Y a-t-il virus?
Résolu
pepe65
Messages postés
7
Statut
Membre
-
Cesel45 Messages postés 13762 Date d'inscription Statut Contributeur Dernière intervention -
Cesel45 Messages postés 13762 Date d'inscription Statut Contributeur Dernière intervention -
Bonjour,
Parfois lors du démarrage , l'écran bloque sur la page d'entrée " Packard Bell "
Une personne peut-elle me renseigner ? Salutations
Ci-joint rapport Hijackthis de mon Pc.
Logfile of random's system information tool 1.06 (written by random/random)
Run by User at 2009-09-03 20:58:36
Microsoft Windows XP Édition familiale Service Pack 3
System drive J: has 96 GB (77%) free of 125 GB
Total RAM: 1023 MB (33% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:59:07, on 03/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
J:\WINDOWS\System32\smss.exe
J:\WINDOWS\system32\winlogon.exe
J:\WINDOWS\system32\services.exe
J:\WINDOWS\system32\lsass.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\system32\svchost.exe
J:\WINDOWS\System32\svchost.exe
J:\WINDOWS\system32\ZoneLabs\vsmon.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\Explorer.EXE
J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
J:\Program Files\Alwil Software\Avast4\ashServ.exe
J:\WINDOWS\system32\spoolsv.exe
j:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
J:\WINDOWS\SOUNDMAN.EXE
J:\WINDOWS\ALCWZRD.EXE
J:\Program Files\Fichiers communs\AOL\1194948851\ee\AOLSoftware.exe
J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
J:\WINDOWS\system32\LVCOMSX.EXE
J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
J:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
J:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
J:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
J:\WINDOWS\system32\ElkCtrl.exe
J:\Program Files\Java\jre6\bin\jusched.exe
J:\WINDOWS\system32\ctfmon.exe
J:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
J:\Program Files\Microsoft ActiveSync\wcescomm.exe
J:\Program Files\Messenger\msmsgs.exe
J:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
J:\Program Files\Windows Media Player\WMPNSCFG.exe
J:\Program Files\Java\jre6\bin\jqs.exe
J:\PROGRA~1\MICROS~3\rapimgr.exe
J:\Program Files\McAfee\SiteAdvisor\McSACore.exe
J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
J:\WINDOWS\system32\PSIService.exe
J:\WINDOWS\system32\slserv.exe
J:\WINDOWS\System32\svchost.exe
J:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
J:\WINDOWS\wanmpsvc.exe
J:\Program Files\Canon\CAL\CALMAIN.exe
J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
J:\Program Files\Alwil Software\Avast4\ashWebSv.exe
J:\WINDOWS\System32\svchost.exe
J:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
J:\Program Files\Mozilla Firefox\firefox.exe
J:\Documents and Settings\User\Bureau\RSIT.exe
J:\Program Files\trend micro\User.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - J:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - J:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - J:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - J:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: FireShot - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\library\fsaddin-0.69.dll (file missing)
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [HostManager] J:\Program Files\Fichiers communs\AOL\1194948851\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [avast!] J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "J:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LVCOMSX] J:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [ZoneAlarm Client] "J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "J:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "J:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] J:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [EPSON Stylus Photo RX700 Series] J:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9IE.EXE /F "J:\WINDOWS\TEMP\E_S2B0.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [EEventManager] J:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
O4 - HKLM\..\Run: [LogitechCameraService(E)] J:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [SunJavaUpdateSched] "J:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] J:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] J:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "J:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [MSMSGS] "J:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [TomTomHOME.exe] "J:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [WMPNSCFG] J:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 2.4.lnk.disabled
O4 - Global Startup: Adobe Gamma Loader.lnk = J:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://J:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://J:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - J:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - J:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - J:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} (MetaStreamCtl Class) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {48DF87EE-F2DE-11D8-BE7F-302050C10811} (FlyLoader Class) - http://www.flysuite.com/flyword/loaderword_win_fr.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9563.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://3dlifeplayer.dl.3dvia.com/player/install/installer.exe
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O23 - Service: Adobe Active File Monitor (AdobeActiveFileMonitor) - Unknown owner - J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - J:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - J:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - J:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - J:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Service Google Update (gupdate1c98f5f176e2cb2) (gupdate1c98f5f176e2cb2) - Google Inc. - J:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - J:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - J:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - j:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - J:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: Photoshop Elements Device Connect (PhotoshopElementsDeviceConnect) - Unknown owner - J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
O23 - Service: ProtexisLicensing - Unknown owner - J:\WINDOWS\system32\PSIService.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - J:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: TomTomHOMEService - TomTom - J:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - J:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - J:\WINDOWS\wanmpsvc.exe
--
End of file - 11742 bytes
======Scheduled tasks folder======
J:\WINDOWS\tasks\AppleSoftwareUpdate.job
J:\WINDOWS\tasks\Google Software Updater.job
J:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
J:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
J:\WINDOWS\tasks\Registry Winner Schedule.job
J:\WINDOWS\tasks\SyncBack ma sauvegarde.job
J:\WINDOWS\tasks\SyncBack mes documents.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - J:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-06-20 312928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - J:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - J:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-03-24 668656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-02-13 150032]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - J:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - J:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-02-13 150032]
{6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - FireShot - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\library\fsaddin-0.69.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Raccourci vers la page des propriétés de High Definition Audio"=J:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"SoundMan"=J:\WINDOWS\SOUNDMAN.EXE [2005-06-21 90112]
"AlcWzrd"=J:\WINDOWS\ALCWZRD.EXE [2005-06-29 2806272]
"HostManager"=J:\Program Files\Fichiers communs\AOL\1194948851\ee\AOLSoftware.exe [2006-09-26 50736]
"avast!"=J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"Adobe Reader Speed Launcher"=J:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"LVCOMSX"=J:\WINDOWS\system32\LVCOMSX.EXE [2005-12-09 225280]
"ZoneAlarm Client"=J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-07-09 919016]
"QuickTime Task"=J:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
"TkBellExe"=J:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-06-20 198160]
"NeroFilterCheck"=J:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"EPSON Stylus Photo RX700 Series"=J:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9IE.EXE [2004-11-10 98304]
"EEventManager"=J:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe [2004-11-01 118784]
"LogitechCameraService(E)"=J:\WINDOWS\system32\ElkCtrl.exe [2004-11-01 262144]
"SunJavaUpdateSched"=J:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=J:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"SpybotSD TeaTimer"=J:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"H/PC Connection Agent"=J:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"MSMSGS"=J:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"TomTomHOME.exe"=J:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2009-08-07 247144]
