cagouillard 16

bonjour regis 56, le pc se comporte beaucoup mieux. Merci pour ton aide.

Bonsoir Regis 56, Voila le resultat de mon scan sur panda: Incident Statut Analyse Outil indésirable:Application/Processor No Désinfecté C:\WINDOWS\system32\Process.exe Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Pierre\Cookies\pierre@xiti[2].txt Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Pierre\Cookies\pierre@weborama[2].txt Spyware:Cookie/fe.lea.lycos Merci

Salut regis 56, J'ai essayé a plusieurs reprises de faire le scan sur KASPERSKY et ça ne demarre pas. Voila ce que j'obtient apres avoir accepté l'installation du controle ActiveX: Welcome to the Kaspersky Online Scanner! Use it to scan your PC for viruses and other malware for free Warning: if you have installed Kaspersky Online Scanner BETA, please manually uninstall it using "Add/Remove Programs" before installing this version! Otherwise this version will not function correctly. Benefits: Kaspersky Anti-Virus exceptional detection rates and thorough scanning Hourly AV database updates available each time the Online Scanner is launched Heuristic analysis to detect unknown viruses Simple installation (just click on a link) Requirements and limitations: When using this service for the first time, you have to run with Administrator privileges in order to install the product. Also, you will need to download and install files about 400 KB in size (about 1 minute on a 57.6 kbps connection) followed by 7 MB of virus definitions. However, if you use the Online Scanner again, you will only need to download the files that have been updated since your last scan. The Online Scanner service offered by Kaspersky Lab uses Microsoft ActiveX technology. Microsoft ActiveX Technology and the Kaspersky Online Scanner work only with MS Internet Explorer 5.0 or higher. We cannot guarantee that the Online Scanner will function correctly if you are using any other browser or any Internet Explorer extensions (such as AvantBrowser). If you use a different browser, you can use the Kaspersky File Scanner to scan individual files. The free Kaspersky Online Scanner does not scan RAM, boot sectors and MBRs, so it cannot detect malicious code located in these areas. Please note: The free Kaspersky Online Scanner does not protect against malicious code, and cannot prevent future infections. It only detects malware that has already penetrated your computer. We strongly recommend that you install a full antivirus solution to protect your system. Privacy statement: The Kaspersky Online Scanner will collect information about the malicious programs found on your computer during the scanning process. The information will be sent to the Kaspersky Virus Lab for statistical purposes. No personal information about you or specific information about your system will be collected or transmitted to Kaspersky Lab. Merci.

Bonsoir, Voila mon scan avec panda: Incident Statut Analyse Outil indésirable:Application/Processor No Désinfecté C:\WINDOWS\system32\Process.exe Outil indésirable:Application/DriveCleaner No Désinfecté C:\Documents and Settings\Pierre\Local Settings\Temporary Internet Files\Content.IE5\JEDUPSL9\installdrivecleanerstart_fr[1].exe Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Pierre\Cookies\pierre@xiti[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Pierre\Cookies\pierre@xiti[2].txt Spyware:Cookie/RealMedia No Désinfecté C:\Documents and Settings\Pierre\Cookies\pierre@247realmedia[1].txt Spyware:Cookie/2o7 No Désinfecté C:\Documents and Settings\Pierre\Cookies\pierre@2o7[1].txt Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Pierre\Cookies\pierre@weborama[2].txt Spyware:Cookie/Adtech No Désinfecté C:\Documents and Settings\Pierre\Cookies\pierre@adtech[2].txt Spyware:Cookie/DriveCleaner No Désinfecté C:\Documents and Settings\Pierre\Cookies\[email protected][2].txt Spyware:Cookie/Comclick No Désinfecté C:\Documents and Settings\Pierre\Cookies\[email protected][1].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Pierre\Cookies\[email protected][1].txt Spyware:Cookie/DriveCleaner No Désinfecté C:\Documents and Settings\Pierre\Cookies\pierre@drivecleaner[1].txt Spyware:Cookie/cs.sexcounter No Désinfecté C:\Documents and Settings\Pierre\Cookies\[email protected][2].txt Voila et merci pour ton aide qui est tres precieuse.

re, voila les 2 rapports: virusscan de jotti: File: RIOService.exe Status: OK(Note: this file has been scanned before. Therefore, this file's scan results will not be stored in the database) MD5 37f7af7703616ae8e1401d0101e0eb1c Packers detected: - Scanner results Scan taken on 13 Jan 2007 23:24:42 (GMT) AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing VirusBuster Found nothing VBA32 Found nothing VirusTotal: Complete scanning result of "RIOService.exe", received in VirusTotal at 01.14.2007, 00:25:54 (CET). Antivirus Version Update Result AntiVir 7.3.0.21 01.09.2007 no virus found Authentium 4.93.8 01.12.2007 no virus found Avast 4.7.936.0 01.13.2007 no virus found AVG 386 01.13.2007 no virus found BitDefender 7.2 01.14.2007 no virus found CAT-QuickHeal 9.00 01.12.2007 no virus found ClamAV devel-20060426 01.13.2007 no virus found DrWeb 4.33 01.13.2007 no virus found eSafe 7.0.14.0 01.10.2007 no virus found eTrust-InoculateIT 23.73.113 01.13.2007 no virus found eTrust-Vet 30.3.3324 01.12.2007 no virus found Ewido 4.0 01.13.2007 no virus found Fortinet 2.82.0.0 01.13.2007 no virus found F-Prot 3.16f 01.12.2007 no virus found F-Prot4 4.2.1.29 01.12.2007 no virus found Ikarus T3.1.0.27 01.09.2007 no virus found Kaspersky 4.0.2.24 01.14.2007 no virus found McAfee 4938 01.12.2007 no virus found Microsoft 1.1904 01.13.2007 no virus found NOD32v2 1977 01.13.2007 no virus found Norman 5.80.02 01.12.2007 no virus found Panda 9.0.0.4 01.13.2007 no virus found Prevx1 V2 01.14.2007 no virus found Sophos 4.13.0 01.13.2007 no virus found Sunbelt 2.2.907.0 01.12.2007 no virus found TheHacker 6.0.3.147 01.11.2007 no virus found UNA 1.83 01.12.2007 no virus found VBA32 3.11.2 01.12.2007 no virus found VirusBuster 4.3.19:9 01.13.2007 no virus found Aditional Information File size: 90112 bytes MD5: 37f7af7703616ae8e1401d0101e0eb1c SHA1: ca55f6310987fd1e2640ab20f8eb1455384c42d2

Re, Voila ce que tu m'as demandé: AVG: AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 23:58:07 13/01/2007 + Résultat de l'analyse: C:\Documents and Settings\Pierre\Local Settings\Temporary Internet Files\Content.IE5\JEDUPSL9\installdrivecleanerstart_fr[1].exe -> Not-A-Virus.Downloader.Win32.WinFixer.m : Aucune action entreprise. C:\Documents and Settings\Pierre\Cookies\pierre@247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise. C:\Documents and Settings\Pierre\Cookies\pierre@2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise. C:\Documents and Settings\Pierre\Cookies\pierre@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise. C:\Documents and Settings\Pierre\Cookies\[email protected][1].txt -> TrackingCookie.Realtracker : Aucune action entreprise. C:\Documents and Settings\Pierre\Cookies\pierre@weborama[2].txt -> TrackingCookie.Weborama : Aucune action entreprise. Fin du rapport Hijackthis: Logfile of HijackThis v1.99.1 Scan saved at 00:05:05, on 14/01/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0011) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Acer\Acer eConsole\MediaServerService.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\MyService\RIOService.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\AGRSMMSG.exe C:\Program Files\Acer\Acer eConsole\MediaSync.exe C:\Program Files\Acer\Acer eMode\AspireService.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\PHILIP~1\VProperty.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.16.128:3328 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode\AspireService.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [ToUcamVProperty] C:\PROGRA~1\PHILIP~1\VProperty.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O11 - Options group: [iNTERNATIONAL] International* O14 - IERESET.INF: START_PAGE_URL=http://global.acer.com/ O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://eu-housecall.trendmicro-europe.com/...ivex/hcImpl.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: RIOService - TODO: <Company name> - C:\MyService\RIOService.exe Blacklight: 01/14/07 00:05:23 [info]: BlackLight Engine 1.0.55 initialized 01/14/07 00:05:23 [info]: OS: 5.1 build 2600 (Service Pack 2) 01/14/07 00:05:23 [Note]: 7019 4 01/14/07 00:05:23 [Note]: 7005 0 01/14/07 00:05:25 [Note]: 7006 0 01/14/07 00:05:25 [Note]: 7011 1332 01/14/07 00:05:25 [Note]: 7026 0 01/14/07 00:05:25 [Note]: 7026 0 01/14/07 00:05:30 [Note]: FSRAW library version 1.7.1021 01/14/07 00:05:56 [Note]: 2000 1012 01/14/07 00:05:56 [Note]: 2000 1012 01/14/07 00:06:34 [Note]: 7007 0 Voila er merci pour tes conseils.

pas de probleme c'est normal, chacun son tour.

Bonsoir, Depuis peu quand j'ouvre une page internet je suis submergé par des pubs. De plus j'ai des messages d'erreurs winantivirus 2006 et winantispyware 2006. Encore un petit probléme, aprés avoir lancé spybot il me trouve TagASaurus. Je corrige le probleme mais quand je le relance plus tard TagASaurus a reapparu. Pourriez vous m'aider a supprimer ces problemes s'ils vous plait. Voila mes log: Hijackthis: Logfile of HijackThis v1.99.1 Scan saved at 22:08:11, on 13/01/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0011) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Acer\Acer eConsole\MediaServerService.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\AGRSMMSG.exe C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\Program Files\Acer\Acer eConsole\MediaSync.exe C:\Program Files\Acer\Acer eMode\AspireService.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\PHILIP~1\VProperty.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\MyService\RIOService.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.16.128:3328 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode\AspireService.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [ToUcamVProperty] C:\PROGRA~1\PHILIP~1\VProperty.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O11 - Options group: [iNTERNATIONAL] International* O14 - IERESET.INF: START_PAGE_URL=http://global.acer.com/ O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://eu-housecall.trendmicro-europe.com/...ivex/hcImpl.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: RIOService - TODO: <Company name> - C:\MyService\RIOService.exe Blacklight: 01/13/07 22:01:24 [info]: BlackLight Engine 1.0.55 initialized 01/13/07 22:01:24 [info]: OS: 5.1 build 2600 (Service Pack 2) 01/13/07 22:01:25 [Note]: 7019 4 01/13/07 22:01:25 [Note]: 7005 0 01/13/07 22:01:52 [Note]: 7006 0 01/13/07 22:01:52 [Note]: 7011 1892 01/13/07 22:01:52 [Note]: 7026 0 01/13/07 22:01:52 [Note]: 7026 0 01/13/07 22:01:52 [Note]: 7024 3 01/13/07 22:01:52 [info]: Hidden process: C:\windows\system32\fdjbkc.exe 01/13/07 22:01:56 [Note]: FSRAW library version 1.7.1021 01/13/07 22:02:25 [info]: Hidden file: c:\WINDOWS\SYSTEM32\FDJBKC.DAT 01/13/07 22:02:25 [info]: Hidden file: C:\windows\system32\fdjbkc.exe 01/13/07 22:02:25 [info]: Hidden file: c:\WINDOWS\SYSTEM32\FDJBKC~1.DAT 01/13/07 22:02:26 [info]: Hidden file: c:\WINDOWS\SYSTEM32\FDJBKC~2.DAT 01/13/07 22:02:27 [Note]: 2000 1012 01/13/07 22:02:27 [Note]: 2000 1012 01/13/07 22:03:03 [Note]: 7007 0 Voila et merci d'avance.

Bonjour à tous, Voila une semaine que mon ordi rame un peu. Quand je vais dans le gestionnaire des taches de windows je remarque que l'utilisation de l'UC est toujours superieure à 50% et que le processus "system" est toujours entre 14 et 28. J'ai essayé de faire une restauration à un point anterieur mais cela n'a pas pu se faire. J'ai un ACER Aspire RC-950 Intel pentium 4 3.0GHz, 512 Mo de DDR et Windows XP Sp2. J'ai fait une analyse avec AVG free, Ad Aware et Spyblot en mode sans echec avec l'affichage des dossiers cachés et cela n'a rien donné. Aidez moi SVP je suis perdu là. Je vous post mon rapport hijackthis en esperant que vous pourrez trouver se qui se passe. Merci d'avance pour votre aide. Logfile of HijackThis v1.99.1 Scan saved at 13:03:37, on 03/11/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\AGRSMMSG.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Aspire\WFTVFM\WFWIZ.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\Acer\Acer eConsole\MediaSync.exe C:\Program Files\Acer\Acer eMode\AspireService.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\ALCWZRD.EXE C:\PROGRA~1\PHILIP~1\VProperty.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Samsung\Digimax Viewer 1.0\DigimaxViewer.exe C:\Program Files\Acer\Acer eConsole\MediaServerService.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\MyService\RIOService.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\explorer.exe C:\Program Files\Hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.16.128:3328 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file) O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [Aspire Schedule] C:\Program Files\Aspire\WFTVFM\WFWIZ.exe O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\Aspire\WFTVFM\WFWIZ.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode\AspireService.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [ToUcamVProperty] C:\PROGRA~1\PHILIP~1\VProperty.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [steam] "C:\Program Files\Steam\Steam.exe" -silent O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe O4 - Global Startup: Digimax Viewer 1.0.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 O14 - IERESET.INF: START_PAGE_URL=http://global.acer.com/ O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/EP...l_v1-0-3-18.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by114fd.bay114.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} (FotovistaPhotoUploader.ctrFpu) - http://www.presslabo.com/tools/activex/fpu_pls.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.extrafilm.fr/NET/Import/ImageUploader3.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmesse...pdownloader.cab O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/5m/vir...5/installer.exe O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: RIOService - TODO: <Company name> - C:\MyService\RIOService.exe