carlouche

merci stix

salut stix voici le raport kaspersky KASPERSKY ON-LINE SCANNER REPORT Tuesday, July 15, 2008 1:58:51 PM Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600) Kaspersky On-line Scanner version : 5.0.83.0 Dernière mise à jour de la base antivirus Kaspersky : 15/07/2008 Enregistrements dans la base antivirus Kaspersky : 851325 Paramètres d'analyse Analyser avec la base antivirus suivante standard Analyser les archives vrai Analyser les bases de messagerie vrai Cible de l'analyse Poste de travail C:\ D:\ Statistiques de l'analyse Total d'objets analysés 53135 Nombre de virus trouvés 0 Nombre d'objets infectés 0 / 0 Nombre d'objets suspects 0 Durée de l'analyse 01:17:15 Nom de l'objet infecté Nom du virus Dernière action C:\Documents and Settings\carlouche\Application Data\Microsoft\MSNLiveFav\LiveFavorites.xml L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Cookies\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Logs\Dfsr00005.log L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\pending.dat L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_36A8_312_A802_CFF3\dfsr.db L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_36A8_312_A802_CFF3\fsr.log L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_36A8_312_A802_CFF3\fsrtmp.log L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_36A8_312_A802_CFF3\tmp.edb L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Application Data\Microsoft\Windows Live Contacts\[email protected]\real\members.stg L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Application Data\Microsoft\Windows Live Contacts\[email protected]\shadow\members.stg L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Historique\History.IE5\MSHist012008071520080716\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Temp\~DF528E.tmp L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Temp\~DF529B.tmp L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Temp\~DF8F39.tmp L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Temp\~DF8F74.tmp L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\carlouche\UserData\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Cookies\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\log\selfdef.log L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt L'objet est verrouillé ignoré C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré C:\WINDOWS\comsetup.log L'objet est verrouillé ignoré C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré C:\WINDOWS\FaxSetup.log L'objet est verrouillé ignoré C:\WINDOWS\iis6.log L'objet est verrouillé ignoré C:\WINDOWS\imsins.log L'objet est verrouillé ignoré C:\WINDOWS\ntdtcsetup.log L'objet est verrouillé ignoré C:\WINDOWS\setupact.log L'objet est verrouillé ignoré C:\WINDOWS\setuperr.log L'objet est verrouillé ignoré C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré C:\WINDOWS\spupdsvc.log L'objet est verrouillé ignoré C:\WINDOWS\system32\config\Antivirus.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré C:\WINDOWS\Temp\Perflib_Perfdata_630.dat L'objet est verrouillé ignoré C:\WINDOWS\Temp\_avast4_\Webshlock.txt L'objet est verrouillé ignoré C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré Analyse terminée. sinon plus aucune pub mais le pc est long a demarré

voici les raports SDFix: Version 1.203 Run by carlouche on mar. 08/07/2008 at 11:57 Microsoft Windows XP [version 5.1.2600] Running From: C:\SDFix Checking Services : Restoring Default Security Values Restoring Default Hosts File Rebooting Checking Files : No Trojan Files Found Removing Temp Files ADS Check : Final Check : catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-07-08 12:04:43 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden services & system hive ... scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 Remaining Services : Authorized Application Key Export: [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\GameSpy Arcade\\Aphex.exe"="C:\\Program Files\\GameSpy Arcade\\Aphex.exe:*:Enabled:GameSpy Arcade" "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "C:\\Program Files\\Vietcong\\vietcong.exe"="C:\\Program Files\\Vietcong\\vietcong.exe:*:Enabled:vietcong" "C:\\Program Files\\Valve\\Steam\\SteamApps\\carlouche\\counter-strike source\\hl2.exe"="C:\\Program Files\\Valve\\Steam\\SteamApps\\carlouche\\counter-strike source\\hl2.exe:*:Enabled:hl2" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" Remaining Files : Files with Hidden Attributes : Finished! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:14:21, on 8/07/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\ibmpmsvc.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\IPSSVC.EXE C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe C:\WINDOWS\system32\acs.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\spupdsvc.exe C:\Program Files\Lenovo\System Update\SUService.exe C:\WINDOWS\system32\spnpinst.exe C:\WINDOWS\system32\Sysocmgr.exe C:\Program Files\Fichiers communs\Lenovo\tvt_reg_monitor_svc.exe C:\WINDOWS\System32\TPHDEXLG.exe C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe C:\Program Files\Fichiers communs\Lenovo\Scheduler\tvtsched.exe C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe C:\Program Files\Fichiers communs\Lenovo\Logger\logmon.exe C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Fichiers communs\Lenovo\Scheduler\scheduler_proxy.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe C:\Program Files\Lenovo\AwayTask\AwaySch.EXE C:\WINDOWS\system32\TpShocks.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Windows Live\Contrôle parental\fssui.exe C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe C:\WINDOWS\System32\DLA\DLACTRLW.EXE C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Lenovo\Zoom\TpScrex.exe C:\WINDOWS\system32\ctfmon.exe C:\themeGold55\CursorXP\CursorXP.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Valve\Steam\Steam.exe C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Documents and Settings\carlouche\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live OneCare Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Contrôle parental\fssbho.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Fichiers communs\Lenovo\Scheduler\scheduler_proxy.exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe O4 - HKLM\..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE O4 - HKLM\..\Run: [TpShocks] TpShocks.exe O4 - HKLM\..\Run: [TP4EX] tp4ex.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor O4 - HKLM\..\Run: rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Contrôle parental\fssui.exe" -autorun O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe O4 - HKLM\..\Run: [LPMailChecker] C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe O4 - HKLM\..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe O4 - HKLM\..\Run: [TPFNF7] C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CursorXP] C:\themeGold55\CursorXP\CursorXP.exe -s O4 - HKCU\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ModemOnHold] "C:\Program Files\NetWaiting\netWaiting.exe" O4 - HKCU\..\Run: [steam] C:\Program Files\Valve\Steam\\Steam.exe -silent O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_1_0 O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: CCC.lnk = ? O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1187112332234 O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/har...ion_2_0_4_8.cab O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe O23 - Service: Atheros Configuration Service (acs) - Atheros - C:\WINDOWS\system32\acs.exe O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\WINDOWS\system32\ibmpmsvc.exe O23 - Service: Service de base IPS (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: System Update (SUService) - Lenovo Group Limited - C:\Program Files\Lenovo\System Update\SUService.exe O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Fichiers communs\Lenovo\tvt_reg_monitor_svc.exe O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe O23 - Service: TVT Scheduler - Lenovo Group Limited - C:\Program Files\Fichiers communs\Lenovo\Scheduler\tvtsched.exe O23 - Service: TVT Windows Update Monitor (TVT_UpdateMonitor) - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe -- End of file - 12806 bytes

le raport otmoveit1 : DllUnregisterServer procedure not found in C:\WINDOWS\system32\msvcrt32.dll C:\WINDOWS\system32\msvcrt32.dll NOT unregistered. C:\WINDOWS\system32\msvcrt32.dll moved successfully. OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 07072008_024729

