Base de registre - Gestionnaire des taches - Acces impossible

Base de registre - Gestionnaire des taches - Acces impossible - Virus/Spywares - Windows & Software

Marsh Posté le 07-11-2007 à 15:39:16    

Bonjour,
 
Nouveau sur le forum, je demande vore aide. Je suis venu en aide à un de mes ami suite à certains problemes sur son PC, mais je ne suis pas un expert.. Les problemes que j'ai pu voir :
 
Pas de possibilité d'ouvrir :  
 - le gestionnaire des taches
 - Regedit impossible
 - Scandisk impossible
 
et divers problemes de raccourcis...
 
Je me doute qu'il s'agit de virus ou autres...Je suis en train de faire une analyse de disque avec Avast..
 
voici le log de Hijackthis. Pouvez vous m'aidez...  
 

Code :
  1. Logfile of HijackThis v1.99.1
  2. Scan saved at 15:33:38, on 07/11/2007
  3. Platform: Windows XP SP2 (WinNT 5.01.2600)
  4. MSIE: Internet Explorer v7.00 (7.00.6000.16512)
  6. Running processes:
  7. C:\WINDOWS\System32\smss.exe
  8. C:\WINDOWS\system32\winlogon.exe
  9. C:\WINDOWS\system32\services.exe
  10. C:\WINDOWS\system32\lsass.exe
  11. C:\WINDOWS\system32\Ati2evxx.exe
  12. C:\WINDOWS\system32\svchost.exe
  13. C:\WINDOWS\System32\svchost.exe
  14. C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
  15. C:\Program Files\Alwil Software\Avast4\ashServ.exe
  16. C:\WINDOWS\system32\Ati2evxx.exe
  17. C:\WINDOWS\Explorer.EXE
  18. C:\WINDOWS\system32\spoolsv.exe
  19. C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
  20. c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
  21. C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
  22. C:\WINDOWS\System32\FTRTSVC.exe
  23. C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
  24. c:\APPS\HIDSERVICE\HIDSERVICE.exe
  25. C:\WINDOWS\SOUNDMAN.EXE
  26. C:\WINDOWS\System32\snmp.exe
  27. C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
  28. C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
  29. C:\WINDOWS\system32\svchost.exe
  30. C:\PROGRA~1\GOTOSO~1\VADERE~1\Vaderetro_oe.exe
  31. C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
  32. C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
  33. C:\Apps\Powercinema\PCMService.exe
  34. C:\apps\ABoard\ABoard.exe
  35. C:\apps\ABoard\AOSD.exe
  36. C:\Program Files\Lexmark 2300 Series\lxcgmon.exe
  37. C:\Program Files\Lexmark 2300 Series\ezprint.exe
  38. C:\WINDOWS\system32\LVCOMSX.EXE
  39. c:\APPS\Powercinema\Kernel\TV\CLSched.exe
  40. C:\Program Files\QuickTime\qttask.exe
  41. C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
  42. C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
  43. C:\WINDOWS\system32\ctfmon.exe
  44. C:\Program Files\MSN Messenger\msnmsgr.exe
  45. C:\Program Files\Wanadoo\EspaceWanadoo.exe
  46. C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
  47. C:\Program Files\WinZip\WZQKPICK.EXE
  48. C:\Program Files\Wanadoo\ComComp.exe
  49. C:\PROGRA~1\Wanadoo\Toaster.exe
  50. C:\PROGRA~1\Wanadoo\Inactivity.exe
  51. C:\PROGRA~1\Wanadoo\PollingModule.exe
  52. C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
  53. C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
  54. C:\WINDOWS\system32\lxcgcoms.exe
  55. C:\Program Files\MSN Messenger\usnsvc.exe
  56. C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
  57. C:\Program Files\Internet Explorer\iexplore.exe
  58. C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
  59. C:\Program Files\Internet Explorer\iexplore.exe
  60. D:\Documents and Settings\Daniele Francis.SN112002710310\Mes documents\olivier\hijackthis_199\HijackThis.exe
  62. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
  63. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
  64. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  65. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  66. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
  67. R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
  68. R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
  69. R3 - Default URLSearchHook is missing
  70. O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
  71. O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
  72. O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  73. O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
  74. O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
  75. O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
  76. O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
  77. O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
  78. O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
  79. O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
  80. O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
  81. O4 - HKLM\..\Run: [ATIPTA] "C:\ATI Technologies\ATI Control Panel\atiptaxx.exe"
  82. O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
  83. O4 - HKLM\..\Run: [Vade Retro Outlook Express] "C:\PROGRA~1\GOTOSO~1\VADERE~1\Vaderetro_oe.exe"
  84. O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
  85. O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
  86. O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32"
  87. O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
  88. O4 - HKLM\..\Run: [LXCGCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16
  89. O4 - HKLM\..\Run: [lxcgmon.exe] "C:\Program Files\Lexmark 2300 Series\lxcgmon.exe"
  90. O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 2300 Series\ezprint.exe"
  91. O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
  92. O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
  93. O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
  94. O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
  95. O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] "C:\Program Files\Fichiers communs\Logitech\khalshared\KHALMNPR.EXE"
  96. O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
  97. O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
  98. O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
  99. O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
  100. O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\GestMaj.exe EspaceWanadoo.exe
  101. O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
  102. O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
  103. O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
  104. O4 - Global Startup: Logitech SetPoint.lnk = ?
  105. O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
  106. O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
  107. O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
  108. O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
  109. O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
  110. O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
  111. O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
  112. O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
  113. O11 - Options group: [INTERNATIONAL] International*
  114. O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
  115. O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
  116. O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by128fd.bay128.hotmail.msn. [...] nPUpld.cab
  117. O16 - DPF: {5DDCC37F-7C6B-48B8-9664-97C537920CA0} (aecviz Class) - http://www.maisonfamiliale.com/AECVIZ/npaecviz.cab
  118. O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
  119. O17 - HKLM\System\CCS\Services\Tcpip\..\{F332971F-F9FA-42FF-BB89-46E5E71D2BB2}: NameServer = 81.253.149.9 80.10.246.132
  120. O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
  121. O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
  122. O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
  123. O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
  124. O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
  125. O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
  126. O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
  127. O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
  128. O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
  129. O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
  130. O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
  131. O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
  132. O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
  133. O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
  134. O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
  135. O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
  136. O23 - Service: lxcg_device -   - C:\WINDOWS\system32\lxcgcoms.exe
  137. O23 - Service: MysqlInventime - Unknown owner - C:\Apps\INVENT~1\mysql\bin\mysqld-nt.exe
  138. O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe


 
Merci

Reply

Marsh Posté le 07-11-2007 à 15:39:16   

Reply

Marsh Posté le 07-11-2007 à 20:50:27    

Ca va fermer. cf règles du forum.

Reply

Sujets relatifs:

Leave a Replay

Make sure you enter the(*)required information where indicate.HTML code is not allowed