pierreforestier

Bonjour, Lorsque j'ouvre certains dossiers, Windows m'envoi l'erreur suivante: "POur proteger votre ordinateur, Windows a fermé ce programme" Si je clique sur "fermer le msg", je sors de l'application. J'ai éssayé de modifier les paramètres en indiquant protection sauf certains pgr (exploreur par ex) mais rien n'y fait !!! Je vous remercie d'avance de toute l'aide que vous pourrez m"apporter pour résoudre ce problème. Cordialement P. Forestier

Merci, j'y vais tout de suite!

Bonjour, Je voudrais nettoyer mon pc completement en formatant tous les disques durs. J’ai le cd original de windows xp, qui date de 5 ans environ, et sur ma machine j’ai toutes les mises à jour de XP depuis cette date. Quelle manipulation pouvez vous me conseillez vous pour effectuer cette opération ? (repartir de l’original, recréer un cd boot, etc ….) Merci de ces précieux conseils attendus impatiemment ! PF

Merci encore ! Bonne fin de journée!

Principalement photos, vidéos et musique .... et parait-il il y a moins de virus! C'est vrai?

Merci de tous ces conseils que je vais m'efforcer de suivre! Je vais changer de machine ..... et le iMac me tente beaucoup !!!!!

C'est envoyé "avec succès"! Je te remercie de ton aide tres précieuse et tres professionnelle! Très cordialement Pierre

C'est fait. Je te les envois où?

Ah! ça va mieux avec le tien !!!!! J'ai récupéré C et D: Y a t il autre chose à voir?

J'ai du mal l'installer!! Qd j'ai décompressé j'ai 6 fichiers, sur lequel je clique?

OK merci, c'est fait. Quand je clique sur le + des lecteurs du poste de travail, rien ne se passe !

Décidement, pas de chance! Je n'arrive pas à télécharger tweak !!! y a t il une autre solution?

Voila le rapport: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:54:43, on 06/08/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe C:\Program Files\Microsoft Hardware\Mouse\point32.exe C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe C:\PROGRA~1\Grisoft\AVG7\avgemc.exe C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Microsoft Hardware\Keyboard\type32.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\QuickTime\QTTask.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Messenger\MSMSGS.EXE C:\WINDOWS\system32\ctfmon.exe G:\TELECHARGEMENT\Nokia PC Suite 6\PCSuite.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\Grisoft\AVG7\avgfwsrv.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\WINDOWS\System32\LVComsX.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.numericable.fr/abonnes.php R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [POINTER] point32.exe O4 - HKLM\..\Run: [intelliType] "C:\Program Files\Microsoft Hardware\Keyboard\type32.exe" O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" O4 - HKCU\..\Run: [Windows Registry Repair Pro] C:\Program Files\3B Software\Windows Registry Repair Pro\RegistryRepairPro.exe 4 O4 - HKCU\..\Run: [PC Suite Tray] "G:\TELECHARGEMENT\Nokia PC Suite 6\PCSuite.exe" -onlytray O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: AutorunsDisabled O4 - Startup: IMVU.lnk = C:\Program Files\IMVU\IMVUClient.exe O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe O4 - Global Startup: AutorunsDisabled O4 - Global Startup: EPSON Status Monitor 3 Environment Check(2).lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\pierre\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.euro.dell.com/systemprofiler/SysPro.CAB O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1144816829546 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1182337685343 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {6F750200-1362-4815-A476-88533DE61D0C} (Ofoto Upload Manager Class) - http://adobe.kodakgallery.fr/downloads/BUM..._1/axofupld.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://charon777.free.fr/plugins/hardwaredetection.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://fdata.over-blog.com/script/ImageUploader3.cab O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secur...loadManager.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (ASquaredScanForm Element) - http://www.windowsecurity.com/trojanscan/axscan.cab O16 - DPF: {CCA0B877-CB5E-4ADC-AD30-457C379512DD} (Gif89 Lite Class) - http://217.128.139.176/xplugLiteTW.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.pixdiscount.fr/clients/uploader_v2.1.0.53.cab O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.fnacphoto.com/ectelechargement/...oad/XUpload.ocx O20 - Winlogon Notify: avgwlntf - C:\WINDOWS\SYSTEM32\avgwlntf.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Unknown owner - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe (file missing) O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe O23 - Service: AVG Firewall (AVGFwSrv) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgfwsrv.exe O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- End of file - 11364 bytes ------------ J'ai encore le problème suivant: Dans explorateur windows mon disque C: n'apparait plus ! Merci de ton aide Cordialement

OK ça a fonctionné avec OTMoveit ! Voici le rapport: File/Folder C:\WINDOWS\system32\lphcn4mj0eca7.exe not found. File/Folder C:\Program Files\rhcj4mj0eca7\rhcj4mj0eca7.exe not found. < EmptyTemp > File delete failed. C:\DOCUME~1\pierre\LOCALS~1\Temp\~DF1591.tmp scheduled to be deleted on reboot. Temp folders emptied. IE temp folders emptied. OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 08062008_121751 Files moved on Reboot... C:\DOCUME~1\pierre\LOCALS~1\Temp\~DF1591.tmp moved successfully.

Je ne comprends pas ce que tu veux dire avec " Clique sur l'icône jaune avec le dossier et retrouve les fichiers suivants (tu dois chaque fois recliquer sur l'icône pour ajouter les 4 fichiers) : " Qd je clique sur l'icone jaune il me dit "this is not a running process"

J'ai réessayé en cliquant sur le lien mais j'ai tjrs <H1 id=mainTitle>Internet Explorer ne peut pas afficher cette page Web</H1>Pourtant je peux me connecter sur d'autres sites! Désolé !

Je n'arrive pas à telecharger OTMove !! Pas de conection internet ????

voici les rapports: SDFix: Version 1.213 Run by pierre on 06/08/2008 at 10:57 Microsoft Windows XP [version 5.1.2600] Running From: C:\SDFix Checking Services : Restoring Default Security Values Restoring Default Hosts File Restoring Default HomePage Value Restoring Default Desktop Components Value Restoring Default Desktop Wallpaper Restoring Default ScreenSaver value Restoring Windows ProductId To Remove Fake Virus Alert Restoring Time Format To Remove Fake Virus Alert Rebooting Checking Files : Trojan Files Found: C:\WINDOWS\SYSTEM32\PPHCN4~1.EXE - Deleted C:\WINDOWS\SYSTEM32\PPHCN4~2.EXE - Deleted C:\WINDOWS\SYSTEM32\PHCN4M~1.BMP - Deleted C:\WINDOWS\SYSTEM32\BLPHCN~1.SCR - Deleted C:\WINDOWS\EKDP.EXE - Deleted C:\WINDOWS\SYSTEM32\FTPUPD.EXE - Deleted C:\Documents and Settings\pierre\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.redtube.com\settings.sol - Deleted C:\Documents and Settings\pierre\Bureau\Error Cleaner.url - Deleted C:\Documents and Settings\pierre\Favoris\Error Cleaner.url - Deleted C:\Documents and Settings\pierre\Bureau\Privacy Protector.url - Deleted C:\Documents and Settings\pierre\Favoris\Privacy Protector.url - Deleted C:\Documents and Settings\pierre\Bureau\Spyware&Malware Protection.url - Deleted C:\Documents and Settings\pierre\Favoris\Spyware&Malware Protection.url - Deleted C:\WINDOWS\privacy_danger\index.htm - Deleted C:\WINDOWS\privacy_danger\images\capt.gif - Deleted C:\WINDOWS\privacy_danger\images\danger.jpg - Deleted C:\WINDOWS\privacy_danger\images\down.gif - Deleted C:\WINDOWS\privacy_danger\images\spacer.gif - Deleted C:\WINDOWS\system32\winlogon.ini - Deleted C:\DOCUME~1\pierre\LOCALS~1\Temp\.tt1.tmp - Deleted C:\DOCUME~1\pierre\LOCALS~1\Temp\.tt47.tmp - Deleted C:\DOCUME~1\pierre\LOCALS~1\Temp\.tt49.tmp - Deleted C:\DOCUME~1\pierre\LOCALS~1\Temp\vistasp1.exe.bat - Deleted C:\WINDOWS\system32\c.bat - Deleted C:\WINDOWS\system32\TFTP1384 - Deleted C:\WINDOWS\system32\TFTP1624 - Deleted C:\WINDOWS\system32\TFTP1960 - Deleted C:\WINDOWS\system32\TFTP2156 - Deleted C:\WINDOWS\system32\TFTP232 - Deleted C:\WINDOWS\system32\TFTP284 - Deleted C:\WINDOWS\system32\TFTP300 - Deleted C:\WINDOWS\system32\TFTP3140 - Deleted C:\WINDOWS\system32\TFTP3244 - Deleted C:\WINDOWS\system32\TFTP3416 - Deleted C:\WINDOWS\system32\TFTP3536 - Deleted C:\WINDOWS\system32\TFTP4072 - Deleted C:\WINDOWS\system32\TFTP4748 - Deleted C:\WINDOWS\wnlmdakqbef.dll - Deleted C:\DOCUME~1\pierre\LOCALS~1\Temp\s1265.php.bat - Deleted C:\csrss.exe - Deleted C:\services.exe - Deleted C:\smss.exe - Deleted C:\svchost.exe - Deleted C:\WINDOWS\bgrqfetx.dll - Deleted C:\WINDOWS\lnvegaow.exe - Deleted C:\WINDOWS\tfnslopk.dll - Deleted C:\WINDOWS\xokvrpwg.dll - Deleted Folder C:\Documents and Settings\pierre\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.redtube.com - Removed Folder C:\WINDOWS\privacy_danger - Removed Removing Temp Files ADS Check : Final Check : catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-08-06 11:05:30 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden services & system hive ... scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 Remaining Services : Authorized Application Key Export: [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule" "C:\\Program Files\\Grisoft\\AVG7\\avginet.exe"="C:\\Program Files\\Grisoft\\AVG7\\avginet.exe:*:Enabled:avginet.exe" "C:\\Program Files\\Grisoft\\AVG7\\avgemc.exe"="C:\\Program Files\\Grisoft\\AVG7\\avgemc.exe:*:Enabled:avgemc.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe:*:Enabled:hpqscnvw.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\\Program Files\\Grisoft\\AVG7\\avgamsvr.exe"="C:\\Program Files\\Grisoft\\AVG7\\avgamsvr.exe:*:Enabled:avgamsvr.exe" "C:\\Program Files\\Grisoft\\AVG7\\avgcc.exe"="C:\\Program Files\\Grisoft\\AVG7\\avgcc.exe:*:Enabled:avgcc.exe" "C:\\Program Files\\Kazaa Lite Resurrection\\kazaalite.kpp"="C:\\Program Files\\Kazaa Lite Resurrection\\kazaalite.kpp:*:Enabled:kazaalite" "C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype. Take a deep breath " "C:\\WINDOWS\\system32\\dpvsetup.exe"="C:\\WINDOWS\\system32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "C:\\WINDOWS\\system32\\rundll32.exe"="C:\\WINDOWS\\system32\\rundll32.exe:*:Enabled:Ex‚cuter une DLL en tant qu'application" "C:\\Program Files\\NetMeeting\\conf.exe"="C:\\Program Files\\NetMeeting\\conf.exe:*:Enabled:Windows© NetMeeting©" "C:\\Program Files\\Internet Explorer\\iexplore.exe"="C:\\Program Files\\Internet Explorer\\iexplore.exe:*:Enabled:Internet Explorer" "C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" Remaining Files : File Backups: - C:\SDFix\backups\backups.zip Files with Hidden Attributes : Wed 18 Jun 2008 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp" Mon 13 Nov 2006 319,456 A..H. --- "C:\Program Files\Fichiers communs\Motorola Shared\MotPCSDrivers\difxapi.dll" Finished! ---------- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:13:19, on 06/08/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe C:\PROGRA~1\Grisoft\AVG7\avgemc.exe C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\Grisoft\AVG7\avgfwsrv.exe C:\WINDOWS\system32\notepad.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Microsoft Hardware\Mouse\point32.exe C:\Program Files\Microsoft Hardware\Keyboard\type32.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\QuickTime\QTTask.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Messenger\MSMSGS.EXE G:\TELECHARGEMENT\Nokia PC Suite 6\PCSuite.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32Info.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [POINTER] point32.exe O4 - HKLM\..\Run: [intelliType] "C:\Program Files\Microsoft Hardware\Keyboard\type32.exe" O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg O4 - HKLM\..\Run: [ManualRun] "E:\AUTORUN\AutoRun" O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [lphcn4mj0eca7] C:\WINDOWS\system32\lphcn4mj0eca7.exe O4 - HKLM\..\Run: [sMrhcj4mj0eca7] C:\Program Files\rhcj4mj0eca7\rhcj4mj0eca7.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" O4 - HKCU\..\Run: [Windows Registry Repair Pro] C:\Program Files\3B Software\Windows Registry Repair Pro\RegistryRepairPro.exe 4 O4 - HKCU\..\Run: [PC Suite Tray] "G:\TELECHARGEMENT\Nokia PC Suite 6\PCSuite.exe" -onlytray O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: AutorunsDisabled O4 - Startup: IMVU.lnk = C:\Program Files\IMVU\IMVUClient.exe O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe O4 - Global Startup: AutorunsDisabled O4 - Global Startup: EPSON Status Monitor 3 Environment Check(2).lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\pierre\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.euro.dell.com/systemprofiler/SysPro.CAB O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1144816829546 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1182337685343 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {6F750200-1362-4815-A476-88533DE61D0C} (Ofoto Upload Manager Class) - http://adobe.kodakgallery.fr/downloads/BUM..._1/axofupld.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://charon777.free.fr/plugins/hardwaredetection.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://fdata.over-blog.com/script/ImageUploader3.cab O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secur...loadManager.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (ASquaredScanForm Element) - http://www.windowsecurity.com/trojanscan/axscan.cab O16 - DPF: {CCA0B877-CB5E-4ADC-AD30-457C379512DD} (Gif89 Lite Class) - http://217.128.139.176/xplugLiteTW.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.pixdiscount.fr/clients/uploader_v2.1.0.53.cab O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.fnacphoto.com/ectelechargement/...oad/XUpload.ocx O20 - Winlogon Notify: avgwlntf - C:\WINDOWS\SYSTEM32\avgwlntf.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Unknown owner - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe (file missing) O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe O23 - Service: AVG Firewall (AVGFwSrv) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgfwsrv.exe O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- End of file - 11450 bytes -------- Merci!

Merci de ton intervention. Ci après le rapport: --------------------\\ Lop S&D 4.2.2-5 XP/Vista [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ] [ USER : pierre ] [ "C:\Lop SD" ] [ Selection : 1 ] [ 06/08/2008 | 10:23:30,37 ] [ PC : PMC ] [ MAJ : 01-08-2008 | 01:40 ] --------------------\\ Listing des dossiers dans APPLIC~1 [29/04/2005|09:48:] C:\DOCUME~1\ADMINI~1\APPLIC~1\ALERT! 62 desktop.ini [01/08/2007|11:46:] C:\DOCUME~1\ADMINI~1\APPLIC~1\ALERT! <REP> Microsoft [17/11/2005|20:11:] C:\DOCUME~1\ADMINI~1\APPLIC~1\ALERT! <REP> PC Suite [12/06/2007|17:49:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Acronis [17/02/2006|18:57:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! 305 addr_file.html [05/03/2008|11:12:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Adobe [30/06/2006|18:53:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Adobe Systems [02/08/2008|14:16:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Apple [07/05/2005|10:44:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Apple Computer [11/05/2007|09:26:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> avg7 [26/12/2007|18:05:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> BVRP Software [29/04/2005|09:48:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! 62 desktop.ini [14/04/2006|21:28:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> espionServerData [26/03/2008|11:48:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Google [12/06/2006|17:30:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Grisoft [05/08/2008|11:21:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Hewlett-Packard [05/08/2008|11:18:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> HP [05/08/2008|11:18:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> HP Product Assistant [05/08/2008|11:19:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> HPSSUPPLY [05/08/2008|11:22:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! 2ÿ260 hpzinstall.log [20/05/2008|10:54:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Installations [09/04/2008|11:55:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Lavasoft [05/08/2008|19:25:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Malwarebytes [01/06/2008|17:20:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Microsoft [10/06/2008|09:00:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Microsoft Help [29/04/2005|19:19:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> MSN6 [16/01/2007|18:25:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> NVIDIA [30/07/2007|16:16:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> PC Suite [05/05/2005|13:31:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Pinnacle [24/04/2006|15:30:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> QuickTime [26/07/2005|18:45:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> RTE [15/08/2007|12:07:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Skyline [27/05/2007|12:10:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Skype [09/06/2005|17:42:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> SmartSound Software Inc [30/04/2005|12:13:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Spybot - Search & Destroy [05/08/2008|11:22:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> WEBREG [12/06/2006|17:47:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Windows Genuine Advantage [29/11/2006|16:44:] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ALERT! <REP> Windows Live Toolbar [29/04/2005|09:48:] C:\DOCUME~1\DEFAUL~1\APPLIC~1\ALERT! 62 desktop.ini [29/04/2005|08:53:] C:\DOCUME~1\DEFAUL~1\APPLIC~1\ALERT! <REP> Microsoft [12/06/2006|17:35:] C:\DOCUME~1\LOCALS~1\APPLIC~1\ALERT! <REP> AVG7 [01/08/2007|11:46:] C:\DOCUME~1\LOCALS~1\APPLIC~1\ALERT! <REP> Microsoft [01/08/2007|11:46:] C:\DOCUME~1\NETWOR~1\APPLIC~1\ALERT! <REP> Microsoft [08/06/2008|19:59:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Adobe [10/01/2007|09:55:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> AdobeUM [05/05/2005|18:04:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Ahead [02/08/2008|14:22:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Apple Computer [29/01/2007|19:16:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> ArcSoft [06/08/2008|10:16:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> AVG7 [14/04/2006|10:09:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Canon [15/11/2005|18:28:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> DataLayer [29/04/2005|09:48:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! 62 desktop.ini [21/08/2007|13:58:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> DivX [23/12/2006|13:02:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> EoRezo [07/09/2006|10:56:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! 81ÿ920 ezpinst.exe [24/04/2006|15:32:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> FotoWire [17/09/2006|12:32:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Google [08/05/2005|11:33:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Help [05/08/2008|11:31:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> HP [05/08/2008|11:19:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> HPAppData [29/04/2005|08:55:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Identities [21/05/2007|14:39:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! 87ÿ608 inst.exe [26/12/2007|17:29:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> InstallShield [23/10/2007|18:31:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Iomega Automatic Backup Pro [30/04/2005|11:17:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Kazaa Lite [29/04/2005|09:07:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Lavasoft [29/07/2008|14:32:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> LimeWire [29/04/2005|19:06:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Macromedia [05/08/2008|19:25:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Malwarebytes [07/06/2008|14:38:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Microsoft [30/04/2005|10:19:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Microsoft Web Folders [08/12/2005|12:13:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Mozilla [29/04/2005|19:19:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> MSN6 [16/05/2005|19:16:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Nikon [20/05/2008|11:03:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Nokia [18/04/2008|15:37:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Nokia Multimedia Player [06/08/2008|10:00:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> OpenOffice.org2 [14/04/2006|22:03:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Opera [26/12/2007|17:33:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Panasonic [19/12/2006|11:48:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Participatory Culture Foundation [09/01/2008|14:56:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> PC Suite [21/12/2006|11:40:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> PCF-VLC [21/05/2007|14:39:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! 7ÿ887 pcouffin.cat [21/05/2007|14:39:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! 1ÿ144 pcouffin.inf [21/05/2007|14:39:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! 34 pcouffin.log [21/05/2007|14:39:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! 47ÿ360 pcouffin.sys [07/06/2008|10:08:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! 1ÿ304 QuickZip45.ini [05/05/2005|17:16:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Real [05/08/2008|17:43:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> rhcj4mj0eca7 [26/07/2005|18:45:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> RTE [25/11/2006|11:13:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> SendPix [29/08/2006|11:37:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Seven Zip [27/05/2007|17:00:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Skype [30/04/2005|18:52:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Sun [02/05/2008|07:58:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> TaoUSign [17/06/2008|17:29:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! 5ÿ632 Thumbs.db [05/08/2008|17:22:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> TmpRecentIcons [21/05/2007|14:41:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! <REP> Vso [16/05/2007|18:16:] C:\DOCUME~1\pierre\APPLIC~1\ALERT! 2ÿ095ÿ158 ZBWallpaper.bmp --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [02/08/2008 14:16: VIRUS ALERT!][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [06/08/2008 08:35: VIRUS ALERT!][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job [06/08/2008 09:58: VIRUS ALERT!][--ah-----] C:\WINDOWS\tasks\SA.DAT [24/04/2003 14:00: VIRUS ALERT!][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ Listing des dossiers dans C:\Program Files [12/06/2007|17:35:] C:\Program Files\ALERT! <REP> Acronis [05/03/2008|11:12:] C:\Program Files\ALERT! <REP> Adobe [30/04/2005|10:50:] C:\Program Files\ALERT! <REP> Ahead [23/02/2008|15:33:] C:\Program Files\ALERT! <REP> ANI [02/08/2008|14:16:] C:\Program Files\ALERT! <REP> Apple Software Update [26/12/2007|14:58:] C:\Program Files\ALERT! <REP> ArcSoft [01/08/2008|14:14:] C:\Program Files\ALERT! <REP> Avanquest update [23/08/2007|16:56:] C:\Program Files\ALERT! <REP> AviSynth 2.5 [30/03/2006|18:36:] C:\Program Files\ALERT! <REP> backups [23/04/2008|13:16:] C:\Program Files\ALERT! <REP> Bitmanagement Software [16/12/2005|22:00:] C:\Program Files\ALERT! <REP> Broderbund [14/04/2006|09:26:] C:\Program Files\ALERT! <REP> Canon [10/05/2005|22:37:] C:\Program Files\ALERT! <REP> CleanUp! [01/08/2008|14:22:] C:\Program Files\ALERT! <REP> Common Files [29/04/2005|08:51:] C:\Program Files\ALERT! <REP> ComPlus Applications [30/04/2005|10:39:] C:\Program Files\ALERT! <REP> Creative [20/05/2008|10:56:] C:\Program Files\ALERT! <REP> DIFX [07/06/2008|09:57:] C:\Program Files\ALERT! <REP> DivX [20/11/2007|14:49:] C:\Program Files\ALERT! <REP> D-Link [17/06/2008|16:59:] C:\Program Files\ALERT! <REP> DVD Audio Extractor [29/04/2005|19:00:] C:\Program Files\ALERT! <REP> EPSON [09/05/2005|17:47:] C:\Program Files\ALERT! <REP> ewido [05/08/2008|11:18:] C:\Program Files\ALERT! <REP> Fichiers communs [24/09/2007|16:18:] C:\Program Files\ALERT! <REP> Free Audio Pack [21/12/2007|18:25:] C:\Program Files\ALERT! <REP> GEOGRAPHIE [20/07/2008|23:19:] C:\Program Files\ALERT! <REP> Google [24/10/2006|13:58:] C:\Program Files\ALERT! <REP> Grisoft [29/08/2006|13:27:] C:\Program Files\ALERT! <REP> HardwareDetection [05/08/2008|11:18:] C:\Program Files\ALERT! <REP> Hewlett-Packard [30/04/2005|08:57:] C:\Program Files\ALERT! <REP> HighMAT CD Writing Wizard [06/08/2008|08:25:] C:\Program Files\ALERT! <REP> HijackThis [16/02/2005|11:06:] C:\Program Files\ALERT! 218ÿ112 HijackThis.exe [10/05/2005|06:08:] C:\Program Files\ALERT! 5ÿ855 hijackthis.log [05/08/2008|11:19:] C:\Program Files\ALERT! <REP> HP [16/03/2008|18:55:] C:\Program Files\ALERT! <REP> IKEA HomePlanner [07/03/2008|12:01:] C:\Program Files\ALERT! <REP> IMVU [01/08/2008|14:22:] C:\Program Files\ALERT! <REP> InstallShield Installation Information [11/03/2002|10:45:] C:\Program Files\ALERT! 1ÿ708ÿ856 instmsia.exe [11/03/2002|11:06:] C:\Program Files\ALERT! 1ÿ822ÿ520 instmsiw.exe [11/06/2008|09:30:] C:\Program Files\ALERT! <REP> Internet Explorer [12/10/2006|17:17:] C:\Program Files\ALERT! <REP> Intuisphere [23/10/2007|18:14:] C:\Program Files\ALERT! <REP> Iomega [07/05/2005|10:44:] C:\Program Files\ALERT! <REP> iPod [07/06/2008|10:02:] C:\Program Files\ALERT! <REP> Java [27/02/2008|18:08:] C:\Program Files\ALERT! <REP> Jeune Styliste [27/02/2008|18:08:] C:\Program Files\ALERT! <REP> Jeune Styliste 2 [27/02/2008|18:09:] C:\Program Files\ALERT! <REP> JPEG Compression [15/12/2006|19:31:] C:\Program Files\ALERT! <REP> Kazaa Lite Resurrection [09/05/2005|20:55:] C:\Program Files\ALERT! <REP> Kerio [07/06/2008|09:57:] C:\Program Files\ALERT! <REP> Lame MP3 Codec [24/04/2006|21:30:] C:\Program Files\ALERT! <REP> Lauyan [09/04/2008|11:49:] C:\Program Files\ALERT! <REP> Lavasoft [07/06/2008|09:45:] C:\Program Files\ALERT! <REP> licenses [29/07/2008|12:20:] C:\Program Files\ALERT! <REP> LimeWire [11/01/2007|12:37:] C:\Program Files\ALERT! <REP> Logitech [05/08/2008|19:25:] C:\Program Files\ALERT! <REP> Malwarebytes' Anti-Malware [02/05/2007|11:34:] C:\Program Files\ALERT! <REP> Messenger [13/01/2007|14:28:] C:\Program Files\ALERT! <REP> Micro Application [10/05/2007|09:56:] C:\Program Files\ALERT! <REP> Microsoft CAPICOM 2.1.0.2 [30/04/2005|10:19:] C:\Program Files\ALERT! <REP> microsoft frontpage [14/01/2007|10:00:] C:\Program Files\ALERT! <REP> Microsoft Games [29/04/2005|18:54:] C:\Program Files\ALERT! <REP> Microsoft Hardware [01/06/2008|17:21:] C:\Program Files\ALERT! <REP> Microsoft Office [08/05/2005|11:33:] C:\Program Files\ALERT! <REP> Microsoft Picture It! [30/03/2007|10:05:] C:\Program Files\ALERT! <REP> Microsoft Sites publics fran‡ais [03/04/2007|10:25:] C:\Program Files\ALERT! <REP> Microsoft Visual Studio [01/06/2008|17:22:] C:\Program Files\ALERT! <REP> Microsoft Works [30/04/2005|10:23:] C:\Program Files\ALERT! <REP> Microsoft Works Suite 99 [05/08/2008|18:14:] C:\Program Files\ALERT! <REP> Motorola Phone Tools [15/12/2006|19:31:] C:\Program Files\ALERT! <REP> Movie Maker [27/06/2007|18:48:] C:\Program Files\ALERT! <REP> Mozilla Firefox [31/03/2008|19:22:] C:\Program Files\ALERT! <REP> MSECache [29/04/2005|08:51:] C:\Program Files\ALERT! <REP> MSN [29/04/2005|08:51:] C:\Program Files\ALERT! <REP> MSN Gaming Zone [18/04/2007|18:15:] C:\Program Files\ALERT! <REP> MSN Messenger [18/11/2006|11:02:] C:\Program Files\ALERT! <REP> MSXML 4.0 [29/06/2006|14:18:] C:\Program Files\ALERT! <REP> NetMeeting [05/05/2005|18:59:] C:\Program Files\ALERT! <REP> Nikon [20/05/2008|10:57:] C:\Program Files\ALERT! <REP> Nokia [05/07/2004|10:04:] C:\Program Files\ALERT! 577ÿ536 Notepad2.exe [25/06/2004|00:00:] C:\Program Files\ALERT! 4ÿ271 Notepad2.reg [25/06/2004|00:00:] C:\Program Files\ALERT! 15ÿ814 Notepad2.txt [07/06/2008|09:45:] C:\Program Files\ALERT! <REP> Nouveau dossier [07/06/2008|09:45:] C:\Program Files\ALERT! <REP> Nouveau dossier (2) [07/06/2008|09:45:] C:\Program Files\ALERT! <REP> Nouveau dossier (3) [07/06/2008|10:00:] C:\Program Files\ALERT! <REP> OpenOffice [07/06/2008|10:12:] C:\Program Files\ALERT! <REP> OpenOffice.org 2.4 [15/05/2007|14:56:] C:\Program Files\ALERT! <REP> Orange [22/06/2008|09:14:] C:\Program Files\ALERT! <REP> Outlook Express [13/09/2005|18:54:] C:\Program Files\ALERT! <REP> Paltalk Messenger [26/12/2007|17:33:] C:\Program Files\ALERT! <REP> Panasonic [20/05/2008|10:56:] C:\Program Files\ALERT! <REP> PC Connectivity Solution [21/02/2007|13:00:] C:\Program Files\ALERT! <REP> PDFCreator [14/01/2008|12:23:] C:\Program Files\ALERT! <REP> PhotoBox [08/06/2005|19:53:] C:\Program Files\ALERT! <REP> Pinnacle [07/05/2005|11:39:] C:\Program Files\ALERT! <REP> Pinnacle Systems [22/08/2006|14:41:] C:\Program Files\ALERT! <REP> PixDiscount [02/08/2008|14:17:] C:\Program Files\ALERT! <REP> QuickTime [29/04/2005|19:49:] C:\Program Files\ALERT! <REP> QuickZip4 [07/06/2008|09:45:] C:\Program Files\ALERT! <REP> readmes [05/05/2005|17:13:] C:\Program Files\ALERT! <REP> Real [24/10/2007|12:05:] C:\Program Files\ALERT! <REP> Realtek AC97 [19/05/2006|10:26:] C:\Program Files\ALERT! 313 RegSearch.txt [18/05/2006|20:43:] C:\Program Files\ALERT! 227ÿ840 regsearch.zip [07/06/2008|09:57:] C:\Program Files\ALERT! <REP> Room Arranger [26/07/2005|18:43:] C:\Program Files\ALERT! <REP> RTE [26/10/2006|18:35:] C:\Program Files\ALERT! <REP> Safer Networking [28/07/2005|12:12:] C:\Program Files\ALERT! <REP> SAGEM [26/12/2007|14:56:] C:\Program Files\ALERT! <REP> Samsung [29/04/2005|08:51:] C:\Program Files\ALERT! <REP> Services en ligne [23/05/2005|14:26:] C:\Program Files\ALERT! <REP> SmartSound Software [23/05/2005|13:26:] C:\Program Files\ALERT! <REP> SmartSound Software Inc [02/05/2007|15:15:] C:\Program Files\ALERT! <REP> Spamihilator [22/08/2007|14:07:] C:\Program Files\ALERT! <REP> Spybot - Search & Destroy [22/05/2006|22:15:] C:\Program Files\ALERT! <REP> SpywareBlaster [01/10/2005|21:17:] C:\Program Files\ALERT! <REP> Styliste2 [07/06/2008|09:57:] C:\Program Files\ALERT! <REP> temporaire [29/04/2005|17:40:] C:\Program Files\ALERT! <REP> Uninstall Information [21/05/2007|14:39:] C:\Program Files\ALERT! <REP> vso [30/11/2007|18:14:] C:\Program Files\ALERT! <REP> Windows Live Favorites [30/11/2007|18:14:] C:\Program Files\ALERT! <REP> Windows Live Toolbar [02/12/2007|16:16:] C:\Program Files\ALERT! <REP> Windows Media Player [29/06/2006|14:18:] C:\Program Files\ALERT! <REP> Windows NT [29/04/2005|08:51:] C:\Program Files\ALERT! <REP> WindowsUpdate [04/11/2005|19:16:] C:\Program Files\ALERT! <REP> WinZip [07/05/2006|19:41:] C:\Program Files\ALERT! <REP> xat.com JPEG Optimizer [29/04/2005|08:53:] C:\Program Files\ALERT! <REP> xerox [20/05/2007|15:08:] C:\Program Files\ALERT! <REP> XviD [08/09/2005|12:17:] C:\Program Files\ALERT! <REP> Yahoo! [01/05/2008|18:07:] C:\Program Files\ALERT! <REP> ZebHelpProcess 2 [01/05/2008|18:05:] C:\Program Files\ALERT! <REP> Zeb-Utility [19/09/2007|14:56:] C:\Program Files\ALERT! <REP> zeraha.org --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [05/03/2008|11:13:] C:\Program Files\Fichiers communs\ALERT! <REP> Adobe [30/06/2006|18:51:] C:\Program Files\Fichiers communs\ALERT! <REP> Adobe Systems Shared [30/04/2005|10:50:] C:\Program Files\Fichiers communs\ALERT! <REP> Ahead [30/04/2005|10:21:] C:\Program Files\Fichiers communs\ALERT! <REP> Designer [29/04/2005|18:55:] C:\Program Files\Fichiers communs\ALERT! <REP> EPSON [24/04/2006|15:32:] C:\Program Files\Fichiers communs\ALERT! <REP> FotoWire [16/11/2006|11:36:] C:\Program Files\Fichiers communs\ALERT! <REP> Hewlett-Packard [05/08/2008|11:18:] C:\Program Files\Fichiers communs\ALERT! <REP> HP [05/05/2005|12:55:] C:\Program Files\Fichiers communs\ALERT! <REP> InstallShield [04/08/2007|10:28:] C:\Program Files\Fichiers communs\ALERT! <REP> Java [11/01/2007|12:37:] C:\Program Files\Fichiers communs\ALERT! <REP> Logitech [14/01/2007|19:26:] C:\Program Files\Fichiers communs\ALERT! <REP> Micro Application Shared [01/06/2008|17:22:] C:\Program Files\Fichiers communs\ALERT! <REP> Microsoft Shared [23/03/2008|11:56:] C:\Program Files\Fichiers communs\ALERT! <REP> Motorola Shared [29/04/2005|08:52:] C:\Program Files\Fichiers communs\ALERT! <REP> MSSoap [05/05/2005|18:59:] C:\Program Files\Fichiers communs\ALERT! <REP> Nikon [20/05/2008|10:57:] C:\Program Files\Fichiers communs\ALERT! <REP> Nokia [29/04/2005|09:48:] C:\Program Files\Fichiers communs\ALERT! <REP> ODBC [20/05/2008|10:57:] C:\Program Files\Fichiers communs\ALERT! <REP> PCSuite [14/10/2005|16:25:] C:\Program Files\Fichiers communs\ALERT! <REP> Real [26/07/2005|18:44:] C:\Program Files\Fichiers communs\ALERT! <REP> RTE [29/04/2005|08:52:] C:\Program Files\Fichiers communs\ALERT! <REP> Services [05/02/2007|19:28:] C:\Program Files\Fichiers communs\ALERT! <REP> Sierra On-Line [29/04/2005|09:48:] C:\Program Files\Fichiers communs\ALERT! <REP> SpeechEngines [13/06/2007|12:13:] C:\Program Files\Fichiers communs\ALERT! <REP> System [30/06/2006|13:59:] C:\Program Files\Fichiers communs\ALERT! <REP> Vbox [09/04/2008|11:48:] C:\Program Files\Fichiers communs\ALERT! <REP> Wise Installation Wizard [14/10/2005|16:25:] C:\Program Files\Fichiers communs\ALERT! <REP> xing shared --------------------\\ Process ( 48 Processus ) iexplore.exe ~ [3828] iexplore.exe ~ [3312] --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop C:\DOCUME~1\ALLUSE~1\APPLIC~1\espionServerData C:\DOCUME~1\ALLUSE~1\APPLIC~1\espionServerData\globData.mk4 C:\DOCUME~1\pierre\Cookies\pierre@advertstream[2].txt --------------------\\ Verification du Registre [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-08-06 10:24:10 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 104 --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! [F:287][D:22]-> C:\DOCUME~1\pierre\LOCALS~1\Temp [F:698][D:0]-> C:\DOCUME~1\pierre\Cookies [F:5116][D:8]-> C:\DOCUME~1\pierre\LOCALS~1\TEMPOR~1\content.IE5 --------------------\\ Fin du rapport a 10:25:57,68

Bonjour à tous! Je suis victime, moi aussi, de cette cochonnerie! Voici mon rapport hijackthis. MERCI de votre aide Cordialement Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 08:25: VIRUS ALERT!, on 06/08/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Microsoft Hardware\Mouse\point32.exe C:\Program Files\Microsoft Hardware\Keyboard\type32.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\QuickTime\QTTask.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Messenger\MSMSGS.EXE C:\WINDOWS\system32\ctfmon.exe G:\TELECHARGEMENT\Nokia PC Suite 6\PCSuite.exe C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe C:\PROGRA~1\Grisoft\AVG7\avgemc.exe C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\Grisoft\AVG7\avgfwsrv.exe C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\System32\LVComsX.exe C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32Info.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php?wmid=...6Ojg5&lid=2 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: QXK Olive - {18A81E02-E029-4D8A-B388-F9AD73573758} - C:\WINDOWS\wnlmdakqbef.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: bgrqfetx - {E8005042-BE09-4B41-AC50-86C2E6607FD2} - C:\WINDOWS\bgrqfetx.dll O4 - HKLM\..\Run: [POINTER] point32.exe O4 - HKLM\..\Run: [intelliType] "C:\Program Files\Microsoft Hardware\Keyboard\type32.exe" O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg O4 - HKLM\..\Run: [ManualRun] "E:\AUTORUN\AutoRun" O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [lphcn4mj0eca7] C:\WINDOWS\system32\lphcn4mj0eca7.exe O4 - HKLM\..\Run: [sMrhcj4mj0eca7] C:\Program Files\rhcj4mj0eca7\rhcj4mj0eca7.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" O4 - HKCU\..\Run: [Windows Registry Repair Pro] C:\Program Files\3B Software\Windows Registry Repair Pro\RegistryRepairPro.exe 4 O4 - HKCU\..\Run: [PC Suite Tray] "G:\TELECHARGEMENT\Nokia PC Suite 6\PCSuite.exe" -onlytray O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: AutorunsDisabled O4 - Startup: IMVU.lnk = C:\Program Files\IMVU\IMVUClient.exe O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe O4 - Global Startup: AutorunsDisabled O4 - Global Startup: EPSON Status Monitor 3 Environment Check(2).lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\pierre\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.euro.dell.com/systemprofiler/SysPro.CAB O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1144816829546 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1182337685343 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {6F750200-1362-4815-A476-88533DE61D0C} (Ofoto Upload Manager Class) - http://adobe.kodakgallery.fr/downloads/BUM..._1/axofupld.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://charon777.free.fr/plugins/hardwaredetection.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://fdata.over-blog.com/script/ImageUploader3.cab O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secur...loadManager.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (ASquaredScanForm Element) - http://www.windowsecurity.com/trojanscan/axscan.cab O16 - DPF: {CCA0B877-CB5E-4ADC-AD30-457C379512DD} (Gif89 Lite Class) - http://217.128.139.176/xplugLiteTW.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.pixdiscount.fr/clients/uploader_v2.1.0.53.cab O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.fnacphoto.com/ectelechargement/...oad/XUpload.ocx O20 - Winlogon Notify: avgwlntf - C:\WINDOWS\SYSTEM32\avgwlntf.dll O21 - SSODL: xokvrpwg - {EBA556DD-1C70-4DE6-8658-2E2582E3CE57} - C:\WINDOWS\xokvrpwg.dll O21 - SSODL: tfnslopk - {60AB9E68-D61F-43FF-B888-8DEF4ADAD9FB} - C:\WINDOWS\tfnslopk.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Unknown owner - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe (file missing) O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe O23 - Service: AVG Firewall (AVGFwSrv) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgfwsrv.exe O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O24 - Desktop Component 0: Privacy Protection - file:///C:\WINDOWS\privacy_danger\index.htm -- End of file - 12060 bytes

Bonjour et merci de ton aide. En mode sans échec tout se passe bien! Donc ça vient d'un programme? Est ce que browser.exe peut en être la cause? Cordialement Pierre

Bonjour! Je ne sais pas comment faire autrement, à moins que tu me donnes une adresse mail ou je peux t'envoyer un .pdf! Bien cordialement Pierre

Voici l'adresse .... si je ne me suis pas trompé ! Merci http://profile.imageshack.us/user/pierreforestier/

Merci à tous les 2! J'ai fait une copie d'écran sous Word et en pdf. Comment je la joins à ce courrier? Cordialement* Pierre

????? ..... et comment je vois qu'il y a des processus en cours? ( je te jure que je ne suis pas blonde!!)