'ai un probleme similaire est ce que vous pouvez m'aider merci!!
desole de coupez votre conversation
merci d'avance
Chacun son sujet !
---
Refais un scan Combofix.
Message édité par Angeldark le 12-10-2007 à 20:22:23
Répondre à Angeldark
ComboFix 07-10-12.4 - alex 2007-10-12 21:31:19.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.643 [GMT 2:00]
Running from: C:\Documents and Settings\alex\Bureau\ComboFix.exe
.
((((((((((((((((((((((((((((( Fichiers créés 2007-09-12 to 2007-10-12 ))))))))))))))))))))))))))))))))))))
.
2007-10-12 19:11 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-10-12 18:16 <REP> d----c--- C:\Program Files\Avira
2007-10-12 18:16 <REP> d----c--- C:\Documents and Settings\All Users\Application Data\Avira
2007-10-11 12:47 <REP> d----c--- C:\Documents and Settings\alex\Application Data\AVG7
2007-10-11 12:46 <REP> d----c--- C:\Documents and Settings\LocalService\Application Data\AVG7
2007-10-10 18:45 582,656 --------- C:\WINDOWS\system32\dllcache\rpcrt4.dll
2007-09-20 18:53 <REP> d----c--- C:\Documents and Settings\alex\Application Data\AdobeUM
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-11 10:58 --------- dc----w C:\Documents and Settings\All Users\Application Data\Avg7
2007-10-10 19:09 --------- d-----w C:\Program Files\eMule
2007-10-07 14:30 12,528 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-09-26 17:00 --------- dc----w C:\Program Files\Java
2007-09-07 16:46 --------- dc----w C:\Documents and Settings\alex\Application Data\Ulead Systems
2007-09-07 16:11 --------- dc----w C:\Documents and Settings\alex\Application Data\Samsung
2007-09-07 16:06 --------- dc-h--w C:\Program Files\InstallShield Installation Information
2007-09-07 16:06 --------- dc----w C:\Program Files\Samsung
2005-09-14 09:58 20,480 -c--a-w C:\Program Files\Fichiers communs\UninstallDrv.exe
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-10 14:00]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 14:00]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 14:00]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-09-29 14:01]
"Raccourci vers la page des propriétés de High Definition Audio"="HDAShCut.exe" [2005-01-07 17:07 C:\WINDOWS\system32\HdAShCut.exe]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-05-12 14:36]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2006-08-14 14:39]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2006-08-14 14:41]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2006-08-14 14:38]
"HControl"="C:\WINDOWS\ATK0100\HControl.exe" [2006-04-17 17:24]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
"DetectorApp"="C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe" [2005-10-20 06:15]
"ISUSPM Startup"="C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 16:50]
"ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2004-07-27 16:50]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-06-19 23:18]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-06-19 21:07]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2007-08-31 12:25]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24]
"SmpcSys"="C:\APPS\SMP\SmpSys.exe" [2005-11-17 09:51]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-28 17:25]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 14:00]
"strkjhk"="C:\WINDOWS\bdir\sdflkj6.exe" []
"Packard Bell Data Secure"="C:\Program Files\Packard Bell Data Secure\PBDataSecure.exe" []
"kwbfcordbe"="c:\documents and settings\alex\local settings\application data\kwbfcordbe.exe" [2007-10-07 15:08]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
R3 SynMini;USB2.0 VGA WebCam;C:\WINDOWS\system32\Drivers\SynMini.sys
R3 SynScan;USB2.0 VGA WebCam Still Image;C:\WINDOWS\system32\Drivers\SynScan.sys
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM);C:\WINDOWS\system32\DRIVERS\sscdbus.sys
S3 sscdmdfl;SAMSUNG CDMA Modem Filter;C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
S3 sscdmdm;SAMSUNG CDMA Modem Drivers;C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
S3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
S3 WDM_Capture_225;Digital-TV Receiver.;C:\WINDOWS\system32\Drivers\WDM_Capture_225.sys
S3 WDM_Loader_225;DVB-T TV;C:\WINDOWS\system32\Drivers\WDM_Loader_225.sys
*Newly Created Service* - SSMDRV
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2007-10-12 17:30:00 C:\WINDOWS\Tasks\Configurer mon PC.job"
.
**************************************************************************
catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-12 21:32:27
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
C:\Documents and Settings\alex\Local Settings\Application Data\kwbfcordbe.exe [3712] 0x84838808
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-10-12 21:33:11
C:\ComboFix2.txt ... 2007-10-12 19:26
.
--- E O F ---
Tu vous ce fichier ?
C:\Documents and Settings\alex\Local Settings\Application Data\kwbfcordbe.exe
Répondre à Angeldark
non, je ne le trouve pas!
Re,
Copie (Ctrl+C) le texte se situant dans le cadre ci-dessous :
File::
|
Ouvre le Bloc-Notes puis colle (Ctrl+V) le texte précedemment copié.
Sauvegarde ce fichier sous le nom de CFScript.txt.
Glisse maintenant le fichier CFScript.txt dans Combofix.exe comme ci-dessous :
Cela va relancer Combofix, tape sur 1 puis valide. Après redémarrage, poste le contenu du rapport Combofix.txt accompagné d'un rapport Hijackthis.
NOTE : S'il n'y a pas de rédémarrage, poste quand même les rapports demandés.
Répondre à Angeldark
voila le rapport de ComboFix :
ComboFix 07-10-12.4 - alex 2007-10-12 22:15:40.3 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.618 [GMT 2:00]
Running from: C:\Documents and Settings\alex\Bureau\ComboFix.exe
Command switches used :: C:\Documents and Settings\alex\Bureau\CFScript.txt
* Created a new restore point
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\alex\local settings\application data\kwbfcordbe.exe
.
((((((((((((((((((((((((((((( Fichiers créés 2007-09-12 to 2007-10-12 ))))))))))))))))))))))))))))))))))))
.
2007-10-12 19:11 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-10-12 18:16 <REP> d----c--- C:\Program Files\Avira
2007-10-12 18:16 <REP> d----c--- C:\Documents and Settings\All Users\Application Data\Avira
2007-10-11 12:47 <REP> d----c--- C:\Documents and Settings\alex\Application Data\AVG7
2007-10-11 12:46 <REP> d----c--- C:\Documents and Settings\LocalService\Application Data\AVG7
2007-10-10 18:45 582,656 --------- C:\WINDOWS\system32\dllcache\rpcrt4.dll
2007-09-20 18:53 <REP> d----c--- C:\Documents and Settings\alex\Application Data\AdobeUM
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-11 10:58 --------- dc----w C:\Documents and Settings\All Users\Application Data\Avg7
2007-10-10 19:09 --------- d-----w C:\Program Files\eMule
2007-10-07 14:30 12,528 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-09-26 17:00 --------- dc----w C:\Program Files\Java
2007-09-07 16:46 --------- dc----w C:\Documents and Settings\alex\Application Data\Ulead Systems
2007-09-07 16:11 --------- dc----w C:\Documents and Settings\alex\Application Data\Samsung
2007-09-07 16:06 --------- dc-h--w C:\Program Files\InstallShield Installation Information
2007-09-07 16:06 --------- dc----w C:\Program Files\Samsung
2005-09-14 09:58 20,480 -c--a-w C:\Program Files\Fichiers communs\UninstallDrv.exe
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-10 14:00]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 14:00]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 14:00]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-09-29 14:01]
"Raccourci vers la page des propriétés de High Definition Audio"="HDAShCut.exe" [2005-01-07 17:07 C:\WINDOWS\system32\HdAShCut.exe]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-05-12 14:36]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2006-08-14 14:39]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2006-08-14 14:41]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2006-08-14 14:38]
"HControl"="C:\WINDOWS\ATK0100\HControl.exe" [2006-04-17 17:24]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
"DetectorApp"="C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe" [2005-10-20 06:15]
"ISUSPM Startup"="C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 16:50]
"ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2004-07-27 16:50]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-06-19 23:18]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-06-19 21:07]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2007-08-31 12:25]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
R3 SynMini;USB2.0 VGA WebCam;C:\WINDOWS\system32\Drivers\SynMini.sys
R3 SynScan;USB2.0 VGA WebCam Still Image;C:\WINDOWS\system32\Drivers\SynScan.sys
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM);C:\WINDOWS\system32\DRIVERS\sscdbus.sys
S3 sscdmdfl;SAMSUNG CDMA Modem Filter;C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
S3 sscdmdm;SAMSUNG CDMA Modem Drivers;C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
S3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
S3 WDM_Capture_225;Digital-TV Receiver.;C:\WINDOWS\system32\Drivers\WDM_Capture_225.sys
S3 WDM_Loader_225;DVB-T TV;C:\WINDOWS\system32\Drivers\WDM_Loader_225.sys
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2007-10-12 17:30:00 C:\WINDOWS\Tasks\Configurer mon PC.job"
.
**************************************************************************
catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-12 22:17:55
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-10-12 22:18:54 - machine was rebooted
C:\ComboFix2.txt ... 2007-10-12 21:33
C:\ComboFix3.txt ... 2007-10-12 19:26
.
--- E O F ---
et le nouveau rapport HijackThis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:19:22, on 12/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\alex\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/webhp?sourcei [...] r&ie=UTF-8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.avast.com/i_kat_207.php?lang=fre
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RC.exe.lnk = C:\Program Files\DTV\DVB-T USB 2.0\RC.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{B75A3E17-9371-4186-9819-81D9CE992B53}: NameServer = 192.168.1.1
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: USBDeviceService - Unknown owner - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe
--
End of file - 6143 bytes
Mieux ?
Répondre à Angeldark
oui, je n'ai plus de pubs
merci beaucoup de ton aide
quel logiciel dois je garder ou installer pour ne plus avoir se genre de problèmes.
et merci encore!
Répondre à Angeldark
merci beaucoup de ton aide ces tutos vont bien m'aider
Bonne continuation 
Répondre à Angeldark
Il y a 2255 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
