Il y a actuellement 79 visiteurs
Jeudi 06 Août 2020
accueilactualitésdossierscomparer les prixtélécharger gratuitement vos logicielsoffres d'emploiforum informatique
Connexion
Créer un compte

dz.malek

Ce membre n'a pas encore choisi d'avatar
Apprenti(e)
Apprenti(e)
Nom d'utilisateur:
dz.malek
Groupes:

Contacter dz.malek

Statistiques de l’utilisateur

Inscription:
25 Sep 2009 18:18
Dernière visite:
29 Mai 2010 13:17
Messages:
38 (0.01% de tous les messages / 0.01 messages par jour)
Forum le plus actif:
Forum sécurité, virus et publicité (adware)
(38 Messages / 100.00% des messages de l'utilisateur)
Sujet le plus actif:
Alpha Antivirus : Comment s'en debarasser ?
(13 Messages / 34.21% des messages de l'utilisateur)

Les derniers messages de dz.malek

Message Quel ligne supprimé sur Hijack ?
Bonjour à tous,

J'aurai besoin d'un coup de main svp :)

J'ai fait le Malwarebytes qui n'a rien trouver.

*Voici le rapport Hijack :
Code: Tout sélectionner
ComboFix 09-09-25.01 - Mouzaoui 26/09/2009 15:07.1.2 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Basique   6.0.6001.1.1252.33.1036.18.3070.1855 [GMT 2:00]
Lancé depuis: c:\users\Mouzaoui\Documents\Fichier setup\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
 * Un antivirus résident est actif

.

((((((((((((((((((((((((((((((((((((   Autres suppressions   ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-207698152-2804168146-3376597036-500
c:\$recycle.bin\S-1-5-21-2760852498-2543259003-1422614318-1000

.
(((((((((((((((((((((((((((((   Fichiers créés du 2009-08-26 au 2009-09-26  ))))))))))))))))))))))))))))))))))))
.

