bidibullu

hello! Manifestement mon PC va beaucoup mieux, je pense qu'on a réussi à éradiquer la plupart des problèmes... Quant aux mises à jour, elles ne sont pas toujours possible (jamais pu installer le pack 2), un probleme avec la clé de windows... Dans tous les cas encore merci pour ton aide! à bientôt

Bonjour kevin, Voici les deux rapports( et merci pour ton aide...) --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 11:17:34 19/06/2007 + Résultat de l'analyse: G:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP367\A0104873.exe -> Not-A-Virus.PSWTool.Win32.Messen.104 : Nettoyé. :mozilla.168:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé. :mozilla.169:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé. :mozilla.170:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé. :mozilla.404:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.496:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.608:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.629:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.65:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.661:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.66:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.67:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.68:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.69:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.70:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.71:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.72:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.73:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.74:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.75:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.76:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.77:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.78:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.79:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.80:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.81:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.190:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé. :mozilla.191:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé. :mozilla.201:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé. :mozilla.952:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé. :mozilla.953:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé. :mozilla.954:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé. :mozilla.148:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.149:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.24:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.25:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.83:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé. :mozilla.146:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@burstnet[2].txt -> TrackingCookie.Burstnet : Nettoyé. :mozilla.293:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé. :mozilla.294:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé. :mozilla.295:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé. :mozilla.296:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé. :mozilla.297:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé. :mozilla.298:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé. :mozilla.966:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyé. :mozilla.325:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Com : Nettoyé. :mozilla.934:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé. :mozilla.935:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé. :mozilla.936:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé. :mozilla.11:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé. :mozilla.383:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Enhance : Nettoyé. :mozilla.391:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Estat : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@estat[1].txt -> TrackingCookie.Estat : Nettoyé. :mozilla.126:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé. :mozilla.127:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé. :mozilla.128:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé. :mozilla.129:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé. :mozilla.130:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé. :mozilla.501:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé. :mozilla.502:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@search.live[1].txt -> TrackingCookie.Live : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@ie.search.msn[2].txt -> TrackingCookie.Msn : Nettoyé. :mozilla.34:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Overture : Nettoyé. :mozilla.35:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Overture : Nettoyé. :mozilla.36:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Overture : Nettoyé. :mozilla.672:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Overture : Nettoyé. :mozilla.202:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.203:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.204:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.205:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@ads.pointroll[3].txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.89:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé. :mozilla.116:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé. :mozilla.118:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé. :mozilla.136:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé. :mozilla.137:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé. :mozilla.138:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé. :mozilla.139:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé. :mozilla.140:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé. :mozilla.141:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé. :mozilla.142:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé. :mozilla.281:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.742:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.743:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.744:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.745:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.746:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.919:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.938:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.939:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.940:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.941:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.942:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.943:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.944:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.48:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.49:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.50:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.51:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.760:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé. :mozilla.761:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé. :mozilla.762:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé. :mozilla.763:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé. :mozilla.484:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Starware : Nettoyé. :mozilla.485:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Starware : Nettoyé. :mozilla.771:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.772:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.773:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.774:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.783:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé. :mozilla.784:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé. :mozilla.794:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.795:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.796:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.801:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé. :mozilla.43:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.46:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.949:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé. :mozilla.888:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.889:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.890:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé. C:\Documents and Settings\daniel\Cookies\daniel@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé. Fin du rapport Logfile of HijackThis v1.99.1 Scan saved at 12:14:49, on 19/06/2007 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\HPZipm12.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\wuauclt.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\WINDOWS\System32\atwtusb.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\System32\LVCOMSX.EXE C:\Program Files\Logitech\Video\CameraAssistant.exe C:\WINDOWS\System32\ElkCtrl.exe G:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\neuf telecom\neuf Box\Wizard\QuickAccess.exe C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe G:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe G:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe G:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\hijack this\scanner.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local., R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST1.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar1.02.5000.1021\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar1.02.5000.1021\fr\msntb.dll O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [atwtusb] atwtusb.exe beta O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation O4 - HKLM\..\Run: [HP Software Update] G:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - HKCU\..\Run: [Configuration de la neuf Box] C:\Program Files\neuf telecom\neuf Box\Wizard\QuickAccess.exe O4 - HKCU\..\Run: [LDM] \Program\ O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = G:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = G:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascstubie.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {F5078F32-C551-11D3-89B9-0000F81FE221} (XML DOM Document 3.0) - file://C:\Documents and Settings\daniel\Local Settings\Temp\SFX2E.tmp\msxml3.cab O18 - Protocol: bw+0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\System32\spool\drivers\w32x86\3\HPBPRO.EXE O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\System32\spool\drivers\w32x86\3\HPBOID.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe a+ tard

Bonjour, et voila le dernier rapport demandé: Search Navipromo version 2.0.3 commencé le 17/06/2007 à 10:55:47,37 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Poster ce rapport sur le forum pour le faire analyser !!! !!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!! Fix lancé depuis C:\Program Files\navilog1 Mise a jour le 08.06.2007 a 17h00 by IL-MAFIOSO Executé en mode normal *** Recherche Programmes installes *** *** Recherche dossiers dans C:\WINDOWS *** *** Recherche dossiers dans C:\Program Files *** *** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data *** *** Recherche dossiers dans C:\Documents and Settings\daniel\Application Data *** *** Recherche avec BlackLight Engine/F-secure *** BlackLight Engine est un produit de F-secure, pour + d'infos : http://www.f-secure.com/blacklight/blacklight_help.html F-SECURE BLACKLIGHT ROOTKIT ELIMINATOR ====================================== Copyright 2005-2006 F-Secure Corporation. All rights reserved. This is a beta version. It will expire on 1st of April, 2007. Version information: 2.2.1061. [+] Started on 06/17/07 at 10:55:48. [+] Initializing ... [+] Starting scan, press Ctrl-C to abort. [+] Scanning for hidden items ........................... [+] Scan complete. [+] Summary: 0 hidden item(s) found, 0 scheduled for renaming. [+] Exited on 06/17/07 at 10:56:52 (return code = 0). *** Recherche fichiers *** *** Recherche cles registre *** Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage] Recherche Clé Magic Control *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche fichiers connus: 2)Recherche Heuristique : * ** *** **** ***** ****** ******* ******** *** Analyse Terminé le 17/06/2007 à 10:57:09,38 ***

Voici le rapport antivir AntiVir PersonalEdition Classic Report file date: samedi 16 juin 2007 13:16 Scanning for 740715 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (plain) [5.1.2600] Username: daniel Computer name: DOMICILE-83I9NZ Version information: BUILD.DAT : 248 14437 Bytes 31/05/2007 16:59:00 AVSCAN.EXE : 7.0.4.15 282664 Bytes 20/04/2007 11:37:16 AVSCAN.DLL : 7.0.4.4 33832 Bytes 27/03/2007 11:31:56 LUKE.DLL : 7.0.4.11 143400 Bytes 27/03/2007 11:26:06 LUKERES.DLL : 7.0.4.0 10280 Bytes 19/03/2007 11:19:00 ANTIVIR0.VDF : 6.35.0.1 7371264 Bytes 31/05/2006 13:08:58 ANTIVIR1.VDF : 6.37.1.151 4303360 Bytes 23/02/2007 13:09:02 ANTIVIR2.VDF : 6.38.0.214 729600 Bytes 12/04/2007 13:09:02 ANTIVIR3.VDF : 6.38.0.225 50688 Bytes 16/04/2007 13:09:02 AVEWIN32.DLL : 7.4.0.12 2404864 Bytes 13/04/2007 13:04:24 AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 09:36:28 AVPREF.DLL : 7.0.2.1 24616 Bytes 27/03/2007 11:31:52 AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 12:16:24 AVPACK32.DLL : 7.3.0.8 360488 Bytes 27/03/2007 07:48:30 AVREG.DLL : 7.0.1.2 31784 Bytes 15/03/2007 08:05:10 AVEVTLOG.DLL : 7.0.0.18 86056 Bytes 27/03/2007 11:16:06 AVARKT.DLL : 1.0.0.17 278568 Bytes 02/05/2007 10:32:28 NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 10:09:44 RCIMAGE.DLL : 7.0.1.15 2228264 Bytes 13/03/2007 09:46:20 RCTEXT.DLL : 7.0.45.0 86056 Bytes 19/03/2007 11:42:44 Configuration settings for the scan: Jobname..........................: Manual Selection Configuration file...............: C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\PROFILES\folder.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: off Scan boot sector.................: on Boot sectors.....................: G:, Scan memory......................: on Process scan.....................: on Scan registry....................: on Search for rootkits..............: off Scan all files...................: All files Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox, Macro heuristic..................: on File heuristic...................: medium Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR, Start of the scan: samedi 16 juin 2007 13:16 The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'Explorer.EXE' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 10 processes with 10 modules were scanned Start scanning boot sectors: Boot sector 'A:\' [NOTE] In the drive 'A:\' no data medium is inserted! Boot sector 'C:\' [NOTE] No virus was found! Boot sector 'F:\' [NOTE] In the drive 'F:\' no data medium is inserted! Boot sector 'G:\' [NOTE] No virus was found! Starting to scan the registry. C:\Documents and Settings\All Users\Application Data\chin settings cdrom skip\move 01.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\Documents and Settings\All Users\Application Data\chin settings cdrom skip\move 01.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen C:\Documents and Settings\daniel\Application Data\more film junk\FirstList.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\Documents and Settings\daniel\Application Data\more film junk\FirstList.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen The registry was scanned ( '35' files ). Starting the file scan: Begin scan in 'A:\' Search path A:\ could not be opened! Le périphérique n'est pas prêt. Begin scan in 'C:\' C:\pagefile.sys [WARNING] The file could not be opened! C:\WINDOWS\hosts [DETECTION] Is the Trojan horse TR/Qhosts.HE [iNFO] The file was deleted! C:\Documents and Settings\All Users\Application Data\chin settings cdrom skip\idol extra.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\Documents and Settings\daniel\Application Data\more film junk\mlelpmwa.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\Documents and Settings\daniel\Application Data\more film junk\Global Remote Gpl.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\Documents and Settings\daniel\Application Data\more film junk\dguxruet.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\fil5E2B4A24.dat [0] Archive type: GZ --> fil5E2B4A24 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\fil8C81E090.dat [0] Archive type: GZ --> fil8C81E090 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\fil9FE2B484.dat [0] Archive type: GZ --> fil9FE2B484 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filC77C4000.dat [0] Archive type: GZ --> filC77C4000 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filE206B681.dat [0] Archive type: GZ --> filE206B681 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filF5D3AD44.dat [0] Archive type: GZ --> filF5D3AD44 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\fil8BF3DEC4.dat [0] Archive type: GZ --> fil8BF3DEC4 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\fil92477849.dat [0] Archive type: GZ --> fil92477849 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filA61A4290.dat [0] Archive type: GZ --> filA61A4290 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filACD9DD10.dat [0] Archive type: GZ --> filACD9DD10 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filB32D7FB9.dat [0] Archive type: GZ --> filB32D7FB9 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filC0ACBE79.dat [0] Archive type: GZ --> filC0ACBE79 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filC70066A4.dat [0] Archive type: GZ --> filC70066A4 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filE19308F1.dat [0] Archive type: GZ --> filE19308F1 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filF5661840.dat [0] Archive type: GZ --> filF5661840 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\fil164CAEE4.dat [0] Archive type: GZ --> fil164CAEE4 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\fil79019000.dat [0] Archive type: GZ --> fil79019000 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filBAD06910.dat [0] Archive type: GZ --> filBAD06910 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\fil2B0828A4.dat [0] Archive type: GZ --> fil2B0828A4 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\fil73992544.dat [0] Archive type: GZ --> fil73992544 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\Program Files\ewido anti-malware\Quarantine\filB56AD244.dat [0] Archive type: GZ --> filB56AD244 [DETECTION] Is the Trojan horse TR/Agent.aox [iNFO] The file was deleted! C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP367\A0104867.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP367\A0104868.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP367\A0104869.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP367\A0104870.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP367\A0104871.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP367\A0104872.exe [DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen [iNFO] The file was deleted! Begin scan in 'D:\' Search path D:\ could not be opened! Le périphérique n'est pas prêt. Begin scan in 'E:\' Search path E:\ could not be opened! Le périphérique n'est pas prêt. Begin scan in 'F:\' Search path F:\ could not be opened! Le périphérique n'est pas prêt. Begin scan in 'G:\' <DISQUE ALEX> G:\alex\stage2007\mspass.rar Folder\mspass.exe [DETECTION] Contains signature of the SPR/Messen.104 program [iNFO] The file was deleted! End of the scan: samedi 16 juin 2007 14:25 Used time: 1:09:09 min The scan has been done completely. 7124 Scanning directories 242941 Files were scanned 35 viruses and/or unwanted programs were found 0 classified as suspicious: 35 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 1 Files cannot be scanned 242906 Files not concerned 2088 Archives were scanned 1 Warnings 1 Notes 0 Hidden objects were found ...et hijackthis Logfile of HijackThis v1.99.1 Scan saved at 14:31:01, on 16/06/2007 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\WINDOWS\System32\atwtusb.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\System32\LVCOMSX.EXE C:\Program Files\Logitech\Video\CameraAssistant.exe C:\WINDOWS\System32\ElkCtrl.exe G:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\neuf telecom\neuf Box\Wizard\QuickAccess.exe C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe G:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe G:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe G:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\WINDOWS\System32\HPZipm12.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\wuauclt.exe C:\Program Files\hijack this\HijackThis.exe C:\Program Files\AntiVir PersonalEdition Classic\update.exe C:\WINDOWS\System32\wuauclt.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local., R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST1.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar1.02.5000.1021\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar1.02.5000.1021\fr\msntb.dll O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [atwtusb] atwtusb.exe beta O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation O4 - HKLM\..\Run: [HP Software Update] G:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - HKCU\..\Run: [Configuration de la neuf Box] C:\Program Files\neuf telecom\neuf Box\Wizard\QuickAccess.exe O4 - HKCU\..\Run: [LDM] \Program\ O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = G:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = G:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascstubie.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {F5078F32-C551-11D3-89B9-0000F81FE221} (XML DOM Document 3.0) - file://C:\Documents and Settings\daniel\Local Settings\Temp\SFX2E.tmp\msxml3.cab O18 - Protocol: bw+0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {93203CC3-6185-45E5-9DAA-80CCC0417E82} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\System32\spool\drivers\w32x86\3\HPBPRO.EXE O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\System32\spool\drivers\w32x86\3\HPBOID.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe

Bonjour à tous, Depuis quelques jours je rencontre des petits problémes ac mon Pc et ça ressemble fortement à un ou plusieurs virus... En effet des fenêtres pop up à longueur de temps apparaissent, l'ordi se bloque régulierement (plus aucune commande ne fonctionne) ,certains logiciels ne fonctionnent plus ,etc.... J ai fait tourné ad aware et spybot, avast ne detecte pas de virus donc je ne sais pas vraiment quoi faire... Si quelqu un a une solution je l attend avec impatience!

bonjour à tous Depuis quelques jours, à chaque fois que j allume mon pc des messages d erreur apparaissent et je ne vois vraiment pas d'ou vient le problème.... le premier provient de "document viewer" et dit "invalid drive G" et le second de microsoft.net framework et dit : "une exception non gérée s est produite dans un composant de votre application.Si vous cliquez sur continuer, votre application ignore cette erreur et essaie de continuer. Biensur qd je clique sur continuer rien ne change et le message d'erreur reste toujours à l ecran , il est impossible de le fermer. et voici le texte ecrit si je clique sur le bouton "détails" Consultez la fin de ce message pour plus de détails sur l'appel du débogage juste-à-temps (JIT) à la place de cette boîte de dialogue. ************** Texte de l'exception ************** System.NullReferenceException: La référence d'objet n'est pas définie à une instance d'un objet. at HP.CUE.Video.PlaybackControl.UpdateProgressBar() at HP.CUE.Video.PlaybackControl._ProgressTimer_Tick(Object sender, EventArgs e) at System.Windows.Forms.Timer.OnTick(EventArgs e) at System.Windows.Forms.Timer.Callback(IntPtr hWnd, Int32 msg, IntPtr idEvent, IntPtr dwTime) ************** Assemblys chargés ************** mscorlib Version de l'assembly : 1.0.5000.0 Version Win32 : 1.1.4322.573 CodeBase : file:///c:/windows/microsoft.net/framework/v1.1.4322/mscorlib.dll ---------------------------------------- hpqimzone Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///F:/Program%20Files/HP/Digital%20Imaging/bin/hpqimzone.exe ---------------------------------------- hpqiface Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqiface/4.0.0.0__a53cf5803f4c3827/hpqiface.dll ---------------------------------------- System.Windows.Forms Version de l'assembly : 1.0.5000.0 Version Win32 : 1.1.4322.573 CodeBase : file:///c:/windows/assembly/gac/system.windows.forms/1.0.5000.0__b77a5c561934e089/system.windows.forms.dll ---------------------------------------- System.Drawing Version de l'assembly : 1.0.5000.0 Version Win32 : 1.1.4322.573 CodeBase : file:///c:/windows/assembly/gac/system.drawing/1.0.5000.0__b03f5f7f11d50a3a/system.drawing.dll ---------------------------------------- System Version de l'assembly : 1.0.5000.0 Version Win32 : 1.1.4322.573 CodeBase : file:///c:/windows/assembly/gac/system/1.0.5000.0__b77a5c561934e089/system.dll ---------------------------------------- hpqcc2 Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqcc2/3.0.0.0__a53cf5803f4c3827/hpqcc2.dll ---------------------------------------- hpqutils Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqutils/4.0.0.0__a53cf5803f4c3827/hpqutils.dll ---------------------------------------- hpqfmrsc Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqfmrsc/4.0.0.0__a53cf5803f4c3827/hpqfmrsc.dll ---------------------------------------- hpqtray Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqtray/4.0.0.0__a53cf5803f4c3827/hpqtray.dll ---------------------------------------- hpqovskn Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqovskn/3.0.0.0__a53cf5803f4c3827/hpqovskn.dll ---------------------------------------- hpqthumb Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqthumb/3.0.0.0__a53cf5803f4c3827/hpqthumb.dll ---------------------------------------- hpqimvlt Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqimvlt/3.0.0.0__a53cf5803f4c3827/hpqimvlt.dll ---------------------------------------- hpqimgrc Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqimgrc/4.0.0.0__a53cf5803f4c3827/hpqimgrc.dll ---------------------------------------- hpqimzone.resources Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.099.000 CodeBase : file:///F:/Program%20Files/HP/Digital%20Imaging/bin/fr/hpqimzone.resources.DLL ---------------------------------------- hpqntrop Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqntrop/4.0.0.0__a53cf5803f4c3827/hpqntrop.dll ---------------------------------------- Interop.hpqcxm08 Version de l'assembly : 3.0.0.0 Version Win32 : 70.0.170.000 CodeBase : file:///c:/windows/assembly/gac/interop.hpqcxm08/3.0.0.0__a53cf5803f4c3827/interop.hpqcxm08.dll ---------------------------------------- mscorlib.resources Version de l'assembly : 1.0.5000.0 Version Win32 : 1.1.4322.573 CodeBase : file:///c:/windows/assembly/gac/mscorlib.resources/1.0.5000.0_fr_b77a5c561934e089/mscorlib.resources.dll ---------------------------------------- System.Xml Version de l'assembly : 1.0.5000.0 Version Win32 : 1.1.4322.573 CodeBase : file:///c:/windows/assembly/gac/system.xml/1.0.5000.0__b77a5c561934e089/system.xml.dll ---------------------------------------- LEAD Version de l'assembly : 13.0.0.113 Version Win32 : 13.0.0.113 CodeBase : file:///c:/windows/assembly/gac/lead/13.0.0.113__9cf889f53ea9b907/lead.dll ---------------------------------------- LEAD.Wrapper Version de l'assembly : 13.0.0.113 Version Win32 : 13.0.0.113 CodeBase : file:///c:/windows/assembly/gac/lead.wrapper/13.0.0.113__9cf889f53ea9b907/lead.wrapper.dll ---------------------------------------- hpqtray.resources Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.099.000 CodeBase : file:///c:/windows/assembly/gac/hpqtray.resources/4.0.0.0_fr_a53cf5803f4c3827/hpqtray.resources.dll ---------------------------------------- hpqfmrsc.resources Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.099.000 CodeBase : file:///c:/windows/assembly/gac/hpqfmrsc.resources/4.0.0.0_fr_a53cf5803f4c3827/hpqfmrsc.resources.dll ---------------------------------------- LEAD.Windows.Forms Version de l'assembly : 13.0.0.113 Version Win32 : 13.0.0.113 CodeBase : file:///c:/windows/assembly/gac/lead.windows.forms/13.0.0.113__9cf889f53ea9b907/lead.windows.forms.dll ---------------------------------------- LEAD.Drawing Version de l'assembly : 13.0.0.113 Version Win32 : 13.0.0.113 CodeBase : file:///c:/windows/assembly/gac/lead.drawing/13.0.0.113__9cf889f53ea9b907/lead.drawing.dll ---------------------------------------- interop.hpqimgr Version de l'assembly : 4.0.0.0 Version Win32 : 4.0.0.0 CodeBase : file:///c:/windows/assembly/gac/interop.hpqimgr/4.0.0.0__a53cf5803f4c3827/interop.hpqimgr.dll ---------------------------------------- hpqasset Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqasset/4.0.0.0__a53cf5803f4c3827/hpqasset.dll ---------------------------------------- Interop.hprblog Version de l'assembly : 3.0.0.0 Version Win32 : 3.0.0.0 CodeBase : file:///c:/windows/assembly/gac/interop.hprblog/3.0.0.0__a53cf5803f4c3827/interop.hprblog.dll ---------------------------------------- hpqmirsc Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///F:/Program%20Files/HP/Digital%20Imaging/bin/hpqmirsc.DLL ---------------------------------------- hpqmirsc.resources Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.099.000 CodeBase : file:///F:/Program%20Files/HP/Digital%20Imaging/bin/fr/hpqmirsc.resources.DLL ---------------------------------------- hpqedit Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqedit/3.0.0.0__a53cf5803f4c3827/hpqedit.dll ---------------------------------------- hpqvideo Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqvideo/3.0.0.0__a53cf5803f4c3827/hpqvideo.dll ---------------------------------------- LEAD.Windows.Forms.DrawingContainer Version de l'assembly : 13.0.0.113 Version Win32 : 13.0.0.113 CodeBase : file:///c:/windows/assembly/gac/lead.windows.forms.drawingcontainer/13.0.0.113__9cf889f53ea9b907/lead.windows.forms.drawingcontainer.dll ---------------------------------------- hpqmdmr Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqmdmr/4.0.0.0__a53cf5803f4c3827/hpqmdmr.dll ---------------------------------------- LEAD.Drawing.Imaging.ImageProcessing Version de l'assembly : 13.0.0.113 Version Win32 : 13.0.0.113 CodeBase : file:///c:/windows/assembly/gac/lead.drawing.imaging.imageprocessing/13.0.0.113__9cf889f53ea9b907/lead.drawing.imaging.imageprocessing.dll ---------------------------------------- hpqimlib Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqimlib/3.0.0.0__a53cf5803f4c3827/hpqimlib.dll ---------------------------------------- hpqedit.resources Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.099.000 CodeBase : file:///c:/windows/assembly/gac/hpqedit.resources/3.0.0.0_fr_a53cf5803f4c3827/hpqedit.resources.dll ---------------------------------------- hpqglutl Version de l'assembly : 4.0.0.0 Version Win32 : 065.000.117.000 CodeBase : file:///c:/windows/assembly/gac/hpqglutl/4.0.0.0__a53cf5803f4c3827/hpqglutl.dll ---------------------------------------- hpqcc2.resources Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.099.000 CodeBase : file:///c:/windows/assembly/gac/hpqcc2.resources/3.0.0.0_fr_a53cf5803f4c3827/hpqcc2.resources.dll ---------------------------------------- hpqvideo.resources Version de l'assembly : 3.0.0.0 Version Win32 : 065.000.099.000 CodeBase : file:///F:/Program%20Files/HP/Digital%20Imaging/bin/fr/hpqvideo.resources.DLL ---------------------------------------- interop.hpqvideo Version de l'assembly : 4.0.0.0 Version Win32 : 4.0.0.0 CodeBase : file:///c:/windows/assembly/gac/interop.hpqvideo/4.0.0.0__a53cf5803f4c3827/interop.hpqvideo.dll ---------------------------------------- SYSTEM.WINDOWS.FORMS.resources Version de l'assembly : 1.0.5000.0 Version Win32 : 1.1.4322.573 CodeBase : file:///c:/windows/assembly/gac/system.windows.forms.resources/1.0.5000.0_fr_b77a5c561934e089/system.windows.forms.resources.dll ---------------------------------------- ************** Débogage JIT ************** Pour activer le débogage juste-à-temps (JIT), le fichier de configuration pour cette application ou cet ordinateur (machine.config) doit avoir la valeur jitDebugging définie dans la section system.windows.forms. L'application doit également être compilée avec le débogage activé. Par exemple : <configuration> <system.windows.forms jitDebugging="true" /> </configuration> Lorsque le débogage juste-à-temps est activé, les exceptions non gérées seront envoyées au débogueur JIT inscrit sur l'ordinateur plutôt que d'être gérées par cette boîte de dialogue. j ai l impression que ça vient du logiciel de l imprimante...j ai essayé de le réinstaller mais rien n y fait..... si quelqu un à une idée sur la question merci de bien vouloir m aider!!

