Se connecter / S'enregistrer
Votre question

pc qui rame, virus et pubs. help please!

Tags :
  • Windows genuine advantage
  • Sécurité
Dernière réponse : dans Sécurité et virus
2 Juillet 2007 14:03:31

bonjour!
alors... il y'a environ 2ans, je me suis acheté un pc, d'occas, j'ai pu l'avoir grace au copain d'un copain, passionné d'informatique, bref! l'ordi marchait très bien, puis au bout d'un moment, il ramait, de + en +, et a planté completement. normalement j'avais norton antivirus, mais je crois bien qui'l ne marchait pas, j'ai donc perdu tout ce que j'avais sur l'ordi ; images, musiques... :??:  je refile donc l'ordi au copain, il me change le disque dur, je recupere un pc tout nikel, et là depuis un moment hop replantage! depuis que je l'avais recupèré j'avais des pubs qui s'affichait tout le temps, et avast a pas l'air de marcher :( 
je veux pas le refiler au mec qui me l'a vendu, vu que ça a rebuggé j'ai preferé contacter quelqu'un d'autre, mais en attendant j'aimerais faire du "nettoyage" mais j'y connais rien je sais pas quoi faire, et j'ai peur de perdre tout comme l'autre fois. est ce que c'est possible de m'aider?
merci d'avance!

Autres pages sur : rame virus pubs help please

a b 8 Sécurité
2 Juillet 2007 14:28:27

Bonjour,

Télécharge Hijackthis (de Merjin).
Dézippe-le dans un dossier ou sur ton Bureau.

Lance l'application (Hijackthis.exe) :
- Choisis l'option "Do a system scan and save a logfile"
- Le Bloc-Notes s'ouvre, poste son contenu :

  • Edition / Sélectionner tout
  • Edition / Copier
  • Clique-Droit / Coller dans ta réponse

    AIDE : Tuto en vidéo sur Hijackthis
    3 Juillet 2007 11:02:43

    merci de m'aider :)  !!
    voilà le contenu du bloc-note:

    Logfile of HijackThis v1.99.1
    Scan saved at 11:00:41, on 03/07/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\xcobjnlq.exe
    C:\WINDOWS\system32\spupdsvc.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spnpinst.exe
    C:\WINDOWS\system32\Sysocmgr.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\WINDOWS\system32\WgaTray.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    c:\progra~1\intern~1\iexplore.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\MSN Messenger\usnsvc.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\WINDOWS\system32\msiexec.exe
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [drv clock phone dale] C:\Documents and Settings\All Users\Application Data\Poll one drv clock\AceSoap.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [aifsadjwdi] c:\windows\system32\aifsadjwdi.exe aifsadjwdi
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [icq.com] rundll32.exe "C:\WINDOWS\system32\mhowbcvt.dll",forkonce
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Philips Intelligent Agent] NOT_IN_USE_DUMMY_PATH
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Iso Bib] C:\DOCUME~1\ADMINI~1\APPLIC~1\CDROMB~1\idle locks sixth.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O20 - AppInit_DLLs: c:\progra~1\google\google~3\goec62~1.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Ares Chatroom server (AresChatServer) - Unknown owner - C:\Program Files\Ares\chatServer.exe (file missing)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: DomainService - - C:\WINDOWS\system32\xcobjnlq.exe
    O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    Contenus similaires
    a b 8 Sécurité
    3 Juillet 2007 12:14:46

    Re,

    Télécharge VundoFix.exe (par Atribune) sur ton Bureau.
  • Double-clique VundoFix.exe afin de le lancer
  • Clique sur le bouton Scan for Vundo
  • Lorsque le scan est complété, clique sur le bouton Remove Vundo
  • Une invite te demandera si tu veux supprimer les fichiers, clique YES
  • Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers
  • Tu verras une invite qui t'annonce que ton PC va redémarrer; clique OK
  • Copie/colle le contenu du rapport situé dans C:\vundofix.txt ainsi qu'un nouveau rapport HijackThis dans ta prochaine réponse
    Note: Il est possible que VundoFix soit confronté à un fichier qu'il ne peut supprimer. Si tel est le cas, l'outil se lancera au prochain redémarrage; il faut simplement suivre les instructions ci-haut, à partir de "clique sur le bouton Scan for Vundo".
    3 Juillet 2007 23:13:38

    rapport de vundofix.txt:

    VundoFix V6.5.4

    Checking Java version...

    Scan started at 22:54:13 03/07/2007

    Listing files found while scanning....

    C:\windows\system32\aacgwedq.exe
    C:\windows\system32\aqjcxruu.exe
    C:\windows\system32\bqnoiyfg.exe
    C:\WINDOWS\system32\cbxxwvw.dll
    C:\WINDOWS\system32\ddcyy.dll
    C:\windows\system32\gouqxdlo.exe
    C:\windows\system32\gydocnvc.exe
    C:\windows\system32\hlmhcmov.exe
    C:\windows\system32\jojqqauo.ini
    C:\windows\system32\jojqqauo.tmp
    C:\windows\system32\jtstdnxx.exe
    C:\WINDOWS\system32\mhowbcvt.dll
    C:\windows\system32\myifelvo.exe
    C:\windows\system32\nqlmiivr.exe
    C:\windows\system32\ouaqqjoj.dll
    C:\windows\system32\rpaqhmnd.exe
    C:\windows\system32\rsjldpob.exe
    C:\windows\system32\tuvurpo.dll
    C:\windows\system32\tvcbwohm.ini
    C:\windows\system32\uicnpnkt.exe
    C:\WINDOWS\system32\vhutirol.dll
    C:\windows\system32\xcobjnlq.exe
    C:\windows\system32\ymupymix.exe
    C:\WINDOWS\system32\yycdd.bak1
    C:\WINDOWS\system32\yycdd.bak2
    C:\WINDOWS\system32\yycdd.ini
    C:\WINDOWS\system32\yycdd.ini2
    C:\windows\system32\yycdd.tmp

    Beginning removal...

    Attempting to delete C:\windows\system32\aacgwedq.exe
    C:\windows\system32\aacgwedq.exe Has been deleted!

    Attempting to delete C:\windows\system32\aqjcxruu.exe
    C:\windows\system32\aqjcxruu.exe Has been deleted!

    Attempting to delete C:\windows\system32\bqnoiyfg.exe
    C:\windows\system32\bqnoiyfg.exe Has been deleted!

    Attempting to delete C:\WINDOWS\system32\cbxxwvw.dll
    C:\WINDOWS\system32\cbxxwvw.dll Has been deleted!

    Attempting to delete C:\WINDOWS\system32\ddcyy.dll
    C:\WINDOWS\system32\ddcyy.dll Has been deleted!

    Attempting to delete C:\windows\system32\gouqxdlo.exe
    C:\windows\system32\gouqxdlo.exe Has been deleted!

    Attempting to delete C:\windows\system32\gydocnvc.exe
    C:\windows\system32\gydocnvc.exe Has been deleted!

    Attempting to delete C:\windows\system32\hlmhcmov.exe
    C:\windows\system32\hlmhcmov.exe Has been deleted!

    Attempting to delete C:\windows\system32\jojqqauo.ini
    C:\windows\system32\jojqqauo.ini Has been deleted!

    Attempting to delete C:\windows\system32\jojqqauo.tmp
    C:\windows\system32\jojqqauo.tmp Has been deleted!

    Attempting to delete C:\windows\system32\jtstdnxx.exe
    C:\windows\system32\jtstdnxx.exe Has been deleted!

    Attempting to delete C:\WINDOWS\system32\mhowbcvt.dll
    C:\WINDOWS\system32\mhowbcvt.dll Has been deleted!

    Attempting to delete C:\windows\system32\myifelvo.exe
    C:\windows\system32\myifelvo.exe Has been deleted!

    Attempting to delete C:\windows\system32\nqlmiivr.exe
    C:\windows\system32\nqlmiivr.exe Has been deleted!

    Attempting to delete C:\windows\system32\ouaqqjoj.dll
    C:\windows\system32\ouaqqjoj.dll Has been deleted!

    Attempting to delete C:\windows\system32\rpaqhmnd.exe
    C:\windows\system32\rpaqhmnd.exe Has been deleted!

    Attempting to delete C:\windows\system32\rsjldpob.exe
    C:\windows\system32\rsjldpob.exe Has been deleted!

    Attempting to delete C:\windows\system32\tuvurpo.dll
    C:\windows\system32\tuvurpo.dll Has been deleted!

    Attempting to delete C:\windows\system32\tvcbwohm.ini
    C:\windows\system32\tvcbwohm.ini Has been deleted!

    Attempting to delete C:\windows\system32\uicnpnkt.exe
    C:\windows\system32\uicnpnkt.exe Has been deleted!

    Attempting to delete C:\WINDOWS\system32\vhutirol.dll
    C:\WINDOWS\system32\vhutirol.dll Has been deleted!

    Attempting to delete C:\windows\system32\xcobjnlq.exe
    C:\windows\system32\xcobjnlq.exe Could not be deleted.

    Attempting to delete C:\windows\system32\ymupymix.exe
    C:\windows\system32\ymupymix.exe Has been deleted!

    Attempting to delete C:\WINDOWS\system32\yycdd.bak1
    C:\WINDOWS\system32\yycdd.bak1 Has been deleted!

    Attempting to delete C:\WINDOWS\system32\yycdd.bak2
    C:\WINDOWS\system32\yycdd.bak2 Has been deleted!

    Attempting to delete C:\WINDOWS\system32\yycdd.ini
    C:\WINDOWS\system32\yycdd.ini Has been deleted!

    Attempting to delete C:\WINDOWS\system32\yycdd.ini2
    C:\WINDOWS\system32\yycdd.ini2 Has been deleted!

    Attempting to delete C:\windows\system32\yycdd.tmp
    C:\windows\system32\yycdd.tmp Has been deleted!

    Performing Repairs to the registry.
    Done!

    VundoFix V6.5.4

    Checking Java version...

    Scan started at 23:00:08 03/07/2007

    Listing files found while scanning....

    C:\windows\system32\cbxxwvw.dll
    C:\windows\system32\ddcyy.dll
    C:\windows\system32\vhutirol.dll

    Beginning removal...

    Attempting to delete C:\windows\system32\cbxxwvw.dll
    C:\windows\system32\cbxxwvw.dll Has been deleted!

    Attempting to delete C:\windows\system32\ddcyy.dll
    C:\windows\system32\ddcyy.dll Has been deleted!

    Attempting to delete C:\windows\system32\vhutirol.dll
    C:\windows\system32\vhutirol.dll Has been deleted!

    Performing Repairs to the registry.
    Done!

    rapport d'hijackthis:

    Logfile of HijackThis v1.99.1
    Scan saved at 23:13:54, on 03/07/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\spupdsvc.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spnpinst.exe
    C:\WINDOWS\system32\Sysocmgr.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    c:\progra~1\intern~1\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\WgaTray.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Documents and Settings\Administrateur\Bureau\hijackthis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: (no name) - {01939D26-B1C3-4B54-BD34-89D413FADC27} - C:\WINDOWS\system32\ddcyy.dll (file missing)
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [drv clock phone dale] C:\Documents and Settings\All Users\Application Data\Poll one drv clock\AceSoap.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [aifsadjwdi] c:\windows\system32\aifsadjwdi.exe aifsadjwdi
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Philips Intelligent Agent] NOT_IN_USE_DUMMY_PATH
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Iso Bib] C:\DOCUME~1\ADMINI~1\APPLIC~1\CDROMB~1\idle locks sixth.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O20 - AppInit_DLLs: c:\progra~1\google\google~3\goec62~1.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Ares Chatroom server (AresChatServer) - Unknown owner - C:\Program Files\Ares\chatServer.exe (file missing)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: DomainService - Unknown owner - C:\WINDOWS\system32\xcobjnlq.exe
    O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

    voili voilou!!!
    a b 8 Sécurité
    4 Juillet 2007 11:53:25

    Re,

  • Télécharge combofix.exe (par sUBs) sur ton Bureau.
  • Double clique combofix.exe.
  • Tape sur la touche 1 (Yes) pour démarrer le scan.
  • Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

    NOTE : Le rapport se trouve également ici : C:\Combofix.txt
    4 Juillet 2007 12:25:31

    re!!


    "Administrateur" - 2007-07-04 12:02:48 - ComboFix 07-07-03.9 - Service Pack 2


    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\#SharedObjects\233LKS5K\iforex.com
    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\#SharedObjects\233LKS5K\iforex.com\Emerp\Events\flash_object.swf\user_data.sol
    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com
    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com\settings.sol
    C:\DOCUME~1\ALLUSE~1\APPLIC~1.\TEMP
    C:\WINDOWS\system32\nvs2.inf


    ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))


    -------\LEGACY_DOMAINSERVICE
    -------\DomainService


    ((((((((((((((((((((((((( Files Created from 2007-06-04 to 2007-07-04 )))))))))))))))))))))))))))))))


    2007-07-04 12:02 51,200 --a------ C:\WINDOWS\nircmd.exe
    2007-07-04 10:32 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
    2007-07-04 10:31 <REP> d-------- C:\Program Files\Windows Live
    2007-07-04 10:31 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
    2007-07-03 22:54 <REP> d-------- C:\VundoFix Backups
    2007-06-27 01:44 <REP> d-------- C:\Program Files\iTunes
    2007-06-27 01:44 <REP> d-------- C:\Program Files\iPod
    2007-06-27 01:42 <REP> d-------- C:\Program Files\QuickTime
    2007-06-27 01:38 <REP> d-------- C:\Program Files\Apple Software Update
    2007-06-27 00:37 <REP> d-------- C:\WINDOWS\666CF04177BE414E9A9D0A227E9B48F8.TMP
    2007-06-26 23:21 274,432 --a------ C:\WINDOWS\system32\scyoftwjo.exe
    2007-06-26 23:16 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
    2007-06-26 22:51 53,248 --a------ C:\WINDOWS\system32\Process.exe
    2007-06-26 22:51 51,200 --a------ C:\WINDOWS\system32\dumphive.exe
    2007-06-26 22:51 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe
    2007-06-26 22:51 2,794 --a------ C:\WINDOWS\system32\tmp.reg
    2007-06-26 22:48 <REP> d-------- C:\Program Files\Zylom Games
    2007-06-26 12:34 122,944 --------- C:\WINDOWS\system32\xcobjnlq.exe
    2007-06-26 12:31 4,672 --a------ C:\WINDOWS\system32\utrxbprl.exe
    2007-06-24 14:59 8,704 --a------ C:\WINDOWS\system32\drivers\Dot4scan.sys
    2007-06-24 14:59 324,608 --a------ C:\WINDOWS\system32\hpojwia.dll
    2007-06-24 14:59 24,064 --a------ C:\WINDOWS\system32\drivers\Dot4usb.sys
    2007-06-24 14:59 207,360 --a------ C:\WINDOWS\system32\drivers\Dot4.sys
    2007-06-24 14:59 12,928 --a------ C:\WINDOWS\system32\drivers\Dot4Prt.sys
    2007-06-22 10:02 <REP> d-------- C:\WINDOWS\Google Toolbar
    2007-06-20 18:57 <REP> d-------- C:\DOCUME~1\INVIT~1\APPLIC~1\Talkback
    2007-06-19 13:09 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    2007-06-19 13:08 <REP> d-------- C:\Program Files\Fichiers communs\BOONTY Shared
    2007-06-19 13:07 <REP> d-------- C:\Program Files\Boonty
    2007-06-19 11:15 <REP> d-------- C:\DOCUME~1\INVIT~1\APPLIC~1\Leadertech
    2007-06-19 11:15 <REP> d-------- C:\DOCUME~1\INVIT~1\APPLIC~1\AdobeUM
    2007-06-18 00:07 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\Talkback
    2007-06-18 00:03 626,688 --a------ C:\WINDOWS\system32\msvcr80.dll
    2007-06-13 11:26 <REP> d-------- C:\WINDOWS\SxsCaPendDel
    2007-06-12 17:45 <REP> d---s---- C:\DOCUME~1\INVIT~1\UserData
    2007-06-11 11:50 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
    2007-06-11 11:50 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\PlayFirst
    2007-06-10 21:29 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
    2007-06-07 15:23 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\Zylom


    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

    2007-07-04 08:33:53 -------- d-----w C:\Program Files\MSN Messenger
    2007-06-22 08:02:43 -------- d-----w C:\Program Files\Google
    2007-06-19 11:44:50 3,763 ----a-w C:\WINDOWS\mozver.dat
    2007-06-09 13:40:06 -------- d-----w C:\Program Files\Fichiers communs\Ahead
    2007-05-17 11:09:54 51,568 ----a-w C:\WINDOWS\system32\sirenacm.dll
    2007-05-16 23:11:52 4,212 ---h--w C:\WINDOWS\system32\zllictbl.dat
    2007-05-16 15:13:53 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
    2007-05-13 08:58:08 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\dvdcss
    2007-05-10 14:17:50 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\Jasc
    2007-05-07 22:23:43 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
    2007-05-07 20:34:40 -------- d-----w C:\Program Files\VideoLAN
    2007-05-07 20:16:09 0 ----a-w C:\WINDOWS\nsreg.dat
    2007-05-07 20:15:58 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\DivX
    2007-05-07 20:14:52 -------- d-----w C:\Program Files\DivX
    2007-05-07 20:05:21 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
    2007-05-02 18:04:23 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe
    2007-05-02 18:04:19 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
    2007-05-02 18:04:14 129,784 ------w C:\WINDOWS\system32\pxafs.dll
    2007-05-02 18:04:14 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe
    2007-05-02 18:04:14 116,472 ------w C:\WINDOWS\system32\pxcpyi64.exe
    2007-05-02 18:04:06 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll
    2007-05-02 18:04:05 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll
    2007-05-02 18:02:06 73,728 ----a-w C:\WINDOWS\system32\dpl100.dll
    2007-05-02 18:02:06 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll
    2007-05-02 18:02:04 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll
    2007-05-02 18:02:02 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll
    2007-05-02 18:02:02 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll
    2007-05-02 18:02:02 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll
    2007-05-02 18:02:02 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll
    2007-05-02 18:02:02 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll
    2007-05-02 18:01:56 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll
    2007-05-02 18:01:56 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll
    2007-05-02 18:01:56 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll
    2007-05-02 18:01:56 740,442 ----a-w C:\WINDOWS\system32\DivX.dll
    2007-05-02 02:33:57 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll
    2007-05-02 02:33:56 124,472 ----a-w C:\WINDOWS\system32\DivXCodecUpdateChecker.exe
    2007-04-30 15:46:10 745,600 ----a-w C:\WINDOWS\system32\aswBoot.exe
    2007-04-30 15:35:28 95,872 ----a-w C:\WINDOWS\system32\AvastSS.scr
    2007-04-25 14:22:35 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
    2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
    2007-04-16 20:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
    2007-04-16 20:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
    2007-04-16 20:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
    2007-04-16 20:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
    2007-04-16 20:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
    2007-04-16 20:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
    2007-04-16 20:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
    2007-04-16 20:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll


    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


    *Note* empty entries & legit default entries are not shown

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{01939D26-B1C3-4B54-BD34-89D413FADC27}]
    C:\WINDOWS\system32\ddcyy.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    2006-10-22 23:08 62080 --a------ C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    2007-03-14 03:43 501400 --a------ C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    2006-08-31 20:33 322368 --a------ C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    2007-03-13 20:39 2436160 -ra------ c:\program files\google\googletoolbar1.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    2007-06-23 10:06 325048 --a------ C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SoundMan"="SOUNDMAN.EXE" [2006-11-17 06:42 C:\WINDOWS\soundman.exe]
    "NWEReboot"="" []
    "Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" []
    "drv clock phone dale"="C:\Documents and Settings\All Users\Application Data\Poll one drv clock\AceSoap.exe" [2007-03-23 22:48]
    "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-04-30 17:42]
    "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]
    "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 03:06]
    "Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2007-06-17 23:46]
    "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-04-27 09:41]
    "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-06-01 16:51]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 17:09]
    "Philips Intelligent Agent"="NOT_IN_USE_DUMMY_PATH" []
    "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-17 23:45]
    "Iso Bib"="C:\DOCUME~1\ADMINI~1\APPLIC~1\CDROMB~1\idle locks sixth.exe" [2007-03-23 22:48]
    "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24]
    "msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" []

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "appinit_dlls"= c:\progra~1\google\google~3\goec62~1.dll


    Contents of the 'Scheduled Tasks' folder
    2007-06-26 23:39:19 C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    2007-06-17 21:47:49 C:\WINDOWS\tasks\Norton Security Scan.job

    **************************************************************************

    catchme 0.3.914 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
    Rootkit scan 2007-07-04 12:20:50
    Windows 5.1.2600 Service Pack 2 NTFS

    scanning hidden processes ...

    scanning hidden autostart entries ...

    scanning hidden files ...

    scan completed successfully
    hidden files: 0

    **************************************************************************

    Completion time: 2007-07-04 12:22:07 - machine was rebooted
    C:\ComboFix-quarantined-files.txt ... 2007-07-04 12:21

    --- E O F ---
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\#SharedObjects\233LKS5K\iforex.com
    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\#SharedObjects\233LKS5K\iforex.com\Emerp\Events\flash_object.swf\user_data.sol
    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com
    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com\settings.sol
    C:\DOCUME~1\ALLUSE~1\APPLIC~1.\TEMP
    C:\WINDOWS\system32\nvs2.inf


    ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))


    -------\LEGACY_DOMAINSERVICE
    -------\DomainService


    ((((((((((((((((((((((((( Files Created from 2007-06-04 to 2007-07-04 )))))))))))))))))))))))))))))))