2009-09-26 13:14 . 2009-09-26 13:14   --------   d-----w-   c:\users\Default\AppData\Local\temp
2009-09-25 18:56 . 2009-09-25 18:56   --------   d-----w-   c:\windows\system32\plesn.chm
2009-09-25 18:53 . 2009-09-25 18:53   --------   d-----w-   c:\users\Mouzaoui\AppData\Local\Microsoft Help
2009-09-25 17:58 . 2009-09-25 17:58   --------   d-----w-   c:\users\Mouzaoui\AppData\Roaming\Malwarebytes
2009-09-25 17:58 . 2009-09-10 12:54   38224   ----a-w-   c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-25 17:58 . 2009-09-25 17:58   --------   d-----w-   c:\programdata\Malwarebytes
2009-09-25 17:58 . 2009-09-10 12:53   19160   ----a-w-   c:\windows\system32\drivers\mbam.sys
2009-09-25 17:58 . 2009-09-25 17:58   --------   d-----w-   c:\program files\Malwarebytes' Anti-Malware
2009-09-25 16:51 . 2009-09-25 16:52   --------   d-----w-   c:\program files\trend micro
2009-09-25 16:51 . 2009-09-25 16:52   --------   d-----w-   C:\rsit
2009-09-25 14:25 . 2009-09-25 14:25   --------   d-----w-   c:\program files\Common Files\Uninstall
2009-09-24 11:33 . 2009-09-24 11:37   --------   d-----w-   C:\DVDVideoSoft
2009-09-24 11:32 . 2009-09-24 11:41   --------   d-----w-   c:\program files\Common Files\DVDVideoSoft
2009-09-24 11:32 . 2009-09-24 11:41   --------   d-----w-   c:\program files\DVDVideoSoft
2009-09-24 10:22 . 2009-09-24 17:24   --------   d-----w-   c:\users\Mouzaoui\AppData\Roaming\dvdcss
2009-09-24 10:22 . 2009-09-26 12:49   --------   d-----w-   c:\users\Mouzaoui\AppData\Roaming\vlc
2009-09-24 10:21 . 2009-09-24 10:21   --------   d-----w-   c:\program files\VideoLAN
2009-09-23 22:56 . 2009-06-22 10:22   2048   ----a-w-   c:\windows\system32\tzres.dll
2009-09-23 22:32 . 2009-09-23 22:32   --------   d-----w-   c:\users\Default\AppData\Local\Microsoft Help
2009-09-23 22:19 . 2008-06-20 01:14   97800   ----a-w-   c:\windows\system32\infocardapi.dll
2009-09-23 22:19 . 2008-06-20 01:14   105016   ----a-w-   c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-09-23 22:19 . 2008-06-20 01:14   43544   ----a-w-   c:\windows\system32\PresentationHostProxy.dll
2009-09-23 22:19 . 2008-06-20 01:14   11264   ----a-w-   c:\windows\system32\icardres.dll
2009-09-23 22:19 . 2008-06-20 01:14   622080   ----a-w-   c:\windows\system32\icardagt.exe
2009-09-23 22:19 . 2008-06-20 01:14   781344   ----a-w-   c:\windows\system32\PresentationNative_v0300.dll
2009-09-23 22:19 . 2008-06-20 01:14   326160   ----a-w-   c:\windows\system32\PresentationHost.exe
2009-09-23 22:15 . 2008-07-27 18:03   96760   ----a-w-   c:\windows\system32\dfshim.dll
2009-09-23 22:15 . 2008-07-27 18:03   282112   ----a-w-   c:\windows\system32\mscoree.dll
2009-09-23 22:15 . 2008-07-27 18:03   41984   ----a-w-   c:\windows\system32\netfxperf.dll
2009-09-23 22:15 . 2008-07-27 18:03   158720   ----a-w-   c:\windows\system32\mscorier.dll
2009-09-23 22:14 . 2008-07-27 18:03   83968   ----a-w-   c:\windows\system32\mscories.dll
2009-09-23 22:14 . 2009-09-23 22:14   --------   d-----w-   c:\program files\MSXML 4.0
2009-09-23 17:51 . 2009-09-23 17:52   --------   d-----w-   c:\users\Mouzaoui\AppData\Local\Adobe
2009-09-23 14:45 . 2009-04-21 11:55   2033152   ----a-w-   c:\windows\system32\win32k.sys
2009-09-23 14:45 . 2008-06-26 01:45   12240896   ----a-w-   c:\windows\system32\NlsLexicons0007.dll
2009-09-23 14:45 . 2008-06-26 01:45   2644480   ----a-w-   c:\windows\system32\NlsLexicons0009.dll
2009-09-23 14:45 . 2008-06-26 03:29   801280   ----a-w-   c:\windows\system32\NaturalLanguage6.dll
2009-09-23 14:43 . 2009-08-28 12:39   28672   ----a-w-   c:\windows\system32\Apphlpdm.dll
2009-09-23 14:43 . 2009-08-28 10:15   4240384   ----a-w-   c:\windows\system32\GameUXLegacyGDFs.dll
2009-09-23 14:41 . 2009-09-23 14:41   --------   d-----w-   c:\program files\Windows Live SkyDrive
2009-09-23 14:41 . 2009-09-23 14:41   --------   d-----w-   c:\program files\Windows Live
2009-09-23 14:41 . 2009-03-17 03:38   13824   ----a-w-   c:\windows\system32\apilogen.dll
2009-09-23 14:41 . 2009-03-17 03:38   24064   ----a-w-   c:\windows\system32\amxread.dll
2009-09-23 14:41 . 2008-06-23 01:59   996352   ----a-w-   c:\windows\system32\WMNetMgr.dll
2009-09-23 14:41 . 2008-06-23 01:58   94720   ----a-w-   c:\windows\system32\logagent.exe
2009-09-23 13:40 . 2008-06-26 03:29   303616   ----a-w-   c:\windows\system32\wmpeffects.dll
2009-09-23 13:39 . 2009-07-14 12:58   7680   ----a-w-   c:\windows\system32\spwmp.dll
2009-09-23 13:39 . 2009-07-14 12:59   4096   ----a-w-   c:\windows\system32\dxmasf.dll
2009-09-23 13:39 . 2009-07-14 10:59   8147456   ----a-w-   c:\windows\system32\wmploc.DLL
2009-09-23 13:39 . 2009-04-23 12:43   784896   ----a-w-   c:\windows\system32\rpcrt4.dll
2009-09-23 13:39 . 2008-04-26 08:08   1314816   ----a-w-   c:\windows\system32\quartz.dll
2009-09-23 13:39 . 2008-12-16 02:42   288768   ----a-w-   c:\windows\system32\drivers\srv.sys
2009-09-23 13:39 . 2008-06-19 03:31   361984   ----a-w-   c:\windows\system32\IPSECSVC.DLL
2009-09-23 13:39 . 2008-06-26 03:29   565248   ----a-w-   c:\windows\system32\emdmgmt.dll
2009-09-23 13:39 . 2008-08-02 03:26   36864   ----a-w-   c:\windows\system32\cdd.dll
2009-09-23 13:39 . 2008-08-02 01:01   625152   ----a-w-   c:\windows\system32\drivers\dxgkrnl.sys
2009-09-23 13:39 . 2008-06-26 03:29   45056   ----a-w-   c:\windows\system32\dataclen.dll
2009-09-23 13:39 . 2008-05-20 02:07   148480   ----a-w-   c:\windows\system32\drivers\nwifi.sys
2009-09-23 13:31 . 2008-09-10 03:40   1334272   ----a-w-   c:\windows\system32\msxml6.dll
2009-09-23 13:26 . 2008-10-16 21:09   43544   ----a-w-   c:\windows\system32\wups2.dll
2009-09-23 13:26 . 2008-10-16 21:13   1809944   ----a-w-   c:\windows\system32\wuaueng.dll
2009-09-23 13:26 . 2008-10-16 21:09   51224   ----a-w-   c:\windows\system32\wuauclt.exe
2009-09-23 13:26 . 2008-10-16 20:56   1524736   ----a-w-   c:\windows\system32\wucltux.dll
2009-09-23 13:26 . 2008-10-16 21:12   561688   ----a-w-   c:\windows\system32\wuapi.dll
2009-09-23 13:26 . 2008-10-16 21:08   34328   ----a-w-   c:\windows\system32\wups.dll
2009-09-23 13:26 . 2008-10-16 20:55   83456   ----a-w-   c:\windows\system32\wudriver.dll
2009-09-23 13:26 . 2008-10-16 12:08   162064   ----a-w-   c:\windows\system32\wuwebv.dll
2009-09-23 13:26 . 2008-10-16 11:56   31232   ----a-w-   c:\windows\system32\wuapp.exe
2009-09-23 13:19 . 2009-09-23 13:19   --------   d-----w-   c:\users\Mouzaoui\AppData\Roaming\eSobi
2009-09-23 13:16 . 2009-09-24 18:50   --------   d-----w-   c:\users\Mouzaoui\AppData\Local\Google
2009-09-23 13:15 . 2009-09-25 20:38   --------   d-----w-   c:\programdata\Partner
2009-09-23 13:15 . 2009-09-24 09:13   --------   d-----w-   c:\program files\Google
2009-09-23 13:15 . 2009-09-25 20:42   71280   ----a-w-   c:\users\Mouzaoui\AppData\Local\GDIPFONTCACHEV1.DAT
2009-09-23 13:15 . 2009-09-23 13:16   --------   d-----w-   C:\ACERSW
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\users\Default\Voisinage réseau
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\users\Default\Voisinage d'impression
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\users\Default\Modèles
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\users\Default\Mes documents
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\users\Default\Menu Démarrer
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\users\Default\AppData\Local\Historique
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\programdata\Modèles
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\programdata\Menu Démarrer
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\programdata\Favoris
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\programdata\Bureau
2009-09-23 13:10 . 2009-09-23 13:10   --------   d-sh--we   c:\program files\Fichiers communs

