a beluga

ok, mais c'est parce que mon ordinateur est très lent par rapport à ces capacités, alors peut-être saurais-tu comment.... on peut essatyer d'optimiser le rapport... voir si ça changera quelquechose... merci

bonjour, je suis entrain de faire le scan kaspersky, entre temps, peux-tu me dire comment optimiser mon hijackthis pour qu'il soit un peu moins long? c'est-à-dire d'enlever des choses inutiles? merci

bonjour, non je n'utilise plus norton. et il n'y avait pas ces lignes dans hijackthis : O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL et O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~ aussi il n'y avait pas ce fichier : pxwma.dll voici le rapport ewido : --------------------------------------------------------- ewido anti-spyware - Scan Report --------------------------------------------------------- + Created at: 13:43:00 2006-08-21 + Scan result: C:\WINDOWS\Downloaded Program Files\valent.inf -> Adware.BetterInternet : Cleaned with backup (quarantined). C:\RECYCLER\S-1-5-21-1960408961-1801674531-725345543-1004\Dc21\vmntoolbar.dll -> Adware.BHO : Cleaned with backup (quarantined). HKLM\SOFTWARE\Microsoft\VisualStudio\Analyzer\Events\{6C736D71-BCBF-11D0-8A23-00AA00B58E10} -> Adware.CoolWebSearch : Cleaned with backup (quarantined). HKU\S-1-5-21-1960408961-1801674531-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A2595F37-48D0-46A1-9B51-478591A97764} -> Adware.Generic : Cleaned with backup (quarantined). HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ISTbarISTbar -> Adware.HotBar : Cleaned with backup (quarantined). HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Explorer Security Plugin 2006 -> Adware.IntCodec : Cleaned with backup (quarantined). HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Security Add-On -> Adware.IntCodec : Cleaned with backup (quarantined). HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Public Messenger ver 2.03 -> Adware.IntCodec : Cleaned with backup (quarantined). HKLM\SOFTWARE\PerfectNav -> Adware.KeenValue : Cleaned with backup (quarantined). C:\Downloads\AquabbleQuestSetup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\AseaSetup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\AtlantisSetup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\Chainz2_Setup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\FortuneTiles-WinSetup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\GaminoSetup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\PiratesOfTreasureIsland-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\SuperSwapDeluxeSetup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\VortHexSetup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\Wonders_Setup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\aquabblesSetup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Downloads\geomsetup-dm[1].exe -> Adware.Trymedia : Cleaned with backup (quarantined). C:\Documents and Settings\Alexis\Local Settings\Temp\uninstall.exe -> Adware.VMN : Cleaned with backup (quarantined). C:\RECYCLER\S-1-5-21-1960408961-1801674531-725345543-1004\Dc21\uninstall.exe -> Adware.VMN : Cleaned with backup (quarantined). C:\Documents and Settings\Alexis\Mes documents\hijackthis\backups\backup-20060821-121601-625.dll -> Adware.Webdir : Cleaned with backup (quarantined). HKU\S-1-5-21-1960408961-1801674531-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58F07DD3-924D-4141-BC74-299F523A95F1} -> Adware.WebDir : Cleaned with backup (quarantined). HKLM\SOFTWARE\Classes\VacPro.canada_ver3 -> Dialer.Generic : Cleaned with backup (quarantined). HKLM\SOFTWARE\Classes\VacPro.canada_ver3\Clsid -> Dialer.Generic : Cleaned with backup (quarantined). :mozilla.10:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.7:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.8:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.9:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.11:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.123:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.127:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.140:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.6:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.2o7 : Cleaned. C:\Documents and Settings\Alexis\Cookies\alexis@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned. :mozilla.14:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.15:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.16:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.6:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Addynamix : Cleaned. :mozilla.65:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Adserver : Cleaned. :mozilla.66:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Adserver : Cleaned. :mozilla.67:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Adserver : Cleaned. :mozilla.19:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Adtech : Cleaned. :mozilla.20:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Adtech : Cleaned. C:\Documents and Settings\Marie-Hélène\Cookies\marie-hélène@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned. :mozilla.267:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Burstnet : Cleaned. :mozilla.64:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Clickzs : Cleaned. :mozilla.65:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Clickzs : Cleaned. :mozilla.66:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Clickzs : Cleaned. :mozilla.67:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Clickzs : Cleaned. :mozilla.47:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Com : Cleaned. :mozilla.228:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Cqcounter : Cleaned. :mozilla.76:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Estat : Cleaned. :mozilla.7:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.15:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Gator : Cleaned. :mozilla.242:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Masterstats : Cleaned. :mozilla.76:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Masterstats : Cleaned. :mozilla.250:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Onestat : Cleaned. :mozilla.251:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Onestat : Cleaned. :mozilla.153:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.52:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.68:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Realcastmedia : Cleaned. :mozilla.69:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Realcastmedia : Cleaned. :mozilla.166:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.167:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.168:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.169:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.40:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. C:\Documents and Settings\Alexis\Cookies\alexis@serving-sys[2].txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.50:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Sexcounter : Cleaned. :mozilla.51:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Sexcounter : Cleaned. :mozilla.52:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Sexcounter : Cleaned. :mozilla.53:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Sexcounter : Cleaned. :mozilla.54:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Sexcounter : Cleaned. :mozilla.55:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Sexcounter : Cleaned. :mozilla.56:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Sexcounter : Cleaned. :mozilla.57:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Sexcounter : Cleaned. :mozilla.58:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Sexcounter : Cleaned. :mozilla.59:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Sexcounter : Cleaned. :mozilla.54:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Starware : Cleaned. :mozilla.55:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Starware : Cleaned. :mozilla.179:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.182:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.183:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.184:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.189:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned. :mozilla.190:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned. :mozilla.58:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.59:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.60:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.61:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.191:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.192:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.62:C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.206:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Web-stat : Cleaned. :mozilla.207:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Web-stat : Cleaned. :mozilla.208:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Web-stat : Cleaned. :mozilla.203:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Weborama : Cleaned. :mozilla.204:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Weborama : Cleaned. :mozilla.229:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.230:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.222:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.223:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.224:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.41:C:\Documents and Settings\Alexis\Application Data\Mozilla\Firefox\Profiles\mp8bpj4v.Alexis\cookies.txt -> TrackingCookie.Zedo : Cleaned. C:\Documents and Settings\Alexis\Cookies\alexis@zedo[2].txt -> TrackingCookie.Zedo : Cleaned. ::Report end et le rapport hijackthis : Logfile of HijackThis v1.99.1 Scan saved at 13:52:58, on 2006-08-21 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\ewido anti-spyware 4.0\guard.exe C:\WINDOWS\System32\gearsec.exe C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\CheckPoint\SecuRemote\bin\SR_WatchDog.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe C:\Program Files\ewido anti-spyware 4.0\ewido.exe C:\WINDOWS\system32\WgaTray.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\Program Files\Xfire\Xfire.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Opera\Opera.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\Documents and Settings\Alexis\Mes documents\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe N3 - Netscape 7: user_pref("browser.search.defaultengine", "http://www.google.com/"); (C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\prefs.js) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\Xfire.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: ckpNotify - C:\WINDOWS\SYSTEM32\ckpNotify.dll O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe O23 - Service: Service de sécurité matérielle (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Check Point SecuRemote Service (SR_Service) - Check Point Software Technologies - C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe O23 - Service: Check Point SecuRemote WatchDog (SR_WatchDog) - Check Point Software Technologies - C:\Program Files\CheckPoint\SecuRemote\bin\SR_WatchDog.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

bonjour, voici le rapport de smitfraudfix : SmitFraudFix v2.81 Rapport fait à 22:30:51,73, 2006-08-20 Executé à partir de C:\Documents and Settings\Alexis\Bureau\smitfraud\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Fix executé en mode sans echec »»»»»»»»»»»»»»»»»»»»»»»» Avant SmitFraudFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Arret des processus »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix GenericRenosFix by S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés C:\DOCUME~1\ALLUSE~1\MENUDM~1\Online Security Guide.url supprimé C:\DOCUME~1\ALLUSE~1\MENUDM~1\Security Troubleshooting.url supprimé C:\Program Files\IntCodec\ supprimé »»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires »»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre Nettoyage terminé. »»»»»»»»»»»»»»»»»»»»»»»» Après SmitFraudFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Fin voici celui de hijackthis : Logfile of HijackThis v1.99.1 Scan saved at 22:35:13, on 2006-08-20 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\System32\gearsec.exe C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\CheckPoint\SecuRemote\bin\SR_WatchDog.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\CheckPoint\SecuRemote\bin\SR_GUI.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe C:\Program Files\Xfire\Xfire.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\Alexis\Mes documents\hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = about:blank R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - _{00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe N3 - Netscape 7: user_pref("browser.search.defaultengine", "http://www.google.com/"); (C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\prefs.js) O2 - BHO: (no name) - {202a961f-23ae-42b1-9505-ffe3c818d717} - C:\Program Files\IntCodec\isaddon.dll (file missing) O2 - BHO: (no name) - {40D20724-5D3A-43C8-9FF5-2B6F209DBD27} - C:\WINDOWS\system32\bhrw.dll (file missing) O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: CInterfaceObj Object - {58F07DD3-924D-4141-BC74-299F523A95F1} - C:\WINDOWS\pxwma.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\Xfire.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: ckpNotify - C:\WINDOWS\SYSTEM32\ckpNotify.dll O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: Service de sécurité matérielle (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Check Point SecuRemote Service (SR_Service) - Check Point Software Technologies - C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe O23 - Service: Check Point SecuRemote WatchDog (SR_WatchDog) - Check Point Software Technologies - C:\Program Files\CheckPoint\SecuRemote\bin\SR_WatchDog.exe p.s. j'habite au québec alors je répond très en retard, à cause du décalage horaire

»»»»»»»»»»»»»»»»»»»»»»»» C:\ »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Alexis\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer C:\DOCUME~1\ALLUSE~1\MENUDM~1\Online Security Guide.url PRESENT ! C:\DOCUME~1\ALLUSE~1\MENUDM~1\Security Troubleshooting.url PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Alexis\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files C:\Program Files\IntCodec\ PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Ma page d'accueil" »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin

voici le log : "Silent Runners.vbs", revision 46, http://www.silentrunners.org/ Operating System: Windows XP SP2 Output limited to non-default values, except where indicated by "{++}" Startup items buried in registry: --------------------------------- HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "MsnMsgr" = ""C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background" [MS] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\ {++} "homepage.monitor.exe" = "C:\Program Files\IntCodec\isamonitor.exe" [null data] "pmsngr.exe" = "C:\Program Files\IntCodec\pmsngr.exe" [null data] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "avgnt" = ""C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min" ["Avira GmbH"] "NvCplDaemon" = "RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup" [MS] "QuickTime Task" = ""C:\Program Files\QuickTime\qttask.exe" -atboottime" ["Apple Computer, Inc."] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\ {++} "SpybotSnD" = ""C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck" ["Safer Networking Limited"] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {202a961f-23ae-42b1-9505-ffe3c818d717}\(Default) = (no title provided) -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\Program Files\IntCodec\isaddon.dll" [null data] {40D20724-5D3A-43C8-9FF5-2B6F209DBD27}\(Default) = (no title provided) -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\WINDOWS\system32\bhrw.dll" [file not found] {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33}\(Default) = (no title provided) -> {HKLM...CLSID} = "VMN Toolbar" \InProcServer32\(Default) = "C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL" [empty string] {53707962-6F74-2D53-2644-206D7942484F}\(Default) = (no title provided) -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\PROGRA~1\SPYBOT~1\SDHelper.dll" ["Safer Networking Limited"] {58F07DD3-924D-4141-BC74-299F523A95F1}\(Default) = (no title provided) -> {HKLM...CLSID} = "CInterfaceObj Object" \InProcServer32\(Default) = "C:\WINDOWS\pxwma.dll" [null data] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\(Default) = (no title provided) -> {HKLM...CLSID} = "SSVHelper Class" \InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll" ["Sun Microsystems, Inc."] HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\ "{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Extension Affichage Panorama du Panneau de configuration" -> {HKLM...CLSID} = "Extension Affichage Panorama du Panneau de configuration" \InProcServer32\(Default) = "deskpan.dll" [file not found] "{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Extension icône HyperTerminal" -> {HKLM...CLSID} = "HyperTerminal Icon Ext" \InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."] "{BDA77241-42F6-11d0-85E2-00AA001FE28C}" = "LDVP Shell Extensions" -> {HKLM...CLSID} = "VpshellEx Class" \InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Symantec Shared\SSC\vpshell2.dll" ["Symantec Corporation"] "{59850401-6664-101B-B21C-00AA004BA90B}" = "Microsoft Office Binder Unbind" -> {HKLM...CLSID} = "Microsoft Office Binder Unbind" \InProcServer32\(Default) = "C:\PROGRA~1\MICROS~2\Office\1036\UNBIND.DLL" [MS] "{0006F045-0000-0000-C000-000000000046}" = "Microsoft Outlook Custom Icon Handler" -> {HKLM...CLSID} = "Outlook File Icon Extension" \InProcServer32\(Default) = "C:\PROGRA~1\MICROS~2\Office\OLKFSTUB.DLL" [MS] "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data] "{E0D79304-84BE-11CE-9641-444553540000}" = "WinZip" -> {HKLM...CLSID} = "WinZip" \InProcServer32\(Default) = "C:\PROGRA~1\WINZIP\WZSHLSTB.DLL" ["WinZip Computing, Inc."] "{E0D79305-84BE-11CE-9641-444553540000}" = "WinZip" -> {HKLM...CLSID} = "WinZip" \InProcServer32\(Default) = "C:\PROGRA~1\WINZIP\WZSHLSTB.DLL" ["WinZip Computing, Inc."] "{E0D79306-84BE-11CE-9641-444553540000}" = "WinZip" -> {HKLM...CLSID} = "WinZip" \InProcServer32\(Default) = "C:\PROGRA~1\WINZIP\WZSHLSTB.DLL" ["WinZip Computing, Inc."] "{E0D79307-84BE-11CE-9641-444553540000}" = "WinZip" -> {HKLM...CLSID} = "WinZip" \InProcServer32\(Default) = "C:\PROGRA~1\WINZIP\WZSHLSTB.DLL" ["WinZip Computing, Inc."] "{640167b4-59b0-47a6-b335-a6b3c0695aea}" = "Portable Media Devices" -> {HKLM...CLSID} = "Portable Media Devices" \InProcServer32\(Default) = "C:\WINDOWS\system32\Audiodev.dll" [MS] "{cc86590a-b60a-48e6-996b-41d25ed39a1e}" = "Portable Media Devices Menu" -> {HKLM...CLSID} = "Portable Media Devices Menu" \InProcServer32\(Default) = "C:\WINDOWS\system32\Audiodev.dll" [MS] "{A70C977A-BF00-412C-90B7-034C51DA2439}" = "NvCpl DesktopContext Class" -> {HKLM...CLSID} = "DesktopContext Class" \InProcServer32\(Default) = "C:\WINDOWS\system32\nvcpl.dll" ["NVIDIA Corporation"] "{FFB699E0-306A-11d3-8BD1-00104B6F7516}" = "Play on my TV helper" -> {HKLM...CLSID} = "NVIDIA CPL Extension" \InProcServer32\(Default) = "C:\WINDOWS\system32\nvcpl.dll" ["NVIDIA Corporation"] "{1CDB2949-8F65-4355-8456-263E7C208A5D}" = "Desktop Explorer" -> {HKLM...CLSID} = "Desktop Explorer" \InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"] "{1E9B04FB-F9E5-4718-997B-B8DA88302A47}" = "Desktop Explorer Menu" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"] "{1E9B04FB-F9E5-4718-997B-B8DA88302A48}" = "nView Desktop Context Menu" -> {HKLM...CLSID} = "nView Desktop Context Menu" \InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"] "{C38C9EFF-166C-11D4-98D6-204C4F4F5020}" = "Piky Basket" -> {HKLM...CLSID} = "Basket Class" \InProcServer32\(Default) = "C:\Program Files\Conceptworld\Piky\Piky.dll" ["Conceptworld Corporation"] "{6B19FEC2-A45B-11CF-9045-00A0C9039735}" = "Registered ActiveX Controls" -> {HKLM...CLSID} = "Registered ActiveX Controls" \InProcServer32\(Default) = "C:\Program Files\Microsoft Visual Studio\Common\MSDev98\Bin\IDE\DEVXPGL.DLL" [file not found] "{D545EBD1-BD92-11CF-8772-00A0C9039735}" = "Developer Studio Components" -> {HKLM...CLSID} = "Developer Studio Components" \InProcServer32\(Default) = "C:\Program Files\Microsoft Visual Studio\Common\MSDev98\Bin\IDE\DEVXPGL.DLL" [file not found] "{21569614-B795-46b1-85F4-E737A8DC09AD}" = "Shell Search Band" -> {HKLM...CLSID} = "Shell Search Band" \InProcServer32\(Default) = "C:\WINDOWS\system32\browseui.dll" [MS] "{45AC2688-0253-4ED8-97DE-B5370FA7D48A}" = "Shell Extension for Malware scanning" -> {HKLM...CLSID} = "Shell Extension for Malware scanning" \InProcServer32\(Default) = "C:\Program Files\AntiVir PersonalEdition Classic\shlext.dll" ["H+BEDV Datentechnik GmbH"] "{1EBC3533-B289-409F-9924-B84B3F0717D2}" = "AceFTP Context Menu Shell Extension" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\PROGRA~1\VISICO~1\FTPEXP~1\ftpcntxt.dll" ["Visicom Media Inc."] HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\ "load" = (value not set) "run" = (value not set) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\ "AppInit_DLLs" = (value not set) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ INFECTION WARNING! ckpNotify\DLLName = "ckpNotify.dll" ["Check Point Software Technologies"] INFECTION WARNING! NavLogon\DLLName = "C:\WINDOWS\System32\NavLogon.dll" [null data] INFECTION WARNING! WgaLogon\DLLName = "WgaLogon.dll" [MS] HKLM\Software\Classes\Folder\shellex\ColumnHandlers\ {F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info" -> {HKLM...CLSID} = "PDF Shell Extension" \InProcServer32\(Default) = "C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."] HKLM\Software\Classes\*\shellex\ContextMenuHandlers\ FTP Expert\(Default) = "{1EBC3533-B289-409F-9924-B84B3F0717D2}" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\PROGRA~1\VISICO~1\FTPEXP~1\ftpcntxt.dll" ["Visicom Media Inc."] LDVPMenu\(Default) = "{BDA77241-42F6-11d0-85E2-00AA001FE28C}" -> {HKLM...CLSID} = "VpshellEx Class" \InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Symantec Shared\SSC\vpshell2.dll" ["Symantec Corporation"] Piky\(Default) = "{C38C9EFF-166C-11D4-98D6-204C4F4F5020}" -> {HKLM...CLSID} = "Basket Class" \InProcServer32\(Default) = "C:\Program Files\Conceptworld\Piky\Piky.dll" ["Conceptworld Corporation"] Shell Extension for Malware scanning\(Default) = "{45AC2688-0253-4ED8-97DE-B5370FA7D48A}" -> {HKLM...CLSID} = "Shell Extension for Malware scanning" \InProcServer32\(Default) = "C:\Program Files\AntiVir PersonalEdition Classic\shlext.dll" ["H+BEDV Datentechnik GmbH"] WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data] WinZip\(Default) = "{E0D79304-84BE-11CE-9641-444553540000}" -> {HKLM...CLSID} = "WinZip" \InProcServer32\(Default) = "C:\PROGRA~1\WINZIP\WZSHLSTB.DLL" ["WinZip Computing, Inc."] HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\ FTP Expert\(Default) = "{1EBC3533-B289-409F-9924-B84B3F0717D2}" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\PROGRA~1\VISICO~1\FTPEXP~1\ftpcntxt.dll" ["Visicom Media Inc."] Piky\(Default) = "{C38C9EFF-166C-11D4-98D6-204C4F4F5020}" -> {HKLM...CLSID} = "Basket Class" \InProcServer32\(Default) = "C:\Program Files\Conceptworld\Piky\Piky.dll" ["Conceptworld Corporation"] WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data] WinZip\(Default) = "{E0D79304-84BE-11CE-9641-444553540000}" -> {HKLM...CLSID} = "WinZip" \InProcServer32\(Default) = "C:\PROGRA~1\WINZIP\WZSHLSTB.DLL" ["WinZip Computing, Inc."] HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\ LDVPMenu\(Default) = "{BDA77241-42F6-11d0-85E2-00AA001FE28C}" -> {HKLM...CLSID} = "VpshellEx Class" \InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Symantec Shared\SSC\vpshell2.dll" ["Symantec Corporation"] Piky\(Default) = "{C38C9EFF-166C-11D4-98D6-204C4F4F5020}" -> {HKLM...CLSID} = "Basket Class" \InProcServer32\(Default) = "C:\Program Files\Conceptworld\Piky\Piky.dll" ["Conceptworld Corporation"] Shell Extension for Malware scanning\(Default) = "{45AC2688-0253-4ED8-97DE-B5370FA7D48A}" -> {HKLM...CLSID} = "Shell Extension for Malware scanning" \InProcServer32\(Default) = "C:\Program Files\AntiVir PersonalEdition Classic\shlext.dll" ["H+BEDV Datentechnik GmbH"] WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data] WinZip\(Default) = "{E0D79304-84BE-11CE-9641-444553540000}" -> {HKLM...CLSID} = "WinZip" \InProcServer32\(Default) = "C:\PROGRA~1\WINZIP\WZSHLSTB.DLL" ["WinZip Computing, Inc."] Active Desktop and Wallpaper: ----------------------------- Active Desktop is disabled at this entry: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState HKCU\Control Panel\Desktop\ "Wallpaper" = "C:\Documents and Settings\Alexis\Local Settings\Application Data\Microsoft\Wallpaper1.bmp" Enabled Screen Saver: --------------------- HKCU\Control Panel\Desktop\ "SCRNSAVE.EXE" = "C:\WINDOWS\system32\logon.scr" [MS] Startup items in "Alexis" & "All Users" startup folders: -------------------------------------------------------- C:\Documents and Settings\Alexis\Menu Démarrer\Programmes\Démarrage "Xfire" -> shortcut to: "C:\Program Files\Xfire\Xfire.exe" ["Xfire Inc."] Winsock2 Service Provider DLLs: ------------------------------- Namespace Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++} 000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] 000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS] 000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] 000000000004\LibraryPath = "C:\WINDOWS\System32\Hummingbird\Connectivity\7.00\Socks\\hclsock5.dll" ["Hummingbird Ltd."] Transport Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++} 0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range: C:\WINDOWS\System32\Hummingbird\Connectivity\7.00\Socks\\hclsock5.dll ["Hummingbird Ltd."], 01 - 02, 08 %SystemRoot%\system32\mswsock.dll [MS], 03 - 05, 09 - 18 %SystemRoot%\system32\rsvpsp.dll [MS], 06 - 07 Toolbars, Explorer Bars, Extensions: ------------------------------------ Toolbars HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ "{EF99BD32-C1FB-11D2-892F-0090271D4F88}" -> {HKLM...CLSID} = "Yahoo! Toolbar" \InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll" [file not found] "{4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33}" -> {HKLM...CLSID} = "VMN Toolbar" \InProcServer32\(Default) = "C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL" [empty string] HKLM\Software\Microsoft\Internet Explorer\Toolbar\ "{4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33}" = (no title provided) -> {HKLM...CLSID} = "VMN Toolbar" \InProcServer32\(Default) = "C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL" [empty string] "{A2595F37-48D0-46A1-9B51-478591A97764}" = (no title provided) -> {HKLM...CLSID} = "Protection Bar" \InProcServer32\(Default) = "C:\Program Files\IntCodec\iesplugin.dll" [file not found] Extensions (Tools menu items, main toolbar menu buttons) HKLM\Software\Microsoft\Internet Explorer\Extensions\ {08B0E5C0-4FCB-11CF-AAA5-00401C608501}\ "MenuText" = "Console Java (Sun)" "CLSIDExtension" = "{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}" -> {HKCU...CLSID} = "Java Plug-in" \InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll" ["Sun Microsystems, Inc."] -> {HKLM...CLSID} = "Java Plug-in 1.5.0_06" \InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll" ["Sun Microsystems, Inc."] Miscellaneous IE Hijack Points ------------------------------ C:\WINDOWS\INF\IERESET.INF (used to "Reset Web Settings") Added lines (compared with English-language version): [strings]: SAFESITE_VALUE="http://home.microsoft.com/intl/fr/" Missing lines (compared with English-language version): [strings]: 1 line Running Services (Display Name, Service Name, Path {Service DLL}): ------------------------------------------------------------------ AntiVir PersonalEdition Classic Guard, AntiVirService, "C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe" ["AVIRA GmbH"] AntiVir PersonalEdition Classic Scheduler, AntiVirScheduler, "C:\Program Files\AntiVir PersonalEdition Classic\sched.exe" ["Avira GmbH"] Check Point SecuRemote Service, SR_Service, ""C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe"" ["Check Point Software Technologies"] Check Point SecuRemote WatchDog, SR_WatchDog, ""C:\Program Files\CheckPoint\SecuRemote\bin\SR_WatchDog.exe"" ["Check Point Software Technologies"] HTTP SSL, HTTPFilter, "C:\WINDOWS\System32\svchost.exe -k HTTPFilter" {"C:\WINDOWS\System32\w3ssl.dll" [MS]} LexBce Server, LexBceS, "C:\WINDOWS\system32\LEXBCES.EXE" ["Lexmark International, Inc."] NVIDIA Display Driver Service, NVSvc, "C:\WINDOWS\system32\nvsvc32.exe" ["NVIDIA Corporation"] Service de sécurité matérielle, GEARSecurity, "C:\WINDOWS\System32\gearsec.exe" ["GEAR Software"] Symantec AntiVirus Client, Norton AntiVirus Server, "C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe" ["Symantec Corporation"] Windows User Mode Driver Framework, UMWdf, "C:\WINDOWS\system32\wdfmgr.exe" [MS] Print Monitors: --------------- HKLM\System\CurrentControlSet\Control\Print\Monitors\ Lexmark Network Port\Driver = "LEXLMPM.DLL" ["Lexmark International, Inc."] ---------- + This report excludes default entries except where indicated. + To see *everywhere* the script checks and *everything* it finds, launch it from a command prompt or a shortcut with the -all parameter. + To search all directories of local fixed drives for DESKTOP.INI DLL launch points and all Registry CLSIDs for dormant Explorer Bars, use the -supp parameter or answer "No" at the first message box. ---------- (total run time: 52 seconds, including 14 seconds for message boxes)

bonjour, j'ai déjà eu des problèmes avec un autre ordinateur et je l'ai réglé en venant ici. maintenant j'ai des problèmes sur cet ordinateur alors je viens ici. j'ai des pop-ups et mon pc est très lent. voici mon rapport hijackthis : Logfile of HijackThis v1.99.1 Scan saved at 13:38:51, on 2006-08-18 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\System32\gearsec.exe C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\CheckPoint\SecuRemote\bin\SR_WatchDog.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\Explorer.EXE C:\Program Files\CheckPoint\SecuRemote\bin\SR_GUI.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\Program Files\Xfire\Xfire.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\VentriloMIX\Ventrilo 2.3.0.exe C:\Program Files\AntiVir PersonalEdition Classic\avscan.exe C:\Program Files\Opera\Opera.exe C:\PROGRA~1\WINZIP\winzip32.exe C:\Documents and Settings\Alexis\Mes documents\hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = about:blank R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - _{00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe N3 - Netscape 7: user_pref("browser.search.defaultengine", "http://www.google.com/"); (C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\prefs.js) O2 - BHO: (no name) - {202a961f-23ae-42b1-9505-ffe3c818d717} - C:\Program Files\IntCodec\isaddon.dll O2 - BHO: (no name) - {40D20724-5D3A-43C8-9FF5-2B6F209DBD27} - C:\WINDOWS\system32\bhrw.dll (file missing) O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: CInterfaceObj Object - {58F07DD3-924D-4141-BC74-299F523A95F1} - C:\WINDOWS\pxwma.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL O3 - Toolbar: Protection Bar - {a2595f37-48d0-46a1-9b51-478591a97764} - C:\Program Files\IntCodec\iesplugin.dll (file missing) O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\RunOnce: [spybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\Xfire.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: ckpNotify - C:\WINDOWS\SYSTEM32\ckpNotify.dll O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: Service de sécurité matérielle (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Check Point SecuRemote Service (SR_Service) - Check Point Software Technologies - C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe O23 - Service: Check Point SecuRemote WatchDog (SR_WatchDog) - Check Point Software Technologies - C:\Program Files\CheckPoint\SecuRemote\bin\SR_WatchDog.exe

bonjour, j'ai déjà eu un problème sur un autre ordinateur et je suis venu ici et le problème a été réglé alors je reviens poster ici pour cet ordinateur. j'ai des pop-ups qui s'ouvrent et j'ai des lenteurs sur mon ordinateur. voici mon log hijackthis : Logfile of HijackThis v1.99.1 Scan saved at 13:38:51, on 2006-08-18 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\System32\gearsec.exe C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\CheckPoint\SecuRemote\bin\SR_WatchDog.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\Explorer.EXE C:\Program Files\CheckPoint\SecuRemote\bin\SR_GUI.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\Program Files\Xfire\Xfire.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\VentriloMIX\Ventrilo 2.3.0.exe C:\Program Files\AntiVir PersonalEdition Classic\avscan.exe C:\Program Files\Opera\Opera.exe C:\PROGRA~1\WINZIP\winzip32.exe C:\Documents and Settings\Alexis\Mes documents\hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = about:blank R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - _{00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe N3 - Netscape 7: user_pref("browser.search.defaultengine", "http://www.google.com/"); (C:\Documents and Settings\Alexis\Application Data\Mozilla\Profiles\default\xucp7z0o.slt\prefs.js) O2 - BHO: (no name) - {202a961f-23ae-42b1-9505-ffe3c818d717} - C:\Program Files\IntCodec\isaddon.dll O2 - BHO: (no name) - {40D20724-5D3A-43C8-9FF5-2B6F209DBD27} - C:\WINDOWS\system32\bhrw.dll (file missing) O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: CInterfaceObj Object - {58F07DD3-924D-4141-BC74-299F523A95F1} - C:\WINDOWS\pxwma.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL O3 - Toolbar: Protection Bar - {a2595f37-48d0-46a1-9b51-478591a97764} - C:\Program Files\IntCodec\iesplugin.dll (file missing) O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\RunOnce: [spybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\Xfire.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: ckpNotify - C:\WINDOWS\SYSTEM32\ckpNotify.dll O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: Service de sécurité matérielle (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Check Point SecuRemote Service (SR_Service) - Check Point Software Technologies - C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe O23 - Service: Check Point SecuRemote WatchDog (SR_WatchDog) - Check Point Software Technologies - C:\Program Files\CheckPoint\SecuRemote\bin\SR_WatchDog.exe

bon je viens d'ouvrir un fichier que j'avais downloadé avec bloc-notes sur le 1er site et j'ai compris comment ça marchais, j'ai écris : [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "LogonType"=dword:00000001 dans bloc-notes, j'ai sauvegardé en .reg, et ça a pas marché :'(

bon, sur le premier site, j'ai essayé : Restore the Welcome Screen - Gina.Dll Error, Enable the Welcome Screen, Restore: On Resume, Display Welcome Screen et ça ne marche pas. hum, j'm'y connais pas vraiment en registre alors comment je peux changer le 00000000 par 000000001? merci!

