Arthiesis

Bonjour, POur moi et je pense pour tous à l'installation de i27 il crée un point de restauration DOnc il suffit de restaurer le pc. Demarrer - tous les programmes - accessoire - outils systeme - restauration du systeme et là choisir le jour où tu as installé ie7. Tu verras il a créé un point de restauration, il n'y a plus qu'à et hop c'est fini !!

RE, Resolu, on m'a dit de debranncher le cordon d'alim et d'appuyer sur le bouton ON/OFF quelques secondes. J'ai fait cela et tout est redevenu parfait ! Un peu étrange mais voilà qui est fait ! Merci pour votre aide et bon week end à vous. HH

Bonsoir depassageici, Oui, en effet quand j'insère une carte (ici un memory stick pour un mobile sony w800i) la diode s'allume mais aucune reaction nul part meme aps dans le gestionnaire des periphériques. les ports usb fonctionnent correctement, pour les pilotes ???? Ce phénomène me dépasse, je ne comprends rien à ça !!! bon week end à tous. HH

Salut papa, et bien il ne paraissent toujours pas ??????? On dirai qu'il n'ont jamais existé ! Merci pour l'info là j'ai mes partitions C:\ - D:\ (backup) - E : (Recover). Au fait les pins sont bien branchés je ne comprends pas !! le pc a un an et demi jamais vu ça. HH

Salut mr fred, Ok, j'essaie ça demain, il est intégré et brnaché sur des pins. Je vous tiens au courant, ça m'inquiète ça si tu t'y connais en rapport, j'ai posté il y a très peu de temps dans securite - analyse rapport hijackthis sous le titre "rapport surement pasbeau" il y a un smile avec lunettes de soleil pour te repéré, en page 3 au moment ou j'ecris là ! Merci pour vos infos toi ) toi et papo. Cdt, HH

Salut papo, Quel lecteur dois-je désinstaller ? le problème c'est que je ne vois plus ceux ci !! il y avait g:\ - h:\ - i:\ - j:\ - l:\ etc là plus rien !!

Bonjour a tous, Pour une raison que je ne saisi pas je ne retrouve plus mes lectuer Smart Media /XD - Memory stick - SD/MMC - Compact flash dans mon poste de travail ! POurriez vous me dire si c'est déjà arrivé a quelqu'un ici ?? Merci pour vos réponses, suis perdu là Je ne peux plus restaurer, j'ai essayé de réinstaller WinXp mais de toute façon j'ai essayé hier en remontant à une date où je n'avais pas encore ce problème et ça n'a pas fonctionné ! Cdt, HH

Bonsoir Charles, Désolé j'ai voulu faire rapidement mais j'ai zappé une phase. Depuis je n'ai pas eu l'occasion de m'occuper de celà ! Donc comme demandé je te colle ici le rapport avec toutes les cases cochées. J'ai bien renommé HijackThis.exe mais ce n'est pas visible ici !? Merci pour le temps que tu m'accordes. Logfile of HijackThis v1.99.1 Scan saved at 18:57:31, on 12/09/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE C:\WINDOWS\system32\cisvc.exe C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe C:\MSC.Software\SimDesigner_for_CATIA_V5\2005r2.R14\p3manager_files\bin\WINNT\QueMgr.exe C:\MSC.Software\SimDesigner_for_CATIA_V5\2005r2.R14\p3manager_files\bin\WINNT\RmtMgr.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\zHotkey.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\system32\RunDll32.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe C:\PROGRA~1\Wanadoo\TaskBarIcon.exe C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe C:\Program Files\Microsoft Office\Office\1036\msoffice.exe C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe C:\PROGRA~1\Wanadoo\ComComp.exe C:\PROGRA~1\Wanadoo\Toaster.exe C:\PROGRA~1\Wanadoo\Inactivity.exe C:\PROGRA~1\Wanadoo\PollingModule.exe C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE C:\PROGRA~1\Wanadoo\Watch.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\WINDOWS\system32\taskmgr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\cidaemon.exe C:\Medion\Arthiesis.exe.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?p...ER}&ar=home R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://home.microsoft.com/access/autosearch.asp?p=%s R1 - HKLM\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://home.microsoft.com/access/autosearch.asp?p=%s R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [CHotkey] zHotkey.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [saiSmart] C:\Program Files\Saitek\Software\SaiSmart.exe O4 - HKLM\..\Run: [saiMfd] C:\Program Files\Saitek\Software\SaiMfd.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Profiler] C:\Program Files\Saitek\Software\Profiler.exe O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Home Cinema\PowerCinema\PCMService.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [iCQ Lite] "C:\Program Files\ICQLite\ICQLite.exe" -minimize O4 - HKLM\..\Run: [Dit] Dit.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM= O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ? O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU) O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} - file://C:\Program Files\AutoCAD 2002 Fra\AcDcToday.ocx O16 - DPF: {86A88967-7A20-11D2-8EDA-00600818EDB1} - http://www.parallelgraphics.com/bin/cortvrml.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O17 - HKLM\System\CS1\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O17 - HKLM\System\CS2\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Backbone Service (BBDemon) - Dassault Systemes - C:\Program Files\Dassault Systemes\B14\intel_a\code\bin\CATSysDemon.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCQueMgrSD - Unknown owner - C:\MSC.Software\SimDesigner_for_CATIA_V5\2005r2.R14\p3manager_files\bin\WINNT\QueMgr.exe O23 - Service: MSCRmtMgrSD - Unknown owner - C:\MSC.Software\SimDesigner_for_CATIA_V5\2005r2.R14\p3manager_files\bin\WINNT\RmtMgr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

Tout compte fait au grand regret de Mme j'ai retardé notre départ en ballade de quelques minutes pour poster tout de suite. J'ai donc suivi tes instructions (très claires - Merci) et je colle donc le rapport, ATTENTION la liste est hyper longue C:\WINDOWS\System32\wpa.dbl -->10/09/2006 12:19:35 C:\WINDOWS\System32\FNTCACHE.DAT -->03/09/2006 12:54:49 C:\WINDOWS\System32\CONFIG.NT -->02/09/2006 13:16:42 C:\WINDOWS\System32\aswBoot.exe -->08/08/2006 18:53:28 C:\WINDOWS\System32\AVASTSS.scr -->05/08/2006 08:18:08 C:\WINDOWS\System32\MRT.exe -->03/08/2006 03:22:50 C:\WINDOWS\System32\mshtml.dll -->28/07/2006 13:30:59 C:\WINDOWS\System32\inetcomm.dll -->27/07/2006 15:26:19 C:\WINDOWS\System32\urlmon.dll -->25/07/2006 22:43:19 C:\WINDOWS\System32\Airbus_PC_1024x768.scr -->24/07/2006 21:50:04 C:\WINDOWS\System32\grwinsthlp.exe -->24/07/2006 21:48:39 C:\WINDOWS\System32\airbus_1024.scr -->24/07/2006 21:47:07 C:\WINDOWS\System32\hlink.dll -->21/07/2006 10:27:28 C:\WINDOWS\System32\jupdate-1.5.0_06-b05.log -->15/07/2006 16:37:12 C:\WINDOWS\System32\netapi32.dll -->14/07/2006 17:41:05 C:\WINDOWS\System32\hhctrl.ocx -->14/07/2006 17:27:53 C:\WINDOWS\System32\PerfStringBackup.INI -->14/07/2006 12:24:22 C:\WINDOWS\System32\perfh00C.dat -->14/07/2006 12:24:22 C:\WINDOWS\System32\perfh009.dat -->14/07/2006 12:24:22 C:\WINDOWS\System32\perfc00C.dat -->14/07/2006 12:24:22 C:\WINDOWS\System32\perfc009.dat -->14/07/2006 12:24:22 C:\WINDOWS\System32\shell32.dll -->13/07/2006 15:36:01 C:\WINDOWS\System32\kernel32.dll -->05/07/2006 12:56:38 C:\WINDOWS\System32\unicows.dll -->01/07/2006 00:56:46 C:\WINDOWS\System32\swsc.exe -->27/06/2006 16:14:19 C:\WINDOWS\win.ini -->10/09/2006 15:53:31 C:\WINDOWS\system.ini -->10/09/2006 15:53:31 C:\WINDOWS\0.log -->10/09/2006 12:19:33 C:\WINDOWS\ModemLog_Agere Systems PCI Soft Modem.txt -->10/09/2006 12:18:48 C:\WINDOWS\WindowsUpdate.log -->10/09/2006 12:18:47 C:\WINDOWS\wiaservc.log -->10/09/2006 12:18:47 C:\WINDOWS\wiadebug.log -->10/09/2006 12:18:47 C:\WINDOWS\bootstat.dat -->10/09/2006 12:18:35 C:\WINDOWS\SchedLgU.Txt -->10/09/2006 02:21:13 C:\WINDOWS\NeroDigital.ini -->09/09/2006 17:41:38 C:\WINDOWS\wmsetup.log -->09/09/2006 17:19:45 C:\WINDOWS\Crash Damage 2005 Uninstall Log.txt -->07/09/2006 21:33:51 C:\WINDOWS\setupapi.log -->07/09/2006 18:30:01 C:\WINDOWS\Sti_Trace.log -->03/09/2006 12:55:19 C:\WINDOWS\vpd.properties -->12/08/2006 19:38:27 C:\WINDOWS\UnGins.exe |16/05/2005 16:44:11 C:\WINDOWS\Unwise.exe |14/10/2004 13:33:37 C:\WINDOWS\zHotkey.exe |23/11/2004 15:41:57 C:\WINDOWS\AuHCcup1.dll |23/07/1999 10:53:20 C:\WINDOWS\HKNTDLL.dll |23/11/2004 15:41:57 C:\WINDOWS\impborl.dll |05/06/2006 22:11:01 C:\WINDOWS\patchw32.dll |03/05/2005 14:06:07 C:\WINDOWS\PIC.dll |23/11/2004 15:41:57 C:\WINDOWS\system32\append.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\aswBoot.exe |02/09/2006 13:16:33 C:\WINDOWS\system32\ati2sgag.exe |17/04/2006 18:31:04 C:\WINDOWS\system32\cmirmdrv.exe |05/10/2004 16:00:44 C:\WINDOWS\system32\debug.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\DivXsm.exe |21/06/2006 12:43:08 C:\WINDOWS\system32\dosx.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\dvdplay.exe |23/08/2001 19:47:34 C:\WINDOWS\system32\edlin.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\exe2bin.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\fastopen.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\FileOps.exe |27/04/2005 13:53:11 C:\WINDOWS\system32\grwinsthlp.exe |05/08/2006 12:59:40 C:\WINDOWS\system32\mem.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\mscdexnt.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\mtstack.exe |30/04/2001 09:51:06 C:\WINDOWS\system32\nlsfunc.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\Nx.exe |04/06/2006 14:13:41 C:\WINDOWS\system32\redir.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\setver.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\share.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\swreg.exe |16/07/2006 10:35:40 C:\WINDOWS\system32\swsc.exe |16/07/2006 10:35:40 C:\WINDOWS\system32\uninscpw.exe |01/06/2005 20:20:18 C:\WINDOWS\system32\acdbres.dll |07/09/2005 07:43:37 C:\WINDOWS\system32\amstream.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\avcodec.dll |27/04/2005 13:41:55 C:\WINDOWS\system32\cmirmdrv.dll |05/10/2004 16:00:44 C:\WINDOWS\system32\compatUI.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\cpwmon2k.dll |01/06/2005 20:20:18 C:\WINDOWS\system32\DivXWMPExtType.dll |21/06/2006 12:33:40 C:\WINDOWS\system32\encdec.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\fpxlib.dll |16/01/2006 13:00:08 C:\WINDOWS\system32\Gif89.dll |27/04/2005 16:35:55 C:\WINDOWS\system32\ieencode.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\ir32_32.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\iyvu9_32.dll |04/06/2005 13:59:26 C:\WINDOWS\system32\jpeglib.dll |16/01/2006 13:00:08 C:\WINDOWS\system32\msdmo.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\msencode.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\MSRTEDIT.DLL |22/01/1999 20:46:58 C:\WINDOWS\system32\paqsp.dll |23/08/2001 19:47:16 C:\WINDOWS\system32\psisdecd.dll |04/08/2004 02:54:38 C:\WINDOWS\system32\qedwipes.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\qt-dx331.dll |21/06/2006 12:43:05 C:\WINDOWS\system32\qt-mt331.dll |28/09/2004 23:54:30 C:\WINDOWS\system32\SAICFG.dll |04/06/2006 14:13:41 C:\WINDOWS\system32\sbe.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\stci.dll |08/04/2005 16:45:15 C:\WINDOWS\system32\tsd32.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\vidx16.dll |15/10/2005 17:40:34 C:\WINDOWS\system32\win87em.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\WLANUTL.dll |26/12/2005 19:31:25 C:\WINDOWS\system32\xmlparse.dll |17/05/2006 13:26:34 C:\WINDOWS\system32\xmltok.dll |17/05/2006 13:26:34 C:\WINDOWS\system32\zlib.dll |19/09/2000 01:50:28 C:\WINDOWS\UnGins.exe |16/05/2005 16:44:11 C:\WINDOWS\Unwise.exe |14/10/2004 13:33:37 C:\WINDOWS\AuHCcup1.dll |23/07/1999 10:53:20 C:\WINDOWS\HKNTDLL.dll |23/11/2004 15:41:57 C:\WINDOWS\impborl.dll |05/06/2006 22:11:01 C:\WINDOWS\patchw32.dll |03/05/2005 14:06:07 C:\WINDOWS\PIC.dll |23/11/2004 15:41:57 C:\WINDOWS\system32\append.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\debug.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\DivXsm.exe |21/06/2006 12:43:08 C:\WINDOWS\system32\dosx.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\edlin.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\exe2bin.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\fastopen.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\FileOps.exe |27/04/2005 13:53:11 C:\WINDOWS\system32\grwinsthlp.exe |05/08/2006 12:59:40 C:\WINDOWS\system32\mem.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\mscdexnt.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\nlsfunc.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\redir.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\setver.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\share.exe |05/08/2004 14:00:00 C:\WINDOWS\system32\SrchSTS.exe |16/07/2006 10:35:40 C:\WINDOWS\system32\swreg.exe |16/07/2006 10:35:40 C:\WINDOWS\system32\swsc.exe |16/07/2006 10:35:40 C:\WINDOWS\system32\uninscpw.exe |01/06/2005 20:20:18 C:\WINDOWS\system32\acdbres.dll |07/09/2005 07:43:37 C:\WINDOWS\system32\amstream.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\avcodec.dll |27/04/2005 13:41:55 C:\WINDOWS\system32\cmirmdrv.dll |05/10/2004 16:00:44 C:\WINDOWS\system32\cpwmon2k.dll |01/06/2005 20:20:18 C:\WINDOWS\system32\DivXWMPExtType.dll |21/06/2006 12:33:40 C:\WINDOWS\system32\encdec.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\ieencode.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\ir32_32.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\iyvu9_32.dll |04/06/2005 13:59:26 C:\WINDOWS\system32\jpeglib.dll |16/01/2006 13:00:08 C:\WINDOWS\system32\msdmo.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\msencode.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\psisdecd.dll |04/08/2004 02:54:38 C:\WINDOWS\system32\qedwipes.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\qt-dx331.dll |21/06/2006 12:43:05 C:\WINDOWS\system32\qt-mt331.dll |28/09/2004 23:54:30 C:\WINDOWS\system32\sbe.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\stci.dll |08/04/2005 16:45:15 C:\WINDOWS\system32\tsd32.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\vidx16.dll |15/10/2005 17:40:34 C:\WINDOWS\system32\win87em.dll |05/08/2004 14:00:00 C:\WINDOWS\system32\xmlparse.dll |17/05/2006 13:26:34 C:\WINDOWS\system32\xmltok.dll |17/05/2006 13:26:34 Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est B8A4-2C91 Répertoire de C:\WINDOWS\system32 05/08/2004 14:00 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 26 036 989 952 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est B8A4-2C91 Répertoire de C:\WINDOWS\Downloaded Program Files 07/09/2006 18:30 <REP> . 07/09/2006 18:30 <REP> .. 11/05/2004 12:55 1 277 992 Banksht2.dll 07/01/2004 16:35 1 134 Cult.inf 10/06/2006 22:24 65 desktop.ini 25/07/2002 17:13 24 576 dwusplay.dll 25/07/2002 17:13 196 608 dwusplay.exe 07/04/2005 23:06 943 eDrawings.inf 08/09/2004 22:38 1 271 erma.inf 09/08/2005 14:13 1 706 800 gdiplus.dll 13/11/2002 08:06 196 608 GSManager.dll 03/07/2003 13:59 160 gsmanager.inf 25/02/2004 13:36 283 256 IDrop.ocx 25/02/2004 13:39 113 784 IDropENU.dll 22/03/2004 17:30 113 752 IDropFRA.dll 25/07/2002 17:05 172 032 isusweb.dll 02/08/2005 16:48 495 LegitCheckControl.inf 29/05/2003 16:00 160 864 messengerstatsclient.dll 06/04/2004 20:03 172 072 MessengerStatsPAClient.dll 30/06/2005 15:19 227 MsnMessengerSetupDownloader.inf 14/08/2005 00:26 113 664 MsnMessengerSetupDownloader.ocx 14/10/2005 12:02 372 736 MsnPUpld.dll 14/10/2005 13:49 587 MSNPupld.inf 29/06/2005 18:17 227 opuc.inf 19/06/2002 14:11 117 088 PURen-us.dll 31/05/2002 09:20 117 328 PURfr-fr.dll 15/10/2004 07:59 110 592 PURfr-xx.dll 29/05/2003 16:00 86 112 solitaireshowdown.dll 22/06/2006 11:41 5 032 swflash.inf 09/08/2005 14:13 114 688 vizable.ocx 28 fichier(s) 5 460 693 octets Total des fichiers listés : 28 fichier(s) 5 460 693 octets 2 Rép(s) 26 036 989 952 octets libres Liste des programmes installes Ad-Aware SE Personal Adobe Download Manager 2.0 (Supprimer uniquement) Adobe Flash Player 9 ActiveX Adobe Reader 7.0.8 - Français Adobe Stock Photos 1.0 Adobe SVG Viewer 3.0 Agere Systems PCI Soft Modem AnswerWorks Runtime Archiveur WinRAR ArcSoft PhotoBase 3 ArcSoft PhotoImpression ArcSoft VideoImpression 1.6 ATC for Splinter Cell Chaos Theory 1.0 ATI - Software Uninstall Utility ATI Catalyst Control Center ATI Display Driver AutoCAD 2002 - Français Autodesk DWF Viewer AutoUpdate avast! Antivirus Battlefield 2 Blazing Angels Squadrons of WWII C-Media High Definition Audio Driver Comanche 4 Correctif pour Windows XP (KB914440) Correctif Windows XP - KB873339 Correctif Windows XP - KB885250 Correctif Windows XP - KB885835 Correctif Windows XP - KB885836 Correctif Windows XP - KB886185 Correctif Windows XP - KB887742 Correctif Windows XP - KB888113 Correctif Windows XP - KB888302 Correctif Windows XP - KB890859 Correctif Windows XP - KB891781 Cosmic Blobs - Lab Rat Edition - v1.04 Creatix V.92 Data Fax Modem CutePDF Writer 2.3 CyberGestion Dassault Systemes Software B14 Disk Cleaner (remove only) DivX DivX Converter DivX Player DivX User Guide DivX Web Player Doom 3 Doom 3 Doom 3 eDrawings 2006 eMule EPSON Logiciel imprimante EPSON PhotoQuicker3.2 EVEREST Home Edition v2.20 Extension HighMAT pour l'Assistant Graver un CD de Microsoft Windows XP fifa02 Screen Saver Flash Video Exporter 1.2 Flight Deck 2004 pour FS2004 FS Helicopters pour FS 2004 FS Hydravions pour FS 2004 FS Repaint Gestionnaire Internet Golf Adventure Galaxy Google Toolbar for Internet Explorer HijackThis 1.99.1 Home Cinema Hotfix for Windows XP (KB915865) ICQ 5.1 IL-2 Sturmovik Indeo® Software Information sur votre PC iTunes iTunes J2SE Runtime Environment 5.0 Update 6 Java 2 Runtime Environment, SE v1.4.2_05 Just Flight Spitfire CFS3 v1.00 Just Flight Spitfire FS2004 v1.00 Language pack for Ad-Aware SE Lecteur Windows Media 10 Livebox Lock On: Air Combat Simulation Macromedia Dreamweaver MX Macromedia Extension Manager Macromedia Fireworks MX 2004 Macromedia Flash MX 2004 Macromedia Shockwave Player Magic Tune 2.5 Media Library Management Wizard Medion Flash XL 2.0 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 French Language Pack Microsoft .NET Framework 1.1 Hotfix (KB886903) Microsoft Combat Flight Simulator 3.0 Microsoft Flight Simulator 2004 Autogen SDK Microsoft Flight Simulator 2004 Terrain SDK Microsoft Flight Simulator 2004 Un siècle d'aviation Microsoft Game Studios Common Redistributables Pack 1 Microsoft GIF Animator Microsoft Office 2000 SR-1 Premium Microsoft Office PowerPoint Viewer 2003 Microsoft Office Web Components Microsoft Works Microsoft XML Parser Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) Mise à jour de sécurité pour Windows XP (KB890046) Mise à jour de sécurité pour Windows XP (KB893756) Mise à jour de sécurité pour Windows XP (KB896358) Mise à jour de sécurité pour Windows XP (KB896422) Mise à jour de sécurité pour Windows XP (KB896423) Mise à jour de sécurité pour Windows XP (KB896424) Mise à jour de sécurité pour Windows XP (KB896428) Mise à jour de sécurité pour Windows XP (KB899587) Mise à jour de sécurité pour Windows XP (KB899591) Mise à jour de sécurité pour Windows XP (KB900725) Mise à jour de sécurité pour Windows XP (KB901017) Mise à jour de sécurité pour Windows XP (KB901214) Mise à jour de sécurité pour Windows XP (KB902400) Mise à jour de sécurité pour Windows XP (KB904706) Mise à jour de sécurité pour Windows XP (KB905414) Mise à jour de sécurité pour Windows XP (KB905749) Mise à jour de sécurité pour Windows XP (KB908519) Mise à jour de sécurité pour Windows XP (KB911280) Mise à jour de sécurité pour Windows XP (KB911562) Mise à jour de sécurité pour Windows XP (KB911567) Mise à jour de sécurité pour Windows XP (KB911927) Mise à jour de sécurité pour Windows XP (KB912812) Mise à jour de sécurité pour Windows XP (KB912919) Mise à jour de sécurité pour Windows XP (KB913446) Mise à jour de sécurité pour Windows XP (KB913580) Mise à jour de sécurité pour Windows XP (KB914388) Mise à jour de sécurité pour Windows XP (KB914389) Mise à jour de sécurité pour Windows XP (KB916281) Mise à jour de sécurité pour Windows XP (KB917159) Mise à jour de sécurité pour Windows XP (KB917344) Mise à jour de sécurité pour Windows XP (KB917422) Mise à jour de sécurité pour Windows XP (KB917953) Mise à jour de sécurité pour Windows XP (KB918439) Mise à jour de sécurité pour Windows XP (KB918899) Mise à jour de sécurité pour Windows XP (KB920214) Mise à jour de sécurité pour Windows XP (KB920670) Mise à jour de sécurité pour Windows XP (KB920683) Mise à jour de sécurité pour Windows XP (KB921398) Mise à jour de sécurité pour Windows XP (KB921883) Mise à jour de sécurité pour Windows XP (KB922616) Mise à jour pour Windows XP (KB894391) Mise à jour pour Windows XP (KB900485) Mise à jour pour Windows XP (KB904942) Mise à jour pour Windows XP (KB908531) Mise à jour pour Windows XP (KB910437) Mise à jour pour Windows XP (KB916595) Movie Maker Background Music Files Movie Maker Sound Effects Movie Maker Title Images MSN Messenger 7.5 MSXML 4.0 SP2 Parser and SDK Multimedia Keyboard Driver MUSICMATCH® Jukebox Musicmatch® Jukebox NASA World Wind 1.3 Natural Color Nero Suite Outil de connexion Wanadoo Pacific Fighters Pacific Fighters Personal License Update Wizard for Windows Media Player Philips ToUcam Pro Camera Photo et imagerie HP 2.0 - All-in-One Photo et imagerie HP 2.0 - All-in-One Pilote Plus! MP3 Audio Converter LE PowerCinema 3.0 PowerDVD PowerProducer Pro/ENGINEER Student Edition Release 2001 Datecode 2001150 QuickTime QuickTime RealPlayer SafeCast Shared Components SAGEM Wi-Fi 11g USB adapter (Driver) SAGEM Wi-Fi 11g USB adapter (Tool) SaveOE Shockwave SimDesigner 2005 r2 for CATIA V5R14 SimDesigner Suspension 2005 r2 for CATIA V5R14 Skype 2.0 SpeedFan (remove only) Splinter Cell Pandora Tomorrow Spybot - Search & Destroy 1.4 SST Programming Software The Cleaner Tom Clancy's Splinter Cell Chaos Theory ubi.com Utilitaire de sauvegarde Windows VBA (3821b) VideoLink Pro Visionneuse Journal Windows Microsoft Volo View Express Wanadoo Messager WebFldrs XP Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage v1.3.0254.0 Windows Genuine Advantage Validation Tool (KB892130) Windows Installer 3.1 (KB893803) Windows Internet Explorer 7 Beta 3 Windows Media Bonus Pack for Windows XP Windows Media Connect Windows Media Connect Windows Media Format Runtime Windows Media Player Playlist Import to Excel Wizard Windows Media Player Skin Importer Windows Media Player Tray Control X10 Hardware Zodiac Zodiac Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est B8A4-2C91 Répertoire de C:\Program Files 10/09/2006 15:54 <REP> . 10/09/2006 15:54 <REP> .. 01/06/2005 20:20 <REP> Acro Software 29/04/2006 16:33 <REP> Adobe 17/11/2004 18:27 <REP> Ahead 02/01/2006 03:09 <REP> Alwil Software 20/07/2006 18:57 <REP> APVehicules 3 16/01/2006 12:59 <REP> ArcSoft 17/04/2006 18:31 <REP> ATI Technologies 05/05/2006 20:28 <REP> AutoCAD 2002 Fra 13/08/2006 17:05 <REP> Autodesk 15/07/2006 17:59 <REP> backups 02/09/2006 12:59 <REP> BarreConfCMCIC 14/10/2004 13:33 <REP> Common Files 02/01/2006 23:02 <REP> ComPlus Applications 15/10/2005 17:38 <REP> config 27/04/2005 16:55 <REP> Cosmic Blobs 16/12/2005 01:16 <REP> CyberLink 09/09/2006 15:05 <REP> CyberMUT 12/08/2006 18:21 <REP> Dassault Systemes 30/05/2006 09:50 <REP> Disk Cleaner 02/09/2006 13:00 <REP> DivX 24/03/2006 13:06 <REP> Doom 3 31/07/2006 17:48 <REP> EA GAMES 09/09/2006 17:43 <REP> eMule 13/11/2005 17:44 <REP> EPSON 26/11/2004 15:22 17 555 104 fb_3do10p.SFS 26/11/2004 16:05 211 835 fb_maps09p.SFS 26/08/2006 21:49 <REP> Fichiers communs 09/05/2006 18:51 <REP> FS2004SDK 01/06/2005 20:22 <REP> GNUGS 02/09/2006 13:00 <REP> Google 16/08/2005 14:55 <REP> Hewlett-Packard 14/10/2004 11:46 <REP> HighMAT CD Writing Wizard 14/10/2004 15:38 <REP> Home Cinema 21/07/2006 18:18 <REP> ICQLite 26/11/2004 17:06 1 445 888 il2_core.dll 26/11/2004 17:49 2 379 776 il2_coreP4.dll 13/10/2004 20:13 <REP> Intel 02/09/2006 13:00 <REP> Internet Explorer 28/04/2006 23:04 <REP> iPod 28/04/2006 23:04 <REP> iTunes 15/07/2006 16:37 <REP> Java 02/02/2006 19:22 <REP> Lavalys 28/05/2005 00:17 <REP> Lavasoft 04/06/2005 13:59 <REP> Ligos 06/02/2006 23:10 <REP> Macrogaming 30/04/2006 16:51 <REP> Macromedia 05/02/2006 19:58 <REP> Medion Software 13/04/2005 22:25 <REP> Messenger 26/11/2004 10:35 270 336 mg_snd.dll 26/11/2004 10:39 303 104 mg_snd_sse.dll 17/10/2005 10:23 <REP> Micro Application 13/10/2004 19:48 <REP> microsoft frontpage 01/08/2006 20:23 <REP> Microsoft Games 22/02/2006 23:13 <REP> Microsoft GIF Animator 27/09/2005 18:20 <REP> Microsoft Office 08/04/2005 17:21 <REP> Microsoft Visual Studio 05/02/2006 19:58 <REP> Microsoft Works 13/10/2004 19:46 <REP> Movie Maker 12/08/2006 19:38 <REP> MSC.ADAMS 2003 12/08/2006 19:34 <REP> MSC.Software 13/10/2004 19:45 <REP> MSN 13/10/2004 19:45 <REP> MSN Gaming Zone 07/03/2006 16:34 <REP> MSN Messenger 14/10/2004 13:35 <REP> Musicmatch 09/05/2006 03:06 <REP> NASA 17/01/2006 11:09 <REP> NetMeeting 07/04/2006 20:43 <REP> Netscape 07/08/2006 16:30 <REP> NovaLogic 03/01/2006 01:18 <REP> OfficeUpdate11 13/10/2004 19:45 <REP> Online Services 11/07/2006 21:09 <REP> orange 10/06/2006 22:55 <REP> Outlook Express 05/02/2006 19:58 <REP> Philips ToUcam Camera 27/10/2005 12:39 <REP> proe2001 28/04/2006 23:05 <REP> QuickTime 14/10/2004 12:02 <REP> Real 02/09/2006 12:59 <REP> Red Storm Entertainment 15/10/2005 17:39 <REP> redist 14/03/2006 01:40 <REP> Reflet 04/06/2005 13:51 <REP> ReflexiveArcade 07/04/2006 23:00 <REP> SAGEM 07/04/2006 23:00 <REP> SAGEM Wi-Fi USB 802.11g 04/06/2006 14:13 <REP> Saitek 26/09/2005 00:26 <REP> SaveOE 11/04/2005 09:35 <REP> SEC 13/10/2004 19:46 <REP> Services en ligne 13/04/2005 21:10 <REP> Skype 16/07/2006 10:37 <REP> SmitfraudFix 27/04/2006 20:17 <REP> SMV 02/09/2006 13:00 <REP> Soldier of Fortune II - Double Helix 10/09/2006 14:23 <REP> SpeedFan 02/04/2006 18:39 <REP> Spybot - Search & Destroy 15/07/2006 13:12 <REP> The Cleaner 08/12/2005 16:01 <REP> Top Gun 31/05/2005 09:24 <REP> TurnTool 17/05/2006 05:28 <REP> Ubi Soft 03/07/2005 01:31 <REP> ubi.com 17/05/2006 13:41 <REP> Ubisoft 05/08/2006 13:01 <REP> VideoLAN 05/02/2006 19:58 <REP> VideoLink Pro 01/06/2005 20:23 <REP> Visage 07/09/2005 15:49 <REP> Volo View Express 10/09/2006 15:20 <REP> Wanadoo 02/09/2006 12:59 <REP> Wanadoo Messager 07/09/2005 07:44 <REP> WexTech 13/10/2004 19:51 <REP> Windows Journal Viewer 03/01/2006 01:44 <REP> Windows Media Bonus Pack for Windows XP 14/10/2004 11:47 <REP> Windows Media Connect 10/06/2006 22:58 <REP> Windows Media Player 13/10/2004 19:45 <REP> Windows NT 06/08/2006 01:02 <REP> WinRAR 03/06/2006 08:51 <REP> WinZip 16/12/2005 01:07 <REP> X10 Hardware 13/10/2004 19:48 <REP> xerox 02/09/2006 12:59 <REP> Yahoo! 6 fichier(s) 22 166 043 octets 112 Rép(s) 26 037 010 432 octets libres Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est B8A4-2C91 Répertoire de C:\Program Files\fichiers communs 26/08/2006 21:49 <REP> . 26/08/2006 21:49 <REP> .. 29/04/2006 15:14 <REP> Adobe 14/10/2004 11:54 <REP> Ahead 13/08/2006 16:54 <REP> Autodesk Shared 28/04/2006 13:52 <REP> BOONTY Shared 08/09/2005 13:59 <REP> Designer 28/02/2006 23:56 <REP> eDrawings2006 18/04/2005 12:12 <REP> EPSON 16/08/2005 14:37 <REP> Hewlett-Packard 25/02/2006 01:01 <REP> InstallShield 14/10/2004 11:19 <REP> Java 07/09/2005 07:44 <REP> LHSPF 27/04/2005 16:07 <REP> Macromedia 27/04/2005 13:13 <REP> Macromedia Shared 05/02/2006 19:05 <REP> Macrovision Shared 07/06/2006 14:20 <REP> Microsoft Shared 13/10/2004 19:46 <REP> MSSoap 14/10/2004 12:05 <REP> Nullsoft 02/09/2006 12:59 <REP> Oberon Media 19/11/2004 13:06 <REP> ODBC 13/10/2004 19:46 <REP> Services 16/01/2006 12:44 <REP> Smith Micro Shared 13/10/2004 21:41 <REP> SpeechEngines 19/04/2006 13:46 <REP> SWF Studio 02/01/2006 03:11 <REP> Symantec Shared 10/06/2006 22:55 <REP> System 27/04/2005 13:27 <REP> Vbox 07/09/2005 07:44 <REP> Wextech Shared 16/03/2006 05:12 <REP> Wise Installation Wizard 14/10/2004 12:03 <REP> xing shared 0 fichier(s) 0 octets 31 Rép(s) 26 037 010 432 octets libres Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est B8A4-2C91 Répertoire de C:\Program Files\common files 14/10/2004 13:33 <REP> . 14/10/2004 13:33 <REP> .. 14/10/2004 13:33 <REP> X10 0 fichier(s) 0 octets 3 Rép(s) 26 037 010 432 octets libres c:\Documents and Settings\All Users\Documents\LOG\ADOBE\Crack - Adobe Photoshop 7.0 Trial FRA.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\crack\acad.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\crack\Up7-crack.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\AcTodayMgr.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\autorun.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\setup.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Migrate\harvester.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Migrate\serharv.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Msi\instmsi.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Msi\instmsiw.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Netsetup\netsetup.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Netsetup\setup.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Netsetup\support\AdLM\adskflex.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Netsetup\support\AdLM\lmgrd.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Netsetup\support\AdLM\lmtools.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Netsetup\support\AdLM\lmutil.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Netsetup\support\AdLM\SAMreport-Lite\jre1_2_2_007-win-i.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Netsetup\support\AdLM\SAMreport-Lite\jre1_2_2-001-win.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\Netsetup\support\AdLM\SAMreport-Lite\SAMreport.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\axdist.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\dcom95.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\hhupd.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\mdac_typ.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\aw\_isdel.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\aw\setup.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\msie\DCOM95.EXE c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\msie\IE501DOM.EXE c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\msie\IE5COMP.EXE c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\msie\IE5SETUP.EXE c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\msie\OAINST.EXE c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\nm\nm30.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\support\ws2\w95ws2setup.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\vve\_isdel.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\vve\setup.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\XML\msxml3.exe c:\Documents and Settings\All Users\Documents\LOG\autodesk\AutoCAD 2002 français\setup\XML\xmlinst.exe c:\Documents and Settings\All Users\Documents\LOG\Macromedia\macromedia.fireworks.mx.2004.7.0.crack-rev.exe c:\Documents and Settings\HERVE\Application Data\Adobe\Acrobat\7.0\Updater\AdbeRdrUpd707_all_incr.exe c:\Documents and Settings\HERVE\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdateax\fpupdateax.exe c:\Documents and Settings\HERVE\Application Data\Microsoft\Installer\{5C8A2293-A0FD-4942-A679-A195F78265CC}\_6C2BF320BC2E_4F4E_8DD6_4398A21339E6.exe c:\Documents and Settings\HERVE\Application Data\Microsoft\Installer\{8AEF9829-1710-415E-9649-FBE70525FC3F}\_72F5543D5161_4357_86D0_FAAACCE7D767.exe c:\Documents and Settings\HERVE\Application Data\Microsoft\Installer\{CAFF1B12-AC3A-42B3-A814-12EF755A7E0F}\IconCAFF1B12.exe c:\Documents and Settings\HERVE\Application Data\Microsoft\Installer\{CAFF1B12-AC3A-42B3-A814-12EF755A7E0F}\IconCAFF1B121.exe c:\Documents and Settings\HERVE\Application Data\Microsoft\Installer\{FB55B4EB-EE75-4C5D-9763-5E8CAF0726B5}\_60611D2C794C_4D59_BFA0_CA7FE0504126.exe c:\Documents and Settings\HERVE\Application Data\ubi.com\Core\cabarc.exe c:\Documents and Settings\HERVE\Application Data\ubi.com\Core\GLPatcher2.exe c:\Documents and Settings\HERVE\Bureau\ArrestorCables.exe c:\Documents and Settings\HERVE\Bureau\LockOn.exe c:\Documents and Settings\HERVE\Bureau\Reflet.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\Fport.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\grep.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\LFiles.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\LISTDLLS.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\pslist.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\streams.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\diaghelp\FilesInfoCmd.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\diaghelp\Fport.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\diaghelp\grep.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\diaghelp\LFiles.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\diaghelp\LISTDLLS.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\diaghelp\pslist.exe c:\Documents and Settings\HERVE\Bureau\DiagHelp\diaghelp\streams.exe c:\Documents and Settings\HERVE\Bureau\FS ADDONS\AIRCRAFT\cb80c\setup.exe c:\Documents and Settings\HERVE\Bureau\FS ADDONS\chartmapvers\ChartMap_3.0\ChartMap.exe c:\Documents and Settings\HERVE\Bureau\FS ADDONS\Crash\setup.exe c:\Documents and Settings\HERVE\Bureau\FS ADDONS\FFSUIPC_V3-60\TrafficLook.exe c:\Documents and Settings\HERVE\Bureau\FS ADDONS\FFSUIPC_V3-60\WeatherSet.exe c:\Documents and Settings\HERVE\Bureau\FS ADDONS\FFSUIPC_V3-60\WeatherSet2.exe c:\Documents and Settings\HERVE\Bureau\FS ADDONS\SCENES\LFBO_Toulouse_airbus-complet\Aircraft\Concorde_AIB\acfu.exe c:\Documents and Settings\HERVE\Local Settings\Temporary Internet Files\Content.IE5\0RBI9D4J\eMule0.47b-Installer[1].exe c:\Documents and Settings\HERVE\Local Settings\Temporary Internet Files\Content.IE5\4NKCP3XJ\CAC5AT74.exe%3Fuse_mirror%3Dbelnet&cc=100&u_h=1024&u_w=1280&u_ah=1024&u_aw=1278&u_cd=32&u_tz=120&u_his=1&u_java=true c:\Documents and Settings\HERVE\Local Settings\Temporary Internet Files\Content.IE5\KXLWXZGV\GameService[1].exe c:\Documents and Settings\HERVE\Local Settings\Temporary Internet Files\Content.IE5\SNPCCE21\CAJM4V79.exe&cc=100&u_h=1024&u_w=1280&u_ah=1024&u_aw=1278&u_cd=32&u_tz=120&u_java=true c:\Documents and Settings\HERVE\Mes documents\CDJEU\DXLAUNCH.EXE c:\Documents and Settings\HERVE\Mes documents\DOC Divers\Humour.pps\plage_dunord.exe c:\Documents and Settings\HERVE\Mes documents\Logiciel_videoinspector\AviBitrateGrapher.exe c:\Documents and Settings\HERVE\Mes documents\Logiciel_videoinspector\VideoInspector.exe c:\Documents and Settings\HERVE\Mes documents\Mes images\Créa\!conMania Collection\uninstall.exe c:\Documents and Settings\HERVE\Mes documents\Mécanique\2908CNcoord.EXE c:\Documents and Settings\HERVE\Mes documents\SolidWorks\SW2004-2006 SPall Crack.exe c:\Documents and Settings\HERVE\Mes documents\SolidWorks\sw2006-0.0-3.0-i.exe c:\Documents and Settings\HERVE\Mes documents\SolidWorks\sw2006-2.0-3.0-i.exe c:\Documents and Settings\HERVE\Mes documents\SolidWorks\sw2006-0.0-3.0-i\swspmanager.exe c:\Documents and Settings\HERVE\Mes documents\SolidWorks\sw2006-2.0-3.0-i\swspmanager.exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0SNIGH31\ii_nt86[1].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0SNIGH31\ii_nt86[2].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0SNIGH31\ii_nt86[3].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\AGB5H04L\iv_nt86[1].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\AGB5H04L\iv_nt86[2].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\AGB5H04L\iv_nt86[3].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\HESQRTYX\fi_nt86[1].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\HESQRTYX\ii_nt86[1].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\HESQRTYX\iv_nt86[1].exe c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\HERVE\Application Data\Macromedia\Dreamweaver MX\Configuration\Flash Player\FlashPlayerW.dll c:\Documents and Settings\HERVE\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\HERVE\Application Data\ubi.com\Core\artpclnt.dll c:\Documents and Settings\HERVE\Application Data\ubi.com\Core\Patchw32.dll c:\Documents and Settings\HERVE\Local Settings\Application Data\Macromedia\Flash MX 2004\fr\Configuration\External Libraries\FLfile.dll c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll

Bonjour Mr Ingals, Tout d'abord, merci pour le temps que tu m'accordes, je fais ça dans l'après midi et je poste dans la foulée. A+

Bonsoir à tous, Je vous soumets ici le rapport HijackThis que je viens d'effectuer. A mon avis vous allez trouver des énormités Il y a peu vous m'aviez aidé à me débarrasser d'une cochonnerie du type magic control.... / system doctor, etc. Cochonnerie téléchargée par madame en même temps qu'une suite de jeux java. Je vous rassure, plutôt je me rassure elle ne telecharge plus rien Bref, je sais que j'ai trop de choses qui se lancent au démarrage et je voudrais faire le ménage là dedans et faire disparaître celles que j'ai décoché, je ne sais pas où aller pour les virer. Je previens tout de suite la personne qui souhaiterait m'aider. Je comprends vite mais il faut m'expliquer longtemps Ce n'est pas que j'ai le cerf-volant (pfff) mais l'informatique pure et moi nous ne parlons pas ^le même langage, pourtant je m'y intéresse et j'aime ça. Donc assez de blabla idiot, voici mon rapport et n'hésitez pas à critiquer les surcharges que je soumets à mon pc. Merci pour votre aide ! Cdt, Hervé Logfile of HijackThis v1.99.1 Scan saved at 23:44:42, on 09/09/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Dassault Systemes\B14\intel_a\code\bin\CATSysDemon.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE C:\WINDOWS\system32\cisvc.exe C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe C:\MSC.Software\SimDesigner_for_CATIA_V5\2005r2.R14\p3manager_files\bin\WINNT\QueMgr.exe C:\MSC.Software\SimDesigner_for_CATIA_V5\2005r2.R14\p3manager_files\bin\WINNT\RmtMgr.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\zHotkey.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\system32\RunDll32.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\PROGRA~1\Wanadoo\TaskBarIcon.exe C:\Program Files\Microsoft Office\Office\1036\msoffice.exe C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe C:\PROGRA~1\Wanadoo\ComComp.exe C:\PROGRA~1\Wanadoo\Toaster.exe C:\PROGRA~1\Wanadoo\Inactivity.exe C:\PROGRA~1\Wanadoo\PollingModule.exe C:\PROGRA~1\Wanadoo\Watch.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\system32\taskmgr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?p...ER}&ar=home R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://home.microsoft.com/access/autosearch.asp?p=%s R1 - HKLM\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://home.microsoft.com/access/autosearch.asp?p=%s R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [CHotkey] zHotkey.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM= O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ? O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU) O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} - file://C:\Program Files\AutoCAD 2002 Fra\AcDcToday.ocx O16 - DPF: {86A88967-7A20-11D2-8EDA-00600818EDB1} - http://www.parallelgraphics.com/bin/cortvrml.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O17 - HKLM\System\CS1\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O17 - HKLM\System\CS2\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Backbone Service (BBDemon) - Dassault Systemes - C:\Program Files\Dassault Systemes\B14\intel_a\code\bin\CATSysDemon.exe O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: MSCQueMgrSD - Unknown owner - C:\MSC.Software\SimDesigner_for_CATIA_V5\2005r2.R14\p3manager_files\bin\WINNT\QueMgr.exe O23 - Service: MSCRmtMgrSD - Unknown owner - C:\MSC.Software\SimDesigner_for_CATIA_V5\2005r2.R14\p3manager_files\bin\WINNT\RmtMgr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

Re Bruce, Et bien écoute, je viens de relancer la connexion et d'habitude j'avais déjà une fenêtre popup du type "system doctor" ou "navySearch" qui s'ouvrait mais là depuis 5mn, RIEN !!! Je vais attendre un peu et naviguer je repasse pour dire si j'ai toujours le problème. En tout cas, un grand merci pour ton temps et ta patience. j'ai failli :P Heureusement que les utilisateurs comme moi peuvent compter sur les conseils de de l'informatique voire d'utilisateurs experts qui ne rechignent pas à transmettre leur savoir et à aider ! Bonne fin de week end et encore merci Cdt, Hervé

Il me dit : Pas de logiciel malveillant détecté. Les sections analysées sont SAINES. Le rapport est vide, donc je n'ai pas de rapport là !

Voilou le rapport Kapersky : Je viens de faire le scan des aires critiques, je refais la même sur tous les disques locaux Scan Settings Scan using the following antivirus database extended Scan Archives true Scan Mail Bases true Scan Target Critical Areas C:\WINDOWS C:\DOCUME~1\HERVE\LOCALS~1\Temp\ Scan Statistics Total number of scanned objects 20836 Number of viruses found 0 Number of infected objects 0 / 0 Number of suspicious objects 0 Duration of the scan process 00:11:56 Infected Object Name Virus Name Last Action C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped C:\WINDOWS\SchedLgU.Txt Object is locked skipped C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped C:\WINDOWS\Sti_Trace.log Object is locked skipped C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped C:\WINDOWS\system32\config\ACEEvent.evt Object is locked skipped C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\default Object is locked skipped C:\WINDOWS\system32\config\default.LOG Object is locked skipped C:\WINDOWS\system32\config\SAM Object is locked skipped C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\SECURITY Object is locked skipped C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped C:\WINDOWS\system32\config\software Object is locked skipped C:\WINDOWS\system32\config\software.LOG Object is locked skipped C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\system Object is locked skipped C:\WINDOWS\system32\config\system.LOG Object is locked skipped C:\WINDOWS\system32\h323log.txt Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped C:\WINDOWS\Temp\Perflib_Perfdata_724.dat Object is locked skipped C:\WINDOWS\Temp\_avast4_\Webshlock.txt Object is locked skipped C:\WINDOWS\wiadebug.log Object is locked skipped C:\WINDOWS\wiaservc.log Object is locked skipped C:\WINDOWS\WindowsUpdate.log Object is locked skipped C:\DOCUME~1\HERVE\LOCALS~1\Temp\Perflib_Perfdata_dec.dat Object is locked skipped Scan process completed.

Ok pour la suppression de la clé waexcs.exe et pour les 4 waecxs du dossier system32. Je vais maintenant passer Kapersky

D'accord, j'effectue les op et je reviens pour dire quoi. En tout cas, merci pour le temps que tu passes et pour ton aide. A toute.

Re, Ok je n'ai donc rien touché, pour la restauration je demandais car je l'avais désactivée avant hier eet ne l'ai toujours pas réactivé. N'étant pas super dans le domaine, je préfère demander. Donc, j'ai passé SIlentRunner mais je l'ai passé en mode ss échec pour être certain que rien ne tourne en trop. J'espère que ce n'est pas gênant mais au pire je recommence. On m'a dit que j'avais beaucoup trop de chose au démarrage, ça j'essaierai de m'en occuper plus tard. En tout cas ce MagicControl.... est une belle M... Ci-dessous le rapport SilentRunner : "Silent Runners.vbs", revision 46, http://www.silentrunners.org/ Operating System: Windows XP SP2 Output limited to non-default values, except where indicated by "{++}" Startup items buried in registry: --------------------------------- HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "NBJ" = ""C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"" ["Ahead Software AG"] "WOOKIT" = "C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=" [empty string] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "CHotkey" = "zHotkey.exe" [empty string] "avast!" = "C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [null data] "AGRSMMSG" = "AGRSMMSG.exe" ["Agere Systems"] "NeroFilterCheck" = "C:\WINDOWS\system32\NeroCheck.exe" ["Ahead Software Gmbh"] "Cmaudio" = "RunDll32 cmicnfg.cpl,CMICtrlWnd" [MS] "WOOWATCH" = "C:\PROGRA~1\Wanadoo\Watch.exe" ["France Télécom R&D"] "WOOTASKBARICON" = "C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe" ["France Télécom R&D"] "Profiler" = "C:\Program Files\Saitek\Software\Profiler.exe" ["Saitek"] "SaiSmart" = "C:\Program Files\Saitek\Software\SaiSmart.exe" ["Saitek"] "SaiMfd" = "C:\Program Files\Saitek\Software\SaiMfd.exe" ["Saitek"] "waecxs" = "c:\windows\system32\waecxs.exe waecxs" [null data] "SunJavaUpdateSched" = "C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe" ["Sun Microsystems, Inc."] "!ewido" = ""C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized" ["Anti-Malware Development a.s."] "KernelFaultCheck" = "C:\WINDOWS\system32\dumprep 0 -k" [MS] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = (no title provided) -> {HKLM...CLSID} = "AcroIEHlprObj Class" \InProcServer32\(Default) = "C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll" ["Adobe Systems Incorporated"] {53707962-6F74-2D53-2644-206D7942484F}\(Default) = (no title provided) -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\PROGRA~1\SPYBOT~1\SDHelper.dll" ["Safer Networking Limited"] {64F56FC1-1272-44CD-BA6E-39723696E350}\(Default) = (no title provided) -> {HKLM...CLSID} = "EoBho Class" \InProcServer32\(Default) = "C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL" [file not found] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\(Default) = (no title provided) -> {HKLM...CLSID} = "SSVHelper Class" \InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll" ["Sun Microsystems, Inc."] {AA58ED58-01DD-4d91-8333-CF10577473F7}\(Default) = (no title provided) -> {HKLM...CLSID} = "Google Toolbar Helper" \InProcServer32\(Default) = "c:\program files\google\googletoolbar1.dll" ["Google Inc."] HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\ "{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Extension Affichage Panorama du Panneau de configuration" -> {HKLM...CLSID} = "Extension Affichage Panorama du Panneau de configuration" \InProcServer32\(Default) = "deskpan.dll" [file not found] "{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Extension icône HyperTerminal" -> {HKLM...CLSID} = "HyperTerminal Icon Ext" \InProcServer32\(Default) = "C:\WINDOWS\system32\hticons.dll" ["Hilgraeve, Inc."] "{640167b4-59b0-47a6-b335-a6b3c0695aea}" = "Portable Media Devices" -> {HKLM...CLSID} = "Portable Media Devices" \InProcServer32\(Default) = "C:\WINDOWS\system32\Audiodev.dll" [MS] "{cc86590a-b60a-48e6-996b-41d25ed39a1e}" = "Portable Media Devices Menu" -> {HKLM...CLSID} = "Portable Media Devices Menu" \InProcServer32\(Default) = "C:\WINDOWS\system32\Audiodev.dll" [MS] "{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4}" = "Shell Extensions for RealOne Player" -> {HKLM...CLSID} = "RealOne Player Context Menu Class" \InProcServer32\(Default) = "C:\Program Files\Real\RealPlayer\rpshell.dll" ["RealNetworks, Inc."] "{0006F045-0000-0000-C000-000000000046}" = "Microsoft Outlook Custom Icon Handler" -> {HKLM...CLSID} = "Outlook File Icon Extension" \InProcServer32\(Default) = "C:\PROGRA~1\MICROS~3\Office\OLKFSTUB.DLL" [MS] "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data] "{21569614-B795-46b1-85F4-E737A8DC09AD}" = "Shell Search Band" -> {HKLM...CLSID} = "Shell Search Band" \InProcServer32\(Default) = "C:\WINDOWS\system32\browseui.dll" [MS] "{472083B0-C522-11CF-8763-00608CC02F24}" = "avast" -> {HKLM...CLSID} = "avast" \InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"] "{6DEA92E9-8682-4b6a-97DE-354772FE5727}" = "Autodesk DWF Preview" -> {HKLM...CLSID} = "ACDWFTHMBPRXY" \InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Autodesk Shared\AcDwfThmbPrxy16.dll" ["Autodesk"] "{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF}" = "iTunes" -> {HKLM...CLSID} = "iTunes" \InProcServer32\(Default) = "C:\Program Files\iTunes\iTunesMiniPlayer.dll" ["Apple Computer, Inc."] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\ INFECTION WARNING! "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}" = "ewido anti-spyware 4.0" -> {HKLM...CLSID} = "CShellExecuteHookImpl Object" \InProcServer32\(Default) = "C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll" ["Anti-Malware Development a.s."] HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ INFECTION WARNING! AtiExtEvent\DLLName = "Ati2evxx.dll" ["ATI Technologies Inc."] INFECTION WARNING! WgaLogon\DLLName = "WgaLogon.dll" [MS] HKLM\Software\Classes\Folder\shellex\ColumnHandlers\ {F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info" -> {HKLM...CLSID} = "PDF Shell Extension" \InProcServer32\(Default) = "C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."] HKLM\Software\Classes\*\shellex\ContextMenuHandlers\ avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}" -> {HKLM...CLSID} = "avast" \InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"] ewido anti-spyware\(Default) = "{8934FCEF-F5B8-468f-951F-78A921CD3920}" -> {HKLM...CLSID} = "CContextScan Object" \InProcServer32\(Default) = "C:\Program Files\ewido anti-spyware 4.0\context.dll" ["Anti-Malware Development a.s."] TheCleaner\(Default) = "{2DE506B9-4320-11d3-8E42-002035221EDA}" -> {HKLM...CLSID} = "The Cleaner" \InProcServer32\(Default) = "C:\Program Files\The Cleaner\tcshellex.dll" ["MooSoft Development"] WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data] HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\ ewido anti-spyware\(Default) = "{8934FCEF-F5B8-468f-951F-78A921CD3920}" -> {HKLM...CLSID} = "CContextScan Object" \InProcServer32\(Default) = "C:\Program Files\ewido anti-spyware 4.0\context.dll" ["Anti-Malware Development a.s."] TheCleaner\(Default) = "{2DE506B9-4320-11D3-8E42-002035221EDA}" -> {HKLM...CLSID} = "The Cleaner" \InProcServer32\(Default) = "C:\Program Files\The Cleaner\tcshellex.dll" ["MooSoft Development"] WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data] HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\ avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}" -> {HKLM...CLSID} = "avast" \InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"] TheCleaner\(Default) = "{2DE506B9-4320-11D3-8E42-002035221EDA}" -> {HKLM...CLSID} = "The Cleaner" \InProcServer32\(Default) = "C:\Program Files\The Cleaner\tcshellex.dll" ["MooSoft Development"] WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data] Default executables: -------------------- HKLM\Software\Classes\.scr\(Default) = "AutoCADScriptFile" INFECTION WARNING! HKLM\Software\Classes\AutoCADScriptFile\shell\open\command\(Default) = "C:\WINDOWS\NOTEPAD.EXE "%1"" [MS] Active Desktop and Wallpaper: ----------------------------- Active Desktop is disabled at this entry: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState HKCU\Control Panel\Desktop\ "Wallpaper" = "C:\Documents and Settings\HERVE\Local Settings\Application Data\Microsoft\Wallpaper1.bmp" Startup items in "HERVE" & "All Users" startup folders: ------------------------------------------------------- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage "Microsoft Office" -> shortcut to: "C:\Program Files\Microsoft Office\Office\OSA9.EXE -b -l" [MS] "Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter" -> shortcut to: "C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe" [" "] Winsock2 Service Provider DLLs: ------------------------------- Namespace Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++} 000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] 000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS] 000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] Transport Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++} 0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range: %SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 21 %SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05 Toolbars, Explorer Bars, Extensions: ------------------------------------ Toolbars HKCU\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\ "{2318C2B1-4965-11D4-9B18-009027A5CD4F}" -> {HKLM...CLSID} = "&Google" \InProcServer32\(Default) = "c:\program files\google\googletoolbar1.dll" ["Google Inc."] HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ "{2318C2B1-4965-11D4-9B18-009027A5CD4F}" -> {HKLM...CLSID} = "&Google" \InProcServer32\(Default) = "c:\program files\google\googletoolbar1.dll" ["Google Inc."] HKLM\Software\Microsoft\Internet Explorer\Toolbar\ "{2318C2B1-4965-11D4-9B18-009027A5CD4F}" = (no title provided) -> {HKLM...CLSID} = "&Google" \InProcServer32\(Default) = "c:\program files\google\googletoolbar1.dll" ["Google Inc."] Explorer Bars HKCU\Software\Microsoft\Internet Explorer\Explorer Bars\ {21569614-B795-46B1-85F4-E737A8DC09AD}\(Default) = (no title provided) -> {HKLM...CLSID} = "Shell Search Band" \InProcServer32\(Default) = "C:\WINDOWS\system32\browseui.dll" [MS] Extensions (Tools menu items, main toolbar menu buttons) HKCU\Software\Microsoft\Internet Explorer\Extensions\ {1462651F-F4BA-4C76-A001-C4284D0FE16E}\ "ButtonText" = "Orange" "Exec" = "http://www.orange.fr" [file not found] HKLM\Software\Microsoft\Internet Explorer\Extensions\ {08B0E5C0-4FCB-11CF-AAA5-00401C608501}\ "MenuText" = "Console Java (Sun)" "CLSIDExtension" = "{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}" -> {HKCU...CLSID} = "Java Plug-in" \InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll" ["Sun Microsystems, Inc."] -> {HKLM...CLSID} = "Java Plug-in 1.5.0_06" \InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll" ["Sun Microsystems, Inc."] {85D1F590-48F4-11D9-9669-0800200C9A66}\ "MenuText" = "Uninstall BitDefender Online Scanner v8" "Exec" = "%windir%\bdoscandel.exe" [null data] {FB5F1910-F110-11D2-BB9E-00C04F795683}\ "ButtonText" = "Messenger" "MenuText" = "Windows Messenger" "Exec" = "C:\Program Files\Messenger\msmsgs.exe" [MS] Miscellaneous IE Hijack Points ------------------------------ C:\WINDOWS\INF\IERESET.INF (used to "Reset Web Settings") Added lines (compared with English-language version): [strings]: SAFESITE_VALUE="http://home.microsoft.com/intl/fr/" Missing lines (compared with English-language version): [strings]: 1 line HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\ "{08C06D61-F1F3-4799-86F8-BE1A89362C85}" = (no title provided) -> {HKLM...CLSID} = "Search Class" \InProcServer32\(Default) = "C:\PROGRA~1\Wanadoo\SEARCH~1.DLL" [empty string] All Non-Disabled Services (Display Name, Service Name, Path {Service DLL}): --------------------------------------------------------------------------- Aide de Windows Media Connect (WMC), WmcCdsLs, "C:\Program Files\Windows Media Connect\mswmcls.exe" [MS] Ati HotKey Poller, Ati HotKey Poller, "C:\WINDOWS\system32\Ati2evxx.exe" ["ATI Technologies Inc."] ATI Smart, ATI Smart, "C:\WINDOWS\system32\ati2sgag.exe" [empty string] Autodesk Licensing Service, Autodesk Licensing Service, ""C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe"" ["Autodesk"] avast! Antivirus, avast! Antivirus, ""C:\Program Files\Alwil Software\Avast4\ashServ.exe"" [null data] avast! iAVS4 Control Service, aswUpdSv, ""C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"" [null data] avast! Mail Scanner, avast! Mail Scanner, ""C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service" ["ALWIL Software"] avast! Web Scanner, avast! Web Scanner, ""C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service" ["ALWIL Software"] C-DillaCdaC11BA, C-DillaCdaC11BA, "C:\WINDOWS\system32\drivers\CDAC11BA.EXE" ["Macrovision"] C-DillaSrv, C-DillaSrv, "C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE" ["C-Dilla Ltd"] Carte de performance WMI, WmiApSrv, "C:\WINDOWS\system32\wbem\wmiapsrv.exe" [MS] EPSON Printer Status Agent2, EPSONStatusAgent2, "C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe" ["SEIKO EPSON CORPORATION"] ewido anti-spyware 4.0 guard, ewido anti-spyware 4.0 guard, "C:\Program Files\ewido anti-spyware 4.0\guard.exe" ["Anti-Malware Development a.s."] Fax, Fax, "C:\WINDOWS\system32\fxssvc.exe" [MS] France Telecom Routing Table Service, FTRTSVC, "C:\WINDOWS\System32\FTRTSVC.exe" ["France Telecom"] Gestion d'applications, AppMgmt, "C:\WINDOWS\system32\svchost.exe -k netsvcs" {"C:\WINDOWS\System32\appmgmts.dll" [file not found]} HTTP SSL, HTTPFilter, "C:\WINDOWS\System32\svchost.exe -k HTTPFilter" {"C:\WINDOWS\System32\w3ssl.dll" [MS]} InstallDriver Table Manager, IDriverT, ""C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe"" ["Macrovision Corporation"] iPodService, iPodService, "C:\Program Files\iPod\bin\iPodService.exe" ["Apple Computer, Inc."] Macromedia Licensing Service, Macromedia Licensing Service, ""C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe"" ["Macromedia"] RaySat_3dsmax8 Server, mi-raysat_3dsmax8, ""C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"" [null data] Service d'administration du Gestionnaire de disque logique, dmadmin, "C:\WINDOWS\System32\dmadmin.exe /com" ["Microsoft Corp., Veritas Software"] Service d'approvisionnement réseau, xmlprov, "C:\WINDOWS\System32\svchost.exe -k netsvcs" {"C:\WINDOWS\System32\xmlprov.dll" [MS]} Service d'état ASP.NET, aspnet_state, "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe" [MS] Service de numéro de série du lecteur multimédia portable, WmdmPmSN, "C:\WINDOWS\System32\svchost.exe -k netsvcs" {"C:\WINDOWS\system32\mspmsnsv.dll" [MS]} Windows Media Connect (WMC), WmcCds, "c:\program files\windows media connect\mswmccds.exe" [MS] Windows User Mode Driver Framework, UMWdf, "C:\WINDOWS\system32\wdfmgr.exe" [MS] X10 Device Network Service, x10nets, "C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe" ["X10"] Print Monitors: --------------- HKLM\System\CurrentControlSet\Control\Print\Monitors\ CutePDF Writer Monitor\Driver = "cpwmon2k.dll" [null data] EPSON V5 2KMonitor\Driver = "EBPMON2.DLL" ["SEIKO EPSON CORPORATION"] Microsoft Shared Fax Monitor\Driver = "FXSMON.DLL" [MS] ---------- + This report excludes default entries except where indicated. + To see *everywhere* the script checks and *everything* it finds, launch it from a command prompt or a shortcut with the -all parameter. + To search all directories of local fixed drives for DESKTOP.INI DLL launch points and all Registry CLSIDs for dormant Explorer Bars, use the -supp parameter or answer "No" at the first message box. ---------- (total run time: 24 seconds, including 2 seconds for message boxes)

Salut Bruce, Ok je vais appliquer cette procédure. Juste une ou deux questions, dois je désactiver "France Telecom Routing Table Service ", décocher ce que tu m'avais demandé de décocher hier et decocher "la restauration du systeme" ? Je demande celà car après les opération j'avais tout remis en service. Je télécharge SilentRunner et je relance les opérations. Hervé

Re, Alors, je n'ai pas trouvé epswad4.exe même en faisant une recherche avec l'outil rechercher. Voici le rapport du résultat d'ewido, il n'a rien trouvé de plus qu'ad aware mais là je n'en mets pas ma main à couper --------------------------------------------------------- ewido anti-spyware - Scan Report --------------------------------------------------------- + Created at: 20:52:27 15/07/2006 + Scan result: C:\Documents and Settings\HERVE\Cookies\herve@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken. C:\Documents and Settings\HERVE\Cookies\herve@bluestreak[2].txt -> TrackingCookie.Bluestreak : No action taken. C:\Documents and Settings\HERVE\Cookies\herve@com[2].txt -> TrackingCookie.Com : No action taken. C:\Documents and Settings\HERVE\Cookies\herve@estat[1].txt -> TrackingCookie.Estat : No action taken. C:\Documents and Settings\HERVE\Cookies\herve@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : No action taken. C:\Documents and Settings\HERVE\Cookies\herve@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : No action taken. C:\Documents and Settings\HERVE\Cookies\herve@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : No action taken. C:\Documents and Settings\HERVE\Cookies\herve@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : No action taken. C:\Documents and Settings\HERVE\Cookies\herve@weborama[2].txt -> TrackingCookie.Weborama : No action taken. C:\Documents and Settings\HERVE\Cookies\herve@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken. C:\Documents and Settings\HERVE\Cookies\herve@zedo[2].txt -> TrackingCookie.Zedo : No action taken. ::Report end voici le rapport Hijack : Logfile of HijackThis v1.99.1 Scan saved at 20:58:06, on 15/07/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\savedump.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE C:\WINDOWS\system32\cisvc.exe C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe C:\Program Files\ewido anti-spyware 4.0\guard.exe C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\zHotkey.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\system32\RunDll32.exe C:\PROGRA~1\Wanadoo\TaskBarIcon.exe C:\Program Files\Saitek\Software\Profiler.exe C:\Program Files\Saitek\Software\SaiSmart.exe C:\Program Files\Saitek\Software\SaiMfd.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\ewido anti-spyware 4.0\ewido.exe C:\Program Files\Microsoft Office\Office\1036\msoffice.exe C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe C:\PROGRA~1\Wanadoo\ComComp.exe C:\PROGRA~1\Wanadoo\Toaster.exe C:\PROGRA~1\Wanadoo\Inactivity.exe C:\PROGRA~1\Wanadoo\PollingModule.exe C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE C:\PROGRA~1\Wanadoo\Watch.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\drwtsn32.exe C:\WINDOWS\system32\drwtsn32.exe C:\Program Files\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [CHotkey] zHotkey.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [Profiler] C:\Program Files\Saitek\Software\Profiler.exe O4 - HKLM\..\Run: [saiSmart] C:\Program Files\Saitek\Software\SaiSmart.exe O4 - HKLM\..\Run: [saiMfd] C:\Program Files\Saitek\Software\SaiMfd.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM= O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ? O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU) O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} - file://C:\Program Files\AutoCAD 2002 Fra\AcDcToday.ocx O16 - DPF: {86A88967-7A20-11D2-8EDA-00600818EDB1} (ParallelGraphics Cortona Control) - http://www.parallelgraphics.com/bin/cortvrml.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O17 - HKLM\System\CS1\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O17 - HKLM\System\CS2\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe EN rédigeant ce post rebelotte réaffichage d'un popup (system doctor). Là tu vas te dire que tu es tombé sur un sacré ! Celà fait maintenant deux semaine que je suis là dessus et ai passé une multitude d'outil (Avast - Spybot - The Cleaner - Smitfraud - Ewido - Hijack......). Les scan durent environs 2 heures et je suis les procédurent que l'on me fourni, j'espère que madame n'a pas définitivement pourri mon pc Ne perds pas trop ton temps ce soir hein c'est week end quand même et encore merrci pour ton aide, ça doit venir d'une manip que je realise mal mais laquelle ???? Cdt, Hervé

Salut Bruce lee, Tout d'abord, merci pour le tps passé et pour la procédure jointe, je me concentre là dessus et je reviens dire ce qu'il en est. à toute ! Hervé

Bonjour à tous, Me voilà bien embêté, je laisse madame une journée seule avec le pc et voilà !! Bref, j'ai une infection et malgré avoir tenté de passer tous mes outils en mode sans echec en désactivant la restauration system, etc. Pas moyen de la virer. Je vous joins le rapport Hijack mais si vous désirez plus d'infos, j'ai des screens de Avast, Spybot, The Cleaner et SmitFraud.... Merci de votre aide et pardonnez le fouilli que je vous propose là Cdt, Hevré Logfile of HijackThis v1.99.1 Scan saved at 14:14:57, on 15/07/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE C:\WINDOWS\system32\cisvc.exe C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe C:\WINDOWS\System32\FTRTSVC.exe C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\zHotkey.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\system32\RunDll32.exe C:\Program Files\Saitek\Software\Profiler.exe C:\Program Files\Saitek\Software\SaiSmart.exe C:\Program Files\Saitek\Software\SaiMfd.exe C:\PROGRA~1\Wanadoo\TaskBarIcon.exe C:\Program Files\Microsoft Office\Office\1036\msoffice.exe C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe C:\PROGRA~1\Wanadoo\ComComp.exe C:\PROGRA~1\Wanadoo\Toaster.exe C:\PROGRA~1\Wanadoo\Inactivity.exe C:\PROGRA~1\Wanadoo\PollingModule.exe C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE C:\PROGRA~1\Wanadoo\Watch.exe C:\WINDOWS\system32\cidaemon.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft Office\Office\WINWORD.EXE C:\WINDOWS\msagent\AgentSvr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\HijackThis.exe C:\Program Files\Internet Explorer\iexplore.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [CHotkey] zHotkey.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [AdPopup] C:\WINDOWS\epswad4.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [Profiler] C:\Program Files\Saitek\Software\Profiler.exe O4 - HKLM\..\Run: [saiSmart] C:\Program Files\Saitek\Software\SaiSmart.exe O4 - HKLM\..\Run: [saiMfd] C:\Program Files\Saitek\Software\SaiMfd.exe O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM= O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ? O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...arch.jhtml?p=ZN O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU) O16 - DPF: {00000000-0000-0000-0000-000020030000} - http://www.advnt01.com/dialer/fra_med_nostra.exe O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} - file://C:\Program Files\AutoCAD 2002 Fra\AcDcToday.ocx O16 - DPF: {86A88967-7A20-11D2-8EDA-00600818EDB1} (ParallelGraphics Cortona Control) - http://www.parallelgraphics.com/bin/cortvrml.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O17 - HKLM\System\CS1\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O17 - HKLM\System\CS2\Services\Tcpip\..\{1C1227AA-53D2-4472-8F36-A4A475EE19E8}: NameServer = 80.10.246.2,80.10.246.129 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe