Aide-moi. Cant ouvrir le Gestionnaire des tâches

Salut,

J'ai le même problème sur mon ordinateur portable. Je ne peux pas ouvrir le gestionnaire de tâches plus. Pourriez-vous s'il vous plaît vérifier mon fichier de log et me dire quoi supprimer / réparer? Mon ordinateur portable fonctionne en allemand, j'espère que ce n'est pas un problème ^ ^; Toute aide est grandement appréciée

Logfile of Trend Micro HijackThis v2.0.4
Scan sauvé à 21:23:55, le 16.11.2010
Windows XP SP3 (WinNT 05/01/2600): Plate-forme
MSIE: Internet Explorer v8.00 (8.00.6001. 18702)
Boot mode: Normal

Les processus en cours:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ Programme \ Avira \ AntiVir Desktop \ avguard.exe
C: \ Programme \ Avira \ AntiVir Desktop \ avshadow.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ ZoneLabs \ vsmon.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ spoolsv. exe
C: \ Programme \ Avira \ AntiVir Desktop \ sched.exe
C: \ Programme \ Java \ bin \ jqs.exe
C: \ Programme \ Nero \ BackItUp Nero8 \ Nero \ NBService.exe
C: \ WINDOWS \ system32 \ IoctlSvc.exe
C: \ Programme \ Samsung \ Samsung Network Manager \ SNMWLANService.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ wbem \ wmiapsrv.exe
C: \ Programme \ Gemeinsame Dateien \ Java \ Java Update \ jusched.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Programme EDS \ Samsung \ Samsung \ EDSAgent. exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ Programme \ Synaptics \ SynTP \ Syntpenh.exe
C: \ Programme Manager de la batterie \ Samsung \ Samsung \ BatteryManager.exe
C: \ WINDOWS \ system32 \ igfxsrvc.exe
C: \ Programme \ Winamp \ winampa.exe
C: \ Programme \ Samsung \ Easy Display Manager \ dmhkcore.exe
C: \ Programme \ DivX \ DivX Update \ DivXUpdate.exe
C: \ Programme \ SAMSUNG \ MagicKBD \ MagicKBD.exe
C: \ Programme \ SAMSUNG \ MagicKBD \ PerformanceManager. exe
C: \ Programme \ Zone Labs \ ZoneAlarm \ zlclient.exe
C: \ WINDOWS \ system32 \ igfxext.exe
C: \ Programme \ Avira \ AntiVir Desktop \ avgnt.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Programme \ Microsoft ActiveSync \ Wcescomm.exe
C: \ PROGRA ~ 1 \ MICROS ~ 3 \ rapimgr.exe
C: \ WINDOWS \ system32 \ dllhost.exe
C: Einstellungen \ Dokumente und \ Chan TaoLi \ Dateien Eigene \ Setups \ HiJackThis204.exe

R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft . com
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft . Com
R1 - Explorer HKLM \ Software \ Microsoft \ Internet \ Main page de recherche, = http://go.microsoft . Com
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft . Com
BHO - O2: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C: \ Programme Dateien \ Gemeinsame \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper. dll
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C: \ Programme \ Gemeinsame Dateien \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - {DBC80044-A445-435B-BC74-9C25C1C588A9} - C: \ Programme \ Java \ bin \ jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C: \ Programme \ Java \ lib \ deploy \ JQS \ ie \ jqs_plugin.dll
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Programme \ Gemeinsame Dateien \ Java \ Java Update \ jusched.exe"
O4 - HKLM \ .. \ Run: RTHDCPL.EXE [RTHDCPL]
O4 - HKLM \ .. \ Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM \ .. \ Run: [EDS] C: \ Programme \ EDS Samsung \ Samsung \ EDSAgent.exe
O4 - HKLM \ .. \ Run: [IgfxTray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [persistance] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Programme \ Synaptics \ SynTP \ Syntpenh.exe
O4 - HKLM \ .. \ Run: [DMHotKey] C: \ Programme \ gestionnaire d'affichage Samsung \ Easy \ DMLoader.exe
O4 - HKLM \ .. \ Run: [BatteryManager] C: \ Programme \ Gestionnaire de batterie Samsung \ Samsung \ BatteryManager.exe
O4 - HKLM \ .. \ Run: [MagicKeyboard] C: \ Programme \ SAMSUNG \ MagicKBD \ PreMKBD.exe
O4 - HKLM \ .. \ Run: [WinampAgent] C: \ Programme \ Winamp \ winampa.exe
O4 - HKLM \ .. \ Run: [SUPBackGround] C: \ Programme \ Update Samsung \ Samsung Plus \ SUPBackGround. exe
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Programme \ Adobe \ Reader 8.0 \ Reader \ reader_sl.exe"
O4 - HKLM \ .. \ Run: [IMJPMIG8.1] "C: \ WINDOWS \ IME \ imjp8_1 \ IMJPMIG.EXE" / Rabat / RemAdvDef / Migration32
O4 - HKLM \ .. \ Run: [MSPY2002] C: \ WINDOWS \ system32 \ IME \ PINTLGNT \ ImScInst.exe / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP. EXE / ImeName
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ Programme Dateien \ Gemeinsame \ Nero \ Lib \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [NBKeyScan] "C: \ Programme \ Nero \ Nero8 \ Nero BackItUp \ NBKeyScan.exe"
O4 - HKLM \ .. \ Run: [DivXUpdate] "C: \ Programme \ DivX \ DivX Update \ DivXUpdate.exe" / checkNow
O4 - HKLM \ .. \ Run: [ZoneAlarm Client] "C: \ Programme \ Zone Labs \ ZoneAlarm \ zlclient.exe"
O4 - HKLM \ .. \ Run: [avgnt] "C: \ Programme \ Avira \ AntiVir Desktop \ avgnt. exe "/ min
O4 - HKLM \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKLM \ .. \ Run: [H / PC Connection Agent] "C: \ Programme ActiveSync \ Microsoft \ Wcescomm.exe"
O4 - HKLM \ .. \ Run: [dfrgsnapnt.exe] C: \ DOKUME ~ 1 \ TAOLIC ~ 1 \ Lokale ~ 1 \ Temp \ dfrgsnapnt.exe
O4 - HKUS \ S-1-5-19 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User LOKALER DIENST)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User "NETZWERKDIENST")
O4 - HKUS \ S-1-5-18 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User "SYSTEM")
O4 - HKUS \ DEFAULT \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User utilisateur par défaut).
O8 - Extra élément de menu contextuel: exportieren Nach Microsoft E & xel - res://C : \ PROGRA ~ 1 \ MICROS ~ 4 \ Office12 \ EXCEL.EXE/3000
O9 - Extra button: Un senden OneNote - {2670000A-7350-8081-4f3c-5663EE0C6C49} - C: \ PROGRA ~ 1 \ MICROS ~ 4 \ Office12 \ ONBttnIE. dll
O9 - Extra "Outils" menuitem: Une s & enden OneNote - {2670000A-7350-8081-4f3c-5663EE0C6C49} - C: \ PROGRA ~ 1 \ MICROS ~ 4 \ Office12 \ ONBttnIE.dll
O9 - Extra button: Créer Mobile Favoris - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ INetRepl. dll
O9 - Extra "Outils" menuitem: Mobilen Favoriten erstellen...- {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ INetRepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C: \ PROGRA ~ 1 \ MICROS ~ 4 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Outils" menuitem: @ xpsp3res. dll, -20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C: \ Programme \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C: \ Programme \ Messenger \ msmsgs.exe
O22 - SharedTaskScheduler: preloader Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C: \ WINDOWS \ system32 \ browseui. dll
O22 - SharedTaskScheduler: Démon de cache de composants Catégories - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C: \ WINDOWS \ system32 \ browseui.dll
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C: \ Programme \ Avira \ AntiVir Desktop \ sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C: \ Programme \ Avira \ AntiVir Desktop \ avguard.exe
Service - O23: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Programme \ Java \ bin \ jqs.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C: \ Programme \ Nero \ BackItUp Nero8 \ Nero \ NBService.exe
O23 - Service: Service PLFlash DeviceIoControl - Prolific Technology Inc - C: \ WINDOWS \ system32 \ IoctlSvc.exe
O23 - Service: Service SNM WLAN - Unknown owner - C: \ Programme \ Samsung \ Samsung Network Manager \ SNMWLANService. exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C: \ WINDOWS \ system32 \ ZoneLabs \ vsmon.exe

J'ai dû mettre un espace entre Microsoft et. Com, car je ne peux pas poster de liens externes. Désolé, je ne sais pas pourquoi il ya un lien dans le fichier journal, j'avais tout fermé

O1 - Hosts::: 1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C: \ Program Files \ Norton Internet Security \ Engine \ 17.8.0.5 \ coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C: \ Program Files \ Norton Internet Security \ Engine \ 17.8.0.5 \ IPSBHO. DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Livre Photo Easy - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C: \ Program Files \ Software Epson \ Print Photo Easy \ EPTBL.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C: \ Program Files \ Windows Live \ Companion \ companioncore. dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - {DBC80044-A445-435B-BC74-9C25C1C588A9} - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll
O3 - Toolbar: barre d'outils Norton - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C: \ Program Files \ Norton Internet Security \ Engine \ 17.8.0.5 \ coIEPlg.dll
Toolbar - O3: Livre Photo Easy - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C: \ Program Files \ Software Epson \ Print Photo Easy \ EPTBL. dll
O3 - Toolbar: barre d'outils DAEMON Tools - {32099AAC-C132-4136-9E9A-4E364A424E17} - C: \ Program Files \ DAEMON Tools Toolbar \ DTToolbar.dll
O3 - Toolbar: @ msdxmLC.dll, -1 @ 1033, & Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C: \ windows \ system32 \ Msdxm6.ocx
O4 - HKLM \ .. \ Run: [StartCCC] "C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Static \ CLIStart.exe" MSRun
O4 - HKLM \ .. \ Run: [SVPWUTIL] C: \ Program Files \ TOSHIBA \ Utilities \ SVPwUTIL SVPWUTIL.exe
O4 - HKLM \ .. [HWSETUP] "C: \ Program Files \ TOSHIBA \ Utilities \ HWSetup.exe" \ Run HWSETUP
O4 - HKLM \ .. \ Run: [KeNotify] C: \ Program Files \ TOSHIBA \ Utilities \ KeNotify.exe
O4 - HKLM \ .. \ Run: [TPwrMain]% ProgramFiles% \ TOSHIBA \ Power Saver \ TPwrMain.EXE
O4 - HKLM \ .. \ Run: [HSON]% ProgramFiles% \ TOSHIBA \ SCT \ HSON.exe
O4 - HKLM \ .. \ Run: [Smoothview]% ProgramFiles% \ Toshiba \ Smoothview \ SmoothView.exe
O4 - HKLM \ .. \ Run: [00TCrdMain]% ProgramFiles% \ TOSHIBA \ FlashCards \ TCrdMain.exe
O4 - HKLM \ .. \ Run: [RtHDVCpl] C: \ Program Files \ Realtek \ Audio \ HDA \ RtHDVCpl.exe
O4 - HKLM \ .. \ Run: [SynTPEnh]% ProgramFiles% \ Synaptics \ SynTP \ Syntpenh.exe
O4 - HKLM \ .. \ Run: [% ITSecMng]% ProgramFiles \ TOSHIBA \ Toshiba Bluetooth Stack \ ItSecMng.exe / START
O4 - HKLM \ .. \ Run: [Teco] "% ProgramFiles% \ TOSHIBA \ TECO \ Teco.exe" / r
O4 - HKLM \ .. \ Run: [TosSENotify] C: \ Program Files \ TOSHIBA \ TOSHIBA disque dur SSD d'alerte \ TosWaitSrv.exe
O4 - HKLM \ .. \ Run: [ToshibaServiceStation] "C: \ Program Files \ TOSHIBA \ TOSHIBA Service Station \ ToshibaServiceStation.exe" / cacher: 60
O4 - HKLM \ .. \ Run: [TosWaitSrv]% ProgramFiles% \ TOSHIBA \ TPHM \ TosWaitSrv.exe
O4 - HKLM \ .. \ Run: ": \ Program Files \ DivX \ DivX Update \ DivXUpdate.exe C" / checkNow [DivXUpdate]
O4 - HKLM \ .. \ Run: [AdobeAAMUpdater-1.0] "C: \ Program Files \ Common Files \ Adobe \ oobe \ PDAPP \ UWA \ UpdaterStartupUtility.exe"
O4 - HKLM \ .. \ Run: [SwitchBoard] C: \ Program Files \ Common Files \ Adobe \ SwitchBoard \ SwitchBoard.exe
O4 - HKLM \ .. \ Run: [AdobeCS5ServiceManager] "C: \ Program Files \ Common Files \ Adobe \ CS5ServiceManager \ CS5ServiceManager.exe» launchedbylogin
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Reader 9.0 \ Reader \ reader_sl.exe"
O4 - HKLM \ .. \ Run: [Adobe ARM] "C: \ Program Files \ Common Files \ Adobe \ ARM \ 1.0 \ AdobeARM.exe"
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
\ Program Files \ Norton Utilities 14 \ RMTray.exe / H: [NortonUtilities] C: HKCU \ .. \ Run - O4
O4 - HKLM \ .. \ Run: [Mise à jour de Google] "C: \ Users \ Matthieu \ AppData \ Local \ Google \ Update \ GoogleUpdate.exe" / c
O4 - HKLM \ .. \ Run: [msnmsgr] "C: \ Program Files \ Windows Live \ Messenger \ msnmsgr. exe "/ background
O4 - HKLM \ .. \ Run: [Sidebar] C: \ Program Files \ Windows Sidebar \ sidebar.exe / AutoRun
O4 - HKLM \ .. \ Run: [RGSC] C: \ Program Files \ Rockstar Games \ Rockstar Games Social Club \ RGSCLauncher.exe / silent
O4 - HKLM \ .. \ Run: [DAEMON Tools Lite] "C: \ Program Files \ DAEMON Tools Lite \ DTLite.exe"-autorun
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / AutoRun (User Service local)
O4 - HKUS \ S-1-5-19 \ .. \ RunOnce: [mctadmin] C: \ Windows \ System32 \ mctadmin.exe (User Service local)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / AutoRun (User SERVICE RÉSEAU)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [mctadmin] C: \ Windows \ System32 \ mctadmin.exe (User SERVICE RÉSEAU)
O7 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ System, DisableRegedit = 1
O8 - Extra context menu item: E & xporter vers Microsoft Excel - res://C : \ PROGRA ~ 1 \ MICROS ~ 4 \ Office12 \ EXCEL. EXE/3000
O8 - Extra élément de menu contextuel: Google Sidewiki...- res://C : \ Program Files \ barre d'outils Google \ Google \ Composant \ GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: @ C: \ Program Files \ Windows Live \ Companion \ companionlang.dll, -600 - {0000036B-C524-4050-81A0-243669A86B9F} - C: \ Program Files \ Windows Live \ Companion \ companioncore.dll
O9 - Extra button: @ C: \ Program Files \ Windows Live \ Writer \ WindowsLiveWriterShortcuts. dll, -1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra "Outils" menuitem: @ C: \ Program Files \ Windows Live \ Writer \ WindowsLiveWriterShortcuts.dll, -1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-8081-4f3c-5663EE0C6C49} - C: \ PROGRA ~ 1 \ MICROS ~ 4 \ Office12 \ ONBttnIE. dll
O9 - Extra "Outils" menuitem: S & fin à OneNote - {2670000A-7350-8081-4f3c-5663EE0C6C49} - C: \ PROGRA ~ 1 \ MICROS ~ 4 \ Office12 \ ONBttnIE.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C: \ PROGRA ~ 1 \ MICROS ~ 4 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - (no file)
O10 - fichier inconnu dans Winsock LSP: c: \ program files \ Fichiers communs \ Microsoft Shared \ Windows Live \ wlidnsp. dll
O10 - fichier inconnu dans Winsock LSP: c: \ program files \ Fichiers communs \ Microsoft Shared \ Windows Live \ wlidnsp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Skype \ ~ SKYPE4 1.DLL
O18 - Protocol: WLPG - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C: \ Program Files \ Windows Live \ Photo Gallery \ AlbumDownloadProtocolHandler. dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C: \ Program Files \ LSI SoftModem \ agrsmsvc.exe
O23 - Service: AMD événements externes Utility - AMD - C: \ windows \ system32 \ atiesrxx.exe
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Fichiers communs \ Apple \ Mobile Device Support \ AppleMobileDeviceService.exe
O23 - Service: Service AST (astcc) - Unknown owner - C: \ windows \ system32 \ AstSrv. exe (file missing)
O23 - Service: Service Bonjour - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: ConfigFree Service WiMAX (cfWiMAXService) - TOSHIBA CORPORATION - C: \ Program Files \ TOSHIBA \ ConfigFree \ CFIWmxSvcs.exe
Service - O23: Service ConfigFree - TOSHIBA CORPORATION - C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe
O23 - Service: EPSON V5 Service4 (01) (EPSON_EB_RPCV4_01) - Seiko Epson Corporation - C: \ ProgramData \ EPSON \ EPW 3 SSRP \ E_S40ST7. EXE
O23 - Service: EPSON V3 Service4 (01) (EPSON_PM_RPCV4_01) - Seiko Epson Corporation - C: \ ProgramData \ EPSON \ EPW 3 SSRP \ E_S40RP7.EXE!
Service - O23: Service de licences FlexNet - Software Inc Acresso - C: \ Program Files \ Fichiers communs \ Macrovision Shared \ FLEXnet Publisher \ FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc - C: \ Program Files \ Google \ Update \ GoogleUpdate. exe
O23 - Service: Gestionnaire de tableau InstallDriver (IDriverT) - Macrovision Corporation - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 32 11 \ Intel \ IDriverT.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C: \ Program Files \ Norton Internet Security \ Engine \ 17.8.0.5 \ ccSvcHst.exe
O23 - Service: PnkBstrA - Unknown owner - C: \ windows \ system32 \ PnkBstrA. exe
O23 - Service: PnkBstrB - Unknown owner - C: \ windows \ system32 \ PnkBstrB.exe
O23 - Service: PS3 Media Server - Unknown owner - C: \ Program Files \ Server PS3 Media \ win32 \ service \ wrapper.exe
O23 - Service: Service de TOSHIBA Modem et choisissez la région (RSELSVC) - Toshiba Corporation - C: \ Program Files \ TOSHIBA \ rVeuillez sélectionner \ RSelSvc.exe
O23 - Service: ServiceLayer - Nokia - C: \ Program Files \ PC Connectivity Solution \ ServiceLayer. exe
Valve Corporation - - Service à la clientèle à vapeur C:: - O23 Service \ Program Files \ Common Files \ Steam \ SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C: \ Program Files \ Common Files \ Adobe \ SwitchBoard \ SwitchBoard.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C: \ Program Files \ TeamViewer \ version5 \ TeamViewer_Service.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C: \ Program Files \ Station Service TOSHIBA \ TOSHIBA \ TMachInfo. exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C: \ Program Files \ TOSHIBA Saver \ Power \ TosCoSrv.exe
O23 - Service: Service Bluetooth TOSHIBA - TOSHIBA CORPORATION - C: \ Program Files \ Toshiba \ Bluetooth Stack \ TosBtSrv.exe
TECO \ Program Files \ TOSHIBA \ \ TecoService: O23 - Service: C - Service Utility TOSHIBA éco - TOSHIBA Corporation. exe
O23 - Service: TOSHIBA disque dur SSD de service d'alerte - TOSHIBA Corporation - C: \ Program Files \ TOSHIBA \ TOSHIBA disque dur SSD d'alerte \ TosSmartSrv.exe
TPHM \ Program Files \ TOSHIBA \ \ TPCHSrv.exe: O23 - Service: C - Service TPCH (TPCHSrv) - TOSHIBA Corporation

HELP ME S'IL VOUS PLAÎT

Salut,

Quelqu'un s'il vous plaît aidez-moi. Même moi, je ne peux pas ouvrir mon taskmanager. J'utilise Vista et quand j'ai couru HijackThis dit qu'il n'est pas capable de courir et je dois utiliser Exécuter en tant que Admnistrator. Je l'ai fait, mais il n'a pas été en mesure de modifier certaines entrées dans le fichier hosts et m'a demandé de le faire manuellement. Après avoir fait les changements qu'il ne m'a pas permis d'enregistrer le fichier et a mentionné que je n'ai pas les droits admin. Je suis le seul utilisateur de mon ordinateur portable et ont la totalité des droits admin.

Voici tout de coller le fichier journal, il n'est pas de me permettre de coller l'URL.


Voici le fichier de log.

Logfile of Trend Micro HijackThis v2.0.4
Scan sauvé à 11:10:58, le 01/06/2011
Windows Vista SP2 (WinNT 6.00.1906): Plate-forme
MSIE: Internet Explorer v8.00 (8.00.6001.18999)
Boot mode: Normal

Les processus en cours:
C: \ Windows \ system32 \ dwm.exe
C: \ Windows \ system32 \ taskeng.exe
C: \ Windows \ Explorer.EXE
\ Program Files \ Synaptics \ SynTP \ SynTPEnh: C. exe
\ Program Files \ Intel \ Intel Matrix Storage Manager \ IAAnotif.exe: C
\ Program Files \ HP \ QuickPlay \ QPService.exe: C
\ Program Files \ Hewlett-Packard \ HP Quick Launch Buttons \ QLBCTRL.exe: C
\ Program Files \ QuickTouch Hewlett-Packard \ HP \ HPKBDAPP.exe: C
\ Program Files \ Hewlett-Packard \ bilan de santé HP \ HPHC_Scheduler.exe: C
C: \ Program Files \ HP \ HP Software Update \ hpwuSchd2.exe
\ Program Files \ Hewlett-Packard \ HP Wireless Assistant \ HPWAMain.exe: C
C: \ Program Files \ Java \ jre1.6. 0_05 \ bin \ jusched.exe
\ Program Files \ Samsung \ Samsung Media Studio 5 \ SMSTray.exe: C
C: \ Windows \ WindowsMobile \ wmdSync.exe
C: \ Program Files \ IDT \ WDM \ sttray.exe
\ Program Files \ Synaptics \ SynTP \ SynTPHelper.exe: C
C: \ Program Files \ Hewlett-Packard \ HP Wireless Assistant \ WiFiMsg.EXE
\ Program Files \ Hewlett-Packard \ Shared \ HpqToaster.exe: C
\ Program Files \ HiJack \ Trend Micro \ HijackThis \ HijackThis.exe: C
C: \ Windows \ System32 \ MobSync. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = [il y avait une URL ici]
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = [il y avait une URL ici]
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = [il y avait une URL ici]
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = [il y avait une URL ici]
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = [il y avait une URL ici]
R0 - HKLM \ Explorer Software \ Microsoft \ Internet \ Main, Search =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, Page =
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
R3 - URLSearchHook: (no name) - - (aucun fichier)
URLSearchHook - R3: AVG BHO barre d'outils de sécurité - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C: \ Program Files \ AVG \ AVG9 \ Toolbar \ IEToolbar. dll
R3 - URLSearchHook: (no name) - {* c95a4e8e-816d-4655-8c79-d736da1adb6d} - (no file)
R3 - URLSearchHook: (no name) - {* 91C18ED5-5E1C-4AE5-A148-A861DE8C8E16} - (no file)
R3 - URLSearchHook: (no name) - {* F08555B0-9CC3-11D2-AA8E-000000000567} - (no file)
R3 - URLSearchHook: (no name) - {* 00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file)
R3 - URLSearchHook: (no name) - {* CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
R3 - URLSearchHook: (no name) - {* e9911ec6-40b0-1bcc-9993 -E0eea7f6953f} - (no file)
R3 - URLSearchHook: (no name) - {F08555B0-9CC3-11D2-AA8E-000000000567} - (no file)
O1 - Hosts::: 1 localhost
O1 - Hosts::: 1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-9B51-4efb-7695ECA05670} - (no file)
O2 - BHO: Adobe Link Helper PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: WormRadar. com IESiteBlocker. NavFilter - {3CA2F312-4B53-6F6E-A66E-4E65E497C8C0} - C: \ Program Files \ AVG \ AVG9 \ avgssie.dll (file missing)
O2 - BHO: UrlHelper classe - {474597C5-AB09-49D6-A4D5-2E8D7341384E} - C: \ Program Files \ iMesh Applications \ MediaBar \ DataMngr \ IEBHO.dll (file missing)
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C: \ Program Files \ Windows Live \ Family Safety \ fssbho.dll
O2 - BHO: NCO 2. 0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: Aide de recherche - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C: \ Program Files \ Microsoft \ Search Enhancement Pack \ Helper Recherche \ SEPsearchhelperie.dll
O2 - BHO: Aide Groove Browser GFS - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C: \ Program Files \ Microsoft Office \ Office12 \ GrooveShellExtensions.dll
O2 - BHO: SSVHelper classe - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv. dll
BHO - O2: AVG BHO barre d'outils de sécurité - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C: \ Program Files \ AVG \ AVG9 \ Toolbar \ IEToolbar.dll
O2 - BHO: Système de recherche Dispatcher - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - C: \ Program Files \ System Recherche Dispatcher \ 1.2.0.750 \ ssd.dll (file missing)
O2 - BHO: Bandoo IE Plugin - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C: \ Program Files \ Bandoo \ Plugins \ IE \ ieplugin. dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
Toolbar - O3: la barre d'outils de sécurité AVG - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C: \ Program Files \ AVG \ AVG9 \ Toolbar \ IEToolbar.dll
O4 - HKLM \ .. \ Run: [SynTPEnh]% ProgramFiles% \ Synaptics \ SynTP \ Syntpenh.exe
O4 - HKLM \ .. \ Run: [IAAnotif] C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ iaanotif.exe
O4 - HKLM \ .. \ Run: [UCam_Menu] "C: \ Program Files \ CyberLink \ YouCam \ MUITransfer \ MUIStartMenu. exe "" C: \ Program Files \ CyberLink \ YouCam "mise à jour" Software \ CyberLink \ YouCam \ 2.0 "
O4 - HKLM \ .. \ Run: [QPService] "C: \ Program Files \ HP \ QuickPlay \ QPService.exe"
O4 - HKLM \ .. \ Run: [Windows Defender]% ProgramFiles% \ Windows Defender \ MSASCui.exe-hide
O4 - HKLM \ .. \ Run: [QlbCtrl.exe] C: \ Program Files \ Hewlett-Packard \ HP Quick Launch Buttons \ QlbCtrl.exe / Start
O4 - HKLM \ .. \ Run: [OnScreenDisplay] C: \ Program Files \ QuickTouch Hewlett-Packard \ HP \ HPKBDAPP. exe
O4 - HKLM \ .. \ Run: [HP Health Check Scheduler] c: \ Program Files \ bilan de santé Hewlett-Packard \ HP \ HPHC_Scheduler.exe
O4 - HKLM \ .. \ Run: [HP Software Update] C: \ Program Files \ HP Software \ HP Update \ HPWuSchd2.exe
O4 - HKLM \ .. \ Run: [hpWirelessAssistant] C: \ Program Files \ Hewlett-Packard \ HP Wireless Assistant \ HPWAMain.exe
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [SMSTray] C: \ Program Files \ Samsung \ Samsung Media Studio 5 \ SMSTray.exe
O4 - HKLM \ .. \ Run: [FBSSA] C: \ Program Files \ SGPSA \ ie3sh.exe
O4 - HKLM \ .. \ Run: [Windows gestion des terminaux mobiles à base de]% windir% \ WindowsMobile \ wmdSync.exe
O4 - HKLM \ .. \ Run: [SysTrayApp] C: \ Program Files \ IDT \ WDM \ sttray.exe
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ Windows \ system32 \ nvcpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [MSSE] "c: \ Program Files \ Microsoft Security Essentials \ msseces. exe "-hide-runkey
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / detectMem (User Service local)
O4 - HKUS \ S-1-5-19 \ .. \ Run: [WindowsWelcomeCenter] oobefldr.dll rundll32.exe, ShowWelcomeCenter (User Service local)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / detectMem (User SERVICE RÉSEAU)
O8 - Extra élément de menu contextuel: Add to Google Photos screensa & ver - res://C : \ Windows \ system32 \ GPhotos. scr/200
O8 - Extra context menu item: E & xporter vers Microsoft Excel - res://C : \ PROGRA ~ 1 \ MICROS ~ 3 \ Office12 \ EXCEL.EXE/3000
O8 - Extra élément de menu contextuel: Envoyer l'image pour l'& Bluetooth Device...- C: \ Program Files \ WIDCOMM \ Logiciel Bluetooth \ btsendto_ie_ctx.htm
O8 - Extra élément de menu contextuel: Envoyer cette page à un appareil Bluetooth &...- C: \ Program Files \ WIDCOMM \ Logiciel Bluetooth \ btsendto_ie. htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Console Java de Sun - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O9 - Extra button: Blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension. dll
O9 - Extra "Outils" menuitem: & Blog de Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-8081-4f3c-5663EE0C6C49} - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & fin à OneNote - {2670000A-7350-8081-4f3c-5663EE0C6C49} - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ Office12 \ ONBttnIE. dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: ShopperReports - Comparez les prix des produits - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - (no file)
Extra button - O9: ShopperReports - Comparez les prix Voyage - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - (no file)
O9 - Extra button: btrez.dll @, -4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C: \ Program Files \ WIDCOMM \ Logiciel Bluetooth \ btsendto_ie. htm
O9 - Extra "Outils" menuitem: @ btrez.dll, -12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C: \ Program Files \ WIDCOMM \ Logiciel Bluetooth \ btsendto_ie.htm
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Photo Uploader Facebook 5 Contrôle) - http://upload.facebook . com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {1D4DB7D2-47A3-6EC9-BD87-1E41684E07BB} - http://ak.exe.imgfarm . com/images/nocache/funwebproducts/ei-4/WebfettiInitialSetup1.0.1.1. cabine
O16 - DPF: {814EA0DA-E0D9-4AA4-833C-A1A6D38E79E9} (DASWebDownload classe) - http://das.microsoft . com/activate/cab/x86/i486/NTANSI/retail/DASAct.cab
O16 - DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} (Jolly Bear Games Player) - http://www.gamehouse . com / jeux / JBGamePlayer.cab
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail . com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-us.cab
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ {4EBADE4B-8F5C-42BF-9FDB-70EB4265AB93}: NameServer = 10.64.88.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C: \ Program Files \ Microsoft Office \ Office12 \ GrooveSystemServices.dll
LinkScanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C: Protocole - O18 \ Program Files \ AVG \ AVG9 \ avgpp.dll (file missing)
O20 - AppInit_DLLs: c: \ progra ~ 1 \ bandoo \ bndhook. dll
O22 - SharedTaskScheduler: Démon de cache de composants Catégories - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C: \ Windows \ system32 \ browseui.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C: \ Windows \ System32 \ DriverStore \ FileRepository \ stwrt.inf_e2247046 \ aestsrv.exe
Service - O23: Coordonnateur Bandoo - Discordia Limited - C: \ PROGRA ~ 1 \ Bandoo \ Bandoo.exe
LP Société Hewlett-Packard, - Com4QLBEx: - O23 Service - C: \ Program Files \ Hewlett-Packard \ HP Quick Launch Buttons \ Com4QLBEx.exe
GameConsoleService - WildTangent, Inc - C:: Service - O23 \ Program Files \ HP Games \ My Game Console HP \ GameConsoleService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: Service HP Health Check - Hewlett-Packard - c: \ Program Files \ Hewlett-Packard \ HP Health Check \ hphc_service. exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, LP - C: \ Program Files \ Hewlett-Packard \ Shared \ hpqwmiex.exe
O23 - Service: Service HP (hpsrv) - Hewlett-Packard Company - C: \ Windows \ system32 \ Hpservice.exe
O23 - Service: Intel (R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C: \ Program Files \ Intel \ Intel Matrix Storage Manager \ IAANTMon. exe
O23 - Service: Gestionnaire de tableau InstallDriver (IDriverT) - Macrovision Corporation - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 32 1050 \ Intel \ IDriverT.exe
O23 - Service: Disc Labeling Service LightScribeService Direct (LightScribeService) - Hewlett-Packard Company - C: \ Program Files \ Fichiers communs \ LightScribe \ LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C: \ Windows \ system32 \ nvvsvc. exe
O23 - Service: Service QuickPlay Contexte Capture (QBC) (QPCapSvc) - Unknown owner - C: \ Program Files \ HP \ QuickPlay \ Kernel \ TV \ QPCapSvc.exe
O23 - Service: Planificateur de tâches QuickPlay (QTS) (QPSched) - Unknown owner - C: \ Program Files \ HP \ QuickPlay \ Kernel \ TV \ QPSched.exe
O23 - Service: Service de récupération pour Windows - Unknown owner - C: \ Windows \ SMINST \ BLService. exe
O23 - Service: Cyberlink RichVideo Service (EVRC) (RichVideo) - Unknown owner - C: \ Program Files \ CyberLink \ Shared Files \ RichVideo.exe
O23 - Service: Service Audio (STacSV) - IDT, Inc - C: \ Windows \ System32 \ DriverStore \ FileRepository \ stwrt.inf_e2247046 \ STacSV.exe

-
End of file - 12303 bytes

Bonjour à tous,
J'ai un problème similaire, mais je pense que peut-être plus compliqué que les précédents.

Alors...cela a commencé avec un programme qui poped dans mon ordinateur personnel appelé Internet Security 2011 qui a commencé la numérisation mon ordinateur pour "virus" et conservés poping avec IE annonces...En outre, il avait des bruits étranges pop up...Je suis devenu soupçonneux et l'ai googlé .. venaient se faire que le programme lui-même est un virus

Cependant je ne pouvais pas l'enlever, aucun de mes programmes anivirus s'ouvrira et gestionnaire de tâches ne fonctionne pas non plus!

Le moyen le plus rapide serait de réinstaller l'ordinateur sans doute, mais je ne veux vraiment pas faire cela. Il serait mon choix dernier.

Btw, aujourd'hui après avoir allumé mon ordinateur à nouveau, le programme / virus arrêté poping, mais gestionnaire de tâches ou antivirus ne s'ouvre pas de toute façon.

Après être venu sur ce forum, j'ai téléchargé Hijack cela et c'est ce que j'ai eue lorsque j'ai cliqué sur Do a system scan uniquement,
J'ai reçu un message pop up en disant:

Après avoir cliqué sur OK:

cliquant à nouveau sur OK...

Et puis j'ai eu ce journal:



PS. Au lieu de quelques points, j'ai changé de comas cuz je ne sais pas comment activer les urls ici.

J'ai le même problème, ne peut pas ouvrir le Gestionnaire des tâches. venez de télécharger Hijack This et ne savent pas comment vraiment l'utiliser quelqu'un peut me dire ce qu'il faut corriger sur ce...merci.

Logfile of Trend Micro HijackThis v2.0.4
Scan sauvé à 12:40:39, le 01/03/2011
Plate-forme: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600. 16385)
Boot mode: Normal

Les processus en cours:
C: \ Program Files (x86) \ Norton Internet Security \ Engine \ 16.8.0.41 \ ccSvcHst.exe
C: \ Windows \ SysWOW64 \ rundll32.exe
Program Files \ (x86) \ HBLite \ bin \ 11.0.323.0 \ HBLiteSA.exe: C
C: \ Users \ JARh3aD \ AppData \ Local \ Temp \ a.exe
Program Files \ (x86) \ TortoiseSVN \ bin \ TSVNCache.exe: C
C: \ Windows \ Kqizea.exe
C: \ Program Files (x86) \ Real \ RealPlayer \ update \ realsched.exe
C: \ Users \ JARh3aD \ AppData \ Local \ Temp \ KPG. exe
Program Files \ (x86) \ Real \ RealPlayer \ realplay.exe: C
C: \ Program Files (x86) \ Trend Micro \ HijackThis \ HijackThis.exe
C: \ Users \ JARh3aD \ AppData \ Local \ Temp \ Kpi.exe

R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, Page =
R3 - URLSearchHook: Classe SearchSettings - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C: \ Program Files (x86) \ Paramètres de recherche \ SearchSettings. dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C: \ Program Files (x86) \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C: \ Program Files (x86) \ Norton Internet Security \ Engine \ 16.8.0.41 \ coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C: \ Program Files Internet Security (x86) \ Norton \ Engine \ 16.8.0.41 \ IPSBHO. DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C: \ Program Files (x86) \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C: \ Program Files (x86) \ Windows Live \ Companion \ companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C: \ Program Files (x86) \ Skype \ Barres d'outils \ Internet Explorer \ skypeieplugin. dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C: \ Program Files (x86) \ Ask (dot) com \ GenericAskToolbar.dll (file missing)
Program Files \ (x86) \ Paramètres de recherche \ SearchSettings.dll: O2 - BHO: C - Classe SearchSettings - {E312764E-7706-43F1-8DAB-FCDD2B1E416D}
O3 - Toolbar: barre d'outils Norton - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C: \ Program Files (x86) \ Norton Internet Security \ Engine \ 16.8.0.41 \ coIEPlg. dll
O3 - Toolbar: barre d'outils Ask - {D4027C7F-154A-4066-A1AD-4243D8127440} - C: \ Program Files (x86) \ Demandez com \ GenericAskToolbar.dll (file missing)
O3 - Toolbar: barre d'outils Yahoo! - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C: \ Program Files (x86) \ Yahoo! \ Companion \ Installs \ cpn0 \ yt.dll (file missing)
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files (x86) \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [YSearchProtection] "C: \ Program Files (x86) \ Yahoo! \ Search Protection \ SearchProtection.exe "
O4 - HKLM \ .. \ Run: [Adobe ARM] "C: \ Program Files (x86) \ Common Files \ Adobe \ ARM \ 1.0 \ AdobeARM.exe"
Program Files \ (x86) \ Paramètres de recherche \ SearchSettings.exe: [SearchSettings] C: HKLM \ .. \ Run - O4
O4 - HKLM \ .. \ Run: [Media Codec Update Service] C: \ Program Files (x86) \ Essentials Codec Pack \ WECPUpdate.exe-s
O4 - HKLM \ .. \ Run: [STA] rundll32 "bjnmp.dll",, Run
O4 - HKLM \ .. \ Run: [mchk] C: \ Windows \ system32 \ ojnmp.exe
O4 - HKLM \ .. \ Run: [PWRISOVM.EXE] C: \ Program Files (x86) \ PowerISO \ PWRISOVM.EXE
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files (x86) \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [NvCplDaemonTool] rundll32.exe C: \ Windows \ system32 \ ~ PULOAD 1.DLL, _IWMPEvents
O4 - HKLM \ .. \ Run: [HBLiteSA] "C: \ Program Files (x86) \ HBLite \ bin \ 11.0.323.0 \ HBLiteSA.exe"
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files (x86) \ Real \ RealPlayer \ update \ realsched.exe» OSBOOT
O4 - HKLM \ .. \ [Msnmsgr] "C: \ Program Files (x86) \ Windows Live \ Messenger \ msnmsgr.exe" Run / arrière-plan
O4 - HKLM \ .. \ Run: [DAEMON Tools Lite] "C: \ Program Files (x86) \ DAEMON Tools Lite \ DTLite.exe"-autorun
O4 - HKLM \ .. \ Run: [EA Core] "C: \ Program Files (x86) \ Electronic Arts \ EADM \ Core.exe" silencieux
O4 - HKLM \ .. \ Run: [Messenger (Yahoo!)] "C: \ PROGRA ~ 2 \ Yahoo! \ Messenger \ YahooMessenger.exe" silencieux
Program Files \ (x86) \ Yahoo!: [Protection recherche] C: HKCU \ .. \ Run - O4 Protection Recherche \ \ SearchProtection.exe
O4 - HKLM \ .. \ Run: [YVIBBBHA8C] C: \ Users \ JARh3aD \ AppData \ Local \ Temp \ Kpg.exe
O4 - HKLM \ .. \ Run: [kjqcsjue] C: \ Users \ JARh3aD \ AppData \ Local \ mrsrpkoko \ suaixajtssd.exe
O4 - HKLM \ .. \ Run: [070700Setup.exe] C: \ Users \ JARh3aD \ AppData \ Roaming \ 7B3C61073A79074CDDA6EB7BACBB21C2 \ 070700Setup.exe
O4 - HKLM \ .. \ Run: [uysffrbf] C: \ Users \ JARh3aD \ AppData \ Local \ twwcdfotd \ hsafrbntssd.exe
O4 - HKLM \ .. \ Run: [uTorrent] "C: \ Program Files (x86) \ uTorrent \ uTorrent. exe "
O4 - HKLM \ .. \ Run: [eppxkkjr] C: \ Users \ JARh3aD \ AppData \ Local \ ejhwlkgix \ ejrgpfvshdw.exe
O4 - HKLM \ .. \ Run: [SKMWnVLtgu.exe] C: \ Users \ JARh3aD \ AppData \ Local \ Temp \ SKMWnVLtgu.exe
O4 - HKLM \ .. \ Run: [544904269] C: \ Users \ JARh3aD \ AppData \ Local \ Temp \ 544904269.exe
O4 - HKLM \ .. \ Run: [NvCplDaemonTool] rundll32.exe C: \ Users \ JARh3aD \ ~ PULOAD 1.DLL, _IWMPEvents
O4 - HKLM \ .. \ Run: [HJRUDZ5DT2] C: \ Users \ JARh3aD \ AppData \ Local \ Temp \ Kpi.exe
O4 - HKLM \ .. \ Run: [la reconnaissance vocale] "C: \ Windows \ Speech \ Common Files \ sapisvr.exe» SpeechUX-démarrage
O4 - HKLM \ .. \ Run: [P2kAutostart] V600
O4 - HKLM \ .. \ Run: [ALLUpdate] "C: \ Program Files (x86) \ OpenSubtitlesPlayer \ ALLUpdate.exe" "sommeil"
O4 - HKLM \ .. \ Run: [Skype] "C: \ Program Files (x86) \ Skype \ Phone \ Skype.exe" / nosplash / minimiser
O4 - HKLM \ .. \ Run: [MerchTool.exe] C: \ Users \ JARh3aD \ AppData \ Roaming \ MerchTool.exe
O4 - HKLM \ .. \ RunServices: [uTorrent] C: \ Windows \ System32 \ MSWindows \ igfx.exe
O4 - HKLM \ .. \ Run: [FlashPlayerUpdate] C: \ Windows \ system32 \ Macromed \ Flash \ NPSWF32_FlashUtil.exe-p
O4 - HKLM \ .. \ Policies \ Explorer \ Run: [tcyz46] C: \ Users \ JARh3aD \ AppData \ Local \ Temp \ l84alx.exe
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / AutoRun (User Service local)
O4 - HKUS \ S-1-5-19 \ .. \ Run: [mctadmin] C: \ Windows \ System32 \ mctadmin.exe (User Service local)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / AutoRun (User SERVICE RÉSEAU)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [mctadmin] C: \ Windows \ System32 \ mctadmin.exe (User SERVICE RÉSEAU)
O4 - Startup: Doctor.lnk Antimalware = JARh3aD \ AppData \ Roaming \ 7B3C61073A79074CDDA6EB7BACBB21C2 \ 070700Setup.exe
O4 - Startup: ZooskMessenger.lnk = C: \ Program Files (x86) \ ZooskMessenger \ ZooskMessenger.exe
O4 - Global Startup: Utilitaire de Ralink Wireless. lnk = C: \ Program Files (x86) \ Ralink \ Common Files \ RaUI.exe
O4 - Global Startup: Translator.lnk WhiteSmoke = JARh3aD \ Downloads \ WhiteSmokeWriterGeo5002_en.exe
O4 - Global Startup: Xilisoft Video.lnk YouTube Download = C: \ Program Files (x86) \ Video YouTube Xilisoft \ Download \ DownloadYouTubeVideo.exe
O4 - Global Startup: Xilisoft Video YouTube Converter.lnk = C: \ Program Files (x86) \ Xilisoft Video Converter \ YouTube \ YoutubeVideoConverter. exe
O7 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ System, DisableRegedit = 1
O8 - Extra élément de menu contextuel: Télécharger Xilisoft Télécharger la vidéo avec YouTube - C: \ Program Files (x86) \ Xilisoft \ Download YouTube Video \ upod_link.HTM
O8 - Extra élément de menu contextuel: Télécharger Xilisoft avec YouTube Video Converter - C: \ Program Files (x86) \ Xilisoft \ YouTube Video Converter \ upod_link. HTM
O8 - Extra context menu item: E & xporter vers Microsoft Excel - res://C : \ PROGRA ~ 2 \ MICROS ~ 1 \ Office12 \ EXCEL.EXE/3000
O8 - Extra élément de menu contextuel: Google Sidewiki...- res://C : \ Program Files (x86) \ barre d'outils Google \ Google \ Composant \ GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: @ C: \ Program Files (x86) \ Windows Live \ Companion \ companionlang. dll, -600 - {0000036B-C524-4050-81A0-243669A86B9F} - C: \ Program Files (x86) \ Windows Live \ Companion \ companioncore.dll
O9 - Extra button: @ C: \ Program Files (x86) \ Windows Live \ Writer \ WindowsLiveWriterShortcuts.dll, -1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C: \ Program Files (x86) \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra "Outils" menuitem: @ C: \ Program Files (x86) \ Windows Live \ Writer \ WindowsLiveWriterShortcuts. dll, -1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C: \ Program Files (x86) \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-8081-4f3c-5663EE0C6C49} - C: \ PROGRA ~ 2 \ MICROS ~ 1 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & fin à OneNote - {2670000A-7350-8081-4f3c-5663EE0C6C49} - C: \ PROGRA ~ 2 \ MICROS ~ 1 \ Office12 \ ONBttnIE. dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479b-8935-AEC46303B9E5} - C: \ Program Files (x86) \ Skype \ Barres d'outils \ Internet Explorer \ skypeieplugin.dll
O9 - Extra "Outils" menuitem: Skype Plug-In - {898EA8C8-E7FF-479b-8935-AEC46303B9E5} - C: \ Program Files (x86) \ Skype \ Barres d'outils \ Internet Explorer \ skypeieplugin.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C: \ PROGRA ~ 2 \ MICROS ~ 1 \ Office12 \ REFIEBAR. DLL
O9 - Extra button: ShopperReports - Comparez les prix des produits - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C: \ Program Files (x86) \ ShopperReports3 \ bin \ 3.0.517.0 \ ShopperReports.dll
O9 - Extra button: ShopperReports - Comparez les prix Voyage - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C: \ Program Files (x86) \ ShopperReports3 \ bin \ 3.0.517.0 \ ShopperReports.dll
O10 - fichier inconnu dans Winsock LSP: \ program files (x86) \ Fichiers communs \ Microsoft Shared \ Windows Live \ wlidnsp: c. dll
O10 - fichier inconnu dans Winsock LSP: c: \ program files (x86) \ Fichiers communs \ Microsoft Shared \ Windows Live \ wlidnsp.dll
O18 - Protocol: skype-dire-addon-données - {91774881-D725-4E58-B298-07617B9B86A8} - C: \ Program Files (x86) \ Skype \ Barres d'outils \ Internet Explorer \ skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C: \ PROGRA ~ 2 \ COMMON ~ 1 \ Skype \ SKYPE4 ~ 1. DLL
O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C: \ Program Files (x86) \ Norton Internet Security \ Engine \ 16.8.0.41 \ coIEPlg.dll
O18 - Protocol: WLPG - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C: \ Program Files (x86) \ Windows Live \ Photo Gallery \ AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: cryptnet32 - cryptnet32.dll (file missing)
O23 - Service: @% SystemRoot% \ system32 \ alg.exe, -112 (ALG) - Unknown owner - C: \ Windows \ System32 \ alg. exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files (x86) \ Fichiers communs \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: Application de mise à jour - Robinet, Inc - C: \ Program Files (x86) \ Updater \ ApplicationUpdater.exe
O23 - Service: Service Bonjour - Apple Inc - C: \ Program Files (x86) \ Bonjour \ mDNSResponder. exe
O23 - Service: Dragon Age: Origins - Contenu mise à jour (DAUpdaterSvc) - BioWare - C: \ Program Files (x86) \ Dragon Age \ bin_ship \ DAUpdaterSvc.Service.exe
O23 - Service: @% SystemRoot% \ system32 \ efssvc.dll, -100 (EFS) - Unknown owner - C: \ Windows \ System32 \ lsass.exe (file missing)
O23 - Service: @% systemroot% \ system32 \ fxsresm.dll, -118 (Fax) - Unknown owner - C: \ Windows \ system32 \ Fxssvc.exe (file missing)
Service - O23: Service de licences FlexNet - Software Inc Acresso - C: \ Program Files (x86) \ Fichiers communs \ Macrovision Shared \ FLEXnet Publisher \ FNPLicensingService.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C: \ Program Files \ NVIDIA Corporation \ NetworkAccessManager \ bin32 \ nSvcAppFlt.exe
O23 - Service: GameConsoleService - WildTangent, Inc - C: \ Program Files (x86) \ eMachines Games \ eMachines console de jeu \ GameConsoleService. exe
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C: \ Program Files (x86) \ eMachines \ Registration \ GregHSRW.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc - C: \ Program Files (x86) \ Google \ Update \ GoogleUpdate.exe
O23 - Service: Gestionnaire de tableau InstallDriver (IDriverT) - Macrovision Corporation - C: \ Program Files (x86) \ Fichiers communs \ InstallShield \ Driver \ 1050 \ Intel 32 \ IDriverT.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: @ keyiso.dll, -100 (KeyIso) - Unknown owner - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: @ comres.dll, -2797 (MSDTC) - Unknown owner - C: \ Windows \ System32 \ msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C: \ Program Files (x86) \ Fichiers communs \ Nero BackItUp \ Nero 4 \ NBService.exe
O23 - Service: @% SystemRoot% \ System32 \ netlogon. dll, -102 (Netlogon) - Unknown owner - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: Norton Internet Security - Symantec Corporation - C: \ Program Files (x86) \ Norton Internet Security \ Engine \ 16.8.0.41 \ ccSvcHst.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C: \ Program Files \ NVIDIA Corporation \ NetworkAccessManager \ bin32 \ nSvcIp.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C: \ Windows \ system32 \ nvvsvc. exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C: \ Windows \ system32 \ PnkBstrA.exe
O23 - Service: @% systemroot% \ system32 \ psbase.dll, -300 (ProtectedStorage) - Unknown owner - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: Writer Registre Ralink (RalinkRegistryWriter) - Ralink Technology, Corp - C: \ Program Files (x86) \ Ralink \ Common Files \ RaRegistry.exe
O23 - Service: Writer Registre Ralink 64 (RalinkRegistryWriter64) - Technologie Ralink, Corp - C: \ Program Files (x86) \ Ralink \ Common Files \ RaRegistry64.exe
O23 - Service: @% systemroot% \ system32 \ Locator.exe, -2 (RpcLocator) - Unknown owner - C: \ Windows \ system32 \ locator.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ Samsrv.dll, -1 (SamSs) - Unknown owner - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ snmptrap.exe, -3 (SNMPTRAP) - Unknown owner - C: \ Windows \ System32 \ snmptrap.exe (file missing)
O23 - Service: @% systemroot% \ system32 \ spoolsv. exe, -1 (Spooler) - Unknown owner - C: \ Windows \ System32 \ spoolsv.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ sppsvc.exe, -101 (sppsvc) - Unknown owner - C: \ Windows \ system32 \ sppsvc.exe (file missing)
O23 - Service: Service Client Steam - Valve Corporation - C: \ Program Files (x86) \ Common Files \ Steam \ SteamService.exe
O23 - Service: @% SystemRoot% \ system32 \ ui0detect.exe, -101 (UI0Detect) - Unknown owner - C: \ Windows \ system32 \ UI0Detect. exe (file missing)
O23 - Service: Service de mise à jour - Acer - C: \ Program Files \ eMachines \ eMachines Updater \ UpdaterService.exe
O23 - Service: @% SystemRoot% \ system32 \ vaultsvc.dll, -1003 (VaultSvc) - Unknown owner - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ vds.exe, -100 (vds) - Unknown owner - C: \ Windows \ System32 \ vds.exe (file missing)
O23 - Service: @% systemroot% \ system32 \ vssvc.exe, -102 (VSS) - Unknown owner - C: \ Windows \ system32 \ vssvc. exe (file missing)
O23 - Service: @% systemroot% \ system32 \ wbengine.exe, -104 (wbengine) - Unknown owner - C: \ Windows \ system32 \ wbengine.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ wbem \ wmiapsrv.exe, 110 (wmiApSrv) - Unknown owner - C: \ Windows \ system32 \ wbem \ wmiapsrv.exe (file missing)
O23 - Service: @% PROGRAMFILES% \ Windows Media Player \ wmpnetwk.exe, -101 (WMPNetworkSvc) - Unknown owner - C: \ Program Files (x86) \ Windows Media Player \ wmpnetwk. exe (file missing)
Service - O23: Yahoo! Updater (YahooAUService) - AOL Inc - C: \ Program Files (x86) \ Yahoo! \ softwareupdate \ YahooAUService.exe
O23 - Service: Service de configuration sans fil Zune (ZuneWlanCfgSvc) - Unknown owner - C: \ Windows \ system32 \ ZuneWlanCfgSvc.exe (file missing)

-
End of file - 15484 bytes

J'ai le même problème. J'ai le HijackThis Log. Si vous avez besoin tout autre réponse ou PM me. Si vous pouvez aider à cette volonté de grand () NOTE I HADE pour ajouter autour de toute .com si vous avez une sur la façon de faire ceci plus petits lorsque je poste aussi me dire comment à

LogFile de Trend Micro HijackThis v2.0.4
Balayage sauvé à 10:45:05, le 28/08/2011
Plate-forme : Windows 7 SP1 (WinNT 6.00.3505)
Microsoft Internet Explorer : Internet Explorer v9.00 (9.00.8112.16421)
Mode de démarrage : Normal

Les processus en cours d'exécution :
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Common Files\Research en Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files\Dyyno\Dyyno Broadcaster\dyyno_launcher.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main, Page de recherche = http://go.microsoft( .)com/fwlink / ?LinkId = 54896
Page de démarrage de R0 - HKCU\Software\Microsoft\Internet Explorer\Main, = http://www.yahoo( .)com
R1 - bld=wshShell.RegRead("HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = http://go.microsoft( .)com/fwlink / ?LinkId = 69157
R1 - bld=wshShell.RegRead("HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = http://go.microsoft( .)com/fwlink / ?LinkId = 54896
R1 - bld=wshShell.RegRead("HKLM\Software\Microsoft\Internet Explorer\Main, Page de recherche = http://go.microsoft( .)com/fwlink / ?LinkId = 54896
Page de démarrage de R0 - bld=wshShell.RegRead("HKLM\Software\Microsoft\Internet Explorer\Main, = http://go.microsoft( .)com/fwlink / ?LinkId = 69157
R0 - bld=wshShell.RegRead("HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant =
R0 - bld=wshShell.RegRead("HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings, ProxyServer = http =; ftp =; https = ;
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar, LinksFolderName =
O2 - BHO : AcroIEHelperStub-{18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO : Télécharger RealPlayer et dossier Plug-in pour Internet Explorer-{3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO : WormRadar(.)com IESiteBlocker.NavFilter-{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
O2 - BHO: (aucun nom)-{724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO : Windows Live ID Sign-in Helper-{9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin. DLL
O2 - BHO : Windows Live Messenger compagnon d'assistance-{9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO : SkypeIEPluginBHO-{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO : URLRedirectionBHO-{B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO : Java plug-in 2 SSV Helper-{DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - barre d'outils : & RoboForm-{724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\...\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\...\Run : RUNDLL32 [NvCplDaemon].EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\...\Run : rundll32.exe [NVHotkey] C:\Windows\system32\nvHotkey.dll,Start
O4 - HKLM\...\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research en Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\...\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\...\Run: [QuickTime tâche] « C:\Program Files\QuickTime\QTTask.exe » - atboottime
O4 - HKLM\...\Run : %ProgramFiles%\IDT\WDM\sttray.exe [SysTrayApp]
O4 - HKLM\...\Run: [adobe bras] « C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe »
O4 - HKLM\...\Run: [TkBellExe] « C:\Program Files\Real\RealPlayer\update\realsched.exe » - osboot
O4 - HKLM\...\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\...\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\...\Run: [AdobeAAMUpdater-1.0] « C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe »
O4 - HKLM\...\Run: [standard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\...\Run: [AdobeCS5.5ServiceManager] « C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe » - launchedbylogin
O4 - HKLM\...\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
O4 - HKLM\...\Run: [LogMeIn Hamachi Ui] « C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe »--auto-start.
O4 - HKLM\...\Run: [SunJavaUpdateSched] « C:\Program Files\Common Files\Java\Java Update\jusched.exe »
O4 - HKCU\...\Run: [DS3 outil] C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe-mini
O4 - HKCU\...\Run: [Skype] « C:\Program Files\Skype\Phone\Skype.exe » /nosplash / minimisé
O4 - HKCU\...\Run: [cacaoweb] « C:\Users\Eugene2\AppData\Roaming\cacaoweb\cacaoweb.exe » - noplayer
O4 - HKCU\...\Run : /c [Google Update] « C:\Users\Eugene2\AppData\Local\Google\Update\GoogleUpdate.exe »
O4 - HKCU\...\Run: [msnmsgr] « C:\Program Files\Windows Live\Messenger\msnmsgr.exe » /background
O4 - HKCU\...\Run: [Dyyno lanceur] « C:\Program Files\Dyyno\Dyyno Broadcaster\dyyno_launcher.exe » 30100 30101 30102 30103 30104
O4 - HKCU\...\Run: [vapeur] « C:\Program Files\Steam\steam.exe »-silent
O4 - HKUS\S-1-5-19\...\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (utilisateur de SERVICE LOCAL)
O4 - HKUS\S-1-5-19\...\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (SERVICE d'utilisateurs locaux)
O4 - HKUS\S-1-5-20\...\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (SERVICE de réseau utilisateur)
O4 - HKUS\S-1-5-20\...\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (SERVICE de réseau utilisateur)
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit = 1
O8 - élément de menu pour le contexte Extra : personnaliser le Menu - file://C : \Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - élément de menu pour le contexte Extra: E & xporter vers Microsoft Excel - res://C : \PROGRA~1\MICROS~4\Office14\EXCEL. EXE/3000
O8 - élément de menu pour le contexte Extra : remplir des formulaires - file://C : \Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - élément de menu pour le contexte Extra : barre d'outils RoboForm - file://C : \Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - élément de menu pour le contexte Extra : enregistrer des formes - file://C : \Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - élément de menu pour le contexte Extra : & nvoyer à OneNote - res://C : \PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O9 - bouton Extra: @ C:\Program Files\Windows Live\Companion\companionlang.dll,-600-{0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - bouton Extra: @ C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004-{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra « Outils » menuitem: @ C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003-{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - bouton Extra : envoyer à OneNote-{2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra « Outils » menuitem : & nvoyer à OneNote-{2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - bouton Extra : remplir les formulaires-{320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C : \Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra « Outils » menuitem : remplir les formulaires-{320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C : \Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - bouton Extra : Save-{320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C : \Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra « Outils » menuitem : enregistrer les formulaires-{320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C : \Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - bouton Extra : exécutez WinHTTrack-{36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra « Outils » menuitem : lancer WinHTTrack-{36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - bouton Extra : RoboForm-{724d43aa-0d85-11d4-9908-00400523e39a} - file://C : \Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra « Outils » menuitem : barre d'outils de RoboForm-{724d43aa-0d85-11d4-9908-00400523e39a} - file://C : \Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - bouton Extra : OneNote Lin & ked Notes-{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra « Outils » menuitem : OneNote Lin & ked Notes-{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - bouton Extra : Skype plug-in-{898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra « Outils » menuitem : Skype plug-in-{898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - fichier inconnu dans LSP Winsock : c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - fichier inconnu dans LSP Winsock : c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - fichier inconnu dans LSP Winsock : c:\windows\system32\vsocklib.dll
O10 - fichier inconnu dans LSP Winsock : c:\windows\system32\vsocklib.dll
O11 - groupe Options : graphique accéléré [ACCELERATED_GRAPHICS]
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (objet Shockwave Flash) - http://fpdownload2.macromedia( .)com/Get/Shockwave/Cabs/Flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe( .)com/NOS/getPlusPlus/1.6/gp. CAB
O18 - protocole : linkscanner-{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
O18 - protocole : skype-ie-addon-data-{91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - hijack filtre : text/xml-{807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service : Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service : Andrea ST filtres Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_5f120bca41bba11b\aestsrv.exe
O23 - Service : Apple Mobile Device - Apple Inc. - DISPOSITIF C:\Program Files\Common Files\Apple\Mobile Support\AppleMobileDeviceService.exe
O23 - Service : Hôte de Service WebEx Support Center (atashost) - Cisco WebEx LLC - C:\Windows\system32\atashost.exe
O23 - Service : AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service : AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
O23 - Service : Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service : Frère BRAdminPro Scheduler (BRA_Scheduler) - propriétaire inconnu - C:\Program Files\Brother\BRAdmin Professional 3\bratimer.exe
O23 - Service : Dyyno Service (lanceur Dyyno) - propriétaire inconnu - C:\Program Files\Dyyno\Dyyno Broadcaster\launcherd.exe
O23 - Service : Service de mise à jour de Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service : Service de mise à jour de Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service : LogMeIn Hamachi Tunneling moteur (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service : InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service : iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service : MySQL - propriétaire inconnu - C:\Program.exe (fichier manquant)
O23 - Service : nProtect GameGuard Service (npggsvc) - propriétaire inconnu - C:\Windows\system32\GameMon.des.exe (fichier manquant)
O23 - Service : NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service : O2FLASH - O2Micro International - C:\Windows\system32\DRIVERS\o2flash.exe
O23 - Service : Cyberlink RichVideo Service(CRVS) (RichVideo) - propriétaire inconnu - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service : Service appel de procédure distante (RPC) Net (rpcnet) - Absolute Software Corp. - C:\Windows\system32\rpcnet.exe
O23 - Service : Service distant de Splashtop ® (SplashtopRemoteService) - Splashtop Inc. - C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe
O23 - Service : Splashtop Software Updater Service (SSUService) - Splashtop Inc. - C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe
O23 - Service : Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_5f120bca41bba11b\STacSV.exe
O23 - Service : Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service : Adobe standard (standard) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service : TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service : Thèmes non signés (UnsignedThemes) - au sein du réseau, LLC - C:\Windows\UnsignedThemesSvc.exe
O23 - Service : Autorisation de VMware Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd. exe
O23 - Service : VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service : VMware USB d'arbitrage Service (VMUSBArbService) - VMware, Inc. - C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
O23 - Service : VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe
O23 - Service : Agent VMware hôte (VMwareHostd) - propriétaire inconnu - C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe

--
Fin de fichier - octets 14828