Aller au contenu

Virginie64

Membres
  • Compteur de contenus

    19
  • Inscription

  • Dernière visite

Autres informations

  • Mes langues
    français anglais espagnol

Virginie64's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. Bonsoir appolo merci de ta réponse, jai résolu le problème pour les images ça veniat du pare feu qui les bloquait par contre les liens de redirection ne marchent toujours pas sauf si je maintien ctrl appuyé qu'en penses tu ? Merci a+ Virginie
  2. Bonjour appolo et thanos me voila de retour sur le forum. pensez vous qu'il reste des manips a effectuer? J'ai aussi un problème de liens qui ne veulent pas s'ouvrir lorsuqe je clique dessus sauf quand j'appuis sur Control. Certaines images ne s'affichent plus notamment sur des blogs ou autres pages. J'ai le firewall kerio et antivir comme antivirus, pensez vous que le preoblème peut venir d'eux ? Encore merci pour votre aide si précieuse
  3. Bonjour Voici le rapport dss il y avait aussi un complément vici donc les 2 fichiers + un rapport hijackthis. jai migré davast vers antivir, comment savoir sil ne reste pas des "morceaux" davast encore installés?? Merci Deckard's System Scanner v20071014.68 Run by Virginie on 2008-04-16 13:54:02 Computer is in Normal Mode. -------------------------------------------------------------------------------- -- System Restore -------------------------------------------------------------- Successfully created a Deckard's System Scanner Restore Point. -- Last 5 Restore Point(s) -- 5: 2008-04-16 11:54:09 UTC - RP239 - Deckard's System Scanner Restore Point 4: 2008-04-16 09:57:56 UTC - RP238 - Installed Windows Live 3: 2008-04-16 09:57:13 UTC - RP237 - Installé Windows Live installer 2: 2008-04-16 07:40:59 UTC - RP236 - Deckard's System Scanner Restore Point 1: 2008-04-16 07:36:34 UTC - RP235 - Point de vérification système Backed up registry hives. Performed disk cleanup. -- HijackThis (run as Virginie.exe) -------------------------------------------- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 13:58:17, on 16/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\ATKKBService.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\Program Files\Messenger\msmsgs.exe C:\Documents and Settings\Virginie\Local Settings\Temporary Internet Files\Content.IE5\HRQOGO38\dss[1].exe C:\WINDOWS\system32\wscntfy.exe C:\PROGRA~1\TRENDM~1\HIJACK~1\Virginie.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [adiras] adiras.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\RunServices: [Windows logging] asgasg.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe O4 - HKUS\S-1-5-18\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://encyclo.voila.fr/JS/tdserver.cab O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www4.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://selfcare.cegetel.net/templates/stat...FAutoConfig.ocx O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1168021268984 O16 - DPF: {68C1822F-F5C7-4404-A73F-03C10E0E94DA} (telechargement-photoweb) - http://www2.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1197809738562 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://213.180.245.36//activex/AMC.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.abdn.ac.uk/~wdu007/webcam/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Navigation étendue et définition (Connexion dictionnaire) - Friend ® - C:\WINDOWS\system32\Weather.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/Virginie/LOCALS~1/Temp/msoclip1/01/clip_image002.jpg -- End of file - 9546 bytes -- File Associations ----------------------------------------------------------- All associations okay. -- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------- R0 prohlp02 (StarForce Protection Helper Driver v2) - c:\windows\system32\drivers\prohlp02.sys <Not Verified; Protection Technology; StarForce Protection System> R0 prosync1 (StarForce Protection Synchronization Driver v1) - c:\windows\system32\drivers\prosync1.sys <Not Verified; Protection Technology; StarForce Protection System> R0 sfhlp01 (StarForce Protection Helper Driver) - c:\windows\system32\drivers\sfhlp01.sys <Not Verified; Protection Technology; StarForce Protection System> R1 Asapi - c:\windows\system32\drivers\asapi.sys <Not Verified; VOB Computersysteme GmbH; asapi> R1 asuskbnt (Enhanced Display Driver Helper Service) - c:\windows\system32\drivers\atkkbnt.sys <Not Verified; ASUSTeK COMPUTER INC.; ASUS Help driver For Keyboard Service.> R1 prodrv06 (StarForce Protection Environment Driver v6) - c:\windows\system32\drivers\prodrv06.sys <Not Verified; Protection Technology; StarForce Protection System> R2 EIO - c:\windows\system32\drivers\eio.sys <Not Verified; ASUSTeK Computer Inc.; ASUS Kernel Mode Driver for NT> R3 pfc (Padus ASPI Shell) - c:\windows\system32\drivers\pfc.sys <Not Verified; Padus, Inc.; Padus® ASPI Shell> S3 ATI Remote Wonder II - c:\windows\system32\drivers\atirwvd.sys (file missing) S3 bdfdll - c:\program files\softwin\bitdefender9\bdfdll.sys (file missing) S3 FETNDIS (Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet) - c:\windows\system32\drivers\fetnd5.sys (file missing) S3 jnv4_mib - c:\docume~1\virginie\locals~1\temp\jnv4_mib.sys (file missing) -- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled -------------------- R2 ATKKeyboardService (ATK Keyboard Service) - c:\windows\atkkbservice.exe <Not Verified; ASUSTeK COMPUTER INC.; ASUS Keyboard Service> S3 Connexion dictionnaire (Navigation étendue et définition) - c:\windows\system32\weather.exe <Not Verified; Friend ®; Friend Météo> -- Device Manager: Disabled ---------------------------------------------------- No disabled devices found. -- Files created between 2008-03-16 and 2008-04-16 ----------------------------- 2008-04-16 12:06:29 0 d-------- C:\Program Files\Microsoft SQL Server Compact Edition 2008-04-16 11:57:45 0 d--hs---- C:\Program Files\Fichiers communs\WindowsLiveInstaller 2008-04-16 11:57:22 0 d-------- C:\Program Files\Windows Live 2008-04-16 11:56:57 0 d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-04-16 09:57:39 686630 --a------ C:\dss.exe 2008-04-16 09:46:56 0 d--hs---- C:\FOUND.000 2008-04-15 16:58:35 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-04-15 16:58:33 0 d-------- C:\WINDOWS\system32\Kaspersky Lab 2008-04-15 16:12:36 0 d-------- C:\Program Files\Sunbelt Software 2008-04-15 09:13:43 0 d-------- C:\Documents and Settings\Virginie\Recent 2008-04-13 20:44:42 0 d-------- C:\Program Files\7-Zip 2008-04-13 19:37:00 0 d-------- C:\Documents and Settings\All Users\Application Data\WinZip 2008-04-13 15:37:42 0 d-------- C:\Program Files\Trend Micro 2008-04-11 15:45:53 0 dr-h----- C:\Documents and Settings\Virginie\Application Data\SecuROM 2008-04-11 00:40:21 0 d-------- C:\Documents and Settings\All Users\Application Data\TEMP 2008-04-10 17:46:32 0 d-------- C:\Program Files\Lavasoft 2008-04-10 17:46:29 0 d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-03-30 18:15:52 0 d-------- C:\Documents and Settings\Virginie\Application Data\2waitsoap -- Find3M Report --------------------------------------------------------------- 2008-04-10 22:40:00 448180 --a------ C:\WINDOWS\system32\perfh00C.dat 2008-04-10 22:40:00 65422 --a------ C:\WINDOWS\system32\perfc00C.dat 2008-02-17 22:37:52 0 d-------- C:\Documents and Settings\Virginie\Application Data\skypePM -- Registry Dump --------------------------------------------------------------- *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [27/07/2004 21:10] "SiSUSBRG"="C:\WINDOWS\SiSUSBrg.exe" [12/07/2002 11:15] "adiras"="adiras.exe" [] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [29/03/2008 19:37] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [18/12/2005 19:09] "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [27/04/2006 10:13] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [07/12/2007 15:21] "Burn Browse"="C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe" [30/03/2008 18:15] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices] "Windows logging"=asgasg.exe [HKEY_USERS\.default\software\microsoft\windows\currentversion\run] "Burn Browse"=C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [19/02/2006 04:21:22] D‚marrage rapide de HP Photosmart Premier.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe [10/02/2006 07:56:20] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] @="Volume shadow copy" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\adiras] adiras.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft media services] winmplayer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vspdfprsrv.exe] C:\Program Files\Visage\PDF Printer\vspdfprsrv.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows AdControl] C:\Program Files\Windows AdControl\WinAdCtl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows debug logging] winlogg.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows logging] asgasg.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1bbfea82-b30d-11dc-b843-4d6564696130}] AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe Open(&0)\command- F:\Recycled\ctfmon.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{33feafb8-a498-11db-b4de-4d6564696130}] AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe Open(&0)\command- G:\Recycled\ctfmon.exe -- End of Deckard's System Scanner: finished at 2008-04-16 14:01:00 ------------ Deckard's System Scanner v20071014.68 Extra logfile - please post this as an attachment with your post. -------------------------------------------------------------------------------- -- System Information ---------------------------------------------------------- Microsoft Windows XP Édition familiale (build 2600) SP 2.0 Architecture: X86; Language: French CPU 0: AMD Athlon XP Percentage of Memory in Use: 61% Physical Memory (total/avail): 511.48 MiB / 194.71 MiB Pagefile Memory (total/avail): 1247.7 MiB / 920.66 MiB Virtual Memory (total/avail): 2047.88 MiB / 1934.77 MiB A: is Removable (No Media) C: is Fixed (FAT32) - 73.14 GiB total, 38.86 GiB free. D: is CDROM (No Media) E: is CDROM (No Media) \\.\PHYSICALDRIVE0 - Maxtor 6Y080L0 - 73.16 GiB - 1 partition \PARTITION0 (bootable) - Unknown - 73.16 GiB - C: -- Security Center ------------------------------------------------------------- AUOptions is scheduled to auto-install. Windows Internal Firewall is disabled. FirstRunDisabled is set. FW: Sunbelt Personal Firewall v4.5.916 T (Sunbelt) AV: avast! antivirus 4.8.1169 [VPS 080416-0] v4.8.1169 (ALWIL Software) Disabled [HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" [HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\WINDOWS\\System32\\winmplayer.exe"="C:\\WINDOWS\\System32\\winmplayer.exe:*:Enabled:winmplayer" "C:\\asgasg.exe"="C:\\asgasg.exe:*:Disabled:asgasg" "C:\\WINDOWS\\System32\\winlogd.exe"="C:\\WINDOWS\\System32\\winlogd.exe:*:Disabled:winlogd" "C:\\Program Files\\Real\\RealPlayer\\realplay.exe"="C:\\Program Files\\Real\\RealPlayer\\realplay.exe:*:Enabled:RealPlayer" "C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"="C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE:*:Enabled:Internet Explorer" "C:\\WINDOWS\\System32\\P2P Networking\\P2P Networking.exe"="C:\\WINDOWS\\System32\\P2P Networking\\P2P Networking.exe:*:Enabled:P2P Networking" "C:\\Program Files\\Kazaa\\kazaa.exe"="C:\\Program Files\\Kazaa\\kazaa.exe:*:Enabled:Kazaa Media Desktop" "C:\\Program Files\\Messenger\\MSMSGS.EXE"="C:\\Program Files\\Messenger\\MSMSGS.EXE:*:Enabled:Windows Messenger" "C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Disabled:eMule" "C:\\StubInstaller.exe"="C:\\StubInstaller.exe:*:Enabled:LimeWire swarmed installer" "C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire" "C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\KONAMI\\Pro Evolution Soccer 6\\PES6.exe"="C:\\Program Files\\KONAMI\\Pro Evolution Soccer 6\\PES6.exe:*:Disabled:pes6.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe:*:Enabled:hpofxm08.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe:*:Enabled:hposfx08.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe:*:Enabled:hpqscnvw.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe:*:Enabled:hpqcopy.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe:*:Enabled:hpfccopy.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe:*:Enabled:hpzwiz01.exe" "C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe:*:Enabled:hpqphunl.exe" "C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe:*:Enabled:hpqdia.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe" "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe:*:Enabled:hpqnrs08.exe" "C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype" "C:\\Program Files\\KONAMI\\Pro Evolution Soccer 2008\\PES2008.exe"="C:\\Program Files\\KONAMI\\Pro Evolution Soccer 2008\\PES2008.exe:*:Enabled:Pro Evolution Soccer 2008" "C:\\Program Files\\Sunbelt Software\\Personal Firewall\\kpf4gui.exe"="C:\\Program Files\\Sunbelt Software\\Personal Firewall\\kpf4gui.exe:*:Enabled:Sunbelt Firewall GUI" "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" -- Environment Variables ------------------------------------------------------- ALLUSERSPROFILE=C:\Documents and Settings\All Users APPDATA=C:\Documents and Settings\Virginie\Application Data CLASSPATH=C:\Program Files\QuickTime\QTSystem\QTJava.zip CLIENTNAME=Console CommonProgramFiles=C:\Program Files\Fichiers communs COMPUTERNAME=NOM-RJTNH3LDE8I ComSpec=C:\WINDOWS\system32\cmd.exe FP_NO_HOST_CHECK=NO HOMEDRIVE=C: HOMEPATH=\Documents and Settings\Virginie LOGONSERVER=\\NOM-RJTNH3LDE8I NUMBER_OF_PROCESSORS=1 OS=Windows_NT Path=C:\Program Files\Internet Explorer;;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\system32\WBEM;C:\Program Files\Fichiers communs\Roxio Shared\DLLShared;C:\Program Files\Fichiers communs\Roxio Shared\DLLShared\;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\ATI Technologies\ATI Control Panel PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH PROCESSOR_ARCHITECTURE=x86 PROCESSOR_IDENTIFIER=x86 Family 6 Model 6 Stepping 2, AuthenticAMD PROCESSOR_LEVEL=6 PROCESSOR_REVISION=0602 ProgramFiles=C:\Program Files PROMPT=$P$G PS5ROOT=C:\Program Files\Roxio\PhotoSuite\ QTJAVA=C:\Program Files\QuickTime\QTSystem\QTJava.zip SESSIONNAME=Console SystemDrive=C: SystemRoot=C:\WINDOWS TEMP=C:\DOCUME~1\Virginie\LOCALS~1\Temp TMP=C:\DOCUME~1\Virginie\LOCALS~1\Temp USERDOMAIN=NOM-RJTNH3LDE8I USERNAME=Virginie USERPROFILE=C:\Documents and Settings\Virginie VeriSign=C:\Program Files\VeriSign VeriSignTemp=C:\Program Files\VeriSign\Temp VRSN=C:\Program Files\VeriSign VRSNTemp=C:\Program Files\VeriSign\Temp windir=C:\WINDOWS -- User Profiles --------------------------------------------------------------- Virginie (admin) -- Add/Remove Programs --------------------------------------------------------- --> C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 --> C:\Program Files\Weflirt/uninstall.exe --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{82F248C6-D392-11D5-9EA2-0050BAE317E1}\setup.exe" -uninst --> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf 7-Zip 4.57 --> "C:\Program Files\7-Zip\Uninstall.exe" ACDSee for PENTAX --> MsiExec.exe /I{059D06EE-8C0B-4D18-964F-E0EE9B16297C} Adobe Acrobat 5.0 --> C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll" Adobe Download Manager 1.2 (Supprimer uniquement) --> "C:\Program Files\Fichiers communs\Adobe\ESD\uninst.exe" Adobe Flash Player 9 ActiveX --> C:\WINDOWS\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock Adobe Reader 8.1.2 - Français --> MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003} Archiveur WinRAR --> C:\Program Files\WinRAR\uninstall.exe Assistant de connexion Windows Live --> MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986} ASUS Enhanced Display Driver --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{315ACD04-BCEB-478B-9B1D-5431D0E6CB11}\setup.exe" -l0x40c ASUS nVIDIA Driver --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{3C3B2C97-0DAB-482F-9C95-6610827210E3} /l1036 ATI - Utilitaire de désinstallation du logiciel --> C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe ATI Control Panel --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe" ATI Display Driver --> rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean ATI Multimedia Center 8.7.0.0 --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{893306B3-C1B7-4CF0-A3F5-20C7047D6A08} /l1036 ATI RADEON 9800 Caves Screen Saver v1.1 --> MsiExec.exe /X{7323EFB7-865D-4E3C-8F6E-89C7F902DBE5} ATI RADEON 9800 Gargoyle Screen Saver v1.1 --> MsiExec.exe /X{C2F2543F-55B7-4F7B-93BB-BE8C405384B8} avast! Antivirus --> C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup AXIS Media Control --> rundll32 "C:\Program Files\Axis Communications\AXIS Media Control\AxisMediaControl.dll",UninstallMe C-Media 3D Audio --> C:\WINDOWS\CMIUnInstall.exe Correctif Windows XP - KB873339 --> C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe Correctif Windows XP - KB885835 --> C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe Correctif Windows XP - KB885836 --> C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe Correctif Windows XP - KB886185 --> C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe Correctif Windows XP - KB888302 --> C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe Correctif Windows XP - KB890859 --> "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe" Correctif Windows XP - KB891781 --> C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe DivX --> C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC DivX Player --> C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER Easy CD & DVD Creator 6 --> MsiExec.exe /I{46DDF76F-ACD4-42BC-B48F-B89C4EE2E1A9} FIFA 2003 --> C:\Program Files\EA SPORTS\FIFA 2003\EAUninstall.exe Galerie de photos Windows Live --> MsiExec.exe /X{9D442283-88AD-4F49-8568-18CE6EAA15AF} GIMP 2.4.2 --> "C:\Program Files\GIMP-2.0\setup\unins000.exe" Google Toolbar for Internet Explorer --> MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29} Google Toolbar for Internet Explorer --> regsvr32 /u /s "c:\program files\google\googletoolbar2.dll" HijackThis 2.0.2 --> "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall HP Customer Participation Program 7.0 --> C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat HP Document Viewer 7.0 --> C:\Program Files\HP\Digital Imaging\DocumentViewer\hpzscr01.exe -datfile hpqbud04.dat HP Imaging Device Functions 7.0 --> C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat HP Photosmart Premier Software 6.5 --> C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat HP Photosmart, Officejet and Deskjet 7.0.A --> C:\Program Files\HP\Digital Imaging\{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}\setup\hpzscr01.exe -datfile hposcr11.dat HP Software Update --> MsiExec.exe /X{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E} HP Solution Center 7.0 --> C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat Internet Wireless Devices --> rundll32.exe msvrl.dll,DllUnregister Java 6 Update 5 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050} Java SE Runtime Environment 6 Update 1 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010} Kaspersky Online Scanner --> C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavuninstall.exe L'Internet ADSL de Cegetel --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A16E2D86-7D92-48F4-9649-6029C96D4D8F}\Setup.exe" -l0x40c Logiciel QuickCam de Logitech --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c Logitech Desktop Messenger --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x40c UNINSTALL Logitech Print Service --> C:\PROGRA~1\LOGITECH\PRINTS~1\UNWISE.EXE C:\PROGRA~1\LOGITECH\PRINTS~1\INSTALL.LOG Lop S&D --> C:\Lop SD\Uninstal.exe Medi@Show --> C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\CyberLink\MediaShow\Uninst.isu" Microsoft Office 2000 Premium --> MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7} Microsoft SQL Server 2005 Compact Edition [ENU] --> MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} Microsoft Works 7.0 --> MsiExec.exe /I{64D114CE-4234-45C2-B60A-2B07D5A48F72} Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782) --> "C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB893756) --> "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB896358) --> "C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB896423) --> "C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB896424) --> "C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB896428) --> "C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB899587) --> "C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB899591) --> "C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB900725) --> "C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB901017) --> "C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB901190) --> "C:\WINDOWS\$NtUninstallKB901190$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB901214) --> "C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB902400) --> "C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB904706) --> "C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB905414) --> "C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB905749) --> "C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB908519) --> "C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB911562) --> "C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB911927) --> "C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB912919) --> "C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB913580) --> "C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB914388) --> "C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB914389) --> "C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB917344) --> "C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB917422) --> "C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB917953) --> "C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB918118) --> "C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB918439) --> "C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB919007) --> "C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB920213) --> "C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB920670) --> "C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB920683) --> "C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB920685) --> "C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB921398) --> "C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB921503) --> "C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB922616) --> "C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB922819) --> "C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923191) --> "C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923414) --> "C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923689) --> "C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923694) --> "C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923980) --> "C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB924191) --> "C:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB924270) --> "C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB924496) --> "C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB924667) --> "C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB925454) --> "C:\WINDOWS\$NtUninstallKB925454$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB925486) --> "C:\WINDOWS\$NtUninstallKB925486$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB925902) --> "C:\WINDOWS\$NtUninstallKB925902$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB926255) --> "C:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB926436) --> "C:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB927779) --> "C:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB927802) --> "C:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB928255) --> "C:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB928843) --> "C:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB929123) --> "C:\WINDOWS\$NtUninstallKB929123$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB930178) --> "C:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB931261) --> "C:\WINDOWS\$NtUninstallKB931261$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB931784) --> "C:\WINDOWS\$NtUninstallKB931784$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB932168) --> "C:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB933729) --> "C:\WINDOWS\$NtUninstallKB933729$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB935839) --> "C:\WINDOWS\$NtUninstallKB935839$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB935840) --> "C:\WINDOWS\$NtUninstallKB935840$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB936021) --> "C:\WINDOWS\$NtUninstallKB936021$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB938829) --> "C:\WINDOWS\$NtUninstallKB938829$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB941202) --> "C:\WINDOWS\$NtUninstallKB941202$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB941568) --> "C:\WINDOWS\$NtUninstallKB941568$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB941569) --> "C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB941644) --> "C:\WINDOWS\$NtUninstallKB941644$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB941693) --> "C:\WINDOWS\$NtUninstallKB941693$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB943055) --> "C:\WINDOWS\$NtUninstallKB943055$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB943460) --> "C:\WINDOWS\$NtUninstallKB943460$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB943485) --> "C:\WINDOWS\$NtUninstallKB943485$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB944653) --> "C:\WINDOWS\$NtUninstallKB944653$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB945553) --> "C:\WINDOWS\$NtUninstallKB945553$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB946026) --> "C:\WINDOWS\$NtUninstallKB946026$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB948590) --> "C:\WINDOWS\$NtUninstallKB948590$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB948881) --> "C:\WINDOWS\$NtUninstallKB948881$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB894391) --> "C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB900485) --> "C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB904942) --> "C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB908531) --> "C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB910437) --> "C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB911280) --> "C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB916595) --> "C:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB920872) --> "C:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB922582) --> "C:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB927891) --> "C:\WINDOWS\$NtUninstallKB927891$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB929338) --> "C:\WINDOWS\$NtUninstallKB929338$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB930916) --> "C:\WINDOWS\$NtUninstallKB930916$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB931836) --> "C:\WINDOWS\$NtUninstallKB931836$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB933360) --> "C:\WINDOWS\$NtUninstallKB933360$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB938828) --> "C:\WINDOWS\$NtUninstallKB938828$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB942763) --> "C:\WINDOWS\$NtUninstallKB942763$\spuninst\spuninst.exe" Network Play System (Patching) --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Electronic Arts\Network Play System\NPSPatch.isu" Neuf - Kit de connexion --> C:\Program Files\Neuf\Kit\uninstall.exe NVIDIA WDM Drivers --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B023185F-F1EF-4F97-B0BD-AE6D802226D1}\Setup.exe" OCR Software by I.R.I.S 7.0 --> C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat OpenOffice.org 2.2 --> MsiExec.exe /I{419805D6-75A0-4981-BC8F-9FF97EC6B03A} Picasa 2 --> "C:\Program Files\Picasa2\Uninstall.exe" PowerDirector Pro --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" -uninstall PowerDVD --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall PowerProducer --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\setup.exe" -uninstall Pro Evolution Soccer 2008 --> C:\Program Files\InstallShield Installation Information\{2FDFD600-7338-4738-90D5-FC4ACA08DC36}\setup.exe -runfromtemp -l0x040c Pro Evolution Soccer 5 --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{85C3FA3C-4832-4204-B21E-168E4920936A} /l1036 Pro Evolution Soccer 6 --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{EBB794ED-D282-4334-92FB-254481EFF514} /l1036 Programme de gestion Camera de Logitech® --> "C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT QuickTime --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083} /l1036 RealPlayer --> C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 Roxio PhotoSuite 5 --> MsiExec.exe /I{607CE53B-0999-4F3B-8FF1-DB1AA47548A8} Roxio VideoWave Movie Creator --> MsiExec.exe /I{BB46245B-CECA-406F-8790-3ABA0D01012F} SAGEM F@st 800-840 --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}\setup.exe" -l0x40c Samsung PC Studio 2.1 --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\8\INTEL3~1\IDriver.exe /M{D48C9BFC-FBCF-4F29-B97D-822ED6D497FE} /l1036 Search Plugin --> C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe -uninstall Shockwave --> C:\WINDOWS\system32\MACROMED\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\MACROMED\SHOCKW~1\Install.log SiS 900 PCI Fast Ethernet Adapter Driver --> C:\Progra~1\SiSLan\Uninst.exe Spelling Dictionaries Support For Adobe Reader 8 --> MsiExec.exe /I{AC76BA86-7AD7-5464-3428-800000000003} Sunbelt Personal Firewall --> MsiExec.exe /X{BFD080F6-3BF0-40E1-9507-9CA969C35870} VIA Audio Driver Setup Program --> RunDll32.exe UnAudioNT.dll,UninstallAudio C:\WINDOWS\IsUninst.exe -f"C:\PROGRA~1\VIATEC~1\VIAAUD~1/Uninst.isu" Visage eXPert PDF --> MsiExec.exe /X{155BCDDB-8756-4B1C-A25A-229E5DDBEA3E} Visionneuse Journal Windows Microsoft --> MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA7} Windows Imaging Component --> "C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe" Windows Live installer --> MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390} Windows Live Mail --> MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F} Windows Live Messenger --> MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65} Windows Live Writer --> MsiExec.exe /X{3DFF4274-EBB0-4356-9692-972965018954} Windows Media Encoder 9 Series --> msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} Windows Media Encoder 9 Series --> MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} WinZip 11.1 --> MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5} XnView Deluxe 1.75 --> C:\PROGRA~1\XNVIEW~2\UNWISE.EXE C:\PROGRA~1\XNVIEW~2\INSTALL.LOG -- Application Event Log ------------------------------------------------------- Event Record #/Type3408 / Error Event Submitted/Written: 03/17/2008 00:24:40 PM Event ID/Source: 11706 / MsiInstaller Event Description: Produit : Microsoft Office 2000 Premium -- Erreur 1706. Aucune source valide détectée pour le produit Microsoft Office 2000 Premium. Le programme d'installation de Windows ne peut pas continuer. Event Record #/Type3407 / Warning Event Submitted/Written: 03/17/2008 00:24:22 PM Event ID/Source: 1001 / MsiInstaller Event Description: Échec de détection du produit '{0000040C-78E1-11D2-B60F-006097C998E7}', fonctionnalité 'TCWP5Files' lors de la demande du composant '{093128DB-9662-11D2-900A-00805F9B1201}' -- Security Event Log ---------------------------------------------------------- No Errors/Warnings found. -- System Event Log ------------------------------------------------------------ No Errors/Warnings found. -- End of Deckard's System Scanner: finished at 2008-04-16 14:01:00 ------------ Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:09:43, on 16/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\savedump.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\ATKKBService.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [adiras] adiras.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\RunServices: [Windows logging] asgasg.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe O4 - HKUS\S-1-5-18\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://encyclo.voila.fr/JS/tdserver.cab O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www4.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://selfcare.cegetel.net/templates/stat...FAutoConfig.ocx O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1168021268984 O16 - DPF: {68C1822F-F5C7-4404-A73F-03C10E0E94DA} (telechargement-photoweb) - http://www2.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1197809738562 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://213.180.245.36//activex/AMC.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.abdn.ac.uk/~wdu007/webcam/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: Navigation étendue et définition (Connexion dictionnaire) - Friend ® - C:\WINDOWS\system32\Weather.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/Virginie/LOCALS~1/Temp/msoclip1/01/clip_image002.jpg -- End of file - 8788 bytes
  4. Bonjour J'ai fait ce que tu m'as dit pour la restauration mais j'ai pas testé si ça fonctionnait. Jai téléchargé la dernière version d'Hijack dont voici le rapport: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 09:40:01, on 16/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\ATKKBService.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\LVComsX.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [adiras] adiras.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\RunServices: [Windows logging] asgasg.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe O4 - HKUS\S-1-5-18\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://encyclo.voila.fr/JS/tdserver.cab O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www4.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://selfcare.cegetel.net/templates/stat...FAutoConfig.ocx O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1168021268984 O16 - DPF: {68C1822F-F5C7-4404-A73F-03C10E0E94DA} (telechargement-photoweb) - http://www2.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1197809738562 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://213.180.245.36//activex/AMC.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.abdn.ac.uk/~wdu007/webcam/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Navigation étendue et définition (Connexion dictionnaire) - Friend ® - C:\WINDOWS\system32\Weather.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/Virginie/LOCALS~1/Temp/msoclip1/01/clip_image002.jpg -- End of file - 8977 bytes
  5. Bonsoir J'ai bien envoyé les échantillons que tu me demandais thanos. Voici le scan de kapersky + un scan de hijackthis. En espérant que ça vous aide à déjouer les nouveaux virus. Virginie64 ------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER REPORT Tuesday, April 15, 2008 10:28:51 PM Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600) Kaspersky Online Scanner version: 5.0.98.0 Kaspersky Anti-Virus database last update: 15/04/2008 Kaspersky Anti-Virus database records: 707202 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: extended Scan Archives: true Scan Mail Bases: true Scan Target - My Computer: A:\ C:\ D:\ E:\ Scan Statistics: Total number of scanned objects: 90962 Number of viruses found: 1 Number of infected objects: 2 Number of suspicious objects: 0 Duration of the scan process: 02:28:34 Infected Object Name / Virus Name / Last Action C:\WINDOWS\system32\config\system.LOG Object is locked skipped C:\WINDOWS\system32\config\software.LOG Object is locked skipped C:\WINDOWS\system32\config\default.LOG Object is locked skipped C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\Internet.evt Object is locked skipped C:\WINDOWS\system32\config\DEFAULT Object is locked skipped C:\WINDOWS\system32\config\SECURITY Object is locked skipped C:\WINDOWS\system32\config\SOFTWARE Object is locked skipped C:\WINDOWS\system32\config\SYSTEM Object is locked skipped C:\WINDOWS\system32\config\SAM Object is locked skipped C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped C:\WINDOWS\system32\h323log.txt Object is locked skipped C:\WINDOWS\Temp\_avast4_\Webshlock.txt Object is locked skipped C:\WINDOWS\Temp\Perflib_Perfdata_564.dat Object is locked skipped C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped C:\WINDOWS\Sti_Trace.log Object is locked skipped C:\WINDOWS\wiaservc.log Object is locked skipped C:\WINDOWS\wiadebug.log Object is locked skipped C:\WINDOWS\SchedLgU.Txt Object is locked skipped C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped C:\WINDOWS\WindowsUpdate.log Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\drwtsn32.log Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped C:\Documents and Settings\Virginie\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Temp\hpodvd09.log Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Temp\~DF24DE.tmp Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Temp\~DF4E72.tmp Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Temp\~DF263E.tmp Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Temp\~DF409D.tmp Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Temp\~DF40BE.tmp Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Historique\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Historique\History.IE5\MSHist012008041520080416\index.dat Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\Microsoft\Windows Live Contacts\[email protected]\real\members.stg Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\Microsoft\Windows Live Contacts\[email protected]\shadow\members.stg Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\ApplicationHistory\hpqimzone.exe.3204510e.ini.inuse Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\CB_Server_Errors.txt Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\administrativeInfo.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\pathnameTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\pathnameTable.cdx Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\imageTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\imageTable.cdx Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\albumTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\albumTable.cdx Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\albumImagesTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\albumImagesTable.cdx Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\keywordTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\keywordTable.cdx Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\keywordImagesTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\keywordImagesTable.cdx Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\managedFolderTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\EXIFTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\EXIFTable.cdx Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\ROFTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\ROFTable.cdx Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\ROFImagesTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\ROFImagesTable.cdx Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\propertiesTable.dbf Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\propertiesTable.cdx Object is locked skipped C:\Documents and Settings\Virginie\Local Settings\Application Data\HP\Digital Imaging\db\imageTable.fpt Object is locked skipped C:\Documents and Settings\Virginie\Cookies\index.dat Object is locked skipped C:\Documents and Settings\Virginie\ntuser.dat Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\integ\avast.int Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\debug.log Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\debug.log.idx Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\error.log Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\error.log.idx Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\hips.log Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\hips.log.idx Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\ids.log Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\ids.log.idx Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\network.log Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\network.log.idx Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\system.log Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\system.log.idx Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\warning.log Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\warning.log.idx Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\web.log Object is locked skipped C:\Program Files\Sunbelt Software\Personal Firewall\logs\web.log.idx Object is locked skipped C:\System Volume Information\_restore{BACC32C6-C160-4EFA-ACBB-96E6458DC9E8}\RP222\A0103006.exe Infected: Trojan-Dropper.Win32.Agent.lxl skipped C:\System Volume Information\_restore{BACC32C6-C160-4EFA-ACBB-96E6458DC9E8}\RP229\A0103898.exe Infected: Trojan-Dropper.Win32.Agent.lxl skipped C:\System Volume Information\_restore{BACC32C6-C160-4EFA-ACBB-96E6458DC9E8}\RP234\change.log Object is locked skipped Scan process completed. Logfile of HijackThis v1.99.1 Scan saved at 22:31:20, on 15/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\ATKKBService.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\drwtsn32.exe C:\WINDOWS\system32\drwtsn32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\DOCUME~1\Virginie\LOCALS~1\Temp\7zO527A.tmp\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [adiras] adiras.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\RunServices: [Windows logging] asgasg.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://encyclo.voila.fr/JS/tdserver.cab O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www4.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://selfcare.cegetel.net/templates/stat...FAutoConfig.ocx O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1168021268984 O16 - DPF: {68C1822F-F5C7-4404-A73F-03C10E0E94DA} (telechargement-photoweb) - http://www2.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1197809738562 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://213.180.245.36//activex/AMC.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.abdn.ac.uk/~wdu007/webcam/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Navigation étendue et définition (Connexion dictionnaire) - Friend ® - C:\WINDOWS\system32\Weather.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
  6. ok appollo ca marche dis moi jai installé keri firewall mais je trouve mon ordi un peu lent puis avast a détecté un intrus juste apres linstallation mais je narrive pas a désistaller le parefeu peux tu me dire opurquoi il fait ca ? merci a+ tard jai envoyé les échantillons demandés par thanos je fais le scan kapersky et poste les rapports des que possible
  7. Bonjour Appolo Mille merci pour ta précieuse aide, jai fait les nettoyages demandé dans ton dernier post voici le rapport de tools cleaner. Je vais changer le pare feu des que jai un moment puis lantivirus aussi. Dis moi tu penses quil reste encore des trucs ? Le pc va bcp mieux vitesse normale et plus de fenetres intempestives !!! Merci a plus tard Virginie -->- Recherche: C:\Lop SD: trouvé ! C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé ! C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé ! C:\Documents and Settings\Virginie\Menu Démarrer\Programmes\Lop S&D: trouvé ! C:\Documents and Settings\Virginie\Bureau\HijackThis.lnk: trouvé ! C:\Documents and Settings\Virginie\Bureau\Lop S&D.lnk: trouvé ! C:\Documents and Settings\Virginie\Bureau\BtFix.zip: trouvé ! C:\Documents and Settings\Virginie\Bureau\Btfix: trouvé ! C:\Program Files\Trend Micro\HijackThis: trouvé ! C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé ! C:\Lop SD\Lop S&D.lnk: trouvé ! --------------------------------- -->- Suppression: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé ! C:\Documents and Settings\Virginie\Bureau\HijackThis.lnk: supprimé ! C:\Documents and Settings\Virginie\Bureau\Lop S&D.lnk: supprimé ! C:\Documents and Settings\Virginie\Bureau\BtFix.zip: supprimé ! C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé ! C:\Lop SD\Lop S&D.lnk: supprimé ! C:\Lop SD: supprimé ! C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé ! C:\Documents and Settings\Virginie\Menu Démarrer\Programmes\Lop S&D: supprimé ! C:\Documents and Settings\Virginie\Bureau\Btfix: supprimé ! C:\Program Files\Trend Micro\HijackThis: supprimé ! Point de restauration crée ! Corbeille vidée! Fichiers temporaires nettoyés !
  8. Bonsoir, As tu trouvé la soluce au dernier petit souci dont tu me parlais ce matin ?? Pour le firewall tu me conseilles quoi? Encore merci a plus tard Virginie
  9. Bonjour, J'ai repris les opérations ce matin, voici les résultats. Je n'utilise plus BitDefender depuis longtemps. Pour le firewall j'ai juste celui de windows, je suis preneuse de conseils s'il y a mieux et plus efficace. Pour l'antivirus je vais lire le lien que tu m'a envoyé. Encore merci Virginie Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:03:25, on 14/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\ATKKBService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\LVComsX.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [adiras] adiras.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\RunServices: [Windows logging] asgasg.exe O4 - HKLM\..\RunOnce: [MessengerPlusLiveUninstall] "C:\DOCUME~1\Virginie\LOCALS~1\Temp\MsgPlusUninstall.exe" /Cleanup O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe O4 - HKUS\S-1-5-18\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'Default user') O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\msvrl.dll O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://encyclo.voila.fr/JS/tdserver.cab O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www4.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://selfcare.cegetel.net/templates/stat...FAutoConfig.ocx O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1168021268984 O16 - DPF: {68C1822F-F5C7-4404-A73F-03C10E0E94DA} (telechargement-photoweb) - http://www2.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1197809738562 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://213.180.245.36//activex/AMC.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.abdn.ac.uk/~wdu007/webcam/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Navigation étendue et définition (Connexion dictionnaire) - Friend ® - C:\WINDOWS\system32\Weather.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 9279 bytes Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:03:25, on 14/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\ATKKBService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\LVComsX.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [adiras] adiras.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\RunServices: [Windows logging] asgasg.exe O4 - HKLM\..\RunOnce: [MessengerPlusLiveUninstall] "C:\DOCUME~1\Virginie\LOCALS~1\Temp\MsgPlusUninstall.exe" /Cleanup O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe O4 - HKUS\S-1-5-18\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'Default user') O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\msvrl.dll O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://encyclo.voila.fr/JS/tdserver.cab O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www4.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://selfcare.cegetel.net/templates/stat...FAutoConfig.ocx O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1168021268984 O16 - DPF: {68C1822F-F5C7-4404-A73F-03C10E0E94DA} (telechargement-photoweb) - http://www2.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1197809738562 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://213.180.245.36//activex/AMC.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.abdn.ac.uk/~wdu007/webcam/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Navigation étendue et définition (Connexion dictionnaire) - Friend ® - C:\WINDOWS\system32\Weather.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 9279 bytes
  10. Voila c'est fait voici le nouveau rapport Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 22:48:04, on 13/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\ATKKBService.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\WINDOWS\explorer.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [bDSwitchAgent] "C:\progra~1\softwin\bitdef~2\bdswitch.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [adiras] adiras.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\RunServices: [Windows logging] asgasg.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe O4 - HKUS\S-1-5-18\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe (User 'Default user') O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\msvrl.dll O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://encyclo.voila.fr/JS/tdserver.cab O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www4.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {1B3E3251-658E-4F03-8881-68302FE3CE9E} - http://www.friend.fr/friend/Friend2005-01.xms O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://selfcare.cegetel.net/templates/stat...FAutoConfig.ocx O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1168021268984 O16 - DPF: {68C1822F-F5C7-4404-A73F-03C10E0E94DA} (telechargement-photoweb) - http://www2.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1197809738562 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://213.180.245.36//activex/AMC.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.abdn.ac.uk/~wdu007/webcam/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab O18 - Protocol: bwn0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Navigation étendue et définition (Connexion dictionnaire) - Friend ® - C:\WINDOWS\system32\Weather.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 9709 bytes
  11. ok merci beaucoup beh la mieux il me semble, plus de fenêtre depuis que j'ai lancé le premier post sur le forum et moins lent aussi mais ca fait quelques heures quil est allumé je sais pas si ça a un rapport.
  12. Oups ... voici le rapport HiJaack This Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:45:58, on 13/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\ATKKBService.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\WINDOWS\explorer.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {31144E04-8130-7496-6E58-09844A85723F} - C:\DOCUME~1\Virginie\APPLIC~1\CAKESI~1\AIMSAVE.exe (file missing) O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing) O2 - BHO: (no name) - {6AD7BBA2-1CEE-70CE-3861-12628E50EAF3} - C:\DOCUME~1\Virginie\APPLIC~1\CAKESI~1\AIMSAVE.exe (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [bDSwitchAgent] "C:\progra~1\softwin\bitdef~2\bdswitch.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [adiras] adiras.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\RunServices: [Windows logging] asgasg.exe O4 - HKLM\..\RunServices: [Windows debug logging] winlogg.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [burn Browse] C:\DOCUME~1\Virginie\APPLIC~1\2WAITS~1\dent store 32.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user') O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\tv\EXPLBAR.DLL (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\msvrl.dll O15 - Trusted Zone: www.cum.fr O15 - Trusted Zone: http://bl127w.blu127.mail.live.com O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://encyclo.voila.fr/JS/tdserver.cab O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www4.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {1B3E3251-658E-4F03-8881-68302FE3CE9E} - http://www.friend.fr/friend/Friend2005-01.xms O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://selfcare.cegetel.net/templates/stat...FAutoConfig.ocx O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1168021268984 O16 - DPF: {68C1822F-F5C7-4404-A73F-03C10E0E94DA} (telechargement-photoweb) - http://www2.photoweb.fr/telechargement/Photoweb_uploader.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1197809738562 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://213.180.245.36//activex/AMC.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.abdn.ac.uk/~wdu007/webcam/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab O18 - Protocol: bw+0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {0B30BB5E-8616-45E3-9A37-A42E94EEFB3F} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Navigation étendue et définition (Connexion dictionnaire) - Friend ® - C:\WINDOWS\system32\Weather.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 22599 bytes
  13. Et oui j'en mets du temps ... Désolé Voici les rapports: a tout a l'heure BTFix 1.096 (par bibi26) - 13/04/2008 21:23:25 - Nettoyage - Mode sans échec Lancé depuis C:\Documents and Settings\Virginie\Bureau\BTFix\BTFix.exe ---> Fichiers/dossiers supprimés (Première passe) - Fichiers temporaires effacés - C:\WINDOWS\Fonts\acrsecI.fon - C:\WINDOWS\Fonts\acrsecB.fon - C:\WINDOWS\Fonts\acrsec.fon ---> Nettoyage terminé le 13/04/2008 21:24:10 BTFix 1.096 (par bibi26) - 13/04/2008 21:27:30 - Analyse Lancé depuis C:\Documents and Settings\Virginie\Bureau\BTFix\BTFix.exe ---> Fichiers/Dossiers trouvés ---> Analyse terminée le 13/04/2008 21:27:32 -----------------------[ Lop S&D 4.1.0-9 XP/Vista ]--------------------- [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ] [ USER : Virginie ] [ "C:\Lop SD" ] [ 13/04/2008 | 21:28:20,48 ] [ PC : NOM-RJTNH3LDE8I ] [ MAJ : 08-04-2008 | 23:37 ] -------------[ Listing des dossiers dans Application Data ]------------ [01/09/2003|15:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\. [01/09/2003|15:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.. [03/10/2003|17:11] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe [14/10/2003|23:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink [05/01/2007|19:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [01/09/2003|17:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Help [01/09/2003|15:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [03/10/2003|17:11] C:\DOCUME~1\DEFAUL~1\APPLIC~1\InterTrust [01/09/2003|15:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [02/09/2003|10:37] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Roxio [14/10/2003|23:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\X10 Commander [01/09/2003|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\. [01/09/2003|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.. [17/10/2004|12:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems [13/11/2004|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [18/12/2005|19:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [14/10/2003|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI MMC [16/10/2004|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\axis else camp ball [15/02/2008|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative [02/09/2003|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink [05/01/2007|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [17/02/2008|22:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ezsid.dat [02/12/2007|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [19/12/2007|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP [13/04/2008|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log [16/09/2006|14:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installer.log [10/04/2008|17:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft [10/09/2006|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [01/09/2003|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [16/10/2004|22:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6 [29/07/2006|09:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA [29/07/2006|10:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles [17/10/2004|12:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [02/10/2003|01:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Roxio [07/06/2006|11:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Samsung [16/12/2007|14:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [19/12/2007|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic [11/04/2008|00:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP [25/09/2005|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [13/04/2008|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip [01/09/2003|16:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\. [01/09/2003|16:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\.. [01/09/2003|15:52] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [01/09/2003|16:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\. [01/09/2003|16:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\.. [02/06/2006|15:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\BitDefender [01/09/2003|15:52] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [16/10/2004|15:39] C:\DOCUME~1\VIRGINIE\APPLIC~1\. [16/10/2004|15:39] C:\DOCUME~1\VIRGINIE\APPLIC~1\.. [30/03/2008|18:15] C:\DOCUME~1\VIRGINIE\APPLIC~1\2waitsoap [17/10/2004|18:17] C:\DOCUME~1\VIRGINIE\APPLIC~1\ACD Systems [03/10/2003|17:11] C:\DOCUME~1\VIRGINIE\APPLIC~1\Adobe [04/03/2005|18:04] C:\DOCUME~1\VIRGINIE\APPLIC~1\AdobeUM [18/12/2005|19:09] C:\DOCUME~1\VIRGINIE\APPLIC~1\Apple Computer [06/11/2004|15:06] C:\DOCUME~1\VIRGINIE\APPLIC~1\ATI MMC [25/09/2005|12:43] C:\DOCUME~1\VIRGINIE\APPLIC~1\BitDefender [15/02/2008|18:43] C:\DOCUME~1\VIRGINIE\APPLIC~1\Creative [14/10/2003|23:02] C:\DOCUME~1\VIRGINIE\APPLIC~1\CyberLink [01/09/2003|15:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\desktop.ini [13/11/2004|11:26] C:\DOCUME~1\VIRGINIE\APPLIC~1\dm.ini [27/06/2006|16:47] C:\DOCUME~1\VIRGINIE\APPLIC~1\EoRezo [02/06/2006|20:24] C:\DOCUME~1\VIRGINIE\APPLIC~1\FotoWire [17/10/2005|14:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\Google [01/01/2008|12:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\gtk-2.0 [01/09/2003|17:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\Help [19/12/2007|18:42] C:\DOCUME~1\VIRGINIE\APPLIC~1\HP [01/09/2003|15:59] C:\DOCUME~1\VIRGINIE\APPLIC~1\Identities [03/10/2003|17:11] C:\DOCUME~1\VIRGINIE\APPLIC~1\InterTrust [17/10/2004|18:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\Macromedia [01/09/2003|15:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\Microsoft [23/02/2005|21:06] C:\DOCUME~1\VIRGINIE\APPLIC~1\Microsoft Web Folders [16/10/2004|22:09] C:\DOCUME~1\VIRGINIE\APPLIC~1\MSN6 [25/12/2007|18:54] C:\DOCUME~1\VIRGINIE\APPLIC~1\OpenOffice.org2 [05/11/2004|21:33] C:\DOCUME~1\VIRGINIE\APPLIC~1\Real [02/09/2003|10:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\Roxio [31/03/2007|14:22] C:\DOCUME~1\VIRGINIE\APPLIC~1\Screenshot Sender [11/04/2008|15:45] C:\DOCUME~1\VIRGINIE\APPLIC~1\SecuROM [17/02/2008|22:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\skypePM [28/07/2006|19:04] C:\DOCUME~1\VIRGINIE\APPLIC~1\Spybot - Search & Destroy [19/07/2006|18:45] C:\DOCUME~1\VIRGINIE\APPLIC~1\Sun [27/11/2004|23:36] C:\DOCUME~1\VIRGINIE\APPLIC~1\Template [14/10/2003|23:31] C:\DOCUME~1\VIRGINIE\APPLIC~1\X10 Commander ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]--------------- [13/04/2008 21:26][--ah-----] C:\WINDOWS\tasks\SA.DAT [30/08/2002 12:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini ---------------[ Listing des dossiers dans C:\Program Files ]-------------- [01/09/2003|15:52] C:\Program Files\. [01/09/2003|15:52] C:\Program Files\.. [13/04/2008|20:44] C:\Program Files\7-Zip [17/10/2004|12:08] C:\Program Files\ACD Systems [14/04/2007|17:10] C:\Program Files\AdbeRdr80_fr_FR.exe [02/09/2003|10:59] C:\Program Files\Adobe [24/08/2007|10:48] C:\Program Files\Alwil Software [29/07/2006|10:25] C:\Program Files\ASUSTeK [14/10/2003|23:52] C:\Program Files\ATI Multimedia [02/08/2006|15:19] C:\Program Files\ATI Technologies [25/02/2005|10:30] C:\Program Files\Axis Communications [25/09/2005|12:33] C:\Program Files\BitdefenderInternetSecurity_9_fr.exe [19/11/2005|14:23] C:\Program Files\Cegetel [05/01/2007|14:43] C:\Program Files\C-Media 3D Audio [01/09/2003|16:27] C:\Program Files\Common Files [01/09/2003|15:57] C:\Program Files\ComPlus Applications [08/01/2007|15:14] C:\Program Files\Cool MP3 Converter [02/09/2003|11:01] C:\Program Files\CyberLink [30/08/2006|13:46] C:\Program Files\DAP [07/06/2006|20:01] C:\Program Files\DIFX [02/09/2003|10:32] C:\Program Files\directx [03/12/2005|19:55] C:\Program Files\DivX [29/10/2004|12:09] C:\Program Files\EA SPORTS [20/06/2005|10:45] C:\Program Files\easetech [11/12/2004|16:47] C:\Program Files\Electronic Arts [01/09/2003|15:52] C:\Program Files\Fichiers communs [23/10/2004|12:01] C:\Program Files\GameSpy Arcade [31/12/2007|10:05] C:\Program Files\GIMP-2.0 [22/06/2007|17:03] C:\Program Files\Google [23/12/2007|11:05] C:\Program Files\Hewlett-Packard [19/12/2007|18:14] C:\Program Files\HP [07/08/2006|17:43] C:\Program Files\INSTALL.LOG [01/09/2003|17:41] C:\Program Files\InstallShield Installation Information [01/09/2003|15:57] C:\Program Files\Internet Explorer [16/06/2006|15:30] C:\Program Files\Java [08/01/2007|12:43] C:\Program Files\JeffProd [20/12/2004|14:12] C:\Program Files\KONAMI [10/04/2008|17:46] C:\Program Files\Lavasoft [02/06/2006|20:21] C:\Program Files\Logitech [01/09/2003|15:56] C:\Program Files\Messenger [11/08/2006|19:51] C:\Program Files\Messenger Plus! Live [10/12/2004|18:09] C:\Program Files\Microids [15/01/2007|14:21] C:\Program Files\micronet-soft [01/09/2003|15:59] C:\Program Files\microsoft frontpage [23/02/2005|21:06] C:\Program Files\Microsoft Office [23/02/2005|21:09] C:\Program Files\Microsoft Visual Studio [27/11/2004|23:32] C:\Program Files\Microsoft Works [01/09/2003|15:57] C:\Program Files\Movie Maker [01/09/2003|15:56] C:\Program Files\MSN [01/09/2003|15:56] C:\Program Files\MSN Gaming Zone [18/07/2006|14:56] C:\Program Files\MSN Messenger [19/11/2006|12:17] C:\Program Files\MSXML 4.0 [01/09/2003|15:57] C:\Program Files\NetMeeting [11/01/2008|17:06] C:\Program Files\Neuf [23/12/2004|23:00] C:\Program Files\OfficeUpdate11 [25/12/2007|18:43] C:\Program Files\OpenOffice.org 2.2 [01/09/2003|15:57] C:\Program Files\Outlook Express [24/05/2006|23:46] C:\Program Files\Picasa2 [18/12/2005|19:08] C:\Program Files\QuickTime [05/11/2004|21:33] C:\Program Files\Real [02/09/2003|10:32] C:\Program Files\Roxio [02/10/2003|01:37] C:\Program Files\ROXIOGinie [16/10/2004|15:43] C:\Program Files\SAGEM [07/06/2006|11:00] C:\Program Files\Samsung [01/09/2003|15:56] C:\Program Files\Services en ligne [05/01/2007|14:42] C:\Program Files\SiSLan [16/10/2004|15:47] C:\Program Files\Softwin [28/07/2006|19:03] C:\Program Files\Spybot - Search & Destroy [13/04/2008|15:37] C:\Program Files\Trend Micro [17/06/2003|18:40] C:\Program Files\trueinst.exe [01/09/2003|16:03] C:\Program Files\Uninstall Information [24/09/2005|19:08] C:\Program Files\VeriSign [01/09/2003|16:12] C:\Program Files\VIA Technologies, Inc [09/10/2003|20:52] C:\Program Files\Visage [08/01/2007|12:28] C:\Program Files\win rar.exe [08/01/2007|12:38] C:\Program Files\win zip.exe [01/09/2003|17:06] C:\Program Files\Windows Journal Viewer [02/06/2007|13:49] C:\Program Files\Windows Live [09/10/2003|21:46] C:\Program Files\Windows Media Components [01/09/2003|15:56] C:\Program Files\Windows Media Player [01/09/2003|15:56] C:\Program Files\Windows NT [01/09/2003|15:56] C:\Program Files\WindowsUpdate [27/06/2006|14:18] C:\Program Files\WinRAR [13/11/2004|23:01] C:\Program Files\WinZip [01/09/2003|15:59] C:\Program Files\xerox [03/10/2003|17:05] C:\Program Files\XnView Deluxe ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------ [01/09/2003|15:52] C:\Program Files\Fichiers communs\. [01/09/2003|15:52] C:\Program Files\Fichiers communs\.. [17/10/2004|12:08] C:\Program Files\Fichiers communs\ACD Systems [02/09/2003|10:32] C:\Program Files\Fichiers communs\Adaptec Shared [02/09/2003|10:59] C:\Program Files\Fichiers communs\Adobe [01/09/2003|17:58] C:\Program Files\Fichiers communs\AOL [14/10/2003|23:51] C:\Program Files\Fichiers communs\ATI [09/10/2003|21:46] C:\Program Files\Fichiers communs\CyberLink [23/02/2005|21:09] C:\Program Files\Fichiers communs\Designer [02/06/2006|20:24] C:\Program Files\Fichiers communs\FotoWire [19/12/2007|18:18] C:\Program Files\Fichiers communs\Hewlett-Packard [23/12/2007|11:07] C:\Program Files\Fichiers communs\HP [01/09/2003|17:41] C:\Program Files\Fichiers communs\InstallShield [16/06/2006|15:27] C:\Program Files\Fichiers communs\Java [02/06/2006|20:22] C:\Program Files\Fichiers communs\Logitech [01/09/2003|15:52] C:\Program Files\Fichiers communs\Microsoft Shared [01/09/2003|15:57] C:\Program Files\Fichiers communs\MSSoap [01/09/2003|15:52] C:\Program Files\Fichiers communs\ODBC [05/11/2004|21:33] C:\Program Files\Fichiers communs\Real [02/09/2003|10:33] C:\Program Files\Fichiers communs\Roxio Shared [08/01/2007|11:51] C:\Program Files\Fichiers communs\Scanner [01/09/2003|15:58] C:\Program Files\Fichiers communs\Services [16/10/2004|15:47] C:\Program Files\Fichiers communs\Softwin [23/12/2007|11:10] C:\Program Files\Fichiers communs\Sonic Shared [01/09/2003|15:52] C:\Program Files\Fichiers communs\SpeechEngines [01/09/2003|15:57] C:\Program Files\Fichiers communs\System [09/10/2003|20:52] C:\Program Files\Fichiers communs\Visage Software [02/09/2003|10:57] C:\Program Files\Fichiers communs\Wise Installation Wizard [27/04/2006|10:14] C:\Program Files\Fichiers communs\xing shared ----------------------[ Recherche avec S_Lop ]--------------------- Aucun fichier / dossier Lop trouvé ! -----------------[ Recherche de Fichiers / Dossiers Lop ]----------------- Aucun fichier / dossier Lop trouvé ! ----------------------[ Verification du Registre ]---------------------- ..... OK ! --------------------[ Verification du fichier Hosts ]--------------------- Fichier Hosts PROPRE ----------------[ Recherche de fichiers avec Catchme ]----------------- catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-13 21:30:13 Windows 5.1.2600 Service Pack 2 FAT NTAPI scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------[ Recherche d'autres infections ]--------------------- Aucune autre infection trouvée ! /!\ [Fich:12][Doss:11] C:\DOCUME~1\Virginie\LOCALS~1\Temp /!\ [Fich:129][Doss:0] C:\DOCUME~1\Virginie\Cookies /!\ [Fich:7113][Doss:14] C:\DOCUME~1\Virginie\LOCALS~1\TEMPOR~1\content.IE5 --------------------[ Fin du rapport a 21:30:59,25 ]----------------------
  14. Bonsoir, Mon ordi est ralenti par ces fenêtres d'ou le postage en double... je vais essayer d'envoyer celui ci une seule fois Voici donc les deux rapports: a plus tard BTFix 1.096 (par bibi26) - 13/04/2008 20:52:11 - Analyse Lancé depuis C:\Documents and Settings\Virginie\Bureau\BTFix\BTFix.exe ---> Fichiers/Dossiers trouvés - C:\WINDOWS\Fonts\acrsecI.fon - C:\WINDOWS\Fonts\acrsecB.fon - C:\WINDOWS\Fonts\acrsec.fon ---> Analyse terminée le 13/04/2008 20:52:12 -----------------------[ Lop S&D 4.1.0-9 XP/Vista ]--------------------- [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ] [ USER : Virginie ] [ "C:\Lop SD" ] [ 13/04/2008 | 20:39:00,75 ] [ PC : NOM-RJTNH3LDE8I ] [ MAJ : 08-04-2008 | 23:37 ] \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION ///////////////////////////// Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\Dupe Warn.exe Supprimé! - C:\Program Files\Circle Developement\Uninstall.exe Supprimé! - C:\WINDOWS\Tasks\A388FE3290A37D62.job Supprimé! - C:\WINDOWS\Tasks\A95FD7E291044CA2.job Supprimé! - C:\WINDOWS\Tasks\A0367E8E9185FC52.job Supprimé! - C:\WINDOWS\Tasks\AE78437D91EBF601.job Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site Supprimé! - C:\Program Files\Circle Developement Restauré! - Fichier Hosts //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ -------------[ Listing des dossiers dans Application Data ]------------ [01/09/2003|15:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\. [01/09/2003|15:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.. [03/10/2003|17:11] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe [14/10/2003|23:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink [05/01/2007|19:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [01/09/2003|17:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Help [01/09/2003|15:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [03/10/2003|17:11] C:\DOCUME~1\DEFAUL~1\APPLIC~1\InterTrust [01/09/2003|15:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [02/09/2003|10:37] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Roxio [14/10/2003|23:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\X10 Commander [01/09/2003|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\. [01/09/2003|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.. [17/10/2004|12:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems [13/11/2004|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [18/12/2005|19:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [14/10/2003|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI MMC [16/10/2004|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\axis else camp ball [15/02/2008|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative [02/09/2003|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink [05/01/2007|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [17/02/2008|22:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ezsid.dat [02/12/2007|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [19/12/2007|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP [13/04/2008|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log [16/09/2006|14:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installer.log [10/04/2008|17:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft [10/09/2006|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [01/09/2003|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [16/10/2004|22:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6 [29/07/2006|09:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA [29/07/2006|10:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles [17/10/2004|12:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [02/10/2003|01:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Roxio [07/06/2006|11:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Samsung [16/12/2007|14:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [19/12/2007|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic [11/04/2008|00:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP [25/09/2005|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [13/04/2008|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip [01/09/2003|16:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\. [01/09/2003|16:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\.. [01/09/2003|15:52] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [01/09/2003|16:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\. [01/09/2003|16:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\.. [02/06/2006|15:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\BitDefender [01/09/2003|15:52] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [16/10/2004|15:39] C:\DOCUME~1\VIRGINIE\APPLIC~1\. [16/10/2004|15:39] C:\DOCUME~1\VIRGINIE\APPLIC~1\.. [30/03/2008|18:15] C:\DOCUME~1\VIRGINIE\APPLIC~1\2waitsoap [17/10/2004|18:17] C:\DOCUME~1\VIRGINIE\APPLIC~1\ACD Systems [03/10/2003|17:11] C:\DOCUME~1\VIRGINIE\APPLIC~1\Adobe [04/03/2005|18:04] C:\DOCUME~1\VIRGINIE\APPLIC~1\AdobeUM [18/12/2005|19:09] C:\DOCUME~1\VIRGINIE\APPLIC~1\Apple Computer [06/11/2004|15:06] C:\DOCUME~1\VIRGINIE\APPLIC~1\ATI MMC [25/09/2005|12:43] C:\DOCUME~1\VIRGINIE\APPLIC~1\BitDefender [15/02/2008|18:43] C:\DOCUME~1\VIRGINIE\APPLIC~1\Creative [14/10/2003|23:02] C:\DOCUME~1\VIRGINIE\APPLIC~1\CyberLink [01/09/2003|15:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\desktop.ini [13/11/2004|11:26] C:\DOCUME~1\VIRGINIE\APPLIC~1\dm.ini [27/06/2006|16:47] C:\DOCUME~1\VIRGINIE\APPLIC~1\EoRezo [02/06/2006|20:24] C:\DOCUME~1\VIRGINIE\APPLIC~1\FotoWire [17/10/2005|14:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\Google [01/01/2008|12:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\gtk-2.0 [01/09/2003|17:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\Help [19/12/2007|18:42] C:\DOCUME~1\VIRGINIE\APPLIC~1\HP [01/09/2003|15:59] C:\DOCUME~1\VIRGINIE\APPLIC~1\Identities [03/10/2003|17:11] C:\DOCUME~1\VIRGINIE\APPLIC~1\InterTrust [17/10/2004|18:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\Macromedia [01/09/2003|15:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\Microsoft [23/02/2005|21:06] C:\DOCUME~1\VIRGINIE\APPLIC~1\Microsoft Web Folders [16/10/2004|22:09] C:\DOCUME~1\VIRGINIE\APPLIC~1\MSN6 [25/12/2007|18:54] C:\DOCUME~1\VIRGINIE\APPLIC~1\OpenOffice.org2 [05/11/2004|21:33] C:\DOCUME~1\VIRGINIE\APPLIC~1\Real [02/09/2003|10:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\Roxio [31/03/2007|14:22] C:\DOCUME~1\VIRGINIE\APPLIC~1\Screenshot Sender [11/04/2008|15:45] C:\DOCUME~1\VIRGINIE\APPLIC~1\SecuROM [17/02/2008|22:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\skypePM [28/07/2006|19:04] C:\DOCUME~1\VIRGINIE\APPLIC~1\Spybot - Search & Destroy [19/07/2006|18:45] C:\DOCUME~1\VIRGINIE\APPLIC~1\Sun [27/11/2004|23:36] C:\DOCUME~1\VIRGINIE\APPLIC~1\Template [14/10/2003|23:31] C:\DOCUME~1\VIRGINIE\APPLIC~1\X10 Commander ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]--------------- [13/04/2008 19:15][--ah-----] C:\WINDOWS\tasks\SA.DAT [30/08/2002 12:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini ---------------[ Listing des dossiers dans C:\Program Files ]-------------- [01/09/2003|15:52] C:\Program Files\. [01/09/2003|15:52] C:\Program Files\.. [17/10/2004|12:08] C:\Program Files\ACD Systems [14/04/2007|17:10] C:\Program Files\AdbeRdr80_fr_FR.exe [02/09/2003|10:59] C:\Program Files\Adobe [24/08/2007|10:48] C:\Program Files\Alwil Software [29/07/2006|10:25] C:\Program Files\ASUSTeK [14/10/2003|23:52] C:\Program Files\ATI Multimedia [02/08/2006|15:19] C:\Program Files\ATI Technologies [25/02/2005|10:30] C:\Program Files\Axis Communications [25/09/2005|12:33] C:\Program Files\BitdefenderInternetSecurity_9_fr.exe [19/11/2005|14:23] C:\Program Files\Cegetel [05/01/2007|14:43] C:\Program Files\C-Media 3D Audio [01/09/2003|16:27] C:\Program Files\Common Files [01/09/2003|15:57] C:\Program Files\ComPlus Applications [08/01/2007|15:14] C:\Program Files\Cool MP3 Converter [02/09/2003|11:01] C:\Program Files\CyberLink [30/08/2006|13:46] C:\Program Files\DAP [07/06/2006|20:01] C:\Program Files\DIFX [02/09/2003|10:32] C:\Program Files\directx [03/12/2005|19:55] C:\Program Files\DivX [29/10/2004|12:09] C:\Program Files\EA SPORTS [20/06/2005|10:45] C:\Program Files\easetech [11/12/2004|16:47] C:\Program Files\Electronic Arts [01/09/2003|15:52] C:\Program Files\Fichiers communs [23/10/2004|12:01] C:\Program Files\GameSpy Arcade [31/12/2007|10:05] C:\Program Files\GIMP-2.0 [22/06/2007|17:03] C:\Program Files\Google [23/12/2007|11:05] C:\Program Files\Hewlett-Packard [19/12/2007|18:14] C:\Program Files\HP [07/08/2006|17:43] C:\Program Files\INSTALL.LOG [01/09/2003|17:41] C:\Program Files\InstallShield Installation Information [01/09/2003|15:57] C:\Program Files\Internet Explorer [16/06/2006|15:30] C:\Program Files\Java [08/01/2007|12:43] C:\Program Files\JeffProd [20/12/2004|14:12] C:\Program Files\KONAMI [10/04/2008|17:46] C:\Program Files\Lavasoft [02/06/2006|20:21] C:\Program Files\Logitech [01/09/2003|15:56] C:\Program Files\Messenger [11/08/2006|19:51] C:\Program Files\Messenger Plus! Live [10/12/2004|18:09] C:\Program Files\Microids [15/01/2007|14:21] C:\Program Files\micronet-soft [01/09/2003|15:59] C:\Program Files\microsoft frontpage [23/02/2005|21:06] C:\Program Files\Microsoft Office [23/02/2005|21:09] C:\Program Files\Microsoft Visual Studio [27/11/2004|23:32] C:\Program Files\Microsoft Works [01/09/2003|15:57] C:\Program Files\Movie Maker [01/09/2003|15:56] C:\Program Files\MSN [01/09/2003|15:56] C:\Program Files\MSN Gaming Zone [18/07/2006|14:56] C:\Program Files\MSN Messenger [19/11/2006|12:17] C:\Program Files\MSXML 4.0 [01/09/2003|15:57] C:\Program Files\NetMeeting [11/01/2008|17:06] C:\Program Files\Neuf [23/12/2004|23:00] C:\Program Files\OfficeUpdate11 [25/12/2007|18:43] C:\Program Files\OpenOffice.org 2.2 [01/09/2003|15:57] C:\Program Files\Outlook Express [24/05/2006|23:46] C:\Program Files\Picasa2 [18/12/2005|19:08] C:\Program Files\QuickTime [05/11/2004|21:33] C:\Program Files\Real [02/09/2003|10:32] C:\Program Files\Roxio [02/10/2003|01:37] C:\Program Files\ROXIOGinie [16/10/2004|15:43] C:\Program Files\SAGEM [07/06/2006|11:00] C:\Program Files\Samsung [01/09/2003|15:56] C:\Program Files\Services en ligne [05/01/2007|14:42] C:\Program Files\SiSLan [16/10/2004|15:47] C:\Program Files\Softwin [28/07/2006|19:03] C:\Program Files\Spybot - Search & Destroy [13/04/2008|15:37] C:\Program Files\Trend Micro [17/06/2003|18:40] C:\Program Files\trueinst.exe [01/09/2003|16:03] C:\Program Files\Uninstall Information [24/09/2005|19:08] C:\Program Files\VeriSign [01/09/2003|16:12] C:\Program Files\VIA Technologies, Inc [09/10/2003|20:52] C:\Program Files\Visage [08/01/2007|12:28] C:\Program Files\win rar.exe [08/01/2007|12:38] C:\Program Files\win zip.exe [01/09/2003|17:06] C:\Program Files\Windows Journal Viewer [02/06/2007|13:49] C:\Program Files\Windows Live [09/10/2003|21:46] C:\Program Files\Windows Media Components [01/09/2003|15:56] C:\Program Files\Windows Media Player [01/09/2003|15:56] C:\Program Files\Windows NT [01/09/2003|15:56] C:\Program Files\WindowsUpdate [27/06/2006|14:18] C:\Program Files\WinRAR [13/11/2004|23:01] C:\Program Files\WinZip [01/09/2003|15:59] C:\Program Files\xerox [03/10/2003|17:05] C:\Program Files\XnView Deluxe ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------ [01/09/2003|15:52] C:\Program Files\Fichiers communs\. [01/09/2003|15:52] C:\Program Files\Fichiers communs\.. [17/10/2004|12:08] C:\Program Files\Fichiers communs\ACD Systems [02/09/2003|10:32] C:\Program Files\Fichiers communs\Adaptec Shared [02/09/2003|10:59] C:\Program Files\Fichiers communs\Adobe [01/09/2003|17:58] C:\Program Files\Fichiers communs\AOL [14/10/2003|23:51] C:\Program Files\Fichiers communs\ATI [09/10/2003|21:46] C:\Program Files\Fichiers communs\CyberLink [23/02/2005|21:09] C:\Program Files\Fichiers communs\Designer [02/06/2006|20:24] C:\Program Files\Fichiers communs\FotoWire [19/12/2007|18:18] C:\Program Files\Fichiers communs\Hewlett-Packard [23/12/2007|11:07] C:\Program Files\Fichiers communs\HP [01/09/2003|17:41] C:\Program Files\Fichiers communs\InstallShield [16/06/2006|15:27] C:\Program Files\Fichiers communs\Java [02/06/2006|20:22] C:\Program Files\Fichiers communs\Logitech [01/09/2003|15:52] C:\Program Files\Fichiers communs\Microsoft Shared [01/09/2003|15:57] C:\Program Files\Fichiers communs\MSSoap [01/09/2003|15:52] C:\Program Files\Fichiers communs\ODBC [05/11/2004|21:33] C:\Program Files\Fichiers communs\Real [02/09/2003|10:33] C:\Program Files\Fichiers communs\Roxio Shared [08/01/2007|11:51] C:\Program Files\Fichiers communs\Scanner [01/09/2003|15:58] C:\Program Files\Fichiers communs\Services [16/10/2004|15:47] C:\Program Files\Fichiers communs\Softwin [23/12/2007|11:10] C:\Program Files\Fichiers communs\Sonic Shared [01/09/2003|15:52] C:\Program Files\Fichiers communs\SpeechEngines [01/09/2003|15:57] C:\Program Files\Fichiers communs\System [09/10/2003|20:52] C:\Program Files\Fichiers communs\Visage Software [02/09/2003|10:57] C:\Program Files\Fichiers communs\Wise Installation Wizard [27/04/2006|10:14] C:\Program Files\Fichiers communs\xing shared ----------------------[ Recherche avec S_Lop ]--------------------- Aucun fichier / dossier Lop trouvé ! -----------------[ Recherche de Fichiers / Dossiers Lop ]----------------- Aucun fichier / dossier Lop trouvé ! ----------------------[ Verification du Registre ]---------------------- ..... OK ! --------------------[ Verification du fichier Hosts ]--------------------- Fichier Hosts PROPRE ----------------[ Recherche de fichiers avec Catchme ]----------------- catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-13 20:40:17 Windows 5.1.2600 Service Pack 2 FAT NTAPI scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------[ Recherche d'autres infections ]--------------------- Aucune autre infection trouvée ! /!\ [Fich:282][Doss:32] C:\DOCUME~1\Virginie\LOCALS~1\Temp /!\ [Fich:116][Doss:0] C:\DOCUME~1\Virginie\Cookies /!\ [Fich:6384][Doss:14] C:\DOCUME~1\Virginie\LOCALS~1\TEMPOR~1\content.IE5 --------------------[ Fin du rapport a 20:40:48,79 ]----------------------
  15. Merci pour ta réponse, voici le premier rapport, jai des soucis avec winzip je n'ai pas pu télécharger le second logiciel, tu ne l'aurais pas en format dézipé stp? Encore merci A+ -----------------------[ Lop S&D 4.1.0-9 XP/Vista ]--------------------- [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ] [ USER : Virginie ] [ "C:\Lop SD" ] [ 13/04/2008 | 19:23:54,48 ] [ PC : NOM-RJTNH3LDE8I ] [ MAJ : 08-04-2008 | 23:37 ] -------------[ Listing des dossiers dans Application Data ]------------ [01/09/2003|15:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\. [01/09/2003|15:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.. [03/10/2003|17:11] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe [14/10/2003|23:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink [05/01/2007|19:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [01/09/2003|17:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Help [01/09/2003|15:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [03/10/2003|17:11] C:\DOCUME~1\DEFAUL~1\APPLIC~1\InterTrust [01/09/2003|15:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [02/09/2003|10:37] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Roxio [14/10/2003|23:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\X10 Commander [01/09/2003|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\. [01/09/2003|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.. [17/10/2004|12:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems [13/11/2004|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [18/12/2005|19:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [14/10/2003|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI MMC [16/10/2004|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\axis else camp ball [15/02/2008|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative [02/09/2003|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink [05/01/2007|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [17/02/2008|22:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ezsid.dat [02/12/2007|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [30/03/2008|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site [19/12/2007|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP [13/04/2008|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log [16/09/2006|14:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installer.log [10/04/2008|17:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft [10/09/2006|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [01/09/2003|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [16/10/2004|22:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6 [29/07/2006|09:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA [29/07/2006|10:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles [17/10/2004|12:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [02/10/2003|01:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Roxio [07/06/2006|11:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Samsung [16/12/2007|14:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [19/12/2007|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic [11/04/2008|00:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP [25/09/2005|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [01/09/2003|16:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\. [01/09/2003|16:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\.. [01/09/2003|15:52] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [01/09/2003|16:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\. [01/09/2003|16:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\.. [02/06/2006|15:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\BitDefender [01/09/2003|15:52] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [16/10/2004|15:39] C:\DOCUME~1\VIRGINIE\APPLIC~1\. [16/10/2004|15:39] C:\DOCUME~1\VIRGINIE\APPLIC~1\.. [30/03/2008|18:15] C:\DOCUME~1\VIRGINIE\APPLIC~1\2waitsoap [17/10/2004|18:17] C:\DOCUME~1\VIRGINIE\APPLIC~1\ACD Systems [03/10/2003|17:11] C:\DOCUME~1\VIRGINIE\APPLIC~1\Adobe [04/03/2005|18:04] C:\DOCUME~1\VIRGINIE\APPLIC~1\AdobeUM [18/12/2005|19:09] C:\DOCUME~1\VIRGINIE\APPLIC~1\Apple Computer [06/11/2004|15:06] C:\DOCUME~1\VIRGINIE\APPLIC~1\ATI MMC [25/09/2005|12:43] C:\DOCUME~1\VIRGINIE\APPLIC~1\BitDefender [15/02/2008|18:43] C:\DOCUME~1\VIRGINIE\APPLIC~1\Creative [14/10/2003|23:02] C:\DOCUME~1\VIRGINIE\APPLIC~1\CyberLink [01/09/2003|15:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\desktop.ini [13/11/2004|11:26] C:\DOCUME~1\VIRGINIE\APPLIC~1\dm.ini [27/06/2006|16:47] C:\DOCUME~1\VIRGINIE\APPLIC~1\EoRezo [02/06/2006|20:24] C:\DOCUME~1\VIRGINIE\APPLIC~1\FotoWire [17/10/2005|14:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\Google [01/01/2008|12:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\gtk-2.0 [01/09/2003|17:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\Help [19/12/2007|18:42] C:\DOCUME~1\VIRGINIE\APPLIC~1\HP [01/09/2003|15:59] C:\DOCUME~1\VIRGINIE\APPLIC~1\Identities [03/10/2003|17:11] C:\DOCUME~1\VIRGINIE\APPLIC~1\InterTrust [17/10/2004|18:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\Macromedia [01/09/2003|15:52] C:\DOCUME~1\VIRGINIE\APPLIC~1\Microsoft [23/02/2005|21:06] C:\DOCUME~1\VIRGINIE\APPLIC~1\Microsoft Web Folders [16/10/2004|22:09] C:\DOCUME~1\VIRGINIE\APPLIC~1\MSN6 [25/12/2007|18:54] C:\DOCUME~1\VIRGINIE\APPLIC~1\OpenOffice.org2 [05/11/2004|21:33] C:\DOCUME~1\VIRGINIE\APPLIC~1\Real [02/09/2003|10:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\Roxio [31/03/2007|14:22] C:\DOCUME~1\VIRGINIE\APPLIC~1\Screenshot Sender [11/04/2008|15:45] C:\DOCUME~1\VIRGINIE\APPLIC~1\SecuROM [17/02/2008|22:37] C:\DOCUME~1\VIRGINIE\APPLIC~1\skypePM [28/07/2006|19:04] C:\DOCUME~1\VIRGINIE\APPLIC~1\Spybot - Search & Destroy [19/07/2006|18:45] C:\DOCUME~1\VIRGINIE\APPLIC~1\Sun [27/11/2004|23:36] C:\DOCUME~1\VIRGINIE\APPLIC~1\Template [14/10/2003|23:31] C:\DOCUME~1\VIRGINIE\APPLIC~1\X10 Commander ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]--------------- [13/04/2008 19:00][--ah-----] C:\WINDOWS\tasks\AE78437D91EBF601.job [16/04/2005 14:56][--ah-----] C:\WINDOWS\tasks\A0367E8E9185FC52.job [09/04/2005 13:11][--ah-----] C:\WINDOWS\tasks\A95FD7E291044CA2.job [26/03/2005 22:32][--ah-----] C:\WINDOWS\tasks\A388FE3290A37D62.job [13/04/2008 19:15][--ah-----] C:\WINDOWS\tasks\SA.DAT [30/08/2002 12:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini ---------------[ Listing des dossiers dans C:\Program Files ]-------------- [01/09/2003|15:52] C:\Program Files\. [01/09/2003|15:52] C:\Program Files\.. [17/10/2004|12:08] C:\Program Files\ACD Systems [14/04/2007|17:10] C:\Program Files\AdbeRdr80_fr_FR.exe [02/09/2003|10:59] C:\Program Files\Adobe [24/08/2007|10:48] C:\Program Files\Alwil Software [29/07/2006|10:25] C:\Program Files\ASUSTeK [14/10/2003|23:52] C:\Program Files\ATI Multimedia [02/08/2006|15:19] C:\Program Files\ATI Technologies [25/02/2005|10:30] C:\Program Files\Axis Communications [25/09/2005|12:33] C:\Program Files\BitdefenderInternetSecurity_9_fr.exe [19/11/2005|14:23] C:\Program Files\Cegetel [30/03/2008|18:15] C:\Program Files\Circle Developement [05/01/2007|14:43] C:\Program Files\C-Media 3D Audio [01/09/2003|16:27] C:\Program Files\Common Files [01/09/2003|15:57] C:\Program Files\ComPlus Applications [08/01/2007|15:14] C:\Program Files\Cool MP3 Converter [02/09/2003|11:01] C:\Program Files\CyberLink [30/08/2006|13:46] C:\Program Files\DAP [07/06/2006|20:01] C:\Program Files\DIFX [02/09/2003|10:32] C:\Program Files\directx [03/12/2005|19:55] C:\Program Files\DivX [29/10/2004|12:09] C:\Program Files\EA SPORTS [20/06/2005|10:45] C:\Program Files\easetech [11/12/2004|16:47] C:\Program Files\Electronic Arts [01/09/2003|15:52] C:\Program Files\Fichiers communs [23/10/2004|12:01] C:\Program Files\GameSpy Arcade [31/12/2007|10:05] C:\Program Files\GIMP-2.0 [22/06/2007|17:03] C:\Program Files\Google [23/12/2007|11:05] C:\Program Files\Hewlett-Packard [19/12/2007|18:14] C:\Program Files\HP [07/08/2006|17:43] C:\Program Files\INSTALL.LOG [01/09/2003|17:41] C:\Program Files\InstallShield Installation Information [01/09/2003|15:57] C:\Program Files\Internet Explorer [16/06/2006|15:30] C:\Program Files\Java [08/01/2007|12:43] C:\Program Files\JeffProd [20/12/2004|14:12] C:\Program Files\KONAMI [10/04/2008|17:46] C:\Program Files\Lavasoft [02/06/2006|20:21] C:\Program Files\Logitech [01/09/2003|15:56] C:\Program Files\Messenger [11/08/2006|19:51] C:\Program Files\Messenger Plus! Live [10/12/2004|18:09] C:\Program Files\Microids [15/01/2007|14:21] C:\Program Files\micronet-soft [01/09/2003|15:59] C:\Program Files\microsoft frontpage [23/02/2005|21:06] C:\Program Files\Microsoft Office [23/02/2005|21:09] C:\Program Files\Microsoft Visual Studio [27/11/2004|23:32] C:\Program Files\Microsoft Works [01/09/2003|15:57] C:\Program Files\Movie Maker [01/09/2003|15:56] C:\Program Files\MSN [01/09/2003|15:56] C:\Program Files\MSN Gaming Zone [18/07/2006|14:56] C:\Program Files\MSN Messenger [19/11/2006|12:17] C:\Program Files\MSXML 4.0 [01/09/2003|15:57] C:\Program Files\NetMeeting [11/01/2008|17:06] C:\Program Files\Neuf [23/12/2004|23:00] C:\Program Files\OfficeUpdate11 [25/12/2007|18:43] C:\Program Files\OpenOffice.org 2.2 [01/09/2003|15:57] C:\Program Files\Outlook Express [24/05/2006|23:46] C:\Program Files\Picasa2 [18/12/2005|19:08] C:\Program Files\QuickTime [05/11/2004|21:33] C:\Program Files\Real [02/09/2003|10:32] C:\Program Files\Roxio [02/10/2003|01:37] C:\Program Files\ROXIOGinie [16/10/2004|15:43] C:\Program Files\SAGEM [07/06/2006|11:00] C:\Program Files\Samsung [01/09/2003|15:56] C:\Program Files\Services en ligne [05/01/2007|14:42] C:\Program Files\SiSLan [16/10/2004|15:47] C:\Program Files\Softwin [28/07/2006|19:03] C:\Program Files\Spybot - Search & Destroy [13/04/2008|15:37] C:\Program Files\Trend Micro [17/06/2003|18:40] C:\Program Files\trueinst.exe [01/09/2003|16:03] C:\Program Files\Uninstall Information [24/09/2005|19:08] C:\Program Files\VeriSign [01/09/2003|16:12] C:\Program Files\VIA Technologies, Inc [09/10/2003|20:52] C:\Program Files\Visage [08/01/2007|12:28] C:\Program Files\win rar.exe [08/01/2007|12:38] C:\Program Files\win zip.exe [01/09/2003|17:06] C:\Program Files\Windows Journal Viewer [02/06/2007|13:49] C:\Program Files\Windows Live [09/10/2003|21:46] C:\Program Files\Windows Media Components [01/09/2003|15:56] C:\Program Files\Windows Media Player [01/09/2003|15:56] C:\Program Files\Windows NT [01/09/2003|15:56] C:\Program Files\WindowsUpdate [27/06/2006|14:18] C:\Program Files\WinRAR [13/11/2004|23:01] C:\Program Files\WinZip [01/09/2003|15:59] C:\Program Files\xerox [03/10/2003|17:05] C:\Program Files\XnView Deluxe ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------ [01/09/2003|15:52] C:\Program Files\Fichiers communs\. [01/09/2003|15:52] C:\Program Files\Fichiers communs\.. [17/10/2004|12:08] C:\Program Files\Fichiers communs\ACD Systems [02/09/2003|10:32] C:\Program Files\Fichiers communs\Adaptec Shared [02/09/2003|10:59] C:\Program Files\Fichiers communs\Adobe [01/09/2003|17:58] C:\Program Files\Fichiers communs\AOL [14/10/2003|23:51] C:\Program Files\Fichiers communs\ATI [09/10/2003|21:46] C:\Program Files\Fichiers communs\CyberLink [23/02/2005|21:09] C:\Program Files\Fichiers communs\Designer [02/06/2006|20:24] C:\Program Files\Fichiers communs\FotoWire [19/12/2007|18:18] C:\Program Files\Fichiers communs\Hewlett-Packard [23/12/2007|11:07] C:\Program Files\Fichiers communs\HP [01/09/2003|17:41] C:\Program Files\Fichiers communs\InstallShield [16/06/2006|15:27] C:\Program Files\Fichiers communs\Java [02/06/2006|20:22] C:\Program Files\Fichiers communs\Logitech [01/09/2003|15:52] C:\Program Files\Fichiers communs\Microsoft Shared [01/09/2003|15:57] C:\Program Files\Fichiers communs\MSSoap [01/09/2003|15:52] C:\Program Files\Fichiers communs\ODBC [05/11/2004|21:33] C:\Program Files\Fichiers communs\Real [02/09/2003|10:33] C:\Program Files\Fichiers communs\Roxio Shared [08/01/2007|11:51] C:\Program Files\Fichiers communs\Scanner [01/09/2003|15:58] C:\Program Files\Fichiers communs\Services [16/10/2004|15:47] C:\Program Files\Fichiers communs\Softwin [23/12/2007|11:10] C:\Program Files\Fichiers communs\Sonic Shared [01/09/2003|15:52] C:\Program Files\Fichiers communs\SpeechEngines [01/09/2003|15:57] C:\Program Files\Fichiers communs\System [09/10/2003|20:52] C:\Program Files\Fichiers communs\Visage Software [02/09/2003|10:57] C:\Program Files\Fichiers communs\Wise Installation Wizard [27/04/2006|10:14] C:\Program Files\Fichiers communs\xing shared ----------------------[ Recherche avec S_Lop ]--------------------- Aucun fichier / dossier Lop trouvé ! -----------------[ Recherche de Fichiers / Dossiers Lop ]----------------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\Dupe Warn.exe C:\Program Files\Circle Developement C:\Program Files\Circle Developement\Uninstall.exe C:\WINDOWS\Tasks\A388FE3290A37D62.job C:\WINDOWS\Tasks\A95FD7E291044CA2.job C:\WINDOWS\Tasks\A0367E8E9185FC52.job C:\WINDOWS\Tasks\AE78437D91EBF601.job ----------------------[ Verification du Registre ]---------------------- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "memo site kind that"="C:\\Documents and Settings\\All Users\\Application Data\\Grid Blue Memo Site\\Dupe Warn.exe" --------------------[ Verification du fichier Hosts ]--------------------- Fichier Hosts MODIFIE 127.0.0.1 bin.errorprotector.com ## added by CiD 127.0.0.1 br.errorsafe.com ## added by CiD 127.0.0.1 br.winantivirus.com ## added by CiD 127.0.0.1 br.winfixer.com ## added by CiD 127.0.0.1 cdn.drivecleaner.com ## added by CiD 127.0.0.1 cdn.errorsafe.com ## added by CiD 127.0.0.1 cdn.winsoftware.com ## added by CiD 127.0.0.1 de.errorsafe.com ## added by CiD 127.0.0.1 de.winantivirus.com ## added by CiD 127.0.0.1 download.cdn.drivecleaner.com ## added by CiD 127.0.0.1 download.cdn.errorsafe.com ## added by CiD 127.0.0.1 download.cdn.winsoftware.com ## added by CiD 127.0.0.1 download.errorsafe.com ## added by CiD 127.0.0.1 download.systemdoctor.com ## added by CiD 127.0.0.1 download.winantispyware.com ## added by CiD 127.0.0.1 download.windrivecleaner.com ## added by CiD 127.0.0.1 download.winfixer.com ## added by CiD 127.0.0.1 drivecleaner.com ## added by CiD 127.0.0.1 dynamique.drivecleaner.com ## added by CiD 127.0.0.1 errorprotector.com ## added by CiD 127.0.0.1 errorsafe.com ## added by CiD 127.0.0.1 es.winantivirus.com ## added by CiD 127.0.0.1 fr.winantivirus.com ## added by CiD 127.0.0.1 fr.winfixer.com ## added by CiD 127.0.0.1 go.drivecleaner.com ## added by CiD 127.0.0.1 go.errorsafe.com ## added by CiD 127.0.0.1 go.winantispyware.com ## added by CiD 127.0.0.1 go.winantivirus.com ## added by CiD 127.0.0.1 hk.winantivirus.com ## added by CiD 127.0.0.1 instlog.errorsafe.com ## added by CiD 127.0.0.1 instlog.winantivirus.com ## added by CiD 127.0.0.1 instlog.winfixer.com ## added by CiD 127.0.0.1 jsp.drivecleaner.com ## added by CiD 127.0.0.1 kb.errorsafe.com ## added by CiD 127.0.0.1 kb.winantivirus.com ## added by CiD 127.0.0.1 nl.errorsafe.com ## added by CiD 127.0.0.1 se.errorsafe.com ## added by CiD 127.0.0.1 secure.drivecleaner.com ## added by CiD 127.0.0.1 secure.errorsafe.com ## added by CiD 127.0.0.1 secure.winantispam.com ## added by CiD 127.0.0.1 secure.winantispy.com ## added by CiD 127.0.0.1 secure.winantivirus.com ## added by CiD 127.0.0.1 support.winantivirus.com ## added by CiD 127.0.0.1 trial.updates.winsoftware.com ## added by CiD 127.0.0.1 ulog.winantivirus.com ## added by CiD 127.0.0.1 utils.errorsafe.com ## added by CiD 127.0.0.1 utils.winantivirus.com ## added by CiD 127.0.0.1 utils.winfixer.com ## added by CiD 127.0.0.1 winantispyware.com ## added by CiD 127.0.0.1 winantivirus.com ## added by CiD 127.0.0.1 winfixer.com ## added by CiD 127.0.0.1 winfixer2006.com ## added by CiD 127.0.0.1 winsoftware.com ## added by CiD 127.0.0.1 www.drivecleaner.com ## added by CiD 127.0.0.1 www.errorprotector.com ## added by CiD 127.0.0.1 www.errorsafe.com ## added by CiD 127.0.0.1 www.systemdoctor.com ## added by CiD 127.0.0.1 www.utils.winfixer.com ## added by CiD 127.0.0.1 www.win-anti-virus-pro.com ## added by CiD 127.0.0.1 www.win-virus-pro.com ## added by CiD 127.0.0.1 www.winantispam.com ## added by CiD 127.0.0.1 www.winantispy.com ## added by CiD 127.0.0.1 www.winantispyware.com ## added by CiD 127.0.0.1 www.winantivirus.com ## added by CiD 127.0.0.1 www.winantiviruspro.com ## added by CiD 127.0.0.1 www.windrivecleaner.com ## added by CiD 127.0.0.1 www.windrivesafe.com ## added by CiD 127.0.0.1 www.winfixer.com ## added by CiD 127.0.0.1 www.winfixer2006.com ## added by CiD 127.0.0.1 www.winsoftware.com ## added by CiD -> 72 ( 70 ## added by CiD ) /!\ 1 Not 127.0.0.1 !! ----------------[ Recherche de fichiers avec Catchme ]----------------- catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-13 19:25:13 Windows 5.1.2600 Service Pack 2 FAT NTAPI scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------[ Recherche d'autres infections ]--------------------- Aucune autre infection trouvée ! /!\ [Fich:281][Doss:32] C:\DOCUME~1\Virginie\LOCALS~1\Temp /!\ [Fich:110][Doss:0] C:\DOCUME~1\Virginie\Cookies /!\ [Fich:5583][Doss:14] C:\DOCUME~1\Virginie\LOCALS~1\TEMPOR~1\content.IE5 --------------------[ Fin du rapport a 19:26:06,96 ]----------------------
×
×
  • Créer...