"WMPNSCFG"=J:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-03 204288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer]
J:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe [2007-06-21 70952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCameraAssistant]
J:\Program Files\Logitech\Video\CameraAssistant.exe [2005-12-07 489472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideo[inspector]]
J:\Program Files\Logitech\Video\InstallHelper.exe [2005-12-07 73728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\J:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL 9.0 Icône AOL.lnk]
J:\PROGRA~1\AOL9~1.0A\aoltray.exe [2004-05-10 156784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\J:^Documents and Settings^User^Menu Démarrer^Programmes^Démarrage^Notification de cadeaux MSN.lnk]
J:\DOCUME~1\User\APPLIC~1\MICROS~1\NOTIFI~1\lsnfier.exe [2009-04-02 135680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\J:^Documents and Settings^User^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.4.lnk]
J:\Program Files\OpenOffice.org 2.4\program\quickstart.exe []
J:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Adobe Gamma Loader.lnk - J:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
J:\Documents and Settings\User\Menu Démarrer\Programmes\Démarrage
OpenOffice.org 2.4.lnk.disabled - J:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
J:\WINDOWS\system32\Ati2evxx.dll [2006-06-08 61440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - J:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sglfb.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tga.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NBF]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nbf.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProtectedStorage]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sglfb.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tga.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"J:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe"="J:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe:*:Enabled:AOL"
"J:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe"="J:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe:*:Enabled:AOL"
"J:\Program Files\AOL 9.0\waol.exe"="J:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL 9.0"
"J:\Program Files\Fichiers communs\AOL\1194948851\ee\aolsoftware.exe"="J:\Program Files\Fichiers communs\AOL\1194948851\ee\aolsoftware.exe:*:Enabled:AOL Shared Components"
"J:\Program Files\Fichiers communs\AOL\TopSpeed\3.0\aoltpsd3.exe"="J:\Program Files\Fichiers communs\AOL\TopSpeed\3.0\aoltpsd3.exe:*:Enabled:AOL TopSpeed"
"J:\Program Files\Fichiers communs\AOL\Loader\aolload.exe"="J:\Program Files\Fichiers communs\AOL\Loader\aolload.exe:*:Enabled:AOL Loader"
"J:\Program Files\Fichiers communs\AOL\System Information\sinf.exe"="J:\Program Files\Fichiers communs\AOL\System Information\sinf.exe:*:Enabled:AOL System Information"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"J:\Program Files\eMule\emule.exe"="J:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"J:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe"="J:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe:*:Enabled:Kaspersky AV Scanner"
"C:\Mes Documents\jeux\football\PES2008.exe"="C:\Mes Documents\jeux\football\PES2008.exe:*:Enabled:Pro Evolution Soccer 2008"
"J:\Program Files\AOL 9.0 VR\waol.exe"="J:\Program Files\AOL 9.0 VR\waol.exe:*:Enabled:AOL 9.0 VR"
"J:\Program Files\AOL 9.0a\waol.exe"="J:\Program Files\AOL 9.0a\waol.exe:*:Enabled:AOL 9.0a"
"J:\Program Files\Microsoft ActiveSync\rapimgr.exe"="J:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"J:\Program Files\Microsoft ActiveSync\wcescomm.exe"="J:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"J:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="J:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"J:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe"="J:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe:*:Enabled:AOL"
"J:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe"="J:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe:*:Enabled:AOL"
"J:\Program Files\AOL 9.0\waol.exe"="J:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL 9.0"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"J:\Program Files\AOL 9.0 VR\waol.exe"="J:\Program Files\AOL 9.0 VR\waol.exe:*:Enabled:AOL 9.0 VR"
"J:\Program Files\AOL 9.0a\waol.exe"="J:\Program Files\AOL 9.0a\waol.exe:*:Enabled:AOL 9.0a"
"J:\Program Files\Microsoft ActiveSync\rapimgr.exe"="J:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"J:\Program Files\Microsoft ActiveSync\wcescomm.exe"="J:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"J:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="J:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
======List of files/folders created in the last 1 months======
2009-09-03 20:58:38 ----D---- J:\Program Files\trend micro
2009-09-03 20:58:36 ----D---- J:\rsit
2009-09-03 15:58:09 ----HDC---- J:\WINDOWS\ie8
2009-08-29 19:16:06 ----D---- J:\f57135ee1f2b008e5d94e183985e
2009-08-29 19:02:55 ----D---- J:\e293a287d7dc03486daefb
2009-08-29 13:54:00 ----D---- J:\Program Files\Registry Winner
2009-08-26 18:01:16 ----D---- J:\Documents and Settings\User\Application Data\ZoomBrowser EX
2009-08-26 12:13:56 ----D---- J:\Documents and Settings\User\Application Data\Canon
2009-08-26 12:06:29 ----D---- J:\Documents and Settings\All Users\Application Data\ZoomBrowser
2009-08-26 12:06:05 ----D---- J:\Program Files\Canon
2009-08-26 12:04:53 ----D---- J:\Program Files\Fichiers communs\Canon
2009-08-26 11:20:55 ----HDC---- J:\WINDOWS\$NtUninstallKB970653-v3$
2009-08-26 11:20:45 ----HDC---- J:\WINDOWS\$NtUninstallKB968389$
2009-08-23 20:56:05 ----HDC---- J:\WINDOWS\$NtUninstallKB960859$
2009-08-23 20:55:56 ----HDC---- J:\WINDOWS\$NtUninstallKB971657$
2009-08-23 20:55:48 ----HDC---- J:\WINDOWS\$NtUninstallKB971557$
2009-08-23 20:55:39 ----HDC---- J:\WINDOWS\$NtUninstallKB956744$
2009-08-23 20:53:43 ----HDC---- J:\WINDOWS\$NtUninstallKB973869$
2009-08-23 20:52:53 ----HDC---- J:\WINDOWS\$NtUninstallKB973507$
2009-08-23 20:52:44 ----HDC---- J:\WINDOWS\$NtUninstallKB973354$
2009-08-23 20:52:24 ----HDC---- J:\WINDOWS\$NtUninstallKB973540_WM9$
2009-08-23 20:50:39 ----HDC---- J:\WINDOWS\$NtUninstallKB973815$
2009-08-07 22:48:05 ----HDC---- J:\WINDOWS\$NtUninstallKB961118$
2009-08-06 18:05:45 ----A---- J:\WINDOWS\system32\ptpusb.dll
2009-08-06 18:05:44 ----A---- J:\WINDOWS\system32\ptpusd.dll
2009-08-06 13:41:15 ----D---- J:\Documents and Settings\All Users\Application Data\TomTom
2009-08-06 13:40:19 ----D---- J:\Documents and Settings\User\Application Data\TomTom
2009-08-06 13:40:03 ----D---- J:\Program Files\TomTom International B.V
2009-08-06 13:39:46 ----D---- J:\Program Files\TomTom HOME 2
2009-08-05 23:21:00 ----D---- J:\WINDOWS\system32\XPSViewer
2009-08-05 23:20:54 ----D---- J:\WINDOWS\system32\en-US
2009-08-05 23:20:47 ----D---- J:\Program Files\Reference Assemblies
2009-08-05 23:20:16 ----N---- J:\WINDOWS\system32\xpssvcs.dll
2009-08-05 23:20:16 ----N---- J:\WINDOWS\system32\xpsshhdr.dll
2009-08-05 23:20:16 ----N---- J:\WINDOWS\system32\prntvpt.dll
2009-08-05 23:20:15 ----D---- J:\e47c97f978947faa8693d466c6
2009-08-05 23:19:56 ----D---- J:\WINDOWS\SxsCaPendDel
2009-08-05 23:15:55 ----D---- J:\a35cf35a55d9a9b8d345e4c7
2009-08-05 23:15:52 ----D---- J:\b2f074036063922ae564af
2009-08-05 05:13:47 ----A---- J:\WINDOWS\system32\javaws.exe
2009-08-05 05:13:47 ----A---- J:\WINDOWS\system32\javaw.exe
2009-08-05 05:13:47 ----A---- J:\WINDOWS\system32\java.exe
======List of files/folders modified in the last 1 months======
2009-09-03 20:58:58 ----D---- J:\WINDOWS\Prefetch
2009-09-03 20:58:40 ----D---- J:\WINDOWS\Internet Logs
2009-09-03 20:58:38 ----RD---- J:\Program Files
2009-09-03 20:33:58 ----D---- J:\Program Files\Mozilla Firefox
2009-09-03 20:06:00 ----D---- J:\WINDOWS\Temp
2009-09-03 18:39:18 ----D---- J:\WINDOWS\system32
2009-09-03 16:04:09 ----D---- J:\WINDOWS
2009-09-03 16:03:54 ----SD---- J:\WINDOWS\Tasks
2009-09-03 16:02:50 ----D---- J:\WINDOWS\system32\fr-fr
2009-09-03 16:02:49 ----RSHDC---- J:\WINDOWS\system32\dllcache
2009-09-03 16:02:49 ----HD---- J:\WINDOWS\inf
2009-09-03 16:02:49 ----D---- J:\WINDOWS\Media
2009-09-03 16:02:49 ----D---- J:\WINDOWS\Help
2009-09-03 16:02:49 ----D---- J:\Program Files\Internet Explorer
2009-09-03 16:01:57 ----A---- J:\WINDOWS\SchedLgU.Txt
2009-09-03 16:01:34 ----D---- J:\WINDOWS\system32\CatRoot
2009-09-03 16:01:32 ----D---- J:\WINDOWS\ie8updates
2009-09-03 16:01:24 ----A---- J:\WINDOWS\imsins.BAK
2009-09-03 15:57:58 ----D---- J:\WINDOWS\system32\CatRoot2
2009-09-03 15:43:27 ----D---- J:\Documents and Settings\All Users\Application Data\Google Updater
2009-09-03 06:36:05 ----D---- J:\WINDOWS\network diagnostic
2009-09-03 03:15:16 ----D---- J:\Program Files\Malwarebytes' Anti-Malware
2009-09-02 20:14:50 ----A---- J:\WINDOWS\NeroDigital.ini
2009-09-02 20:11:57 ----HD---- J:\WINDOWS\system32\drivers
2009-09-01 09:40:12 ----D---- J:\WINDOWS\Microsoft.NET
2009-09-01 09:25:43 ----SHD---- J:\WINDOWS\Installer
2009-09-01 09:25:43 ----HD---- J:\Config.Msi
2009-08-30 13:24:30 ----D---- J:\Documents and Settings\User\Application Data\Vso
2009-08-30 06:49:24 ----RSD---- J:\WINDOWS\assembly
2009-08-30 06:33:31 ----A---- J:\WINDOWS\system32\PerfStringBackup.INI
2009-08-30 06:33:08 ----D---- J:\WINDOWS\WinSxS
2009-08-30 06:27:32 ----RSD---- J:\WINDOWS\Fonts
2009-08-29 19:11:46 ----D---- J:\WINDOWS\system32\mui
2009-08-29 18:41:27 ----HD---- J:\WINDOWS\$hf_mig$
2009-08-29 13:04:37 ----D---- J:\Program Files\MSECache
2009-08-29 06:50:41 ----D---- J:\Program Files\WinRAR
2009-08-28 05:22:57 ----A---- J:\Documents and Settings\User\Application Data\QuickZip45.ini
2009-08-26 12:04:53 ----D---- J:\Program Files\Fichiers communs
2009-08-26 09:57:03 ----D---- J:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-08-26 09:55:24 ----D---- J:\Program Files\Fichiers communs\Microsoft Shared
2009-08-26 09:54:55 ----D---- J:\Program Files\Microsoft Works
2009-08-23 20:52:46 ----D---- J:\Program Files\Outlook Express
2009-08-17 18:10:20 ----A---- J:\WINDOWS\system32\aswBoot.exe
2009-08-08 18:58:44 ----A---- J:\WINDOWS\cdplayer.ini
2009-08-06 18:21:39 ----D---- J:\Documents and Settings\User\Application Data\Corel
2009-08-06 18:11:44 ----AD---- J:\Documents and Settings\All Users\Application Data\TEMP
2009-08-05 23:20:56 ----D---- J:\Program Files\MSBuild
2009-08-05 23:20:31 ----D---- J:\WINDOWS\system32\spool
2009-08-05 11:00:38 ----A---- J:\WINDOWS\system32\mswebdvd.dll
2009-08-05 05:13:42 ----D---- J:\Program Files\Java
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; J:\WINDOWS\system32\drivers\Aavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; J:\WINDOWS\system32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; J:\WINDOWS\system32\drivers\aswTdi.sys [2009-08-17 51376]
R1 intelppm;Pilote de processeur Intel; J:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 kbdhid;Pilote HID de clavier; J:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 KLIF;KLIF; J:\WINDOWS\system32\DRIVERS\klif.sys [2007-07-19 127768]
R1 vsdatant;vsdatant; J:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; J:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-28 12032]
R2 Aspi32;Aspi32; J:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
R2 aswFsBlk;aswFsBlk; J:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
R2 aswMon2;avast! Standard Shield Support; J:\WINDOWS\system32\drivers\aswMon2.sys [2009-08-17 94160]
R3 3xHybrid;3xHybrid service; J:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2004-11-08 948992]
R3 Arp1394;Protocole client ARP 1394; J:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; J:\WINDOWS\system32\drivers\aswRdr.sys [2009-08-17 23152]
R3 ati2mtag;ati2mtag; J:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-06-08 1580544]
R3 FilterService;UVC Filter Service; J:\WINDOWS\system32\DRIVERS\lvuvcflt.sys [2005-12-06 14080]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; J:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Pilote de classe HID Microsoft; J:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); J:\WINDOWS\system32\drivers\RtkHDAud.sys [2005-06-29 3173888]
R3 Lvckap;Logitech Kernel Audio Processing Filter Driver; \??\J:\WINDOWS\system32\drivers\Lvckap.sys []
R3 lvmvdrv;Logitech Machine Vision Engine Loader; \??\J:\WINDOWS\system32\drivers\lvmvdrv.sys []
R3 lvpopflt;Logitech POP Suppression Filter; J:\WINDOWS\system32\DRIVERS\lvpopflt.sys [2005-12-06 2010240]
R3 LVPrcMon;Logitech LVPrcMon Driver; \??\J:\WINDOWS\system32\drivers\LVPrcMon.sys []
R3 LVUSBSta;Logitech USB Monitor Filter; J:\WINDOWS\system32\drivers\lvusbsta.sys [2005-12-06 39424]
R3 LVUVC;Logitech QuickCam Pro 5000(UVC); J:\WINDOWS\system32\DRIVERS\lvuvc.sys [2005-12-06 1103488]
R3 mouhid;Pilote HID de souris; J:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NIC1394;Pilote réseau 1394; J:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); J:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 usbaudio;Pilote USB audio (WDM); J:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Pilote parent générique USB Microsoft; J:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; J:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; J:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbstor;Pilote de stockage de masse USB; J:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; J:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 wanatw;WAN Miniport (ATW); J:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588]
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\J:\WINDOWS\system32\drivers\NSDriver.sys []
S3 Ad-Watch Real-Time Scanner;AW Real-Time Scanner; \??\J:\WINDOWS\system32\drivers\AWRTPD.sys []
S3 Ad-Watch Registry Filter;Ad-Watch Registry Kernel Filter; \??\J:\WINDOWS\system32\drivers\AWRTRD.sys []
S3 Aspi;Advanced SCSI Programming Interface Driver; \??\J:\WINDOWS\System32\DRIVERS\ASPI32.sys []
S3 catchme;catchme; \??\J:\DOCUME~1\User\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; J:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HdAudAddService;Pilote de fonction Microsoft UAA pour Service High Definition Audio; J:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 MODEMCSA;Périphérique de filtrage de flux Unimodem; J:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 MPE;Filtre BDA MPE; J:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; J:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 Mtlmnt5;Mtlmnt5; J:\WINDOWS\System32\DRIVERS\Mtlmnt5.sys [2004-08-03 126686]
S3 Mtlstrm;Mtlstrm; J:\WINDOWS\System32\DRIVERS\Mtlstrm.sys [2004-08-03 1309184]
S3 NABTSFEC;Codec NABTS/FEC VBI; J:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; J:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NtMtlFax;NtMtlFax; J:\WINDOWS\System32\DRIVERS\NtMtlFax.sys [2004-08-03 180360]
S3 pcouffin;VSO Software pcouffin; J:\WINDOWS\System32\Drivers\pcouffin.sys [2008-07-05 47360]
S3 SLIP;Détrameur décalage BDA; J:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 Slntamr;Smart Link 56K Modem Driver; J:\WINDOWS\System32\DRIVERS\slntamr.sys [2004-08-03 404990]
S3 SlNtHal;SlNtHal; J:\WINDOWS\System32\DRIVERS\Slnthal.sys [2004-08-03 95424]
S3 SlWdmSup;SlWdmSup; J:\WINDOWS\System32\DRIVERS\SlWdmSup.sys [2004-08-03 13240]
S3 streamip;BDA IPSink; J:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbprint;Classe d'imprimantes USB Microsoft; J:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; J:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 wceusbsh;Windows CE USB Serial Host Driver; J:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 WSTCODEC;Codec Teletext standard; J:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; J:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; J:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; J:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeActiveFileMonitor;Adobe Active File Monitor; J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe [2004-10-12 98304]
R2 AOL ACS;AOL Connectivity Service; J:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe [2006-10-23 46640]
R2 aswUpdSv;avast! iAVS4 Control Service; J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; J:\WINDOWS\system32\Ati2evxx.exe [2006-06-08 409600]
R2 avast! Antivirus;avast! Antivirus; J:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 CCALib8;Canon Camera Access Library 8; J:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
R2 JavaQuickStarterService;Java Quick Starter; J:\Program Files\Java\jre6\bin\jqs.exe [2009-07-25 153376]
R2 LVPrcSrv;Logitech Process Monitor; j:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [2005-12-09 81920]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; J:\Program Files\McAfee\SiteAdvisor\McSACore.exe [2009-02-11 210216]
R2 PhotoshopElementsDeviceConnect;Photoshop Elements Device Connect; J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe [2004-10-12 118784]
R2 ProtexisLicensing;ProtexisLicensing; J:\WINDOWS\system32\PSIService.exe [2006-11-02 174656]
R2 SLService;SmartLinkService; J:\WINDOWS\system32\slserv.exe [2008-04-14 73796]
R2 TomTomHOMEService;TomTomHOMEService; J:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-08-07 92008]
R2 vsmon;TrueVector Internet Monitor; J:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
R2 WANMiniportService;WAN Miniport (ATW) Service; J:\WINDOWS\wanmpsvc.exe [2003-08-27 65536]
R3 avast! Mail Scanner;avast! Mail Scanner; J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
R3 avast! Web Scanner;avast! Web Scanner; J:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
R3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; J:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S2 ATI Smart;ATI Smart; J:\WINDOWS\system32\ati2sgag.exe [2006-06-07 520192]
S2 gupdate1c98f5f176e2cb2;Service Google Update (gupdate1c98f5f176e2cb2); J:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-15 133104]
S2 gusvc;Google Software Updater; J:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 183280]
S3 aspnet_state;Service d'état ASP.NET; J:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; J:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; j:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; J:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; J:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; J:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; J:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; J:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Parfois lors du démarrage , l'écran bloque sur la page d'entrée " Packard Bell "
Une personne peut-elle me renseigner ? Salutations
Ci-joint rapport Hijackthis de mon Pc.
Logfile of random's system information tool 1.06 (written by random/random)
Run by User at 2009-09-03 20:58:36
Microsoft Windows XP Édition familiale Service Pack 3
System drive J: has 96 GB (77%) free of 125 GB
Total RAM: 1023 MB (33% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:59:07, on 03/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
J:\WINDOWS\System32\smss.exe
J:\WINDOWS\system32\winlogon.exe
J:\WINDOWS\system32\services.exe
J:\WINDOWS\system32\lsass.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\system32\svchost.exe
J:\WINDOWS\System32\svchost.exe
J:\WINDOWS\system32\ZoneLabs\vsmon.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\Explorer.EXE
J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
J:\Program Files\Alwil Software\Avast4\ashServ.exe
J:\WINDOWS\system32\spoolsv.exe
j:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
J:\WINDOWS\SOUNDMAN.EXE
J:\WINDOWS\ALCWZRD.EXE
J:\Program Files\Fichiers communs\AOL\1194948851\ee\AOLSoftware.exe
J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
J:\WINDOWS\system32\LVCOMSX.EXE
J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
J:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
J:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
J:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
J:\WINDOWS\system32\ElkCtrl.exe
J:\Program Files\Java\jre6\bin\jusched.exe
J:\WINDOWS\system32\ctfmon.exe
J:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
J:\Program Files\Microsoft ActiveSync\wcescomm.exe
J:\Program Files\Messenger\msmsgs.exe
J:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
J:\Program Files\Windows Media Player\WMPNSCFG.exe
J:\Program Files\Java\jre6\bin\jqs.exe
J:\PROGRA~1\MICROS~3\rapimgr.exe
J:\Program Files\McAfee\SiteAdvisor\McSACore.exe
J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
J:\WINDOWS\system32\PSIService.exe
J:\WINDOWS\system32\slserv.exe
J:\WINDOWS\System32\svchost.exe
J:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
J:\WINDOWS\wanmpsvc.exe
J:\Program Files\Canon\CAL\CALMAIN.exe
J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
J:\Program Files\Alwil Software\Avast4\ashWebSv.exe
J:\WINDOWS\System32\svchost.exe
J:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
J:\Program Files\Mozilla Firefox\firefox.exe
J:\Documents and Settings\User\Bureau\RSIT.exe
J:\Program Files\trend micro\User.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - J:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - J:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - J:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - J:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: FireShot - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\library\fsaddin-0.69.dll (file missing)
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [HostManager] J:\Program Files\Fichiers communs\AOL\1194948851\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [avast!] J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "J:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LVCOMSX] J:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [ZoneAlarm Client] "J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "J:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "J:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] J:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [EPSON Stylus Photo RX700 Series] J:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9IE.EXE /F "J:\WINDOWS\TEMP\E_S2B0.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [EEventManager] J:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
O4 - HKLM\..\Run: [LogitechCameraService(E)] J:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [SunJavaUpdateSched] "J:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] J:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] J:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "J:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [MSMSGS] "J:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [TomTomHOME.exe] "J:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [WMPNSCFG] J:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 2.4.lnk.disabled
O4 - Global Startup: Adobe Gamma Loader.lnk = J:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://J:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://J:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - J:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - J:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - J:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} (MetaStreamCtl Class) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {48DF87EE-F2DE-11D8-BE7F-302050C10811} (FlyLoader Class) - http://www.flysuite.com/flyword/loaderword_win_fr.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9563.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://3dlifeplayer.dl.3dvia.com/player/install/installer.exe
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O23 - Service: Adobe Active File Monitor (AdobeActiveFileMonitor) - Unknown owner - J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - J:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - J:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - J:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - J:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Service Google Update (gupdate1c98f5f176e2cb2) (gupdate1c98f5f176e2cb2) - Google Inc. - J:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - J:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - J:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - j:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - J:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: Photoshop Elements Device Connect (PhotoshopElementsDeviceConnect) - Unknown owner - J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
O23 - Service: ProtexisLicensing - Unknown owner - J:\WINDOWS\system32\PSIService.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - J:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: TomTomHOMEService - TomTom - J:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - J:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - J:\WINDOWS\wanmpsvc.exe
--
End of file - 11742 bytes
======Scheduled tasks folder======
J:\WINDOWS\tasks\AppleSoftwareUpdate.job
J:\WINDOWS\tasks\Google Software Updater.job
J:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
J:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
J:\WINDOWS\tasks\Registry Winner Schedule.job
J:\WINDOWS\tasks\SyncBack ma sauvegarde.job
J:\WINDOWS\tasks\SyncBack mes documents.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - J:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-06-20 312928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - J:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - J:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-03-24 668656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-02-13 150032]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - J:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - J:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-02-13 150032]
{6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - FireShot - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\library\fsaddin-0.69.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Raccourci vers la page des propriétés de High Definition Audio"=J:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"SoundMan"=J:\WINDOWS\SOUNDMAN.EXE [2005-06-21 90112]
"AlcWzrd"=J:\WINDOWS\ALCWZRD.EXE [2005-06-29 2806272]
"HostManager"=J:\Program Files\Fichiers communs\AOL\1194948851\ee\AOLSoftware.exe [2006-09-26 50736]
"avast!"=J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"Adobe Reader Speed Launcher"=J:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"LVCOMSX"=J:\WINDOWS\system32\LVCOMSX.EXE [2005-12-09 225280]
"ZoneAlarm Client"=J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-07-09 919016]
"QuickTime Task"=J:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
"TkBellExe"=J:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-06-20 198160]
"NeroFilterCheck"=J:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"EPSON Stylus Photo RX700 Series"=J:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9IE.EXE [2004-11-10 98304]
"EEventManager"=J:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe [2004-11-01 118784]
"LogitechCameraService(E)"=J:\WINDOWS\system32\ElkCtrl.exe [2004-11-01 262144]
"SunJavaUpdateSched"=J:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=J:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"SpybotSD TeaTimer"=J:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"H/PC Connection Agent"=J:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"MSMSGS"=J:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"TomTomHOME.exe"=J:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2009-08-07 247144]
"WMPNSCFG"=J:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-03 204288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer]
J:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe [2007-06-21 70952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCameraAssistant]
J:\Program Files\Logitech\Video\CameraAssistant.exe [2005-12-07 489472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideo[inspector]]
J:\Program Files\Logitech\Video\InstallHelper.exe [2005-12-07 73728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\J:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL 9.0 Icône AOL.lnk]
J:\PROGRA~1\AOL9~1.0A\aoltray.exe [2004-05-10 156784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\J:^Documents and Settings^User^Menu Démarrer^Programmes^Démarrage^Notification de cadeaux MSN.lnk]
J:\DOCUME~1\User\APPLIC~1\MICROS~1\NOTIFI~1\lsnfier.exe [2009-04-02 135680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\J:^Documents and Settings^User^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.4.lnk]
J:\Program Files\OpenOffice.org 2.4\program\quickstart.exe []
J:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Adobe Gamma Loader.lnk - J:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
J:\Documents and Settings\User\Menu Démarrer\Programmes\Démarrage
OpenOffice.org 2.4.lnk.disabled - J:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
J:\WINDOWS\system32\Ati2evxx.dll [2006-06-08 61440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - J:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sglfb.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tga.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NBF]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nbf.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProtectedStorage]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sglfb.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tga.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"J:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe"="J:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe:*:Enabled:AOL"
"J:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe"="J:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe:*:Enabled:AOL"
"J:\Program Files\AOL 9.0\waol.exe"="J:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL 9.0"
"J:\Program Files\Fichiers communs\AOL\1194948851\ee\aolsoftware.exe"="J:\Program Files\Fichiers communs\AOL\1194948851\ee\aolsoftware.exe:*:Enabled:AOL Shared Components"
"J:\Program Files\Fichiers communs\AOL\TopSpeed\3.0\aoltpsd3.exe"="J:\Program Files\Fichiers communs\AOL\TopSpeed\3.0\aoltpsd3.exe:*:Enabled:AOL TopSpeed"
"J:\Program Files\Fichiers communs\AOL\Loader\aolload.exe"="J:\Program Files\Fichiers communs\AOL\Loader\aolload.exe:*:Enabled:AOL Loader"
"J:\Program Files\Fichiers communs\AOL\System Information\sinf.exe"="J:\Program Files\Fichiers communs\AOL\System Information\sinf.exe:*:Enabled:AOL System Information"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"J:\Program Files\eMule\emule.exe"="J:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"J:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe"="J:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe:*:Enabled:Kaspersky AV Scanner"
"C:\Mes Documents\jeux\football\PES2008.exe"="C:\Mes Documents\jeux\football\PES2008.exe:*:Enabled:Pro Evolution Soccer 2008"
"J:\Program Files\AOL 9.0 VR\waol.exe"="J:\Program Files\AOL 9.0 VR\waol.exe:*:Enabled:AOL 9.0 VR"
"J:\Program Files\AOL 9.0a\waol.exe"="J:\Program Files\AOL 9.0a\waol.exe:*:Enabled:AOL 9.0a"
"J:\Program Files\Microsoft ActiveSync\rapimgr.exe"="J:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"J:\Program Files\Microsoft ActiveSync\wcescomm.exe"="J:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"J:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="J:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"J:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe"="J:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe:*:Enabled:AOL"
"J:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe"="J:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe:*:Enabled:AOL"
"J:\Program Files\AOL 9.0\waol.exe"="J:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL 9.0"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"J:\Program Files\AOL 9.0 VR\waol.exe"="J:\Program Files\AOL 9.0 VR\waol.exe:*:Enabled:AOL 9.0 VR"
"J:\Program Files\AOL 9.0a\waol.exe"="J:\Program Files\AOL 9.0a\waol.exe:*:Enabled:AOL 9.0a"
"J:\Program Files\Microsoft ActiveSync\rapimgr.exe"="J:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"J:\Program Files\Microsoft ActiveSync\wcescomm.exe"="J:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"J:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="J:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
======List of files/folders created in the last 1 months======
2009-09-03 20:58:38 ----D---- J:\Program Files\trend micro
2009-09-03 20:58:36 ----D---- J:\rsit
2009-09-03 15:58:09 ----HDC---- J:\WINDOWS\ie8
2009-08-29 19:16:06 ----D---- J:\f57135ee1f2b008e5d94e183985e
2009-08-29 19:02:55 ----D---- J:\e293a287d7dc03486daefb
2009-08-29 13:54:00 ----D---- J:\Program Files\Registry Winner
2009-08-26 18:01:16 ----D---- J:\Documents and Settings\User\Application Data\ZoomBrowser EX
2009-08-26 12:13:56 ----D---- J:\Documents and Settings\User\Application Data\Canon
2009-08-26 12:06:29 ----D---- J:\Documents and Settings\All Users\Application Data\ZoomBrowser
2009-08-26 12:06:05 ----D---- J:\Program Files\Canon
2009-08-26 12:04:53 ----D---- J:\Program Files\Fichiers communs\Canon
2009-08-26 11:20:55 ----HDC---- J:\WINDOWS\$NtUninstallKB970653-v3$
2009-08-26 11:20:45 ----HDC---- J:\WINDOWS\$NtUninstallKB968389$
2009-08-23 20:56:05 ----HDC---- J:\WINDOWS\$NtUninstallKB960859$
2009-08-23 20:55:56 ----HDC---- J:\WINDOWS\$NtUninstallKB971657$
2009-08-23 20:55:48 ----HDC---- J:\WINDOWS\$NtUninstallKB971557$
2009-08-23 20:55:39 ----HDC---- J:\WINDOWS\$NtUninstallKB956744$
2009-08-23 20:53:43 ----HDC---- J:\WINDOWS\$NtUninstallKB973869$
2009-08-23 20:52:53 ----HDC---- J:\WINDOWS\$NtUninstallKB973507$
2009-08-23 20:52:44 ----HDC---- J:\WINDOWS\$NtUninstallKB973354$
2009-08-23 20:52:24 ----HDC---- J:\WINDOWS\$NtUninstallKB973540_WM9$
2009-08-23 20:50:39 ----HDC---- J:\WINDOWS\$NtUninstallKB973815$
2009-08-07 22:48:05 ----HDC---- J:\WINDOWS\$NtUninstallKB961118$
2009-08-06 18:05:45 ----A---- J:\WINDOWS\system32\ptpusb.dll
2009-08-06 18:05:44 ----A---- J:\WINDOWS\system32\ptpusd.dll
2009-08-06 13:41:15 ----D---- J:\Documents and Settings\All Users\Application Data\TomTom
2009-08-06 13:40:19 ----D---- J:\Documents and Settings\User\Application Data\TomTom
2009-08-06 13:40:03 ----D---- J:\Program Files\TomTom International B.V
2009-08-06 13:39:46 ----D---- J:\Program Files\TomTom HOME 2
2009-08-05 23:21:00 ----D---- J:\WINDOWS\system32\XPSViewer
2009-08-05 23:20:54 ----D---- J:\WINDOWS\system32\en-US
2009-08-05 23:20:47 ----D---- J:\Program Files\Reference Assemblies
2009-08-05 23:20:16 ----N---- J:\WINDOWS\system32\xpssvcs.dll
2009-08-05 23:20:16 ----N---- J:\WINDOWS\system32\xpsshhdr.dll
2009-08-05 23:20:16 ----N---- J:\WINDOWS\system32\prntvpt.dll
2009-08-05 23:20:15 ----D---- J:\e47c97f978947faa8693d466c6
2009-08-05 23:19:56 ----D---- J:\WINDOWS\SxsCaPendDel
2009-08-05 23:15:55 ----D---- J:\a35cf35a55d9a9b8d345e4c7
2009-08-05 23:15:52 ----D---- J:\b2f074036063922ae564af
2009-08-05 05:13:47 ----A---- J:\WINDOWS\system32\javaws.exe
2009-08-05 05:13:47 ----A---- J:\WINDOWS\system32\javaw.exe
2009-08-05 05:13:47 ----A---- J:\WINDOWS\system32\java.exe
======List of files/folders modified in the last 1 months======
2009-09-03 20:58:58 ----D---- J:\WINDOWS\Prefetch
2009-09-03 20:58:40 ----D---- J:\WINDOWS\Internet Logs
2009-09-03 20:58:38 ----RD---- J:\Program Files
2009-09-03 20:33:58 ----D---- J:\Program Files\Mozilla Firefox
2009-09-03 20:06:00 ----D---- J:\WINDOWS\Temp
2009-09-03 18:39:18 ----D---- J:\WINDOWS\system32
2009-09-03 16:04:09 ----D---- J:\WINDOWS
2009-09-03 16:03:54 ----SD---- J:\WINDOWS\Tasks
2009-09-03 16:02:50 ----D---- J:\WINDOWS\system32\fr-fr
2009-09-03 16:02:49 ----RSHDC---- J:\WINDOWS\system32\dllcache
2009-09-03 16:02:49 ----HD---- J:\WINDOWS\inf
2009-09-03 16:02:49 ----D---- J:\WINDOWS\Media
2009-09-03 16:02:49 ----D---- J:\WINDOWS\Help
2009-09-03 16:02:49 ----D---- J:\Program Files\Internet Explorer
2009-09-03 16:01:57 ----A---- J:\WINDOWS\SchedLgU.Txt
2009-09-03 16:01:34 ----D---- J:\WINDOWS\system32\CatRoot
2009-09-03 16:01:32 ----D---- J:\WINDOWS\ie8updates
2009-09-03 16:01:24 ----A---- J:\WINDOWS\imsins.BAK
2009-09-03 15:57:58 ----D---- J:\WINDOWS\system32\CatRoot2
2009-09-03 15:43:27 ----D---- J:\Documents and Settings\All Users\Application Data\Google Updater
2009-09-03 06:36:05 ----D---- J:\WINDOWS\network diagnostic
2009-09-03 03:15:16 ----D---- J:\Program Files\Malwarebytes' Anti-Malware
2009-09-02 20:14:50 ----A---- J:\WINDOWS\NeroDigital.ini
2009-09-02 20:11:57 ----HD---- J:\WINDOWS\system32\drivers
2009-09-01 09:40:12 ----D---- J:\WINDOWS\Microsoft.NET
2009-09-01 09:25:43 ----SHD---- J:\WINDOWS\Installer
2009-09-01 09:25:43 ----HD---- J:\Config.Msi
2009-08-30 13:24:30 ----D---- J:\Documents and Settings\User\Application Data\Vso
2009-08-30 06:49:24 ----RSD---- J:\WINDOWS\assembly
2009-08-30 06:33:31 ----A---- J:\WINDOWS\system32\PerfStringBackup.INI
2009-08-30 06:33:08 ----D---- J:\WINDOWS\WinSxS
2009-08-30 06:27:32 ----RSD---- J:\WINDOWS\Fonts
2009-08-29 19:11:46 ----D---- J:\WINDOWS\system32\mui
2009-08-29 18:41:27 ----HD---- J:\WINDOWS\$hf_mig$
2009-08-29 13:04:37 ----D---- J:\Program Files\MSECache
2009-08-29 06:50:41 ----D---- J:\Program Files\WinRAR
2009-08-28 05:22:57 ----A---- J:\Documents and Settings\User\Application Data\QuickZip45.ini
2009-08-26 12:04:53 ----D---- J:\Program Files\Fichiers communs
2009-08-26 09:57:03 ----D---- J:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-08-26 09:55:24 ----D---- J:\Program Files\Fichiers communs\Microsoft Shared
2009-08-26 09:54:55 ----D---- J:\Program Files\Microsoft Works
2009-08-23 20:52:46 ----D---- J:\Program Files\Outlook Express
2009-08-17 18:10:20 ----A---- J:\WINDOWS\system32\aswBoot.exe
2009-08-08 18:58:44 ----A---- J:\WINDOWS\cdplayer.ini
2009-08-06 18:21:39 ----D---- J:\Documents and Settings\User\Application Data\Corel
2009-08-06 18:11:44 ----AD---- J:\Documents and Settings\All Users\Application Data\TEMP
2009-08-05 23:20:56 ----D---- J:\Program Files\MSBuild
2009-08-05 23:20:31 ----D---- J:\WINDOWS\system32\spool
2009-08-05 11:00:38 ----A---- J:\WINDOWS\system32\mswebdvd.dll
2009-08-05 05:13:42 ----D---- J:\Program Files\Java
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; J:\WINDOWS\system32\drivers\Aavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; J:\WINDOWS\system32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; J:\WINDOWS\system32\drivers\aswTdi.sys [2009-08-17 51376]
R1 intelppm;Pilote de processeur Intel; J:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 kbdhid;Pilote HID de clavier; J:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 KLIF;KLIF; J:\WINDOWS\system32\DRIVERS\klif.sys [2007-07-19 127768]
R1 vsdatant;vsdatant; J:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; J:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-28 12032]
R2 Aspi32;Aspi32; J:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
R2 aswFsBlk;aswFsBlk; J:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
R2 aswMon2;avast! Standard Shield Support; J:\WINDOWS\system32\drivers\aswMon2.sys [2009-08-17 94160]
R3 3xHybrid;3xHybrid service; J:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2004-11-08 948992]
R3 Arp1394;Protocole client ARP 1394; J:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; J:\WINDOWS\system32\drivers\aswRdr.sys [2009-08-17 23152]
R3 ati2mtag;ati2mtag; J:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-06-08 1580544]
R3 FilterService;UVC Filter Service; J:\WINDOWS\system32\DRIVERS\lvuvcflt.sys [2005-12-06 14080]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; J:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Pilote de classe HID Microsoft; J:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); J:\WINDOWS\system32\drivers\RtkHDAud.sys [2005-06-29 3173888]
R3 Lvckap;Logitech Kernel Audio Processing Filter Driver; \??\J:\WINDOWS\system32\drivers\Lvckap.sys []
R3 lvmvdrv;Logitech Machine Vision Engine Loader; \??\J:\WINDOWS\system32\drivers\lvmvdrv.sys []
R3 lvpopflt;Logitech POP Suppression Filter; J:\WINDOWS\system32\DRIVERS\lvpopflt.sys [2005-12-06 2010240]
R3 LVPrcMon;Logitech LVPrcMon Driver; \??\J:\WINDOWS\system32\drivers\LVPrcMon.sys []
R3 LVUSBSta;Logitech USB Monitor Filter; J:\WINDOWS\system32\drivers\lvusbsta.sys [2005-12-06 39424]
R3 LVUVC;Logitech QuickCam Pro 5000(UVC); J:\WINDOWS\system32\DRIVERS\lvuvc.sys [2005-12-06 1103488]
R3 mouhid;Pilote HID de souris; J:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NIC1394;Pilote réseau 1394; J:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); J:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 usbaudio;Pilote USB audio (WDM); J:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Pilote parent générique USB Microsoft; J:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; J:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; J:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbstor;Pilote de stockage de masse USB; J:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; J:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 wanatw;WAN Miniport (ATW); J:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588]
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\J:\WINDOWS\system32\drivers\NSDriver.sys []
S3 Ad-Watch Real-Time Scanner;AW Real-Time Scanner; \??\J:\WINDOWS\system32\drivers\AWRTPD.sys []
S3 Ad-Watch Registry Filter;Ad-Watch Registry Kernel Filter; \??\J:\WINDOWS\system32\drivers\AWRTRD.sys []
S3 Aspi;Advanced SCSI Programming Interface Driver; \??\J:\WINDOWS\System32\DRIVERS\ASPI32.sys []
S3 catchme;catchme; \??\J:\DOCUME~1\User\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; J:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HdAudAddService;Pilote de fonction Microsoft UAA pour Service High Definition Audio; J:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 MODEMCSA;Périphérique de filtrage de flux Unimodem; J:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 MPE;Filtre BDA MPE; J:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; J:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 Mtlmnt5;Mtlmnt5; J:\WINDOWS\System32\DRIVERS\Mtlmnt5.sys [2004-08-03 126686]
S3 Mtlstrm;Mtlstrm; J:\WINDOWS\System32\DRIVERS\Mtlstrm.sys [2004-08-03 1309184]
S3 NABTSFEC;Codec NABTS/FEC VBI; J:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; J:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NtMtlFax;NtMtlFax; J:\WINDOWS\System32\DRIVERS\NtMtlFax.sys [2004-08-03 180360]
S3 pcouffin;VSO Software pcouffin; J:\WINDOWS\System32\Drivers\pcouffin.sys [2008-07-05 47360]
S3 SLIP;Détrameur décalage BDA; J:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 Slntamr;Smart Link 56K Modem Driver; J:\WINDOWS\System32\DRIVERS\slntamr.sys [2004-08-03 404990]
S3 SlNtHal;SlNtHal; J:\WINDOWS\System32\DRIVERS\Slnthal.sys [2004-08-03 95424]
S3 SlWdmSup;SlWdmSup; J:\WINDOWS\System32\DRIVERS\SlWdmSup.sys [2004-08-03 13240]
S3 streamip;BDA IPSink; J:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbprint;Classe d'imprimantes USB Microsoft; J:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; J:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 wceusbsh;Windows CE USB Serial Host Driver; J:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 WSTCODEC;Codec Teletext standard; J:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; J:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; J:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; J:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeActiveFileMonitor;Adobe Active File Monitor; J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe [2004-10-12 98304]
R2 AOL ACS;AOL Connectivity Service; J:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe [2006-10-23 46640]
R2 aswUpdSv;avast! iAVS4 Control Service; J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; J:\WINDOWS\system32\Ati2evxx.exe [2006-06-08 409600]
R2 avast! Antivirus;avast! Antivirus; J:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 CCALib8;Canon Camera Access Library 8; J:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
R2 JavaQuickStarterService;Java Quick Starter; J:\Program Files\Java\jre6\bin\jqs.exe [2009-07-25 153376]
R2 LVPrcSrv;Logitech Process Monitor; j:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [2005-12-09 81920]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; J:\Program Files\McAfee\SiteAdvisor\McSACore.exe [2009-02-11 210216]
R2 PhotoshopElementsDeviceConnect;Photoshop Elements Device Connect; J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe [2004-10-12 118784]
R2 ProtexisLicensing;ProtexisLicensing; J:\WINDOWS\system32\PSIService.exe [2006-11-02 174656]
R2 SLService;SmartLinkService; J:\WINDOWS\system32\slserv.exe [2008-04-14 73796]
R2 TomTomHOMEService;TomTomHOMEService; J:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-08-07 92008]
R2 vsmon;TrueVector Internet Monitor; J:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
R2 WANMiniportService;WAN Miniport (ATW) Service; J:\WINDOWS\wanmpsvc.exe [2003-08-27 65536]
R3 avast! Mail Scanner;avast! Mail Scanner; J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
R3 avast! Web Scanner;avast! Web Scanner; J:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
R3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; J:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S2 ATI Smart;ATI Smart; J:\WINDOWS\system32\ati2sgag.exe [2006-06-07 520192]
S2 gupdate1c98f5f176e2cb2;Service Google Update (gupdate1c98f5f176e2cb2); J:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-15 133104]
S2 gusvc;Google Software Updater; J:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 183280]
S3 aspnet_state;Service d'état ASP.NET; J:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; J:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; j:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; J:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; J:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; J:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; J:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; J:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Configuration: Windows XP Firefox 3.0.4
A voir également:
- Y a-t-il virus?
- Virus mcafee - Accueil - Piratage
- Comment détruire un virus informatique - Guide
- Powershell.exe virus - Guide
- Undisclosed-recipients virus - Guide
- Impossible de terminer l'opération car le fichier contient un virus - Forum Virus
10 réponses
Bonjour
Non c'est pas toujours dû à un virus.
çà peut venir d'un périphérique.
Démarre en mode sans échec /clic droit sur poste de travail /gestionnaire de périphérique.
Vérifie s'il y a un point d'interrogation jaune.
Dans ce cas réinstalle son pilote.
Non c'est pas toujours dû à un virus.
çà peut venir d'un périphérique.
Démarre en mode sans échec /clic droit sur poste de travail /gestionnaire de périphérique.
Vérifie s'il y a un point d'interrogation jaune.
Dans ce cas réinstalle son pilote.
Bonjour CESEL45,
et merci
Tout d'abord mes excuses pour ce retard..J'étais en déplacement et puis j'ai fait quelques tests....
Je crois que tu as raison , cela doit venir d'un périph.
Je n'ai pas démarré en mode sans échec , j'ai été chercher le gestionnaire par paramètres panneau de configuration outils d'administration gestion de l'ordinateur
J'ai trouvé un ? jaune sur Modem PCI..
J'ai cherché un pilote à charger, impossible d'en trouver un.
Depuis avril je n'ai plus de modem remplacé par la BOX de neuf. Alors ceci expliquerait-il cela ?
Ce phénomène de blocage ne s'est plus reproduit.
Ma question maintenant est celle-ci :
En lisant mon rapport peut-on dire si un virus se trouve dans mon ordi?
Ne connaissant rien dans la lecture de ces rapports je fais appel aux ferrus d'inform.
Salutations !
et merci
Tout d'abord mes excuses pour ce retard..J'étais en déplacement et puis j'ai fait quelques tests....
Je crois que tu as raison , cela doit venir d'un périph.
Je n'ai pas démarré en mode sans échec , j'ai été chercher le gestionnaire par paramètres panneau de configuration outils d'administration gestion de l'ordinateur
J'ai trouvé un ? jaune sur Modem PCI..
J'ai cherché un pilote à charger, impossible d'en trouver un.
Depuis avril je n'ai plus de modem remplacé par la BOX de neuf. Alors ceci expliquerait-il cela ?
Ce phénomène de blocage ne s'est plus reproduit.
Ma question maintenant est celle-ci :
En lisant mon rapport peut-on dire si un virus se trouve dans mon ordi?
Ne connaissant rien dans la lecture de ces rapports je fais appel aux ferrus d'inform.
Salutations !
T'inquiete pas pour les réponses tardives...Ils a pas mal de boulot sur ce site.
1 ° maintenant que tu as vu que c'est ton modem qui cause problème...retire le et redémarre.
il ne sera pas détecté et en principe ton PC démarrera normalement.
2 ° Tu peux fixer ces 4 ligne dans "Hijackthis"
O3 - Toolbar: FireShot - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8f e7-c1d894a011ba}\library\fsaddin-0.69.dll (file missing)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O16 - DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} (MetaStreamCtl Class) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {48DF87EE-F2DE-11D8-BE7F-302050C10811} (FlyLoader Class) - http://www.flysuite.com/flyword/loaderword_win_fr.cab
1 ° maintenant que tu as vu que c'est ton modem qui cause problème...retire le et redémarre.
il ne sera pas détecté et en principe ton PC démarrera normalement.
2 ° Tu peux fixer ces 4 ligne dans "Hijackthis"
O3 - Toolbar: FireShot - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8f e7-c1d894a011ba}\library\fsaddin-0.69.dll (file missing)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O16 - DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} (MetaStreamCtl Class) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {48DF87EE-F2DE-11D8-BE7F-302050C10811} (FlyLoader Class) - http://www.flysuite.com/flyword/loaderword_win_fr.cab
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Re bonjour,
Cesel45 merci beaucoup de m'aider.
Pour le modem je ne l'ai pas supprimé, mais je l'ai désactivé . Cela suffit-il?
Pour le 2° tu me demandes de fixer ces 4 lignes dans "Hijack this" Je ne sais pas ce que cela veut dire et en plus je ne sais comment faire !
Je ne connais pas grand'chose...J'apprécie ton aide
Amicalement
Cesel45 merci beaucoup de m'aider.
Pour le modem je ne l'ai pas supprimé, mais je l'ai désactivé . Cela suffit-il?
Pour le 2° tu me demandes de fixer ces 4 lignes dans "Hijack this" Je ne sais pas ce que cela veut dire et en plus je ne sais comment faire !
Je ne connais pas grand'chose...J'apprécie ton aide
Amicalement
Re Bonjour
Débranché le modem physiquement c'est le mieux = Il ne sera pas détecté au démarrage.
Pour fixer ces lignes...
A la fin du scanne Hijakthis tu as 2 feuilles.
1 °en fichier texte
2 °case à cocher et en bas à gauche il faut cliquer sur su "FIX CHECKED"
repère les lignes infectés...coche les ...clic sur "checked fix"
Voilà
Débranché le modem physiquement c'est le mieux = Il ne sera pas détecté au démarrage.
Pour fixer ces lignes...
A la fin du scanne Hijakthis tu as 2 feuilles.
1 °en fichier texte
2 °case à cocher et en bas à gauche il faut cliquer sur su "FIX CHECKED"
repère les lignes infectés...coche les ...clic sur "checked fix"
Voilà
Bonsoir CESEL45
J'ai fait ce que tu as demandé. J'ai fixé les 4 lignes , 3 ont disparu ,mais la 4em. revient tout le temps
C'est la ligne ci-dessous:
O3 - Toolbar: FireShot - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8f e7-c1d894a011ba}\library\fsaddin-0.69.dll (file missing).
Que dois-je faire maintenant ?
Amicalement
J'ai fait ce que tu as demandé. J'ai fixé les 4 lignes , 3 ont disparu ,mais la 4em. revient tout le temps
C'est la ligne ci-dessous:
O3 - Toolbar: FireShot - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8f e7-c1d894a011ba}\library\fsaddin-0.69.dll (file missing).
Que dois-je faire maintenant ?
Amicalement
Bonsoir
En mode sans échec çà peut venir à bout d'un récalcitrant.
Tapote les touches F8 OU F5 Au démarrage.
Puis tu fais la même chose qu'en mode normal pour supprimer la ligne 3...
(Scanne du PC avec "Hidjackthis" puis tu coches la ligne.....>Checked fix<
En mode sans échec çà peut venir à bout d'un récalcitrant.
Tapote les touches F8 OU F5 Au démarrage.
Puis tu fais la même chose qu'en mode normal pour supprimer la ligne 3...
(Scanne du PC avec "Hidjackthis" puis tu coches la ligne.....>Checked fix<
Bonjour CESEL45
Je suis passé en mode sans échec , meme op. que en normal , rien n'y fait .La ligne revient.
Voici le dernier rapport Hijack thist
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:34:57, on 11/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
J:\WINDOWS\System32\smss.exe
J:\WINDOWS\system32\winlogon.exe
J:\WINDOWS\system32\services.exe
J:\WINDOWS\system32\lsass.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\system32\svchost.exe
J:\WINDOWS\System32\svchost.exe
J:\WINDOWS\system32\ZoneLabs\vsmon.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\Explorer.EXE
J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
J:\Program Files\Alwil Software\Avast4\ashServ.exe
J:\WINDOWS\system32\spoolsv.exe
j:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
J:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
J:\Program Files\Java\jre6\bin\jqs.exe
J:\Program Files\McAfee\SiteAdvisor\McSACore.exe
J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
J:\WINDOWS\system32\PSIService.exe
J:\WINDOWS\system32\slserv.exe
J:\WINDOWS\System32\svchost.exe
J:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
J:\WINDOWS\wanmpsvc.exe
J:\Program Files\Canon\CAL\CALMAIN.exe
J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
J:\WINDOWS\SOUNDMAN.EXE
J:\WINDOWS\ALCWZRD.EXE
J:\Program Files\Fichiers communs\AOL\1194948851\ee\AOLSoftware.exe
J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
J:\WINDOWS\system32\LVCOMSX.EXE
J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
J:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
J:\Program Files\Alwil Software\Avast4\ashWebSv.exe
J:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
J:\WINDOWS\system32\ElkCtrl.exe
J:\Program Files\Java\jre6\bin\jusched.exe
J:\WINDOWS\system32\ctfmon.exe
J:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
J:\Program Files\Microsoft ActiveSync\wcescomm.exe
J:\Program Files\Messenger\msmsgs.exe
J:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
J:\Program Files\Windows Media Player\WMPNSCFG.exe
J:\WINDOWS\System32\svchost.exe
J:\PROGRA~1\MICROS~3\rapimgr.exe
J:\Program Files\Mozilla Firefox\firefox.exe
J:\Program Files\trend micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - J:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - J:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - J:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - J:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: FireShot - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\library\fsaddin-0.69.dll (file missing)
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [HostManager] J:\Program Files\Fichiers communs\AOL\1194948851\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [avast!] J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "J:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LVCOMSX] J:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [ZoneAlarm Client] "J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "J:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "J:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] J:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [EPSON Stylus Photo RX700 Series] J:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9IE.EXE /F "J:\WINDOWS\TEMP\E_S2B0.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [EEventManager] J:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
O4 - HKLM\..\Run: [LogitechCameraService(E)] J:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [SunJavaUpdateSched] "J:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] J:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] J:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "J:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [MSMSGS] "J:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [TomTomHOME.exe] "J:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [WMPNSCFG] J:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 2.4.lnk.disabled
O4 - Global Startup: Adobe Gamma Loader.lnk = J:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://J:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://J:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - J:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - J:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - J:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9563.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://3dlifeplayer.dl.3dvia.com/player/install/installer.exe
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O23 - Service: Adobe Active File Monitor (AdobeActiveFileMonitor) - Unknown owner - J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - J:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - J:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - J:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - J:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Service Google Update (gupdate1c98f5f176e2cb2) (gupdate1c98f5f176e2cb2) - Google Inc. - J:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - J:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - J:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - j:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - J:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: Photoshop Elements Device Connect (PhotoshopElementsDeviceConnect) - Unknown owner - J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
O23 - Service: ProtexisLicensing - Unknown owner - J:\WINDOWS\system32\PSIService.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - J:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: TomTomHOMEService - TomTom - J:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - J:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - J:\WINDOWS\wanmpsvc.exe
Je suis passé en mode sans échec , meme op. que en normal , rien n'y fait .La ligne revient.
Voici le dernier rapport Hijack thist
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:34:57, on 11/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
J:\WINDOWS\System32\smss.exe
J:\WINDOWS\system32\winlogon.exe
J:\WINDOWS\system32\services.exe
J:\WINDOWS\system32\lsass.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\system32\svchost.exe
J:\WINDOWS\System32\svchost.exe
J:\WINDOWS\system32\ZoneLabs\vsmon.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\Explorer.EXE
J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
J:\Program Files\Alwil Software\Avast4\ashServ.exe
J:\WINDOWS\system32\spoolsv.exe
j:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
J:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
J:\Program Files\Java\jre6\bin\jqs.exe
J:\Program Files\McAfee\SiteAdvisor\McSACore.exe
J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
J:\WINDOWS\system32\PSIService.exe
J:\WINDOWS\system32\slserv.exe
J:\WINDOWS\System32\svchost.exe
J:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
J:\WINDOWS\wanmpsvc.exe
J:\Program Files\Canon\CAL\CALMAIN.exe
J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
J:\WINDOWS\SOUNDMAN.EXE
J:\WINDOWS\ALCWZRD.EXE
J:\Program Files\Fichiers communs\AOL\1194948851\ee\AOLSoftware.exe
J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
J:\WINDOWS\system32\LVCOMSX.EXE
J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
J:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
J:\Program Files\Alwil Software\Avast4\ashWebSv.exe
J:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
J:\WINDOWS\system32\ElkCtrl.exe
J:\Program Files\Java\jre6\bin\jusched.exe
J:\WINDOWS\system32\ctfmon.exe
J:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
J:\Program Files\Microsoft ActiveSync\wcescomm.exe
J:\Program Files\Messenger\msmsgs.exe
J:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
J:\Program Files\Windows Media Player\WMPNSCFG.exe
J:\WINDOWS\System32\svchost.exe
J:\PROGRA~1\MICROS~3\rapimgr.exe
J:\Program Files\Mozilla Firefox\firefox.exe
J:\Program Files\trend micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - J:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - J:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - J:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - J:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: FireShot - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\library\fsaddin-0.69.dll (file missing)
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [HostManager] J:\Program Files\Fichiers communs\AOL\1194948851\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [avast!] J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "J:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LVCOMSX] J:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [ZoneAlarm Client] "J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "J:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "J:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] J:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [EPSON Stylus Photo RX700 Series] J:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9IE.EXE /F "J:\WINDOWS\TEMP\E_S2B0.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [EEventManager] J:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
O4 - HKLM\..\Run: [LogitechCameraService(E)] J:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [SunJavaUpdateSched] "J:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] J:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] J:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "J:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [MSMSGS] "J:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [TomTomHOME.exe] "J:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [WMPNSCFG] J:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] J:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 2.4.lnk.disabled
O4 - Global Startup: Adobe Gamma Loader.lnk = J:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://J:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://J:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - J:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - J:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - J:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - J:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - J:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9563.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://3dlifeplayer.dl.3dvia.com/player/install/installer.exe
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - j:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O23 - Service: Adobe Active File Monitor (AdobeActiveFileMonitor) - Unknown owner - J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - J:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - J:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - J:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - J:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - J:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Service Google Update (gupdate1c98f5f176e2cb2) (gupdate1c98f5f176e2cb2) - Google Inc. - J:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - J:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - J:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - j:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - J:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: Photoshop Elements Device Connect (PhotoshopElementsDeviceConnect) - Unknown owner - J:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
O23 - Service: ProtexisLicensing - Unknown owner - J:\WINDOWS\system32\PSIService.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - J:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: TomTomHOMEService - TomTom - J:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - J:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - J:\WINDOWS\wanmpsvc.exe
O3 - Toolbar: FireShot - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - J:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\x5drgcwe.default\extensions\{0b457cAA-602d-484a-8f e7-c1d894a011ba}\library\fsaddin-0.69.dll (file missing)
Cette ligne est toujours présente mais ce n'est pas grave.
C'est une toolbar de mozilla.Elle est peut être bonne à son fonctionnement.
Sinon pour le reste tout va bien ....>ton PC est propre....
Je t'envois un message perso....
Cette ligne est toujours présente mais ce n'est pas grave.
C'est une toolbar de mozilla.Elle est peut être bonne à son fonctionnement.
Sinon pour le reste tout va bien ....>ton PC est propre....
Je t'envois un message perso....
merci de répondre si vite. Cesel45
Excuse-moi je ne connais pas le terme Logguer?
Si j'ai arreté l'ordi et que j'ai recommencé , c'est que au bout de 2ou3 mn et quelque soit la touche sur laquelle je tapais, il ne se passait rien.
j'ai vérifié avec avec SPYBOT ( pas de mouchard)
avec MALWAREBYTES (ras.)
SAlutations