waouhh!!!!tout est apparemment rentré dans l'ordre après avoir fait executer regsvr32 msxml3.dl merci bcp pour tes précieux conseils!!!!!

oui j ai un message d'erreur qui dit: "MMC ne peut pas ouvrir le fichierC:\WINDOWS\system32\compmgmt.msc le fichier n'existe peut être pas, n'est pas une console MMC ou a été crée dans une version ulterieure de MMC.cela peut aussi se produire si car vous n avez pas de droits d'accès suffisants à ce fichier." étrange,non????

alors oui le fichier est bien présent mais manifestement corrompu...j ai donc suivi toute les manipulations que tu m as conseillé de faire mais rien y fait! ni la création des raccourci ni "sfc/scannow"... As tu une autre solution?

....et les chemins d'acces sont pourtant valides apparemment!

l'icone est bien présente mais le même message d'erreur apparaît...donc manifestement tout a disparu...

bonjour à tous!<br /><br />j ai un petit probleme avec les outils d administration car je ne peux plus y avoir accès....j ignore ce qu il s est passé...peut être un virus..dans tous les cas à chaque fois que je tente d en ouvrir un le message suivant apparaît: "MMC ne peut pas ouvrir le fichier C:\windows\system32\compmgmt.msc.<br /><br />si quelqu un a deja rencontré le probleme et qu il a trouvé une solution!merci de m en faire part!!

salut!!! oui oui c bon il est bien démarré et il est en auto!!!

ah non on oublie ce que je viens de dire avant!! Tout va bien en fait!! Merci à tous et à bientôt...

Salut!!! Je pense que ts les problèmes de virus sr réglés!! OUF!!! par contre (sans vouloir insister....) je pense qu il y a qd même un probleme au niveau des mises à jour car par exemple windows update n existe même pas ds le menu demarrer... et il n ya aucun fichier windows update sur l'ordi... c'est qd même bizarre non?!...

et encore quelques petits pbs ... Incident Statut Analyse Outil indésirable:Application/Processor No Désinfecté C:\WINDOWS\system32\Process.exe Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\daniel\Bureau\SmitfraudFix\Process.exe Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt[] Dialer:Dialer.ABR No Désinfecté C:\Program Files\hijack this\backups\backup-20050719-114904-556.inf Dialer:Dialer.ABR No Désinfecté C:\Program Files\hijack this\backups\backup-20050719-114904-973.inf A tte!!

oki oki!!! voici les rapports alors : --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 19:58:03, 19/04/2006 + Somme de contrôle: 6834CD09 + Résultats du scan: :mozilla.19:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.20:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder :mozilla.23:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder :mozilla.41:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder :mozilla.44:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.45:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.47:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.48:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder :mozilla.49:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder :mozilla.50:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder :mozilla.51:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder :mozilla.60:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.83:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.84:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.109:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.110:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.111:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.112:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.247:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.343:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyer et sauvegarder :mozilla.344:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyer et sauvegarder :mozilla.402:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.403:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.453:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.454:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.526:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.613:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.614:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.662:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.663:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.664:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP480\A0115887.exe -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP480\A0115888.exe -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder ::Fin du rapport Logfile of HijackThis v1.99.1 Scan saved at 20:00:25, on 19/04/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\hijack this\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1144923053405 O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe PS: j ai pas trouvé les backups demandés... A+

Coucou Regis et merci pr ton aide!! En ce qui concerne les mises à jour c'est une veritable galère . la fonction mise à jour automatique est bien activée ms lorsque je vais sur windows update je me rend compte qu elle n ont plus lieux depuis fevrier et lorsque j essaie de les lançer un message d erreur apparaît : " Les fichiers nécessaires à l'utilisation de Microsoft Update ne sont plus inscrits dans le Registre ou installés sur votre ordinateur. " on me propose alors de les réinstaller ms malheureusement ça ne fonctionne pas!!???? RIEN A FAIRE...

oui je pense que l'ordi va mieux. merci bcp!!!! quand aux mises à jour le problème est qu elles st absolument impossibles à faire!! le pack 2 refuse de s'installer et comme message d erreur on me signale qu il s agit surement de la clé qui n est pas valide... apparemment la seule solution serait de réinstaller windows XP (et pas ma version puisque manifestement elle n est pas bonne...) voici le scan panda: Incident Statut Analyse Outil indésirable:Application/Processor No Désinfecté C:\WINDOWS\system32\Process.exe Dialer:Dialer.Gen No Désinfecté C:\WINDOWS\switchagreement.txt Outil indésirable:Application/KillApp.A No Désinfecté C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\U1UFMX2X\mhciscyvfp[1].txt Outil indésirable:Application/KillApp.A No Désinfecté C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\A5Y7S9EB\xtntqj[1].txt Adware:Adware/PurityScan No Désinfecté C:\Documents and Settings\daniel\Mes documents\installation\start.INF Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\daniel\Bureau\SmitfraudFix\Process.exe Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\daniel\Cookies\daniel@bluestreak[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt[] Dialer:Dialer.ABR No Désinfecté C:\Program Files\hijack this\backups\backup-20050719-114904-556.inf Dialer:Dialer.ABR No Désinfecté C:\Program Files\hijack this\backups\backup-20050719-114904-973.inf A+

salut a tous!!! voici les deux rapports demandés: Logfile of HijackThis v1.99.1 Scan saved at 12:00:43, on 16/04/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\wuauclt.exe C:\Program Files\hijack this\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1144923053405 O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe +scan escan: File C:\WINDOWS\System32\cnkdsk.exe infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. File C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearchAffIedll.zip infected by "Password-protected-EXE" Virus. Action Taken: File Renamed. File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\GH6BG5ST\lewl[1].exe infected by "Trojan-Downloader.Win32.Harnig.bd" Virus. Action Taken: File Deleted. File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\GH6BG5ST\gakogyc[1].htm infected by "Trojan.Win32.Harnig.a" Virus. Action Taken: File Deleted. File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\GH6BG5ST\gfapzj[1].htm infected by "Trojan.Win32.Harnig.a" Virus. Action Taken: File Deleted. File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\GH6BG5ST\jnvutifcih[1].txt infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\A5Y7S9EB\lkfhroxlam[1].htm infected by "Trojan.Win32.Harnig.a" Virus. Action Taken: File Deleted. File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\A5Y7S9EB\lkfhroxlam[2].htm infected by "Trojan.Win32.Harnig.k" Virus. Action Taken: File Deleted. File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0P8FA5UP\lewl[1].exe infected by "Trojan-Downloader.Win32.Harnig.bh" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP477\A0113605.exe infected by "Trojan-Downloader.Win32.Harnig.bd" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113643.exe infected by "Trojan-Downloader.Win32.Harnig.bg" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113656.exe infected by "Trojan-Downloader.Win32.Harnig.bh" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113693.exe infected by "Trojan-Downloader.Win32.Harnig.bh" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0114713.exe infected by "Trojan-Downloader.Win32.Harnig.bh" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0114721.exe infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0114722.exe infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115724.exe infected by "Trojan-Downloader.Win32.Harnig.bh" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115728.exe infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115733.exe infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115845.exe infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP479\A0115856.exe infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP480\A0115879.exe infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP480\A0115885.exe infected by "Trojan-Spy.Win32.Delf.ig" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP480\A0115886.exe infected by "Trojan.Win32.Conycspa.c" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP488\A0116440.exe infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP488\A0116463.exe infected by "Trojan-Proxy.Win32.Small.bo" Virus. Action Taken: File Deleted. A+

salut j ai suivi les conseils et voici le rapport: SmitFraudFix v2.29 Rapport fait à 19:56:49,93, 15/04/2006 Executé à partir de C:\Documents and Settings\daniel\Bureau\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] »»»»»»»»»»»»»»»»»»»»»»»» Arret des processus »»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés C:\tool4.exe supprimé C:\uniq supprimé C:\WINDOWS\system32\amcompat.tlb supprimé C:\WINDOWS\system32\bin29a.log supprimé C:\WINDOWS\system32\nscompat.tlb supprimé C:\WINDOWS\system32\wp.bmp supprimé C:\Program Files\secure32.html supprimé »»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires »»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre HKLM\SOFTWARE\PSGuard.com supprimé Nettoyage terminé. »»»»»»»»»»»»»»»»»»»»»»»» Fin Logfile of HijackThis v1.99.1 Scan saved at 20:04:49, on 15/04/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\WINDOWS\System32\wuauclt.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\hijack this\HijackThis.exe + highjackthis R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1144923053405 O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{EF510DFF-9D3F-490B-8212-AC511A2BB76F}: NameServer = 84.103.237.146 86.64.145.146 O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: BitSec(bitsec) (BitSec) - Unknown owner - C:\WINDOWS\system32\bitsec.exe (file missing) O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe ...

Ah oui dsl !!! HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run + AVG7_CC AVG Control Center (Not verified) GRISOFT, s.r.o. c:\program files\grisoft\avg free\avgcc.exe + AVG7_EMC AVG E-Mail Scanner (Not verified) GRISOFT, s.r.o. c:\program files\grisoft\avg free\avgemc.exe + iTunesHelper iTunesHelper Module (Not verified) Apple Computer, Inc. c:\program files\itunes\ituneshelper.exe + msnappau MSN Updater (Not verified) Microsoft Corporation c:\program files\msn apps\updater\01.02.3000.1001\fr\msnappau.exe + NeroFilterCheck NeroCheck (Not verified) Ahead Software Gmbh c:\windows\system32\nerocheck.exe + QuickTime Task QuickTime Task (Not verified) Apple Computer, Inc. c:\program files\quicktime\qttask.exe + SunJavaUpdateSched Java 2 Platform Standard Edition binary (Not verified) Sun Microsystems, Inc. c:\program files\java\jre1.5.0_06\bin\jusched.exe + TkBellExe RealNetworks Scheduler (Not verified) RealNetworks, Inc. c:\program files\fichiers communs\real\update_ob\realsched.exe + Zone Labs Client Zone Labs Client (Verified) Check Point Software Technologies Inc. c:\program files\zone labs\zonealarm\zlclient.exe C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage + Adobe Gamma Loader.lnk Adobe Gamma Loader (Not verified) Adobe Systems, Inc. c:\program files\fichiers communs\adobe\calibration\adobe gamma loader.exe + DSLMON.lnk ADIMON MFC Application c:\program files\sagem\sagem f@st 800-840\dslmon.exe HKCU\Software\Microsoft\Windows\CurrentVersion\Run + CursorXP CursorXP (Not verified) c:\program files\cursorxp\cursorxp.exe + msnmsgr c:\program files\msn HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components + CRLUpdate UPDCRL (Not verified) Microsoft Corporation c:\windows\system32\updcrl.exe HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks + ewido shell guard c:\program files\ewido anti-malware\shellhook.dll HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved + AVG7 Find Extension AVG Shell Extension (Not verified) GRISOFT, s.r.o. c:\program files\grisoft\avg free\avgse.dll + AVG7 Shell Extension AVG Shell Extension (Not verified) GRISOFT, s.r.o. c:\program files\grisoft\avg free\avgse.dll + Extension Affichage Panorama du Panneau de configuration File not found: deskpan.dll + iTunes iTunes Mini Player DLL (Not verified) Apple Computer, Inc. c:\program files\itunes\itunesminiplayer.dll + Microsoft Outlook Custom Icon Handler Microsoft Outlook Shell Hook for Start/Find (Not verified) Microsoft Corporation c:\program files\microsoft office\office\olkfstub.dll + Shell Extensions for RealOne Player RealPlayer Shell Extensions (Not verified) RealNetworks, Inc. c:\program files\real\realplayer\rpshell.dll + WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\program files\winzip\wzshlstb.dll + WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\program files\winzip\wzshlstb.dll + WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\program files\winzip\wzshlstb.dll + WinZip WinZip Shell Extension DLL (Not verified) WinZip Computing, Inc. c:\program files\winzip\wzshlstb.dll HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved + Dossiers Web c:\program files\fichiers communs\microsoft shared\web folders\msonsext.dll + Qzip Shell extension c:\program files\quickzip\qzshlext.dll HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects + MSNToolBandBHO MSN Toolbar extension (Not verified) Microsoft Corporation c:\program files\msn apps\msn toolbar\01.02.4000.1001\fr\msntb.dll + SSVHelper Class Java 2 Platform Standard Edition binary (Not verified) Sun Microsystems, Inc. c:\program files\java\jre1.5.0_06\bin\ssv.dll + ST st (Not verified) Microsoft Corporation c:\program files\msn apps\st\01.03.0000.1005\en-xu\stmain.dll + {53707962-6F74-2D53-2644-206D7942484F} Bad download blocker (Verified) Safer Networking Ltd. c:\program files\spybot - search & destroy\sdhelper.dll HKLM\Software\Microsoft\Internet Explorer\Toolbar + 0 MSN Toolbar extension (Not verified) Microsoft Corporation c:\program files\msn apps\msn toolbar\01.02.4000.1001\fr\msntb.dll + googletoolbar2.dll Google IE Client Toolbar (Not verified) Google Inc. c:\program files\google\googletoolbar2.dll HKLM\Software\Microsoft\Internet Explorer\Extensions + Windows Messenger Messenger (Not verified) Microsoft Corporation c:\program files\messenger\msmsgs.exe HKLM\System\CurrentControlSet\Services + ATI Smart ATI Smart c:\windows\system32\ati2sgag.exe + Avg7Alrt AVG Alert Manager (Not verified) GRISOFT, s.r.o. c:\program files\grisoft\avg free\avgamsvr.exe + Avg7UpdSvc AVG Update Service (Not verified) GRISOFT, s.r.o. c:\program files\grisoft\avg free\avgupsvc.exe + BitSec Transfers data between clients and servers in the background. If BITSEC is disabled, features such as Windows Update will not work correctly. File not found: C:\WINDOWS\system32\bitsec.exe + Bonjour Service Permet aux périphériques matériels et aux services logiciels de s’auto-configurer et de se faire connaître sur le réseau, afin que les utilisateurs détectent et utilisent ces services sans intervention manuelle ou superflue pour les installer ou les administrer. File not found: C:\Program Files\Bonjour\mDNSResponder.exe + C-DillaCdaC11BA C-Dilla RTS Service (Not verified) C-Dilla Ltd c:\windows\system32\drivers\cdac11ba.exe + ewido security suite control ewido control (Not verified) ewido networks c:\program files\ewido anti-malware\ewidoctrl.exe + vsmon Monitors internet traffic and generates alerts for disallowed access. (Verified) Check Point Software Technologies Inc. c:\windows\system32\zonelabs\vsmon.exe HKLM\System\CurrentControlSet\Services + ACPI Pilote ACPI pour NT (Not verified) Microsoft Corporation c:\windows\system32\drivers\acpi.sys + Avg7Core AVG Scanning Engine (Not verified) GRISOFT, s.r.o. c:\windows\system32\drivers\avg7core.sys + Avg7RsW AVG Resident Shield Unload Helper (Not verified) GRISOFT, s.r.o. c:\windows\system32\drivers\avg7rsw.sys + Avg7RsXP AVG Resident Anti-Virus Shield (Not verified) GRISOFT, s.r.o. c:\windows\system32\drivers\avg7rsxp.sys + AvgTdi AVG Network connection watcher (Not verified) GRISOFT, s.r.o. c:\windows\system32\drivers\avgtdi.sys + directprt File not found: C:\WINDOWS\System32\directprt.sys + GEARAspiWDM CDRom Class Filter Driver (Verified) GEAR Software Inc. c:\windows\system32\drivers\gearaspiwdm.sys + PxHelp20 Px Engine Device Driver for Windows 2000/XP (Not verified) Sonic Solutions c:\windows\system32\drivers\pxhelp20.sys + usbehci EHCI eUSB Miniport Driver (Not verified) Microsoft Corporation c:\windows\system32\drivers\usbehci.sys + vsdatant TrueVector Device Driver (Verified) Check Point Software Technologies Inc. c:\windows\system32\vsdatant.sys + yukonx86 NDIS5.1 Miniport Driver for Marvell Yukon Gigabit Ethernet Adapter (Not verified) Marvell Semiconductor Inc. c:\windows\system32\drivers\yukonx86.sys HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute + autocheck autochk * Utilitaire de vérification automatique (Not verified) Microsoft Corporation c:\windows\system32\autochk.exe HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\UIHost + logonui.exe Windows Logon UI (Not verified) Microsoft Corporation c:\windows\system32\logonui.exe

hey non peut pas telecharger http://forum.zebulon.fr/index.php?act=Atta...ype=post&id=237 j attend de tes nouvelles

et voici le rapport autoruns: SmitFraudFix v2.29 Rapport fait à 20:04:32,06, 14/04/2006 Executé à partir de C:\Documents and Settings\daniel\Bureau\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] »»»»»»»»»»»»»»»»»»»»»»»» C:\ C:\tool4.exe PRESENT ! C:\uniq PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 C:\WINDOWS\system32\amcompat.tlb PRESENT ! C:\WINDOWS\system32\bin29a.log PRESENT ! C:\WINDOWS\system32\nscompat.tlb PRESENT ! C:\WINDOWS\system32\wp.bmp PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\daniel\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\daniel\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files C:\Program Files\secure32.html PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues HKLM\SOFTWARE\PSGuard.com PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Ma page d'accueil" »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" [HKEY_CLASSES_ROOT\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" [HKEY_CLASSES_ROOT\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{38D4D5D0-423E-4220-B6F9-30918C2AE4A4}"="" [HKEY_CLASSES_ROOT\CLSID\{38D4D5D0-423E-4220-B6F9-30918C2AE4A4}\InProcServer32] @="˜=" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{38D4D5D0-423E-4220-B6F9-30918C2AE4A4}\InProcServer32] @="ˆ=" »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin

coucou!! voici le rapport smitfraufix: SmitFraudFix v2.29 Rapport fait à 20:04:32,06, 14/04/2006 Executé à partir de C:\Documents and Settings\daniel\Bureau\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] »»»»»»»»»»»»»»»»»»»»»»»» C:\ C:\tool4.exe PRESENT ! C:\uniq PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 C:\WINDOWS\system32\amcompat.tlb PRESENT ! C:\WINDOWS\system32\bin29a.log PRESENT ! C:\WINDOWS\system32\nscompat.tlb PRESENT ! C:\WINDOWS\system32\wp.bmp PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\daniel\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\daniel\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files C:\Program Files\secure32.html PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues HKLM\SOFTWARE\PSGuard.com PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Ma page d'accueil" »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" [HKEY_CLASSES_ROOT\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" [HKEY_CLASSES_ROOT\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{38D4D5D0-423E-4220-B6F9-30918C2AE4A4}"="" [HKEY_CLASSES_ROOT\CLSID\{38D4D5D0-423E-4220-B6F9-30918C2AE4A4}\InProcServer32] @="˜=" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{38D4D5D0-423E-4220-B6F9-30918C2AE4A4}\InProcServer32] @="ˆ=" »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin j attend d autres indications avt d essayer d autres options