Se connecter / S'enregistrer
Votre question

virus cleaner et messages de pub

Tags :
  • Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
2 Mars 2007 19:35:28

Bonjour,

Je n'arrive pas a supprimer le spyware qui ouvre des pages de pub et une page me proposant de telecharger l'antivirus clean.
J'ai passé spybot, ad aware et l'antivirus avast et le problème persiste.

Merci de me depanner.
Etant débutant, merci d'être le plus précis possible sur les manipulation à effectuer.

j'ai deja vu des post sur ce sujet et je vous envoi ci dessous le rapport hijackthis.

Logfile of HijackThis v1.99.1
Scan saved at 19:29:56, on 02/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Acer\eRecovery\Monitor.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\a-squared Anti-Malware\a2guard.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Creative\Shared Files\CamTray.exe
C:\Program Files\H Maximyzer\H Maximyzer\Projet1.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Georges\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.free.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [eRecoveryService] C:\Program Files\Acer\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P26 "EPSON Stylus DX3800 Series" /O6 "USB001" /M "Stylus DX3800"
O4 - HKLM\..\Run: [NewsUpd] C:\Program Files\Creative\News\NewsUpd.EXE /q
O4 - HKLM\..\Run: [Register MediaRing Talk] C:\Program Files\MediaRing Talk\register.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [TweakDUN] C:\Program Files\TweakDUN\tweakdun.exe splash
O4 - HKLM\..\Run: [PD0620 STISvc] RunDLL32.exe P0620Pin.dll,RunDLL32EP 513
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative WebCam Tray] "C:\Program Files\Creative\Shared Files\CamTray.exe"
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Program Files\Mozilla Firefox\plugins\GetFlash.exe -p
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Hulk Maximyzer.lnk = C:\Program Files\H Maximyzer\H Maximyzer\Projet1.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\acer\Acer eConsole\MediaServerService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

Autres pages sur : virus cleaner messages pub

2 Mars 2007 19:40:55

Bonjour,

Telecharge Blacklight

Puis clique sur "I ACCEPT" en bas de la page et clique sur le premier "Download" et sauvegarde le sur ton bureau.

clique sur "blbeta.exe" et accepte la license puis clique sur "Scan" et par la suite "Next" et a la fin du scan surtout ne touche a rien.

Tu verra un raport sur ton bureau nomer "fsbl.xxxxxxx.log" ( les X étant des chiffres)
Poste le rapport pour pouvoir l'analyser.

Aide pour Blacklight.


2 Mars 2007 19:51:32

03/02/07 19:46:49 [Info]: BlackLight Engine 1.0.55 initialized
03/02/07 19:46:49 [Info]: OS: 5.1 build 2600 (Service Pack 2)
03/02/07 19:46:49 [Note]: 7019 4
03/02/07 19:46:49 [Note]: 7005 0
03/02/07 19:46:52 [Note]: 7006 0
03/02/07 19:46:52 [Note]: 7011 3920
03/02/07 19:46:52 [Note]: 7026 0
03/02/07 19:46:52 [Note]: 7026 0
03/02/07 19:46:52 [Note]: 7024 3
03/02/07 19:46:52 [Info]: Hidden process: C:\windows\system32\zfsfrgrdje.exe
03/02/07 19:46:59 [Note]: FSRAW library version 1.7.1021
03/02/07 19:50:18 [Info]: Hidden file: c:\WINDOWS\system32\zfsfrgrdje.dat
03/02/07 19:50:18 [Note]: 10002 1
03/02/07 19:50:19 [Info]: Hidden file: C:\windows\system32\zfsfrgrdje.exe
03/02/07 19:50:19 [Note]: 10002 1
03/02/07 19:50:19 [Info]: Hidden file: c:\WINDOWS\system32\zfsfrgrdje_nav.dat
03/02/07 19:50:19 [Note]: 10002 1
03/02/07 19:50:19 [Info]: Hidden file: c:\WINDOWS\system32\zfsfrgrdje_navps.dat
03/02/07 19:50:19 [Note]: 10002 1
03/02/07 19:50:56 [Note]: 2000 1012
Contenus similaires
2 Mars 2007 19:55:00

Re,

Navilog1.zip
Tu le dézippes sur le Bureau.

Ensuite ouvre le dossier et lance Navilog1.zip
choisis l'option n°1, repond a toute les question, puis poste le premier rapport ici.
/!\ N'utilise pas les option 2,3,4 sans autorisation de notre part.
Puis atend que ce message arrive "*** Analyse Termine le ..... ***"

Clique sur la touche demandée, le Bloc Note s'ouvrira. Poste le rapport.

Remarque: Le rapport est egalement ici : C:\fixnavi.txt

Redemarre en mode sans echec:

Lance Navilog1.zip et choisi l'option 2 et repond aux questions.
Pendant un certain moment ton Bureau va disparaitre ce qui est totalement normal.
Puis atend que ce message arrive "*** Analyse Termine le ..... ***"

Clique sur la touche demandée, le Bloc Note s'ouvrira.
Sauvegarde le dans un endroit facile a retrouver en mode normal.
Ferme le Bloc Note, ton Bureau va reaparaitre.
Reviens au mode normal puis poste le rapport ici ainsi qu'un rapport hijackthis.
a b 8 Sécurité
2 Mars 2007 19:57:48

NE PAS UTILISER L'OPTION 2 TOUT DE SUITE !
2 Mars 2007 20:06:10

rapport navilog option 1

Search Navipromo version 1.0.4 commencé le 02/03/2007 à 20:01:03,75

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Poster ce rapport sur le forum pour le faire analyser !!!
!!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!

Fix lancé depuis C:\Documents and Settings\Georges\Bureau\navilog1
Mise a jour le 26.02.2007 a 14h00 by IL-MAFIOSO

Executé en mode normal

*** Recherche Programmes installes ***


SudoPlanet


*** Recherche dossiers dans C:\WINDOWS ***




*** Recherche dossiers dans C:\Program Files ***




*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***




*** Recherche dossiers dans C:\Documents and Settings\Georges\Application Data ***



*** Recherche avec BlackLight Engine/F-secure ***
BlackLight Engine est un produit de F-secure, pour + d'infos :
http://www.f-secure.com/blacklight/blacklight_help.html

Fichier(s) caché(s) dans C:\WINDOWS\system32 :

c:\WINDOWS\system32\zfsfrgrdje.dat
C:\windows\system32\zfsfrgrdje.exe
c:\WINDOWS\system32\zfsfrgrdje_nav.dat
c:\WINDOWS\system32\zfsfrgrdje_navps.dat

Processus caché(s) dans C:\WINDOWS\system32 :

C:\windows\system32\zfsfrgrdje.exe


*** Recherche fichiers ***


C:\WINDOWS\system32\nvs2.inf trouvé !


*** Recherche cles registre ***


Recharche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]



Recharche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]



Recherche Clé Magic Control

HKEY_CURRENT_USER\Software\Lanconfig trouvé !


*** Module de recherche complémentaire ***
(recherche fichiers spécifiques)

1)Recherche nouveaux fichiers connus:

C:\WINDOWS\pack.epk trouvé !

2)Recherche Heuristique :
(fichiers non traités par le fix)
*
C:\WINDOWS\system32\zfsfrgrdje.dat
**
C:\WINDOWS\system32\zfsfrgrdje.dat
***
****
C:\WINDOWS\system32\zfsfrgrdje_navps.dat


*** Analyse Terminé le 02/03/2007 à 20:05:20,23 ***
a b 8 Sécurité
2 Mars 2007 20:08:24

Tu peux y aller.
Par contre, tu désinstallera :
SudoPlanet
2 Mars 2007 20:09:27

Re,

Tu peux utiliser l'option 2 maitenant^^
2 Mars 2007 20:20:24

rapport navilog option 2

Clean Navipromo version 1.0.4 commencé le 02/03/2007 à 20:15:16,95

Fix lancé depuis C:\Documents and Settings\Georges\Bureau\navilog1
Mise a jour le 26.02.2007 a 14h00 by IL-MAFIOSO

Executé en mode sans echec

Mode suppression automatique avec prise en charge résultats Blacklight

*** Creation backups fichiers scan Blbeta ***

Copie vers "C:\Documents and Settings\Georges\Bureau\navilog1\Backupnavi"


*** Suppression des fichiers trouvés avec Blbeta ***

c:\WINDOWS\system32\zfsfrgrdje.dat supprimé !
C:\windows\system32\zfsfrgrdje.exe supprimé !
c:\WINDOWS\system32\zfsfrgrdje_nav.dat supprimé !
c:\WINDOWS\system32\zfsfrgrdje_navps.dat supprimé !

** 2ème passage **


C:\WINDOWS\prefetch\zfsfrgrdje*.pf trouvé !
Copie C:\WINDOWS\prefetch\zfsfrgrdje*.pf réalisé avec succès !
C:\WINDOWS\prefetch\zfsfrgrdje*.pf supprimé !

*** Suppression dossiers dans C:\WINDOWS ***


*** Suppression dossiers dans C:\Program Files ***


*** Suppression dossiers dans C:\Documents and Settings\All Users\Application Data ***


*** Suppression dossiers dans C:\Documents and Settings\Georges\Application Data ***



*** Suppression fichiers ***

C:\WINDOWS\system32\nvs2.inf supprimé !

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\Georges\Local Settings\Temp effectué !


*** Sauvegarde du registre vers dossier Backupnavi***


sauvegarde du registre réalisée avec succès !


*** Nettoyage registre ***


Nettoyage registre Ok

*** Traitement Recherche complémentaire ***

1)Recherche/Suppressions nouveaux fichiers connus:

C:\WINDOWS\pack.epk trouvé !
Copie C:\WINDOWS\pack.epk réalisé avec succès !
C:\WINDOWS\pack.epk supprimé !

2)Recherche Heuristique (Fichiers à supprimer si nécéssaire):
*
**
***
****

*** Nettoyage termine le 02/03/2007 à 20:15:41,25 ***



Rapport hijackthis

Logfile of HijackThis v1.99.1
Scan saved at 20:20:41, on 02/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Acer\eRecovery\Monitor.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Creative\Shared Files\CamTray.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\H Maximyzer\H Maximyzer\Projet1.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Georges\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.free.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [eRecoveryService] C:\Program Files\Acer\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P26 "EPSON Stylus DX3800 Series" /O6 "USB001" /M "Stylus DX3800"
O4 - HKLM\..\Run: [NewsUpd] C:\Program Files\Creative\News\NewsUpd.EXE /q
O4 - HKLM\..\Run: [Register MediaRing Talk] C:\Program Files\MediaRing Talk\register.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [TweakDUN] C:\Program Files\TweakDUN\tweakdun.exe splash
O4 - HKLM\..\Run: [PD0620 STISvc] RunDLL32.exe P0620Pin.dll,RunDLL32EP 513
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative WebCam Tray] "C:\Program Files\Creative\Shared Files\CamTray.exe"
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Hulk Maximyzer.lnk = C:\Program Files\H Maximyzer\H Maximyzer\Projet1.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\acer\Acer eConsole\MediaServerService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

2 Mars 2007 20:21:54

Re,

Les manipulations qui sont a faire sont en mode sans echec copie/colle ce que tu as a faire sur ton bureau.

Telecharge AVG et installe le.Lance le et mets le à jour en cliquant sur "Mise à jour" puis ferme le programme

Et clique sur mise à jour pour les faires.

Une petite aide sur AVG

Telecharge et installe CCleaner

Redemarre en mode sans echec en cliquant sur la touche F8 de ton clavier pendant le demarrage.

Lance Ccleaner,
clique sur la touche "Analyse", puis sur le bouton "Lancer le nettoyage".
A la fin du nettoyage clique sur le bouton "Erreurs" et repare les erreurs.

Ensuite lance AVG et clique sur "Analyse" puis sur "Analyse complete du système" puis quand le scan et terminer clique sur "appliquer toutes les actions".
Clique et enrengistrer le rapport et mets le dans un endroit facile a trouver.

Redemarre en mode normal et poste le rapport de AVG et un nouveau rapport Hijackthis.

2 Mars 2007 21:06:44

Rapport avg

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 21:00:22 02/03/2007

+ Résultat de l'analyse:



:mozilla.165:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.169:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.60:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.61:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.115:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.116:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.117:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.118:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.119:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.120:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.121:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.122:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.123:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.124:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.125:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.135:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.136:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.138:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.174:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.242:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Mélanie\Cookies\mélanie@ad.adition[1].txt -> TrackingCookie.Adition : Nettoyé.
:mozilla.172:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.173:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.49:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.50:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.10:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.12:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.55:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.56:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.57:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.58:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.59:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.8:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.9:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.161:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.84:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Jessica\Cookies\jessica@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Mélanie\Cookies\mélanie@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.314:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Belstat : Nettoyé.
:mozilla.315:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Belstat : Nettoyé.
:mozilla.154:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.99:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Jessica\Cookies\jessica@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.264:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.84:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Centrport : Nettoyé.
:mozilla.182:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.183:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.184:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.221:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.222:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.223:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.13:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.51:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.31:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.33:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Jessica\Cookies\jessica@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.292:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.213:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.214:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.215:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.216:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.217:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.231:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.126:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.206:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.106:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.107:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.108:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.288:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Ivwbox : Nettoyé.
C:\Documents and Settings\Mélanie\Cookies\mélanie@komtrack[2].txt -> TrackingCookie.Komtrack : Nettoyé.
:mozilla.269:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.270:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.25:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.30:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.87:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.91:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.85:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.86:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.87:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.88:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.74:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.75:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.76:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
C:\Documents and Settings\Jessica\Cookies\jessica@guide.real[1].txt -> TrackingCookie.Real : Nettoyé.
:mozilla.253:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.69:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.70:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.71:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.72:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.73:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.74:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.75:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.76:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.77:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.78:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.79:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.80:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.81:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.82:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.45:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.46:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.47:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.48:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.49:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.50:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.93:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.94:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.95:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.96:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.97:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.98:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.203:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.282:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.44:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.45:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.46:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.77:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.78:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.79:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Jessica\Cookies\jessica@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Mélanie\Cookies\mélanie@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.241:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.242:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.243:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.244:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.245:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.70:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.71:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.72:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.73:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.219:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.
:mozilla.100:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.101:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.102:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.33:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.34:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.35:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Jessica\Cookies\jessica@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Mélanie\Cookies\mélanie@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.208:C:\Documents and Settings\Jessica\Application Data\Mozilla\Firefox\Profiles\9oanflfv.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.312:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.313:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\3n95yojg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.


Fin du rapport



rapport hijackthis

Logfile of HijackThis v1.99.1
Scan saved at 21:07:03, on 02/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Acer\eRecovery\Monitor.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Creative\Shared Files\CamTray.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\H Maximyzer\H Maximyzer\Projet1.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Documents and Settings\Georges\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.free.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [eRecoveryService] C:\Program Files\Acer\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P26 "EPSON Stylus DX3800 Series" /O6 "USB001" /M "Stylus DX3800"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PD0620 STISvc] RunDLL32.exe P0620Pin.dll,RunDLL32EP 513
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative WebCam Tray] "C:\Program Files\Creative\Shared Files\CamTray.exe"
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Hulk Maximyzer.lnk = C:\Program Files\H Maximyzer\H Maximyzer\Projet1.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\acer\Acer eConsole\MediaServerService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

2 Mars 2007 21:16:37

Re,

Le probleme persiste toujours?
2 Mars 2007 21:20:14

Merci beaucoup.

pour l'instant cela semble réglé.
Si des fenetres intempestives se réouvrent je vous recontacterai.

Encore merci
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS