Se connecter / S'enregistrer
Votre question

Problème de nombreuses pop ups sous firefox

Tags :
  • Firefox
  • Sécurité
Dernière réponse : dans Sécurité et virus
16 Mars 2007 21:11:10

Bonjour,
J'utilise mozilla firefox et depuis avant hier de nombreuses pops up n'arrêtent pas de s'ouvrir, du genre spyware, navisearch, rencontres... J'ai fait un nettoyage avec spybot , rien n'a changé, et j'ai fait une analyse avast qui n'a rien trouvé.

Pouvez vous m'aidez svp

Autres pages sur : probleme nombreuses pop ups firefox

a b 8 Sécurité
16 Mars 2007 21:13:50

Bonjour,

On ne t'a pas déjà aidé ?!

Télécharge Hijackthis (de Merjin).
Dézippe-le dans un dossier ou sur ton Bureau.

Lance l'application.
Choisis l'option "Do a system scan and save a logfile"
Le Bloc-Notes s'ouvre :
-> Edition / Sélectionner Tout
-> Edition / Copier
Colle le rapport ici.

AIDE : Tuto en vidéo sur Hijackthis
16 Mars 2007 21:25:04

Angeldark a dit :
Bonjour,

On ne t'a pas déjà aidé ?!


euh... oui il y a longtemps! et le problème est réaparru :) 

voici le rapport

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
c:\Apps\Powercinema\Kernel\TV\CLCapSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Inventel\Gateway\wlancfg.exe
c:\Apps\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Apps\Powercinema\PCMService.exe
C:\Program Files\Lexmark 2300 Series\lxcgmon.exe
C:\Program Files\Lexmark 2300 Series\ezprint.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\MSNMES~1\msnmsgr.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\lxcgcoms.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Owner.NOM-2F28950417B\Bureau\hijackthis\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://french.ircfast.com/index.php?rvs=hompag
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [LXCGCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [lxcgmon.exe] "C:\Program Files\Lexmark 2300 Series\lxcgmon.exe"
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 2300 Series\ezprint.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\MSNMES~1\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O17 - HKLM\System\CCS\Services\Tcpip\..\{51C8D022-CD79-4616-97C4-27D83BBA160B}: NameServer = 80.10.246.2,80.10.246.129
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\Apps\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\Apps\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: lxcg_device - Unknown owner - C:\WINDOWS\system32\lxcgcoms.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe


Merci
Contenus similaires
a b 8 Sécurité
16 Mars 2007 21:27:03

Si tu fais pas attention aussi :sarcastic: 

Télécharge Blacklight (F-Secure), clique sur " I ACCEPT " en bas de la page :
Clique sur le premier " Download " afin de télécharger le programme
Sauvegarde le sur ton Bureau
Double-clique blbeta.exe et accepte la licence; clique Scan puis Next.

A la fin du scan, NE TOUCHE A RIEN !

Tu verras un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).
Nous devons analyser ce rapport, ferme donc le BlackLight.

Poste le rapport sur le forum.

AIDE : Tuto sur BlackLight (Malekal)
16 Mars 2007 21:41:36

Angeldark a dit :
Si tu fais pas attention aussi :sarcastic: 


Je fais très attention au contraire, mais ces derniers temps je n'ai malheureusement pas été la seule à utiliser mon pc, d'où le retour des soucis!
Enfin bref, merci beaucoup de ta réponse, voilà le rapport

03/16/07 21:30:45 [Info]: BlackLight Engine 1.0.55 initialized
03/16/07 21:30:45 [Info]: OS: 5.1 build 2600 (Service Pack 2)
03/16/07 21:30:45 [Note]: 7019 4
03/16/07 21:30:45 [Note]: 7005 0
03/16/07 21:31:06 [Note]: 7006 0
03/16/07 21:31:06 [Note]: 7011 1572
03/16/07 21:31:06 [Note]: 7026 0
03/16/07 21:31:06 [Note]: 7026 0
03/16/07 21:31:06 [Note]: 7024 3
03/16/07 21:31:06 [Info]: Hidden process: C:\windows\system32\ewpmjfchzs.exe
03/16/07 21:31:15 [Note]: FSRAW library version 1.7.1021
03/16/07 21:36:14 [Info]: Hidden file: c:\WINDOWS\system32\ewpmjfchzs.dat
03/16/07 21:36:14 [Note]: 10002 1
03/16/07 21:36:14 [Info]: Hidden file: C:\windows\system32\ewpmjfchzs.exe
03/16/07 21:36:14 [Note]: 10002 1
03/16/07 21:36:14 [Info]: Hidden file: c:\WINDOWS\system32\ewpmjfchzs_nav.dat
03/16/07 21:36:14 [Note]: 10002 1
03/16/07 21:36:14 [Info]: Hidden file: c:\WINDOWS\system32\ewpmjfchzs_navps.dat
03/16/07 21:36:14 [Note]: 10002 1
03/16/07 21:36:20 [Note]: 10002 2
03/16/07 21:36:20 [Note]: 10002 2
03/16/07 21:36:20 [Info]: Hidden file: c:\WINDOWS\system32\hal.dll
03/16/07 21:36:20 [Note]: 10002 2
03/16/07 21:36:20 [Info]: Hidden file: c:\WINDOWS\system32\iassam.dll
03/16/07 21:36:20 [Note]: 10002 2
03/16/07 21:37:24 [Note]: 2000 1012
03/16/07 21:37:24 [Note]: 2000 1012
03/16/07 21:37:24 [Note]: 2000 1012
03/16/07 21:37:24 [Note]: 2000 1012
03/16/07 21:37:24 [Note]: 2000 1012
03/16/07 21:37:24 [Note]: 2000 1012
03/16/07 21:37:24 [Note]: 2000 1012
03/16/07 21:37:24 [Note]: 2000 1012

a b 8 Sécurité
16 Mars 2007 21:52:12

Re,

Avant de commencer, lis la licence de Blacklight (F-Secure)
En lisant ce document, tu as pris connaissance et accepté les conditions d'utilisation de ce programme inclus dans Navilog1.zip.

Télécharge maintenant Navilog1.zip (Il Mafioso)
Enregistre-le sur ton Bureau.
Dézippe le contenu de l'archive en faisant un Clique droit sur Navilog1.zip puis en choisissant Tout Extraire.

Redémarre en mode sans échec

Double clique sur Navilog1.bat.
Suis les instructions. Choisis ensuitel'option 4 puis valide.
Laisse toi guider et réponds aux questions éventuelles.

Ton bureau va disparaître, c'est normal !

Il va te demander de saisir le nom de fichier, saisie ce qui est en gras ci-dessous et rien d'autre puis valide :
ewpmjfchzs

Patiente jusqu'à l'apparition de ce message :
"*** Nettoyage Termine le ..... ***"

Appuie sur une touche comme demandé, le Bloc-notes va s'ouvrir.
Sauvegarde le rapport de manière à le retrouver en mode normal.
Referme le Bloc-notes. Ton bureau va maintenant réapparaître.
Redémarre normalement puis poste le rapport sauvegardé auparavant (C:\cleannavi.txt)
Ainsi qu'un nouveau rapport Hijackthis.

Ferme Internet Explorer puis Démarrer/Panneau de Configuration/Options Internet.
Choisis l'onglet Contenu puis onglet Certificats.
Si tu trouves les programmes suivant (en particulier dans Editeurs approuvés), supprime-les :
electronic-group
egroup
Montorgueil
VIP
"Sunny Day Design Ltd"
16 Mars 2007 21:56:45

euh au risque de paraître complétment antipathique et pitoyable lol mais euh... navilog1.bat c ou ça????
a b 8 Sécurité
16 Mars 2007 21:58:26

J'ai ajouté les liens ;) 
16 Mars 2007 22:24:41

RAPPORT CLEANNAVI



Mode suppression par méthode manuelle

Nom du fichier saisi : ewpmjfchzs

*** Recherche, Creation backups et suppression ***

C:\WINDOWS\system32\ewpmjfchzs_navup.dat absent !
C:\WINDOWS\system32\ewpmjfchzs_navtmp.dat absent !
C:\WINDOWS\system32\ewpmjfchzs_m2s.xml absent !

C:\WINDOWS\system32\ewpmjfchzs.exe trouvé !
Copie C:\WINDOWS\system32\ewpmjfchzs.exe réalisé avec succès !
C:\WINDOWS\system32\ewpmjfchzs.exe supprimé !

C:\WINDOWS\system32\ewpmjfchzs.dat trouvé !
Copie C:\WINDOWS\system32\ewpmjfchzs.dat réalisé avec succès !
C:\WINDOWS\system32\ewpmjfchzs.dat supprimé !

C:\WINDOWS\system32\ewpmjfchzs_nav.dat trouvé !
Copie C:\WINDOWS\system32\ewpmjfchzs_nav.dat réalisé avec succès !
C:\WINDOWS\system32\ewpmjfchzs_nav.dat supprimé !

C:\WINDOWS\system32\ewpmjfchzs_navps.dat trouvé !
Copie C:\WINDOWS\system32\ewpmjfchzs_navps.dat réalisé avec succès !
C:\WINDOWS\system32\ewpmjfchzs_navps.dat supprimé !

C:\WINDOWS\prefetch\ewpmjfchzs*.pf trouvé !
Copie C:\WINDOWS\prefetch\ewpmjfchzs*.pf réalisé avec succès !
C:\WINDOWS\prefetch\ewpmjfchzs*.pf supprimé !

*** Suppression dossiers dans C:\WINDOWS ***


*** Suppression dossiers dans C:\Program Files ***


*** Suppression dossiers dans C:\Documents and Settings\All Users\Application Data ***


*** Suppression dossiers dans C:\Documents and Settings\Owner.NOM-2F28950417B\Application Data ***



*** Suppression fichiers ***

C:\WINDOWS\pack.epk supprimé !
C:\WINDOWS\system32\nvs2.inf supprimé !

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\Owner.NOM-2F28950417B\Local Settings\Temp effectué !


*** Sauvegarde du registre vers dossier Backupnavi***


sauvegarde du registre réalisée avec succès !


*** Nettoyage registre ***


Nettoyage registre Ok

*** Traitement Recherche complémentaire ***

1)Recherche fichiers connus:


2)Recherche et Suppression Heuristique :

*
**
***
****
*****
******
*******
********

*** Nettoyage termine le 16/03/2007 à 22:13:37,71 ***


NOUVEAU RAPPORT HIJACKTHIS


Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
c:\Apps\Powercinema\Kernel\TV\CLCapSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Inventel\Gateway\wlancfg.exe
c:\Apps\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Apps\Powercinema\PCMService.exe
C:\Program Files\Lexmark 2300 Series\lxcgmon.exe
C:\Program Files\Lexmark 2300 Series\ezprint.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\MSNMES~1\msnmsgr.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\lxcgcoms.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Owner.NOM-2F28950417B\Bureau\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://french.ircfast.com/index.php?rvs=hompag
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [LXCGCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [lxcgmon.exe] "C:\Program Files\Lexmark 2300 Series\lxcgmon.exe"
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 2300 Series\ezprint.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\MSNMES~1\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O17 - HKLM\System\CCS\Services\Tcpip\..\{51C8D022-CD79-4616-97C4-27D83BBA160B}: NameServer = 80.10.246.2,80.10.246.129
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\Apps\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\Apps\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: lxcg_device - Unknown owner - C:\WINDOWS\system32\lxcgcoms.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe



Merci beaucoup pour ton aide angeldark!!! A priori il semblerait que ce soit rentré dans l'ordre !
a b 8 Sécurité
16 Mars 2007 22:27:52

Re,

Télécharge SREng (par Smallfrogs).
Extrais tout son contenu sur ton Bureau.
Du dossier sreng2 qui se trouve maintenant sur ton Bureau, double clique sur SREng.exe afin de lancer l'outil.
Clique sur "Smart Scan"
Ensuite, clique sur le bouton [Scan]

Lorsque complété, clique sur le bouton [Save Reports]
Sauvegarde le rapport sur ton Bureau.
Copie/colle le contenu du fichier SREnglLOG.log dans ta prochaine réponse, s'il te plaît.

&

Télécharge Clean.zip (de Malekal),
Décompresse-le sur ton bureau (Clique-Droit/Extraire tout), tu dois obtenir un dossier Clean.
Ouvre le dossier clean, double-clique sur clean.cmd.
Choisis l'option 1 puis patiente. Poste ensuite le contenu du rapport.

20 Mars 2007 18:24:25

desolé j'avais pas vu le post :??: 

voilà les deux rapports:


  1. 2007-03-20,18:18:42
  2.  
  3. System Repair Engineer 2.4.12.806
  4. Smallfrogs (http://www.KZTechs.com)
  5.  
  6. Windows XP Home Edition Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed
  7.  
  8. Follow item(s) have been choosed:
  9. All Boot Items (Including Registry, Startup Folders, Services and so on)
  10. Browser Add-ons
  11. Runing Processes (Including process model information)
  12. File Associations
  13. Winsock Provider
  14. Autorun.Inf
  15. HOSTS File
  16.  
  17.  
  18. Boot Items
  19. Registry
  20. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  21. <CTFMON.EXE><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
  22. <LogitechSoftwareUpdate><"C:\Program Files\Logitech\Video\ManifestEngine.exe" boot> [N/A]
  23. <msnmsgr><"C:\PROGRA~1\MSNMES~1\msnmsgr.exe" /background> [(Verified)Microsoft Corporation]
  24. <MSMSGS><"C:\Program Files\Messenger\msmsgs.exe" /background> [Microsoft Corporation]
  25. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
  26. <{005EF14F-0708-1036-1028-051213040021}><"C:\Program Files\Fichiers communs\{005EF14F-0708-1036-1028-051213040021}\Update.exe" mc-110-12-0000272> [N/A]
  27. [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
  28. <load><> [N/A]
  29. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  30. <SoundMan><SOUNDMAN.EXE> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
  31. <PCMService><"c:\Apps\Powercinema\PCMService.exe"> [CyberLink Corp.]
  32. <LXCGCATS><rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
  33. <lxcgmon.exe><"C:\Program Files\Lexmark 2300 Series\lxcgmon.exe"> [Lexmark International, Inc.]
  34. <EzPrint><"C:\Program Files\Lexmark 2300 Series\ezprint.exe"> [Lexmark International Inc.]
  35. <LVCOMSX><C:\WINDOWS\system32\LVCOMSX.EXE> [Logitech Inc.]
  36. <LogitechVideoRepair><C:\Program Files\Logitech\Video\ISStart.exe > [Logitech Inc.]
  37. <LogitechVideoTray><C:\Program Files\Logitech\Video\LogiTray.exe> [Logitech Inc.]
  38. <avast!><C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe> [(Verified)ALWIL Software]
  39. <SunJavaUpdateSched><"C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"> [(Verified)"Sun Microsystems, Inc."]
  40. <QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Computer, Inc.]
  41. <TkBellExe><"C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot> [(Verified)"RealNetworks, Inc."]
  42. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  43. <shell><Explorer.exe> [(Verified)Microsoft Windows Publisher]
  44. <Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
  45. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
  46. <AppInit_DLLs><> [N/A]
  47. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  48. <UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]
  49. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
  50. <CDBurn><> [N/A]
  51. <WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll> [(Verified)Microsoft Windows Publisher]
  52. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
  53. <WinlogonNotify: WgaLogon><WgaLogon.dll> [(Verified)Microsoft Corporation]
  54. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
  55. <IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows Component Publisher]
  56.  
  57. ==================================
  58. Startup Folders
  59. [Logitech Desktop Messenger]
  60. <C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk --> C:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LDMConf.exe [Logitech]><N>
  61.  
  62. ==================================
  63. Services
  64. [Gestion d'applications / AppMgmt][Stopped/Manual Start]
  65. <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>
  66. [ASP.NET State Service / aspnet_state][Stopped/Manual Start]
  67. <C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
  68. [avast! iAVS4 Control Service / aswUpdSv][Running/Auto Start]
  69. <"C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"><N/A>
  70. [avast! Antivirus / avast! Antivirus][Running/Auto Start]
  71. <"C:\Program Files\Alwil Software\Avast4\ashServ.exe"><>
  72. [avast! Mail Scanner / avast! Mail Scanner][Running/Manual Start]
  73. <"C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service><ALWIL Software>
  74. [avast! Web Scanner / avast! Web Scanner][Running/Manual Start]
  75. <"C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service><ALWIL Software>
  76. [Boonty Games / Boonty Games][Stopped/Disabled]
  77. <"C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe"><BOONTY>
  78. [C-DillaCdaC11BA / C-DillaCdaC11BA][Running/Auto Start]
  79. <C:\WINDOWS\system32\drivers\CDAC11BA.EXE><Macrovision>
  80. [CyberLink Background Capture Service (CBCS) / CLCapSvc][Running/Auto Start]
  81. <"c:\Apps\Powercinema\Kernel\TV\CLCapSvc.exe"><>
  82. [CyberLink Task Scheduler (CTS) / CLSched][Running/Auto Start]
  83. <"c:\Apps\Powercinema\Kernel\TV\CLSched.exe"><>
  84. [F-Secure Gatekeeper Handler Starter / F-Secure Gatekeeper Handler Starter][Stopped/Disabled]
  85. <"C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsgk32st.exe"><N/A>
  86. [F-Secure Anti-Virus Firewall Daemon / FSDFWD][Stopped/Disabled]
  87. <"C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdfwd.exe"><N/A>
  88. [F-Secure Management Agent / FSMA][Stopped/Disabled]
  89. <"C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.EXE"><F-Secure Corporation>
  90. [InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  91. <"C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>
  92. [kavsvc / kavsvc][Stopped/Disabled]
  93. <"C:\Program Files\Kaspersky Lab\Kaspersky Security Suite\Kaspersky Anti-Virus Personal\kavsvc.exe"><N/A>
  94. [lxcg_device / lxcg_device][Running/Manual Start]
  95. <C:\WINDOWS\system32\lxcgcoms.exe -service><>
  96. [Perfcas / Perfcas][Stopped/Disabled]
  97. <><N/A>
  98. [Service de lancement de WlanCfg / Wlancfg][Running/Auto Start]
  99. <C:\Program Files\Inventel\Gateway\wlancfg.exe SVC><Inventel>
  100.  
  101. ==================================
  102. Drivers
  103. [Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
  104. <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
  105. [bdfdll / bdfdll][Stopped/Manual Start]
  106. <\??\C:\Program Files\Softwin\BitDefender9\bdfdll.sys><N/A>
  107. [Bluetooth Audio Service / BlueletAudio][Stopped/Manual Start]
  108. <system32\DRIVERS\blueletaudio.sys><IVT Corporation>
  109. [Bluetooth PAN Network Adapter / BT][Stopped/Manual Start]
  110. <system32\DRIVERS\btnetdrv.sys><IVT Corporation>
  111. [Bluetooth USB For Bluetooth Service / Btcsrusb][Stopped/Manual Start]
  112. <System32\Drivers\btcusb.sys><IVT Corporation>
  113. [Bluetooth HID Enumerator / BTHidEnum][Stopped/Manual Start]
  114. <system32\DRIVERS\vbtenum.sys><N/A>
  115. [Bluetooth HID Manager Service / BTHidMgr][Running/Boot Start]
  116. <\SystemRoot\System32\Drivers\BTHidMgr.sys><IVT Corporation>
  117. [Bluetooth Network Filter / BTNetFilter][Stopped/Manual Start]
  118. <\??\C:\WINDOWS\system32\drivers\BTNetFilter.sys><N/A>
  119. [CdaC15BA / CdaC15BA][Running/Auto Start]
  120. <\??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS><Macrovision Europe Ltd>
  121. [F-Secure File System Filter / F-Secure Filter][Stopped/Auto Start]
  122. <\??\C:\Program Files\Securitoo\Av_Fw\Anti-Virus\Win2K\FSfilter.sys><N/A>
  123. [F-Secure Gatekeeper / F-Secure Gatekeeper][Stopped/Auto Start]
  124. <\??\C:\Program Files\Securitoo\Av_Fw\Anti-Virus\Win2K\FSgk.sys><N/A>
  125. [F-Secure File System Recognizer / F-Secure Recognizer][Stopped/Auto Start]
  126. <\??\C:\Program Files\Securitoo\Av_Fw\Anti-Virus\Win2K\FSrec.sys><N/A>
  127. [F-Secure Firewall Driver / FSFW][Running/Boot Start]
  128. <\SystemRoot\System32\drivers\fsdfw.sys><F-Secure Corporation>
  129. [Kl1 / Kl1][Stopped/Boot Start]
  130. <\SystemRoot\System32\drivers\kl1.sys><N/A>
  131. [Klif / Klif][Stopped/System Start]
  132. <System32\drivers\klif.sys><N/A>
  133. [Klmc / Klmc][Stopped/System Start]
  134. <System32\drivers\klmc.sys><N/A>
  135. [Klpf / Klpf][Stopped/Boot Start]
  136. <\SystemRoot\System32\drivers\Klpf.sys><N/A>
  137. [Klpid / Klpid][Stopped/Boot Start]
  138. <\SystemRoot\System32\drivers\Klpid.sys><N/A>
  139. [Logitech USB Monitor Filter / LVUSBSta][Running/Manual Start]
  140. <system32\drivers\lvusbsta.sys><Logitech Inc.>
  141. [PCAMPR5 NDIS Protocol Driver / PCAMPR5][Stopped/Manual Start]
  142. <\??\C:\WINDOWS\system32\PCAMPR5.SYS><N/A>
  143. [PCANDIS5 NDIS Protocol Driver / PCANDIS5][Running/Manual Start]
  144. <\??\C:\WINDOWS\system32\PCANDIS5.SYS><Printing Communications Assoc., Inc. (PCAUSA)>
  145. [Logitech QuickCam Express(PID_0928) / PID_0928][Stopped/Manual Start]
  146. <system32\DRIVERS\LV561AV.SYS><Logitech Inc.>
  147. [802.11g USB 2.0 adapter / PRISM_A02][Running/Manual Start]
  148. <system32\DRIVERS\PRISMA02.sys><Conexant Systems, Inc.>
  149. [Pilote de liaison parallèle directe / Ptilink][Running/Manual Start]
  150. <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
  151. [PxHelp20 / PxHelp20][Running/Boot Start]
  152. <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
  153. [Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver / RTL8023][Running/Manual Start]
  154. <system32\DRIVERS\Rtlnic51.sys><Realtek Semiconductor Corporation>
  155. [Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C) / rtl8139][Stopped/Manual Start]
  156. <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
  157. [Secdrv / Secdrv][Running/Auto Start]
  158. <system32\DRIVERS\secdrv.sys><Macrovision Europe Ltd>
  159. [Motorola USB Modem Driver for MPT / usbsermpt][Stopped/Manual Start]
  160. <system32\DRIVERS\usbsermpt.sys><Microsoft Corporation>
  161. [Virtual Serial port driver / VComm][Stopped/Manual Start]
  162. <system32\DRIVERS\VComm.sys><IVT Corporation>
  163. [Bluetooth VComm Manager Service / VcommMgr][Stopped/Manual Start]
  164. <System32\Drivers\VcommMgr.sys><IVT Corporation>
  165. [viagfx / viagfx][Running/Manual Start]
  166. <system32\DRIVERS\vtmini.sys><Copyright (C) VIA/S3 Graphics Co, Ltd.>
  167. [ViaIde / ViaIde][Running/Boot Start]
  168. <\SystemRoot\system32\DRIVERS\viaide.sys><Microsoft Corporation>
  169. [Sony Ericsson W810 Driver driver (WDM) / w810bus][Stopped/Manual Start]
  170. <system32\DRIVERS\w810bus.sys><N/A>
  171. [Sony Ericsson W810 USB WMC Modem Filter / w810mdfl][Stopped/Manual Start]
  172. <system32\DRIVERS\w810mdfl.sys><N/A>
  173. [Sony Ericsson W810 USB WMC Modem Driver / w810mdm][Stopped/Manual Start]
  174. <system32\DRIVERS\w810mdm.sys><N/A>
  175. [Sony Ericsson W810 USB WMC Device Management Drivers (WDM) / w810mgmt][Stopped/Manual Start]
  176. <system32\DRIVERS\w810mgmt.sys><N/A>
  177. [Sony Ericsson W810 USB WMC OBEX Interface / w810obex][Stopped/Manual Start]
  178. <system32\DRIVERS\w810obex.sys><N/A>
  179. [WAN Miniport (ATW) / wanatw][Stopped/Manual Start]
  180. <system32\DRIVERS\wanatw4.sys><N/A>
  181. [Codec Teletext standard / WSTCODEC][Stopped/Manual Start]
  182. <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
  183.  
  184. ==================================
  185. Browser Add-ons
  186. []
  187. {53707962-6F74-2D53-2644-206D7942484F} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, Safer Networking Limited>
  188. [SSVHelper Class]
  189. {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
  190. [Windows Live Sign-in Helper]
  191. {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
  192. [Java Plug-in 1.5.0_11]
  193. {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
  194. []
  195. {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, N/A>
  196. [Checkers Class]
  197. {00B71CFB-6864-4346-A978-C0A14556272C} <C:\WINDOWS\Downloaded Program Files\msgrchkr.dll, Microsoft Corporation>
  198. [UnoCtrl Class]
  199. {5D6F45B3-9043-443D-A792-115447494D24} <C:\WINDOWS\Downloaded Program Files\GAME_UNO1.dll, Microsoft>
  200. [Java Plug-in 1.5.0_11]
  201. {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
  202. [MessengerStatsClient Class]
  203. {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} <C:\WINDOWS\Downloaded Program Files\messengerstatsclient.dll, Microsoft Corporation>
  204. [MessengerStatsClient Class]
  205. {C3F79A2B-B9B4-4A66-B012-3EE46475B072} <C:\WINDOWS\Downloaded Program Files\MessengerStatsPAClient.dll, Microsoft Corporation>
  206. [Java Plug-in 1.5.0_09]
  207. {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
  208. [Java Plug-in 1.5.0_10]
  209. {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
  210. [Java Plug-in 1.5.0_11]
  211. {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
  212. [Java Plug-in 1.5.0_11]
  213. {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_11\bin\npjpi150_11.dll, Sun Microsystems, Inc.>
  214. [Shockwave Flash Object]
  215. {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
  216. [Yahoo! Toolbar Helper]
  217. {02478D38-C3F9-4EFB-9B51-7695ECA05670} <, N/A>
  218. [QuickTime Object]
  219. {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Computer, Inc.>
  220. [ActiveMovieControl Object]
  221. {05589FA1-C356-11CE-BF01-00AA0055595A} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
  222. [CEnroll Class]
  223. {127698E4-E730-4E5C-A2B1-21490A70C8A1} <C:\WINDOWS\system32\xenroll.dll, Microsoft Corporation>
  224. [Shockwave ActiveX Control]
  225. {166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\system32\macromed\Director\SwDir.dll, Adobe Systems, Inc.>
  226. [Windows Media Player]
  227. {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
  228. [Shockwave ActiveX Control]
  229. {233C1507-6A77-46A4-9443-F871F945D258} <C:\WINDOWS\system32\Macromed\Director\SwDir.dll, Adobe Systems, Inc.>
  230. [HTML Document]
  231. {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
  232. [DHTML Edit Control Safe for Scripting for IE5]
  233. {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Fichiers communs\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
  234. [RealPlayer RAM Download Handler]
  235. {2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
  236. [Tabular Data Control]
  237. {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, Microsoft Corporation>
  238. [XML Document]
  239. {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, N/A>
  240. []
  241. {53707962-6F74-2D53-2644-206D7942484F} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, Safer Networking Limited>
  242. [Shell Name Space]
  243. {55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A>
  244. [InstallShield Update Service Agent]
  245. {5B7524C8-2446-40E9-9474-94A779DBA224} <C:\WINDOWS\Downloaded Program Files\isusweb.dll, InstallShield Software Corporation>
  246. [WUWebControl Class]
  247. {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
  248. [Windows Media Player]
  249. {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  250. [Active Desktop Mover]
  251. {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
  252. [SSVHelper Class]
  253. {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
  254. [Navigateur Web Microsoft]
  255. {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
  256. [Java Plug-in 1.5.0_11]
  257. {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
  258. [Windows Live Sign-in Helper]
  259. {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
  260. [SearchAssistantOC]
  261. {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
  262. [RDS.DataSpace]
  263. {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Fichiers communs\System\msadc\msadco.dll, Microsoft Corporation>
  264. [AUDIO__BASIC Moniker Class]
  265. {CD3AFA73-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  266. [AUDIO__MID Moniker Class]
  267. {CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  268. [AUDIO__MP3 Moniker Class]
  269. {CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  270. [AUDIO__WAV Moniker Class]
  271. {CD3AFA7B-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  272. [AUDIO__X_MS_WMA Moniker Class]
  273. {CD3AFA84-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  274. [VIDEO__X_MS_ASF Moniker Class]
  275. {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  276. [VIDEO__X_MS_WMV Moniker Class]
  277. {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  278. [VIDEO__X_MS_WVX Moniker Class]
  279. {CD3AFA95-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  280. [RealPlayer G2 Control]
  281. {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
  282. [Shockwave Flash Object]
  283. {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
  284. [Yahoo! Toolbar]
  285. {EF99BD32-C1FB-11D2-892F-0090271D4F88} <, N/A>
  286. []
  287. {F06608C7-1874-4EEA-B3B2-DF99EBB144B8} <C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL, Microsoft Corporation>
  288. [JScript Language]
  289. {F414C260-6AC0-11CF-B6D1-00AA00BBBB58} <C:\WINDOWS\system32\jscript.dll, Microsoft Corporation>
  290. [E&xporter vers Microsoft Excel]
  291. <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
  292.  
  293. ==================================
  294. Running Processes
  295. [PID: 640][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  296. [PID: 712][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  297. [PID: 736][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  298. [C:\WINDOWS\system32\WgaLogon.dll] [Microsoft Corporation, 1.5.0540.0]
  299. [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  300. [PID: 780][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  301. [C:\WINDOWS\AppPatch\AcAdProc.dll] [Microsoft Corporation, 5.1.2600.3008 (xpsp.061004-0027)]
  302. [PID: 792][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  303. [PID: 936][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  304. [PID: 1400][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
  305. [C:\WINDOWS\system32\WPDShServiceObj.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
  306. [C:\WINDOWS\system32\PortableDeviceTypes.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
  307. [C:\WINDOWS\system32\PortableDeviceApi.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
  308. [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  309. [C:\PROGRA~1\SPYBOT~1\SDHelper.dll] [Safer Networking Limited, 1, 4, 0, 0]
  310. [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0]
  311. [C:\Program Files\Securitoo\Av_Fw\Common\fpshx.dll] [F-Secure Corporation, 5.50.9200]
  312. [C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.dll] [F-Secure Corporation, 5.62.7676 ]
  313. [C:\Program Files\Securitoo\Av_Fw\Common\FSPMAPI.dll] [F-Secure Corporation, 5.62.7676 ]
  314. [C:\Program Files\WinRAR\rarext.dll] [N/A, ]
  315. [C:\Program Files\Alwil Software\Avast4\ashShell.dll] [ALWIL Software, 4, 7, 936, 0]
  316. [C:\WINDOWS\system32\asfsipc.dll] [Microsoft Corporation, 1.1.00.3917]
  317. [C:\PROGRA~1\MICROS~2\OFFICE11\MCPS.DLL] [Microsoft Corporation, 11.0.5510]
  318. [PID: 708][C:\WINDOWS\SOUNDMAN.EXE] [Realtek Semiconductor Corp., 5.1.0.39]
  319. [PID: 896][C:\Apps\Powercinema\PCMService.exe] [CyberLink Corp., 4.0.0.0000]
  320. [C:\Apps\Powercinema\helper.dll] [CyberLink Corp., 3.00.4021 ]
  321. [c:\Apps\Powercinema\Kernel\common\CLRCEngine3.dll] [CyberLink Corp., 4.0.0.1421]
  322. [C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL] [Microsoft Corporation, 11.0.5510]
  323. [c:\Apps\Powercinema\Kernel\TV\CLCapX.dll] [Cyberlink, 4.00.1710]
  324. [PID: 1056][C:\Program Files\Lexmark 2300 Series\lxcgmon.exe] [Lexmark International, Inc., 2.6.62.11]
  325. [C:\Program Files\Lexmark 2300 Series\lxcgscw.dll] [Lexmark International, Inc., 2.6.62.11]
  326. [C:\WINDOWS\system32\lxcgcfg.dll] [Lexmark International, 1, 0, 0, 1]
  327. [C:\WINDOWS\system32\spool\drivers\w32x86\3\lxcgtsfw.dll] [Lexmark International Inc., 2.6.11.0]
  328. [C:\WINDOWS\system32\spool\drivers\w32x86\3\lxcgdrec.dll] [, 2.0.15.0]
  329. [C:\WINDOWS\system32\spool\drivers\w32x86\3\lxcgcfg.dll] [Lexmark International, 1, 0, 0, 1]
  330. [C:\WINDOWS\system32\lxcgcomc.dll] [, 1.154.7.0]
  331. [C:\WINDOWS\system32\lxcgpplc.dll] [, 1.154.7.0]
  332. [C:\WINDOWS\system32\lxcgprox.dll] [, 1.154.7.0]
  333. [PID: 1092][C:\Program Files\Lexmark 2300 Series\ezprint.exe] [Lexmark International Inc., 1.0.5.0]
  334. [C:\Program Files\Lexmark 2300 Series\Epwizard.DLL] [Lexmark International Inc., 1.0.5.0]
  335. [C:\Program Files\Lexmark 2300 Series\customui.dll] [Lexmark International Inc., 1.0.5.0]
  336. [C:\Program Files\Lexmark 2300 Series\Eputil.DLL] [Lexmark International Inc., 1.0.5.0]
  337. [C:\Program Files\Lexmark 2300 Series\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0]
  338. [C:\Program Files\Lexmark 2300 Series\Imagutil.DLL] [Lexmark International Inc., 1.0.5.0]
  339. [C:\Program Files\Lexmark 2300 Series\LTWVC13n.dll] [LEAD Technologies, Inc., 13.0.0.105]
  340. [C:\Program Files\Lexmark 2300 Series\LTDIS13N.dll] [LEAD Technologies, Inc., 13.0.0.105]
  341. [C:\Program Files\Lexmark 2300 Series\LTKRN13N.dll] [LEAD Technologies, Inc., 13.0.0.105]
  342. [C:\Program Files\Lexmark 2300 Series\ltfil13n.DLL] [LEAD Technologies, Inc., 13.0.0.105]
  343. [C:\Program Files\Lexmark 2300 Series\LTIMG13N.dll] [LEAD Technologies, Inc., 13.0.0.105]
  344. [C:\Program Files\Lexmark 2300 Series\LTEFX13N.dll] [LEAD Technologies, Inc., 13.0.0.105]
  345. [C:\Program Files\Lexmark 2300 Series\Epfunct.DLL] [Lexmark International Inc., 1.0.5.0]
  346. [C:\Program Files\Lexmark 2300 Series\epstring.dll] [Lexmark International Inc., 1.0.5.0]
  347. [C:\Program Files\Lexmark 2300 Series\iptk.dll] [, 2.1.13.9]
  348. [C:\Program Files\Lexmark 2300 Series\PdfLib.dll] [PDFlib GmbH, 4.0.0]
  349. [PID: 1064][C:\WINDOWS\system32\LVCOMSX.EXE] [Logitech Inc., 8.4.7.1036]
  350. [C:\WINDOWS\system32\lvmaenum.dll] [Logitech Inc., 8.4.7.1036]
  351. [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
  352. [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
  353. [C:\WINDOWS\system32\lvcomcx.dll] [Logitech Inc., 8.4.7.1036]
  354. [PID: 1144][C:\Program Files\Logitech\Video\LogiTray.exe] [Logitech Inc., 8.4.7.1034]
  355. [C:\Program Files\Logitech\Video\QCUI2.dll] [Logitech Inc., 8.4.7.1034]
  356. [C:\Program Files\Logitech\Video\LTWVC12n.dll] [LEAD Technologies, Inc., 12.1.0.058]
  357. [C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
  358. [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
  359. [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
  360. [C:\Program Files\Logitech\Video\LTFIL12n.DLL] [LEAD Technologies, Inc., 12.1.0.058]
  361. [C:\Program Files\Logitech\Video\LTKRN12n.dll] [LEAD Technologies, Inc., 12.1.0.058]
  362. [C:\Program Files\Logitech\Video\LQCUI2.dll] [Logitech Inc., 8.4.7.1034]
  363. [C:\Program Files\Logitech\Video\LLogTray.dll] [Logitech Inc., 8.4.7.1034]
  364. [C:\Program Files\Logitech\Video\LTDIS12N.DLL] [LEAD Technologies, Inc., 12.1.0.058]
  365. [C:\Program Files\Logitech\Video\LTIMG12N.DLL] [LEAD Technologies, Inc., 12.1.0.058]
  366. [C:\Program Files\Logitech\Video\LTEFX12N.DLL] [LEAD Technologies, Inc., 12.1.0.058]
  367. [C:\Program Files\Logitech\Video\LFFAX12N.DLL] [LEAD Technologies, Inc., 12.1.0.020]
  368. [C:\Program Files\Logitech\Video\LFCMP12N.DLL] [LEAD Technologies, Inc., 12.1.0.058]
  369. [C:\Program Files\Logitech\Video\LFTIF12N.DLL] [LEAD Technologies, Inc., 12.1.0.058]
  370. [C:\Program Files\Logitech\Video\LFBMP12N.DLL] [LEAD Technologies, Inc., 12.1.0.058]
  371. [C:\WINDOWS\system32\lvmaenum.dll] [Logitech Inc., 8.4.7.1036]
  372. [C:\WINDOWS\system32\lvcomcx.dll] [Logitech Inc., 8.4.7.1036]
  373. [C:\Program Files\Logitech\Video\FXSvrps.dll] [Logitech Inc., 8.4.7.1034]
  374. [PID: 1072][C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe] [, 4, 7, 936, 0]
  375. [C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 7, 936, 0]
  376. [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
  377. [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
  378. [C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll] [ALWIL Software, 4, 7, 936, 0]
  379. [C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll] [ALWIL Software, 4, 7, 936, 0]
  380. [C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll] [ALWIL Software, 4, 7, 936, 0]
  381. [C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll] [ALWIL Software, 4, 7, 936, 0]
  382. [C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll] [ALWIL Software, 4, 7, 936, 0]
  383. [C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll] [ALWIL Software, 4, 7, 936, 0]
  384. [C:\Program Files\Alwil Software\Avast4\French\Base.dll] [ALWIL Software, 4, 7, 936, 0]
  385. [C:\Program Files\Alwil Software\Avast4\French\Lang.dll] [ALWIL Software, 4, 7, 936, 0]
  386. [C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
  387. [C:\PROGRA~1\ALWILS~1\Avast4\AavmRpch.dll] [ALWIL Software, 4, 7, 936, 0]
  388. [c:\program files\alwil software\avast4\ahruimai.dll] [ALWIL Software, 4, 7, 936, 0]
  389. [C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll] [ALWIL Software, 4, 7, 936, 0]
  390. [C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll] [Codejock Software, 1, 9, 4, 0]
  391. [c:\program files\alwil software\avast4\ahruimes.dll] [ALWIL Software, 4, 7, 936, 0]
  392. [c:\program files\alwil software\avast4\ahruins.dll] [ALWIL Software, 4, 7, 936, 0]
  393. [c:\program files\alwil software\avast4\ahruiout.dll] [ALWIL Software, 4, 7, 936, 0]
  394. [C:\WINDOWS\system32\MAPI32.dll] [Microsoft Corporation, 1.0.2536.0 (XPClient.010817-1148)]
  395. [c:\program files\alwil software\avast4\ahruip2p.dll] [ALWIL Software, 4, 7, 936, 0]
  396. [c:\program files\alwil software\avast4\ahruistd.dll] [ALWIL Software, 4, 7, 936, 0]
  397. [c:\program files\alwil software\avast4\ahruiws.dll] [ALWIL Software, 4, 7, 936, 0]
  398. [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  399. [PID: 1212][C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe] [Sun Microsystems, Inc., 5.0.110.3]
  400. [PID: 1160][C:\Program Files\QuickTime\qttask.exe] [Apple Computer, Inc., 7.0.4]
  401. [PID: 1240][C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe] [RealNetworks, Inc., 0.1.0.3725]
  402. [PID: 1280][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  403. [PID: 1408][C:\PROGRA~1\MSNMES~1\msnmsgr.exe] [Microsoft Corporation, 8.1.0178.00]
  404. [C:\PROGRA~1\MSNMES~1\MSIMG32.dll] [Patchou, 4, 20, 0, 262]
  405. [C:\PROGRA~1\MSNMES~1\MSNCore.dll] [Microsoft Corporation, 8.1.0178.00]
  406. [C:\PROGRA~1\MSNMES~1\msidcrl40.dll] [Microsoft Corporation, 4.100.313.1]
  407. [C:\PROGRA~1\MSNMES~1\ContactsUX.dll] [Microsoft Corporation, 8.1.0178.00]
  408. [C:\Program Files\Messenger Plus! Live\MsgPlusLive1.dll] [Patchou, 4, 20, 0, 262]
  409. [C:\Program Files\Messenger Plus! Live\Detoured.dll] [N/A, ]
  410. [C:\PROGRA~1\MSNMES~1\msgslang.8.1.0178.00.dll] [Microsoft Corporation, 8.1.0178.00]
  411. [C:\PROGRA~1\MSNMES~1\msgsres.dll] [Microsoft Corporation, 8.1.0178.00]
  412. [C:\Program Files\Messenger Plus! Live\MsgPlusLiveRes.dll] [Patchou, 4, 20, 0, 262]
  413. [C:\PROGRA~1\MSNMES~1\lcapi.dll] [Microsoft Corporation, 1.7.256.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
  414. [C:\WINDOWS\system32\msdmo.dll] [, ]
  415. [C:\PROGRA~1\MSNMES~1\lcres.dll] [Microsoft Corp., 1.7.109.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
  416. [C:\PROGRA~1\MSNMES~1\RTMPLTFM.dll] [Microsoft Corporation, 3.0.5774.0 built by: media_msn80]
  417. [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  418. [C:\PROGRA~1\MSNMES~1\MSGSWCAM.dll] [Microsoft Corporation, 8.1.0178.00]
  419. [C:\WINDOWS\system32\sirenacm.dll] [Microsoft Corp., 8.1.0178.00]
  420. [C:\Program Files\Messenger Plus! Live\MPScripts.dll] [N/A, ]
  421. [C:\PROGRA~1\MSNMES~1\lmcdata.dll] [Microsoft Corporation, 8.1.0178.00]
  422. [C:\PROGRA~1\MSNMES~1\contact.dll] [Microsoft Corporation, 8.1.0178.00]
  423. [C:\Program Files\MSN Messenger\dfsr.dll] [Microsoft Corporation, 8.1.0178.00]
  424. [C:\PROGRA~1\MSNMES~1\abssm.dll] [Microsoft Corporation, 8.1.0178.00]
  425. [C:\PROGRA~1\MSNMES~1\custsat.dll] [Microsoft Corporation, 9.0.3790.2428 (srv03_sp1_qfe.050422-1043)]
  426. [C:\Program Files\MSN Messenger\usnsvcps.dll] [Microsoft Corporation, 8.1.0178.00]
  427. [C:\Program Files\Messenger Plus! Live\libsndfile.dll] [N/A, ]
  428. [C:\Program Files\Messenger Plus! Live\lame_enc.dll] [N/A, ]
  429. [C:\WINDOWS\system32\mfplat.dll] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
  430. [C:\WINDOWS\system32\xpsp3res.dll] [Microsoft Corporation, 5.1.2600.3059 (xpsp_sp2_qfe.070104-0040)]
  431. [PID: 1428][C:\Program Files\Messenger\msmsgs.exe] [Microsoft Corporation, 4.7.3001]
  432. [PID: 2384][C:\Program Files\Logitech\Video\FxSvr2.exe] [Logitech Inc., 8.4.7.1034]
  433. [C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
  434. [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
  435. [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
  436. [C:\WINDOWS\system32\lvmaenum.dll] [Logitech Inc., 8.4.7.1036]
  437. [C:\WINDOWS\system32\lvcomcx.dll] [Logitech Inc., 8.4.7.1036]
  438. [C:\Program Files\Logitech\Video\FXSvrps.dll] [Logitech Inc., 8.4.7.1034]
  439. [PID: 3832][C:\Program Files\Windows Media Player\wmplayer.exe] [Microsoft Corporation, 10.00.00.3646]
  440. [C:\WINDOWS\system32\msdmo.dll] [, ]
  441. [C:\WINDOWS\system32\l3codeca.acm] [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]
  442. [C:\Program Files\K-Lite Codec Pack\filters\ac3filter.ax] [, 1.01a]
  443. [C:\Program Files\K-Lite Codec Pack\ffdshow\ffdshow.ax] [, 1.0.2.2012]
  444. [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
  445. [C:\Program Files\K-Lite Codec Pack\filters\vsfilter.dll] [Gabest, 1, 0, 1, 3]
  446. [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  447. [C:\Program Files\MSN Messenger\psmsong.8.1.0178.00.dll] [Microsoft Corporation, 8.1.0178.00]
  448. [C:\Program Files\MSN Messenger\msgslang.8.1.0178.00.dll] [Microsoft Corporation, 8.1.0178.00]
  449. [C:\Program Files\Messenger Plus! Live\Scripts\Now Playing\dlls\wmp9.dll] [TrueSoft, 1, 0, 0, 0]
  450. [C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL] [Microsoft Corporation, 11.0.5510]
  451. [PID: 700][C:\Program Files\MSN Messenger\msnmsgr.exe] [Microsoft Corporation, 8.1.0178.00]
  452. [C:\Program Files\MSN Messenger\MSIMG32.dll] [Patchou, 4, 20, 0, 262]
  453. [C:\Program Files\MSN Messenger\MSNCore.dll] [Microsoft Corporation, 8.1.0178.00]
  454. [C:\Program Files\MSN Messenger\msidcrl40.dll] [Microsoft Corporation, 4.100.313.1]
  455. [C:\Program Files\MSN Messenger\ContactsUX.dll] [Microsoft Corporation, 8.1.0178.00]
  456. [C:\Program Files\Messenger Plus! Live\MsgPlusLive1.dll] [Patchou, 4, 20, 0, 262]
  457. [C:\Program Files\Messenger Plus! Live\Detoured.dll] [N/A, ]
  458. [C:\Program Files\MSN Messenger\msgslang.8.1.0178.00.dll] [Microsoft Corporation, 8.1.0178.00]
  459. [C:\Program Files\MSN Messenger\msgsres.dll] [Microsoft Corporation, 8.1.0178.00]
  460. [C:\Program Files\Messenger Plus! Live\MsgPlusLiveRes.dll] [Patchou, 4, 20, 0, 262]
  461. [C:\Program Files\MSN Messenger\lcapi.dll] [Microsoft Corporation, 1.7.256.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
  462. [C:\WINDOWS\system32\msdmo.dll] [, ]
  463. [C:\Program Files\MSN Messenger\lcres.dll] [Microsoft Corp., 1.7.109.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
  464. [C:\Program Files\MSN Messenger\RTMPLTFM.dll] [Microsoft Corporation, 3.0.5774.0 built by: media_msn80]
  465. [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  466. [C:\Program Files\MSN Messenger\MSGSWCAM.dll] [Microsoft Corporation, 8.1.0178.00]
  467. [C:\WINDOWS\system32\sirenacm.dll] [Microsoft Corp., 8.1.0178.00]
  468. [C:\Program Files\Messenger Plus! Live\MPScripts.dll] [N/A, ]
  469. [C:\Program Files\MSN Messenger\lmcdata.dll] [Microsoft Corporation, 8.1.0178.00]
  470. [C:\Program Files\MSN Messenger\contact.dll] [Microsoft Corporation, 8.1.0178.00]
  471. [C:\Program Files\MSN Messenger\abssm.dll] [Microsoft Corporation, 8.1.0178.00]
  472. [C:\Program Files\MSN Messenger\dfsr.dll] [Microsoft Corporation, 8.1.0178.00]
  473. [C:\Program Files\MSN Messenger\usnsvcps.dll] [Microsoft Corporation, 8.1.0178.00]
  474. [C:\Program Files\MSN Messenger\custsat.dll] [Microsoft Corporation, 9.0.3790.2428 (srv03_sp1_qfe.050422-1043)]
  475. [C:\WINDOWS\system32\mfplat.dll] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
  476. [C:\WINDOWS\system32\xpsp3res.dll] [Microsoft Corporation, 5.1.2600.3059 (xpsp_sp2_qfe.070104-0040)]
  477. [PID: 2196][C:\Program Files\MSN Messenger\msnmsgr.exe] [Microsoft Corporation, 8.1.0178.00]
  478. [C:\Program Files\MSN Messenger\MSIMG32.dll] [Patchou, 4, 20, 0, 262]
  479. [C:\Program Files\MSN Messenger\MSNCore.dll] [Microsoft Corporation, 8.1.0178.00]
  480. [C:\Program Files\MSN Messenger\msidcrl40.dll] [Microsoft Corporation, 4.100.313.1]
  481. [C:\Program Files\MSN Messenger\ContactsUX.dll] [Microsoft Corporation, 8.1.0178.00]
  482. [C:\Program Files\Messenger Plus! Live\MsgPlusLive1.dll] [Patchou, 4, 20, 0, 262]
  483. [C:\Program Files\Messenger Plus! Live\Detoured.dll] [N/A, ]
  484. [C:\Program Files\MSN Messenger\msgslang.8.1.0178.00.dll] [Microsoft Corporation, 8.1.0178.00]
  485. [C:\Program Files\MSN Messenger\msgsres.dll] [Microsoft Corporation, 8.1.0178.00]
  486. [C:\Program Files\Messenger Plus! Live\MsgPlusLiveRes.dll] [Patchou, 4, 20, 0, 262]
  487. [C:\Program Files\MSN Messenger\lcapi.dll] [Microsoft Corporation, 1.7.256.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
  488. [C:\WINDOWS\system32\msdmo.dll] [, ]
  489. [C:\Program Files\MSN Messenger\lcres.dll] [Microsoft Corp., 1.7.109.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
  490. [C:\Program Files\MSN Messenger\RTMPLTFM.dll] [Microsoft Corporation, 3.0.5774.0 built by: media_msn80]
  491. [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  492. [C:\Program Files\MSN Messenger\MSGSWCAM.dll] [Microsoft Corporation, 8.1.0178.00]
  493. [C:\WINDOWS\system32\sirenacm.dll] [Microsoft Corp., 8.1.0178.00]
  494. [C:\Program Files\Messenger Plus! Live\MPScripts.dll] [N/A, ]
  495. [C:\Program Files\MSN Messenger\lmcdata.dll] [Microsoft Corporation, 8.1.0178.00]
  496. [C:\Program Files\MSN Messenger\dfsr.dll] [Microsoft Corporation, 8.1.0178.00]
  497. [C:\Program Files\MSN Messenger\abssm.dll] [Microsoft Corporation, 8.1.0178.00]
  498. [C:\Program Files\MSN Messenger\custsat.dll] [Microsoft Corporation, 9.0.3790.2428 (srv03_sp1_qfe.050422-1043)]
  499. [C:\Program Files\MSN Messenger\usnsvcps.dll] [Microsoft Corporation, 8.1.0178.00]
  500. [C:\WINDOWS\system32\xpsp3res.dll] [Microsoft Corporation, 5.1.2600.3059 (xpsp_sp2_qfe.070104-0040)]
  501. [C:\Program Files\Messenger Plus! Live\libsndfile.dll] [N/A, ]
  502. [C:\Program Files\Messenger Plus! Live\lame_enc.dll] [N/A, ]
  503. [PID: 3348][C:\Documents and Settings\Owner.NOM-2F28950417B\Bureau\sreng2\SREng.EXE] [Smallfrogs Studio, 2.4.12.806]
  504. [PID: 3260][C:\WINDOWS\system32\notepad.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  505.  
  506. ==================================
  507. File Associations
  508. .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
  509. .EXE OK. ["%1" %*]
  510. .COM OK. ["%1" %*]
  511. .PIF OK. ["%1" %*]
  512. .REG OK. [regedit.exe "%1"]
  513. .BAT OK. ["%1" %*]
  514. .SCR OK. ["%1" /S]
  515. .CHM OK. ["C:\WINDOWS\hh.exe" %1]
  516. .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
  517. .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
  518. .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
  519. .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  520. .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  521. .LNK OK. [{00021401-0000-0000-C000-000000000046}]
  522.  
  523. ==================================
  524. Winsock Provider
  525. N/A
  526.  
  527. ==================================
  528. Autorun.Inf
  529. N/A
  530.  
  531. ==================================
  532. HOSTS File
  533. 127.0.0.1 localhost
  534. 127.0.0.1 rad.msn.com
  535.  
  536. ==================================
  537. API HOOK
  538. N/A
  539.  
  540. ==================================
  541. Hidden Process
  542. N/A
  543.  
  544. ==================================






Rapport clean par Malekal_morte - http://www.malekal.com
Option 1, executee le 20/03/2007 a 18:20:32,15

*** Recherche de fichiers sur C:

*** Recherche des fichiers dans C:\WINDOWS\

*** Recherche des fichiers dans C:\WINDOWS\system32
C:\WINDOWS\System32\wapisvit.exe FOUND
C:\WINDOWS\system32\SpoonUninstall.exe FOUND
C:\WINDOWS\system32\aswboot.exe FOUND

*** Fin du rapport !
20 Mars 2007 19:31:17

juste un petit up pour voir si mon message a été vu :oops: 
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS