High CPU usage en l'absence de programmes sont en cours d'exécution

J'ai un problème similaire, et l'amour de l'aide et si quelqu'un peut offrir. J'ai acheté cet ordinateur pour ma petite amie et sa soeur, et il y avait un virus dans une semaine...Spiking hasard CPU à 100%. Toute aide est appréciée.

Voici le fichier journal:

Logfile de HijackThis v1.99.1
Scan sauvé à 12:31:42 AM, le 4.15.2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900. 2180)

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ PROGRA ~ 1 \ Common ~ 1 \ AOL \ ACS \ AOLacsd.exe
c: \ program files \ mcafee.com \ agent \ mcdetect.exe
c: \ PROGRA ~ 1 \ mcafee.com \ vso \ mcshield.exe
c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mctskshd. exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ Tablet.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ Program Files \ Java \ j2re1.4.2_03 \ bin \ jusched.exe
C: \ Program Files \ CyberLink \ PowerDVD \ DVDLauncher.exe
C: \ Program Files \ Fichiers communs \ InstallShield \ UpdateService \ issch.exe
C: \ Program Files \ Dell \ Media Experience \ DMXLauncher. exe
C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe
C: \ PROGRA ~ 1 \ MUSICM ~ 1 \ MUSICM ~ 3 \ MMDiag.exe
C: \ Program Files \ Common Files \ AOL \ 1140581663 \ ee \ AOLSoftware.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ Program Files \ QuickTime \ qttask.exe
C: \ Program Files \ McAfee.com \ VSO \ mcvsshld.exe
C: \ Program Files \ McAfee.com \ VSO \ oasclnt.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ Program Files \ Dell Support \ DSAgnt. exe
C: \ Program Files \ Messenger \ msmsgs.exe
c: \ progra ~ 1 \ mcafee.com \ vso \ mcvsescn.exe
C: \ Program Files \ Plaxo \ 2.6.2.9 \ PlaxoHelper.exe
C: \ Program Files \ MUSICMATCH \ Musicmatch Jukebox \ mim.exe
C: \ Program Files \ Digital Line Detect \ DLG.exe
C: \ WINDOWS \ system32 \ WTablet \ TabUserW.exe
c: \ progra ~ 1 \ mcafee.com \ vso \ mcvsftsn.exe
C: \ WINDOWS \ system32 \ taskmgr.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Documents and Settings \ Shaun \ Desktop \ HijackThis. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://mysearch.myway.com/jsp/dellsidebar.jsp?p=DE
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://hotmail.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://www.dell4me.com/myway
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.dell4me.com/myway
R3 - URLSearchHook: (no name) - (4D25F926-B9FE-4682-BF72 -8AB8210D6D75) - C: \ Program Files \ MyWaySA \ SrchAsDe \ deSrcAs.dll
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 6.0 \ Reader \ ActiveX \ AcroIEHelper.dll
O2 - BHO: (no name) - (4D25F921-B9FE-4682-BF72-8AB8210D6D75) - C: \ Program Files \ MyWaySA \ SrchAsDe \ deSrcAs.dll
O2 - BHO: DriveLetterAccess - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ system32 \ dla \ tfswshx. dll
O2 - BHO: WTLHelper Object - (6D33B121-5C4C-4450-9D1F-7B67085CC199) - C: \ WINDOWS \ system32 \ ssqrq.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - c: \ program files \ google \ googletoolbar1.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll
O3 - Toolbar: McAfee VirusScan - (BA52B914-B692-46c4-B683-905236F6F655) - c: \ progra ~ 1 \ mcafee.com \ vso \ mcvsshl.dll
O4 - HKLM \ .. \ Run: [SoundMAXPnP] C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
O4 - HKLM \ .. \ Run: [IgfxTray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] C: \ Program Files \ Java \ j2re1.4.2_03 \ bin \ jusched.exe
O4 - HKLM \ .. \ Run: [DVDLauncher] "C: \ Program Files \ CyberLink \ PowerDVD \ DVDLauncher.exe"
O4 - HKLM \ .. \ Run: [ISUSPM Startup] "c: \ Program Files \ Fichiers communs \ InstallShield \ UpdateService \ isuspm.exe"-startup
O4 - HKLM \ .. \ Run: [ISUSScheduler] "C: \ Program Files \ Fichiers communs \ InstallShield \ UpdateService \ issch.exe"-start
O4 - HKLM \ .. \ Run: [DMXLauncher] C: \ Program Files \ Dell \ Media Experience \ DMXLauncher.exe
O4 - HKLM \ .. \ Run: [MimBoot] C: \ PROGRA ~ 1 \ MUSICM ~ 1 \ MUSICM ~ 3 \ mimboot.exe
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [HostManager] C: \ Program Files \ Common Files \ AOL \ 1140581663 \ ee \ AOLSoftware.exe
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [VSOCheckTask] "C: \ PROGRA ~ 1 \ McAfee.com \ VSO \ mcmnhdlr. exe "/ checktask
O4 - HKLM \ .. \ Run: [VirusScan Online] C: \ Program Files \ McAfee.com \ VSO \ mcvsshld.exe
O4 - HKLM \ .. \ Run: [OASClnt] C: \ Program Files \ McAfee.com \ VSO \ oasclnt.exe
O4 - HKLM \ .. \ Run: [MCAgentExe] c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mcagent.exe
O4 - HKLM \ .. \ Run: [MCUpdateExe] c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mcupdate.exe
O4 - HKCU \ .. \ Run: [DellSupport] "C: \ Program Files \ Dell Support \ DSAgnt.exe" / startup
O4 - HKCU \ .. \ Run: [OE_OEM] "C: \ Program Files \ Trend Micro \ Internet Security 12 \ TMAS_OE \ TMAS_OEMon.exe"
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files \ MSN Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [Aim6] "C: \ Program Files \ Common Files \ AOL \ Launch \ AOLLaunch.exe" / d locale = fr-FR ee://aol/imApp
O4 - HKCU \ .. \ Run: [PlaxoUpdate] C: \ Program Files \ Plaxo \ 2.6.2. 9 \ PlaxoHelper.exe-a
O4 - Global Startup: Adobe Gamma Loader.lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C: \ Program Files \ America Online 9.0 \ aoltray.exe
O4 - Global Startup: Digital Line Detect.lnk =?
O4 - Global Startup: TabUserW.exe.lnk = C: \ WINDOWS \ system32 \ WTablet \ TabUserW.exe
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ j2re1.4. 2_03 \ bin \ npjpi142_03.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ j2re1.4.2_03 \ bin \ npjpi142_03.dll
O9 - Extra button: Real.com - (CD67F990-D8E9-11d2-98FE-00C0F0318AFE) - C: \ WINDOWS \ system32 \ Shdocvw.dll
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O16 - DPF: (4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21) (McAfee. com Operating System Class) -- http://download.mcafee.com/molbin/share ... insctl.cab
O16 - DPF: (B38870E4-7ECB-40DA-8C6A-595F0A5519FF) (MsnMessengerSetupDownloadControl Class) -- http://messenger.msn.com/download/MsnMe ... loader.cab
O16 - DPF: (BCC0FF27-31D9-4614-A68E-C18E1ADA4389) (DwnldGroupMgr Class) -- http://download.mcafee.com/molbin/share ... cgdmgr.cab
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - "C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C: \ WINDOWS \ SYSTEM32 \ igfxdev.dll
O20 - Winlogon Notify: mlljj - mlljj. dll (file missing)
O20 - Winlogon Notify: pmkhe - pmkhe.dll (file missing)
O20 - Winlogon Notify: ssqrq - C: \ WINDOWS \ system32 \ ssqrq.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc - C: \ PROGRA ~ 1 \ Common ~ 1 \ AOL \ ACS \ AOLacsd.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: McAfee WSC Integration (mcdetect.exe) - McAfee, Inc - c: \ program files \ mcafee.com \ agent \ mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc - c: \ PROGRA ~ 1 \ mcafee.com \ vso \ mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C: \ PROGRA ~ 1 \ McAfee. com \ Agent \ mcupdmgr.exe
O23 - Service: Intel NCS Netservice (NetSvc) - Intel (R) Corporation - C: \ Program Files \ Intel \ PROSetWired \ NCS \ Sync \ Netsvc.exe
O23 - Service: TabletService - Wacom Technology, Corp - C: \ WINDOWS \ system32 \ Tablet.exe

Hey guys i am a noob ici avec le même problème...après que mon système de ralenti et est devenu instable IE i vérifié environ, et a trouvé un couple de processus appelé vaibaami.exe J'ai demandé autour et il semble que personne n'a entendu parler d'un tel processus...et il ya aussi quelques nouveaux trucs sous mon dossier system32...comme vaibaami.exe, slguard.dll, BASEMOD. dll et quelques autres applications...

voici mon fichier de log HijackThis après je me suis débarrassé de ce processus...il y avait un peu d'amélioration, mais reste encore des problèmes...


Logfile de HijackThis v1.99.1
Scan sauvé à 9:30:50 AM, le 4.16.2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
D: \ WINDOWS \ System32 \ smss. exe
D: \ WINDOWS \ system32 \ winlogon.exe
D: \ WINDOWS \ system32 \ services.exe
D: \ WINDOWS \ system32 \ lsass.exe
D: \ WINDOWS \ system32 \ svchost.exe
D: \ WINDOWS \ System32 \ svchost.exe
D: \ Program Files \ Common Files \ Symantec Shared \ ccsetmgr.exe
D: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr.exe
D: \ Program Files \ AlienGUIse \ wbload.exe
D: \ Program Files \ Common Files \ Symantec Shared \ sndsrvc.exe
D: \ Program Files \ Common Files \ Symantec Shared \ SPBBC \ SPBBCSvc. exe
D: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
D: \ WINDOWS \ system32 \ spoolsv.exe
D: \ Program Files \ Creative \ SBAudigy2ZS \ Surround Mixer \ CTSysVol.exe
D: \ Program Files \ Creative \ SBAudigy2ZS \ DVDAudio \ CTDVDDet.EXE
D: \ WINDOWS \ system32 \ CTHELPER.EXE
D: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe
D: \ Program Files \ MessengerPlus! 3 \ MsgPlus.exe
D: \ Program Files \ Logitech \ Video \ LogiTray.exe
D: \ Program Files \ MSN Messenger \ MsnMsgr. Exe
D: \ Program Files \ BitComet \ BitComet.exe
D: \ WINDOWS \ system32 \ plpoyfqi.exe
D: \ WINDOWS \ system32 \ CTSvcCDA.EXE
D: \ WINDOWS \ eHome \ ehrecvr.exe
D: \ WINDOWS \ eHome \ ehSched.exe
D: \ Program Files \ Norton AntiVirus \ NAVAPSVC.EXE
D: \ WINDOWS \ system32 \ LVComS.exe
D: \ Program Files \ Norton AntiVirus \ IWP \ NPFMntor.exe
D: \ WINDOWS \ system32 \ svchost.exe
D: \ Program Files \ Common Files \ Ulead Systems \ DVD \ ULCDRSvr.exe
D: \ WINDOWS \ system32 \ MsPMSPSv. exe
D: \ WINDOWS \ system32 \ DLLHost.exe tombait
D: \ Program Files \ DAEMON Tools \ daemon.exe
D: \ Program Files \ Common Files \ Symantec Shared \ Security Console \ NSCSRVCE.EXE
D: \ WINDOWS \ system32 \ Wuauclt.exe
D: \ Program Files \ Fichiers communs \ Microsoft Shared \ Source Engine \ Ose.exe
D: \ WINDOWS \ explorer.exe
D: \ Program Files \ Internet Explorer \ IEXPLORE.EXE
D: \ Program Files \ Internet Explorer \ iexplore.exe
D: \ Program Files \ Mozilla Firefox \ firefox. exe
D: \ Documents and Settings \ Arion \ Desktop \ a \ HijackThis.exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://runonce.msn.com/?v=msgrv75
O2 - BHO: CIEPl Object - (0612F71E-934B-4D92-B8E8-2E29EA78EB03) - D: \ WINDOWS \ system32 \ slguard.dll
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - D: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper. dll
O2 - BHO: NAV Helper - (A8F38D8D-E480-4D52-B7A2-731BB6995FDD) - D: \ Program Files \ Norton AntiVirus \ NavShExt.dll
O2 - BHO: AcroIEToolbarHelper Class - (AE7CD045-E861-484f-8273-0445EE161910) - D: \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - (47833539-D0C5-4125-9FA8-0819E2EAAC93) - D: \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient. dll
O3 - Toolbar: Norton AntiVirus - (C4069E3A-68F1-403E-B40E-20066696354B) - D: \ Program Files \ Norton AntiVirus \ NavShExt.dll
O4 - HKLM \ .. \ Run: [CTSysVol] D: \ Program Files \ Creative \ SBAudigy2ZS \ Surround Mixer \ CTSysVol.exe / r
O4 - HKLM \ .. \ Run: [SBDrvDet] D: \ Program Files \ Creative \ SB Drive Det \ SBDrvDet.exe / r
O4 - HKLM \ .. \ Run: [ccApp] "D: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe"
O4 - HKLM \ .. \ Run: [MessengerPlus3] "D: \ Program Files \ MessengerPlus! 3 \ MsgPlus.exe "
O4 - HKLM \ .. \ Run: [LogitechVideoRepair] D: \ Program Files \ Logitech \ Video \ ISStart.exe
O4 - HKCU \ .. \ Run: [MsnMsgr] "D: \ Program Files \ MSN Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [BitComet] "D: \ Program Files \ BitComet \ BitComet.exe"
O4 - Startup: Reboot.exe
O8 - Extra du menu contextuel: Convertir la cible au format Adobe PDF -- res://D : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIECapture. html
O8 - Extra du menu contextuel: Convertir la cible à des PDF -- res://D : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIEAppend.html
O8 - Extra du menu contextuel: Convertir les liens sélectionnés au format Adobe PDF -- res://D : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIECaptureSelLinks.html
O8 - Extra du menu contextuel: Convertir liens existants PDF -- res://D : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient. dll / AcroIEAppendSelLinks.html
O8 - Extra du menu contextuel: Convertir la sélection au format Adobe PDF -- res://D : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIECapture.html
O8 - Extra du menu contextuel: Convertir la sélection au PDF existant -- res://D : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIEAppend.html
O8 - Extra du menu contextuel: Convert to Adobe PDF -- res://D : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIECapture. html
O8 - Extra du menu contextuel: Convertir en PDF existant -- res://D : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIEAppend.html
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://D : \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - (2EAF5BB1-070F-11D3-9307-00C04FAE2D4F) - D: \ Program Files \ Microsoft ActiveSync \ INETREPL. DLL
O9 - Extra button: (no name) - (2EAF5BB2-070F-11D3-9307-00C04FAE2D4F) - D: \ Program Files \ Microsoft ActiveSync \ INETREPL.DLL
O9 - Extra "Outils" menuitem: Create Mobile Favorite...- (2EAF5BB2-070F-11D3-9307-00C04FAE2D4F) - D: \ Program Files \ Microsoft ActiveSync \ INETREPL.DLL
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - D: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR. DLL
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - D: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - D: \ Program Files \ Messenger \ msmsgs.exe
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - "D: \ PROGRA ~ 1 \ MSNMES ~ 1 \ msgrapp.dll" (file missing)
O20 - Winlogon Notify: slguard - D: \ WINDOWS \ SYSTEM32 \ slguard. dll
O20 - Winlogon Notify: WB - D: \ Program Files \ AlienGUIse \ fastload.dll
O21 - SSODL: IEFilter - (08428E54-845C-47BE-BBED-9417D380501F) - D: \ WINDOWS \ system32 \ IEFilter.dll
O23 - Service: Adobe LM Service - Adobe Systems - D: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - D: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr. exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - D: \ Program Files \ Common Files \ Symantec Shared \ ccsetmgr.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - D: \ WINDOWS \ system32 \ CTSvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc - D: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - D: \ Program Files \ Common Files \ Macromedia Shared \ Service \ Macromedia Licensing.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - D: \ Program Files \ Norton AntiVirus \ NAVAPSVC.EXE
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - D: \ Program Files \ Norton AntiVirus \ IWP \ NPFMntor. exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - D: \ Program Files \ Common Files \ Symantec Shared \ Security Console \ NSCSRVCE.EXE
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - D: \ Program Files \ Norton AntiVirus \ SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - D: \ Program Files \ Common Files \ Symantec Shared \ SNDSrvc. exe
O23 - Service: SPBBCSvc - Symantec Corporation - D: \ Program Files \ Common Files \ Symantec Shared \ SPBBC \ spbbcsvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - D: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc - D: \ Program Files \ Common Files \ Ulead Systems \ DVD \ ULCDRSvr.exe


D: \ Program Files \ Internet Explorer \ IEXPLORE. EXE
D: \ Program Files \ Internet Explorer \ iexplore.exe
Je ne pense pas que ces deux processus devraient être là depuis cause IE est devenu instable, j'ai changé de FireFox et je n'ai pas utilisé depuis IE...également O4 - Startup: Reboot.exe Je n'ai aucune idée de ce que c'est...

aussi de temps en temps l'explorateur montre une erreur de système pour IE, même si je ne suis pas l'utiliser.

ainsi...les gars aidez-moi...sa me noix...

bonjour tout le monde je viens de commencer récemment des problèmes avec la prise winlogon.exe haute utilisation de l'UC et le ralentissement de mon ordinateur de tout tremndously vraiment lent .. J'ai lu ce sujet et déjà reçu l'information à partir de mon ordinateur par la "highjack: outil. je vous remercie pour votre aide.
Savelog Le fichier se lit comme suit:


Logfile de HijackThis v1.99.1
Scan sauvé à 3:17:37 AM, le 6.2.2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6. 00 SP2 (6.00.2900.2180)

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Symantec \ LiveUpdate \ aluschedulersvc.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccsetmgr.exe
C: \ WINDOWS \ SmFkIFRvdWthbg \ command. exe
C: \ Program Files \ Norton AntiVirus \ NAVAPSVC.EXE
C: \ Program Files \ Norton AntiVirus \ IWP \ NPFMntor.exe
C: \ Program Files \ Common Files \ Symantec Shared \ SPBBC \ spbbcsvc.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
C: \ WINDOWS \ system32 \ ZoneLabs \ vsmon.exe
C: \ WINDOWS \ system32 \ BrmfRsmg.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr.exe
C: \ WINDOWS \ system32 \ rundll32. exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ WgaTray.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ Zone Labs \ ZoneAlarm \ zlclient.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe
C: \ Program Files \ Creative \ SBAudigy2 \ Surround Mixer \ CTSysVol.exe
C: \ Program Files \ Creative \ SBAudigy2 \ DVDAudio \ CTDVDDet.EXE
C: \ Program Files \ ATI Technologies \ ATI.ACE \ cli.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ WINDOWS \ CTHELPER. EXE
C: \ Program Files \ Adobe \ Photoshop Album Starter Edition \ 3.0 \ Apps \ apdproxy.exe
C: \ Program Files \ Java \ jre1.5.0_03 \ bin \ jusched.exe
C: \ WINDOWS \ system32 \ rundll32.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files \ ATI Multimedia \ main \ ATIDtct.EXE
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ ATI Technologies \ ATI.ACE \ cli.exe
C: \ Program Files \ ATI Technologies \ ATI.ACE \ cli. exe
C: \ Program Files \ Absolute Poker \ mainclient.exe
C: \ Program Files \ Absolute Poker \ aphh.exe
C: \ WINDOWS \ system32 \ taskmgr.exe
C: \ Program Files \ Mozilla Firefox \ firefox.exe
C: \ Program Files \ Absolute Poker \ tho.exe
C: \ Documents and Settings \ JT \ Bureau \ HijackThis \ HijackThis. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://searchbar.findthewebsiteyouneed.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://searchbar.findthewebsiteyouneed.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://searchbar.findthewebsiteyouneed.com
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.findthewebsiteyouneed.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://searchbar.findthewebsiteyouneed.com
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search , SearchAssistant = http://searchbar.findthewebsiteyouneed.com
R3 - URLSearchHook: (no name) - _ (C59A7CDE-BB15-C3EA-69F0-E67B47F62CCE) - (no file)
R3 - URLSearchHook: (no name) - _ (02EE5B04-F144-47BB-83FB-A60BD91B74A9) - (no file)
F2 - REG: system.ini: Shell = Explorer.exe, C: \ WINDOWS \ system32 \ eiwox.exe
F2 - REG: system.ini: Userinit = C: \ WINDOWS \ system32 \ userinit.exe, pedsifw.exe
O3 - Toolbar: Norton AntiVirus - (42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6) - C: \ Program Files \ Norton AntiVirus \ NavShExt. dll
O4 - HKLM \ .. \ Run: [Zone Labs Client] C: \ Program Files \ Zone Labs \ ZoneAlarm \ zlclient.exe
O4 - HKLM \ .. \ Run: [ccApp] "C: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe"
O4 - HKLM \ .. \ Run: [Symantec NetDriver Monitor] C: \ PROGRA ~ 1 \ SYMNET ~ 1 \ SNDMon.exe / Consumer
O4 - HKLM \ .. \ Run: [CTSysVol] C: \ Program Files \ Creative \ SBAudigy2 \ Surround Mixer \ CTSysVol.exe
O4 - HKLM \ .. \ Run: [CTDVDDet] C: \ Program Files \ Creative \ SBAudigy2 \ DVDAudio \ CTDVDDet.EXE
O4 - HKLM \ .. \ Run: [UpdReg] C: \ WINDOWS \ UpdReg.EXE
O4 - HKLM \ .. \ Run: [CTStartup] "C: \ Program Files \ Creative \ Splash Screen \ CTEaxSpl.EXE" / run
O4 - HKLM \ .. \ Run: [ATICCC] "C: \ Program Files \ ATI Technologies \ ATI.ACE \ cli.exe" runtime-Delay
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [CTHelper] CTHELPER. EXE
O4 - HKLM \ .. \ Run: [CTXFIREG] CTxfiReg.exe
O4 - HKLM \ .. \ Run: [Adobe Photo Downloader] "C: \ Program Files \ Adobe \ Photoshop Album Starter Edition \ 3.0 \ Apps \ apdproxy.exe"
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] C: \ Program Files \ Java \ jre1.5.0_03 \ bin \ jusched.exe
O4 - HKLM \ .. \ Run: [defender] C: \ \ defender22.exe
O4 - HKLM \ .. \ Run: [keyboard] C: \ \ keyboard22.exe
O4 - HKLM \ .. \ Run: [newname] C: \ \ newname22.exe
O4 - HKLM \ .. \ Run: [(3D-D1-1B-B8-ZN)] C: \ windows \ system32 \ pmdsregl.exe GID003
O4 - HKLM \ .. \ Run: [TheMonitor] C: \ WINDOWS \ SYSC00.exe
O4 - HKLM \ .. \ Run: [ms045984561216] C: \ WINDOWS \ ms045984561216.exe
O4 - HKLM \ .. \ Run: [New.net Startup] rundll32 C: \ PROGRA ~ 1 \ NEWDOT ~ 1 \ NEWDOT ~ 2.DLL, ClientStartup-s
O4 - HKLM \ .. \ Run: [nqjcxw] C: \ WINDOWS \ system32 \ nyfkxy.exe reg_run
O4 - HKLM \ .. \ Run: [w56caaf6.dll] RUNDLL32.EXE w56caaf6.dll, I2 0010b496056caaf6
O4 - HKLM \ .. \ Run: [RelevantKnowledge] c: \ windows \ system32 \ rlvknlg.exe-boot
O4 - HKLM \ .. \ Run: [UserFaultCheck]% systemroot% \ system32 \ dumprep 0-u
O4 - HKLM \ .. \ Run: [BrowserUpdateSched] C: \ WINDOWS \ system32 \ kwinnqez.exe GID003
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [ATI DeviceDetect] C: \ Program Files \ ATI Multimedia \ main \ ATIDtct.EXE
O4 - HKCU \ .. \ Run: [zqku] C: \ PROGRA ~ 1 \ Common ~ 1 \ zqku \ zqkum.exe
O4 - HKCU \ .. \ Run: [jnqdy] C: \ WINDOWS \ system32 \ nyfkxy.exe reg_run
O4 - Startup: BitTorrent.lnk =: C: \ Program Files \ BitTorrent \ bittorrent.exe
O4 - Startup: Zeno.lnk = C: \ WINDOWS \ system32 \ kwinnqez.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7.0 \ Reader \ reader_sl.exe
O9 - Extra button: ATI TV - (44226DFF-747E-4edc-B30C-78752E50CD0C) - C: \ Program Files \ ATI Multimedia \ tv \ EXPLBAR. DLL
O9 - Extra button: Titan Poker - (49783ED4-258D-4f9f-BE11-137C18D3E543) - C: \ Program Files \ Titan Poker \ casino.exe
O9 - Extra "Outils" menuitem: Titan Poker - (49783ED4-258D-4f9f-BE11-137C18D3E543) - C: \ Program Files \ Titan Poker \ casino.exe
O9 - Extra button: (no name) - (4ABF810A-F11D-4169-9D5F-7D274F2270A1) - C: \ WINDOWS \ system32 \ dmonwv.dll
O9 - Extra "Outils" menuitem: Java - (4ABF810A-F11D-4169-9D5F-7D274F2270A1) - C: \ WINDOWS \ system32 \ dmonwv. dll
O9 - Extra button: PokerTime Poker - (7220F1C9-B7E0-47a6-A0BD-D5B3940BCC79) - C: \ Program Files \ PokerTimeMPP \ MPPoker.exe
O9 - Extra button: bet365 Poker - (B1BA4A3F-1C95-497b-9F82-F8DA4A5C89DD) - C: \ Program Files \ bet365MPP \ MPPoker.exe
O9 - Extra button: PartyPoker.com - (B7FE5D70-9AA2-40F1-9C6B-12A255F085E1) - C: \ Program Files \ PartyGaming \ PartyPoker \ RunApp.exe
O9 - Extra "Outils" menuitem: PartyPoker. com - (B7FE5D70-9AA2-40F1-9C6B-12A255F085E1) - C: \ Program Files \ PartyGaming \ PartyPoker \ RunApp.exe
O9 - Extra button: Dream Poker - (D45D9D5F-4c95-B491-8B05-FA6B6C69CA82) - C: \ Program Files \ dreampokerMPP \ MPPoker.exe
O9 - Extra button: Absolute Poker - (EFFF8D47-D060-4108-B761-E8EC86622E56) - C: \ Documents and Settings \ All Users \ Start Menu \ Programs \ Absolute Poker \ Absolute Poker. lnk
O9 - Extra "Outils" menuitem: Absolute Poker - (EFFF8D47-D060-4108-B761-E8EC86622E56) - C: \ Documents and Settings \ All Users \ Start Menu \ Programs \ Absolute Poker \ Absolute Poker.lnk
O9 - Extra button: bodog Poker - (F47C1DB5-ED21-4dc1-853E-D1495792D4C5) - C: \ Program Files \ bodog Poker \ GameClient.exe
O9 - Extra button: Royal Vegas Poker - (FA4904B4-1FAF-4afd-886C-C19D2297BA62) - C: \ Program Files \ royalvegasMPP \ MPPoker. exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra button: Poker.com - (6FDD5236-C9F0-49ef-935D-385F5E21991A) - C: \ Program Files \ Poker.com \ Poker.exe (HKCU)
O10 - détourné par l'accès à Internet New.net
O10 - détournement d'accès à Internet par la Nouvelle. Net
O10 - détourné par l'accès à Internet New.net
O10 - détourné par l'accès à Internet New.net
O10 - détournement d'accès à Internet par la Nouvelle. Net
O15 - Trusted Zone: http://secure.bellerockgaming.com
O16 - DPF: (01010E00-5E80-11D8-9E86-0007E96C65AE) (SupportSoft SmartIssue) -- http://www.symantec.com/techsupp/asa/ctrl/tgctlsi.cab
O16 - DPF: (01012101-5E80-11D8-9E86-0007E96C65AE) (SupportSoft Script Runner Class) -- http://www.symantec.com/techsupp/asa/ctrl/tgctlsr.cab
O16 - DPF: (0A5FD7C5-A45C-49FC-ADB5-9952547D5715) (Creative Software AutoUpdate) -- http://www.creative.com/su/ocx/15015/CTSUEng.cab
O16 - DPF: (1F2F4C9E-6F09-47BC-970D-3C54734667FE) (LSSupCtl Class) -- http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) -- http://update.microsoft.com/windowsupda ... 6439129921
O16 - DPF: (CE28D5D2-60CF-4C7D-9FE8-0F47A3308078) (ActiveDataInfo Class) -- http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab
O16 - DPF: (F6ACF75C-C32C-447B-9BEF-46B766368D29) (Creative Software AutoUpdate Support Package) -- http://www.creative.com/su/ocx/15021/CTPID.cab
O20 - Winlogon Notify: Réinstallation - C: \ WINDOWS \ system32 \ m4nq0e55eh.dll
O20 - Winlogon Notify: WgaLogon - C: \ WINDOWS \ SYSTEM32 \ WgaLogon.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx. exe
O23 - Service: ATI Smart - Unknown owner - C: \ WINDOWS \ system32 \ ati2sgag.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C: \ Program Files \ Symantec \ LiveUpdate \ aluschedulersvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccPwdSvc. exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccsetmgr.exe
O23 - Service: Command Service (cmdService) - Unknown owner - C: \ WINDOWS \ SmFkIFRvdWthbg \ command.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C: \ PROGRA ~ 1 \ Symantec \ LIVEUP ~ 1 \ LUCOMS ~ 1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ NAVAPSVC.EXE
O23 - Service: Network Monitor - Unknown owner - C: \ Program Files \ Network Monitor \ Netmon. exe (file missing)
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ IWP \ NPFMntor.exe
O23 - Service: SAVScan - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C: \ PROGRA ~ 1 \ Common ~ 1 \ SYMANT ~ 1 \ SCRIPT ~ 1 \ SBServ. exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ sndsrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ SPBBC \ spbbcsvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc. exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C: \ WINDOWS \ system32 \ ZoneLabs \ vsmon.exe

je vous remercie encore pour votre aide

hey im nouvelle à ce forum et je tiens de quelqu'un pour m'aider sur cette question de la mine. Mon ordinateur fonctionne au coup il a été très lent si j'ai vérifié mon Gestionnaire des tâches de Windows pour voir ce processus en marche et où deux IEXPLORE.EXE leur marche à l'aide des plus de ma mémoire. Je pense que ses une sorte de spyware mais je ne peux pas me débarrasser de lui, j'ai même utilisé spybot et norton à la recherche, mais il n'a pas fait de différence.

Voici mon LOG HIJACK

MERCI DE VOTRE TEMPS


Logfile de HijackThis v1.99.1
Scan sauvé à 14:39:53, le 14/06/2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccsetmgr.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ Adobe \ Photoshop Album Starter Edition \ 3.0 \ Apps \ apdproxy.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Spyware Doctor \ swdoctor. exe
C: \ Program Files \ Sony Ericsson \ Mobile \ audevicemgr.exe
C: \ Program Files \ V-Stream Multimedia \ TV713X Utilities \ P3XRCtl.exe
C: \ PROGRA ~ 1 \ SONYER ~ 1 \ Mobile \ CONNEC ~ 1 \ CONNMN ~ 1.EXE
c: \ Program Files \ Intuwave Ltd \ Shared \ mRouterRunTime \ mRouterRuntime.exe
C: \ WINDOWS \ system32 \ Xterm \ dll32.exe
C: \ NVIDIA \ NetworkAccessManager \ Apache Group \ Apache2 \ bin \ apache.exe
C: \ Program Files \ Symantec \ Norton Ghost 2003 \ GhostStartService. exe
C: \ Program Files \ Fichiers communs \ Microsoft Shared \ VS7DEBUG \ Mdm.exe
C: \ Program Files \ Norton AntiVirus \ NAVAPSVC.EXE
C: \ NVIDIA \ NetworkAccessManager \ Apache Group \ Apache2 \ bin \ apache.exe
C: \ Program Files \ Norton AntiVirus \ AdvTools \ NPROTECT.EXE
C: \ NVIDIA \ NetworkAccessManager \ bin \ nSvcIp.exe
C: \ NVIDIA \ NetworkAccessManager \ bin \ nSvcLog.exe
C: \ Program Files \ Norton AntiVirus \ SAVScan.exe
C: \ Program Files \ Spyware Doctor \ sdhelp. exe
C: \ Program Files \ Alcohol Soft \ Alcohol 120 \ StarWind \ starwindservice.exe
C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ wscntfy.exe
c: \ progra ~ 1 \ Intern ~ 1 \ iexplore.exe
C: \ Program Files \ Azureus \ Azureus.exe
C: \ WINDOWS \ system32 \ notepad.exe
C: \ Documents and Settings \ Jitesh \ Desktop \ HijackThis. exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = environ et #058; blanc
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant = environ et #058; blanc
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Local Page = C: \ WINDOWS \ environ. htm
R1 - HKCU \ Software \ Microsoft \ Internet Connection Wizard, ShellNext = http://localhost:3476/cgi-bin/ncgir.exe?menu/index.html
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper.dll
O2 - BHO: PCTOOLS Site Guard - (5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdsg.dll
O2 - BHO: PCTOOLS Browser Monitor - (B56A7D7D-6927-48C8-A975-17DF180C71AC) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdpb. dll
O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar2.dll
O3 - Toolbar: Norton AntiVirus - (42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6) - C: \ Program Files \ Norton AntiVirus \ NavShExt.dll
O3 - Toolbar: & Save Flash - (4064EA35-578D-4073-A834-C96D82CBCF40) - C: \ Program Files \ Save Flash \ SaveFlash.dll
O4 - HKLM \ .. \ Run: [NeroCheck] C: \ WINDOWS \ system32 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [Adobe Photo Downloader] "C: \ Program Files \ Adobe \ Photoshop Album Starter Edition \ 3.0 \ Apps \ apdproxy.exe"
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [WinampAgent] C: \ Program Files \ Winamp \ winampa.exe
O4 - HKLM \ .. \ Run: [FileThirdTeamName] C: \ Documents and Settings \ All Users \ Application Data \ os pile troisième fichier \ MAGS DALE.exe
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [Spyware Doctor] "C: \ Program Files \ Spyware Doctor \ swdoctor.exe" / Q
O4 - HKCU \ .. \ Run: [Win32 Update] C: \ WINDOWS \ system32 \ dl32.exe
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files \ MSN Messenger \ msnmsgr.exe" / background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7.0 \ Reader \ reader_sl.exe
O4 - Global Startup: Phone Connection Monitor.lnk =?
O4 - Global Startup: TV713X Remote Control. lnk = C: \ Program Files \ V-Stream Multimedia \ TV713X Utilities \ P3XRCtl.exe
O8 - Extra du menu contextuel: & Google Search -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmsearch.html
O8 - Extra du menu contextuel: & Translate English Word -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra du menu contextuel: Backward Links -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmbacklinks. html
O8 - Extra du menu contextuel: Cached Snapshot of Page -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmcache.html
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O8 - Extra du menu contextuel: Pages similaires -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmsimilar.html
O8 - Extra du menu contextuel: Traduire la page en anglais -- res://c : \ program files \ google \ GoogleToolbar2. dll / cmtrans.html
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ WINDOWS \ system32 \ Msjava.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ WINDOWS \ system32 \ Msjava.dll
O9 - Extra button: Spyware Doctor - (2D663D1A-8670-49D9-A1A5-4C56B4E14E84) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdpb.dll
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR. DLL
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O15 - Trusted Zone: http://www.desitorrents.com
O15 - Trusted Zone: http://www.lanspirit.com
O16 - DPF: (8E0D4DE5-3180-4024-A327-4DFAD1796A8D) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary/Me ... b31267.cab
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - "C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ msgrapp.dll" (file missing)
O20 - Winlogon Notify: App Management - C: \ WINDOWS \ system32 \ en88l1lu1.dll (file missing)
O23 - Service: Ati HotKey Poller - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx. exe
O23 - Service: ATI Smart - Unknown owner - C: \ WINDOWS \ system32 \ ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccSetMgr. exe
O23 - Service: FireDaemon Service: dll32 (dll32) - Unknown owner - C: \ WINDOWS \ system32 \ Xterm \ FireDaemon.EXE
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C: \ NVIDIA \ NetworkAccessManager \ Apache Group \ Apache2 \ bin \ apache.exe "-k runservice (file missing)
O23 - Service: GhostStartService - Symantec Corporation - C: \ Program Files \ Symantec \ Norton Ghost 2003 \ GhostStartService. exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ navapsvc. exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ AdvTools \ NPROTECT.EXE
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C: \ NVIDIA \ NetworkAccessManager \ bin \ nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - Unknown owner - C: \ NVIDIA \ NetworkAccessManager \ bin \ nSvcLog.exe
O23 - Service: SAVScan - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ SAVScan. exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C: \ PROGRA ~ 1 \ Common ~ 1 \ SYMANT ~ 1 \ SCRIPT ~ 1 \ SBServ.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C: \ Program Files \ Spyware Doctor \ sdhelp.exe
O23 - Service: Service FireDaemon: smcss (smcss) - Unknown owner - C: \ WINDOWS \ system32 \ Xterm \ FireDaemon. EXE
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C: \ Program Files \ Alcohol Soft \ Alcohol 120 \ StarWind \ starwindservice.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C: \ Program Files \ RealVNC \ VNC4 \ WinVNC4.exe "-service (file missing)

Ok je ne sais pas comment vous vraiment faire cela, mais sa fait une semaine et mon ordinateur été slooooww en utilisant 100% de son utilisation et la quasi-totalité de son fichier de page Usage.

Logfile de HijackThis v1.99.1
Scan sauvé à 1:22:05 PM, le 6.18.2006
Plate-forme: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services. exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe
C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe
C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgemc.exe
C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgfwsrv.exe
C: \ Program Files \ Softex \ OmniPass \ OPXPApp.exe
C: \ WINDOWS \ Explorer.EXE
C: \ windows \ system \ hpsysdrv.exe
C: \ WINDOWS \ System32 \ hkcmd.exe
C: \ HP \ KBD \ KBD. EXE
C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ybrwicon.exe
C: \ PROGRA ~ 1 \ Yahoo! \ YOP \ yop.exe
C: \ Program Files \ Yahoo! \ Antivirus \ CAVTray.exe
C: \ Program Files \ Yahoo! \ Antivirus \ cavrid.exe
C: \ Program Files \ HP \ hpcoretech \ hpcmpmgr.exe
C: \ Program Files \ Hewlett-Packard \ HP Software Update \ HPWuSchd.exe
C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe
C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ycommon.exe
C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe
C: \ Program Files \ AIM \ but. exe
C: \ WINDOWS \ System32 \ irssyncd.exe
C: \ Program Files \ Compaq Connections \ 1940576 \ Program \ BackWeb-1940576.exe
C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgw.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Documents and Settings \ Owner.DECEMBER2005.000 \ Desktop \ vcleaner.exe
C: \ PROGRA ~ 1 \ WINZIP \ winzip32.exe
C: \ Program Files \ Hijack Ce \ HijackThis. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://qus8.hpwis.com/
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://srch-qus8.hpwis.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://red.clientapps.yahoo.com/customi ... ch/ie.html
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://verizon.yahoo.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ SearchURL, (Default) = http://red.clientapps.yahoo.com/customi ... .yahoo.com
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = localhost
O2 - BHO: Yahoo! Toolbar Helper - (02478D38-C3F9-4EFB-9B51-7695ECA05670) - C: \ Program Files \ Yahoo! \ Compagnon \ Installs \ cpn5 \ yt.dll
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 5.0 \ Reader \ ActiveX \ AcroIEHelper.ocx
O2 - BHO: web compresseur - (23FB5ADD-DA37-4a40-9FC0-B0E2384CDE92) - C: \ WINDOWS \ System32 \ nsh1A5. dll (file missing)
O2 - BHO: (no name) - (243B17DE-77C7-46BF-B94B-0B5F309A0E64) - C: \ Program Files \ Microsoft Money \ System \ mnyside.dll
O2 - BHO: UberButton Class - (5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897) - C: \ Program Files \ Yahoo! \ Common \ yiesrvc.dll
O2 - BHO: YahooTaggedBM Class - (65D886A2-7CA7-479B-BB95-14D1EFB7946A) - C: \ Program Files \ Yahoo! \ Common \ YIeTagBm.dll
O2 - BHO: RieMon Class - (70F6A776-579A-4C95-BA88-134253907752) - C: \ WINDOWS \ System32 \ irsmykcw. dll
O2 - BHO: Related Page - (9A9C9B69-F908-4AAB-8D0C-10EA8997F37E) - C: \ WINDOWS \ System32 \ WinNB57.dll (file missing)
O2 - BHO: SidebarAutoLaunch Class - (F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D) - C: \ Program Files \ Yahoo! \ Browser \ YSidebarIEBHO.dll
O2 - BHO: (no name) - (FDD3B846-8D59-4ffb-8758-209B6AD74ACC) - (no file)
O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Compagnon \ Installs \ cpn5 \ yt. dll
O3 - Toolbar: & Radio - (8E718888-423F-11D2-876E-00A0C9082467) - C: \ WINDOWS \ System32 \ msdxm.ocx
O3 - Toolbar: Related Page - (9A9C9B68-F908-4AAB-8D0C-10EA8997F37E) - C: \ WINDOWS \ System32 \ WinNB57.dll (file missing)
O4 - HKLM \ .. \ Run: [hpsysdrv] c: \ windows \ system \ hpsysdrv.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ WINDOWS \ System32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [KBD] C: \ HP \ KBD \ KBD.EXE
O4 - HKLM \ .. \ Run: [StorageGuard] "C: \ Program Files \ Common Files \ Sonic \ Update Manager \ sgtray.exe" / r
O4 - HKLM \ .. \ Run: [Recguard] C: \ WINDOWS \ SMINST \ RECGUARD.EXE
O4 - HKLM \ .. \ Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM \ .. \ Run: [PS2] C: \ WINDOWS \ system32 \ ps2.exe
O4 - HKLM \ .. \ Run: [YBrowser] C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ybrwicon.exe
O4 - HKLM \ .. \ Run: [YOP] C: \ PROGRA ~ 1 \ Yahoo! \ YOP \ yop.exe / autostart
O4 - HKLM \ .. \ Run: [CaAvTray] "C: \ Program Files \ Yahoo! \ Antivirus \ CAVTray. exe "
O4 - HKLM \ .. \ Run: [CAVRID] "C: \ Program Files \ Yahoo! \ Antivirus \ cavrid.exe"
O4 - HKLM \ .. \ Run: [HP Component Manager] "C: \ Program Files \ HP \ hpcoretech \ hpcmpmgr.exe"
O4 - HKLM \ .. \ Run: [HP Software Update] "C: \ Program Files \ Hewlett-Packard \ HP Software Update \ HPWuSchd.exe"
O4 - HKLM \ .. \ Run: [HPDJ Taskbar Utility] C: \ WINDOWS \ System32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb09.exe
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [DAEMON Tools] "C: \ Program Files \ DAEMON Tools \ daemon.exe"-lang 1033
O4 - HKLM \ .. \ Run: [IMJPMIG8.1] "C: \ WINDOWS \ IME \ imjp8_1 \ IMJPMIG.EXE" / Spoil / RemAdvDef / Migration32
O4 - HKLM \ .. \ Run: [MSPY2002] C: \ WINDOWS \ System32 \ IME \ PINTLGNT \ ImScInst.exe / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ System32 \ IME \ TINTLGNT \ TINTSETP. EXE / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ System32 \ IME \ TINTLGNT \ TINTSETP.EXE / IMEName
O4 - HKLM \ .. \ Run: [eTrustPPAP] "C: \ Program Files \ CA \ eTrust Internet Security Suite \ eTrust PestPatrol Anti-Spyware \ PPActiveDetection.exe"
O4 - HKLM \ .. \ Run: [pop06apelt] C: \ WINDOWS \ thiselt.exe
O4 - HKLM \ .. \ Run: [ms0682748-20723] C: \ WINDOWS \ ms0682748-20723.exe
O4 - HKLM \ .. \ Run: [AVG7_CC] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe / STARTUP
O4 - HKCU \ .. \ Run: [msnmsgr] "C: \ Program Files \ MSN Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [AIM] C: \ Program Files \ AIM \ aim.exe-cnetwait.odl
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [irssyncd] C: \ WINDOWS \ System32 \ irssyncd.exe
O4 - Startup: Psx Autoplay.lnk = C: \ Program Files \ Delta \ Delta.exe
O4 - Global Startup: Compaq Connections. lnk = C: \ Program Files \ Compaq Connections \ 1940576 \ Program \ BackWeb-1940576.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ LDMConf.exe
O4 - Global Startup: Quicken Scheduled Updates.lnk = C: \ Program Files \ Quicken \ bagent.exe
O8 - Extra du menu contextuel: Blocage de l'accès au document par l'adresse AliveProxy - C: \ Program Files \ AIS AliveProxy Server \ aisBlockDocument. html
O8 - Extra du menu contextuel: Blocage de l'accès à l'adresse de l'image par AliveProxy - C: \ Program Files \ AIS AliveProxy Server \ aisBlockImage.html
O8 - Extra du menu contextuel: Blocage de l'accès à l'adresse du lien par AliveProxy - C: \ Program Files \ AIS AliveProxy Server \ aisBlockLink.html
O8 - Extra du menu contextuel: Couper les adresses proxy de texte sélectionné par AliveProxy - C: \ Program Files \ AIS AliveProxy Server \ aisCutProxyFromSelectedTåxt.html
O9 - Extra button: Verizon Yahoo! Services - (5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897) - C: \ Program Files \ Yahoo! \ Common \ yiesrvc.dll
O9 - Extra button: AIM - (AC9E2541-2814-11d5-BC6D-00B0D0A1DE45) - C: \ Program Files \ AIM \ aim.exe
O9 - Extra button: Related - (c95fe080-8f5d-11d2-a20b-00aa003c157a) - C: \ WINDOWS \ web \ related.htm
O9 - Extra "Outils" menuitem: Show & Related Links - (c95fe080-8f5d-11d2-a20b-00aa003c157a) - C: \ WINDOWS \ web \ liés. htm
O9 - Extra button: MoneySide - (E023F504-0C5A-4750-A1E7-A9046DEA8A21) - C: \ Program Files \ Microsoft Money \ System \ mnyside.dll
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ avgfwafu.dll
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ avgfwafu.dll
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ avgfwafu.dll
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ avgfwafu.dll
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ avgfwafu. dll
O12 - Plugin for. Spop: C: \ Program Files \ Internet Explorer \ Plugins \ NPDocBox.dll
O15 - Trusted Zone: *. elitemediagroup.net
O15 - Trusted Zone: *. media-motor.net
O15 - Trusted Zone: *. mmohsix. com
O15 - Trusted Zone: http://click.getmirar.com (HKLM)
O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://awbeta.net-nucleus.com (HKLM)
O16 - DPF: (09F1ADAC-76D8-4D0F-99A5-5C907DADB988) -- http://systemdoctor.com/download/2006/c ... nstall.cab
O16 - DPF: (42B1C70D-9823-41F7-810A-682DA294D868) - ms-its: mhtml: file: / / c: \ nesunee.mht! Http://adgate.info/zscript/yea.chm::/recife . exe
O16 - DPF: (4EC8E993-47F5-32C1-A07A-5B0574655AD4) (WXcom Class) -- http://us.dl1.yimg.com/download.yahoo.c ... urrent.cab
O16 - DPF: (5526B4C6-63D6-41A1-9783-0FABF529859A) (mm06ocx. mm06ocxf) -- http://cabs.elitemediagroup.net/cabs/mediaview.cab
O16 - DPF: (56336BCB-3D8A-11D6-A00B-0050DA18DE71) (RdxIE Class) -- http://software-dl.real.com/287d8a14b2c ... xIE601.cab
O16 - DPF: (5ED80217-570B-4DA9-BF44-BE107C0EC166) (Windows Live Safety Center Base Module) -- https://scan.safety.live.com/resource/d ... se3401.cab
O16 - DPF: (8A0DCBDB-6E20-489C-9041-C1E8A0352E75) (Mirar_Dummy_ATS1 Class) -- http://awbeta.net-nucleus.com/FIX/WinATS.cab
O16 - DPF: (CC32D4D8-2A0B-4CEB-B105-C9B968379105) (CGameManagerCtrl Object) -- https://disney.go.com/games/downloads/g ... anager.cab
O16 - DPF: (DECEAAA2-370A-49BB-9362-68C3A58DDC62) (SAIX) -- http://static.zangocash.com/cab/Zango/i ... 79c57bb948
http://h30043.www3.hp.com/hpdj/en/check/qdiagh.cab?326
O20 - Winlogon Notify: igfxcui - C: \ WINDOWS \ SYSTEM32 \ igfxsrvc.dll
O20 - Winlogon Notify: OPXPGina - C: \ Program Files \ Softex \ OmniPass \ opxpgina.dll
O20 - Winlogon Notify: winzlo32 - winzlo32.dll (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgemc.exe
O23 - Service: AVG Firewall (AVGFwSrv) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgfwsrv.exe
O23 - Service: CAISafe - Computer Associates International, Inc - C: \ Program Files \ Yahoo! \ Antivirus \ ISafe. exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: NTSVCMGR - Unknown owner - C: \ WINDOWS \ SYSTEM \ DRIVER \ ntsrv.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ System32 \ nvsvc32.exe
O23 - Service: Softex OmniPass Service (omniserv) - Unknown owner - C: \ Program Files \ Softex \ OmniPass \ Omniserv. exe
O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc - C: \ Program Files \ Yahoo! \ Antivirus \ VetMsg.exe
O23 - Service: YPCService - Yahoo! Inc - C: \ WINDOWS \ system32 \ YPCSER ~ 1.EXE

Comment puis-je savoir laquelle de se débarrasser de?

Actuellement, mon CPU Usage varie de 10% à 80%

Mon Internet Explorer utilise le plus l'usage.

Salut je suis ici avec le même problème


voici mon log HijackThis

Logfile de HijackThis v1.99.1
Scan sauvé à 18:36:17, le 27/07/2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgamsvr.exe
C: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgupsvc.exe
C: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgemc.exe
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ RUNDLL32.EXE
C: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgcc.exe
C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ jusched.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ WINDOWS \ System32 \ svchost. exe
C: \ Program Files \ SAGEM \ SAGEM F @ st 800-840 \ dslmon.exe
C: \ WINDOWS \ system32 \ OSK.exe
C: \ WINDOWS \ system32 \ msswchx.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Internet Explorer \ IEXPLORE.EXE
C: \ WINDOWS \ system32 \ taskmgr.exe
C: \ DOCUME ~ 1 \ Paul \ LOCALS ~ 1 \ Temp \ Rar $ EX00.228 \ HijackThis. exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ ssv.dll
O4 - HKLM \ .. \ Run: [adiras] adiras.exe
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install
O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvMcTray. dll, NvTaskbarInit
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ system32 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [AVG7_CC] C: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgcc.exe / STARTUP
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ jusched.exe
O4 - HKLM \ .. \ Run: [CaISSDT] "C: \ Program Files \ CA \ eTrust Internet Security Suite \ caissdt.exe"
O4 - HKLM \ .. \ Run: [eTrustPPAP] "C: \ Program Files \ CA \ eTrust Internet Security Suite \ eTrust PestPatrol Anti-Spyware \ PPActiveDetection.exe"
O4 - HKLM \ .. \ RunOnce: [eISS_licreg] "C: \ Program Files \ CA \ eTrust Internet Security Suite \ licreg.exe" / s
O4 - HKCU \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files \ MSN Messenger \ msnmsgr.exe" / background
O4 - Global Startup: DSLMON. lnk = C: \ Program Files \ SAGEM \ SAGEM F @ st 800-840 \ dslmon.exe
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ ssv.dll
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ (BA5DC33C-BB24-44EA-8CAB-10943A1E2CC4): NameServer = 80.225.252.58 80.225.252.50
O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1. DLL
O21 - SSODL: WPDShServiceObj - (AAA288BA-9A4C-45B0-95D7-94D524869DB5) - C: \ WINDOWS \ system32 \ WPDShServiceObj.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgemc. exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ WINDOWS \ system32 \ RUNDLL32.EXE
C: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgcc.exe
C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ jusched.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ WINDOWS \ System32 \ svchost. exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ ssv.dll
O4 - HKLM \ .. \ Run: [adiras] adiras.exe
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install
O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvMcTray. exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32.exe

Voici mon log:



Logfile de HijackThis v1.99.1
Scan sauvé à 1:31:07 AM, le 23/08/2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost. exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccsetmgr.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccProxy.exe
C: \ Program Files \ Common Files \ Symantec Shared \ sndsrvc.exe
C: \ Program Files \ Common Files \ Symantec Shared \ SPBBC \ spbbcsvc.exe
C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Symantec \ LiveUpdate \ ALUSchedulerSvc. exe
C: \ WINDOWS \ eHome \ ehrecvr.exe
C: \ WINDOWS \ eHome \ ehSched.exe
C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
C: \ Program Files \ Fichiers communs \ Microsoft Shared \ VS7DEBUG \ Mdm.exe
C: \ Program Files \ Norton Internet Security \ Norton AntiVirus \ NAVAPSVC.EXE
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ Program Files \ Alcohol Soft \ Alcohol 120 \ StarWind \ starwindservice.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ DLLHost.exe tombait
C: \ WINDOWS \ ehome \ ehtray. exe
C: \ WINDOWS \ system32 \ Rundll32.exe
C: \ WINDOWS \ eHome \ ehmsas.exe
C: \ WINDOWS \ CNYHKey.exe
C: \ WINDOWS \ Dit.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe
C: \ WINDOWS \ system32 \ RUNDLL32.EXE
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Spybot - Search & Destroy \ TeaTimer.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Common Files \ Symantec Shared \ Security Console \ NSCSRVCE.EXE
C: \ WINDOWS \ system32 \ dpnsvr.exe
C: \ WINDOWS \ explorateur. exe
C: \ PROGRA ~ 1 \ MESSEN ~ 1 \ Msmsgs.exe
C: \ DOCUME ~ 1 \ Neon \ LOCALS ~ 1 \ Temp \ Rar $ EX00.641 \ HijackThis.exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.ca/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://www.cicero.ca/
O1 - Hosts: 127.255.255.255 serial.alcohol-soft.com
O1 - Hosts: 127.255.255.255 http://www. alcool-soft.com
O1 - Hosts: 127.255.255.255 images.alcohol-soft.com
O3 - Toolbar: Norton Internet Security 2006 - (0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7) - C: \ Program Files \ Common Files \ Symantec Shared \ AdBlocking \ NISShExt.dll
O3 - Toolbar: Norton AntiVirus - (C4069E3A-68F1-403E-B40E-20066696354B) - C: \ Program Files \ Norton Internet Security \ Norton AntiVirus \ NavShExt.dll
O4 - HKLM \ .. \ Run: [ehTray] C: \ WINDOWS \ ehome \ ehtray.exe
O4 - HKLM \ .. \ Run: [Cmaudio] RunDll32 cmicnfg.cpl, CMICtrlWnd
O4 - HKLM \ .. \ Run: [CHotkey] mHotkey.exe
O4 - HKLM \ .. \ Run: [ledpointer] CNYHKey.exe
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ system32 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [Dit] Dit.exe
O4 - HKLM \ .. \ Run: [ccApp] "C: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe"
O4 - HKLM \ .. \ Run: [URLLSTCK.exe] C: \ Program Files \ Norton Internet Security \ UrlLstCk.exe
O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvMcTray.dll, NvTaskbarInit
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [SpybotSD TeaTimer] C: \ Program Files \ Spybot - Search & Destroy \ TeaTimer.exe
O4 - HKCU \ .. \ Run: [BitTorrent] "C: \ Program Files \ BitTorrent \ bittorrent. exe "- force_start_minimized
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ ssv.dll
O9 - Extra button: Real.com - (CD67F990-D8E9-11d2-98FE-00C0F0318AFE) - C: \ WINDOWS \ system32 \ Shdocvw.dll
O9 - Extra button: @ C: \ Program Files \ Messenger \ Msgslang. dll, -61144 - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: @ C: \ Program Files \ Messenger \ Msgslang.dll, -61144 - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
Ø14 - IERESET.INF: START_PAGE_URL = http://www.cicero.ca/
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - "C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ msgrapp. dll "(file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C: \ Program Files \ Symantec \ LiveUpdate \ aluschedulersvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C: \ Program Files \ Norton Internet Security \ ccPwdSvc. exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccsetmgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C: \ Program Files \ Norton Internet Security \ comHost. exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C: \ PROGRA ~ 1 \ Symantec \ LIVEUP ~ 1 \ LUCOMS ~ 1. EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C: \ Program Files \ Norton Internet Security \ Norton AntiVirus \ NAVAPSVC.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ Security Console \ NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32. exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C: \ Program Files \ Norton Internet Security \ Norton AntiVirus \ SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ sndsrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ SPBBC \ SPBBCSvc. exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C: \ Program Files \ Alcohol Soft \ Alcohol 120 \ StarWind \ starwindservice.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe

Aussi, le programme qui est monopolisant le CPU est explorer.exe i tout savoir sur elle et ce qu'elle fait, mais il est soit en dessous de 4% ou 50% et ne change pas. qui semble étrange pour moi. parfois quand je le fermer et le relancer, il tire jusqu'à 50% et je dois le redémarrer à nouveau pour que cela fonctionne. L'aide est très appréciée, ive été à ce travail pendant environ une semaine de ne availe, merci!

Je me demande si quelqu'un se penche sur l'un des postes précédents .. Personne n'a posté une réponse à l'une de ces HJT logs .. Quoi qu'il en soit la chance de votre Votre va obtenir une réponse.

Bien que le fichier que je pense que vous devez vérifier est celle-ci:
C: \ WINDOWS \ system32 \ dpnsvr.exe
Certaines pages dire une partie de ses fenêtres, d'autres pas, mais Ive jamais remarqué, il fonctionne sur mon ordinateur. Vous pouvez le soumettre à http://www.virustotal.com et de voir si l'un des scanners de virus dire c'est un virus.
Autres que celui qu'elle n'a pas un accès automatique à moins que son aide d'une méthode sournoise de son qui ne fonctionne que parce qu'un autre programme a débuté pour une raison,

Divers lieux dire que ce sont des méchants:
O1 - Hosts: 127.255.255.255 serial.alcohol-soft.com
O1 - Hosts: 127.255.255.255 http://www. alcool-soft.com
O1 - Hosts: 127.255.255.255 images.alcohol-soft.com

Personnellement Im pas si sûr, aucun d'eux ne fournit aucune information sur le pourquoi et Id être enclins à les garder car vous utilisez Alcohol 120%
Ils sont à vous. Il n'y a pas de dommage à votre ordinateur ou à l'alcool si vous supprimez-les. Le fichier hosts est juste de permettre à l'ordinateur pour trouver ce que l'adresse IP d'un serveur sans avoir à passer par le serveur DNS.

Autre que celui de son propre ensemble!

ok merci! ill faire.

HI I ont été récemment CPU AYANT UN PROBLÈME. Everytime I START MY COMPUTER mon CPU est à 100% ET ON PREND TOUT TEMPS et fonctionne très très lentement. I CAN'T OPEN EVENT PROGRAMMES WHATS SO EVER. CAN ANYONE HELP S'IL VOUS PLAÎT. VOICI UNE COPIE DE MON RAPPORT HijackThis. Cordialement.

Logfile de HijackThis v1.99.1
Scan sauvé à 10:56:39 PM, le 9.30.2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900. 2180)

Running processes:
L: \ WINDOWS \ System32 \ smss.exe
L: \ WINDOWS \ system32 \ winlogon.exe
L: \ WINDOWS \ system32 \ services.exe
L: \ WINDOWS \ system32 \ lsass.exe
L: \ WINDOWS \ system32 \ Ati2evxx.exe
L: \ WINDOWS \ system32 \ svchost.exe
L: \ WINDOWS \ System32 \ svchost.exe
L: \ WINDOWS \ system32 \ spoolsv.exe
L: \ WINDOWS \ system32 \ Ati2evxx.exe
L: \ WINDOWS \ Explorer.EXE
L: \ Program Files \ ATI Technologies \ ATI.ACE \ cli.exe
L: \ WINDOWS \ ALCXMNTR. EXE
L: \ WINDOWS \ system32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb09.exe
L: \ Program Files \ HP \ hpcoretech \ hpcmpmgr.exe
L: \ Program Files \ HP \ HP Software Update \ HPWuSchd2.exe
L: \ Program Files \ Java \ jre1.5.0_07 \ bin \ jusched.exe
L: \ Program Files \ Adobe \ Acrobat 7.0 \ Distillr \ Acrotray.exe
L: \ Program Files \ Google \ Gmail Notifier \ gnotify.exe
L: \ Program Files \ PCSecurityShield \ ShieldAntivirus \ vrmonnt.exe
L: \ Program Files \ PCSecurityShield \ ShieldAntivirus \ Vrres. exe
L: \ Program Files \ PCSecurityShield \ The Shield Firewall \ FireWall.exe
L: \ WINDOWS \ system32 \ rundll32.exe
L: \ Program Files \ ATI Technologies \ ATI HYDRAVISION \ HydraDM.exe
L: \ Program Files \ MSN Messenger \ msnmsgr.exe
L: \ Program Files \ ATI Multimedia \ RemCtrl \ ATIRW.exe
L: \ Program Files \ ATI Multimedia \ main \ launchpd.exe
L: \ Program Files \ ATI Multimedia \ main \ ATIDtct.EXE
L: \ PROGRA ~ 1 \ Sony \ SONICS ~ 1 \ SsAAD.exe
L: \ Program Files \ Messenger \ msmsgs. exe
L: \ PROGRA ~ 1 \ AVANTB ~ 1 \ avant.exe
l: \ progra ~ 1 \ avantb ~ 1 \ avant.exe
L: \ WINDOWS \ system32 \ svchost.exe
L: \ WINDOWS \ system32 \ rundll32.exe
L: \ Program Files \ HP \ Digital Imaging \ bin \ hpqtra08.exe
L: \ Program Files \ PCSecurityShield \ ShieldAntivirus \ vrmonsvc.exe
L: \ WINDOWS \ system32 \ HPZipm12.exe
L: \ WINDOWS \ system32 \ svchost.exe
L: \ WINDOWS \ system32 \ cool.exe
L: \ Program Files \ Internet Explorer \ iexplore. exe
L: \ Program Files \ PCSecurityShield \ The Shield Firewall \ getnettime.exe
L: \ DOCUME ~ 1 \ Montys ~ 1 \ LOCALS ~ 1 \ Temp \ Rar $ EX04.188 \ HijackThis.exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
O3 - Toolbar: Adobe PDF - (47833539-D0C5-4125-9FA8-0819E2EAAC93) - L: \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll
O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - L: \ Program Files \ Yahoo! \ Companion \ Installs \ CPN \ yt. dll
O4 - HKLM \ .. \ Run: [ATICCC] "C: \ Program Files \ ATI Technologies \ ATI.ACE \ cli.exe" runtime
O4 - HKLM \ .. \ Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM \ .. \ Run: [HPDJ Taskbar Utility] L: \ WINDOWS \ system32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb09.exe
O4 - HKLM \ .. \ Run: [HP Component Manager] "C: \ Program Files \ HP \ hpcoretech \ hpcmpmgr.exe"
O4 - HKLM \ .. \ Run: [DXDllRegExe] dxdllreg.exe
O4 - HKLM \ .. \ Run: [HP Software Update] L: \ Program Files \ HP \ HP Software Update \ HPWuSchd2.exe
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] L: \ Program Files \ Java \ jre1.5.0_07 \ bin \ jusched.exe
O4 - HKLM \ .. \ Run: [SecondDeleteEggsList] L: \ Documents and Settings \ All Users \ Application Data \ Global Free Deuxième Supprimer \ mapi htm.exe
O4 - HKLM \ .. \ Run: [Acrobat Assistant 7.0] "C: \ Program Files \ Adobe \ Acrobat 7.0 \ Distillr \ Acrotray.exe"
O4 - HKLM \ .. \ Run: [NeroFilterCheck] L: \ WINDOWS \ system32 \ NeroCheck. exe
O4 - HKLM \ .. \ Run: [(0228e555-4f9c-4e35-a3ec-b109a192b4c2)] L: \ Program Files \ Google \ Gmail Notifier \ gnotify.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [Vrmon] L: \ Program Files \ PCSecurityShield \ ShieldAntivirus \ Main vrmonnt.exe
O4 - HKLM \ .. \ Run: [VrSchedule] L: \ Program Files \ PCSecurityShield \ ShieldAntivirus \ Vrres.exe
O4 - HKLM \ .. \ Run: [dwStart] L: \ Program Files \ PCSecurityShield \ The Shield Firewall \ FireWall.exe
O4 - HKLM \ .. \ Run: [xzifmxh.dll] L: \ WINDOWS \ system32 \ rundll32.exe G: \ WINDOWS \ system32 \ xzifmxh.dll, qmqfxwd
O4 - HKLM \ .. \ Run: [HydraVisionDesktopManager] L: \ Program Files \ ATI Technologies \ ATI HYDRAVISION \ HydraDM.exe
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files \ MSN Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [ATI Remote Control] L: \ Program Files \ ATI Multimedia \ RemCtrl \ ATIRW. exe
O4 - HKCU \ .. \ Run: [ATI Launchpad] "C: \ Program Files \ ATI Multimedia \ main \ launchpd.exe"
O4 - HKCU \ .. \ Run: [ATI DeviceDetect] L: \ Program Files \ ATI Multimedia \ main \ ATIDtct.EXE
O4 - HKCU \ .. \ Run: [SsAAD.exe] L: \ PROGRA ~ 1 \ Sony \ SONICS ~ 1 \ SsAAD.exe
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [répondre byte] L: \ DOCUME ~ 1 \ Montys ~ 1 \ APPLIC ~ 1 \ BLAHRO ~ 1 \ dentthistons. exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk =?
O4 - Global Startup: Adobe Gamma Loader.lnk = L: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = L: \ Program Files \ Adobe \ Acrobat 7.0 \ Reader \ reader_sl.exe
O4 - Global Startup: ATI CATALYST System Tray.lnk = L: \ Program Files \ ATI Technologies \ ATI.ACE \ CLI.exe
O4 - Global Startup: HP Digital Imaging Monitor. lnk = L: \ Program Files \ HP \ Digital Imaging \ bin \ hpqtra08.exe
O8 - Extra du menu contextuel: Convertir la cible au format Adobe PDF -- res://L : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIECapture.html
O8 - Extra du menu contextuel: Convertir la cible à des PDF -- res://L : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIEAppend. html
O8 - Extra du menu contextuel: Convertir les liens sélectionnés au format Adobe PDF -- res://L : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIECaptureSelLinks.html
O8 - Extra du menu contextuel: Convertir liens existants PDF -- res://L : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIEAppendSelLinks.html
O8 - Extra du menu contextuel: Convertir la sélection au format Adobe PDF -- res://L : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient. dll / AcroIECapture.html
O8 - Extra du menu contextuel: Convertir la sélection au PDF existant -- res://L : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIEAppend.html
O8 - Extra contexte menu: Convert to Adobe PDF -- res://L : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIECapture.html
O8 - Extra du menu contextuel: Convertir en PDF existant -- res://L : \ Program Files \ Adobe \ Acrobat 7.0 \ Acrobat \ AcroIEFavClient.dll / AcroIEAppend. html
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://L : \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - L: \ Program Files \ Java \ jre1.5.0_07 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - L: \ Program Files \ Java \ jre1.5.0_07 \ bin \ ssv. dll
O9 - Extra button: ATI TV - (44226DFF-747E-4edc-B30C-78752E50CD0C) - blanc (fichier manquant)
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - L: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - L: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - L: \ Program Files \ Messenger \ msmsgs. exe
O10 - Broken Internet d'accès en raison de LSP fournisseur farlsp. dll manquant
O16 - DPF: (2EB1E425-74DC-4DC0-A9E1-03A4C852E1F2) (CPlayFirstTriJinxControl Object) -- http://atlantis9.bigfishgames.com/Reef/ ... 0.0.55.cab
O16 - DPF: (3FE16C08-D6A7-4133-84FC-D5BFB4F7D886) (WebGameLoader Class) -- http://atlantis8.bigfishgames.com/Reef/ ... Loader.cab
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://update.microsoft.com/microsoftup ... 1919648312
O16 - DPF: (D54160C3-DB7B-4534-9B65-190EE4A9C7F7) (SproutLauncherCtrl Class) -- http://atlantis8.bigfishgames.com/Reef/ ... uncher.cab
O16 - DPF: (DBA8E419-0D5F-439B-A3CC-D01C768D9B51) (DVCDownloaderControl Object) -- http://atlantis9.bigfishgames.com/Reef/ ... ontrol.cab
O16 - DPF: (DF780F87-FF2B-4DF8-92D0-73DB16A1543A) -- http://atlantis7.bigfishgames.com/Reef/ ... er_v10.cab
O16 - DPF: (EF148DBB-5B6D-4130-B2A1-661571E86260) (Playtime Games Launcher) -- http://atlantis9.bigfishgames.com/Reef/ ... uncher.cab
O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - L: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - L: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O20 - AppInit_DLLs: 92. dll
O23 - Service: Adobe LM Service - Adobe Systems - L: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc - L: \ WINDOWS \ system32 \ Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - L: \ WINDOWS \ system32 \ ati2sgag.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - L: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT. exe
O23 - Service: MSCSPTISRV - Sony Corporation - L: \ Program Files \ Common Files \ Sony Shared \ AVLib \ MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - L: \ Program Files \ Common Files \ Sony Shared \ AVLib \ PACSPTISVR.exe
O23 - Service: pml Driver HPZ12 - HP - L: \ WINDOWS \ system32 \ HPZipm12.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - L: \ Program Files \ Common Files \ Sony Shared \ AVLib \ SPTISRV. exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - L: \ Program Files \ Common Files \ Sony Shared \ AVLib \ SSScsiSV.exe
O23 - Service: ViRobot Expert Monitoring (vrmonsvc) - HAURI - L: \ Program Files \ PCSecurityShield \ ShieldAntivirus \ vrmonsvc.exe

Je suis le même problème que Daiden mes processus sont en cours d'exécution à 100%, particulièrement iexplorer. Constatant également le statut de client sur une base régulière fonctionne à 100%, puis une réaction en chaîne que je commence à quitter les processus. Toute aide sera appréciée ici est une copie de mon fichier de log Hijack:

Logfile de HijackThis v1.99.1
Scan sauvé à 9:24:41 PM, le 11.29.2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730. 0011)

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Sygate \ SPF \ smc.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ Common Files \ Symantec Shared \ ccsetmgr.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr. exe
C: \ Program Files \ Common Files \ Symantec Shared \ sndsrvc.exe
C: \ Program Files \ Common Files \ Symantec Shared \ SPBBC \ spbbcsvc.exe
C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Symantec \ LiveUpdate \ aluschedulersvc.exe
C: \ PROGRA ~ 1 \ VCOM \ Fix-It \ mxtask.exe
C: \ EPOAgent \ naimas32.exe
C: \ Program Files \ Norton AntiVirus \ NAVAPSVC.EXE
C: \ Program Files \ Norton AntiVirus \ IWP \ NPFMntor. exe
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ PROGRA ~ 1 \ VCOM \ Fix-It \ mxtask.exe
C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
C: \ EPOAgent \ naimag32.exe
C: \ Program Files \ Roxio \ Easy Media Creator 7 \ Drag to Disc \ DrgToDsc.exe
C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ jusched.exe
C: \ Program Files \ Hewlett-Packard \ Toolbox2.0 \ Apache Tomcat 4.0 \ webapps \ Toolbox \ StatusClient \ statusclient.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe
C: \ Program Files \ DVD43 \ dvd43_tray. exe
C: \ Program Files \ QuickTime \ qttask.exe
C: \ WINDOWS \ system32 \ RUNDLL32.EXE
C: \ Program Files \ Quick GPS Connection Data Download Manager \ DesktopLtoManager.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files \ Webroot \ Spy Sweeper \ spysweeper.exe
C: \ PROGRA ~ 1 \ MICROS ~ 3 \ Wcescomm.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Adobe \ Acrobat 6.0 \ Distillr \ acrotray.exe
C: \ Program Files \ Logitech \ Harmony Remote \ harmonyClient. exe
C: \ Program Files \ Hewlett-Packard \ Toolbox2.0 \ Javasoft \ JRE \ 1.3.1 \ bin \ javaw.exe
C: \ PROGRA ~ 1 \ MICROS ~ 3 \ rapimgr.exe
C: \ Program Files \ Common Files \ Symantec Shared \ Security Console \ NSCSRVCE.EXE
C: \ WINDOWS \ system32 \ taskmgr.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ DOCUME ~ 1 \ Marc \ LOCALS ~ 1 \ Temp \ Répertoire temporaire 1 pour HijackThis [1]. Zip \ HijackThis. exe

R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Local Page = \ blank.htm
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Local Page =
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = localhost
F2 - REG: système. ini: Userinit = C: \ WINDOWS \ system32 \ Userinit.exe
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 6.0 \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: My Global Search Bar BHO - (37B85A21-692B-4205-9CAD-2626E4993404) - C: \ Program Files \ MyGlobalSearch \ bar \ 1.bin \ MGSBAR.DLL
O2 - BHO: (no name) - (53707962-6F74-2D53-2644-206D7942484F) - C: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper. dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ ssv.dll
O2 - BHO: NAV Helper - (A8F38D8D-E480-4D52-B7A2-731BB6995FDD) - C: \ Program Files \ Norton AntiVirus \ NavShExt.dll
O2 - BHO: AcroIEToolbarHelper Class - (AE7CD045-E861-484f-8273-0445EE161910) - C: \ Program Files \ Adobe \ Acrobat 6.0 \ Acrobat \ AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - (47833539-D0C5-4125-9FA8-0819E2EAAC93) - C: \ Program Files \ Adobe \ Acrobat 6. 0 \ Acrobat \ AcroIEFavClient.dll
O3 - Toolbar: Norton AntiVirus - (C4069E3A-68F1-403E-B40E-20066696354B) - C: \ Program Files \ Norton AntiVirus \ NavShExt.dll
O3 - Toolbar: i & Gagné Co-Pilot - (CA0B9B71-C2AF-11D3-B376-0800460222F0) - (no file)
O3 - Toolbar: My Global Search Bar - (37B85A29-692B-4205-9CAD-2626E4993404) - C: \ Program Files \ MyGlobalSearch \ bar \ 1.bin \ MGSBAR.DLL
O4 - HKLM \ .. \ Run: [SoundMAXPnP] C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ system32 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [NaimAgent_UI] C: \ EPOAgent \ naimag32.exe
O4 - HKLM \ .. \ Run: [RoxioDragToDisc] "C: \ Program Files \ Roxio \ Easy Media Creator 7 \ Drag to Disc \ DrgToDsc.exe"
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ jusched.exe
O4 - HKLM \ .. \ Run: [StatusClient] C: \ Program Files \ Hewlett-Packard \ Toolbox2.0 \ Apache Tomcat 4.0 \ webapps \ Toolbox \ StatusClient \ StatusClient. exe / auto
O4 - HKLM \ .. \ Run: [TomcatStartup] C: \ Program Files \ Hewlett-Packard \ Toolbox2.0 \ hpbpsttp.exe
O4 - HKLM \ .. \ Run: [SmcService] C: \ PROGRA ~ 1 \ Sygate \ SPF \ smc.exe-startgui
O4 - HKLM \ .. \ Run: [ccApp] "C: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe"
O4 - HKLM \ .. \ Run: [DVD43] C: \ Program Files \ DVD43 \ dvd43_tray.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [NvCplDaemon] Rundll32. EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install
O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvMcTray.dll, NvTaskbarInit
O4 - HKLM \ .. \ Run: [Lto Manager] "C: \ Program Files \ Quick GPS Connection Data Download Manager \ DesktopLtoManager.exe"
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [LDM] \ Program \
O4 - HKCU \ .. \ Run: [SpySweeper] C: \ Program Files \ Webroot \ Spy Sweeper \ spysweeper.exe / 0
O4 - HKCU \ .. \ Run: [H / PC Connection Agent] "C: \ PROGRA ~ 1 \ MICROS ~ 3 \ Wcescomm.exe"
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - Global Startup: Acrobat Assistant.lnk = C: \ Program Files \ Adobe \ Acrobat 6.0 \ Distillr \ acrotray.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ LDMConf. exe
O4 - Global Startup: Logitech Harmony Remote.lnk = C: \ Program Files \ Logitech \ Harmony Remote \ harmonyClient.exe
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_06 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5. 0_06 \ bin \ ssv.dll
O9 - Extra button: Create Mobile Favorite - (2EAF5BB1-070F-11D3-9307-00C04FAE2D4F) - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ INetRepl.dll
O9 - Extra button: (no name) - (2EAF5BB2-070F-11D3-9307-00C04FAE2D4F) - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ INetRepl.dll
O9 - Extra "Outils" menuitem: Create Mobile Favorite...- (2EAF5BB2-070F-11D3-9307-00C04FAE2D4F) - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ INetRepl. dll
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag. exe (file missing)
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O11 - Options group: [INTERNATIONAL] International *
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?LinkID=39204
O16 - DPF: (2BC66F54-93A8-11D3-BEB6-00105AA9B6AE) (Symantec AntiVirus scanner) -- http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) -- http://v5.windowsupdate.microsoft.com/v ... 5502806952
O16 - DPF: (644E432F-49D3-41A1-8DD5-E099162EEEC5) (Symantec RuFSI Utility Class) -- http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O16 - DPF: (70522FA2-4656-11D5 -B0E9-0050DAC24E8F) (Iwon progressiste Counter) -- http://cc.iwon.com/ct/pm3/iWonPMSetup_12_1,0,2,5.exe
O18 - Protocol: asp - (8D32BA61-D15b-11D4-894B-000000000000) - C: \ WINDOWS \ system32 \ hsppp.dll
O18 - Protocol: bw +0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw 0 s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bw-0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bw00s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bw20 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bw30s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bw50 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bw60s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bw80 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bw90s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwb0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwc0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwe0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwf0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - (9462A756-7B47-47BC-8C80-C34B9B80B32B) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwg0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwi0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwj0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Programmes \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwl0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwm0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwo0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwp0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwr0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bws0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwu0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwv0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwx0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: bwy0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480. dll
O18 - Protocol: hsp - (8D32BA61-D15b-11D4-894B-000000000000) - C: \ WINDOWS \ system32 \ hsppp.dll
O18 - Protocol: offline-8876480 - (EC0DE6F8-F10F-4196-B5D0-3544CBEC5A52) - C: \ Program Files \ Logitech \ Desktop Messenger \ 8876480 \ Program \ BWPlugProtocol-8876480.dll
O18 - Protocol: x-asp - (8D32BA61-D15b-11D4-894B-000000000000) - C: \ WINDOWS \ system32 \ hsppp.dll
O18 - Protocol: x-cNote - (8D32BA61-D15b-11D4-894B-000000000000) - C: \ WINDOWS \ system32 \ hsppp. dll
O18 - Protocol: x-hsp - (8D32BA61-D15b-11D4-894B-000000000000) - C: \ WINDOWS \ system32 \ hsppp.dll
O18 - Protocol: x-mem1 - (C3719F83-7EF8-4BA0-89B0-3360C7AFB7CC) - C: \ WINDOWS \ system32 \ wowctl2.dll
O18 - Protocol: x-zip - (8D32BA61-D15b-11D4-894B-000000000000) - C: \ WINDOWS \ system32 \ hsppp.dll
O18 - Protocol: zip - (8D32BA61-D15b-11D4-894B-000000000000) - C: \ WINDOWS \ system32 \ hsppp.dll
O20 - Winlogon Notify: WgaLogon - C: \ WINDOWS \ SYSTEM32 \ WgaLogon. dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C: \ Program Files \ Symantec \ LiveUpdate \ aluschedulersvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccSetMgr. exe
O23 - Service: Fix-It Task Manager - V Communications, Inc - C: \ PROGRA ~ 1 \ VCOM \ Fix-It \ mxtask.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C: \ PROGRA ~ 1 \ Symantec \ LIVEUP ~ 1 \ LUCOMS ~ 1.EXE
O23 - Service: NAI ePolicy Orchestrator Agent (NAIMAGENT32) - Network Associates, Inc - C: \ EPOAgent \ naimas32. exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ NAVAPSVC.EXE
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ IWP \ NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ Security Console \ NSCSRVCE. EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32.exe
O23 - Service: pml Driver HPZ12 - HP - C: \ WINDOWS \ system32 \ HPZipm12.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C: \ Program Files \ Norton AntiVirus \ SAVScan.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc - C: \ Program Files \ Sygate \ SPF \ smc. exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ sndsrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ SPBBC \ spbbcsvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe

Salut,
Désolé de le faire (je vais me présenter plus tard - la promesse)

I, comme la plupart, aller googler si quelque chose a me perplexe pendant quelques heures. Je me suis retrouvé sur ce fil et se sont sentis obligés de signer et de la voix, un avis (yep, femelle)

Je ne peux pas croire que le montant de "1 affiche" de dire salut, voici mon log, puis attend de quelqu'un pour résoudre ce problème. Admin Personnellement, je pense que votre patience dépasse de loin la mienne, chapeau à vous tous - vous avez fait un excellent travail.

Désolé encore pour tomber dans univited............

HI Chukkawobbly (c'est un grand nick BTW

Cela semble être tous partie de la nouvelle maladie d'internet... Je veux dire à ceux qui ne regardent pas de réponses eux-mêmes avant de demander de l'aide... Ses vraiment simple à frapper la recherche, ou peut-être parcourir les matières collantes doit avoir été vu avant tous ces journaux peut avoir été affichés...

Un utilisateur seul linux ces jours-ci, im (ehhem.. rien ne dire pas sur mon incursion dans BSD) si j'à la fois à avec windows problèmes finalement j'ai décidé de ne pas donner plus de mon temps à aider les « l'ennemi »

Les administrateurs et les membres ici sont les plus patient n'importe où... Aucun flambe ou quoi que ce soit... Ses grands. Ce fil plutôt prouve l'ancienne disant « aide vient plus facile à ceux qui s'aider eux-mêmes »...Comme il est assez évident si les conseils dans le lien suivant ne sont pas les postes seront ignorés (à moins que certains membres aimablement a quelque temps libres et se sent comme quelques postes, probablement pour grâce peu ou pas.
Toutes les affiches un-answered précédentes devraient regarder http://www.ozzu.com/mswindows-forum/steps-take-before-posting-your-hijack-this-log-t34568.html comme je le fais quand quelqu'un m'arrive avec une machine doze virer... Fonctionne à chaque fois.

En ayant le même niveau élevé de l'utilisation de l'UC problème. J'ai besoin d'aide le plus tôt possible. Im pouces de cogner ma tête sur le mur
merci d'avance

P4 2.6GHz
1 Go de ram
Radeon Pro 1650X
SB Live! Valeur carte son

voici mon fichier de log:

Logfile de HijackThis v1.99.1
Scan sauvé à 7:44:10 PM, le 1.15.2009
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730. 0011)

Running processes:
I: \ WINDOWS \ System32 \ smss.exe
I: \ WINDOWS \ system32 \ winlogon.exe
I: \ WINDOWS \ system32 \ services.exe
I: \ WINDOWS \ system32 \ lsass.exe
I: \ WINDOWS \ system32 \ svchost.exe
I: \ WINDOWS \ System32 \ svchost.exe
I: \ WINDOWS \ system32 \ svchost.exe
I: \ Program Files \ ALWIL Software \ Avast4 \ aswupdsv.exe
I: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
I: \ WINDOWS \ Explorer.EXE
I: \ WINDOWS \ system32 \ spoolsv.exe
I: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp. exe
I: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe
I: \ WINDOWS \ system32 \ ctfmon.exe
I: \ WINDOWS \ system32 \ MsPMSPSv.exe
I: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
I: \ Program Files \ Windows Media Player \ wmplayer.exe
I: \ Program Files \ HijackThis \ HijackThis. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
O2 - BHO: (no name) - (109BE732-8F8C-49D4-A3F4-FEDCAC7F0A25) - I: \ WINDOWS \ system32 \ ljJASliF.dll (file missing)
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - I: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker. NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - (no file)
O2 - BHO: Click-to-Call BHO - (5C255C8A-E604-49b4-9D64-90988571CECB) - I: \ Program Files \ Windows Live \ Messenger \ wlchtc.dll
O2 - BHO: (no name) - (6066518D-0FB2-4E29-A52F-DFA1095B7F9A) - (no file)
O2 - BHO: (no name) - (66844E0D-616C-4AE0-BAF6-91038BDE1512) - (no file)
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - I: \ Program Files \ Java \ jre1.6.0_01 \ bin \ ssv. dll
O2 - BHO: DVA Gate - (7A6FD945-14B0-41F8-84FB-74DEF17528BB) - (no file)
O2 - BHO: (no name) - (8022611E-06CB-4C46-9264-B8928F6B35BD) - (no file)
O2 - BHO: (no name) - (8071E65A-3F56-4426-8372-8667CD213057) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - I: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin. dll
O2 - BHO: (no name) - (937326DD-BE9C-480C-B341-CA5F93900D1C) - (no file)
O2 - BHO: (no name) - (A6807262-1D7A-44AB-947B-23B71E97915C) - (no file)
O2 - BHO: (no name) - (B7DEF42E-1F5B-4582-95FD-C3CD415B4DB7) - (no file)
O2 - BHO: (no name) - (CB2A9278-9B87-42E0-899F-8593F5D1F482) - (no file)
O2 - BHO: (no name) - (CF46BFB3-2ACC-441b-B82B-36B9562C7FF1) - (no file)
O2 - BHO: (no name) - (D2376FB3-3D0D-414D-83AA-3AD6AD6B111F) - (no file)
O2 - BHO: (no name) - (E509AE7B-3D6E -4B97-9E32-CFD3697C7C51) - (no file)
O2 - BHO: 382077 helper - (F0A035EC-C865-4E47-BF73-B17741DD5232) - (no file)
O3 - Toolbar: dpevflbg - (B21EAD36-EC0C-4B82-B102-1AB20B481977) - (no file)
O4 - HKLM \ .. \ Run: [avast!] I: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
O4 - HKLM \ .. \ Run: [TkBellExe] "I: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ RunServices: [Printer Driver] svphost.exe
O4 - HKCU \ .. \ Run: [ctfmon. exe] I: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [Uniblue RegistryBooster 2009] I: \ Program Files \ Uniblue \ RegistryBooster \ RegistryBooster.exe / S
O4 - HKCU \ .. \ Run: [DAEMON Tools] "I: \ Program Files \ DAEMON Tools \ daemon.exe"-lang 1033
O6 - HKCU \ Software \ Policies \ Microsoft \ Internet Explorer \ Control Panel présent
O8 - Extra du menu contextuel: & Download with & DAP - I: \ Program Files \ DAP \ dapextie. htm
O8 - Extra du menu contextuel: Télécharger tout avec & DAP - I: \ Program Files \ DAP \ dapextie2.htm
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - I: \ Program Files \ Java \ jre1.6.0_01 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - I: \ Program Files \ Java \ jre1.6.0_01 \ bin \ ssv. dll
O9 - Extra button: Blog This - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - I: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra "Outils" menuitem: Ce Blog & Windows Live Writer - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - I: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: BitComet - (D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A) -- res://I : \ Program Files \ BitComet \ tools \ BitCometBHO_1.2.6.26. dll/206 (file missing)
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - I: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - I: \ Program Files \ Messenger \ msmsgs.exe
O10 - Unknown file dans Winsock LSP: i: \ program files \ bonjour \ mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International *
O16 - DPF: (051D0E35-F4E3-4C8D-B411-AB0875F4C683) (anark client 4. 0 ActiveX Control) -- http://install.anark.com/client/version ... Client.cab
O16 - DPF: (1EF9F042-C2EB-4293-8213-474CAEEF531D) (TmHcmsX Control) -- http://www.trendsecure.com/framework/co ... mHcmsX.CAB
O16 - DPF: (32305793-C19A-48E7-AD2F-D87FF7B264A4) (TenebrilSpywareScanner Control) -- http://download.tenebril.com/pub/bin/sc ... canner.ocx
O16 - DPF: (5F8469B4-B055-49DD-83F7-62B522420ECC) (Facebook Photo Uploader Control) -- http://upload.facebook.com/controls/Fac ... loader.cab
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://www.update.microsoft.com/microso ... 9467112406
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ (932B38DE-5896-4E1E-ACC4-BC14D70D5BA1): NameServer = 85.255.115.235,85.255.112.11
O17 - HKLM \ System \ CS6 \ Services \ Tcpip \ Parameters: NameServer = 85.255.115.235 85.255.112.11
O17 - HKLM \ System \ CS6 \ Services \ Tcpip \ .. \ (76ECDAD0-72D3-4989-B815-E7D96495A0DC): NameServer = 85.255.115.235,85.255.112.11
O17 - HKLM \ System \ CS8 \ Services \ Tcpip \ Parameters: NameServer = 85.255.115.235 85.255.112.11
O17 - HKLM \ System \ CS8 \ Services \ Tcpip \ .. \ (76ECDAD0-72D3-4989-B815-E7D96495A0DC): NameServer = 85. 255.115.235,85.255.112.11
O17 - HKLM \ System \ CS9 \ Services \ Tcpip \ Parameters: NameServer = 85.255.115.235 85.255.112.11
O17 - HKLM \ System \ CS9 \ Services \ Tcpip \ .. \ (76ECDAD0-72D3-4989-B815-E7D96495A0DC): NameServer = 85.255.115.235,85.255.112.11
O17 - HKLM \ System \ CS10 \ Services \ Tcpip \ Parameters: NameServer = 85.255.115.235 85.255.112.11
O17 - HKLM \ System \ CS10 \ Services \ Tcpip \ .. \ (76ECDAD0-72D3-4989-B815-E7D96495A0DC): NameServer = 85.255.115.235,85.255.112. 11
O17 - HKLM \ System \ CS11 \ Services \ Tcpip \ Parameters: NameServer = 85.255.115.235 85.255.112.11
O17 - HKLM \ System \ CS12 \ Services \ Tcpip \ Parameters: NameServer = 85.255.115.235 85.255.112.11
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ Parameters: NameServer = 85.255.115.235 85.255.112.11
O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - I: \ PROGRA ~ 1 \ WI1F86 ~ 1 \ MESSEN ~ 1 \ MSGRAP ~ 1. DLL
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - I: \ PROGRA ~ 1 \ WI1F86 ~ 1 \ MESSEN ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: wlmailhtml - (03C514A3-1EFB-4856-9F99-10D7BE1653C0) - I: \ Program Files \ Windows Live \ Mail \ mailcomm.dll
O20 - Winlogon Notify: awtqr - I: \ WINDOWS \
O20 - Winlogon Notify: hggfdde - hggfdde.dll (file missing)
O20 - Winlogon Notify: ljJASliF - ljJASliF.dll (file missing)
O20 - Winlogon Notify: NavLogon - I: \ WINDOWS \ system32 \ NavLogon. dll
O20 - Winlogon Notify: sstqp - I: \ WINDOWS \
O20 - Winlogon Notify: urqrssr - urqrssr.dll (file missing)
O20 - Winlogon Notify: wvUoLfFy - I: \ WINDOWS \
O21 - SSODL: WPDShServiceObj - (AAA288BA-9A4C-45B0-95D7-94D524869DB5) - I: \ WINDOWS \ system32 \ WPDShServiceObj. dll
O21 - SSODL: vadokmxt - (32188B9C-3DB8-4F07-8763-27348FFE828E) - (no file)
O21 - SSODL: wdpoefan - (A8AC1AA1-7072-4C65-BF7E-E874138C7ED3) - (no file)
O21 - SSODL: RunOnceCD - (22dbfb50-acb2-4274-83eb-495bf3631f8c) - (no file)
O23 - Service: avast! iAVS4 Control Service (aswupdsv) - ALWIL Software - I: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv.exe
O23 - Service: ATI Smart - Unknown owner - I: \ WINDOWS \ system32 \ ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - I: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - I: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe "/ service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - I: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe "/ service (file missing)
O23 - Service: iPod Service - Apple Inc - I: \ Program Files \ iPod \ bin \ iPodService. exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - I: \ WINDOWS \ system32 \ nvsvc32.exe

S'il vous plaît aide concernant l'utilisation du processeur élevé.
Voici mon log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:58:05, le 05/03/2010
Plate-forme: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C: \ Program Files \ Prevx \ prevx.exe
C: \ Windows \ system32 \ Dwm.exe
C: \ Windows \ system32 \ taskeng.exe
C: \ Program Files \ Logitech \ DellDock \ DellDock.exe
C: \ Windows \ system32 \ conime. exe
C: \ Windows \ system32 \ igfxsrvc.exe
C: \ Windows \ ehome \ ehmsas.exe
C: \ Program Files \ Fingerprint Reader Suite \ psqltray.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Windows \ system32 \ taskmgr.exe
C: \ Program Files \ Alwil Software \ BtStackServer.exe
C: \ Windows \ explorer.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Windows \ system32 \ NOTEPAD.EXE
C: \ Windows \ system32 \ Macromed \ Flash \ FlashUtil10d. exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Windows \ system32 \ searchfilterhost.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe


R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = about & #058; vierge

R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Local Page =
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Window Title = Internet Explorer fourni par Dell
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, AutoConfigURL = http://127.0.0.1:9000/proxy.pac
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
R3 - BHO: (no name) - (0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2) - (no file)
- O1 Hosts::: 1 localhost
O2 - BHO: Yahoo! Toolbar Helper - (02478D38-C3F9-4EFB-9B51-7695ECA05670) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ cpn \ YT. dll
O2 - BHO: Ask Search Assistant BHO - (0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2) - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim. dll
O2 - BHO: Skype add-on (mastermind) - (22BF413B-C6D2-4d91-82A9-A0F997BA588C) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin.dll
O2 - BHO: WormRadar IESiteBlocker.NavFilter - (3CA2F312-6F6E-4b53-A66E-4E65E497C8C0) - C: \ Program Files \ AVG \ AVG8 \ avgssie.dll
O2 - BHO: Groove GFS Browser Helper - (72853161-30C5-4D22-B7F9-0BBC1D38A37E) - C: \ Program Files \ Microsoft Office \ Office12 \ GrooveShellExtensions. dll
O2 - BHO: AVG Security Toolbar - (A057A204-BACC-4D26-9990-79A187E2698E) - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ AVGTOO ~ 1.DLL
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - C: \ Program Files \ Google \ googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - (AE7CD045-E861-484F-8273-0445EE161910) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEFavClient. dll
O2 - BHO: Google Toolbar Helper - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 2.0.301.7164 \ swg.dll
O2 - BHO: Browser Address Error Redirector - (CA6319C0-31B7-401E-A518-A07C3DB8F777) - C: \ Program Files \ BAE \ BAE.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435B-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv. dll
O2 - BHO: Ask Toolbar Helper - (F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA) - (no file)
O2 - BHO: SmartSelect - (F4971EE7-DAA0-4053-9964-665D8EE6A077) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEFavClient.dll
O2 - BHO: SingleInstance Class - (FDAD4DA1-61A2-4FD8-9C17-86F7AC245081) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ cpn \ YTSingleInstance.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11d4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ googletoolbar2. dll
- O3 Toolbar: Ask Toolbar - (F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA) - (no file)
- O3 Toolbar: AVG Security Toolbar - (A057A204-BACC-4D26-9990-79A187E2698E) - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ AVGTOO ~ 1.DLL
- O3 Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ cpn \ yt.dll
- O3 Toolbar: Adobe PDF - (47833539-D0C5-4125-9FA8-0819E2EAAC93) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEFavClient.dll
O4 - HKLM \ .. \ Run: [Windows Defender]% ProgramFiles% \ Windows Defender \ ashDisp.exe
O4 - HKLM \ .. \ Run: [eCenter] C: \ Dell \ E-Center \ EULALauncher.exe
O4 - HKLM \ .. \ Run: [avast!] C: \ Program Files \ QuickTime \ ashDisp.exe
O4 - HKLM \ .. \ Run: [avast!] C: \ Windows \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ Windows \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ Windows \ system32 \ NvTaskbarInit
O4 - HKLM \ .. \ Run: [PSQLLauncher] "C: \ Program Files \ Fingerprint Reader Suite \ Launcher.exe" / startup
O4 - HKLM \ .. \ Run: [Google Desktop Search] "C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe" / startup
O4 - HKLM \ .. \ Run: [dscactivate] "C: \ Program Files \ Dell Support Center \ gs_agent \ custom \ dsca.exe"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ Dell \ MediaDirect \ PCMService.exe"
O4 - HKLM \ .. \ Run: [AVG8_TRAY] C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgtray. exe
O4 - HKLM \ .. \ Run: [Launcher] "C: \ Program Files \ Microsoft Office \ Office12 \ msnmsgr.exe"
O4 - HKLM \ .. \ Run: [Alcmtr]% ProgramFiles% \ SigmaTel \ C-Major Audio \ WDM \ sttray.exe
O4 - HKLM \ .. \ Run: [avast!] "C: \ Program Files \ Common Files \ Java \ Java Update \ ashDisp.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [Malwarebytes Anti-Malware (reboot)] "C: \ Program Files \ Malwarebytes Anti-Malware \ mbam.exe" / runcleanupscript
O4 - HKCU \ .. \ Run: [Skype] "C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Windows \ ehome \ ehTray.exe
O4 - HKCU \ .. \ Run: [Google Update] "C: \ Users \ Ankit Arora \ AppData \ Local \ Google \ Update \ googleupdate.exe" / c
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows Media Player \ WMPNSCFG. exe
O4 - HKCU \ .. \ Run: [ActionVoip] "C: \ Program Files \ ActionVoip \ ActionVoip \ actionvoip.exe"-nosplash-minimisées
O4 - HKCU \ .. \ Run: [HKCU] C: \ Windows \ System32 \ syslog \ manager.exe système
O4 - HKCU \ .. \ Run: [HotKeysCmds] "C: \ Program Files \ DAP \ Dap.exe" / STARTUP
O4 - HKCU \ .. \ Run: [Registry Cleaner Scheduler] "C: \ Program Files \ CleanMyPC \ Registry Cleaner \ RCHelper.exe" / startup
O4 - HKCU \ .. \ Run: [userinit] C: \ Users \ Ankit Arora \ AppData \ Roaming \ msrzjo32.exe
O4 - HKLM \ .. \ Policies \ Explorer \ Run: [politiques] "C: \ Windows \ System32 \ syslog \ manager.exe système
O4 - HKCU \ .. \ Policies \ Explorer \ Run: [politiques] "C: \ Windows \ System32 \ syslog \ manager.exe système
O4 - HKLM \ S-1-5-19 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ CTFMON.EXE (User SERVICE LOCAL)
O4 - HKLM \ S-1-5-19 \ .. \ Run: [WindowsWelcomeCenter] oobefldr rundll32.exe. dll, ShowWelcomeCenter (User SERVICE LOCAL)
O4 - HKLM \ S-1-5-20 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ CTFMON.EXE (User SERVICE RÉSEAU)
O4 - HKLM \ S-1-5-18 \ .. \ Run: [cbssreg] C: \ Windows \ TEMP \ ehvc.tmp \ svchost.exe (User "SYSTEM")
O4 - HKLM \. DEFAULT \ .. \ Run: [cbssreg] C: \ Windows \ TEMP \ ehvc.tmp \ svchost.exe (User utilisateur par défaut)
O4 - Startup: Adobe Gamma.lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader.exe
O4 - Startup: Dell Dock. lnk = C: \ Program Files \ Logitech \ DellDock \ DellDock.exe
O4 - Startup: OneNote 2007 Screen Clipper et Launcher.lnk = C: \ Program Files \ Microsoft Office \ Office12 \ CTFMON.EXE
O4 - Global Startup: BTTray.lnk =?
O4 - Global Startup: QuickSet.lnk = C: \ Program Files \ Dell \ QuickSet \ SynTPEnh.exe
O8 - Extra context menu item: & Clean Traces - C: \ Program Files \ DAP \ Privacy Package \ dapcleanerie.htm
O8 - Extra context menu item: & Download with & DAP - C: \ Program Files \ DAP \ dapextie. htm
O8 - Extra context menu item: Add to Google Photos Screensa & ver -- res://C : \ Windows \ system32 \ GPhotos.scr/200
O8 - Extra context menu item: Ajouter la cible du lien au format PDF existant -- res://C : \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEFavClient.dll / AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter au PDF existant -- res://C : \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEFavClient.dll / AcroIEAppend. html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF -- res://C : \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEFavClient.dll / AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir au format Adobe PDF -- res://C : \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEFavClient.dll / AcroIECapture.html
O8 - Extra context menu item: Télécharger tout avec & DAP - C: \ Program Files \ DAP \ dapextie2. htm
O8 - Extra context menu item: Télécharger avec Xilisoft Download YouTube Video - C: \ Program Files \ Xilisoft \ Download YouTube Video \ upod_link.HTM
O8 - Extra context menu item: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 3 \ Office12 \ EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique & Bluetooth...- C: \ Program Files \ Alwil Software \ btsendto_ie_ctx. htm
O8 - Extra context menu item: Envoyer cette page à & Bluetooth Device...- C: \ Program Files \ Alwil Software \ btsendto_ie.htm
O9 - Extra button: Blog This - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra "Outils" menuitem: & Blog dans Windows Live Writer - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension. dll
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & end to OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ Office12 \ ONBttnIE.dll
O9 - Extra button: Skype - (77BF5300-1474-4EC7-9980-D32B190E9B07) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin. dll
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 3 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: @ btrez.dll, -4015 - (CCA281CA-C863-46ef-9331-5C8D4460577F) - C: \ Program Files \ Alwil Software \ btsendto_ie.htm
O9 - Extra "Outils" menuitem: @ btrez.dll, -12650 - (CCA281CA-C863-46ef-9331-5C8D4460577F) - C: \ Program Files \ Alwil Software \ btsendto_ie. htm
O13 - Gopher Prefix:
- Ø18 Protocol: livecall - (88FED34C-F0CA-4636-A375-3CB6248B04CD) - C: \ Program Files \ Microsoft Office \ Office12 \ GrooveSystemServices.dll
- Ø18 Protocole: LinkScanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files \ AVG \ AVG8 \ avgpp.dll
- Ø18 Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Skype \ SKYPE4 ~ 1.DLL
O20 - AppInit_DLLs: AVGRSSTX.DLL C: \ PROGRA ~ 1 \ Google \ Google ~ 2 \ GOEC62 ~ 1. DLL
O20 - Winlogon Notify: GoToAssist - C: \ Program Files \ Citrix \ GoToAssist \ 514 \ G2AWinLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C: \ Windows \ system32 \ aestsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Fichiers communs \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService. exe
O23 - Service: avast Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, sro - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgemc.exe
O23 - Service: avast Free8 WatchDog (avg8wd) - AVG Technologies CZ, sro - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: CSIScanner - Prevx - C: \ Program Files \ Prevx \ Prevx. exe
O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C: \ Program Files \ Logitech \ DellDock \ DockLogin.exe
O23 - Service: Intel (R) PROSet / Wireless Event Log (EvtEng) - Intel Corporation - C: \ Program Files \ Logitech \ Bin \ evteng.exe
O23 - Service: ewido contrôle de la sécurité privée - Ewido Networks - C: \ Program Files \ ewido anti-malware \ ewidoctrl.exe
O23 - Service: ewido garde de sécurité privée - Ewido Networks - C: \ Program Files \ ewido anti-malware \ ewidoguard. exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd - C: \ Program Files \ Fichiers communs \ Macrovision Shared \ FLEXnet Publisher \ FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.9.909.30391 (GoogleDesktopManager-093009-130223) - Google - C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe
O23 - Service: GoToAssist - Citrix Online, une division de Citrix Systems, Inc - C: \ Program Files \ Citrix \ GoToAssist \ 514 \ g2aservice. exe
O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: Intel (R) / PROSet Wireless Registry Service (RegSrvc) - Intel Corporation - C: \ Program Files \ Logitech \ Bin \ RegSrvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc - C: \ Windows \ system32 \ STacSV.exe
O23 - Service: avast! Updater (YahooAUService) - Yahoo! Inc - C: \ Program Files \ Google \ softwareupdate \ YahooAUService.exe

--
End of file - 14445 bytes