les pop ups je crois que c'est réglé, j'en ai de temps en temps mais c'est probablemement un pop up du site. je n'ai plus de redirection non plus

quand je démarre mon pc, je n'ai plus l'écran de bienvenue où on choisi notre compte, c'est une fenêtre qui me demande d'entrer mon nom d'utilisateur et mon mot de passe. c'est comme quand on fait ctrl+alt+supprim 2 fois à l'écran de bienvenue de windows. comment puis-je le faire revenir à la normal? merci

mais c'est pas que c'est gris, c'est qui faut écrire le nom du compte, aulieu de juste cliquer dessus Windows Registry Editor Version 5.00 [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\ThemeManager] "WCreatedUser"="1" "LMVersion"="103" "LoadedBefore"="1" "ThemeActive"="1" "DllName"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,\ 74,00,25,00,5c,00,52,00,65,00,73,00,6f,00,75,00,72,00,63,00,65,00,73,00,5c,\ 00,74,00,68,00,65,00,6d,00,65,00,73,00,5c,00,4c,00,75,00,6e,00,61,00,5c,00,\ 4c,00,75,00,6e,00,61,00,2e,00,6d,00,73,00,73,00,74,00,79,00,6c,00,65,00,73,\ 00,00,00 "LastUserLangID"="1036" "ColorName"="NormalColor" "SizeName"="NormalSize"

bon j'ai fait une analyse spy sweeper, quand le scan a fini, j'ai pesé sur démarrer au lieu de suivant mais tout ce qu'il avait trouvé, c'était des cookies. pour le démarrage, il y a plusieurs comptes sur l'ordinateur alors je ne veux pas faire démarrer l'ordinateur direct dans mon compte. quand je dis page de bienvenue, c'est pas le bureau, c'est la page ou on voit tous les comptes, avec un petite image à coté, on clique dessus pour aller dans notre compte.

voici le rapport antivir, le scan a été beaucoup moins long que d'habitude (c'est bon signe?) et il a détecté popup[1].php, dans les alertes, il détectait popup[1].htm ou le popup[2].htm et as-tu une idée pour l'overture de session windows? edit -> juste après avoir posté le message, j'ai eu une nouvelle alerte de popup1, c'est un EXP/Agent.B si ça peut t'aider AntiVir PersonalEdition Classic Report file date: 22 juin 2006 11:06 Scanning for 413913 virus strains and unwanted programs. Licensed to: AntiVir PersonalEdition Classic Serial number: 0000149996-WURGE-0001 Platform: Windows XP Windows version: (Service Pack 2) [5.1.2600] Username: Alexis Computer name: NOM-8ABC2A6DAF0 Version informations: AVSCAN.EXE : 7.0.0.42 557096 2006-06-22 14:57:00 AVSCAN.DLL : 7.0.0.42 53288 2006-06-22 14:57:00 LUKE.DLL : 7.0.0.42 118824 2006-06-22 14:57:00 LUKERES.DLL : 7.0.0.42 25640 2006-06-22 14:57:00 ANTIVIR0.VDF : 6.35.0.1 7371264 2006-06-22 14:57:00 ANTIVIR1.VDF : 6.35.0.5 2048 2006-06-22 14:57:00 ANTIVIR2.VDF : 6.35.0.62 208384 2006-06-22 14:57:00 ANTIVIR3.VDF : 6.35.0.67 51200 2006-06-22 14:57:00 AVEWIN32.DLL : 7.1.0.15 1536512 2006-06-22 14:57:00 AVPREF.DLL : 7.0.0.1 49192 2006-06-22 14:57:00 AVREP.DLL : 6.35.0.47 679976 2006-06-22 14:57:00 AVRPBASE.DLL : 7.0.0.0 2162728 2006-06-22 14:57:00 AVPACK32.DLL : 7.1.0.1 335912 2006-06-22 14:57:00 AVREG.DLL : 6.31.0.90 27688 2006-06-22 14:57:00 NETNT.DLL : 6.32.0.0 6696 2006-06-22 14:57:00 NETNW.DLL : 6.32.0.0 9768 2006-06-22 14:57:00 RCIMAGE.DLL : 7.0.0.71 1642536 2006-06-22 14:57:01 RCTEXT.DLL : 7.0.0.75 77864 2006-06-22 14:57:01 Configuration settings for the scan: Jobname: '%s'.................: Local Hard Disks Configuration file............: C:\Program Files\AntiVir PersonalEdition Classic\alldiscs.avp Boot sectors..................: C Scan memory...................: 1 Process scan..................: 1 Scan all files................: 2 Scan archives.................: 1 Recursion depth...............: 20 Smart extensions..............: 1 Macro heuristic...............: 1 File heuristic................: -1 Primary action................: 1 Secondary action..............: 0 Start of the scan: 22 juin 2006 11:06 The scan over running processes will be started 33 Processes was scanned Start scanning boot sectors: Boot sector 'C:\' [NOTE] No virus was found! Starting to scan the registry. The registry was scanned ( 10 files ). Starting the file scan: C:\hiberfil.sys [WARNING] The file could not be opened! C:\pagefile.sys [WARNING] The file could not be opened! C:\Documents and Settings\Alexis\NTUSER.DAT [WARNING] The file could not be opened! C:\Documents and Settings\Alexis\ntuser.dat.LOG [WARNING] The file could not be opened! C:\Documents and Settings\Alexis\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat [WARNING] The file could not be opened! C:\Documents and Settings\Alexis\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG [WARNING] The file could not be opened! C:\Documents and Settings\Alexis\Local Settings\Temp\Temporary Internet Files\Content.IE5\WX6ZKH2Z\popup[1].php [0] Archive type: GZ --> popup[1] [DETECTION] Contains signature of the exploits EXP/Agent.B [iNFO] The file was deleted! C:\Documents and Settings\LocalService\NTUser.dat [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\ntuser.dat.LOG [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS022AFA52-8D3B-447E-80D0-5C2F1C01D21C.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS0339DD4F-10D2-4C61-AB45-AA8EDF7A48BB.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS03ADDFF3-E167-431B-B8DA-05B2976A638E.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS04E484AB-75D3-4720-928E-68B9E5AFD36C.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS105ABD9C-D8C2-4266-8104-B1B28098BE7F.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS130BF084-2C37-4B0E-8092-4E508033812A.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS156BBD24-B0A0-4188-8590-91AABFE33E7F.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS17C168B3-1967-421E-A3F4-BD423D0F4BBD.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS19F6C724-1A8D-42A0-956A-054ADF6FED6A.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS1B62527C-B169-4B48-BDBA-13E598A0B0A8.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS20308475-06AE-4742-AEE0-93DBAB7675E2.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS20C90862-71E6-4E29-91D6-93958C1A443C.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS2197BC9C-CF26-4F7C-841C-CD9D146F9528.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS246FD869-785B-4BBF-BA3A-39FEE6E30748.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS25584B14-A08B-4611-BD69-75218111FA42.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS293E5DA0-58AB-44B9-A397-0F7A8B457A9A.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS2CD9D760-6DCD-4B6C-B82B-E448B0650DC4.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS2DBCE21D-77C4-4C76-86C5-8C16FA3DE02A.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS30160D1C-5D32-4ED5-9565-E8D1848412A4.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS318B4F33-8AB9-400A-AD17-A9FD419D004E.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS32254763-24C1-4F28-BD34-7A7E0949C0B3.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS37B071A9-1ACD-4C54-AA6A-BC952F181A1F.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3AF38E68-FE8E-4BE4-9CA5-996C871AFFAB.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3B795FAE-92FF-47C8-BDE8-56815E022D07.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3B978986-BCEE-47C6-B316-F872A3E54945.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3C8B426D-1C53-44E8-B8A0-25FCFED44C2F.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3CF40043-B0CA-4DCC-8705-AF2B6A0AA08D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3DB42697-1B3A-449C-B208-E6EB47837F4D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3E637EBD-6C3D-4188-9BB8-374817670508.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS4209DB59-C2E2-4825-8820-73C488D8BBC0.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS436A9D49-D753-48FA-8700-E2E3D2BE75FE.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS465B4BFC-C9CC-4F1E-8B55-D5D871B8AB65.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS4AF0E1D0-3F61-404B-AB10-AB713AE3BAFB.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS4BA3EF1D-2BF6-49DB-88C9-170C54D808DC.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS54583DF2-4051-4097-9C33-E663688464A1.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS565C6028-C55E-44A1-85ED-0931A87FAFD8.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS567BAF6E-BC94-4248-B7E8-0A65468EF420.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS574D21AC-69FC-432E-962B-1AA6C58E018E.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS57934BD9-CEF8-4388-935A-5FBCA5370914.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS594A1166-805C-4FAD-8D02-B835A1550155.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS5CECA347-5DD6-4648-9FA0-DE4570A53FFE.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS62B352C3-5DAD-4ECC-BF74-1A4BD48D0520.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS63F0C091-E568-4721-9E88-67A3DD9691BC.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS649E35EF-90E2-4660-A6DE-7F6936B30349.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS6759400D-17B3-483C-8A28-57AC1E4E2EBE.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS679501F7-7929-474A-A808-A48A4C0BF476.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS6A9B8106-2BC3-4568-9EE9-753B744152EE.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS71E1113E-4DA6-42C1-A225-175B9B5EEE06.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS766E3B0E-F9CD-4DA2-95A6-DB4CCF0D27C3.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS76CC8671-CA14-4BC5-BCF1-F1E0F6F0F030.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS7CA2D041-49A5-4EFE-AEC5-F3476612A5CF.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS7DC1A49C-B557-4A03-9955-BF35CF7B76BF.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS7FFC250D-B685-4509-B0B6-942BDDBC853D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS84231F03-78DD-43BC-945F-075B5BF9CB00.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS85C253C1-9F61-4D2E-9E5E-7C0739CE7CB6.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS91CC7FCD-7B72-4B51-AB4C-C9E567C1943D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS91D4BA9B-9F4B-4797-ADB9-3FE73FBC8E7D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS94313B23-FE00-488A-89F6-461AE01CC284.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS9F51D034-6E1B-42DC-863C-F7AC76A067E9.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS9F7C2C7C-41EB-47A4-B5D8-6912A1E698A5.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSA2AA1200-A76C-4270-B423-5A7CF03CA97D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSA3A38E0C-0BD3-4316-97E2-626498AA8804.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSA44FBF38-77E4-464D-84DC-C5C7C8B8B5F7.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSA7A0AAD3-0265-41BB-9266-411A0C5AD8F4.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSAA790A5F-F367-4533-A127-D2AA6F935BC0.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSAC4D279C-FF7A-46E3-AE42-73B790F0E945.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSB2E6E685-C6A1-41D7-988E-6A4511CB94C2.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSB65A00D1-B0E2-4B0C-AC90-B2BD1F574E39.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSBB2A9A7B-AD68-4998-BD52-35715CD8587F.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSBC149630-33ED-41CB-8A02-4DF1A3A48E78.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSBD058950-C8B2-44C7-A48C-900D8A2DFBDF.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSBE43AD7B-A393-4FAD-A152-0B3EC9591D52.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSBE803340-A8AD-40F9-92F9-FC2651F800E5.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC021E0E7-7B42-438E-8630-B99441616F0D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC1A93DB9-E710-4662-97BB-7CA940B9D08C.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC31E4965-4E02-4034-AA73-D914DA8B3D52.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC3316231-6FD2-49E6-BDA5-C6EFF1A01D2B.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC50CB28F-1BDC-4C62-B666-ACD91DED61F0.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC7C37498-BAF1-4E3C-B29A-8D9EFF8FFB43.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC7D57B84-5CB9-493C-8B24-8A0E77AF4252.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC7DCEF34-D67D-49C1-A8BC-AF91F58301FC.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSCA725381-F44E-4E35-B92C-3291465D556C.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSCD9DF8DD-7796-4909-9D5E-43DEA34AAC8C.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSD2557D4F-CDF2-4F3E-9E3A-E2FA3A7E63F6.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSD654559D-64FE-43E2-AA0E-0CAEA202BCA6.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSD77D0831-DC67-456D-BBDC-F014F39992EE.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSD7FED6B6-DC52-4763-9D18-65B1C894AB44.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSDB4044B3-DF51-4815-BDD5-A870DFEE86E0.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSDCC364D9-223D-4B62-ADEE-D500CA74EAFF.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSDEB36410-7954-4B33-8F6A-B9B274B65EF4.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE162AB2C-8D44-48C9-A89B-5B49E5FAE3A3.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE527A1C9-5DE1-4546-835F-32F7EF452C9D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE95F8200-D2E4-4730-B9A6-2D17AFB37D3C.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSEE46575F-820B-4600-8F50-9EE9805D1038.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSEE7B85DB-9916-48AC-A206-5F607DB37068.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSEF385B76-C4AC-4506-84C1-0754C10D615A.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF025F30C-8E6F-455C-A14F-205E6FE7D91D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF51CBC9A-C278-4830-9C12-9A4C50FE6A91.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF664D603-CB28-4EF1-BADE-61D5BE50B011.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF6F6C620-F43D-482A-AA4F-001084A9474E.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF7C1AEA3-E691-4943-96FD-90D15944C86D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF8D17330-B38A-4209-91C8-562B37BE7CFB.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF9DB03B1-4373-4DFF-B5B3-5629DF550DBE.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSFB7048F1-5C04-4E9C-948A-679B8763355D.tmp [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat [WARNING] The file could not be opened! C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG [WARNING] The file could not be opened! C:\Documents and Settings\NetworkService\NTUSER.DAT [WARNING] The file could not be opened! C:\Documents and Settings\NetworkService\ntuser.dat.LOG [WARNING] The file could not be opened! C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat [WARNING] The file could not be opened! C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG [WARNING] The file could not be opened! C:\Documents and Settings\Réjean\Local Settings\Temp\hsperfdata_Réjean\2036 [WARNING] The file could not be opened! C:\WINDOWS\SoftwareDistribution\EventCache\{0715EC68-3CB8-4A68-B76C-2A873234C760}.bin [WARNING] The file could not be opened! C:\WINDOWS\system32\config\default [WARNING] The file could not be opened! C:\WINDOWS\system32\config\default.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\config\SAM [WARNING] The file could not be opened! C:\WINDOWS\system32\config\SAM.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\config\SECURITY [WARNING] The file could not be opened! C:\WINDOWS\system32\config\SECURITY.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\config\software [WARNING] The file could not be opened! C:\WINDOWS\system32\config\software.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\config\system [WARNING] The file could not be opened! C:\WINDOWS\system32\config\system.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\drivers\dtscsi.sys [WARNING] The file could not be opened! C:\WINDOWS\system32\drivers\sptd.sys [WARNING] The file could not be opened! C:\WINDOWS\system32\drivers\sptd0733.sys [WARNING] The file could not be opened! C:\WINDOWS\Temp\ib2 [WARNING] The file could not be opened! C:\WINDOWS\Temp\ib3 [WARNING] The file could not be opened! C:\WINDOWS\Temp\ib4 [WARNING] The file could not be opened! C:\WINDOWS\Temp\ib5 [WARNING] The file could not be opened! C:\WINDOWS\Temp\ib6 [WARNING] The file could not be opened! End of the scan: 22 juin 2006 11:45 Used time: 39:15 min The scan has been done completely. 8865 Scanning directories 297173 Files were scanned 1 viruses and/or unwanted programs was found 1 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 8089 Archives were scanned 138 Warnings 0 Notes

hum, ça a pas réglé le problème va à la page de bienvenue ou on choisi son utilisateur (si tu a xp et si tu peux choisir ton utilisateur) et fait 2 x ctrl+alt+supri, c'est ça que ça fait moi, mais tout le temps. non je vois pus vraiment la redirection, mais antivir detecte encore des fichier, quasiment toujours des fichier htm

bon! voici le rapport ! p.s., oui j'ai firefox mais le scan ne fonctionne pas dans firefox (pas du tout), aussi, au démarage de windows, lors du choix de session, ce n'est plus le theme normal, ça ressemble à lui de windows 2000, ou y faut rentrer son nom et son mot de passe --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 17:24:37, 2006-06-21 + Somme de contrôle: 6DA6DA4E + Résultats du scan: :mozilla.9:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer sans sauvegarder :mozilla.10:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer sans sauvegarder :mozilla.11:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer sans sauvegarder :mozilla.12:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer sans sauvegarder :mozilla.13:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyer sans sauvegarder :mozilla.14:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer sans sauvegarder :mozilla.15:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer sans sauvegarder :mozilla.16:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer sans sauvegarder :mozilla.17:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer sans sauvegarder :mozilla.19:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer sans sauvegarder :mozilla.20:C:\Documents and Settings\Réjean\Application Data\Mozilla\Firefox\Profiles\ours2gc9.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@2o7[1].txt -> TrackingCookie.2o7 : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@ads.addynamix[1].txt -> TrackingCookie.Addynamix : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@as-us.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@as1.falkag[1].txt -> TrackingCookie.Falkag : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@banners.searchingbooth[2].txt -> TrackingCookie.Searchingbooth : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@burstnet[2].txt -> TrackingCookie.Burstnet : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@c.enhance[1].txt -> TrackingCookie.Enhance : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@data1.perf.overture[2].txt -> TrackingCookie.Overture : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@e-2dj6wjk4gidjekq.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@e-2dj6wjnyqkdjsgo.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@findwhat[1].txt -> TrackingCookie.Findwhat : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@media.top-banners[1].txt -> TrackingCookie.Top-banners : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@qksrv[1].txt -> TrackingCookie.Qksrv : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@reduxads.valuead[2].txt -> TrackingCookie.Valuead : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@revenue[2].txt -> TrackingCookie.Revenue : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@tacoda[2].txt -> TrackingCookie.Tacoda : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@www.burstnet[1].txt -> TrackingCookie.Burstnet : Nettoyer sans sauvegarder C:\Documents and Settings\Réjean\Cookies\réjean@zedo[2].txt -> TrackingCookie.Zedo : Nettoyer sans sauvegarder C:\WINDOWS\system32\__delete_on_reboot__rundll.dll -> Adware.PurityScan : Nettoyer sans sauvegarder ::Fin du rapport

hum, ça va pas bien, encore, quand le scan fini, je fait nettoyer et ça commence, 1 min plus tard, internet explorer plante p.s. ça fait deux fois que ça fait ça

j'suis entrain de faire le scan de trend micro, désolé du délai p.s. pour mad, faut tu que je m.inscrive?

hum, ça va pas bien quand je clique pour activer activex, ça reviens à la page ou on accepte, et y'a pu de bouton accepter ou l'autre, en bas et j'ai pas de fichier rundll.dll, j'ai fait une recherche et j'ai un fichier _delete_on_reboot_rundll.dll et un rundll32.exe p.s. minadiante, tu peux te partir un sujet à toi, y va surment avoir quelqu'un qui va venir t'aider

voici un compte rendu de l'état de mon pc : je viens juste d'avoir une fenêtre qui s'est ouverte sur ce site xhttp://www.advnt01.com/.......x dans un autre compte de windows, il y a d'énormes lenteeurs et une fenetre de party poker s'affiche tout d'un coup Logfile of HijackThis v1.99.1 Scan saved at 21:39:53, on 2006-06-19 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe C:\WINDOWS\Explorer.EXE C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Hijackthis\HijackThis.exe F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [spySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: C:\WINDOWS\system32\rundll.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe Le volume dans le lecteur C n'a pas de nom. Le num‚ro de s‚rie du volume est 898D-B2DA R‚pertoire de C:\ 2006-06-19 21:41 0 dirdat.txt 2006-06-19 21:35 467 845 120 hiberfil.sys 2006-06-19 21:35 704 643 072 pagefile.sys 2006-06-18 21:21 25 23990098.$$$ 2006-06-18 18:27 12 602 368 mwav.exe 2006-06-17 22:50 4 670 672 PostNuke-0[1].762.zip 2006-06-16 22:40 579 094 atlite_87_pn.zip 2006-06-16 22:13 132 586 ambertech.zip 2006-06-16 22:07 3 101 atlite_87_pn8_update1.zip 2006-06-11 22:33 12 630 AVSCAN-20060611-214534-A86CA4F8.LOG 2006-06-10 14:38 158 908 SpybotSD.Results.txt 2006-06-06 19:19 6 351 Nouveau Document texte.txt 2006-06-06 19:19 10 816 112 antivir_workstation_win7u_en_h.exe 2006-05-17 02:20 17 d.bat 2006-04-26 23:16 184 320 PlayerHost.dll 2006-04-26 17:05 216 boot.ini 2006-04-10 16:56 156 054 SpybotSD.Report.txt 2006-02-28 12:55 1 463 ip.txt 2005-12-09 19:51 25 AUTOEXEC.BAT 2005-12-09 17:57 2 174 400 2mo-file 2005-09-28 21:19 6 764 Lisez Moi.htm 2005-09-22 09:28 0 MSDOS.SYS 2005-09-22 09:28 0 IO.SYS 2005-09-22 09:28 0 AUTOEXEC.SYD 2004-08-05 08:00 4 952 Bootfont.bin 2004-08-05 08:00 47 564 NTDETECT.COM 2004-08-05 08:00 251 712 ntldr 27 fichier(s) 1 204 297 526 octets 0 R‚p(s) 35 360 247 808 octets libres Le volume dans le lecteur C n'a pas de nom. Le num‚ro de s‚rie du volume est 898D-B2DA R‚pertoire de C:\WINDOWS\system32 2006-06-19 21:36 2 206 wpa.dbl 2006-06-18 21:30 20 992 Thumbs.db 2006-06-16 21:35 608 448 comctl32.ocx 2006-06-16 07:36 81 920 __delete_on_reboot__rundll.dll 2006-06-15 12:34 2 550 Uninstall.ico 2006-06-15 12:34 1 406 Help.ico 2006-06-15 12:34 30 590 pavas.ico 2006-06-14 20:14 45 initdebug.nfo 2006-06-11 11:53 57 384 avsda.dll 2006-06-08 21:19 5 967 776 MRT.exe 2006-06-05 18:30 0 asfiles.txt 2006-06-02 23:49 158 752 FNTCACHE.DAT 2006-06-01 14:48 27 648 jgpl400.dll 2006-06-01 14:48 163 840 jgdw400.dll 2006-05-29 21:28 87 ssprs.tgz 2006-05-29 21:28 73 ssprs.dll 2006-05-29 21:28 219 lsprst7.tgz 2006-05-29 21:28 205 lsprst7.dll 2006-05-29 21:28 1 025 sysprs7.dll 2006-05-29 21:28 1 025 clauth1.dll 2006-05-29 21:28 1 025 sysprs7.tgz 2006-05-29 21:28 1 025 clauth2.dll 2006-05-29 11:34 1 496 576 shdocvw.dll 2006-05-23 17:26 579 888 LegitCheckControl.dll 2006-05-23 17:25 285 488 WgaTray.exe 2006-05-23 17:25 402 736 WgaLogon.dll 2006-05-19 11:07 3 076 096 mshtml.dll 2006-05-18 01:31 450 560 jscript.dll 2006-05-14 04:48 181 248 rasmans.dll 2006-05-11 04:58 100 352 xpsp3res.dll 2006-05-10 01:26 617 472 urlmon.dll 2006-05-10 01:26 667 648 wininet.dll 2006-05-10 01:26 532 480 mstime.dll 2006-05-10 01:26 39 424 pngfilt.dll 2006-05-10 01:26 448 512 mshtmled.dll 2006-05-10 01:26 146 432 msrating.dll 2006-05-10 01:26 474 624 shlwapi.dll 2006-05-10 01:26 96 768 inseng.dll 2006-05-10 01:26 357 888 dxtmsft.dll 2006-05-10 01:26 251 904 iepeers.dll 2006-05-10 01:26 15 872 jsproxy.dll 2006-05-10 01:26 152 064 cdfview.dll 2006-05-10 01:26 1 022 976 browseui.dll 2006-05-10 01:26 55 808 extmgr.dll 2006-05-10 01:26 1 056 768 danim.dll 2006-05-10 01:26 205 312 dxtrans.dll 2006-04-29 06:07 5 533 696 wmp.dll 2006-04-26 20:04 43 520 CmdLineExt03.dll 2006-04-25 10:28 421 888 RealMediaSplitter.ax 2006-04-24 18:29 9 158 TitanPokerIconDropTRA107.ico 2006-04-07 23:47 3 072 CONFIG.NT 2006-04-06 10:54 73 728 asuninst.exe 2006-04-03 10:59 128 xposer.cfg 2006-04-03 10:59 128 asinst.cfg 2006-04-02 09:26 75 464 perfc00C.dat 2006-04-02 09:26 401 262 perfh009.dat 2006-04-02 09:26 468 310 perfh00C.dat 2006-04-02 09:26 62 542 perfc009.dat 2006-04-02 09:26 1 018 888 PerfStringBackup.INI 2006-03-29 16:47 196 712 Targets.dat 2006-03-25 13:53 3 262 win2000.ico 2006-03-17 05:11 679 424 inetcomm.dll 2006-03-17 00:07 8 508 416 shell32.dll 2006-03-16 20:38 28 672 verclsid.exe 2006-03-01 15:42 11 776 xolehlp.dll 2006-03-01 15:42 161 280 msdtcuiu.dll 2006-03-01 15:42 956 416 msdtctm.dll 2006-03-01 15:42 426 496 msdtcprx.dll 2006-03-01 15:42 91 136 mtxoci.dll 2006-03-01 15:42 66 560 mtxclu.dll 2006-02-26 22:52 21 840 SIntfNT.dll 2006-02-26 22:52 17 212 SIntf32.dll 2006-02-26 22:52 12 067 SIntf16.dll 2006-02-23 11:22 1 047 552 mfc71u.dll 2006-02-14 22:53 176 167 rmoc3260.dll 2006-02-14 22:53 5 632 pndx5032.dll 2006-02-14 22:53 6 656 pndx5016.dll 2006-02-14 22:53 278 528 pncrt.dll 2006-01-27 18:38 503 296 aswBoot.exe 2006-01-27 18:30 90 112 AVASTSS.scr 2006-01-25 11:13 492 544 WRLogonNtf.dll 2006-01-25 11:13 8 192 ssiefr.EXE 2006-01-25 11:13 17 920 wrlzma.dll 2006-01-03 23:35 68 096 webclnt.dll 2005-12-28 22:56 280 064 gdi32.dll 2005-12-18 14:53 604 T2 2005-12-14 04:24 118 784 sirenacm.dll 2005-12-02 08:50 238 $winnt$.inf 2005-12-02 08:50 320 results.txt 2005-10-29 01:53 86 016 pintool.exe 2005-10-29 01:53 26 112 bcsprsrc.dll 2005-10-29 01:25 133 120 axaltocm.dll 2005-10-29 01:25 151 552 ifxcardm.dll 2005-10-28 17:40 96 792 basecsp.dll 2005-10-20 18:25 1 097 728 esent.dll 2005-10-17 21:58 65 536 QuickTimeVR.qtx 2005-10-17 21:57 49 152 QuickTime.qts 2005-10-17 17:21 80 896 fontsub.dll 2005-10-17 17:21 118 272 t2embed.dll 2005-10-05 23:08 1 839 616 win32k.sys 2005-09-30 11:51 624 oeminfo.ini 2005-09-23 08:28 150 016 mscorier.dll 2005-09-23 08:28 74 240 mscories.dll 2005-09-23 08:28 270 848 mscoree.dll 2005-09-23 08:28 83 456 dfshim.dll 2005-09-23 01:05 2 918 jupdate-1.5.0_02-b09.log 2005-09-23 00:40 23 392 nscompat.tlb 2005-09-23 00:40 16 832 amcompat.tlb 2005-09-22 18:12 333 $ncsp$.inf 2005-09-22 09:26 488 WindowsLogon.manifest 2005-09-22 09:26 488 logonui.exe.manifest 2005-09-22 09:26 749 nwc.cpl.manifest 2005-09-22 09:26 749 ncpa.cpl.manifest 2005-09-22 09:26 749 cdplayer.exe.manifest 2005-09-22 09:26 749 wuaucpl.cpl.manifest 2005-09-22 09:26 749 sapi.cpl.manifest 2005-09-22 09:25 21 892 emptyregdb.dat 2005-09-22 04:22 0 h323log.txt 2005-09-09 21:55 2 067 968 cdosys.dll 2005-09-07 14:56 24 576 TSBWLS.dll 2005-08-31 21:43 19 968 linkinfo.dll 2005-08-31 21:43 292 352 winsrv.dll 2005-08-29 23:55 1 293 312 quartz.dll 2005-08-25 18:18 118 784 MSSTDFMT.DLL 2005-08-22 23:39 124 928 umpnpmgr.dll 2005-08-22 14:35 197 632 netman.dll 2005-08-12 12:14 1 171 456 TPwrSave.cpl 2005-08-12 12:14 266 240 TPSMain.exe 2005-08-12 12:14 49 152 TPSDel.dll 2005-08-12 12:14 40 960 TPSMainCtl.dll 2005-08-12 12:14 86 016 CpuPerf.dll 2005-08-12 12:14 40 960 TPSBattM.exe 2005-08-12 12:14 45 056 TPwrCfg.dll 2005-08-12 12:14 40 960 TPSAddin.dll 2005-08-12 12:14 49 152 TPSTrace.dll 2005-08-12 12:13 77 824 TPwrReg.dll 2005-08-10 07:02 0 px.ini 2005-08-03 15:09 368 640 HWSetup.cpl 2005-08-02 11:39 40 960 HWS_Ctrl.dll 2005-08-01 06:10 61 500 DLAAPI_W.DLL 2005-07-30 09:27 405 504 Px.dll 2005-07-30 09:26 172 032 PxMas.dll 2005-07-30 09:25 339 968 PxWave.dll 2005-07-26 04:01 430 080 pxdrv.dll 2005-07-26 00:29 101 376 txflog.dll 2005-07-26 00:29 398 336 rpcss.dll 2005-07-26 00:29 75 264 olecli32.dll 2005-07-26 00:29 37 376 olecnv32.dll 2005-07-26 00:29 243 200 es.dll 2005-07-26 00:29 540 160 comuid.dll 2005-07-26 00:29 1 267 200 comsvcs.dll 2005-07-26 00:29 97 792 comrepl.dll 2005-07-26 00:29 498 688 clbcatq.dll 2005-07-26 00:29 60 416 colbact.dll 2005-07-26 00:29 110 080 clbcatex.dll 2005-07-26 00:29 625 152 catsrvut.dll 2005-07-26 00:29 225 792 catsrv.dll 2005-07-25 22:29 1 285 632 ole32.dll 2005-07-12 19:04 23 304 GWFSPidGen.dll 2005-07-08 12:28 76 800 remotesp.tsp 2005-07-08 12:28 249 344 tapisrv.dll 2005-07-05 13:01 307 200 atiiiexx.dll 2005-07-05 12:33 241 664 ATIDEMGR.dll 2005-07-05 11:52 6 684 672 atioglx1.dll 2005-07-05 10:51 4 857 856 atioglxx.dll 2005-07-05 10:36 232 960 ati2dvag.dll 2005-07-05 10:32 94 208 atipdlxx.dll 2005-07-05 10:32 73 728 Oemdspif.dll 2005-07-05 10:31 25 088 Ati2mdxx.exe 2005-07-05 10:31 39 936 ati2edxx.dll 2005-07-05 10:31 46 080 ati2evxx.dll 2005-07-05 10:30 376 832 ati2evxx.exe 2005-07-05 10:30 53 248 ATIDDC.DLL 2005-07-05 10:23 2 360 736 ati3duag.dll 2005-07-05 10:18 648 000 ativvaxx.dll 2005-07-05 10:08 143 360 atikvmag.dll 2005-07-05 09:46 17 408 atitvo32.dll 2005-07-05 09:41 208 896 ati2cqag.dll 2005-06-28 21:49 74 240 mscms.dll 2005-06-28 21:49 254 976 icm32.dll 2005-06-28 10:21 22 752 spupdsvc.exe 2005-06-28 10:20 13 536 spmsg.dll 2005-06-26 14:13 366 832 msscp.dll 2005-06-22 19:03 151 552 pxwma.dll 2005-06-22 02:00 28 672 VXBLOCK.dll 2005-06-20 11:24 28 672 TPeculiarity.dll 2005-06-15 13:50 295 936 kerberos.dll 2005-06-15 10:55 4 096 speedfan.sys 2005-06-14 04:00 108 544 pxcpyi64.exe 2005-06-14 04:00 56 832 pxcpya64.exe 2005-06-10 19:53 57 856 spoolsv.exe 2005-06-10 04:59 95 617 atiicdxx.dat 2005-06-06 10:58 24 576 ZoomingHook.exe 2005-06-06 10:44 24 576 SPCtl.dll 2005-06-06 10:39 24 576 EKECioCtl.dll 2005-06-03 20:32 28 672 EBLib.DLL 2005-05-31 11:20 79 432 GEARAspi.dll 2005-05-26 22:08 137 216 itss.dll 2005-05-26 22:08 155 136 itircl.dll 2005-05-26 22:08 546 304 hhctrl.ocx 2005-05-26 22:08 41 472 hhsetup.dll 2005-05-26 06:16 175 896 wuaucpl.cpl 2005-05-26 06:16 128 792 wucltui.dll 2005-05-26 06:16 195 352 wuaueng1.dll 2005-05-26 06:16 1 343 768 wuaueng.dll 2005-05-26 06:16 41 240 wups.dll 2005-05-26 06:16 18 200 wups2.dll 2005-05-26 06:16 125 720 wuauclt.exe 2005-05-26 06:16 173 536 wuweb.dll 2005-05-26 06:16 467 224 wuapi.dll 2005-05-26 06:16 175 896 wuauclt1.exe 2005-05-26 06:16 198 424 iuengine.dll 2005-05-26 06:16 75 544 cdm.dll 2005-05-26 05:19 178 408 muweb.dll 2005-05-26 05:16 128 744 mucltui.dll 2005-05-10 22:30 78 336 telnet.exe 2005-05-09 08:47 5 396 atifglpf.xml 2005-05-06 18:33 69 632 TvsCtrl.dll 2005-05-04 15:45 2 890 240 msi.dll 2005-04-25 12:42 278 528 ActiveID.ocx 2005-04-25 05:03 56 320 pxinsa64.exe 2005-04-25 05:03 61 440 pxhpinst.exe 2005-04-25 05:03 109 568 pxinsi64.exe 2005-04-22 07:36 135 168 DVDMenu.dll 2005-04-21 14:16 1 006 080 syssetup.dll 2005-04-15 15:39 1 085 440 ActiveBroadcast.ocx 2005-04-15 14:04 1 032 192 ActiveReceiver.ocx 2005-04-14 12:27 1 712 201 InetClnt.dll 2005-04-11 16:58 516 096 TOSCDSPD.cpl 2005-04-05 21:33 10 177 tosmreg.ini 2005-04-05 18:53 110 592 cselect.exe 2005-03-27 19:36 389 120 athcfg11.dll 2005-03-21 16:00 78 848 msiexec.exe 2005-03-21 16:00 271 360 msihnd.dll 2005-03-21 16:00 884 736 msimsg.dll 2005-03-21 16:00 15 360 msisip.dll 2005-03-04 04:36 127 078 javaws.exe 2005-03-04 04:36 49 265 jpicpl32.cpl 2005-03-04 03:07 49 250 javaw.exe 2005-03-04 03:06 49 248 java.exe 2005-03-02 14:10 578 048 user32.dll 2005-03-02 14:10 56 832 authz.dll 2005-03-02 14:08 2 181 376 ntoskrnl.exe 2005-03-02 14:07 2 058 880 ntkrnlpa.exe 2005-02-24 16:57 32 768 RmWLAN.exe 2005-02-24 16:26 163 840 MFCFirstRemove.exe 2005-01-31 11:54 209 608 Tabctl32.ocx 2005-01-31 11:54 647 872 Mscomct2.ocx 2005-01-31 11:54 140 096 Comdlg32.ocx 2005-01-28 14:44 10 752 wpdtrace.dll 2005-01-28 14:44 38 912 wpd_ci.dll 2005-01-28 14:44 716 288 wmadmoe.dll 2005-01-28 14:44 114 176 wpdmtp.dll 2005-01-28 14:44 96 768 logagent.exe 2005-01-28 14:44 294 912 blackbox.dll 2005-01-28 14:44 61 952 wpdconns.dll 2005-01-28 14:44 6 656 laprxy.dll 2005-01-28 14:44 224 768 wmasf.dll 2005-01-28 14:44 331 776 wpdmtpdr.dll 2005-01-28 14:44 28 160 WMDMLOG.dll 2005-01-28 14:44 47 104 uwdf.exe 2005-01-28 14:44 173 568 MsPMSP.dll 2005-01-28 14:44 25 088 MsPMSNSv.dll 2005-01-28 14:44 258 296 drmclien.dll 2005-01-28 14:44 221 184 qasf.dll 2005-01-28 14:44 142 336 msnetobj.dll 2005-01-28 14:44 66 560 wpdmtpus.dll 2005-01-28 14:44 1 003 008 wmvdmoe2.dll 2005-01-28 14:44 895 736 wmvdmod.dll 2005-01-28 14:44 2 370 296 wmvcore.dll 2005-01-28 14:44 164 864 cewmdm.dll 2005-01-28 14:44 315 904 MSWMDM.dll 2005-01-28 14:44 1 512 448 WMVADVE.DLL 2005-01-28 14:44 33 792 WMDMPS.dll 2005-01-28 14:44 335 872 WMDRMdev.dll 2005-01-28 14:44 1 218 808 wmvadvd.dll 2005-01-28 14:44 96 768 drmstor.dll 2005-01-28 14:44 940 544 wmspdmoe.dll 2005-01-28 14:44 15 872 wdfapi.dll 2005-01-28 14:44 413 944 wmspdmod.dll 2005-01-28 14:44 1 119 744 wmsdmoe2.dll 2005-01-28 14:44 38 912 wdfmgr.exe 2005-01-28 14:44 774 904 wmsdmod.dll 2005-01-28 14:44 396 528 wmadmod.dll 2005-01-28 14:44 1 027 072 wmnetmgr.dll 2005-01-28 14:44 150 016 wmidx.dll 2005-01-28 14:44 290 816 WMDRMNet.dll 2005-01-28 14:44 331 264 wpdsp.dll 2005-01-28 14:44 502 272 drmv2clt.dll 2005-01-26 20:47 1 006 592 msgina.dll 1985 fichier(s) 363 818 386 octets 0 R‚p(s) 35 360 096 256 octets libres Le volume dans le lecteur C n'a pas de nom. Le num‚ro de s‚rie du volume est 898D-B2DA R‚pertoire de C:\WINDOWS 2006-06-19 21:36 0 0.log 2006-06-19 21:35 1 793 425 WindowsUpdate.log 2006-06-19 21:35 2 048 bootstat.dat 2006-06-19 15:54 31 804 SchedLgU.Txt 2006-06-18 21:30 49 152 Thumbs.db 2006-06-18 18:36 3 360 638 ntbtlog.txt 2006-06-17 23:27 1 125 winamp.ini 2006-06-16 11:19 5 048 spupdsvc.log 2006-06-16 11:11 58 649 ntdtcsetup.log 2006-06-16 11:11 112 649 tsoc.log 2006-06-16 11:11 16 074 ocmsn.log 2006-06-16 11:11 11 522 KB917734.log 2006-06-16 11:11 36 329 wmsetup.log 2006-06-16 11:11 341 064 setupapi.log 2006-06-16 11:10 15 534 KB918439.log 2006-06-16 11:10 15 909 KB917344.log 2006-06-16 11:10 15 670 KB917953.log 2006-06-16 11:10 15 648 KB911280.log 2006-06-16 11:10 27 750 updspapi.log 2006-06-16 11:10 25 865 KB916281.log 2006-06-16 11:09 12 900 KB914389.log 2006-06-15 12:34 32 pavsig.txt 2006-06-14 23:10 12 213 mozver.dat 2006-06-14 21:44 311 wiadebug.log 2006-06-14 21:38 4 158 win.ini 2006-06-06 19:32 2 806 setupact.log 2006-06-05 20:12 9 012 WgaNotify.log 2006-06-05 20:11 7 358 WGA.log 2006-06-05 17:28 4 039 DirectX.log 2006-05-20 22:34 60 GOTO.INI 2006-05-20 16:01 286 720 iun506.exe 2006-05-10 07:20 15 704 KB913580.log 2006-04-26 17:05 327 SYSTEM.INI 2006-04-26 07:03 12 135 KB900485.log 2006-04-13 23:50 18 245 KB908531.log 2006-04-13 23:42 15 071 KB911562.log 2006-04-13 23:42 17 671 KB912812.log 2006-04-13 16:22 13 852 KB911565.log 2006-04-13 16:22 11 365 KB911567.log 2006-04-07 23:07 488 ODBC.INI 2006-03-24 20:44 341 ST6UNST.000 2006-03-24 20:44 73 216 ST6UNST.EXE 2006-03-24 17:35 29 803 DIIUnin.dat 2006-03-10 22:58 335 nsreg.dat 2006-02-27 11:52 2 829 DIIUnin.pif 2006-02-27 11:52 94 208 DIIUnin.exe 2006-02-25 16:45 8 306 ModemLog_TOSHIBA Software Modem.txt 2006-02-15 13:30 11 301 KB911927.log 2006-02-15 13:30 6 861 KB911564.log 2006-02-15 13:29 6 975 KB913446.log 2006-02-12 06:30 0 TPTray.INI 2006-01-27 14:20 479 Uninst2.htm 2006-01-25 11:14 478 720 WRUninstall.dll 2006-01-22 14:37 5 657 192 Hero Editor.CAB 2006-01-12 06:43 10 705 KB908519.log 2006-01-07 18:30 11 662 KB912919.log 2005-12-28 15:04 460 wmsetup10.log 2005-12-28 11:21 4 096 d3dx.dat 2005-12-19 23:38 747 hpwd4500.log 2005-12-19 18:13 90 ARPR.INI 2005-12-18 14:53 604 STLL Notifier 2005-12-18 14:53 604 T4 2005-12-18 14:53 604 T3 2005-12-16 23:10 10 262 KB910437.log 2005-12-16 23:10 16 593 KB905915.log 2005-12-10 22:48 831 ST4UNST.000 2005-12-10 17:34 335 GEARInstall.log 2005-12-09 18:57 349 Suppold.log 2005-12-09 18:57 347 Support.log 2005-12-09 18:35 90 dun.bat 2005-12-09 18:35 436 stci.ini 2005-12-09 12:18 87 NetwkCfg.txt 2005-12-09 12:11 1 468 checkip.dat 2005-12-05 17:36 153 409 setuplog.txt 2005-12-03 16:29 227 SYSTEM.SYD 2005-12-03 00:23 690 OEWABLog.txt 2005-12-02 19:57 0 Sti_Trace.log 2005-12-02 09:01 4 635 KB902344.log 2005-12-02 08:48 1 717 sessmgr.setup.log 2005-12-02 08:48 508 DtcInstall.log 2005-12-02 08:47 3 456 regopt.log 2005-12-02 08:47 0 setuperr.log 2005-12-01 21:51 25 609 WMCSetup.log 2005-12-01 21:51 22 444 basecsp.log 2005-12-01 21:48 25 898 KB896424.log 2005-12-01 21:47 21 830 KB891122.log 2005-12-01 21:47 316 640 WMSysPr9.prx 2005-12-01 21:46 25 191 KB900725.log 2005-12-01 21:46 22 780 KB905749.log 2005-12-01 21:46 23 898 KB896688.log 2005-12-01 21:46 17 308 KB904706.log 2005-12-01 21:46 17 616 KB905414.log 2005-12-01 21:46 16 799 KB901017.log 2005-12-01 21:45 21 163 KB902400.log 2005-12-01 21:42 11 416 KB894391.log 2005-12-01 21:42 11 220 KB896423.log 2005-12-01 21:42 10 705 KB899587.log 2005-12-01 21:42 10 209 KB899591.log 2005-12-01 21:42 10 317 KB893756.log 2005-12-01 21:42 9 135 KB900930.log 2005-12-01 21:42 10 588 KB890859.log 2005-12-01 21:42 5 088 KB898458.log 2005-12-01 21:42 7 097 KB896428.log 2005-12-01 21:42 6 018 KB890046.log 2005-12-01 21:41 5 239 KB887742.log 2005-12-01 21:41 10 775 KB887797.log 2005-12-01 20:51 8 863 KB898461.log 2005-12-01 20:51 6 597 KB893803v2.log 2005-10-10 19:29 510 Unist1.htm 2005-09-23 01:06 0 NDSTray.INI 2005-09-23 01:03 222 wininit.ini 2005-09-23 00:54 0 CeEKey.INI 2005-09-23 00:46 138 Fn-esse.UNI 2005-09-22 18:12 61 smscfg.ini 2005-09-22 14:20 8 192 REGLOCS.OLD 2005-09-22 09:33 193 507 orun32.isu 2005-09-22 09:33 829 orun32.ini 2005-09-22 09:28 0 control.ini 2005-09-22 09:27 4 205 ODBCINST.INI 2005-09-22 09:26 749 WindowsShell.Manifest 2005-09-22 09:25 36 vb.ini 2005-09-22 09:25 37 vbaddin.ini 2005-08-01 06:10 94 263 DLA.EXE 2005-06-10 04:59 95 617 atiicdxx.dat 2005-05-26 19:22 10 752 hh.exe 2005-04-07 18:11 2 949 176 WATER.BMP 2005-04-07 18:10 2 949 176 MASS.BMP 2005-04-07 18:09 3 932 216 ORGANICMETAL.BMP 2005-04-07 18:09 2 949 176 FLUXMETAL.BMP 2005-04-07 18:09 2 949 176 GLASS.BMP 2005-03-02 08:21 200 704 alcrmv.exe 2005-03-01 04:49 192 512 RtlExUpd.dll 2005-02-03 03:13 294 912 alcupd.exe 2005-01-10 04:48 147 456 UNINST32.EXE 2004-12-21 12:10 88 358 agrsmmsg.exe 2004-12-08 19:04 45 056 cfdemo.scr 2004-08-05 08:00 1 405 msdfmap.ini 2004-08-05 08:00 26 582 Granit vert.bmp 2004-08-05 08:00 15 872 TASKMAN.EXE 2004-08-05 08:00 17 062 Tasse … caf‚.bmp 2004-08-05 08:00 153 088 regedit.exe 2004-08-05 08:00 49 102 winnt.bmp 2004-08-05 08:00 65 832 Mur de Santa Fe.bmp 2004-08-05 08:00 70 656 NOTEPAD.EXE 2004-08-05 08:00 94 864 twain.dll 2004-08-05 08:00 50 688 twain_32.dll 2004-08-05 08:00 49 680 twunk_16.exe 2004-08-05 08:00 9 522 Zapotec.bmp 2004-08-05 08:00 65 978 Bulles de savon.bmp 2004-08-05 08:00 39 340 wmprfFRA.prx 2004-08-05 08:00 80 explorer.scf 2004-08-05 08:00 1 036 288 explorer.exe 2004-08-05 08:00 17 362 Rhododendron.bmp 2004-08-05 08:00 26 680 RiviŠre Sumida.bmp 2004-08-05 08:00 1 272 Rosace bleue 16.bmp 2004-08-05 08:00 65 954 Vent de prairie.bmp 2004-08-05 08:00 18 944 vmmreg32.dll 2004-08-05 08:00 16 730 Plume.bmp 2004-08-05 08:00 2 desktop.ini 2004-08-05 08:00 49 102 winnt256.bmp 2004-08-05 08:00 82 944 clock.avi 2004-08-05 08:00 25 600 twunk_32.exe 2004-08-05 08:00 17 336 Jour de pˆche.bmp 2004-08-05 08:00 707 _default.pif 2004-08-05 08:00 288 256 winhlp32.exe 2004-08-05 08:00 256 768 winhelp.exe 2004-04-16 10:19 7 246 Toshiba Solutions.ico 2004-04-05 13:49 64 512 agrsmdel.exe 2003-10-09 20:55 20 966 970 cfdemo.exe 2003-03-15 22:15 90 112 unvise32.exe 2002-08-13 06:10 155 648 ssleay32.dll 2002-08-13 06:09 684 032 libeay32.dll 2001-05-16 05:31 34 ipren.bat 2001-05-16 05:21 36 iprel.bat 2001-05-16 00:49 33 314 wmprfsve.prx 2001-05-16 00:49 33 580 wmprfslv.prx 2001-05-16 00:49 32 022 wmprftrk.prx 2001-05-16 00:49 33 336 WMPrfAra.prx 2001-05-16 00:49 35 590 wmprfesp.prx 2001-05-16 00:49 31 764 wmprffin.prx 2001-05-16 00:49 35 916 wmprfptg.prx 2001-05-16 00:49 28 718 wmprfheb.prx 2001-05-16 00:49 37 014 wmprfhun.prx 2001-05-16 00:49 35 680 wmprfita.prx 2001-05-16 00:49 804 wmprfrus.prx 2001-05-16 00:49 22 338 WMPrfKor.prx 2001-05-16 00:49 32 964 wmprfnld.prx 2001-05-16 00:49 32 852 wmprfnor.prx 2001-05-16 00:49 35 822 wmprfplk.prx 2001-05-16 00:49 33 694 wmprfptb.prx 2001-05-16 00:49 23 304 WMPrfJpn.prx 2001-05-16 00:48 36 594 wmprfell.prx 2001-05-16 00:48 38 232 wmprfsky.prx 2001-05-16 00:48 33 820 WMPrfDeu.prx 2001-05-16 00:48 31 712 wmprfdan.prx 2001-05-16 00:48 35 474 wmprfcsy.prx 2001-05-16 00:48 136 WMPrfCHS.prx 2001-05-16 00:48 132 WMPrfCHT.prx 2001-05-11 04:37 29 ip.bat 1998-11-13 14:16 308 224 IsUn040c.exe 1998-08-28 16:45 147 516 inpro.bmp 1997-11-19 15:49 303 616 IsUninst.exe 202 fichier(s) 56 799 910 octets 0 R‚p(s) 35 360 108 544 octets libres Le volume dans le lecteur C n'a pas de nom. Le num‚ro de s‚rie du volume est 898D-B2DA R‚pertoire de C:\DOCUME~1\Alexis\LOCALS~1\Temp 2006-06-19 21:39 16 384 ~DF81FB.tmp 2006-06-15 17:56 16 384 ~DFDAA.tmp 2006-06-15 11:26 16 384 ~DF8BA8.tmp 2006-06-14 19:16 693 TWAIN.LOG 2006-06-14 19:16 156 Twunk001.MTX 2006-06-14 19:16 0 Twunk002.MTX 2006-06-14 19:16 2 Twain001.Mtx 2005-06-15 11:27 54 784 sfextra.dll 2003-12-08 10:01 487 424 43gcjvgahnu44.ths 2002-12-02 12:33 107 512 set46.tmp 10 fichier(s) 699 723 octets 0 R‚p(s) 35 360 096 256 octets libres

bon après 2h30 de scan, j'ai obtenu juste une loigne 2h30 de scan pour UNE ligne, UNE TOUTE PETINE LIGNE !!!! :P File C:\Program Files\mIRC\mirc.exe tagged as not-a-virus:Client-IRC.Win32.mIRC.616. No Action Taken. P.S. C:\WINDOWS\system32\wnstssv.exe et C:\WINDOWS\win320942-198720232006.exe je pouvais pas les supprimer alors j'ai utiliser killbox et j'ai vérifié, ils sont bien supprimé

non, une fenêtre s'affiche tout d'un coup sans que j'ai rien fait, j'suis même pas dans ie voici le rapport de spy sweeper : ******** 20:45: | Début de session, 17 juin 2006 | 20:45: Spy Sweeper démarrée 20:45: Analyse lancée avec la version des définitions 701 20:45: Démarrage de l’analyse de la mémoire 20:46: Analyse de la mémoire terminée, temps passé : 00:01:37 20:46: Démarrage de l’analyse du Registre 20:47: Trouvé Trojan Horse: trojan-backdoor-flood.mirc 20:47: HKCR\chatfile\ (15 traces secondaires) (ID = 1505519) 20:47: HKCR\irc\defaulticon\ (1 traces secondaires) (ID = 1505536) 20:47: HKCR\irc\shell\open\command\ (1 traces secondaires) (ID = 1505540) 20:47: HKLM\software\classes\chatfile\defaulticon\ (1 traces secondaires) (ID = 1505553) 20:47: HKLM\software\classes\irc\defaulticon\ (1 traces secondaires) (ID = 1505564) 20:47: HKLM\software\classes\irc\shell\ (11 traces secondaires) (ID = 1505566) 20:47: Analyse du Registre terminée, temps passé :00:00:23 20:47: Démarrage de l’analyse des cookies 20:47: Trouvé Spy Cookie: 2o7.net cookie 20:47: réjean@2o7[1].txt (ID = 1957) 20:47: Trouvé Spy Cookie: 50881381 cookie 20:47: réjean@50881381[1].txt (ID = 1981) 20:47: Trouvé Spy Cookie: 888 cookie 20:47: réjean@888[1].txt (ID = 2019) 20:47: Trouvé Spy Cookie: yieldmanager cookie 20:47: réjean@ad.yieldmanager[1].txt (ID = 3751) 20:47: Trouvé Spy Cookie: adknowledge cookie 20:47: réjean@adknowledge[2].txt (ID = 2072) 20:47: Trouvé Spy Cookie: adprofile cookie 20:47: réjean@adprofile[2].txt (ID = 2084) 20:47: Trouvé Spy Cookie: addynamix cookie 20:47: réjean@ads.addynamix[1].txt (ID = 2062) 20:47: Trouvé Spy Cookie: apmebf cookie 20:47: réjean@apmebf[2].txt (ID = 2229) 20:47: Trouvé Spy Cookie: falkag cookie 20:47: réjean@as-us.falkag[1].txt (ID = 2650) 20:47: Trouvé Spy Cookie: searchingbooth cookie 20:47: réjean@banners.searchingbooth[2].txt (ID = 3322) 20:47: Trouvé Spy Cookie: bluestreak cookie 20:47: réjean@bluestreak[2].txt (ID = 2314) 20:47: Trouvé Spy Cookie: cassava cookie 20:47: réjean@cassava[1].txt (ID = 2362) 20:47: Trouvé Spy Cookie: exitexchange cookie 20:47: réjean@exitexchange[2].txt (ID = 2633) 20:47: Trouvé Spy Cookie: findwhat cookie 20:47: réjean@findwhat[1].txt (ID = 2674) 20:47: Trouvé Spy Cookie: humanclick cookie 20:47: réjean@hc2.humanclick[1].txt (ID = 2810) 20:47: Trouvé Spy Cookie: top-banners cookie 20:47: réjean@media.top-banners[1].txt (ID = 3548) 20:47: réjean@partygaming.122.2o7[1].txt (ID = 1958) 20:47: Trouvé Spy Cookie: partypoker cookie 20:47: réjean@partypoker[2].txt (ID = 3111) 20:47: Trouvé Spy Cookie: realmedia cookie 20:47: réjean@realmedia[1].txt (ID = 3235) 20:47: Trouvé Spy Cookie: revenue.net cookie 20:47: réjean@revenue[2].txt (ID = 3257) 20:47: Trouvé Spy Cookie: rn11 cookie 20:47: réjean@rn11[2].txt (ID = 3261) 20:47: réjean@skyauction.122.2o7[1].txt (ID = 1958) 20:47: Trouvé Spy Cookie: statcounter cookie 20:47: réjean@statcounter[2].txt (ID = 3447) 20:47: Trouvé Spy Cookie: reliablestats cookie 20:47: réjean@stats1.reliablestats[1].txt (ID = 3254) 20:47: Trouvé Spy Cookie: tacoda cookie 20:47: réjean@tacoda[1].txt (ID = 6444) 20:47: Trouvé Spy Cookie: tribalfusion cookie 20:47: réjean@tribalfusion[1].txt (ID = 3589) 20:47: Trouvé Spy Cookie: paypopup cookie 20:47: réjean@www.paypopup[2].txt (ID = 3120) 20:47: Trouvé Spy Cookie: zedo cookie 20:47: réjean@zedo[1].txt (ID = 3762) 20:47: Analyse des cookies terminée, temps passé : 00:00:00 20:47: Démarrage de l’analyse des fichiers 21:51: Analyse des fichiers terminée, temps passé : 01:04:18 21:51: Analyse complète terminée. Durée 01:06:39 21:51: Traces trouvées : 64 21:52: Processus de suppression lancé. 21:52: Mise en quarantaine de toutes les traces : trojan-backdoor-flood.mirc 21:52: Mise en quarantaine de toutes les traces : 2o7.net cookie 21:52: Mise en quarantaine de toutes les traces : 50881381 cookie 21:52: Mise en quarantaine de toutes les traces : 888 cookie 21:52: Mise en quarantaine de toutes les traces : addynamix cookie 21:52: Mise en quarantaine de toutes les traces : adknowledge cookie 21:52: Mise en quarantaine de toutes les traces : adprofile cookie 21:52: Mise en quarantaine de toutes les traces : apmebf cookie 21:52: Mise en quarantaine de toutes les traces : bluestreak cookie 21:52: Mise en quarantaine de toutes les traces : cassava cookie 21:52: Mise en quarantaine de toutes les traces : exitexchange cookie 21:52: Mise en quarantaine de toutes les traces : falkag cookie 21:52: Mise en quarantaine de toutes les traces : findwhat cookie 21:52: Mise en quarantaine de toutes les traces : humanclick cookie 21:52: Mise en quarantaine de toutes les traces : partypoker cookie 21:52: Mise en quarantaine de toutes les traces : paypopup cookie 21:52: Mise en quarantaine de toutes les traces : realmedia cookie 21:52: Mise en quarantaine de toutes les traces : reliablestats cookie 21:52: Mise en quarantaine de toutes les traces : revenue.net cookie 21:52: Mise en quarantaine de toutes les traces : rn11 cookie 21:52: Mise en quarantaine de toutes les traces : searchingbooth cookie 21:52: Mise en quarantaine de toutes les traces : statcounter cookie 21:52: Mise en quarantaine de toutes les traces : tacoda cookie 21:52: Mise en quarantaine de toutes les traces : top-banners cookie 21:52: Mise en quarantaine de toutes les traces : tribalfusion cookie 21:52: Mise en quarantaine de toutes les traces : yieldmanager cookie 21:52: Mise en quarantaine de toutes les traces : zedo cookie 21:52: Processus de suppression lancé. Durée 00:00:21 ******** rapport de blacklight : 06/17/06 21:59:40 [info]: BlackLight Engine 1.0.37 initialized 06/17/06 21:59:40 [info]: OS: 5.1 build 2600 (Service Pack 2) 06/17/06 21:59:40 [Note]: 7019 4 06/17/06 21:59:40 [Note]: 7005 0 06/17/06 21:59:42 [Note]: 7006 0 06/17/06 21:59:42 [Note]: 7011 492 06/17/06 21:59:43 [Note]: 7026 0 06/17/06 21:59:43 [Note]: 7026 0 06/17/06 21:59:52 [Note]: FSRAW library version 1.7.1015 06/17/06 22:05:35 [Note]: 2000 1006 06/17/06 22:06:57 [Note]: 7007 0 l'autre : Le volume dans le lecteur C n'a pas de nom. Le num‚ro de s‚rie du volume est 898D-B2DA R‚pertoire de C:\ 2006-06-17 22:07 0 dirdat.txt 2006-06-17 21:55 467 845 120 hiberfil.sys 2006-06-17 21:55 704 643 072 pagefile.sys 2006-06-16 22:40 579 094 atlite_87_pn.zip 2006-06-16 22:13 132 586 ambertech.zip 2006-06-16 22:07 3 101 atlite_87_pn8_update1.zip 2006-06-11 22:33 12 630 AVSCAN-20060611-214534-A86CA4F8.LOG 2006-06-10 14:38 158 908 SpybotSD.Results.txt 2006-06-06 19:19 6 351 Nouveau Document texte.txt 2006-06-06 19:19 10 816 112 antivir_workstation_win7u_en_h.exe 2006-05-17 02:20 17 d.bat 2006-04-26 23:16 184 320 PlayerHost.dll 2006-04-26 17:05 216 boot.ini 2006-04-10 16:56 156 054 SpybotSD.Report.txt 2006-02-28 12:55 1 463 ip.txt 2005-12-09 19:51 25 AUTOEXEC.BAT 2005-12-09 17:57 2 174 400 2mo-file 2005-09-28 21:19 6 764 Lisez Moi.htm 2005-09-22 09:28 0 MSDOS.SYS 2005-09-22 09:28 0 IO.SYS 2005-09-22 09:28 0 AUTOEXEC.SYD 2004-08-05 08:00 4 952 Bootfont.bin 2004-08-05 08:00 251 712 ntldr 2004-08-05 08:00 47 564 NTDETECT.COM 24 fichier(s) 1 187 024 461 octets 0 R‚p(s) 35 522 416 640 octets libres Le volume dans le lecteur C n'a pas de nom. Le num‚ro de s‚rie du volume est 898D-B2DA R‚pertoire de C:\WINDOWS\system32 2006-06-17 21:56 2 206 wpa.dbl 2006-06-16 21:35 608 448 comctl32.ocx 2006-06-16 07:36 2 wnstssv.exe 2006-06-16 07:36 81 920 __delete_on_reboot__rundll.dll 2006-06-15 22:26 20 480 Thumbs.db 2006-06-15 12:34 2 550 Uninstall.ico 2006-06-15 12:34 1 406 Help.ico 2006-06-15 12:34 30 590 pavas.ico 2006-06-14 20:14 45 initdebug.nfo 2006-06-11 11:53 57 384 avsda.dll 2006-06-08 21:19 5 967 776 MRT.exe 2006-06-05 18:30 0 asfiles.txt 2006-06-02 23:49 158 752 FNTCACHE.DAT 2006-06-01 14:48 163 840 jgdw400.dll 2006-06-01 14:48 27 648 jgpl400.dll 2006-05-29 21:28 73 ssprs.dll 2006-05-29 21:28 87 ssprs.tgz 2006-05-29 21:28 219 lsprst7.tgz 2006-05-29 21:28 205 lsprst7.dll 2006-05-29 21:28 1 025 clauth2.dll 2006-05-29 21:28 1 025 clauth1.dll 2006-05-29 21:28 1 025 sysprs7.dll 2006-05-29 21:28 1 025 sysprs7.tgz 2006-05-29 11:34 1 496 576 shdocvw.dll 2006-05-23 17:26 579 888 LegitCheckControl.dll 2006-05-23 17:25 285 488 WgaTray.exe 2006-05-23 17:25 402 736 WgaLogon.dll 2006-05-19 11:07 3 076 096 mshtml.dll 2006-05-18 01:31 450 560 jscript.dll 2006-05-14 04:48 181 248 rasmans.dll 2006-05-11 04:58 100 352 xpsp3res.dll 2006-05-10 01:26 617 472 urlmon.dll 2006-05-10 01:26 667 648 wininet.dll 2006-05-10 01:26 474 624 shlwapi.dll 2006-05-10 01:26 39 424 pngfilt.dll 2006-05-10 01:26 532 480 mstime.dll 2006-05-10 01:26 146 432 msrating.dll 2006-05-10 01:26 448 512 mshtmled.dll 2006-05-10 01:26 205 312 dxtrans.dll 2006-05-10 01:26 357 888 dxtmsft.dll 2006-05-10 01:26 96 768 inseng.dll 2006-05-10 01:26 15 872 jsproxy.dll 2006-05-10 01:26 152 064 cdfview.dll 2006-05-10 01:26 251 904 iepeers.dll 2006-05-10 01:26 1 022 976 browseui.dll 2006-05-10 01:26 1 056 768 danim.dll 2006-05-10 01:26 55 808 extmgr.dll 2006-04-29 06:07 5 533 696 wmp.dll 2006-04-26 20:04 43 520 CmdLineExt03.dll 2006-04-25 10:28 421 888 RealMediaSplitter.ax 2006-04-24 18:29 9 158 TitanPokerIconDropTRA107.ico 2006-04-07 23:47 3 072 CONFIG.NT 2006-04-06 10:54 73 728 asuninst.exe 2006-04-03 10:59 128 xposer.cfg 2006-04-03 10:59 128 asinst.cfg 2006-04-02 09:26 75 464 perfc00C.dat 2006-04-02 09:26 401 262 perfh009.dat 2006-04-02 09:26 468 310 perfh00C.dat 2006-04-02 09:26 62 542 perfc009.dat 2006-04-02 09:26 1 018 888 PerfStringBackup.INI 2006-03-29 16:47 196 712 Targets.dat 2006-03-25 13:53 3 262 win2000.ico 2006-03-17 05:11 679 424 inetcomm.dll 2006-03-17 00:07 8 508 416 shell32.dll 2006-03-16 20:38 28 672 verclsid.exe 2006-03-01 15:42 11 776 xolehlp.dll 2006-03-01 15:42 161 280 msdtcuiu.dll 2006-03-01 15:42 956 416 msdtctm.dll 2006-03-01 15:42 426 496 msdtcprx.dll 2006-03-01 15:42 91 136 mtxoci.dll 2006-03-01 15:42 66 560 mtxclu.dll 2006-02-26 22:52 21 840 SIntfNT.dll 2006-02-26 22:52 17 212 SIntf32.dll 2006-02-26 22:52 12 067 SIntf16.dll 2006-02-23 11:22 1 047 552 mfc71u.dll 2006-02-14 22:53 176 167 rmoc3260.dll 2006-02-14 22:53 5 632 pndx5032.dll 2006-02-14 22:53 6 656 pndx5016.dll 2006-02-14 22:53 278 528 pncrt.dll 2006-01-27 18:38 503 296 aswBoot.exe 2006-01-27 18:30 90 112 AVASTSS.scr 2006-01-25 11:13 492 544 WRLogonNtf.dll 2006-01-25 11:13 8 192 ssiefr.EXE 2006-01-25 11:13 17 920 wrlzma.dll 2006-01-03 23:35 68 096 webclnt.dll 2005-12-28 22:56 280 064 gdi32.dll 2005-12-18 14:53 604 T2 2005-12-14 04:24 118 784 sirenacm.dll 2005-12-02 08:50 238 $winnt$.inf 2005-12-02 08:50 320 results.txt 2005-10-29 01:53 86 016 pintool.exe 2005-10-29 01:53 26 112 bcsprsrc.dll 2005-10-29 01:25 151 552 ifxcardm.dll 2005-10-29 01:25 133 120 axaltocm.dll 2005-10-28 17:40 96 792 basecsp.dll 2005-10-20 18:25 1 097 728 esent.dll 2005-10-17 21:58 65 536 QuickTimeVR.qtx 2005-10-17 21:57 49 152 QuickTime.qts 2005-10-17 17:21 118 272 t2embed.dll 2005-10-17 17:21 80 896 fontsub.dll 2005-10-05 23:08 1 839 616 win32k.sys 2005-09-30 11:51 624 oeminfo.ini 2005-09-23 08:28 150 016 mscorier.dll 2005-09-23 08:28 74 240 mscories.dll 2005-09-23 08:28 270 848 mscoree.dll 2005-09-23 08:28 83 456 dfshim.dll 2005-09-23 01:05 2 918 jupdate-1.5.0_02-b09.log 2005-09-23 00:40 23 392 nscompat.tlb 2005-09-23 00:40 16 832 amcompat.tlb 2005-09-22 18:12 333 $ncsp$.inf 2005-09-22 09:26 488 WindowsLogon.manifest 2005-09-22 09:26 488 logonui.exe.manifest 2005-09-22 09:26 749 nwc.cpl.manifest 2005-09-22 09:26 749 ncpa.cpl.manifest 2005-09-22 09:26 749 cdplayer.exe.manifest 2005-09-22 09:26 749 wuaucpl.cpl.manifest 2005-09-22 09:26 749 sapi.cpl.manifest 2005-09-22 09:25 21 892 emptyregdb.dat 2005-09-22 04:22 0 h323log.txt 2005-09-09 21:55 2 067 968 cdosys.dll 2005-09-07 14:56 24 576 TSBWLS.dll 2005-08-31 21:43 19 968 linkinfo.dll 2005-08-31 21:43 292 352 winsrv.dll 2005-08-29 23:55 1 293 312 quartz.dll 2005-08-25 18:18 118 784 MSSTDFMT.DLL 2005-08-22 23:39 124 928 umpnpmgr.dll 2005-08-22 14:35 197 632 netman.dll 2005-08-12 12:14 1 171 456 TPwrSave.cpl 2005-08-12 12:14 266 240 TPSMain.exe 2005-08-12 12:14 49 152 TPSDel.dll 2005-08-12 12:14 40 960 TPSMainCtl.dll 2005-08-12 12:14 86 016 CpuPerf.dll 2005-08-12 12:14 45 056 TPwrCfg.dll 2005-08-12 12:14 40 960 TPSBattM.exe 2005-08-12 12:14 40 960 TPSAddin.dll 2005-08-12 12:14 49 152 TPSTrace.dll 2005-08-12 12:13 77 824 TPwrReg.dll 2005-08-10 07:02 0 px.ini 2005-08-03 15:09 368 640 HWSetup.cpl 2005-08-02 11:39 40 960 HWS_Ctrl.dll 2005-08-01 06:10 61 500 DLAAPI_W.DLL 2005-07-30 09:27 405 504 Px.dll 2005-07-30 09:26 172 032 PxMas.dll 2005-07-30 09:25 339 968 PxWave.dll 2005-07-26 04:01 430 080 pxdrv.dll 2005-07-26 00:29 101 376 txflog.dll 2005-07-26 00:29 398 336 rpcss.dll 2005-07-26 00:29 37 376 olecnv32.dll 2005-07-26 00:29 75 264 olecli32.dll 2005-07-26 00:29 243 200 es.dll 2005-07-26 00:29 540 160 comuid.dll 2005-07-26 00:29 1 267 200 comsvcs.dll 2005-07-26 00:29 97 792 comrepl.dll 2005-07-26 00:29 498 688 clbcatq.dll 2005-07-26 00:29 60 416 colbact.dll 2005-07-26 00:29 110 080 clbcatex.dll 2005-07-26 00:29 625 152 catsrvut.dll 2005-07-26 00:29 225 792 catsrv.dll 2005-07-25 22:29 1 285 632 ole32.dll 2005-07-12 19:04 23 304 GWFSPidGen.dll 2005-07-08 12:28 76 800 remotesp.tsp 2005-07-08 12:28 249 344 tapisrv.dll 2005-07-05 13:01 307 200 atiiiexx.dll 2005-07-05 12:33 241 664 ATIDEMGR.dll 2005-07-05 11:52 6 684 672 atioglx1.dll 2005-07-05 10:51 4 857 856 atioglxx.dll 2005-07-05 10:36 232 960 ati2dvag.dll 2005-07-05 10:32 94 208 atipdlxx.dll 2005-07-05 10:32 73 728 Oemdspif.dll 2005-07-05 10:31 25 088 Ati2mdxx.exe 2005-07-05 10:31 39 936 ati2edxx.dll 2005-07-05 10:31 46 080 ati2evxx.dll 2005-07-05 10:30 376 832 ati2evxx.exe 2005-07-05 10:30 53 248 ATIDDC.DLL 2005-07-05 10:23 2 360 736 ati3duag.dll 2005-07-05 10:18 648 000 ativvaxx.dll 2005-07-05 10:08 143 360 atikvmag.dll 2005-07-05 09:46 17 408 atitvo32.dll 2005-07-05 09:41 208 896 ati2cqag.dll 2005-06-28 21:49 254 976 icm32.dll 2005-06-28 21:49 74 240 mscms.dll 2005-06-28 10:21 22 752 spupdsvc.exe 2005-06-28 10:20 13 536 spmsg.dll 2005-06-26 14:13 366 832 msscp.dll 2005-06-22 19:03 151 552 pxwma.dll 2005-06-22 02:00 28 672 VXBLOCK.dll 2005-06-20 11:24 28 672 TPeculiarity.dll 2005-06-15 13:50 295 936 kerberos.dll 2005-06-15 10:55 4 096 speedfan.sys 2005-06-14 04:00 108 544 pxcpyi64.exe 2005-06-14 04:00 56 832 pxcpya64.exe 2005-06-10 19:53 57 856 spoolsv.exe 2005-06-10 04:59 95 617 atiicdxx.dat 2005-06-06 10:58 24 576 ZoomingHook.exe 2005-06-06 10:44 24 576 SPCtl.dll 2005-06-06 10:39 24 576 EKECioCtl.dll 2005-06-03 20:32 28 672 EBLib.DLL 2005-05-31 11:20 79 432 GEARAspi.dll 2005-05-26 22:08 155 136 itircl.dll 2005-05-26 22:08 41 472 hhsetup.dll 2005-05-26 22:08 137 216 itss.dll 2005-05-26 22:08 546 304 hhctrl.ocx 2005-05-26 06:16 195 352 wuaueng1.dll 2005-05-26 06:16 175 896 wuaucpl.cpl 2005-05-26 06:16 128 792 wucltui.dll 2005-05-26 06:16 18 200 wups2.dll 2005-05-26 06:16 467 224 wuapi.dll 2005-05-26 06:16 125 720 wuauclt.exe 2005-05-26 06:16 41 240 wups.dll 2005-05-26 06:16 173 536 wuweb.dll 2005-05-26 06:16 175 896 wuauclt1.exe 2005-05-26 06:16 1 343 768 wuaueng.dll 2005-05-26 06:16 198 424 iuengine.dll 2005-05-26 06:16 75 544 cdm.dll 2005-05-26 05:19 178 408 muweb.dll 2005-05-26 05:16 128 744 mucltui.dll 2005-05-10 22:30 78 336 telnet.exe 2005-05-09 08:47 5 396 atifglpf.xml 2005-05-06 18:33 69 632 TvsCtrl.dll 2005-05-04 15:45 2 890 240 msi.dll 2005-04-25 12:42 278 528 ActiveID.ocx 2005-04-25 05:03 109 568 pxinsi64.exe 2005-04-25 05:03 61 440 pxhpinst.exe 2005-04-25 05:03 56 320 pxinsa64.exe 2005-04-22 07:36 135 168 DVDMenu.dll 2005-04-21 14:16 1 006 080 syssetup.dll 2005-04-15 15:39 1 085 440 ActiveBroadcast.ocx 2005-04-15 14:04 1 032 192 ActiveReceiver.ocx 2005-04-14 12:27 1 712 201 InetClnt.dll 2005-04-11 16:58 516 096 TOSCDSPD.cpl 2005-04-05 21:33 10 177 tosmreg.ini 2005-04-05 18:53 110 592 cselect.exe 2005-03-27 19:36 389 120 athcfg11.dll 2005-03-21 16:00 78 848 msiexec.exe 2005-03-21 16:00 271 360 msihnd.dll 2005-03-21 16:00 15 360 msisip.dll 2005-03-21 16:00 884 736 msimsg.dll 2005-03-04 04:36 127 078 javaws.exe 2005-03-04 04:36 49 265 jpicpl32.cpl 2005-03-04 03:07 49 250 javaw.exe 2005-03-04 03:06 49 248 java.exe 2005-03-02 14:10 56 832 authz.dll 2005-03-02 14:10 578 048 user32.dll 2005-03-02 14:08 2 181 376 ntoskrnl.exe 2005-03-02 14:07 2 058 880 ntkrnlpa.exe 2005-02-24 16:57 32 768 RmWLAN.exe 2005-02-24 16:26 163 840 MFCFirstRemove.exe 2005-01-31 11:54 647 872 Mscomct2.ocx 2005-01-31 11:54 140 096 Comdlg32.ocx 2005-01-31 11:54 209 608 Tabctl32.ocx 2005-01-28 14:44 10 752 wpdtrace.dll 2005-01-28 14:44 38 912 wpd_ci.dll 2005-01-28 14:44 66 560 wpdmtpus.dll 2005-01-28 14:44 25 088 MsPMSNSv.dll 2005-01-28 14:44 294 912 blackbox.dll 2005-01-28 14:44 96 768 logagent.exe 2005-01-28 14:44 173 568 MsPMSP.dll 2005-01-28 14:44 331 776 wpdmtpdr.dll 2005-01-28 14:44 47 104 uwdf.exe 2005-01-28 14:44 6 656 laprxy.dll 2005-01-28 14:44 114 176 wpdmtp.dll 2005-01-28 14:44 61 952 wpdconns.dll 2005-01-28 14:44 315 904 MSWMDM.dll 2005-01-28 14:44 396 528 wmadmod.dll 2005-01-28 14:44 716 288 wmadmoe.dll 2005-01-28 14:44 1 003 008 wmvdmoe2.dll 2005-01-28 14:44 895 736 wmvdmod.dll 2005-01-28 14:44 331 264 wpdsp.dll 2005-01-28 14:44 2 370 296 wmvcore.dll 2005-01-28 14:44 142 336 msnetobj.dll 2005-01-28 14:44 1 512 448 WMVADVE.DLL 2005-01-28 14:44 1 218 808 wmvadvd.dll 2005-01-28 14:44 96 768 drmstor.dll 2005-01-28 14:44 940 544 wmspdmoe.dll 2005-01-28 14:44 413 944 wmspdmod.dll 2005-01-28 14:44 1 119 744 wmsdmoe2.dll 2005-01-28 14:44 774 904 wmsdmod.dll 2005-01-28 14:44 1 027 072 wmnetmgr.dll 2005-01-28 14:44 28 160 WMDMLOG.dll 2005-01-28 14:44 15 872 wdfapi.dll 2005-01-28 14:44 164 864 cewmdm.dll 2005-01-28 14:44 33 792 WMDMPS.dll 2005-01-28 14:44 221 184 qasf.dll 2005-01-28 14:44 38 912 wdfmgr.exe 2005-01-28 14:44 335 872 WMDRMdev.dll 2005-01-28 14:44 258 296 drmclien.dll 2005-01-28 14:44 150 016 wmidx.dll 2005-01-28 14:44 290 816 WMDRMNet.dll 2005-01-28 14:44 224 768 wmasf.dll 2005-01-28 14:44 502 272 drmv2clt.dll 2005-01-26 20:47 1 006 592 msgina.dll 1986 fichier(s) 363 817 876 octets 0 R‚p(s) 35 522 277 376 octets libres Le volume dans le lecteur C n'a pas de nom. Le num‚ro de s‚rie du volume est 898D-B2DA R‚pertoire de C:\WINDOWS 2006-06-17 21:55 0 0.log 2006-06-17 21:55 1 713 267 WindowsUpdate.log 2006-06-17 21:55 2 048 bootstat.dat 2006-06-17 21:08 3 235 620 ntbtlog.txt 2006-06-17 20:35 31 804 SchedLgU.Txt 2006-06-16 21:56 49 152 Thumbs.db 2006-06-16 11:19 5 048 spupdsvc.log 2006-06-16 11:11 112 649 tsoc.log 2006-06-16 11:11 58 649 ntdtcsetup.log 2006-06-16 11:11 47 600 iis6.log 2006-06-16 11:11 96 755 comsetup.log 2006-06-16 11:11 16 074 ocmsn.log 2006-06-16 11:11 1 374 imsins.log 2006-06-16 11:11 36 329 wmsetup.log 2006-06-16 11:11 11 522 KB917734.log 2006-06-16 11:11 137 052 ocgen.log 2006-06-16 11:11 14 523 msgsocm.log 2006-06-16 11:11 290 582 FaxSetup.log 2006-06-16 11:11 341 064 setupapi.log 2006-06-16 11:10 1 374 imsins.BAK 2006-06-16 11:10 15 534 KB918439.log 2006-06-16 11:10 15 909 KB917344.log 2006-06-16 11:10 15 670 KB917953.log 2006-06-16 11:10 15 648 KB911280.log 2006-06-16 11:10 27 750 updspapi.log 2006-06-16 11:10 25 865 KB916281.log 2006-06-16 11:09 12 900 KB914389.log 2006-06-15 14:27 1 125 winamp.ini 2006-06-15 12:34 32 pavsig.txt 2006-06-14 23:10 12 213 mozver.dat 2006-06-14 21:44 311 wiadebug.log 2006-06-14 21:38 4 158 win.ini 2006-06-06 19:32 2 806 setupact.log 2006-06-05 20:12 9 012 WgaNotify.log 2006-06-05 20:11 7 358 WGA.log 2006-06-05 17:28 4 039 DirectX.log 2006-05-20 22:34 60 GOTO.INI 2006-05-20 16:01 286 720 iun506.exe 2006-05-10 07:20 15 704 KB913580.log 2006-04-26 17:05 327 SYSTEM.INI 2006-04-26 07:03 12 135 KB900485.log 2006-04-13 23:50 18 245 KB908531.log 2006-04-13 23:42 15 071 KB911562.log 2006-04-13 23:42 17 671 KB912812.log 2006-04-13 16:22 13 852 KB911565.log 2006-04-13 16:22 11 365 KB911567.log 2006-04-08 11:57 0 win320942-198720232006.exe 2006-04-07 23:07 488 ODBC.INI 2006-03-24 20:44 341 ST6UNST.000 2006-03-24 20:44 73 216 ST6UNST.EXE 2006-03-24 17:35 29 803 DIIUnin.dat 2006-03-10 22:58 335 nsreg.dat 2006-03-02 07:35 0 winsysupd121.dat 2006-02-27 19:31 0 gimmygames.dat 2006-02-27 11:52 2 829 DIIUnin.pif 2006-02-27 11:52 94 208 DIIUnin.exe 2006-02-25 16:45 8 306 ModemLog_TOSHIBA Software Modem.txt 2006-02-15 13:30 11 301 KB911927.log 2006-02-15 13:30 6 861 KB911564.log 2006-02-15 13:29 6 975 KB913446.log 2006-02-12 06:30 0 TPTray.INI 2006-01-27 14:20 479 Uninst2.htm 2006-01-25 11:14 478 720 WRUninstall.dll 2006-01-22 14:37 5 657 192 Hero Editor.CAB 2006-01-12 06:43 10 705 KB908519.log 2006-01-07 18:30 11 662 KB912919.log 2005-12-28 15:04 460 wmsetup10.log 2005-12-28 11:21 4 096 d3dx.dat 2005-12-19 23:38 747 hpwd4500.log 2005-12-19 18:13 90 ARPR.INI 2005-12-18 14:53 604 STLL Notifier 2005-12-18 14:53 604 T3 2005-12-18 14:53 604 T4 2005-12-16 23:10 10 262 KB910437.log 2005-12-16 23:10 16 593 KB905915.log 2005-12-10 22:48 831 ST4UNST.000 2005-12-10 17:34 335 GEARInstall.log 2005-12-09 18:57 347 Support.log 2005-12-09 18:57 349 Suppold.log 2005-12-09 18:35 90 dun.bat 2005-12-09 18:35 436 stci.ini 2005-12-09 12:18 87 NetwkCfg.txt 2005-12-09 12:11 1 468 checkip.dat 2005-12-05 17:36 153 409 setuplog.txt 2005-12-03 16:29 227 SYSTEM.SYD 2005-12-03 00:23 690 OEWABLog.txt 2005-12-02 19:57 0 Sti_Trace.log 2005-12-02 09:01 4 635 KB902344.log 2005-12-02 08:48 1 717 sessmgr.setup.log 2005-12-02 08:48 508 DtcInstall.log 2005-12-02 08:47 3 456 regopt.log 2005-12-02 08:47 0 setuperr.log 2005-12-01 21:51 25 609 WMCSetup.log 2005-12-01 21:51 22 444 basecsp.log 2005-12-01 21:48 25 898 KB896424.log 2005-12-01 21:47 21 830 KB891122.log 2005-12-01 21:47 316 640 WMSysPr9.prx 2005-12-01 21:46 25 191 KB900725.log 2005-12-01 21:46 22 780 KB905749.log 2005-12-01 21:46 23 898 KB896688.log 2005-12-01 21:46 17 308 KB904706.log 2005-12-01 21:46 17 616 KB905414.log 2005-12-01 21:46 16 799 KB901017.log 2005-12-01 21:45 21 163 KB902400.log 2005-12-01 21:42 11 416 KB894391.log 2005-12-01 21:42 11 220 KB896423.log 2005-12-01 21:42 10 705 KB899587.log 2005-12-01 21:42 10 209 KB899591.log 2005-12-01 21:42 10 317 KB893756.log 2005-12-01 21:42 9 135 KB900930.log 2005-12-01 21:42 10 588 KB890859.log 2005-12-01 21:42 5 088 KB898458.log 2005-12-01 21:42 7 097 KB896428.log 2005-12-01 21:42 6 018 KB890046.log 2005-12-01 21:41 5 239 KB887742.log 2005-12-01 21:41 10 775 KB887797.log 2005-12-01 20:51 8 863 KB898461.log 2005-12-01 20:51 6 597 KB893803v2.log 2005-10-10 19:29 510 Unist1.htm 2005-09-23 01:06 0 NDSTray.INI 2005-09-23 01:03 222 wininit.ini 2005-09-23 00:54 0 CeEKey.INI 2005-09-23 00:46 138 Fn-esse.UNI 2005-09-22 18:12 61 smscfg.ini 2005-09-22 14:20 8 192 REGLOCS.OLD 2005-09-22 09:33 193 507 orun32.isu 2005-09-22 09:33 829 orun32.ini 2005-09-22 09:28 0 control.ini 2005-09-22 09:27 4 205 ODBCINST.INI 2005-09-22 09:26 749 WindowsShell.Manifest 2005-09-22 09:25 36 vb.ini 2005-09-22 09:25 37 vbaddin.ini 2005-08-01 06:10 94 263 DLA.EXE 2005-06-10 04:59 95 617 atiicdxx.dat 2005-05-26 19:22 10 752 hh.exe 2005-04-07 18:11 2 949 176 WATER.BMP 2005-04-07 18:10 2 949 176 MASS.BMP 2005-04-07 18:09 3 932 216 ORGANICMETAL.BMP 2005-04-07 18:09 2 949 176 FLUXMETAL.BMP 2005-04-07 18:09 2 949 176 GLASS.BMP 2005-03-02 08:21 200 704 alcrmv.exe 2005-03-01 04:49 192 512 RtlExUpd.dll 2005-02-03 03:13 294 912 alcupd.exe 2005-01-10 04:48 147 456 UNINST32.EXE 212 fichier(s) 57 183 994 octets 0 R‚p(s) 35 522 293 760 octets libres Le volume dans le lecteur C n'a pas de nom. Le num‚ro de s‚rie du volume est 898D-B2DA R‚pertoire de C:\DOCUME~1\Alexis\LOCALS~1\Temp 2006-06-17 21:54 8 386 9064_appcompat.txt 2006-06-15 17:56 16 384 ~DFDAA.tmp 2006-06-15 11:26 16 384 ~DF8BA8.tmp 2006-06-14 19:16 693 TWAIN.LOG 2006-06-14 19:16 156 Twunk001.MTX 2006-06-14 19:16 0 Twunk002.MTX 2006-06-14 19:16 2 Twain001.Mtx 2005-06-15 11:27 54 784 sfextra.dll 2003-12-08 10:01 487 424 43gcjvgahnu44.ths 2002-12-02 12:33 107 512 set46.tmp 10 fichier(s) 691 725 octets 0 R‚p(s) 35 522 285 568 octets libres

mon pc fonctionne relativement bien, j'ai quelques fois une fenêtre qui me demande si je veux aller sur un site, et spy sweeper qui bloque des adresses. je vais faire les scans et je reviens avec tout ça p.s. blacklight, c'est blbeta? je vais faire un scan de blbeta, et si c'est pas ça ben tu va avoir un rapport de blbeta

quand je clique sur save log, y'a rien qui apparait!!!