.
((((((((((((((((((((((((((((((((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-09-26 12:11 . 2009-09-26 12:11   --------   d-----w-   c:\users\Mouzaoui\AppData\Roaming\DeepBurner
2009-09-26 12:10 . 2009-09-26 12:10   --------   d-----w-   c:\program files\Astonsoft
2009-09-26 11:51 . 2009-09-26 11:50   --------   d-----w-   c:\users\Mouzaoui\AppData\Roaming\CyberLink
2009-09-26 11:50 . 2009-09-26 11:50   --------   d-----w-   c:\programdata\CyberLink
2009-09-26 11:11 . 2008-01-21 07:23   669328   ----a-w-   c:\windows\system32\perfh00C.dat
2009-09-26 11:11 . 2008-01-21 07:23   123350   ----a-w-   c:\windows\system32\perfc00C.dat
2009-09-26 11:04 . 2008-05-12 17:34   --------   d-----w-   c:\programdata\Microsoft Help
2009-09-25 20:42 . 2008-05-12 17:06   --------   d-----w-   c:\programdata\NVIDIA
2009-09-25 18:51 . 2008-05-12 17:36   --------   d-----w-   c:\program files\Microsoft Works
2009-09-25 09:49 . 2008-05-12 17:18   --------   d-----w-   c:\program files\McAfee
2009-09-24 16:40 . 2008-05-12 17:18   --------   d-----w-   c:\programdata\McAfee
2009-09-24 16:37 . 2008-05-12 17:22   --------   d-----w-   c:\program files\Common Files\Adobe
2009-09-24 16:35 . 2008-05-12 17:20   --------   d-----w-   c:\programdata\SiteAdvisor
2009-09-24 09:15 . 2006-11-02 11:18   --------   d-----w-   c:\program files\Windows Mail
2009-07-26 14:44 . 2009-07-26 14:44   48448   ----a-w-   c:\windows\system32\sirenacm.dll
2009-07-18 16:06 . 2009-09-23 14:44   827904   ----a-w-   c:\windows\system32\wininet.dll
2009-07-18 16:01 . 2009-09-23 14:44   78336   ----a-w-   c:\windows\system32\ieencode.dll
2009-07-18 09:46 . 2009-09-23 14:44   26624   ----a-w-   c:\windows\system32\ieUnatt.exe
2009-07-17 14:35 . 2009-09-23 14:40   71680   ----a-w-   c:\windows\system32\atl.dll
2009-07-16 10:32 . 2008-05-12 17:19   130424   ----a-w-   c:\windows\system32\drivers\Mpfp.sys
2009-07-14 13:00 . 2009-09-23 13:40   313344   ----a-w-   c:\windows\system32\wmpdxm.dll
2009-07-11 19:32 . 2009-09-23 13:40   302592   ----a-w-   c:\windows\system32\wlansec.dll
2009-07-11 19:32 . 2009-09-23 13:40   293376   ----a-w-   c:\windows\system32\wlanmsm.dll
2009-07-11 19:32 . 2009-09-23 13:40   513024   ----a-w-   c:\windows\system32\wlansvc.dll
2009-07-11 19:29 . 2009-09-23 13:40   127488   ----a-w-   c:\windows\system32\L2SecHC.dll
2009-07-08 11:44 . 2008-05-12 17:19   79816   ----a-w-   c:\windows\system32\drivers\mfeavfk.sys
2009-07-08 11:44 . 2008-05-12 17:19   40552   ----a-w-   c:\windows\system32\drivers\mfesmfk.sys
2009-07-08 11:44 . 2008-05-12 17:19   35272   ----a-w-   c:\windows\system32\drivers\mfebopk.sys
2009-07-08 11:44 . 2008-05-12 17:19   214024   ----a-w-   c:\windows\system32\drivers\mfehidk.sys
2009-07-08 11:43 . 2008-05-12 17:19   34248   ----a-w-   c:\windows\system32\drivers\mferkdk.sys
.

(((((((((((((((((((((((((((((((((   Points de chargement Reg   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-03-04 21:38   121392   ----a-w-   c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-09-23 68856]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"WindowsWelcomeCenter"="oobefldr.dll" - c:\windows\System32\oobefldr.dll [2008-01-21 2153472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"Acer Empowering Technology Monitor"="c:\program files\Acer\Empowering Technology\SysMonitor.exe" [2008-04-25 319488]
"EmpoweringTechnology"="c:\program files\Acer\Empowering Technology\Framework.Launcher.exe" [2008-04-25 319488]
"mcagent_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2009-07-09 645328]
"eDataSecurity Loader"="c:\program files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-03-04 526896]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2007-01-08 68640]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2007-01-08 52256]
"BkupTray"="c:\program files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe" [2008-04-25 28672]
"WarReg_PopUp"="c:\program files\Acer\WR_PopUp\WarReg_PopUp.exe" [2008-01-29 303104]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2009-09-23 24064]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-03-27 13687328]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-03-27 92704]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2008-03-26 5369856]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
SetupExecute   REG_MULTI_SZ      \0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{773E2FD2-EB80-4473-BFAE-606F107B2017}"= Profile=Private|Profile=Public|c:\program files\Common Files\Mcafee\MNA\McNaSvc.exe:McAfee Network Agent
"{A3381893-2AA0-4938-A355-21044CC1FD38}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{726EBDFD-BD05-4FBD-8217-24BE7CD31641}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{A2833FA7-F393-4028-90D9-94D8954EB299}"= c:\program files\Cyberlink\PowerDirector\PDR.EXE:CyberLink PowerDirector
"{95A5B6F1-AB4A-4C0F-B316-3D358944C376}"= c:\program files\CyberLink\PowerDVD\PowerDVD.EXE:CyberLink PowerDVD
"{514999C6-0ACD-41F3-9C36-59FF44C1BAE0}"= c:\program files\Acer Arcade Live\Acer DVDivine\Acer DVDivine.exe:Acer DVDivine
"{5CFAD744-915B-4F15-8DEA-B7244EC4EBD8}"= UDP:c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe:AgentSvc.exe
"{8275CD3F-1453-4C44-A1F3-8C90FF18ED20}"= UDP:c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe:BackupSvc.exe
"{D6ADAA43-FB47-4EE8-B085-ECF97F8CB172}"= TCP:c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe:AgentSvc.exe
"{AA097394-2D5A-4B89-A22C-D684290F69B8}"= TCP:c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe:BackupSvc.exe
"{9773C304-2055-4323-B6F9-58F8A64358B0}"= UDP:c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe:SchedulerSvc.exe
"{E6598C06-23F9-45A7-AA87-F69F70F6DE5D}"= TCP:c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe:SchedulerSvc.exe

R2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [03/03/2008 13:11 16384]
R2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [12/05/2008 19:16 24576]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\McAfee\SiteAdvisor\McSACore.exe [24/09/2009 18:35 210216]
R2 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [25/04/2008 21:36 45056]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\System32\drivers\nvhda32v.sys [12/05/2008 12:42 43552]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [25/04/2008 21:36 131072]
S3 GoogleDesktopManager-080708-050100;Google Desktop Manager 5.7.808.7150;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [23/09/2009 15:15 24064]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork   REG_MULTI_SZ      PLA DPS BFE mpssvc
.
Contenu du dossier 'Tâches planifiées'

2008-05-12 c:\windows\Tasks\McDefragTask.job
- c:\progra~1\mcafee\mqc\QcConsol.exe [2009-09-24 19:26]

2008-05-12 c:\windows\Tasks\McQcTask.job
- c:\progra~1\mcafee\mqc\QcConsol.exe [2009-09-24 19:26]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
mStart Page = hxxp://fr.fr.acer.yahoo.com
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
LSP: %SYSTEMROOT%\system32\nvLsp.dll
.
- - - - ORPHELINS SUPPRIMES - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKLM-Run-eRecoveryService - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-26 15:14
Windows 6.0.6001 Service Pack 1 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'Explorer.exe'(8680)
c:\windows\system32\NVSVC.DLL
c:\program files\McAfee\SiteAdvisor\saHook.dll
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\sysenv.dll
.
Heure de fin: 2009-09-26 15:16
ComboFix-quarantined-files.txt  2009-09-26 13:16

Avant-CF: 116 585 029 632 octets libres
Après-CF: 116 302 016 512 octets libres

259   --- E O F ---   2009-09-26 11:04

Message Ordinateur gravement enndomagée
L'ordinateur affiche un disque dur quasi plein alors qu'il est presque vide, et il est tres tres lent .
J'ai deja eu affaire a vos compétences avec grand succès c'est pour sa j'aimerai reglé le probleme de cet ordinateur.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:41:37, on 07/11/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Windows\System32\oopmagentts.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Shareaza\Shareaza.exe
C:\Users\Caglar\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Caglar\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
D:\HiJackThis.exe
C:\Windows\system32\SearchProtocolHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe" /start
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [ALUAlert] "C:\Program Files\Symantec\LiveUpdate\ALuNotify.exe" "/LOWDISKSPACE C"
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [ooquickpdfv7] "C:\Windows\system32\oopmagentts.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [SectJugs] "C:\ProgramData\View move move.umecjsg"
O4 - HKCU\..\Run: [hope 2 rect htm] "C:\ProgramData\pop mpeg user.sf69nj"
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Startup: Outil de notification Live Search.lnk = C:\Users\Caglar\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
O4 - Global Startup: OFFICE One Startup v7.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe (file missing)
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe (file missing)
O9 - Extra button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://rover.ebay.com/rover/1/709-44555-9400-3/4 (file missing)
O9 - Extra button: Amazon.fr - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.fr/exec/obidos/redire ... &site=home (file missing)
O13 - Gopher Prefix:
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/5m/ ... taller.exe
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL c:\progra~1\bandoo\bndhook.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Bandoo Coordinator - Discordia Limited - C:\PROGRA~1\Bandoo\Bandoo.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - c:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 9778 bytes

Message PC portable hors d'usage
J'ai un ordinateur portable HP qui a un gros probleme.
Au faite, dès que je l'allume il redemarre et cela sans arrêt. :-?
Quelqu'un aurait une solution ?

Message Alpha Antivirus : Comment s'en debarasser ?
Bonjour tout le monde,
j'aurai besoin d'un coup de main.


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:08:38, on 25/09/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18294)
Boot mode: Normal

Running processes:
C:Windowssystem32Dwm.exe
c:PROGRA~1mcafee.comagentmcagent.exe
C:Windowssystem32 askeng.exe
C:WindowsExplorer.EXE
C:Program FilesWindows DefenderMSASCui.exe
C:WindowsRtHDVCpl.exe
C:Program FilesAcerEmpowering TechnologySysMonitor.exe
C:Program FilesAcerEmpowering TechnologyeDataSecurityx86eDSLoader.exe
C:Program FilesCyberlinkPowerDVDPDVDServ.exe
C:Program FilesNewTech InfosystemsNTI Backup Now 5BkupTray.exe
C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe
C:Program FilesWindows LiveMessengermsnmsgr.exe
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe
C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe
c:PROGRA~1mcafeeVIRUSS~1mcvsshld.exe
C:Windowssystem32wuauclt.exe
C:Program FilesInternet Explorerieuser.exe
C:Program FilesAcerEmpowering TechnologyNotificationCenterFramework.NotificationCenter.exe
C:WindowsSystem32mobsync.exe
C:Program FilesWindows LiveContactswlcomm.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesGoogleGoogle ToolbarGoogleToolbarUser_32.exe
C:Program FilesVideoLANVLCvlc.exe
C:Windowssystem32MacromedFlashFlashUtil10c.exe
C:UsersMouzaouiDesktopsolution.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... pire_x3200
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.fr/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... pire_x3200
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:PROGRA~1mcafeemskmskapbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:PROGRA~1mcafeeVIRUSS~1scriptsn.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:Program FilesAcerEmpowering TechnologyeDataSecurityx86ActiveToolBand.dll
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:ProgramDataPartnerpartner.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:Program FilesCommon FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 - BHO: (no name) - {A77D3539-581D-450C-9E44-A84C415A6172} - C:WindowsSystem32msnaoladdon.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program FilesGoogleGoogleToolbarNotifier5.2.4204.1700swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:PROGRA~1mcafeeSITEAD~1mcieplg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:Program FilesGoogleGoogle ToolbarComponentfastsearch_B7C5AC242193BB3E.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:Program FilesAcerEmpowering TechnologyeDataSecurityx86eDStoolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:PROGRA~1mcafeeSITEAD~1mcieplg.dll
O4 - HKLM..Run: [Windows Defender] %ProgramFiles%Windows DefenderMSASCui.exe -hide
O4 - HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM..Run: [Acer Empowering Technology Monitor] C:Program FilesAcerEmpowering TechnologySysMonitor.exe
O4 - HKLM..Run: [EmpoweringTechnology] C:Program FilesAcerEmpowering TechnologyFramework.Launcher.exe boot
O4 - HKLM..Run: [mcagent_exe] "C:Program FilesMcAfee.comAgentmcagent.exe" /runkey
O4 - HKLM..Run: [eDataSecurity Loader] C:Program FilesAcerEmpowering TechnologyeDataSecurityx86eDSloader.exe
O4 - HKLM..Run: [RemoteControl] "C:Program FilesCyberLinkPowerDVDPDVDServ.exe"
O4 - HKLM..Run: [LanguageShortcut] "C:Program FilesCyberLinkPowerDVDLanguageLanguage.exe"
O4 - HKLM..Run: [BkupTray] "C:Program FilesNewTech InfosystemsNTI Backup Now 5BkupTray.exe"
O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:Windowssystem32NvCpl.dll,NvStartup
O4 - HKLM..Run: [WarReg_PopUp] C:Program FilesAcerWR_PopUpWarReg_PopUp.exe
O4 - HKLM..Run: [Google Desktop Search] "C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe" /startup
O4 - HKLM..Run: [Adobe Reader Speed Launcher] "C:Program FilesAdobeReader 8.0ReaderReader_sl.exe"
O4 - HKCU..Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU..Run: [msnmsgr] "C:Program FilesWindows LiveMessengermsnmsgr.exe" /background
O4 - HKCU..Run: [swg] "C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe"
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:windowssystem32
vlsp.dll
O10 - Unknown file in Winsock LSP: c:windowssystem32
vlsp.dll
O10 - Unknown file in Winsock LSP: c:windowssystem32
vlsp.dll
O10 - Unknown file in Winsock LSP: c:windowssystem32
vlsp.dll
O13 - Gopher Prefix:
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:PROGRA~1mcafeeSITEAD~1mcieplg.dll
O20 - AppInit_DLLs: C:PROGRA~1GoogleGOOGLE~1GOEC62~1.DLL
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:Program FilesNewTech InfosystemsNTI Backup Now 5ClientAgentsvc.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:Program FilesAcerEmpowering TechnologyeDataSecurityx86eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:Program FilesAcerEmpowering TechnologyServiceETService.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:Program Filesin32
SvcAppFlt.exe
O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:Program FilesCommon FilesLightScribeLSSrvc.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:Program FilesMcAfeeSiteAdvisorMcSACore.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:PROGRA~1McAfeeMSCmcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:PROGRA~1COMMON~1mcafeemnamcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:PROGRA~1McAfeeVIRUSS~1mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:PROGRA~1COMMON~1mcafeemcproxymcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:PROGRA~1McAfeeVIRUSS~1mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:PROGRA~1McAfeeVIRUSS~1mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:Program FilesMcAfeeMPFMPFSrv.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:Program FilesMcAfeeMSKMskSrver.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:Program Filesin32
SvcIp.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:Program FilesNewTech InfosystemsNTI Backup Now 5BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:Program FilesNewTech InfosystemsNTI Backup Now 5SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:Windowssystem32
vvsvc.exe
O23 - Service: Partner Service - Google Inc. - c:programdatapartnerpartner.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:Program FilesCyberlinkShared filesRichVideo.exe

--
End of file - 9934 bytes



.: Nous contacter :: Flux RSS :: Données personnelles :.