    No new files created in this timespan


    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

    2007-07-04 08:33:53 -------- d-----w C:\Program Files\MSN Messenger
    2007-06-22 08:02:43 -------- d-----w C:\Program Files\Google
    2007-06-19 11:44:50 3,763 ----a-w C:\WINDOWS\mozver.dat
    2007-06-09 13:40:06 -------- d-----w C:\Program Files\Fichiers communs\Ahead
    2007-05-17 11:09:54 51,568 ----a-w C:\WINDOWS\system32\sirenacm.dll
    2007-05-16 23:11:52 4,212 ---h--w C:\WINDOWS\system32\zllictbl.dat
    2007-05-16 15:13:53 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
    2007-05-13 08:58:08 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\dvdcss
    2007-05-10 14:17:50 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\Jasc
    2007-05-07 22:23:43 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
    2007-05-07 20:34:40 -------- d-----w C:\Program Files\VideoLAN
    2007-05-07 20:16:09 0 ----a-w C:\WINDOWS\nsreg.dat
    2007-05-07 20:15:58 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\DivX
    2007-05-07 20:14:52 -------- d-----w C:\Program Files\DivX
    2007-05-07 20:05:21 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
    2007-05-02 18:04:23 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe
    2007-05-02 18:04:19 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
    2007-05-02 18:04:14 129,784 ------w C:\WINDOWS\system32\pxafs.dll
    2007-05-02 18:04:14 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe
    2007-05-02 18:04:14 116,472 ------w C:\WINDOWS\system32\pxcpyi64.exe
    2007-05-02 18:04:06 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll
    2007-05-02 18:04:05 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll
    2007-05-02 18:02:06 73,728 ----a-w C:\WINDOWS\system32\dpl100.dll
    2007-05-02 18:02:06 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll
    2007-05-02 18:02:04 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll
    2007-05-02 18:02:02 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll
    2007-05-02 18:02:02 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll
    2007-05-02 18:02:02 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll
    2007-05-02 18:02:02 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll
    2007-05-02 18:02:02 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll
    2007-05-02 18:01:56 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll
    2007-05-02 18:01:56 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll
    2007-05-02 18:01:56 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll
    2007-05-02 18:01:56 740,442 ----a-w C:\WINDOWS\system32\DivX.dll
    2007-05-02 02:33:57 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll
    2007-05-02 02:33:56 124,472 ----a-w C:\WINDOWS\system32\DivXCodecUpdateChecker.exe
    2007-04-30 15:46:10 745,600 ----a-w C:\WINDOWS\system32\aswBoot.exe
    2007-04-30 15:35:28 95,872 ----a-w C:\WINDOWS\system32\AvastSS.scr
    2007-04-25 14:22:35 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
    2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
    2007-04-16 20:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
    2007-04-16 20:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
    2007-04-16 20:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
    2007-04-16 20:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
    2007-04-16 20:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
    2007-04-16 20:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
    2007-04-16 20:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
    2007-04-16 20:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll


    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


    *Note* empty entries & legit default entries are not shown

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{01939D26-B1C3-4B54-BD34-89D413FADC27}]
    C:\WINDOWS\system32\ddcyy.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    2006-10-22 23:08 62080 --a------ C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    2007-03-14 03:43 501400 --a------ C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    2006-08-31 20:33 322368 --a------ C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    2007-03-13 20:39 2436160 -ra------ c:\program files\google\googletoolbar1.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    2007-06-23 10:06 325048 --a------ C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SoundMan"="SOUNDMAN.EXE" [2006-11-17 06:42 C:\WINDOWS\soundman.exe]
    "NWEReboot"="" []
    "Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" []
    "drv clock phone dale"="C:\Documents and Settings\All Users\Application Data\Poll one drv clock\AceSoap.exe" [2007-03-23 22:48]
    "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-04-30 17:42]
    "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]
    "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 03:06]
    "Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2007-06-17 23:46]
    "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-04-27 09:41]
    "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-06-01 16:51]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 17:09]
    "Philips Intelligent Agent"="NOT_IN_USE_DUMMY_PATH" []
    "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-17 23:45]
    "Iso Bib"="C:\DOCUME~1\ADMINI~1\APPLIC~1\CDROMB~1\idle locks sixth.exe" [2007-03-23 22:48]
    "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24]
    "msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" []

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "appinit_dlls"= c:\progra~1\google\google~3\goec62~1.dll


    Contents of the 'Scheduled Tasks' folder
    2007-06-26 23:39:19 C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    2007-06-17 21:47:49 C:\WINDOWS\tasks\Norton Security Scan.job

    **************************************************************************

    catchme 0.3.914 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
    Rootkit scan 2007-07-04 12:22:23
    Windows 5.1.2600 Service Pack 2 NTFS

    scanning hidden processes ...

    ? [4036]


    scanning hidden autostart entries ...

    scanning hidden files ...

    **************************************************************************

    Completion time: 2007-07-04 12:22:48 - machine was rebooted
    C:\ComboFix-quarantined-files.txt ... 2007-07-04 12:22

    --- E O F ---
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\#SharedObjects\233LKS5K\iforex.com
    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\#SharedObjects\233LKS5K\iforex.com\Emerp\Events\flash_object.swf\user_data.sol
    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com
    C:\DOCUME~1\ADMINI~1\APPLIC~1.\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com\settings.sol
    C:\DOCUME~1\ALLUSE~1\APPLIC~1.\TEMP
    C:\WINDOWS\system32\nvs2.inf


    ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))


    -------\LEGACY_DOMAINSERVICE
    -------\DomainService


    ((((((((((((((((((((((((( Files Created from 2007-06-04 to 2007-07-04 )))))))))))))))))))))))))))))))