voici les raports Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:49:01, on 7/07/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\ibmpmsvc.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Lenovo\Scheduler\scheduler_proxy.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe C:\Program Files\Lenovo\AwayTask\AwaySch.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\TpShocks.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Windows Live\Contrôle parental\fssui.exe C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe C:\WINDOWS\System32\DLA\DLACTRLW.EXE C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\Lenovo\Zoom\TpScrex.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\themeGold55\CursorXP\CursorXP.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe C:\WINDOWS\system32\IPSSVC.EXE C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe C:\WINDOWS\system32\acs.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\spupdsvc.exe C:\Program Files\Lenovo\System Update\SUService.exe C:\Program Files\Fichiers communs\Lenovo\tvt_reg_monitor_svc.exe C:\WINDOWS\System32\TPHDEXLG.exe C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe C:\WINDOWS\system32\spnpinst.exe C:\WINDOWS\system32\Sysocmgr.exe C:\Program Files\Fichiers communs\Lenovo\Scheduler\tvtsched.exe C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe C:\Program Files\Fichiers communs\Lenovo\Logger\logmon.exe C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Documents and Settings\carlouche\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live OneCare Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Contrôle parental\fssbho.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Fichiers communs\Lenovo\Scheduler\scheduler_proxy.exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe O4 - HKLM\..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE O4 - HKLM\..\Run: [TpShocks] TpShocks.exe O4 - HKLM\..\Run: [TP4EX] tp4ex.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor O4 - HKLM\..\Run: rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Contrôle parental\fssui.exe" -autorun O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe O4 - HKLM\..\Run: [LPMailChecker] C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe O4 - HKLM\..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe O4 - HKLM\..\Run: [TPFNF7] C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CursorXP] C:\themeGold55\CursorXP\CursorXP.exe -s O4 - HKCU\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ModemOnHold] "C:\Program Files\NetWaiting\netWaiting.exe" O4 - HKCU\..\Run: [steam] C:\Program Files\Valve\Steam\\Steam.exe -silent O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_1_0 O4 - HKCU\..\Run: [RunDLL] rundll32.exe "C:\WINDOWS\system32\msvcrt32.dll" getc O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: CCC.lnk = ? O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1187112332234 O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/har...ion_2_0_4_8.cab O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe O23 - Service: Atheros Configuration Service (acs) - Atheros - C:\WINDOWS\system32\acs.exe O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\WINDOWS\system32\ibmpmsvc.exe O23 - Service: Service de base IPS (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: System Update (SUService) - Lenovo Group Limited - C:\Program Files\Lenovo\System Update\SUService.exe O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Fichiers communs\Lenovo\tvt_reg_monitor_svc.exe O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe O23 - Service: TVT Scheduler - Lenovo Group Limited - C:\Program Files\Fichiers communs\Lenovo\Scheduler\tvtsched.exe O23 - Service: TVT Windows Update Monitor (TVT_UpdateMonitor) - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe -- End of file - 12813 bytes

Malwarebytes' Anti-Malware 1.19 Version de la base de données: 927 Windows 5.1.2600 Service Pack 2 23:41:12 6/07/2008 mbam-log-7-6-2008 (23-41-12).txt Type de recherche: Examen complet (C:\|) Eléments examinés: 291628 Temps écoulé: 1 hour(s), 32 minute(s), 31 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:43:22, on 6/07/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\ibmpmsvc.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\Lenovo\Scheduler\scheduler_proxy.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe C:\Program Files\Lenovo\AwayTask\AwaySch.EXE C:\WINDOWS\system32\TpShocks.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Windows Live\Contrôle parental\fssui.exe C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe C:\WINDOWS\System32\DLA\DLACTRLW.EXE C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\Lenovo\Zoom\TpScrex.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\themeGold55\CursorXP\CursorXP.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\WINDOWS\system32\IPSSVC.EXE C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe C:\WINDOWS\system32\acs.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\spupdsvc.exe C:\Program Files\Lenovo\System Update\SUService.exe C:\Program Files\Fichiers communs\Lenovo\tvt_reg_monitor_svc.exe C:\WINDOWS\System32\TPHDEXLG.exe C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe C:\WINDOWS\system32\spnpinst.exe C:\Program Files\Fichiers communs\Lenovo\Scheduler\tvtsched.exe C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe C:\WINDOWS\system32\Sysocmgr.exe C:\Program Files\Fichiers communs\Lenovo\Logger\logmon.exe C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Documents and Settings\carlouche\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live OneCare Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Contrôle parental\fssbho.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Fichiers communs\Lenovo\Scheduler\scheduler_proxy.exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe O4 - HKLM\..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE O4 - HKLM\..\Run: [TpShocks] TpShocks.exe O4 - HKLM\..\Run: [TP4EX] tp4ex.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor O4 - HKLM\..\Run: rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Contrôle parental\fssui.exe" -autorun O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe O4 - HKLM\..\Run: [LPMailChecker] C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe O4 - HKLM\..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe O4 - HKLM\..\Run: [TPFNF7] C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CursorXP] C:\themeGold55\CursorXP\CursorXP.exe -s O4 - HKCU\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ModemOnHold] "C:\Program Files\NetWaiting\netWaiting.exe" O4 - HKCU\..\Run: [steam] C:\Program Files\Valve\Steam\\Steam.exe -silent O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_1_0 O4 - HKCU\..\Run: [RunDLL] rundll32.exe "C:\WINDOWS\system32\msvcrt32.dll" getc O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: CCC.lnk = ? O4 - Startup: ENJOY Plus!.lnk = C:\Program Files\ENJOY Plus!\ENJOY Plus!.exe O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1187112332234 O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/har...ion_2_0_4_8.cab O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab O20 - Winlogon Notify: ACNotify - ACNotify.dll (file missing) O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe O23 - Service: Atheros Configuration Service (acs) - Atheros - C:\WINDOWS\system32\acs.exe O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\WINDOWS\system32\ibmpmsvc.exe O23 - Service: Service de base IPS (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: System Update (SUService) - Lenovo Group Limited - C:\Program Files\Lenovo\System Update\SUService.exe O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Fichiers communs\Lenovo\tvt_reg_monitor_svc.exe O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe O23 - Service: TVT Scheduler - Lenovo Group Limited - C:\Program Files\Fichiers communs\Lenovo\Scheduler\tvtsched.exe O23 - Service: TVT Windows Update Monitor (TVT_UpdateMonitor) - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe -- End of file - 13092 bytes

voici les rapport : vundo fix: VundoFix V7.0.6 Scan started at 1:23:41 5/07/2008 Listing files found while scanning.... No infected files were found. virtumondebegone : [07/06/2008, 11:30:30] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\WNWFCLST\VirtumundoBeGone[4].exe" ) [07/06/2008, 11:30:31] - Detected System Information: [07/06/2008, 11:30:31] - Windows Version: 5.1.2600, Service Pack 2 [07/06/2008, 11:30:32] - Current Username: carlouche (Admin) [07/06/2008, 11:30:32] - Windows is in NORMAL mode. [07/06/2008, 11:30:32] - Searching for Browser Helper Objects: [07/06/2008, 11:30:32] - BHO 1: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper) [07/06/2008, 11:30:32] - BHO 2: {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} (Windows Live OneCare Family Safety Browser Helper Class) [07/06/2008, 11:30:32] - BHO 3: {5CA3D70E-1895-11CF-8E15-001234567890} (DriveLetterAccess) [07/06/2008, 11:30:32] - BHO 4: {7E853D72-626A-48EC-A868-BA8D5E23E045} () [07/06/2008, 11:30:32] - WARNING: BHO has no default name. Checking for Winlogon reference. [07/06/2008, 11:30:32] - No filename found. Continuing. [07/06/2008, 11:30:32] - BHO 5: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Programme d'aide de l'Assistant de connexion Windows Live) [07/06/2008, 11:30:32] - BHO 6: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper) [07/06/2008, 11:30:32] - BHO 7: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO) [07/06/2008, 11:30:32] - BHO 8: {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (Windows Live Toolbar Helper) [07/06/2008, 11:30:32] - Finished Searching Browser Helper Objects [07/06/2008, 11:30:32] - Finishing up... [07/06/2008, 11:30:32] - Nothing found! Exiting...

salut styx voila le raport que me mais genproc: GenProc 1.972 [1] ven. 04/07/2008 - Windows [XP] : Aucune infection caractéristique trouvée

bonjour tous le monde voila comme dit dans le titre je suis infecté de pub en tout genre sur mon pc je compte sur votre aide pour maidé a eliminé ses pub merci de votre aide voila le raport hijackthis Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:51:00, on 4/07/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\ibmpmsvc.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Lenovo\Scheduler\scheduler_proxy.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe C:\Program Files\Lenovo\AwayTask\AwaySch.EXE C:\WINDOWS\system32\TpShocks.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Windows Live\Contrôle parental\fssui.exe C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe C:\WINDOWS\System32\DLA\DLACTRLW.EXE C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe C:\Program Files\Lenovo\Zoom\TpScrex.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\themeGold55\CursorXP\CursorXP.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\WINDOWS\system32\IPSSVC.EXE C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe C:\WINDOWS\system32\acs.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\spupdsvc.exe C:\Program Files\Lenovo\System Update\SUService.exe C:\Program Files\Fichiers communs\Lenovo\tvt_reg_monitor_svc.exe C:\WINDOWS\System32\TPHDEXLG.exe C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe C:\WINDOWS\system32\spnpinst.exe C:\Program Files\Fichiers communs\Lenovo\Scheduler\tvtsched.exe C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe C:\WINDOWS\system32\Sysocmgr.exe C:\Program Files\Fichiers communs\Lenovo\Logger\logmon.exe C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Windows Live Toolbar\msn_sl.exe C:\Documents and Settings\carlouche\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live OneCare Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Contrôle parental\fssbho.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Fichiers communs\Lenovo\Scheduler\scheduler_proxy.exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe O4 - HKLM\..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE O4 - HKLM\..\Run: [TpShocks] TpShocks.exe O4 - HKLM\..\Run: [TP4EX] tp4ex.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor O4 - HKLM\..\Run: rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Contrôle parental\fssui.exe" -autorun O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe O4 - HKLM\..\Run: [LPMailChecker] C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe O4 - HKLM\..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe O4 - HKLM\..\Run: [TPFNF7] C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CursorXP] C:\themeGold55\CursorXP\CursorXP.exe -s O4 - HKCU\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ModemOnHold] "C:\Program Files\NetWaiting\netWaiting.exe" O4 - HKCU\..\Run: [steam] C:\Program Files\Valve\Steam\\Steam.exe -silent O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_1_0 O4 - HKCU\..\Run: [RunDLL] rundll32.exe "C:\WINDOWS\system32\msvcrt32.dll" getc O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: CCC.lnk = ? O4 - Startup: ENJOY Plus!.lnk = C:\Program Files\ENJOY Plus!\ENJOY Plus!.exe O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1187112332234 O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/har...ion_2_0_4_8.cab O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab O20 - Winlogon Notify: ACNotify - ACNotify.dll (file missing) O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe O23 - Service: Atheros Configuration Service (acs) - Atheros - C:\WINDOWS\system32\acs.exe O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\WINDOWS\system32\ibmpmsvc.exe O23 - Service: Service de base IPS (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: System Update (SUService) - Lenovo Group Limited - C:\Program Files\Lenovo\System Update\SUService.exe O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Fichiers communs\Lenovo\tvt_reg_monitor_svc.exe O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe O23 - Service: TVT Scheduler - Lenovo Group Limited - C:\Program Files\Fichiers communs\Lenovo\Scheduler\tvtsched.exe O23 - Service: TVT Windows Update Monitor (TVT_UpdateMonitor) - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe -- End of file - 13109 bytes

ok excuse moi mes je croyais que mon sujet etait oublié bon jai fait se que tu ma dit de faire mes je n est pas trouvé les fichier que tu me dit sur le mode sans echec : c est fichier la: c:\Documents and Settings\carlouche\Application Data\Chin Spam Rule\ c:\Documents and Settings\All Users\Application Data\Does heck skip roam\ C:\Program Files\Chin Spam Rule mais g fait un nouveau raport le voici : Logfile of HijackThis v1.99.1 Scan saved at 0:29:19, on 10/03/2007 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\carlouche\Bureau\Scanner.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TRIXX] "C:\Program Files\TRIXX\TRIXX.exe" -s O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [WfwiEvalPostExpire] C:\Program Files\Wise for Windows Installer\EvalPostExpire.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.2480\GoogleToolbarNotifier.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O4 - Global Startup: Picture Package Menu.lnk = ? O4 - Global Startup: Picture Package VCD Maker.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr O15 - Trusted Zone: http://ed2k-series.new.fr O16 - DPF: {5308E02B-4ABA-48E4-AA9E-8A7693661473} (GameCtl Class) - http://jeuxenligne.orange.fr/GisActiveX/Ax/GameAx.cab O16 - DPF: {EF148DBB-5B6D-4130-B2A1-661571E86260} (Playtime Games Launcher) - http://jeuxentelechargement.orange.fr/onli...ameLauncher.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - AppInit_DLLs: HookDLL.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe voila cette vois si je v atendre ta reponse sans t embéter merci encore

allo y a quelqu'un A l aide snif snif

voila le raport de diaghelp : C:\WINDOWS\System32/drivers\aswRdr.sys -->15/01/2007 18:26:08 C:\WINDOWS\System32/drivers\aswTdi.sys -->15/01/2007 18:25:24 C:\WINDOWS\System32/drivers\aswmon.sys -->21/12/2006 0:56:13 C:\WINDOWS\System32/drivers\aswmon2.sys -->21/12/2006 0:56:00 C:\WINDOWS\System32/drivers\aavmker4.sys -->21/12/2006 0:51:58 C:\WINDOWS\System32/drivers\CDAC11BA.EXE -->4/08/2006 17:50:44 C:\WINDOWS\System32/drivers\CdaC15BA.SYS -->4/08/2006 17:50:32 C:\WINDOWS.log -->9/03/2007 12:38:50 C:\WINDOWS\wiaservc.log -->9/03/2007 12:38:29 C:\WINDOWS\wiadebug.log -->9/03/2007 12:38:27 C:\WINDOWS\bootstat.dat -->9/03/2007 12:38:14 C:\WINDOWS\winamp.ini -->9/03/2007 2:54:01 C:\WINDOWS\_MSRSTRT.EXE -->8/03/2007 18:02:28 C:\WINDOWS\wmsetup.log -->27/02/2007 13:13:59 C:\WINDOWS\setupapi.log -->18/02/2007 16:41:53 C:\WINDOWS\DPINST.LOG -->11/02/2007 19:30:09 C:\WINDOWS\_delis32.ini -->17/01/2007 18:05:46 C:\WINDOWS\Thumbs.db -->15/01/2007 23:27:34 C:\WINDOWS\nsw.log -->5/01/2007 18:28:52 C:\WINDOWS\KB893803v2.log -->23/11/2006 19:36:51 C:\WINDOWS\tsoc.log -->23/11/2006 19:18:55 C:\WINDOWS\tabletoc.log -->23/11/2006 19:18:55 C:\WINDOWS\alcrmv.exe |13/11/2005 14:37:30 C:\WINDOWS\alcupd.exe |13/11/2005 14:37:30 C:\WINDOWS\IsUn040c.exe |13/11/2005 17:48:55 C:\WINDOWS\NDNuninstall6_98.exe |10/12/2005 20:15:00 C:\WINDOWS\SOUNDMAN.EXE |13/11/2005 14:37:40 C:\WINDOWS\twunk_16.exe |28/08/2001 15:00:00 C:\WINDOWS\twunk_32.exe |28/08/2001 15:00:00 C:\WINDOWS\unin040c.exe |20/11/2005 12:55:54 C:\WINDOWS\_MSRSTRT.EXE |08/03/2007 18:02:27 C:\WINDOWS\twain.dll |28/08/2001 15:00:00 C:\WINDOWS\twain_32.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\append.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\aswBoot.exe |23/11/2006 20:01:51 C:\WINDOWS\system32\ati2evxx.exe |02/08/2006 23:01:21 C:\WINDOWS\system32\Ati2mdxx.exe |02/08/2006 23:02:36 C:\WINDOWS\system32\ati2sgag.exe |13/11/2005 14:41:35 C:\WINDOWS\system32\ChCfg.exe |13/11/2005 14:37:37 C:\WINDOWS\system32\CNMS500.EXE |13/11/2005 17:48:58 C:\WINDOWS\system32\debug.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\dosx.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\dvdplay.exe |23/08/2001 18:47:34 C:\WINDOWS\system32\edlin.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\exe2bin.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\fastopen.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\install.exe |28/12/2003 00:55:52 C:\WINDOWS\system32\mem.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\mscdexnt.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\NeroCheck.exe |13/11/2005 14:20:52 C:\WINDOWS\system32\nlsfunc.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\nw16.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\OggDSuninst.exe |29/04/2006 11:47:27 C:\WINDOWS\system32\pxhpinst.exe |13/11/2005 14:21:57 C:\WINDOWS\system32\redir.exe |28/08/2002 22:24:18 C:\WINDOWS\system32\RTLCPL.EXE |13/11/2005 14:37:42 C:\WINDOWS\system32\setver.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\share.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\usrmlnka.exe |23/08/2001 18:47:48 C:\WINDOWS\system32\usrprbda.exe |23/08/2001 18:47:48 C:\WINDOWS\system32\usrshuta.exe |23/08/2001 18:47:48 C:\WINDOWS\system32\vwipxspx.exe |28/08/2001 15:00:00 C:\WINDOWS\system32\amstream.dll |13/11/2005 14:22:11 C:\WINDOWS\system32\ati2cqag.dll |02/08/2006 22:35:49 C:\WINDOWS\system32\ati2dvag.dll |02/08/2006 23:08:06 C:\WINDOWS\system32\ati2edxx.dll |02/08/2006 23:02:31 C:\WINDOWS\system32\ati2evxx.dll |02/08/2006 23:02:23 C:\WINDOWS\system32\ati3duag.dll |02/08/2006 22:55:58 C:\WINDOWS\system32\ATIDDC.DLL |02/08/2006 23:00:52 C:\WINDOWS\system32\ATIDEMGR.dll |02/08/2006 22:40:43 C:\WINDOWS\system32\atiexdxx.dll |17/05/2006 10:04:00 C:\WINDOWS\system32\atiiiexx.dll |02/08/2006 23:12:18 C:\WINDOWS\system32\atikvmag.dll |02/08/2006 22:41:16 C:\WINDOWS\system32\atioglx1.dll |02/08/2006 22:49:09 C:\WINDOWS\system32\atioglxx.dll |02/08/2006 22:45:24 C:\WINDOWS\system32\atipdlxx.dll |02/08/2006 23:02:58 C:\WINDOWS\system32\atitvo32.dll |02/08/2006 22:40:09 C:\WINDOWS\system32\ativcoxx.dll |10/11/2001 01:01:04 C:\WINDOWS\system32\ativvaxx.dll |02/08/2006 22:51:50 C:\WINDOWS\system32\atmfd.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\atmlib.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\CmdLineExt.dll |07/12/2006 18:17:53 C:\WINDOWS\system32\CNMLM36.DLL |13/11/2005 17:49:10 C:\WINDOWS\system32\compatUI.dll |29/08/2002 12:44:50 C:\WINDOWS\system32\dgrpsetu.dll |13/11/2005 13:45:24 C:\WINDOWS\system32\dgsetup.dll |13/11/2005 13:45:24 C:\WINDOWS\system32\EqnClass.Dll |13/11/2005 13:45:24 C:\WINDOWS\system32\hdlayer.dll |13/11/2005 14:16:32 C:\WINDOWS\system32\HHActiveX.dll |20/03/2002 21:02:00 C:\WINDOWS\system32\hticons.dll |13/11/2005 13:55:16 C:\WINDOWS\system32\hypertrm.dll |13/11/2005 13:55:16 C:\WINDOWS\system32\iccvid.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\imagr5.dll |13/11/2005 14:20:53 C:\WINDOWS\system32\imagx5.dll |13/11/2005 14:20:53 C:\WINDOWS\system32\ImagXpr5.dll |13/11/2005 14:20:52 C:\WINDOWS\system32\ir32_32.dll |07/11/1995 13:46:00 C:\WINDOWS\system32\Ir41_qc.dll |22/03/1998 14:34:14 C:\WINDOWS\system32\Ir41_qcx.dll |22/03/1998 14:34:14 C:\WINDOWS\system32\Ir50_32.dll |17/05/1999 14:12:56 C:\WINDOWS\system32\ir50_lcs.dll |06/11/1997 13:53:30 C:\WINDOWS\system32\Ir50_qc.dll |07/10/1998 16:46:18 C:\WINDOWS\system32\Ir50_qcx.dll |07/10/1998 16:50:22 C:\WINDOWS\system32\isrdbg32.dll |13/11/2005 13:56:42 C:\WINDOWS\system32\jgaw400.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\jgdw400.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\jgmd400.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\jgpl400.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\jgsd400.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\jgsh400.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\lfavi12n.dll |06/06/2006 17:16:56 C:\WINDOWS\system32\lfgif12n.dll |06/06/2006 17:16:56 C:\WINDOWS\system32\lfmpg12n.dll |06/06/2006 17:16:56 C:\WINDOWS\system32\LTTWN12n.DLL |06/06/2006 17:16:58 C:\WINDOWS\system32\mciqtz32.dll |13/11/2005 14:22:11 C:\WINDOWS\system32\mdwmdmsp.dll |23/08/2001 18:47:06 C:\WINDOWS\system32\MMSwitch.dll |15/11/2002 13:11:26 C:\WINDOWS\system32\msdmo.dll |13/11/2005 14:22:12 C:\WINDOWS\system32\msencode.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\MsgPlusLoader.dll |23/11/2005 22:50:20 C:\WINDOWS\system32\Oemdspif.dll |02/08/2006 23:02:42 C:\WINDOWS\system32\ogg.dll |14/12/2002 22:46:02 C:\WINDOWS\system32\OggDS.dll |14/12/2002 22:46:02 C:\WINDOWS\system32\paqsp.dll |23/08/2001 18:47:16 C:\WINDOWS\system32\PCDLIB32.DLL |09/12/1998 02:53:58 C:\WINDOWS\system32\picn20.dll |13/11/2005 14:20:53 C:\WINDOWS\system32\pncrt.dll |10/11/2006 14:51:23 C:\WINDOWS\system32\pndx5016.dll |10/11/2006 14:51:23 C:\WINDOWS\system32\pndx5032.dll |10/11/2006 14:51:23 C:\WINDOWS\system32\psisdecd.dll |13/11/2005 14:42:40 C:\WINDOWS\system32\pvmjpg21.dll |12/12/2002 15:33:20 C:\WINDOWS\system32\px.dll |13/11/2005 14:21:57 C:\WINDOWS\system32\pxdrv.dll |13/11/2005 14:21:57 C:\WINDOWS\system32\pxmas.dll |13/11/2005 14:21:57 C:\WINDOWS\system32\pxwave.dll |13/11/2005 14:21:57 C:\WINDOWS\system32\qedwipes.dll |13/11/2005 14:22:12 C:\WINDOWS\system32\rmoc3260.dll |10/11/2006 14:51:23 C:\WINDOWS\system32\RTLCPAPI.dll |13/11/2005 14:37:40 C:\WINDOWS\system32\sbe.dll |29/08/2002 12:44:56 C:\WINDOWS\system32\scriptpw.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\slbcsp.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\slbiop.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\slbrccsp.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\SONYHCY.DLL |06/06/2006 17:17:18 C:\WINDOWS\system32\spnike.dll |23/08/2001 18:47:18 C:\WINDOWS\system32\sprio600.dll |23/08/2001 18:47:18 C:\WINDOWS\system32\sprio800.dll |23/08/2001 18:47:18 C:\WINDOWS\system32\spxcoins.dll |13/11/2005 13:45:24 C:\WINDOWS\system32\tsd32.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\UNACEV2.DLL |21/03/2002 14:39:02 C:\WINDOWS\system32\usrcntra.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrcoina.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrdpa.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrdtea.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrfaxa.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrlbva.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrrtosa.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrsdpia.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrsvpia.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrv42a.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrv80a.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrvoica.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\usrvpa.dll |23/08/2001 18:47:20 C:\WINDOWS\system32\vorbis.dll |14/12/2002 22:46:02 C:\WINDOWS\system32\vorbisenc.dll |14/12/2002 21:46:04 C:\WINDOWS\system32\vp6vfw.dll |30/08/2004 13:25:24 C:\WINDOWS\system32\VSFilter.dll |12/08/2004 23:11:14 C:\WINDOWS\system32\vxblock.dll |13/11/2005 14:21:57 C:\WINDOWS\system32\win87em.dll |28/08/2001 15:00:00 C:\WINDOWS\system32\xprouting.dll |13/11/2005 14:16:31 C:\WINDOWS\system32\xvidcore.dll |20/12/2004 11:03:26 C:\WINDOWS\system32\xvidvfw.dll |20/12/2004 11:08:28 Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est FC68-A6C9 Répertoire de C:\WINDOWS\system32 28/08/2001 15:00 4.096 csrss.exe 1 fichier(s) 4.096 octets 0 Rép(s) 39.148.326.912 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est FC68-A6C9 Répertoire de C:\WINDOWS\Downloaded Program Files 22/01/2007 16:02 <REP> . 22/01/2007 16:02 <REP> .. 13/11/2005 13:57 65 desktop.ini 21/06/2006 15:54 233.472 GameAx.dll 26/06/2006 19:32 386 GameAx.inf 29/05/2006 16:59 139.264 GameEvents.dll 20/01/2000 15:25 1.162 Microsoft XML Parser for Java.osd 28/07/2006 15:49 118.784 PTGameLauncher.dll 27/07/2006 13:55 239 PTGameLauncher.inf 09/11/2006 14:36 5.019 swflash.inf 8 fichier(s) 498.391 octets Total des fichiers listés : 8 fichier(s) 498.391 octets 2 Rép(s) 39.148.326.912 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Liste des programmes installes ACDSee 6.0 PowerPack Trial Ad-aware 6 Personal Adobe Download Manager 2.0 (Remove Only) Adobe Flash Player 9 ActiveX Adobe Reader 7.0.8 - Français Adobe® Photoshop® Album Edition Découverte 3.0 Archiveur WinRAR ATI - Utilitaire de désinstallation du logiciel ATI Catalyst Control Center ATI Control Panel ATI Display Driver ATI HYDRAVISION avast! Antivirus BSPlayer Canon S500 CDex 1.50 [Extraction Audio] CursorXP Direct Show Ogg Vorbis Filter (remove only) eMule2 First Step Guide Google Toolbar for Internet Explorer GTA San Andreas Half-Life® 2 HijackThis 1.99.1 ImageMixer VCD2 Lecteur Windows Media 10 Macromedia Flash Player Madrics Superbox Pro and Superbox3 Messenger Plus! 3 Messenger Plus! Live Microsoft .NET Framework 1.1 Microsoft Office XP Professional avec FrontPage Nero 6 Ultra Edition Outil de mise à jour Google Picture Package QuickTime QuickTime Real Alternative 1.51 Realtek AC'97 Audio SafeCast Shared Components Sapphire TRIXX Shockwave SLD Codec Pack Sony Ericsson PC Suite Sony USB Driver SprayR 1.0 RC7b Spybot - Search & Destroy 1.2 Steam TeamSpeak 2 RC2 VMN Toolbar WebFldrs XP WhenU Save Winamp (remove only) Windows Installer 3.1 (KB893803) Windows Live Messenger Windows Media Format Runtime Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est FC68-A6C9 Répertoire de C:\Program Files 08/03/2007 18:00 <REP> . 08/03/2007 18:00 <REP> .. 10/12/2005 20:12 <REP> Accoona 13/11/2005 14:19 <REP> ACD Systems 04/10/2006 21:29 <REP> Adobe 23/08/2006 21:06 <REP> ADSL Drivers 22/11/2005 02:32 <REP> Ahead 23/11/2006 20:01 <REP> Alwil Software 15/11/2005 20:09 <REP> ATI Technologies 13/11/2005 14:37 <REP> AvRack 08/03/2007 17:59 <REP> BitDownload 05/12/2005 19:07 <REP> CDex 08/03/2007 18:00 <REP> Chin Spam Rule 08/03/2007 17:58 <REP> eMule 23/11/2006 15:13 <REP> Fichiers communs 08/03/2007 20:37 <REP> Google 11/02/2006 08:30 <REP> Internet Explorer 19/09/2006 10:20 <REP> Inventel 09/03/2007 12:43 <REP> JEUX 13/11/2005 14:21 <REP> Lavasoft 18/01/2007 16:57 <REP> Logitech 10/11/2006 14:51 <REP> Media Player Classic 10/12/2006 01:22 <REP> Messenger Plus! Live 31/07/2006 17:35 <REP> MessengerPlus! 3 13/11/2005 13:58 <REP> microsoft frontpage 13/11/2005 15:11 <REP> Microsoft Office 11/12/2006 21:30 <REP> mIRC 13/11/2005 13:58 <REP> movie maker 13/11/2005 13:58 <REP> msn gaming zone 11/02/2007 19:30 <REP> MSN Messenger 08/03/2007 18:03 <REP> Multi_Media_France 13/11/2005 13:56 <REP> NetMeeting 13/11/2005 13:56 <REP> Outlook Express 06/06/2006 17:18 <REP> PIXELA 22/11/2005 02:33 <REP> Profiles 13/05/2006 19:24 <REP> QuickTime 10/11/2006 14:51 <REP> Real Alternative 09/12/2006 17:12 <REP> Rockstar Games 23/09/2006 19:51 <REP> Securitoo 22/11/2005 02:33 <REP> Services 13/11/2005 13:57 <REP> Services en ligne 10/11/2006 10:52 <REP> SLD Codec Pack 26/05/2006 14:14 <REP> SlySoft 06/06/2006 17:16 <REP> Sony Corporation 11/02/2006 15:24 <REP> Sony Ericsson 15/11/2005 22:37 <REP> SprayR 13/11/2005 14:22 <REP> Spybot - Search & Destroy 14/06/2006 20:51 <REP> Teamspeak2_RC2 18/09/2006 11:39 <REP> TRIXX 09/12/2006 16:23 <REP> VID_0E8F&PID_3013 21/01/2007 16:02 <REP> Visicom Media 21/01/2007 16:05 <REP> vmntoolbar 23/09/2006 19:57 <REP> Wanadoo 10/11/2006 14:38 <REP> Webteh 13/11/2005 14:21 <REP> Winamp 25/11/2005 21:07 <REP> windows media player 13/11/2005 13:55 <REP> Windows NT 06/06/2006 17:15 <REP> WindowsUpdate 13/11/2005 14:21 <REP> WinRAR 13/11/2005 13:58 <REP> xerox 0 fichier(s) 0 octets 60 Rép(s) 39.148.113.920 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est FC68-A6C9 Répertoire de C:\Program Files\fichiers communs 23/11/2006 15:13 <REP> . 23/11/2006 15:13 <REP> .. 13/11/2005 14:20 <REP> ACD Systems 04/10/2006 21:30 <REP> Adobe 13/11/2005 14:20 <REP> Ahead 13/11/2005 15:12 <REP> Designer 17/11/2005 20:03 <REP> InstallShield 17/01/2007 18:06 <REP> Logitech 04/08/2006 17:50 <REP> Macrovision Shared 23/11/2006 00:41 <REP> Microsoft Shared 13/11/2005 13:56 <REP> MSSoap 06/06/2006 17:16 <REP> muvee Technologies 15/12/2005 13:01 <REP> ODBC 13/11/2005 13:56 <REP> Services 13/11/2005 13:58 <REP> speechengines 23/11/2006 18:43 <REP> Symantec Shared 13/11/2005 15:11 <REP> System 11/02/2006 15:35 <REP> Teleca Shared 0 fichier(s) 0 octets 18 Rép(s) 39.148.113.920 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est FC68-A6C9 Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 13/11/2005 15:12 <REP> . 13/11/2005 15:12 <REP> .. 13/11/2005 15:12 <REP> 1033 13/11/2005 15:12 <REP> 1036 15/02/2001 05:45 1.318.912 MSONSEXT.DLL 13/02/2001 08:23 58.784 MSOSV.DLL 03/06/1999 14:09 122.937 MSOWS409.DLL 07/03/2001 09:00 127.033 MSOWS40c.DLL 06/08/2000 09:04 401.462 MSVCP60.DLL 22/01/2001 03:25 69.632 PKMAXCTL.DLL 22/01/2001 03:25 872.448 PKMCDO.DLL 22/01/2001 03:25 159.744 PKMCORE.DLL 07/02/2001 09:59 106.496 PKMFORMS.DLL 12/02/2001 04:03 684.032 PKMRES.DLL 22/01/2001 03:25 28.672 PKMSSTLB.DLL 22/01/2001 03:25 40.960 PKMTEMPL.DLL 22/01/2001 03:25 24.576 PKMTRACE.DLL 22/01/2001 03:25 86.016 PKMWS.DLL 22/01/2001 03:25 237.568 PROMDEMO.DLL 22/01/2001 03:25 184.320 SECMGR.DLL 22/01/2001 03:25 323.584 VAIDDMGR.DLL 22/01/2001 03:25 32.768 VAIMEM.DLL 18 fichier(s) 4.879.944 octets 4 Rép(s) 39.148.109.824 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est FC68-A6C9 Répertoire de C:\ 11/11/2001 00:00 68.096 diff.exe 27/08/2006 14:10 103.424 grep.exe 2 fichier(s) 171.520 octets 0 Rép(s) 39.148.109.824 octets libres c:\Documents and Settings\All Users\Application Data\Does heck skip roam\RECT FILM.exe c:\Documents and Settings\carlouche\Application Data\Chin Spam Rule\Grey Admin Bags.exe c:\Documents and Settings\carlouche\Application Data\Chin Spam Rule\Hideshimlove.exe c:\Documents and Settings\carlouche\Application Data\Chin Spam Rule\veosmufi.exe c:\Documents and Settings\carlouche\Application Data\Microsoft\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C9.exe c:\Documents and Settings\carlouche\Bureau\Scanner.exe c:\Documents and Settings\carlouche\Bureau\DiagHelp\diff.exe c:\Documents and Settings\carlouche\Bureau\DiagHelp\dumphive.exe c:\Documents and Settings\carlouche\Bureau\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\carlouche\Bureau\DiagHelp\Fport.exe c:\Documents and Settings\carlouche\Bureau\DiagHelp\grep.exe c:\Documents and Settings\carlouche\Bureau\DiagHelp\LFiles.exe c:\Documents and Settings\carlouche\Bureau\DiagHelp\LISTDLLS.exe c:\Documents and Settings\carlouche\Bureau\DiagHelp\pslist.exe c:\Documents and Settings\carlouche\Bureau\DiagHelp\streams.exe c:\Documents and Settings\carlouche\Bureau\DiagHelp\swreg.exe c:\Documents and Settings\carlouche\Bureau\logiciels\AdbeRdr708_fr_FR.exe c:\Documents and Settings\carlouche\Bureau\logiciels\bsplayer_bsplayer_1.37_sans_adware_anglais_10424.exe c:\Documents and Settings\carlouche\Bureau\logiciels\cdex 1.5 FR.exe c:\Documents and Settings\carlouche\Bureau\logiciels\directx_9c_redist.exe c:\Documents and Settings\carlouche\Bureau\logiciels\google-earth_google_earth_4.0.1693_beta_francais_14783.exe c:\Documents and Settings\carlouche\Bureau\logiciels\Install_Messenger.exe c:\Documents and Settings\carlouche\Bureau\logiciels\iQfx3Basic.exe c:\Documents and Settings\carlouche\Bureau\logiciels\iTunesSetup.exe c:\Documents and Settings\carlouche\Bureau\logiciels\mp10setup.exe c:\Documents and Settings\carlouche\Bureau\logiciels\MsgPlusLive-401.exe c:\Documents and Settings\carlouche\Bureau\logiciels\Nero 6 fr complet + serial .exe c:\Documents and Settings\carlouche\Bureau\logiciels\nero_nero_6.6.0.18_language_pack_francais_fran_ais_10297.exe c:\Documents and Settings\carlouche\Bureau\logiciels\patchts2fr.exe c:\Documents and Settings\carlouche\Bureau\logiciels\qc848enu.exe c:\Documents and Settings\carlouche\Bureau\logiciels\QuickTimeInstaller.exe c:\Documents and Settings\carlouche\Bureau\logiciels\Real One Gold V2 Plus Accesseries.exe c:\Documents and Settings\carlouche\Bureau\logiciels\RealOnePlayerGold.exe c:\Documents and Settings\carlouche\Bureau\logiciels\SkypeSetup-Beta.exe c:\Documents and Settings\carlouche\Bureau\logiciels\winamp3_0-full.exe c:\Documents and Settings\carlouche\Bureau\logiciels\winamp5092_full_emusic-7plus.exe c:\Documents and Settings\carlouche\Bureau\logiciels\winamp5112_full.exe c:\Documents and Settings\carlouche\Bureau\logiciels\Windows Installer v3.1.exe c:\Documents and Settings\carlouche\Bureau\logiciels\WINZIP 8.1.exe c:\Documents and Settings\carlouche\Bureau\logiciels\WinZip-8-win-full-serial-61924847.exe c:\Documents and Settings\carlouche\Bureau\logiciels\WinRar\WinRAR 3\cash.exe c:\Documents and Settings\carlouche\Bureau\logiciels\WinRar\WinRAR 3\wrar300.exe c:\Documents and Settings\carlouche\Local Settings\Temp\bis4F.exe c:\Documents and Settings\carlouche\Local Settings\Temp\closedbgout.exe c:\Documents and Settings\carlouche\Local Settings\Temp\enableirsocketutil.exe c:\Documents and Settings\carlouche\Local Settings\Temp\miunst_.exe c:\Documents and Settings\carlouche\Local Settings\Temp\bye133.tmp\Disk1\DanceEJay7.exe c:\Documents and Settings\carlouche\Local Settings\Temp\bye133.tmp\Disk1\setup.exe c:\Documents and Settings\carlouche\Local Settings\Temp\nsi77.tmp\AccoonaToolbar.exe c:\Documents and Settings\carlouche\Local Settings\Temp\SLF5C6D.tmp\Ancient_Taxi_Telecharger{20041}.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\instmsia.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\instmsiw.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\setup.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\patch.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\PCCWMain.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\PCCWRestart.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\SyncUtil.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\TRA.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\UnInsDlg.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\Upd4CE.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\Upd4Epoc.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\en\PC-cillin for Pocket PC.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\en\PC-cillin for Pocket PC_ARM.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\en\PC-cillin for Pocket PC_MIPS.exe c:\Documents and Settings\carlouche\Local Settings\Temp\Wireless Protection Manager\program files\Trend Micro\Wireless Protection Manager\en\PC-cillin for Pocket PC_SH3.exe c:\Documents and Settings\carlouche\Local Settings\Temp\{AA8F2AFF-F352-4B23-A940-EB1CB8699F6A}\{C6B7E3A6-0BA7-478D-A5AB-8DED8FC62D80}\KILL.EXE c:\Documents and Settings\carlouche\Local Settings\Temp\{DDB6B45C-B006-423A-9F09-53DACC5EA7E2}\QuickTimeInstaller.exe c:\Documents and Settings\carlouche\Local Settings\Temp\{F48F6A7B-32D3-48D7-BB71-DDB099067EE5}\6.10.450\WFWI6.exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\8HIFGDQ7\HijackThis[1].exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\8HIFGDQ7\psa30se_ytb612_a708_DLM_fr_fr[1].exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\G5AFGHA3\Google Updater[1].exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\GD238P2Z\Cake_Mania-setup[1].exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\GD238P2Z\InstMsiA[1].exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\IXEID1FB\Install_Messenger[1].exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\K9YP4X6P\DivXPro521XP2K[1].exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\MNE3ILI7\InstMsiA[1].exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\V90GKZ7R\voissatv[1].exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\W96789IZ\voissatv[1].exe c:\Documents and Settings\carlouche\Local Settings\Temporary Internet Files\Content.IE5\WDKTM785\voissatv[1].exe c:\Documents and Settings\carlouche\Mes documents\Mes fichiers reçus\6-8_xcode_35179.exe c:\Documents and Settings\carlouche\Mes documents\Mes fichiers reçus\6-8_xp-2k_dd_ccc_wdm_enu_35179.exe c:\Documents and Settings\carlouche\Mes documents\Mes fichiers reçus\ftpexpert3.exe c:\Documents and Settings\carlouche\Mes documents\Mes fichiers reçus\psa30se_fr_fr.exe c:\Documents and Settings\carlouche\Mes documents\Mes fichiers reçus\realalt151.exe c:\Documents and Settings\carlouche\Mes documents\Mes fichiers reçus\reaper_reaper_0.935_anglais_18727.exe c:\Documents and Settings\carlouche\Mes documents\Mes fichiers reçus\samp01b-installer.exe c:\Documents and Settings\carlouche\Mes documents\Mes fichiers reçus\setupfre.exe c:\Documents and Settings\carlouche\Mes documents\Mes fichiers reçus\sld.codec.pack.2.2.exe c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll c:\Documents and Settings\All Users\Application Data\PlayTime\PTGameLauncher\Pogo\MahjongEscapeWeb\bass.dll c:\Documents and Settings\All Users\Application Data\PlayTime\PTGameLauncher\Pogo\MahjongEscapeWeb\MahjongEscapeWeb.dll c:\Documents and Settings\All Users\Application Data\PlayTime\PTGameLauncher\Pogo\MahjongEscapeWeb\Resource.dll c:\Documents and Settings\carlouche\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll Liste des drivers... < Service Pack 1 3 9 2007 13:15:50.500 < Pilote charg' \WINDOWS\system32\ntoskrnl.exe < Pilote charg' \WINDOWS\system32\hal.dll < Pilote charg' \WINDOWS\system32\KDCOM.DLL < Pilote charg' \WINDOWS\system32\BOOTVID.dll < Pilote charg' ACPI.sys < Pilote charg' \WINDOWS\System32\DRIVERS\WMILIB.SYS < Pilote charg' pci.sys < Pilote charg' isapnp.sys < Pilote charg' ohci1394.sys < Pilote charg' \WINDOWS\System32\DRIVERS\1394BUS.SYS < Pilote charg' pciide.sys < Pilote charg' \WINDOWS\System32\DRIVERS\PCIIDEX.SYS < Pilote charg' MountMgr.sys < Pilote charg' ftdisk.sys < Pilote charg' dmload.sys < Pilote charg' dmio.sys < Pilote charg' PartMgr.sys < Pilote charg' VolSnap.sys < Pilote charg' atapi.sys < Pilote charg' SI3112r.sys < Pilote charg' \WINDOWS\System32\DRIVERS\SCSIPORT.SYS < Pilote charg' disk.sys < Pilote charg' \WINDOWS\System32\DRIVERS\CLASSPNP.SYS < Pilote charg' sr.sys < Pilote charg' SiWinAcc.sys < Pilote charg' KSecDD.sys < Pilote charg' Ntfs.sys < Pilote charg' NDIS.sys < Pilote charg' Mup.sys < Pilote charg' \SystemRoot\System32\DRIVERS\nic1394.sys < Pilote charg' \SystemRoot\System32\DRIVERS\processr.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ati2mtag.sys < Pilote charg' \SystemRoot\System32\DRIVERS\usbohci.sys < Pilote charg' \SystemRoot\System32\DRIVERS\usbehci.sys < Pilote charg' \SystemRoot\System32\DRIVERS\imapi.sys < Pilote charg' \SystemRoot\System32\Drivers\cdrbsdrv.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\cdrom.sys < Pilote charg' \SystemRoot\System32\DRIVERS\redbook.sys < Pilote charg' \SystemRoot\System32\DRIVERS\RTL8139.SYS < Pilote charg' \SystemRoot\system32\drivers\ALCXWDM.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\fdc.sys < Pilote charg' \SystemRoot\System32\DRIVERS\serial.sys < Pilote charg' \SystemRoot\System32\DRIVERS\serenum.sys < Pilote charg' \SystemRoot\System32\DRIVERS\parport.sys < Pilote charg' \SystemRoot\System32\DRIVERS\i8042prt.sys < Pilote charg' \SystemRoot\System32\DRIVERS\mouclass.sys < Pilote charg' \SystemRoot\System32\DRIVERS\kbdclass.sys < Pilote charg' \SystemRoot\System32\DRIVERS\audstub.sys < Pilote charg' \SystemRoot\System32\DRIVERS\bridge.sys < Pilote charg' \SystemRoot\System32\DRIVERS\rasl2tp.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ndistapi.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ndiswan.sys < Pilote charg' \SystemRoot\System32\DRIVERS\raspppoe.sys < Pilote charg' \SystemRoot\System32\DRIVERS\raspptp.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ptilink.sys < Pilote charg' \SystemRoot\System32\DRIVERS\raspti.sys < Pilote charg' \SystemRoot\System32\DRIVERS\rdpdr.sys < Pilote charg' \SystemRoot\System32\DRIVERS\termdd.sys < Pilote charg' \SystemRoot\System32\DRIVERS\swenum.sys < Pilote charg' \SystemRoot\System32\Drivers\NDProxy.SYS < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\NDProxy.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\usbhub.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\lbrtfdc.SYS < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\i2omgmt.SYS < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\Changer.SYS < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\Cdaudio.SYS < Pilote charg' \SystemRoot\System32\Drivers\Fs_Rec.SYS < Pilote charg' \SystemRoot\System32\Drivers\Null.SYS < Pilote charg' \SystemRoot\System32\Drivers\Beep.SYS < Pilote charg' \SystemRoot\System32\drivers\vga.sys < Pilote charg' \SystemRoot\System32\Drivers\mnmdd.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\RDPCDD.sys < Pilote charg' \SystemRoot\System32\Drivers\Msfs.SYS < Pilote charg' \SystemRoot\System32\Drivers\Npfs.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\rasacd.sys < Pilote charg' \SystemRoot\System32\DRIVERS\msgpc.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ipsec.sys < Pilote charg' \SystemRoot\System32\DRIVERS\tcpip.sys < Pilote charg' \SystemRoot\System32\Drivers\aswTdi.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\netbt.sys < Pilote charg' \SystemRoot\System32\DRIVERS\netbios.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\PCIDump.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\wanarp.sys < Pilote charg' \??\C:\Program Files\TRIXX\TRIXXDriver.sys < Pilote charg' \SystemRoot\System32\DRIVERS\rdbss.sys < Pilote charg' \SystemRoot\System32\DRIVERS\mrxsmb.sys < Pilote charg' \SystemRoot\System32\DRIVERS\arp1394.sys < Pilote charg' \SystemRoot\System32\Drivers\Fips.SYS < Pilote charg' \SystemRoot\System32\Drivers\Aavmker4.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\hidusb.sys < Pilote charg' \SystemRoot\System32\Drivers\Cdfs.SYS < Pilote charg' \SystemRoot\System32\drivers\afd.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\drivers\afd.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\DRIVERS\rdbss.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\DRIVERS\mrxsmb.sys < Pilote charg' \SystemRoot\System32\DRIVERS\mrxdav.sys < Pilote charg' \SystemRoot\System32\Drivers\ParVdm.SYS < Pilote charg' \SystemRoot\System32\Drivers\aswMon2.SYS < Pilote charg' \??\C:\WINDOWS\System32\drivers\CdaC15BA.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\srv.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ipnat.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\DRIVERS\ipnat.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\DRIVERS\ipnat.sys < Pilote charg' \SystemRoot\System32\Drivers\aswRdr.SYS < Pilote charg' \SystemRoot\system32\drivers\sysaudio.sys < Pilote charg' \SystemRoot\system32\drivers\wdmaud.sys < Pilote charg' \SystemRoot\system32\drivers\splitter.sys < Pilote charg' \SystemRoot\system32\drivers\aec.sys < Pilote charg' \SystemRoot\system32\drivers\swmidi.sys < Pilote charg' \SystemRoot\system32\drivers\DMusic.sys < Pilote charg' \SystemRoot\system32\drivers\kmixer.sys < Pilote charg' \SystemRoot\system32\drivers\drmkaud.sys merci pour laide c est sympa

salut j ai besoin dun coup de pouce voila je suis infecté de pub CID j ai lancé un scan avec hitjackthis voila le raport Logfile of HijackThis v1.99.1 Scan saved at 0:42:38, on 9/03/2007 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\TRIXX\TRIXX.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\MSN Messenger\msnmsgr.exe c:\progra~1\intern~1\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\Program Files\JEUX\Steam.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\carlouche\Bureau\Scanner.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TRIXX] "C:\Program Files\TRIXX\TRIXX.exe" -s O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [WfwiEvalPostExpire] C:\Program Files\Wise for Windows Installer\EvalPostExpire.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [skiproamonceinternet] C:\Documents and Settings\All Users\Application Data\Does heck skip roam\RECT FILM.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [less audio] C:\DOCUME~1\CARLOU~1\APPLIC~1\CHINSP~1\Hideshimlove.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.2480\GoogleToolbarNotifier.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O4 - Global Startup: Picture Package Menu.lnk = ? O4 - Global Startup: Picture Package VCD Maker.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr O15 - Trusted Zone: http://ed2k-series.new.fr O16 - DPF: {5308E02B-4ABA-48E4-AA9E-8A7693661473} (GameCtl Class) - http://jeuxenligne.orange.fr/GisActiveX/Ax/GameAx.cab O16 - DPF: {EF148DBB-5B6D-4130-B2A1-661571E86260} (Playtime Games Launcher) - http://jeuxentelechargement.orange.fr/onli...ameLauncher.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - AppInit_DLLs: HookDLL.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe que dois-je faire maintenant merci de votre aide