Voici mon rapport hijackthis, Qui peut m'aider à virer ces pubs? (1/1)

Connexion au forum informatique de Sur-la-Toile

La discussion « Voici mon rapport hijackthis, Qui peut m'aider à virer ces pubs? » se trouve dans le forum « Virus, troyens, etc... »

	Voici mon rapport hijackthis, Qui peut m'aider à virer ces pubs?
	» Liste des Forums » Virus, troyens, etc... » Discussion

29 messages dans la rubrique Virus, troyens, etc...

12 messages dans la rubrique Dépannage Informatique

Le 21-03-2007 à 21:12 #

Bonjour,

Voici mon rapport : Que dois je faire pou supprimer tous les spy et les fenetre publicitaires de mon Pc

Logfile of HijackThis v1.99.1
Scan saved at 21:12:08, on 21/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\steam\steam.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\LClock\LClock.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\UberIcon\UberIcon Manager.exe
C:\Program Files\YzShadow\YzShadow.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\WINSOS\WINSOS.EXE
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Program Files\Windows Defender\MSASCui.exe
c:\program files\steam\steamapps\manux95\counter-strike source\hl2.exe
C:\Program Files\WINSOS\VIDE.EXE
C:\Program Files\Spyware Doctor\swdsvc.exe
C:\Program Files\Spyware Doctor\svcntaux.exe
C:\Program Files\Spyware Doctor\sdtrayapp.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\manu\Bureau\oijfxd.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nTrayFw] C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
O4 - HKLM\..\Run: [ClockGen] C:\Documents and Settings\manu\Bureau\ClockGen.exe -i p=0
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -masquer
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\Winsos\WINSOS.EXE" MINI
O4 - Startup: RocketDock.lnk = C:\Program Files\RocketDock\RocketDock.exe
O4 - Startup: LClock.lnk = C:\Program Files\LClock\LClock.exe
O4 - Startup: Buuf.CurXPTheme.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\fichiers communs\pc tools\lsp\pctlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\fichiers communs\pc tools\lsp\pctlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\fichiers communs\pc tools\lsp\pctlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\program files\fichiers communs\pc tools\lsp\pctlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1140549942890
O17 - HKLM\System\CCS\Services\Tcpip\..\{A65B2A52-2786-45B7-A96C-CFED55A48FE1}: NameServer = 213.228.0.23,212.27.39.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe

MERCI D'avance

3345 messages dans la rubrique Dépannage Informatique

2189 messages dans la rubrique Virus, troyens, etc...

1238 messages dans la rubrique Hors sujet

1211 messages dans la rubrique Peer to Peer

Le 21-03-2007 à 21:27 #

# Télécharge LSPfix<--clique ici

* Lance LSPfix
* Déconnectez-vous d'Internet et ferme toutes les fenêtres d'Internet Explorer.
* Coche la case "I know what I'm doing"
* Sélectionne toutes les instances des dll suivantes (s'il y en a, sinon ferme LSPfix) :
o c:\windows\system32\nvappfilter.dll
* Faites le glisser du panneau de gauche "keep" au panneau de droite "Remove".
* Cliquez sur le bouton "Finish".

# Télécharge et installe AVG AntiSpyware

# Redémarre en mode sans échec. (Tutoriel)

# Scanne avec AVG antispy et avast.

# Redémarre , poste un nouveau log Hijackthis et le résultat du sacn AVG.

salut

Le 21-03-2007 à 21:30 #

Merci

J'ai du boulot je te tient au courant

Ajout du 21-03-2007 à 23:05:

Yop !

J’ai fais la manipe avec LSP-fix et il me donne fichier .dll que j’ai mit dans « remove » mais après le net ne marchait plus alors j’ai restaurer mon pc et il a repris la connection. Donc je n’y touche plus.

Ensuite je suis partis dans le moc sans échec pour démarrer avast qui ma rien trouver et AVG (scan) qui me dit ceci :

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 23:01:51 21/03/2007

+ Résultat de l'analyse:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Instant Access -> Dialer.Generic : Aucune action entreprise.
C:\WINDOWS\NsUpdate.exe -> Dialer.Glodial : Aucune action entreprise.
C:\WINDOWS\temp_update.exe -> Dialer.Glodial : Aucune action entreprise.
:mozilla.87:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.127:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.336:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.481:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.504:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.81:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.82:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.83:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.84:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.85:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.242:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.71i : Aucune action entreprise.
:mozilla.267:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.268:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.459:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Adjuggler : Aucune action entreprise.
:mozilla.460:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Adjuggler : Aucune action entreprise.
:mozilla.461:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Adjuggler : Aucune action entreprise.
:mozilla.171:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.172:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.304:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.305:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.306:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.307:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.128:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Atdmt : Aucune action entreprise.
C:\Documents and Settings\manu\Cookies\manu@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.11:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.100:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.98:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.99:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.71:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\manu\Cookies\manu@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.217:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.389:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.88:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.359:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
:mozilla.360:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
:mozilla.361:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
:mozilla.541:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Hotlog : Aucune action entreprise.
:mozilla.243:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Ivwbox : Aucune action entreprise.
:mozilla.432:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Live : Aucune action entreprise.
:mozilla.433:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Live : Aucune action entreprise.
:mozilla.434:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Live : Aucune action entreprise.
C:\Documents and Settings\Administrateur\Cookies\administrateur@search.live[1].txt -> TrackingCookie.Live : Aucune action entreprise.
:mozilla.72:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
:mozilla.382:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.452:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Paypal : Aucune action entreprise.
C:\Documents and Settings\manu\Cookies\manu@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.39:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.42:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.44:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.46:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.48:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.52:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.53:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.54:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.55:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.56:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.57:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.58:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.59:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.60:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.61:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.62:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.64:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.67:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.68:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.209:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.210:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.211:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.212:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.213:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.214:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.557:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.558:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.555:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.13:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.14:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.16:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.180:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.181:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.182:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.183:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.49:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.50:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.69:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.70:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\manu\Cookies\manu@weborama[2].txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.106:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Webtrends : Aucune action entreprise.
C:\Documents and Settings\Administrateur\Cookies\administrateur@m.webtrends[2].txt -> TrackingCookie.Webtrends : Aucune action entreprise.
:mozilla.250:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.129:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.130:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.131:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.132:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.371:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.372:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.373:C:\Documents and Settings\manu\Application Data\Mozilla\Firefox\Profiles\cucuwq2r.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.

Fin du rapport

Après j’ai reboot mon pc pour faire un hijack et il me dit ceci :

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 23:07:24, on 21/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Winsos\WINSOS.EXE
C:\Program Files\LClock\LClock.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
C:\Program Files\YzShadow\YzShadow.exe
C:\Program Files\UberIcon\UberIcon Manager.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\Documents and Settings\manu\Bureau\HiJackThis_v2.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nTrayFw] C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
O4 - HKLM\..\Run: [ClockGen] C:\Documents and Settings\manu\Bureau\ClockGen.exe -i p=0
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -masquer
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\Winsos\WINSOS.EXE" MINI
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\Program Files\RocketDock\RocketDock.exe
O4 - Startup: LClock.lnk = C:\Program Files\LClock\LClock.exe
O4 - Startup: Buuf.CurXPTheme.lnk = ?
O4 - Startup: YzShadow.lnk = C:\Program Files\YzShadow\YzShadow.exe
O4 - Startup: UberIcon.lnk = C:\Program Files\UberIcon\UberIcon Manager.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1140549942890
O17 - HKLM\System\CCS\Services\Tcpip\..\{A65B2A52-2786-45B7-A96C-CFED55A48FE1}: NameServer = 213.228.0.23,212.27.39.1
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
O24 - Desktop Component 0: (no name) - http://krisb.free.fr/lettre%20L/image%20L/las_vegas_parano.jpg

--
End of file - 11291 bytes

Que dois – je faire après ceci !

Merci

Le 22-03-2007 à 07:31 #

ça a l'air bon.
Regarde, malgré le bug avec LSPfix, toutes les lignes
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll ont été supprimées.
Et AVG n'a rien trouvé de suspect, uniquement des cookies.
A la fin d'AVG il faut " Appliquer toutes les actions ", tu ne lui as pas donné l'ordre de nettoyer...
Il y a encore des problèmes ?

» Liste des Forums » Virus, troyens, etc...

Sujets Connexes

Arakien & WéWé

Du nouveau ?

Rafraîchir

Forums

Navigation

Connectés

Il y a actuellement 439 visiteurs et 13 toiliens en ligne.

Recherche

Concours

Partenaires

Sauf mention contraire, le contenu du blog et du forum est sous licence Creative Commons By-Sa. Vous avez le droit de le reproduire à condition de citer l'auteur, de faire un lien vers la page d'origine, et de partager vos travaux dérivés selon les mêmes conditions.

Conditions d'utilisation -

Partenaires: [Informatique Multimédia] [Portail du Maroc] [Actualité High Tech]
[Tutoriaux Photoshop] [éligibilité ADSL] [Astuces Windows]

Page générée en 182 millisecondes sur WWW2.

Voici mon rapport hijackthis, Qui peut m'aider à virer ces pubs?

Participer! →

tekpaf95 →