    No new files created in this timespan


    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

    2007-07-04 08:33:53 -------- d-----w C:\Program Files\MSN Messenger
    2007-06-22 08:02:43 -------- d-----w C:\Program Files\Google
    2007-06-19 11:44:50 3,763 ----a-w C:\WINDOWS\mozver.dat
    2007-06-09 13:40:06 -------- d-----w C:\Program Files\Fichiers communs\Ahead
    2007-05-17 11:09:54 51,568 ----a-w C:\WINDOWS\system32\sirenacm.dll
    2007-05-16 23:11:52 4,212 ---h--w C:\WINDOWS\system32\zllictbl.dat
    2007-05-16 15:13:53 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
    2007-05-13 08:58:08 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\dvdcss
    2007-05-10 14:17:50 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\Jasc
    2007-05-07 22:23:43 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
    2007-05-07 20:34:40 -------- d-----w C:\Program Files\VideoLAN
    2007-05-07 20:16:09 0 ----a-w C:\WINDOWS\nsreg.dat
    2007-05-07 20:15:58 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\DivX
    2007-05-07 20:14:52 -------- d-----w C:\Program Files\DivX
    2007-05-07 20:05:21 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
    2007-05-02 18:04:23 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe
    2007-05-02 18:04:19 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
    2007-05-02 18:04:14 129,784 ------w C:\WINDOWS\system32\pxafs.dll
    2007-05-02 18:04:14 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe
    2007-05-02 18:04:14 116,472 ------w C:\WINDOWS\system32\pxcpyi64.exe
    2007-05-02 18:04:06 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll
    2007-05-02 18:04:05 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll
    2007-05-02 18:02:06 73,728 ----a-w C:\WINDOWS\system32\dpl100.dll
    2007-05-02 18:02:06 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll
    2007-05-02 18:02:04 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll
    2007-05-02 18:02:02 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll
    2007-05-02 18:02:02 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll
    2007-05-02 18:02:02 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll
    2007-05-02 18:02:02 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll
    2007-05-02 18:02:02 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll
    2007-05-02 18:01:56 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll
    2007-05-02 18:01:56 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll
    2007-05-02 18:01:56 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll
    2007-05-02 18:01:56 740,442 ----a-w C:\WINDOWS\system32\DivX.dll
    2007-05-02 02:33:57 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll
    2007-05-02 02:33:56 124,472 ----a-w C:\WINDOWS\system32\DivXCodecUpdateChecker.exe
    2007-04-30 15:46:10 745,600 ----a-w C:\WINDOWS\system32\aswBoot.exe
    2007-04-30 15:35:28 95,872 ----a-w C:\WINDOWS\system32\AvastSS.scr
    2007-04-25 14:22:35 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
    2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
    2007-04-16 20:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
    2007-04-16 20:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
    2007-04-16 20:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
    2007-04-16 20:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
    2007-04-16 20:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
    2007-04-16 20:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
    2007-04-16 20:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
    2007-04-16 20:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll


    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


    *Note* empty entries & legit default entries are not shown

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{01939D26-B1C3-4B54-BD34-89D413FADC27}]
    C:\WINDOWS\system32\ddcyy.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    2006-10-22 23:08 62080 --a------ C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    2007-03-14 03:43 501400 --a------ C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    2006-08-31 20:33 322368 --a------ C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    2007-03-13 20:39 2436160 -ra------ c:\program files\google\googletoolbar1.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    2007-06-23 10:06 325048 --a------ C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SoundMan"="SOUNDMAN.EXE" [2006-11-17 06:42 C:\WINDOWS\soundman.exe]
    "NWEReboot"="" []
    "Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" []
    "drv clock phone dale"="C:\Documents and Settings\All Users\Application Data\Poll one drv clock\AceSoap.exe" [2007-03-23 22:48]
    "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-04-30 17:42]
    "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]
    "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 03:06]
    "Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2007-06-17 23:46]
    "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-04-27 09:41]
    "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-06-01 16:51]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 17:09]
    "Philips Intelligent Agent"="NOT_IN_USE_DUMMY_PATH" []
    "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-17 23:45]
    "Iso Bib"="C:\DOCUME~1\ADMINI~1\APPLIC~1\CDROMB~1\idle locks sixth.exe" [2007-03-23 22:48]
    "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24]
    "msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" []

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "appinit_dlls"= c:\progra~1\google\google~3\goec62~1.dll


    Contents of the 'Scheduled Tasks' folder
    2007-06-26 23:39:19 C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    2007-06-17 21:47:49 C:\WINDOWS\tasks\Norton Security Scan.job

    **************************************************************************

    catchme 0.3.914 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
    Rootkit scan 2007-07-04 12:23:08
    Windows 5.1.2600 Service Pack 2 NTFS

    scanning hidden processes ...

    scanning hidden autostart entries ...

    scanning hidden files ...

    **************************************************************************

    Completion time: 2007-07-04 12:23:37 - machine was rebooted
    C:\ComboFix-quarantined-files.txt ... 2007-07-04 12:23

    --- E O F ---
    a b 8 Sécurité
    4 Juillet 2007 12:26:22

    Reposte un rapport Hijackthis.
    4 Juillet 2007 12:27:48

    Logfile of HijackThis v1.99.1
    Scan saved at 12:28, on 2007-07-04
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\spupdsvc.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spnpinst.exe
    C:\WINDOWS\system32\Sysocmgr.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\system32\WgaTray.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\SOUNDMAN.EXE
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Messenger\msmsgs.exe
    c:\progra~1\intern~1\iexplore.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\WINDOWS\system32\drwtsn32.exe
    C:\WINDOWS\system32\drwtsn32.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\Administrateur\Bureau\hijackthis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: (no name) - {01939D26-B1C3-4B54-BD34-89D413FADC27} - C:\WINDOWS\system32\ddcyy.dll (file missing)
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [drv clock phone dale] C:\Documents and Settings\All Users\Application Data\Poll one drv clock\AceSoap.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Philips Intelligent Agent] NOT_IN_USE_DUMMY_PATH
    O4 - HKCU\..\Run: [Iso Bib] C:\DOCUME~1\ADMINI~1\APPLIC~1\CDROMB~1\idle locks sixth.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
    O20 - AppInit_DLLs: c:\progra~1\google\google~3\goec62~1.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Ares Chatroom server (AresChatServer) - Unknown owner - C:\Program Files\Ares\chatServer.exe (file missing)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

    a b 8 Sécurité
    4 Juillet 2007 12:30:36

    Re,

    Télécharge LopResearch.zip
    Dézippe-le sur ton Bureau uniquement.
    Ouvre le dossier LopResearch puis double-clique sur le Scan.bat.
    Un rapport sera généré, poste son contenu ici.
    4 Juillet 2007 12:51:32

    Rapport fait à 12:51:02.67 le 2007-07-04

    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est D4DB-50FB

    R‚pertoire de C:\Documents and Settings\Administrateur\Application Data

    2007-06-18 00:07 <REP> Talkback
    2007-06-11 21:32 <REP> Sun
    2007-06-11 11:50 <REP> PlayFirst
    2007-06-07 15:23 <REP> Zylom
    2007-05-12 21:56 <REP> dvdcss
    2007-05-10 16:17 <REP> Jasc
    2007-05-08 00:23 <REP> vlc
    2007-05-07 22:15 <REP> DivX
    2007-05-07 22:15 <REP> Mozilla
    2007-04-03 14:07 <REP> Apple Computer
    2007-03-23 22:48 <REP> Cdrom bone skip
    2007-03-23 21:07 <REP> Lavasoft
    2007-03-19 01:45 <REP> Screenshot Sender
    2007-03-19 01:00 <REP> Leadertech
    2007-03-14 18:45 <REP> AdobeUM
    2007-03-14 18:44 <REP> Adobe
    2007-03-13 23:02 <REP> Macromedia
    2007-03-13 20:39 <REP> Google
    2007-03-13 20:18 <REP> MSN6
    2007-03-10 15:19 <REP> Ahead
    2007-03-05 20:16 <REP> Symantec
    2007-03-04 20:52 <REP> Identities
    2007-03-04 20:51 62 desktop.ini
    2007-03-04 20:51 <REP> Microsoft
    2007-03-04 20:51 <REP> .
    2007-03-04 20:51 <REP> ..
    1 fichier(s) 62 octets
    25 R‚p(s) 16667578368 octets libres
    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est D4DB-50FB

    R‚pertoire de C:\Documents and Settings\All Users\Application Data

    2007-07-04 10:32 <REP> WindowsLiveInstaller
    2007-07-04 10:31 <REP> WLInstaller
    2007-06-26 23:16 <REP> PC Tools
    2007-06-19 13:09 <REP> BOONTY
    2007-06-18 00:00 <REP> Mozilla
    2007-06-11 11:50 <REP> PlayFirst
    2007-06-10 21:29 <REP> Sandlot Games
    2007-04-05 23:22 <REP> Zylom
    2007-04-03 14:05 <REP> Apple Computer
    2007-03-23 22:48 <REP> Poll one drv clock
    2007-03-19 01:16 <REP> Sony Ericsson
    2007-03-14 18:44 <REP> Adobe
    2007-03-13 20:39 <REP> Google
    2007-03-13 20:18 <REP> MSN6
    2007-03-10 15:21 <REP> Philips Intelligent Agent
    2007-03-05 20:16 <REP> Symantec
    2007-03-05 20:10 <REP> Windows Genuine Advantage
    2007-03-05 20:07 <REP> CyberLink
    2007-03-04 20:32 62 desktop.ini
    2007-03-04 20:31 <REP> Microsoft
    2007-03-04 20:31 <REP> .
    2007-03-04 20:31 <REP> ..
    1 fichier(s) 62 octets
    21 R‚p(s) 16667578368 octets libres
    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est D4DB-50FB

    R‚pertoire de C:\Documents and Settings\Default User\Application Data

    2007-03-04 20:32 62 desktop.ini
    2007-03-04 20:31 <REP> ..
    2007-03-04 20:31 <REP> Microsoft
    2007-03-04 20:31 <REP> .
    1 fichier(s) 62 octets
    3 R‚p(s) 16667578368 octets libres
    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est D4DB-50FB

    R‚pertoire de C:\Documents and Settings\Invit‚\Application Data

    2007-06-20 18:57 <REP> Talkback
    2007-06-20 18:57 <REP> Mozilla
    2007-06-19 11:15 <REP> AdobeUM
    2007-06-19 11:15 <REP> Leadertech
    2007-06-12 17:17 <REP> Sun
    2007-05-20 10:51 <REP> DivX
    2007-05-10 08:40 <REP> vlc
    2007-03-30 20:53 <REP> Macromedia
    2007-03-30 20:52 <REP> Google
    2007-03-30 20:52 <REP> Adobe
    2007-03-30 20:52 <REP> Identities
    2007-03-30 20:52 62 desktop.ini
    2007-03-30 20:52 <REP> Microsoft
    2007-03-30 20:52 <REP> .
    2007-03-30 20:52 <REP> ..
    1 fichier(s) 62 octets
    14 R‚p(s) 16667574272 octets libres
    ******************************************
    Recherche des taches planifiées dans C:\WINDOWS\tasks

    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est D4DB-50FB

    R‚pertoire de C:\WINDOWS\Tasks

    2007-06-27 01:39 284 AppleSoftwareUpdate.job
    2007-06-17 23:47 426 Norton Security Scan.job
    2007-03-04 20:43 6 SA.DAT
    2007-03-04 20:41 65 desktop.ini
    2007-03-04 20:41 <REP> ..
    2007-03-04 20:41 <REP> .
    4 fichier(s) 781 octets
    2 R‚p(s) 16,667,574,272 octets libres

    ******************************************
    Listing des dossiers dans C:\Program Files

    Adobe
    Alwil Software
    Apple Software Update
    Boonty
    CyberLink
    DivX
    Fichiers communs
    Google
    Internet Explorer
    iPod
    iTunes
    Java
    L'Amerzone
    Lavasoft
    Messenger
    microsoft frontpage
    Microsoft Office
    Movie Maker
    Mozilla Firefox
    MSN
    MSN Gaming Zone
    MSN Messenger
    NetMeeting
    Outlook Express
    QuickTime
    Services en ligne
    Sony Ericsson
    VideoLAN
    Windows Live
    Windows Media Player
    Windows NT
    xerox
    Zylom Games
    ******************************************
    Recherche des dossiers/fichiers LOP

    Pas de dossiers relatifs à Lop
    ******************************************
    Recherche d'infections connues

    Pas d'infection reconnue
    ******************************************
    Vérification du fichier HOSTS

    Fichier Hosts : Propre
    *************** Fin du Rapport - Version 0.9 ****************
    a b 8 Sécurité
    4 Juillet 2007 12:52:36

    Re,

    Télécharge Clean.zip (de Malekal),
    Décompresse-le sur ton bureau (Clique-Droit/Extraire tout), tu dois obtenir un dossier Clean.
    Ouvre le dossier clean, double-clique sur clean.cmd.
    Choisis l'option 1 puis patiente. Poste ensuite le contenu du rapport.
    4 Juillet 2007 12:58:15

    2007-07-04 a 12:58:22.70

    *** Recherche des fichiers dans C:

    *** Recherche des fichiers dans C:\WINDOWS\
    C:\WINDOWS\windebug.log FOUND
    C:\WINDOWS\windebug.log FOUND

    *** Recherche des fichiers dans C:\WINDOWS\system32

    *** Recherche des fichiers dans C:\Program Files
    "C:\Program Files\DivX\Google\Firefox\ffinstaller.exe" FOUND
    *** Fin du rapport !


    pour une fois le rapport n'est pas long!
    a b 8 Sécurité
    4 Juillet 2007 13:25:40

    Re,

    Fix les lignes en italique ci-dessous avec Hijackthis : AIDE EN IMAGES

    O2 - BHO: (no name) - {01939D26-B1C3-4B54-BD34-89D413FADC27} - C:\WINDOWS\system32\ddcyy.dll (file missing)
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O4 - HKLM\..\Run: [drv clock phone dale] C:\Documents and Settings\All Users\Application Data\Poll one drv clock\AceSoap.exe
    O4 - HKCU\..\Run: [Iso Bib] C:\DOCUME~1\ADMINI~1\APPLIC~1\CDROMB~1\idle locks sixth.exe


    Télécharge OTMoveIt (d'OldTimer). Sauvegarde-le sur ton Bureau.
    Sélectionne TOUS les emplacements en gras ci-dessous :

    C:\WINDOWS\windebug.log
    C:\Program Files\DivX\Google\Firefox\ffinstaller.exe
    C:\Documents and Settings\Administrateur\Application Data\Cdrom bone skip
    C:\Documents and Settings\All Users\Application Data\Poll one drv clock


    ---> Clique-droit puis Copier (ou Ctrl+C)

    Double-clique sur OTMoveIt.exe afin de le lancer.
    Fais un Clique-droit sur le cadre de gauche puis choisis Coller (ou Ctrl+V).
    Clique maintenant sur [#ff0000]MoveIt![/#f]

    [#ff0000]Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.[/#f]

    Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    Le nom du rapport correspond au moment de sa création : date_heure.log

    ->Informations sur le logiciel<-
    4 Juillet 2007 18:50:27

    re.

    impossible de coller dans OTMoveIT
    je me suis peut-etre trompée mais je crois avoir fait les choses correctement pourtant :??:  quand je fais clique droit dans OTMoveIT je ne peux pas cliquer sur coller

    je continuerais demain, je ne peux pas aller sur l'ordi ce soir.
    bonne soirée et encore merci!
    à demain
    a b 8 Sécurité
    4 Juillet 2007 19:56:32

    Tu as bien copié les lignes sur le forum ? ...
    5 Juillet 2007 17:16:42

    re!
    c'est bon finalement j'ai réussi, j'avais pas fait ce qu'il fallait.

    le rapport:

    File/Folder C:\WINDOWS\windebug.log not found.
    File/Folder C:\Program Files\DivX\Google\Firefox\ffinstaller.exe not found.
    File/Folder C:\Documents and Settings\Administrateur\Application Data\Cdrom bone skip not found.
    C:\Documents and Settings\All Users\Application Data\Poll one drv clock moved successfully.

    Created on 07-05-2007 17:14:15
    a b 8 Sécurité
    5 Juillet 2007 18:38:28

    Reposte un rapport Hijackthis.
    7 Juillet 2007 19:05:13

    bonsoir!
    (je n'étais pas chez moi donc je ne pouvais pas aller sur mon ordi avant ce soir)

    rapport Hijackthis :

    Logfile of HijackThis v1.99.1
    Scan saved at 19:02, on 2007-07-07
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\spupdsvc.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spnpinst.exe
    C:\WINDOWS\system32\Sysocmgr.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Alwil Software\Avast4\setup\avast.setup
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\WgaTray.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
    C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\WINDOWS\system32\msiexec.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\WINDOWS\explorer.exe
    C:\Program Files\Sony Ericsson\Mobile\File Manager\fmgrsrv.exe
    C:\PROGRA~1\SONYER~1\Mobile\MOBILE~1\EPMWOR~1.EXE
    C:\Program Files\Sony Ericsson\Mobile\File Manager\fmobxsrv.exe
    C:\Program Files\internet explorer\iexplore.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Documents and Settings\Administrateur\Bureau\hijackthis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Philips Intelligent Agent] NOT_IN_USE_DUMMY_PATH
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [Iso Bib] C:\DOCUME~1\ADMINI~1\APPLIC~1\CDROMB~1\idle locks sixth.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
    O20 - AppInit_DLLs: c:\progra~1\google\google~3\goec62~1.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Ares Chatroom server (AresChatServer) - Unknown owner - C:\Program Files\Ares\chatServer.exe (file missing)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

    11 Juillet 2007 12:10:13

    c'est fini? plus rien à faire?
    en tout cas merci beaucoup, c'est quand même mieux, là mon ordi va plus aussi lentement et il y'a moins de pubs qui s'affichent.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS