aliaslilith

Sauf que cette solution ne fonctionne que quand je navigue dans mes favoris, pas quand je veux en ajouter. Hors ce que je veux classer, c'est l'apparition des dossiers quand je clique sur "ajouter aux favoris" car ils apparaissent dans un ordre aléatoire, visiblement en lien avec la date de création. Merchi quand même ^^

Bonjour, j'ai déjà posé cette question sur un autre forum, mais personne ne semble pouvoir y répondre... J'ai un petit souci avec mes favoris dans IE7 et ça commence à m'agacer alors je viens chercher votre aide. En fait, j'ai beaucoup de favoris et beaucoup de dossiers pour les classer par thèmes. Jusque là tout va bien. Mais, il se trouve que quand je veux ajouter un nouveau favoris, les dossiers dispo pour le ranger ne sont pas classés par ordre alaphabétique mais par ordre de création visiblement. J'ai tenté de trier par nom, ça fonctionne bien quand je vais dans les favoris pour trouver un lien, mais pas quand j'ajoute un nouveau lien, là ils ne sont toujours pas classés. J'ai aussi tenté d'exporter mes favoris et de les réimporter après les avoir effacé, mais ça ne fonctionne toujours pas. Si quelqu'un a la solution, je le remercie d'avance !

Suite à mon post dans la rubrique internet, je vous met donc mon rapport hijackthis ainsi que le message original : "Bonjour, j'espère poster au bon endroit. Je viens vers vous ce matin car ma soeur a des problèmes avec son ordinateur portable Acer. En effet, il connait des difficultés lors de son lancement et nécessite parfois jusqu'à 4 reboot forcés (car impossible de redémarrer par la barre demarrer dans ces cas) pour fonctionner. En fait, lors d'un lancement type - comme ce matin par exemple - le pc se lance très très vite (surement trop), windows xp semble se lancer normalement et les programmes qui se lancent au démarrage (msn) apparaissent. Pr contre impossible de se connecter à internet, comme si l'ordinateur avait été trop vite et avait laissé de côté la connexion wifi. Dès lors, seule solution, rebooter le pc manuellement (appuie prolongé) et laisser se faire la vérification windows, sinon ça ne fonctionne pas. Je pense que ça vient de la detection du wifi, sans en être persuadée. Ceci dit, ce matin il a fallut 5 reboots pour que l'ordinateur accède enfin au wifi, donc ça irait dans ce sens... Si quelqu'un avait un début de réponse. Mici d'avance " ---------------------------------------------------------------------------- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:29:53, on 05/02/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16574) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\SYSTEM32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Acer\Empowering Technology\eRecovery\Monitor.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\AGRSMMSG.exe C:\Program Files\Arcade\PCMService.exe C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe C:\Program Files\Launch Manager\QtZgAcer.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Adobe\Adobe Version Cue\ControlPanel\VersionCueTray.exe C:\WINDOWS\system32\Rundll32.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\WINDOWS\VM_STI.EXE C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\QuickTime\QTTask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Fichiers communs\TerraTec\Remote\TTTVRC.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\Program Files\Yahoo!\Widgets\YahooWidgetEngine.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avcenter.exe C:\Documents and Settings\Utilisateur\Bureau\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aliceadsl.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.aliceadsl.fr R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O4 - HKLM\..\Run: [LaunchApp] Alaunch O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Arcade\PCMService.exe" O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [AdobeVersionCue] C:\Program Files\Adobe\Adobe Version Cue\ControlPanel\VersionCueTray.exe O4 - HKLM\..\Run: [siSPower] Rundll32.exe SiSPower.dll,ModeAgent O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [bigDogPath] C:\WINDOWS\VM_STI.EXE Vimicro USB PC Camera (ZC0301PL) O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [TerraTec Remote Control] "C:\Program Files\Fichiers communs\TerraTec\Remote\TTTVRC.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Yahoo! Widget Engine.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgetEngine.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1174849026312 O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/har...on.cab?version= O21 - SSODL: rdihost - {16C9CD89-C3FB-4FB4-8B0A-2D2CD6BE673A} - rdihost.dll (file missing) O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AdobeVersionCue - Adobe Sytems - C:\Program Files\Adobe\Adobe Version Cue\service\VersionCue.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) -- End of file - 10215 bytes

en même temps pê que mon analyse est mauvaise et que le problème de freeze du pc ne vient pas de là... Quelqu'un aurait une autre piste ?

j'utilise Alice, mais ce n'est pas ça le problème puisque quand je me connecte sur n'importe quel wifi, c'est pareil. De plus, je passe uniquement par le pc, pas de programme installé.

J'ai beau attendre, rien ne se passe et le pc est comme "freezé", donc quand je clique sur demarrer, et bien rien ne se passe. Comme si j'avais l'image du bureau windows, mais sans réaction...

Bonjour, j'espère poster au bon endroit. Je viens vers vous ce matin car ma soeur a des problèmes avec son ordinateur portable Acer. En effet, il connait des difficultés lors de son lancement et nécessite parfois jusqu'à 4 reboot forcés (car impossible de redémarrer par la barre demarrer dans ces cas) pour fonctionner. En fait, lors d'un lancement type - comme ce matin par exemple - le pc se lance très très vite (surement trop), windows xp semble se lancer normalement et les programmes qui se lancent au démarrage (msn) apparaissent. Pr contre impossible de se connecter à internet, comme si l'ordinateur avait été trop vite et avait laissé de côté la connexion wifi. Dès lors, seule solution, rebooter le pc manuellement (appuie prolongé) et laisser se faire la vérification windows, sinon ça ne fonctionne pas. Je pense que ça vient de la detection du wifi, sans en être persuadée. Ceci dit, ce matin il a fallut 5 reboots pour que l'ordinateur accède enfin au wifi, donc ça irait dans ce sens... Si quelqu'un avait un début de réponse. Mici d'avance

vraiment un enorme merci pour ton aide, ta gentillesse et tout. Franchement, c'est vraiment top. Bon week end !

j'ai éliminé le fichier en question, c'était pour installer la démo nero. Sinon, le pc tourne bien Voici le rapport ! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:02:20, on 12/10/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16544) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\a-squared Free\a2service.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe C:\WINDOWS\ATK0100\Hcontrol.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe C:\Progra~1\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe C:\Program Files\RocketDock\RocketDock.exe C:\WINDOWS\ATK0100\ATKOSD.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\Asus\ASUS Hotkey\Hotkey.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Windows Live\Mail\wlmail.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\hijackthis\aliaslilith.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.imedias.biz/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.asus.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Ziepod One-Click IE Helper - {57A30D1E-08B9-4EF4-B273-AAEA1C234A5B} - C:\WINDOWS\system32\ZiepodOneClicker.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O4 - HKLM\..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1 O4 - HKLM\..\Run: [ATIPTA] C:\Progra~1\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [XSC SIP Client] "C:\Program Files\PhoneSystems X-Lite\PhoneSystemsXLite.exe" O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Antidote\Gestionnaire Antidote.exe O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Hotkey.lnk = C:\Program Files\Asus\ASUS Hotkey\Hotkey.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/clien...1.0/Rawflow.cab O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://mm.tf1.fr/superdistribution/installer2.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.safety.live.com/resource/d...lscbase8460.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {A922B6AB-3B87-11D3-B3C2-0008C7DA6CB9} (InetDownload Class) - https://media.pineconeresearch.com/ActiveX/...loadcontrol.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.pixdiscount.net/clients/uploader_v2.2.0.6.cab O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFna...acComposant.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{8EEE9190-E3B4-4944-A10C-023FF20EAB2C}: NameServer = 194.117.200.10,194.117.200.15 O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- End of file - 11588 bytes

il m'a trouvé un virus et 2 trucs infectés, voici le rapport : J'ai enlevé juste les adresses emails pour poser de problème à personne : ------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER REPORT Friday, October 12, 2007 8:05:42 PM Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600) Kaspersky Online Scanner version: 5.0.98.0 Kaspersky Anti-Virus database last update: 12/10/2007 Kaspersky Anti-Virus database records: 435082 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: extended Scan Archives: true Scan Mail Bases: true Scan Target - My Computer: C:\ D:\ E:\ F:\ G:\ Scan Statistics: Total number of scanned objects: 119786 Number of viruses found: 1 Number of infected objects: 2 Number of suspicious objects: 0 Duration of the scan process: 02:16:06 Infected Object Name / Virus Name / Last Action C:\WINDOWS\system32\config\system.LOG Object is locked skipped C:\WINDOWS\system32\config\software.LOG Object is locked skipped C:\WINDOWS\system32\config\default.LOG Object is locked skipped C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\Internet.evt Object is locked skipped C:\WINDOWS\system32\config\Windows_OneCare_Evt.evt Object is locked skipped C:\WINDOWS\system32\config\SECURITY Object is locked skipped C:\WINDOWS\system32\config\SOFTWARE Object is locked skipped C:\WINDOWS\system32\config\SYSTEM Object is locked skipped C:\WINDOWS\system32\config\DEFAULT Object is locked skipped C:\WINDOWS\system32\config\SAM Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped C:\WINDOWS\system32\h323log.txt Object is locked skipped C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped C:\WINDOWS\wiaservc.log Object is locked skipped C:\WINDOWS\wiadebug.log Object is locked skipped C:\WINDOWS\Sti_Trace.log Object is locked skipped C:\WINDOWS\WindowsUpdate.log Object is locked skipped C:\WINDOWS\SchedLgU.Txt Object is locked skipped C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped C:\WINDOWS\SoftwareDistribution\EventCache\{4B21833F-6AFD-4C8C-97EC-FA00B00D7414}.bin Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped C:\Documents and Settings\asus\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\asus\Local Settings\Historique\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\asus\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Microsoft\Windows Live Mail\WindowsLiveMail.log Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Microsoft\Windows Live Mail\tmp.edb Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Microsoft\Windows Live Mail\edbtmp.log Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Microsoft\Windows Live Mail\Mail.MSMessageStore Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Microsoft\Windows Live Mail\edb.log Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Microsoft\Windows Live Contacts\hotmail.com\real\members.stg Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Microsoft\Windows Live Contacts\hotmail.com\shadow\members.stg Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Ahead\Nero Home\bl.db Object is locked skipped C:\Documents and Settings\asus\Local Settings\Application Data\Ahead\Nero Home\is2.db Object is locked skipped C:\Documents and Settings\asus\Local Settings\Temp\~DF783C.tmp Object is locked skipped C:\Documents and Settings\asus\Local Settings\Temp\~DF7856.tmp Object is locked skipped C:\Documents and Settings\asus\Local Settings\Temp\~DFD9CA.tmp Object is locked skipped C:\Documents and Settings\asus\Local Settings\Temp\~DFDA9F.tmp Object is locked skipped C:\Documents and Settings\asus\Local Settings\Temp\~DFF471.tmp Object is locked skipped C:\Documents and Settings\asus\Local Settings\Temp\~DFF4BD.tmp Object is locked skipped C:\Documents and Settings\asus\Local Settings\Temp\~DFBFCA.tmp Object is locked skipped C:\Documents and Settings\asus\Local Settings\Temp\~DFBFE4.tmp Object is locked skipped C:\Documents and Settings\asus\Local Settings\Temp\Perflib_Perfdata_670.dat Object is locked skipped C:\Documents and Settings\asus\Cookies\index.dat Object is locked skipped C:\Documents and Settings\asus\ntuser.dat Object is locked skipped C:\System Volume Information\_restore{F7D2F77C-9D1B-4655-8504-3A6415CEB3CE}\RP453\change.log Object is locked skipped D:\System Volume Information\_restore{F7D2F77C-9D1B-4655-8504-3A6415CEB3CE}\RP453\change.log Object is locked skipped D:\Downloads\Nero-7.8.5.0_fra_update.exe/Toolbar.exe Infected: not-a-virus:AdTool.Win32.MyWebSearch skipped D:\Downloads\Nero-7.8.5.0_fra_update.exe RAR: infected - 1 skipped D:\Mes Documents\Mes Historiques de Conversation\octobre 2007\hotmail.com.html Object is locked skipped D:\Mes Documents\Mes Historiques de Conversation\octobre 2007\hotmail.fr.html Object is locked skipped Scan process completed.

j'ai installé zone alarm par contre le scan kapersky veut rien entendre, ça ne marche pas...

merci. Pour le dossier avec les crack, on me l'avait donné mais je l'ai supprimé pour être sûre. Pour le trojan, je crois que c'est le scan en mode sans echec qui l'a supprimé si j'ai bien vu mais je fais quand même le scan en ligne en ce moment même. J'ai effacé mes deux antivirus et installé Antivir selon le tuto que vous conseillez, il me manque juste un pare feu donc visiblement. Dès que le scan est terminé je poste ici le résultat mais j'ai aussi fais un scan complet Antivir et il n'a rien trouvé EDIT : Finalement, ça n'a pas marché, il me dit que je dois avoir les droits d'administrateur et que IE doit être sur moyen...

DiagHelp version v1.2 - http://www.malekal.com excute le 11/10/2007 à 18:28:02,92 Liste des derniers fichies modifies/crees dans windir\system32 et prefetch C:\WINDOWS\prefetch\CHCP.COM-17EDBDC9.pf -->11/10/2007 18:28:00 C:\WINDOWS\prefetch\CMD.EXE-034B0549.pf -->11/10/2007 18:27:48 C:\WINDOWS\prefetch\WINRAR.EXE-0AA31BB9.pf -->11/10/2007 18:26:28 C:\WINDOWS\prefetch\NOTEPAD.EXE-2F2D61E1.pf -->11/10/2007 18:25:04 C:\WINDOWS\prefetch\WMIPRVSE.EXE-0D449B4F.pf -->11/10/2007 18:24:58 C:\WINDOWS\prefetch\QTTASK.EXE-1876A1A1.pf -->11/10/2007 18:23:44 C:\WINDOWS\prefetch\WLLOGINPROXY.EXE-090074F0.pf -->11/10/2007 18:23:08 C:\WINDOWS\prefetch\IEXPLORE.EXE-2D97EBE6.pf -->11/10/2007 18:23:00 C:\WINDOWS\prefetch\REGEDIT.EXE-2AE3423E.pf -->11/10/2007 18:22:20 C:\WINDOWS\prefetch\WUAUCLT.EXE-1360D60A.pf -->11/10/2007 18:21:04 C:\WINDOWS\System32\drivers\aswmon.sys -->06/09/2007 12:05:26 C:\WINDOWS\System32\drivers\aswmon2.sys -->06/09/2007 12:05:10 C:\WINDOWS\System32\drivers\aswRdr.sys -->06/09/2007 12:03:02 C:\WINDOWS\System32\drivers\aswTdi.sys -->06/09/2007 12:02:20 C:\WINDOWS\System32\drivers\aavmker4.sys -->06/09/2007 12:00:54 C:\WINDOWS\System32\drivers\imagesrv.sys -->03/07/2007 19:10:12 C:\WINDOWS\System32\drivers\imagedrv.sys -->03/07/2007 19:10:10 C:\WINDOWS\System32\wpa.dbl -->11/10/2007 11:37:54 C:\WINDOWS\System32\CONFIG.NT -->10/10/2007 13:26:56 C:\WINDOWS\System32\MRT.exe -->28/09/2007 07:19:40 C:\WINDOWS\System32\aswBoot.exe -->06/09/2007 12:09:50 C:\WINDOWS\System32\AvastSS.scr -->06/09/2007 12:00:08 C:\WINDOWS\System32\libssl32.dll -->03/09/2007 20:47:48 C:\WINDOWS\System32\TZLog.log -->29/08/2007 11:01:08 C:\WINDOWS\System32\inetcomm.dll -->21/08/2007 08:17:24 C:\WINDOWS\System32\occache.dll -->20/08/2007 11:59:32 C:\WINDOWS\System32\url.dll -->20/08/2007 11:59:32 C:\WINDOWS\System32\urlmon.dll -->20/08/2007 11:59:32 C:\WINDOWS\System32\webcheck.dll -->20/08/2007 11:59:32 C:\WINDOWS\System32\wininet.dll -->20/08/2007 11:59:32 C:\WINDOWS\System32\msfeedsbs.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\extmgr.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\advpack.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\dxtrans.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\icardie.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\ieakeng.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\ieaksie.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\ieapfltr.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\iedkcs32.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\ieframe.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\iernonce.dll -->20/08/2007 11:59:30 C:\WINDOWS\System32\iertutil.dll -->20/08/2007 11:59:30 C:\WINDOWS\WindowsUpdate.log -->11/10/2007 18:21:56 C:\WINDOWS\QTFont.qfn -->11/10/2007 11:38:42 C:\WINDOWS\wiadebug.log -->11/10/2007 11:37:14 C:\WINDOWS.log -->11/10/2007 11:36:58 C:\WINDOWS\bootstat.dat -->11/10/2007 11:36:56 C:\WINDOWS\ntbtlog.txt -->11/10/2007 11:34:54 C:\WINDOWS\setupact.log -->10/10/2007 22:37:24 C:\WINDOWS\setuperr.log -->10/10/2007 22:36:18 C:\WINDOWS\SchedLgU.Txt -->10/10/2007 22:30:30 C:\WINDOWS\wiaservc.log -->10/10/2007 22:30:20 C:\WINDOWS\Antidote.ini -->10/10/2007 17:59:08 C:\WINDOWS\NeroDigital.ini -->10/10/2007 17:29:54 C:\WINDOWS\catchme.exe -->28/09/2007 09:06:10 C:\WINDOWS\TemplateWizard.INI -->23/09/2007 13:54:40 C:\WINDOWS\PROTOCOL.INI -->10/09/2007 13:32:38 MD5 des fichiers sensibles tcpip.sys 1dbf125862891817f374f407626967f4 ndis.sys 558635d3af1c7546d26067d5d9b6959e null.sys 73c1e1f395918bc2c6dd67af7591a3ad svchost.exe 1bd6c2f707a275cb7c16fd99fe0f31ca Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E8C3-4C5B Répertoire de C:\WINDOWS\system 17/07/2002 16:22 3 535 Wowpost.exe 1 fichier(s) 3 535 octets 0 Rép(s) 5 779 062 784 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E8C3-4C5B Répertoire de C:\WINDOWS\system32 05/08/2004 14:00 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 5 779 062 784 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E8C3-4C5B Répertoire de C:\WINDOWS\Downloaded Program Files 07/03/2006 14:34 <REP> . 07/03/2006 14:34 <REP> .. 07/03/2006 14:34 65 desktop.ini 03/06/2002 17:53 144 QTPlugin.inf 13/02/2006 13:06 740 jinstall-1_4_2_11.inf 15/03/2006 16:02 1 912 832 telechargement-photoweb.ocx 21/05/2001 14:18 147 456 WMDownload.dll 21/05/2001 18:11 176 WMDL.inf 04/03/2005 12:11 2 371 wmvadvd.inf 15/11/2005 13:11 87 040 installer2.dll 06/10/2005 18:19 168 448 IEAWSDC.DLL 06/10/2005 18:19 452 ieawsdc.inf 09/11/2006 14:36 5 019 swflash.inf 06/09/2004 11:21 110 592 FnacComposant.dll 18/10/2006 19:28 461 136 wlscBase.dll 18/10/2006 19:32 320 wlscBase.inf 04/04/2007 08:45 1 072 368 uploader_uni.ocx 18/01/2007 00:27 345 512 MSDcode.dll 14/02/2007 16:30 144 setup.inf 20/04/2007 18:50 378 ImageUploader4.inf 20/04/2007 18:50 2 570 008 ImageUploader4.ocx 09/07/2007 12:27 2 377 088 Rawflow.ocx 26/07/2007 16:03 214 DivXPlugin.inf 23/03/2007 12:17 1 292 erma.inf 22 fichier(s) 9 263 795 octets Total des fichiers listés : 22 fichier(s) 9 263 795 octets 2 Rép(s) 5 779 062 784 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Export des clefs sensibles.. Liste des fichiers en exception sur le pare-feu XP SP2 Export de la clef SharedTaskScheduler [sharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" exports des policies REGEDIT4 [system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 Export des clefs sensibles.. Rechercher adresses sensibles dans le fichier HOSTS... catchme 0.3.1160 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-10-11 18:28:21 Windows 5.1.2600 Service Pack 2 FAT NTAPI scanning hidden services ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden services: 0 hidden files: 0 KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Process list by traversal of KiWaitListHead 412 - MSFWSVC.EXE 504 - WINSS.EXE 588 - ashMaiSv.exe 716 - iexplore.exe 736 - CSRSS.EXE 760 - WINLOGON.EXE 804 - SERVICES.EXE 816 - LSASS.EXE 968 - ATI2EVXX.EXE 980 - SVCHOST.EXE 1040 - SVCHOST.EXE 1128 - MSMPENG.EXE 1168 - SVCHOST.EXE 1204 - APPLEMOBILEDEVI 1396 - SVCHOST.EXE 1628 - EXPLORER.EXE 1940 - ASHSERV.EXE 2088 - ashWebSv.exe 2344 - cmd.exe 2688 - wlmail.exe 2932 - ALG.EXE 3000 - msnmsgr.exe 3008 - NMIndexingServi 3092 - NMIndexStoreSvr 3256 - iPodService.exe 3404 - SVCHOST.EXE 3636 - HCONTROL.EXE 3780 - ATIPTAXX.EXE 3804 - SYNTPLPR.EXE 3840 - SYNTPENH.EXE 3876 - WINSSNOTIFY.EXE 3908 - ITUNESHELPER.EX 3992 - ASHDISP.EXE 4032 - CTFMON.EXE 4060 - NMBGMONITOR.EXE 4068 - WLLoginProxy.ex 4088 - ROCKETDOCK.EXE Total number of processes = 37 NOTE: Under WinXP, this will not show all processes. KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Driver/Module list by traversal of PsLoadedModuleList 804D7000 - \WINDOWS\system32\ntoskrnl.exe 806EC000 - \WINDOWS\system32\hal.dll F8A35000 - \WINDOWS\system32\KDCOM.DLL F8945000 - \WINDOWS\system32\BOOTVID.dll F84E5000 - ACPI.sys F8A37000 - \WINDOWS\system32\DRIVERS\WMILIB.SYS F84D4000 - pci.sys F8535000 - isapnp.sys F8545000 - ohci1394.sys F8555000 - \WINDOWS\system32\DRIVERS\1394BUS.SYS F8949000 - compbatt.sys F894D000 - \WINDOWS\system32\DRIVERS\BATTC.SYS F8AFD000 - pciide.sys F87B5000 - \WINDOWS\system32\DRIVERS\PCIIDEX.SYS F84B6000 - pcmcia.sys F8565000 - MountMgr.sys F8497000 - ftdisk.sys F87BD000 - PartMgr.sys F8575000 - VolSnap.sys F847F000 - atapi.sys F8585000 - disk.sys F8595000 - \WINDOWS\system32\DRIVERS\CLASSPNP.SYS F845F000 - fltMgr.sys F844D000 - sr.sys F85A5000 - PxHelp20.sys F842A000 - Fastfat.sys F8413000 - KSecDD.sys F83E6000 - NDIS.sys F85B5000 - uagp35.sys F85C5000 - SISAGPX.sys F85D5000 - sbp2port.sys F83CB000 - Mup.sys F8605000 - \SystemRoot\system32\DRIVERS\intelppm.sys F89C5000 - \SystemRoot\system32\DRIVERS\CmBatt.sys F8A3B000 - \SystemRoot\system32\DRIVERS\ATKACPI.sys F806E000 - \SystemRoot\system32\DRIVERS\ati2mtag.sys F805A000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS F8046000 - \SystemRoot\system32\DRIVERS\parport.sys F8035000 - \SystemRoot\System32\Drivers\Serial.SYS F87CD000 - \SystemRoot\system32\DRIVERS\irsir.sys F89C9000 - \SystemRoot\system32\DRIVERS\irenum.sys F8615000 - \SystemRoot\system32\DRIVERS\i8042prt.sys F87D5000 - \SystemRoot\system32\DRIVERS\kbdclass.sys F7FF2000 - \SystemRoot\system32\DRIVERS\SynTP.sys F8A3D000 - \SystemRoot\system32\DRIVERS\USBD.SYS F87DD000 - \SystemRoot\system32\DRIVERS\mouclass.sys F8625000 - \SystemRoot\System32\Drivers\WBMS.SYS F87E5000 - \SystemRoot\System32\Drivers\WBSD.SYS F8635000 - \SystemRoot\system32\DRIVERS\imapi.sys F87ED000 - \SystemRoot\system32\drivers\Afc.sys F87F5000 - \SystemRoot\system32\drivers\pfc.sys F8645000 - \SystemRoot\system32\DRIVERS\cdrom.sys F8655000 - \SystemRoot\system32\DRIVERS\redbook.sys F7FCF000 - \SystemRoot\system32\DRIVERS\ks.sys F87FD000 - \SystemRoot\System32\Drivers\GEARAspiWDM.sys F7FA0000 - \SystemRoot\system32\DRIVERS\HSFHWSIS.sys F7EA1000 - \SystemRoot\system32\DRIVERS\HSF_DP.sys F7DFB000 - \SystemRoot\system32\DRIVERS\HSF_CNXT.sys F8805000 - \SystemRoot\System32\Drivers\Modem.SYS F7D8C000 - \SystemRoot\system32\drivers\ALCXWDM.SYS F7D68000 - \SystemRoot\system32\drivers\portcls.sys F8665000 - \SystemRoot\system32\drivers\drmk.sys F7D05000 - \SystemRoot\system32\drivers\ALCXSENS.SYS F880D000 - \SystemRoot\system32\DRIVERS\usbohci.sys F7CE2000 - \SystemRoot\system32\DRIVERS\USBPORT.SYS F8815000 - \SystemRoot\system32\DRIVERS\usbehci.sys F881D000 - \SystemRoot\system32\DRIVERS\sisnic.sys F7CA1000 - \SystemRoot\system32\DRIVERS\bcmwl5.sys F818B000 - \SystemRoot\system32\DRIVERS\audstub.sys F8825000 - \SystemRoot\system32\DRIVERS\rasirda.sys F882D000 - \SystemRoot\system32\DRIVERS\TDI.SYS F8675000 - \SystemRoot\system32\DRIVERS\rasl2tp.sys F89DD000 - \SystemRoot\system32\DRIVERS\ndistapi.sys F7BEA000 - \SystemRoot\system32\DRIVERS\ndiswan.sys F8685000 - \SystemRoot\system32\DRIVERS\raspppoe.sys F8695000 - \SystemRoot\system32\DRIVERS\raspptp.sys F7BD9000 - \SystemRoot\system32\DRIVERS\psched.sys F86A5000 - \SystemRoot\system32\DRIVERS\msgpc.sys F8835000 - \SystemRoot\system32\DRIVERS\ptilink.sys F883D000 - \SystemRoot\system32\DRIVERS\raspti.sys F86B5000 - \SystemRoot\System32\Drivers\pcouffin.sys F86C5000 - \SystemRoot\system32\DRIVERS\termdd.sys F8A3F000 - \SystemRoot\system32\DRIVERS\swenum.sys F7B80000 - \SystemRoot\system32\DRIVERS\update.sys F89E1000 - \SystemRoot\system32\DRIVERS\mssmbios.sys F86D5000 - \SystemRoot\System32\Drivers\NDProxy.SYS F8715000 - \SystemRoot\system32\DRIVERS\usbhub.sys F8A43000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS F8169000 - \SystemRoot\System32\Drivers\Null.SYS F8A45000 - \SystemRoot\System32\Drivers\Beep.SYS F885D000 - \SystemRoot\system32\DRIVERS\HIDPARSE.SYS F8865000 - \SystemRoot\System32\drivers\vga.sys F8A47000 - \SystemRoot\System32\Drivers\mnmdd.SYS F8A49000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys F886D000 - \SystemRoot\System32\Drivers\Msfs.SYS F8875000 - \SystemRoot\System32\Drivers\Npfs.SYS F8A1D000 - \SystemRoot\system32\DRIVERS\rasacd.sys EFA36000 - \SystemRoot\system32\DRIVERS\msfwhlpr.sys EFA23000 - \SystemRoot\system32\DRIVERS\ipsec.sys EF9CB000 - \SystemRoot\system32\DRIVERS\tcpip.sys F8725000 - \SystemRoot\System32\Drivers\aswTdi.SYS EF9A3000 - \SystemRoot\system32\DRIVERS\netbt.sys EF981000 - \SystemRoot\System32\drivers\afd.sys F8735000 - \SystemRoot\system32\DRIVERS\netbios.sys EF956000 - \SystemRoot\system32\DRIVERS\rdbss.sys EF8E7000 - \SystemRoot\system32\DRIVERS\mrxsmb.sys F8745000 - \SystemRoot\System32\Drivers\Fips.SYS EF8C6000 - \SystemRoot\system32\DRIVERS\ipnat.sys F8755000 - \SystemRoot\system32\DRIVERS\wanarp.sys F887D000 - \SystemRoot\System32\Drivers\Aavmker4.SYS F8775000 - \SystemRoot\System32\Drivers\LHidUsbK.Sys F8785000 - \SystemRoot\System32\Drivers\HIDCLASS.SYS F8885000 - \SystemRoot\system32\DRIVERS\LHidKE.Sys F838B000 - \SystemRoot\system32\DRIVERS\mouhid.sys EF88D000 - \SystemRoot\system32\DRIVERS\LMouKE.Sys F8795000 - \SystemRoot\System32\Drivers\Cdfs.SYS EF875000 - \SystemRoot\System32\Drivers\dump_atapi.sys F8A4B000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS BF800000 - \SystemRoot\System32\win32k.sys F7B74000 - \SystemRoot\System32\drivers\Dxapi.sys F888D000 - \SystemRoot\System32\watchdog.sys BF9C3000 - \SystemRoot\System32\drivers\dxg.sys F8356000 - \SystemRoot\System32\drivers\dxgthk.sys BF9D5000 - \SystemRoot\System32\ati2dvag.dll BFA0C000 - \SystemRoot\System32\ati2cqag.dll BFA44000 - \SystemRoot\System32\ati3duag.dll BFC45000 - \SystemRoot\System32\ativvaxx.dll EF62F000 - \SystemRoot\system32\DRIVERS\irda.sys EF76D000 - \SystemRoot\system32\DRIVERS\ndisuio.sys EF411000 - \SystemRoot\System32\Drivers\aswMon2.SYS EF26C000 - \SystemRoot\system32\drivers\wdmaud.sys EF4DF000 - \SystemRoot\system32\drivers\sysaudio.sys EF309000 - \SystemRoot\system32\DRIVERS\MpFilter.sys EF059000 - \SystemRoot\system32\DRIVERS\mrxdav.sys F889D000 - \SystemRoot\System32\drivers\aspi32.sys EF2C9000 - \SystemRoot\system32\DRIVERS\ipfltdrv.sys EF281000 - \SystemRoot\system32\DRIVERS\mdmxsdk.sys EEFF5000 - \SystemRoot\system32\DRIVERS\msfwdrv.sys EEFBD000 - \SystemRoot\system32\DRIVERS\tcpip6.sys EEF43000 - \SystemRoot\system32\DRIVERS\srv.sys EEDEF000 - \SystemRoot\System32\Drivers\aswRdr.SYS BFFA0000 - \SystemRoot\System32\ATMFD.DLL EE757000 - \SystemRoot\System32\Drivers\HTTP.sys EF055000 - \??\C:\WINDOWS\ATK0100\ASNDIS5.SYS F8ADD000 - \SystemRoot\System32\Drivers\hiber_WMILIB.SYS EE06E000 - \SystemRoot\system32\drivers\kmixer.sys F8B9B000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys Total number of drivers = 147 Liste des programmes installes a-squared Free 3.0 Ad-Aware SE Personal Adobe Acrobat 5.0 Adobe Download Manager 2.2 (Supprimer uniquement) Adobe Flash Player ActiveX Adobe Photoshop CS Adobe Shockwave Player Adobe SVG Viewer 3.0 allTunes ALZip Antidote Apple Mobile Device Support Apple Software Update Archiveur WinRAR ArcSoft Software Suite Assistant de connexion Windows Live Asus ChkMail ASUS Hotkey ASUS Live Update ASUS Probe V2.10 ASUS WLAN Card Utilities/Driver ATI - Utilitaire de désinstallation du logiciel ATI Control Panel ATI Display Driver ATK0100 ACPI UTILITY avast! Antivirus Avira UnErase Personal AviSynth 2.5 BitComet 0.70 Caculette W.W Premium 2.3 Evaluation Canon PIXMA iP2000 Canon Utilities Easy-PrintToolBox CCleaner (remove only) CDex extraction audio CEP - Color Enable Package Clickster ConvertXtoDVD 2.1.17.241 Crystal Player Free 1.85 DScaler 5 Mpeg Decoders DVD Ripper Platinum 4 DVD Shrink 3.2 DVDFab Platinum 3.1.1.0 Beta Ghosthunter release Easy-WebPrint EkiPack eMule FLV Player 1.3.3 Free Video to Mp3 Converter version 2.5 FTP Expert 3 HijackThis 2.0.2 ImgBurn 1.0.0.0 Fr Insert Emoticon Plugin InsertVideoJnr InterActual Player iPod for Windows 2006-03-23 iPod for Windows 2006-03-23 iTunes J2SE Runtime Environment 5.0 Update 9 Jasc Paint Shop Pro 8 Java 2 Runtime Environment, SE v1.4.2_11 Java 6 Update 2 Java SE Runtime Environment 6 Update 1 Joost 0.9.2 Kate's Video Converter 2.8.4 la version d'évaluation de Namo WebEdiotor 6 LegalSounds Music Downloader 1.4 Les Sims 2 Les Sims 2 Académie Les Sims 2 : La bonne affaire Les Sims™ 2 Animaux & Cie Les Sims™ 2 Au fil des saisons LightScribe 1.4.31.1 LiveReg (Symantec Corporation) Logitech Desktop Messenger Logitech QuickCam Logitech SetPoint Macromedia Fireworks 8 Mega Manager Mega Manager Messenger Plus! Live Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Hotfix (KB928366) Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office XP Professional with FrontPage Microsoft Protection Service Microsoft Windows Live OneCare Resources v1.6.2111.32 Microsoft Windows OneCare Live AntiSpyware and AntiVirus Microsoft Windows OneCare Live v1.5.1890.16 Idcrl Install Microsoft Windows OneCare Live v1.6.2111.32 Microsoft Word 2000 Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653) Mozilla Firefox (2.0.0.6) MSXML 4.0 SP2 (KB927978) MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 Parser and SDK Multitest Nero 7 Ultra Edition neroxml OpenSSL 0.9.6m Patch Windows Live Mail desktop PC Inspector File Recovery PCFriendly PeerTV 0.4 PhoneSystems.net 2.0 release 1105c PHOTOfunSTUDIO -viewer- Pochette Express 2 Power4 Gear V1.07 PowerDVD PX Engine QuickTime Ragnarok RealPlayer RocketDock 1.3.1 RSS Xpress 2.6.186 RSSOwl Screen Capture Plugin For Windows Live Writer (Beta) Security Update pour Microsoft .NET Framework 2.0 (KB928365) SiS 900 PCI Fast Ethernet Adapter Driver Smileys for Windows Live Writer SoftV92 Data Fax Modem with SmartCP Sony Ericsson Image Editor SopCast 1.0.1 Spybot - Search & Destroy 1.4 StuffPlug 3 Synaptics Pointing Device Driver TeLL me More Time Adjuster STANDARD 3.0 Total Video Converter 3.10 TVUPlayer 2.3.0.0 UDPixel_fr.exe Utilitaire d'enregistrement du connecteur Wi-Fi USB Nintendo VideoLAN VLC media player 0.8.4a VirtualDubMOD 1.5.10.2 b2540 Fr VSO Image Resizer 1.1.14 Web Media Player 0.62e WebCam for MSN Messenger WebFldrs XP Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool (KB892130) Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 7 Windows Live installer Windows Live Mail Windows Live Messenger Windows Live OneCare Windows Live OneCare safety scanner Windows Live Writer Windows Media Format Runtime WinZip Xilisoft DVD Ripper Platinum XviD 1.1 final uninstall Yahoo! Install Manager Yahoo! Widgets YouRipper Ziepod 0.99.1 Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E8C3-4C5B Répertoire de C:\Program Files 07/03/2006 14:26 <REP> . 07/03/2006 14:26 <REP> .. 07/03/2006 14:42 <REP> Adobe 13/03/2006 15:08 <REP> Ahead 10/10/2007 13:26 <REP> Alwil Software 28/09/2006 19:56 <REP> Apple Software Update 17/06/2007 16:22 <REP> ArcSoft 10/10/2007 14:50 <REP> a-squared Free 07/03/2006 14:43 <REP> Asus 07/03/2006 14:44 <REP> ATI Technologies 15/04/2007 23:16 <REP> Avira 18/06/2007 14:05 <REP> AviSynth 2.5 18/06/2007 14:04 <REP> BatchDPG 07/07/2006 19:06 <REP> BitComet 03/05/2006 14:11 <REP> calculette premium 22/09/2006 16:57 <REP> Canon 07/07/2006 18:28 <REP> CCleaner 10/09/2006 23:56 <REP> CDex_170b2 03/03/2007 14:04 <REP> Common Files 07/03/2006 14:32 <REP> ComPlus Applications 07/03/2006 14:28 <REP> CONEXANT 04/05/2006 14:48 <REP> Crystal Player 04/05/2006 08:20 <REP> CyberLink 08/05/2006 17:41 <REP> DIFX 24/09/2006 17:19 <REP> directx 10/09/2007 13:32 <REP> Druide 04/05/2006 11:16 <REP> DScaler5 20/04/2007 17:10 <REP> DVD Shrink 10/05/2007 14:55 <REP> DVDFab Platinum 3 07/08/2006 17:48 <REP> EA GAMES 23/06/2006 17:59 <REP> EkiPack 15/04/2007 16:04 <REP> ePrompter 16/03/2006 16:23 <REP> ESTsoft 08/04/2006 19:04 <REP> ffdshow 07/03/2006 14:26 <REP> Fichiers communs 10/09/2006 16:45 <REP> FLVPlayer 16/03/2006 17:18 <REP> Google 19/07/2007 14:32 <REP> Gravity 12/04/2007 18:59 <REP> iGraal 12/06/2007 10:28 <REP> ImTOO 15/04/2007 14:58 <REP> IncrediMail 26/06/2007 20:15 <REP> InterActual 07/03/2006 14:33 <REP> Internet Explorer 10/07/2006 17:51 <REP> iPod 11/09/2007 15:33 <REP> iTunes 16/03/2006 16:48 <REP> Jasc Software Inc 04/06/2006 18:06 <REP> Java 12/04/2007 17:21 <REP> Joost 24/09/2006 17:17 <REP> Logitech 23/09/2007 19:55 <REP> Macromedia 02/04/2007 19:26 <REP> Megaupload 07/03/2006 14:31 <REP> Messenger 06/12/2006 15:57 <REP> Messenger Plus! Live 11/09/2006 00:03 <REP> micronet-soft 12/04/2007 17:04 <REP> Microsoft ActiveSync 07/03/2006 14:35 <REP> microsoft frontpage 16/03/2006 16:14 <REP> Microsoft Office 08/10/2006 10:50 <REP> Microsoft Visual Studio 25/01/2007 23:52 <REP> Microsoft Windows OneCare Live 07/03/2006 14:33 <REP> Movie Maker 16/03/2006 17:24 <REP> Mozilla Firefox 15/04/2007 14:30 <REP> Mozilla Thunderbird 07/03/2006 14:31 <REP> MSN 07/03/2006 14:31 <REP> MSN Gaming Zone 08/05/2006 17:40 <REP> MSN Messenger 18/11/2006 11:14 <REP> MSXML 4.0 22/10/2006 16:47 <REP> Multitest 16/03/2006 16:55 <REP> Namo 20/04/2007 18:57 <REP> Nero 07/03/2006 14:33 <REP> NetMeeting 07/03/2006 14:31 <REP> Online Services 11/07/2006 16:00 <REP> OpenOffice.org 2.0 06/06/2006 23:31 <REP> OpiStat 07/03/2006 14:33 <REP> Outlook Express 17/06/2007 16:25 <REP> Panasonic 15/04/2007 22:55 <REP> PC Inspector File Recovery 11/07/2007 15:04 <REP> PCFriendly 24/11/2006 18:37 <REP> PeerTV 24/09/2006 22:49 <REP> PhoneSystems X-Lite 10/09/2007 17:32 <REP> Pochette Express 2 10/05/2007 22:29 <REP> QuickTime 03/09/2007 19:16 <REP> RapidHarvest 10/04/2006 11:12 <REP> Real 19/09/2007 16:24 <REP> RocketDock 03/06/2006 11:47 <REP> RSS Xpress 02/07/2007 11:15 <REP> ScottIsAFool 07/07/2007 15:58 <REP> Securitoo 12/09/2006 23:43 <REP> SendFile 07/03/2006 14:33 <REP> Services en ligne 07/03/2006 14:27 <REP> SiSLan 26/11/2006 19:58 <REP> Skype 12/09/2006 19:56 <REP> Sony Ericsson 24/11/2006 18:59 <REP> SopCast 07/07/2006 18:23 <REP> Spybot - Search & Destroy 18/03/2007 14:54 <REP> StuffPlug3 21/09/2006 19:35 <REP> Symantec 07/03/2006 14:45 <REP> Synaptics 04/05/2006 08:19 <REP> TerraTec 23/09/2006 11:09 <REP> TimeAdjuster 30/05/2007 16:56 <REP> Total Video Converter 07/03/2006 14:46 <REP> Trend Micro 24/11/2006 18:21 <REP> TVUPlayer 05/07/2007 22:40 <REP> UDPixel 04/05/2006 14:49 <REP> VideoLAN 10/09/2006 16:54 <REP> VirtualDubMOD 16/03/2006 17:03 <REP> Visicom Media 29/04/2007 15:17 <REP> vso 01/03/2007 14:36 <REP> Web Media Player 03/06/2006 13:58 <REP> WebBulle 08/12/2006 10:59 <REP> WiFiConnector 31/05/2007 10:24 <REP> Windows Live 24/03/2007 19:51 <REP> Windows Live Mail desktop 08/01/2007 16:37 <REP> Windows Live Safety Center 31/05/2007 10:32 <REP> Windows Live Writer 07/03/2006 14:31 <REP> Windows Media Player 07/03/2006 14:31 <REP> Windows NT 04/05/2006 23:08 <REP> WinFast 27/09/2006 13:31 <REP> WinRAR 27/09/2006 13:29 <REP> WinZip 03/04/2006 11:03 <REP> WLAN 07/03/2006 14:35 <REP> xerox 22/07/2006 17:04 <REP> XnView 20/04/2007 16:19 <REP> XviD 01/07/2007 10:53 <REP> Yahoo! 14/06/2006 10:43 <REP> Ziepod 0 fichier(s) 0 octets 125 Rép(s) 5 778 866 176 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E8C3-4C5B Répertoire de C:\Program Files\fichiers communs 07/03/2006 14:26 <REP> . 07/03/2006 14:26 <REP> .. 07/03/2006 14:26 <REP> Microsoft Shared 07/03/2006 14:26 <REP> SpeechEngines 07/03/2006 14:26 <REP> ODBC 07/03/2006 14:33 <REP> System 07/03/2006 14:33 <REP> MSSoap 07/03/2006 14:33 <REP> Services 07/03/2006 14:42 <REP> Adobe 07/03/2006 14:44 <REP> InstallShield 13/03/2006 15:11 <REP> LightScribe 13/03/2006 15:25 <REP> Nero 16/03/2006 16:15 <REP> Designer 16/03/2006 16:27 <REP> Adobe Systems Shared 10/04/2006 11:12 <REP> Real 10/04/2006 11:12 <REP> xing shared 04/05/2006 09:05 <REP> TerraTec 04/05/2006 23:08 <REP> Ulead Systems 04/06/2006 18:04 <REP> Java 12/09/2006 19:56 <REP> Teleca Shared 21/09/2006 19:35 <REP> Symantec Shared 24/09/2006 17:19 <REP> Logitech 21/11/2006 20:45 <REP> Wise Installation Wizard 17/06/2007 16:24 <REP> ArcSoft 30/06/2007 09:29 <REP> Apple 02/09/2007 23:41 <REP> Ahead 23/09/2007 19:55 <REP> Macromedia 0 fichier(s) 0 octets 27 Rép(s) 5 778 866 176 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E8C3-4C5B Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 07/03/2006 14:48 <REP> . 07/03/2006 14:48 <REP> .. 07/03/2001 07:00 127 033 MSOWS40c.DLL 03/06/1999 12:09 122 937 MSOWS409.DLL 18/03/1999 05:37 593 977 RAGENT.DLL 13/02/2001 00:23 58 784 MSOSV.DLL 12/04/2007 17:03 <REP> 1033 06/08/2000 09:04 401 462 MSVCP60.DLL 22/01/2001 03:25 40 960 PKMTEMPL.DLL 13/04/2007 18:41 0 VAIMEM(2).DLL 13/04/2007 18:41 0 VAIDDMGR(2).DLL 13/04/2007 18:41 0 SECMGR(2).DLL 13/04/2007 18:41 0 PROMDEMO(2).DLL 13/04/2007 18:41 0 PKMTRACE(2).DLL 13/04/2007 18:41 0 PKMFORMS(2).DLL 13/04/2007 18:41 0 PKMCORE(2).DLL 13/04/2007 18:41 0 PKMCDO(2).DLL 13/04/2007 18:41 0 PKMAXCTL(2).DLL 13/04/2007 18:41 0 MSONSEXT(2).DLL 13/04/2007 18:41 0 PKMSSTLB(2).DLL 13/04/2007 18:41 0 PKMRES(2).DLL 13/04/2007 18:41 0 PKMWS(2).DLL 29/01/2004 16:08 86 016 PKMWS.DLL 29/01/2004 16:08 622 592 PKMRES.DLL 29/01/2004 16:08 28 672 PKMSSTLB.DLL 29/01/2004 16:08 1 277 952 MSONSEXT.DLL 29/01/2004 16:08 69 632 PKMAXCTL.DLL 29/01/2004 16:08 868 352 PKMCDO.DLL 29/01/2004 16:08 53 248 PKMCORE.DLL 29/01/2004 16:08 102 400 PKMFORMS.DLL 29/01/2004 16:08 24 576 PKMTRACE.DLL 29/01/2004 16:08 237 568 PROMDEMO.DLL 29/01/2004 16:08 184 320 SECMGR.DLL 29/01/2004 16:08 315 392 VAIDDMGR.DLL 29/01/2004 16:08 32 768 VAIMEM.DLL 32 fichier(s) 5 248 641 octets 3 Rép(s) 5 778 866 176 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E8C3-4C5B Répertoire de C:\Program Files\common files 03/03/2007 14:04 <REP> . 03/03/2007 14:04 <REP> .. 03/03/2007 14:04 <REP> EasyInfo 0 fichier(s) 0 octets 3 Rép(s) 5 778 866 176 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E8C3-4C5B Répertoire de C:\ 09/07/2007 11:24 40 960 HTGD0003.exe 09/07/2007 11:24 36 864 HTGD0005.exe 2 fichier(s) 77 824 octets 0 Rép(s) 5 778 866 176 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E8C3-4C5B Répertoire de C:\ c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 7.4.1.2\iTunesSetupAdmin.exe c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2712_symnet$20consumer_4.7.0_english\DlayUpdt.exe c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2712_symnet$20consumer_4.7.0_english\Message.exe c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2717_symnet$20consumer_5.4.4_english\DlayUpdt.exe c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem2717_symnet$20consumer_5.4.4_english\Message.exe c:\Documents and Settings\asus\Bureau\DiagHelp\catchme.exe c:\Documents and Settings\asus\Bureau\DiagHelp\diff.exe c:\Documents and Settings\asus\Bureau\DiagHelp\dumphive.exe c:\Documents and Settings\asus\Bureau\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\asus\Bureau\DiagHelp\find2.exe c:\Documents and Settings\asus\Bureau\DiagHelp\Fport.exe c:\Documents and Settings\asus\Bureau\DiagHelp\grep.exe c:\Documents and Settings\asus\Bureau\DiagHelp\KProcCheck.exe c:\Documents and Settings\asus\Bureau\DiagHelp\LFiles.exe c:\Documents and Settings\asus\Bureau\DiagHelp\LISTDLLS.exe c:\Documents and Settings\asus\Bureau\DiagHelp\md5sums.exe c:\Documents and Settings\asus\Bureau\DiagHelp\pslist.exe c:\Documents and Settings\asus\Bureau\DiagHelp\streams.exe c:\Documents and Settings\asus\Bureau\DiagHelp\swreg.exe c:\Documents and Settings\asus\Bureau\Bazar\les_sims_2_au_fil_des_saisons_patch_v1.7.0.157_multi-langues_38326.exe c:\Documents and Settings\asus\Bureau\Bazar\liveboxtelnet_install.exe c:\Documents and Settings\asus\Bureau\Bazar\moonshell-1.5\CreateThumbnail.exe c:\Documents and Settings\asus\Bureau\Bazar\moonshell-1.5\Setup.exe c:\Documents and Settings\asus\Bureau\Bazar\moonshell-1.5\dpgtools12\dpgenc.exe c:\Documents and Settings\asus\Bureau\Bazar\moonshell-1.5\dpgtools12\dpginfo.exe c:\Documents and Settings\asus\Bureau\Bazar\moonshell-1.5\dpgtools12\dpgshow.exe c:\Documents and Settings\asus\Bureau\Bazar\moonshell-1.5\dpgtools12\dpgsplit.exe c:\Documents and Settings\asus\Bureau\Bazar\moonshell-1.5\dpgtools12\dpgencplugin\extractwave.exe c:\Documents and Settings\asus\Bureau\Bazar\moonshell-1.5\dpgtools12\dpgencplugin\ffmpeg.exe c:\Documents and Settings\asus\Bureau\Bazar\moonshell-1.5\dpgtools12\dpgencplugin\mencoder.exe c:\Documents and Settings\asus\Bureau\Bazar\moonshell-1.5\misc\ClockPlugin_CustomKit\CustomKit.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\ACDSee8-crack.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Avast 4 keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\avast keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\avg.7.0.keygen-efc87.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Battle Field Vietnam.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Clonecd4.0.0.1kg.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Counter-Strike CD Key Generator.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\dopewars_v2.2_keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\fff-ea103.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\hv-Max5-kg.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Nero.v.7.5.9 keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\NFS Underground.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Norton Anti-Virus 2004 Key Gen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Nvidia PureVideo keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\OperationFKeyGen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\PC Mark 2004 keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\PhotoshopCS3extKeygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\powerisokeygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\RTCW-KeyGen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Sims.all.addons-c98.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\SYMANTEC BACKUP EXEC 10d KEYGEN.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Tien Keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Tiger Woods PGA 2005 keygen.EXE c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\Tunebite Platinum keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\warcraft3 keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\Over 300 serials & keygens\over 300 serials & keygen\ZoneAlarm Pro - 6.5.700 KEYGEN.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\Avast 4 keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\avg.7.0.keygen-efc87.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\fff-ea103.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\hv-Max5-kg.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\KeyGen [ avast! Professional Edition 4.6.744 ].exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\MS Office 2007 Enterprise Keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\NFS Underground.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\Nvidia PureVideo keygen.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\SYMANTEC BACKUP EXEC 10d KEYGEN.exe c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\Tiger Woods PGA 2005 keygen.EXE c:\Documents and Settings\asus\Bureau\Bazar\Over 300 serials & keygens + 180 SERIALS, KEYS, KEYGENS & CRACKS\180 SERIALS, KEYS, KEYGENS & CRACKS\ZoneAlarm Pro - 6.5.700 KEYGEN.exe c:\Documents and Settings\asus\Bureau\Progs\antivir_workstation_win7u_en_h.exe c:\Documents and Settings\asus\Bureau\Progs\Himoney.exe c:\Documents and Settings\asus\Bureau\Progs\RI4M_v501d_setup.exe c:\Documents and Settings\asus\Bureau\Progs\youtube_videos\ffmpeg.exe c:\Documents and Settings\asus\Bureau\Progs\youtube_videos\VDownloader.exe c:\Documents and Settings\asus\Bureau\Progs\Trucs\AudioVideo_To_Exe(English).exe c:\Documents and Settings\asus\Bureau\Progs\Séries\hjsplit.exe c:\Documents and Settings\asus\Bureau\Progs\Séries\PocketDivXEncoder_0.3.60.exe c:\Documents and Settings\asus\Bureau\Progs\Séries\Xtremsplit.exe c:\Documents and Settings\asus\Bureau\Progs\Séries\FlvConverter\ffmpeg.exe c:\Documents and Settings\asus\Bureau\Progs\Séries\FlvConverter\FLV-CONVERTER.exe c:\Documents and Settings\asus\Bureau\Progs\Virus\GenProc\GenProc\outil\swreg.exe c:\Documents and Settings\asus\Bureau\Lecteurs\PouchinTv\PouchinTV.exe c:\Documents and Settings\asus\Application Data\KeySafe\KeySafe.exe c:\Documents and Settings\asus\Application Data\SopCast\adv\SopAdver.exe c:\Documents and Settings\asus\.bb\final\updates\blogbridge-5.0.exe c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll c:\Documents and Settings\All Users\Application Data\Microsoft\OneCare Protection\Definition Updates\Backup\mpengine.dll c:\Documents and Settings\All Users\Application Data\Microsoft\OneCare Protection\Definition Updates\Default\MpEngine.dll c:\Documents and Settings\All Users\Application Data\Microsoft\OneCare Protection\Definition Updates\{1EA91F85-0597-47E4-B579-B068BFB14349}\mpengine.dll c:\Documents and Settings\All Users\Application Data\Nero\DrWeb\Drweb32.dll c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll c:\Documents and Settings\asus\Application Data\Microsoft\IdentityCRL\Production\ppcrlconfig.dll c:\Documents and Settings\asus\Application Data\Microsoft\IdentityCRL\Production\ppcrlui.dll c:\Documents and Settings\asus\Application Data\Mozilla\Firefox\Profiles\k5xnivsw.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}\plugins\npietab.dll c:\Documents and Settings\asus\Application Data\Mozilla\Firefox\Profiles\k5xnivsw.default\extensions\{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}\components\FoxyTunes.dll ****** Fin du rapport DiagHelp

merci beaucoup. Le rapport HiJack (j'ai toujours les 2 antivirus mais je vais les enlever pour antivir.) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:24:51, on 11/10/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16544) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\a-squared Free\a2service.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe C:\Program Files\Microsoft Windows OneCare Live\winss.exe C:\WINDOWS\ATK0100\Hcontrol.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe C:\Progra~1\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe C:\Program Files\iTunes\iTunesHelper.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe C:\Program Files\RocketDock\RocketDock.exe C:\Program Files\Asus\ASUS Hotkey\Hotkey.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe C:\WINDOWS\ATK0100\ATKOSD.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Windows Live\Mail\wlmail.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\hijackthis\aliaslilith.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.imedias.biz/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.asus.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Ziepod One-Click IE Helper - {57A30D1E-08B9-4EF4-B273-AAEA1C234A5B} - C:\WINDOWS\system32\ZiepodOneClicker.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O4 - HKLM\..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1 O4 - HKLM\..\Run: [ATIPTA] C:\Progra~1\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKLM\..\Run: [OneCareUI] "C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [XSC SIP Client] "C:\Program Files\PhoneSystems X-Lite\PhoneSystemsXLite.exe" O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Antidote\Gestionnaire Antidote.exe O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Hotkey.lnk = C:\Program Files\Asus\ASUS Hotkey\Hotkey.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/clien...1.0/Rawflow.cab O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://mm.tf1.fr/superdistribution/installer2.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.safety.live.com/resource/d...lscbase8460.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {A922B6AB-3B87-11D3-B3C2-0008C7DA6CB9} (InetDownload Class) - https://media.pineconeresearch.com/ActiveX/...loadcontrol.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.pixdiscount.net/clients/uploader_v2.2.0.6.cab O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFna...acComposant.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{8EEE9190-E3B4-4944-A10C-023FF20EAB2C}: NameServer = 194.117.200.10,194.117.200.15 O17 - HKLM\System\CCS\Services\Tcpip\..\{BA379DAE-9801-4195-B9C4-D5A94BD5DD0A}: NameServer = 194.117.200.10,194.117.200.15 O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- End of file - 11935 bytes Le 2e rapport suit.

Bonjour, j'ai suivi toutes les étapes de votre tuto et je viens poster mon rapport pour savoir si tout est clean ou pas sur ma machine. J'étais infestée par win32/conhook.B et ce dernier faisait buger mon antivirus (windows live one care), j'en avais donc installé un second pour voir (avast) mais ce dernier ne le voyait pas. Bref, voilà le rapport et merci pour votre aide : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:42:35, on 11/10/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16544) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\a-squared Free\a2service.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe C:\Program Files\Microsoft Windows OneCare Live\winss.exe C:\WINDOWS\ATK0100\Hcontrol.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe C:\Progra~1\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\iTunes\iTunesHelper.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe C:\Program Files\RocketDock\RocketDock.exe C:\Program Files\Asus\ASUS Hotkey\Hotkey.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe C:\WINDOWS\ATK0100\ATKOSD.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\Program Files\iPod\bin\iPodService.exe C:\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.imedias.biz/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.asus.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Ziepod One-Click IE Helper - {57A30D1E-08B9-4EF4-B273-AAEA1C234A5B} - C:\WINDOWS\system32\ZiepodOneClicker.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll O4 - HKLM\..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1 O4 - HKLM\..\Run: [ATIPTA] C:\Progra~1\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKLM\..\Run: [OneCareUI] "C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [XSC SIP Client] "C:\Program Files\PhoneSystems X-Lite\PhoneSystemsXLite.exe" O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Antidote\Gestionnaire Antidote.exe O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Hotkey.lnk = C:\Program Files\Asus\ASUS Hotkey\Hotkey.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/clien...1.0/Rawflow.cab O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://mm.tf1.fr/superdistribution/installer2.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.safety.live.com/resource/d...lscbase8460.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {A922B6AB-3B87-11D3-B3C2-0008C7DA6CB9} (InetDownload Class) - https://media.pineconeresearch.com/ActiveX/...loadcontrol.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.pixdiscount.net/clients/uploader_v2.2.0.6.cab O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFna...acComposant.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{8EEE9190-E3B4-4944-A10C-023FF20EAB2C}: NameServer = 194.117.200.10,194.117.200.15 O17 - HKLM\System\CCS\Services\Tcpip\..\{BA379DAE-9801-4195-B9C4-D5A94BD5DD0A}: NameServer = 194.117.200.10,194.117.200.15 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file) O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- End of file - 12108 bytes

Pour activer ou desactiver ? Parce que moi j'aimerais que tous mes appels RTC comme Voip passent par tous les téléphones... J'ai une box inventel. D'autre part, si par hasard je parviens à cela, si un jour la connexion internet et donc la voip merde, mon téléphone rtc fonctionnera t-il quand même normalement ?