Eja ton ordi nateur doit etre a jour et il n es pas a jour car version 6 internet explorer

Bonjour, et meilleurs voeux 2008

...Il y a infection
Peux tu faire un clique droit sur le fichier " HijackThis.exe ", et le renommer en " Nico.exe "

...Relance " Nico.exe ", et poste moi son log / STP

Bonne réception

Bonsoir Nico

...Tu as des traces de Norton, alors que tu utilises Avast / OK --->Jamais deux antivirus sur la même station !
Prend ce lien pour désinstaller complètement Norton :

http://speedweb1.free.fr/frames2.php?page=divers3
Suivre à la lettre la procédure

...Il y a une autre infection, que nous voyons après la désinstallation de Norton

Quand cela est fait, reposte moi après redémarrage du PC, un nouveau log HijackThis / STP

Bonne réception

Bonjour,

Voici le nouveau log HijackThis apres desinstallation totale de Norton.

Merci d'avance.
Nico

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:55:41, on 03/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Sony\HotKey Utility\HKserv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\Sony\HotKey Utility\HKWnd.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\Nico.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://netscapeconf.volvo.se/proxy.pac
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [HKSERV.EXE] C:\Program Files\Sony\HotKey Utility\HKserv.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader3.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/...
O20 - Winlogon Notify: vturp - C:\WINDOWS\system32\vturp.dll (file missing)
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
End of file - 4579 bytes

Bonjour Nico
...Je suis au boulot ( 13H08 heure Française )
Je regarde en fin d'AM / OK

B.R.

Bonsoir Nico
...Ok ---> pour Norton / Bien effectué !

Tjrs le CPU occupé à 100% ?

...Bien, ferme toutes les applis : IE, Outlook, déconnecte toi du Web ( cable débranché )
Lance HijackThis pour un " do a system scan only "
Coche les lignes ci dessous :

O20 - Winlogon Notify: vturp - C:\WINDOWS\system32\vturp.dll (file missing)

Clique en bas à gauche sur " Fix checked "


...Passe moi un scan online avec IE, pas FireFox
fais ce scan en ligne : http://www.bitdefender.fr/bd/site/page.php?tab=0#
Clique, en bas à gauche, sur "scan on line (nouveau)"
Accepte ensuite la licence puis laisse-lui installer l'ActiveX
Laisse-toi guider.

Tuto en image : http://pageperso.aol.fr/rginformatique/mapage/defender.htm

Poste moi son rapport / STP

Bonne réception

Bonjour B.R,

Je suis en train de faire le scan " Bitedefender ", mais comme j'ai mon UC a 100 %, ca met des heures, j'en suis deja a 6H00 et il m'annonce encore 17 heures pour le scan...donc je dois etre patient.
Je ne pourrais donc pas te poster le rapport aujourd'hui, ca devrait etre ok pour demain.

Merci et bonne journee.
Nico

Re bonjour!
Ah, et ben finalement ca c'est enormement accelere sur la fin, voici le resultat du scan, pas de virus trouve :

BitDefender Online Scanner - Real Time Virus Report
Generated at: Sat, Jan 05, 2008 - 00:05:17
Scan Info
Scanned Files
267973
Infected Files
0
Virus Detected
No virus found
This summary of the scan process will be used by the BitDefender Antivirus Lab to create agregate statistics about virus activity around the world.

Et voila, je n'ai pas l'impression que ca va beaucoup t'aider.


Bonne reception.
Nico

Bonjour Nico
...Si tu fais Ctrl+Alt+Supp / Gestionnaires des taches / Processus
Quel élément te bouffes ?

A te lire

Bonjour,

Ce depend, par exemple si je suis sur internet explorer , ca me bouffe tout, mais si le coupe, ca bascule sur des elements comme :
crss.exe System
ashServ.exe System
svchost.exe
....

Ou alors le lancement des programmes, comme ACDSee, MSM Messenger ou quand l'antivirus Avast ce met a jour.

Je ne sais pas si ca va t'aider. Mais je ne vois pas trop quelles autres indications je pourrais te donner, desole.

Merci d'avance et bonne soiree!
Nico

Re,
Egalement ces applications prennent souvent 100 % :
cmd.exe Nico & Adeline
csrss.exe System

Encore merci.
Nico

Bonjour Nico ( 10H du matin local )

...Bien, je ne parviens pas à ouvrir ta page de démarrage :
http://netscapeconf.volvo.se/proxy.pac
Tu passes par un " proxy "?
Ce PC est en réseau ?
Combien de SDRAM as tu embarquée sur ce PC ? ( l'idéal pour un WinXP = 512Mo )

...Bien, nous allons creuser un peu
Télécharge Combofix.exe (par sUBs) sur ton Bureau
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Double clique combofix.exe et suis les invites.
Lorsque le scan sera complété, un rapport apparaîtra.

Copie/colle ce rapport dans ta prochaine réponse avec un nouveau HijackThis.


...Télécharge Aida32
Lance le --->Copie/Colle son rapport condensé ( pas la totalité, j'ai peur qu'il ne passe pas sur le forum )

A te lire

Bonjour,

Voici le rapport Combofix et HijackThis. J'ai telechage Aida32 mais je ne sais pas quoi lancer, quel rapport? Est-ce NetEye?

Merci pour ton aide.

ComboFix 08-01-04.1 - Nico et Adeline 2008-01-05 12:28:20.4 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.225 [GMT 11:00]
Running from: C:\Documents and Settings\Nico et Adeline\Bureau\ComboFix.exe
Command switches used :: C:\Documents and Settings\Nico et Adeline\Bureau\CFScript.txt
* Created a new restore point

FILE
C:\WINDOWS\system32\prutv.bak1
C:\WINDOWS\system32\prutv.bak2
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\system32\prutv.bak1
C:\WINDOWS\system32\prutv.bak2

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.
-------\LEGACY_LREDBOOO
-------\lredbooo


((((((((((((((((((((((((((((( Fichiers cr‚‚s 2007-12-05 to 2008-01-05 ))))))))))))))))))))))))))))))))))))
.

2008-01-05 00:16 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe
2008-01-04 17:50 . 2008-01-05 00:05 <REP> d-------- C:\WINDOWS\BDOSCAN8
2008-01-03 21:19 . 2008-01-03 21:20 <REP> d-------- C:\Program Files\jv16 PowerTools
2007-12-30 13:45 . 2007-12-30 13:46 <REP> d-------- C:\WINDOWS\ERUNT
2007-12-29 17:59 . 2007-12-29 17:59 <REP> d-------- C:\Program Files\Trend Micro
2007-12-29 15:58 . 2007-12-29 15:58 244 --ah----- C:\sqmnoopt06.sqm
2007-12-29 15:58 . 2007-12-29 15:58 232 --ah----- C:\sqmdata06.sqm
2007-12-29 15:56 . 2007-12-29 15:56 244 --ah----- C:\sqmnoopt05.sqm
2007-12-29 15:56 . 2007-12-29 15:56 244 --ah----- C:\sqmnoopt04.sqm
2007-12-29 15:56 . 2007-12-29 15:56 232 --ah----- C:\sqmdata05.sqm
2007-12-29 15:56 . 2007-12-29 15:56 232 --ah----- C:\sqmdata04.sqm
2007-12-29 15:55 . 2007-12-29 15:55 244 --ah----- C:\sqmnoopt03.sqm
2007-12-29 15:55 . 2007-12-29 15:55 232 --ah----- C:\sqmdata03.sqm
2007-12-29 15:22 . 2007-12-29 15:22 244 --ah----- C:\sqmnoopt02.sqm
2007-12-29 15:22 . 2007-12-29 15:22 232 --ah----- C:\sqmdata02.sqm
2007-12-28 19:01 . 2007-12-28 19:01 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab
2007-12-28 19:01 . 2007-12-28 19:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-01-05 01:10 --------- d-----w C:\Program Files\Java
2008-01-04 13:38 --------- d-----w C:\Program Files\CCleaner
2007-12-28 06:36 --------- d-----w C:\Program Files\TribalWeb
2007-12-20 10:04 --------- d-----w C:\Documents and Settings\Nico et Adeline\Application Data\dvdcss
2007-12-16 10:01 --------- d-----w C:\Documents and Settings\Nico et Adeline\Application Data\TribalWeb
2007-12-09 10:15 --------- d-----w C:\Documents and Settings\All Users\Application Data\FLEXnet
2007-12-04 14:56 93,264 ----a-w C:\WINDOWS\system32\drivers\aswmon.sys
2007-12-04 14:55 94,544 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys
2007-12-04 14:53 23,152 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys
2007-12-04 14:51 42,912 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys
2007-12-04 14:49 26,624 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys
2007-11-26 21:18 --------- d-----w C:\Documents and Settings\Nico et Adeline\Application Data\Apple Computer
2007-11-25 08:34 86,094 ----a-w C:\WINDOWS\BPMNT.dll
2007-11-25 08:34 71,749 ----a-w C:\WINDOWS\hcextoutput.dll
2007-11-25 08:34 267,845 ----a-w C:\WINDOWS\tsc.exe
2007-11-25 08:34 1,163,344 ----a-w C:\WINDOWS\vsapi32.dll
2007-11-21 09:35 --------- d-----w C:\Program Files\Enigma Software Group
2007-11-20 08:27 69,689 ----a-w C:\WINDOWS\UNZIP.DLL
2007-11-20 08:27 507,904 ----a-w C:\WINDOWS\TMUPDATE.DLL
2007-11-20 08:27 286,720 ----a-w C:\WINDOWS\PATCH.EXE
2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-10-24 23:26 53,248 ----a-w C:\WINDOWS\bdoscandel.exe
.

((((((((((((((((((((((((((((( snapshot@2008-01-05_ 0.31.19,09 )))))))))))))))))))))))))))))))))))))))))
.
+ 2000-08-30 21:00:00 163,328 ----a-w C:\WINDOWS\erdnt\subs\ERDNT.EXE
+ 2008-01-05 01:39:58 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_200.dat
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HKSERV.EXE"="C:\Program Files\Sony\HotKey Utility\HKserv.exe" [2004-06-30 00:49 122880]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-05 00:00 79224]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-07-11 07:10 339968]
"ANIWZCS2Service"="C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2004-12-17 02:49 49152]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 02:11 132496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk
backup=C:\WINDOWS\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nico et Adeline^Menu Démarrer^Programmes^Démarrage^TribalWeb.lnk]
path=C:\Documents and Settings\Nico et Adeline\Menu Démarrer\Programmes\Démarrage\TribalWeb.lnk
backup=C:\WINDOWS\pss\TribalWeb.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2007-06-28 10:14 270648 --a------ C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2001-07-09 20:50 155648 --a------ C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OM2_Monitor]
C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe -NoStart

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SonyPowerCfg]
2004-06-30 07:45 180224 --a------ C:\Program Files\Sony\VAIO Power Management\SPMgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpyHunter]
2007-09-25 02:11 132496 --a------ C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2007-09-25 02:11 132496 --a------ C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Symantec NetDriver Monitor]
C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VAIO Update 2]
C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe /Stationary

R1 oreans32;oreans32;C:\WINDOWS\system32\drivers\oreans32.sys [2006-05-11 00:28]
R3 A3AB;D-Link AirPro 802.11a/b Wireless Adapter Service(A3AB);C:\WINDOWS\system32\DRIVERS\A3AB.sys [2005-03-22 12:17]
R3 Eacfilt;Eacfilt Miniport;C:\WINDOWS\system32\DRIVERS\eacfilt.sys [2005-09-06 13:39]
R3 IPSECSHM;Nortel IPSECSHM Adapter;C:\WINDOWS\system32\DRIVERS\ipsecw2k.sys [2005-09-06 13:39]
S3 fbxusb;FreeBox USB Network Adapter;C:\WINDOWS\system32\DRIVERS\fbxusb.sys []
S3 IPSECEXT;Nortel Extranet Access Protocol;C:\WINDOWS\system32\DRIVERS\ipsecw2k.sys [2005-09-06 13:39]

.
Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'
"2008-01-03 11:09:01 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-05 12:43:38
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-01-05 12:49:23 - machine was rebooted [Nico et Adeline]
ComboFix-quarantined-files.txt 2008-01-05 01:48:56
.
2007-12-21 07:04:26 --- E O F ---



Et le rapport HijackThis :


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:46:55, on 05/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Sony\HotKey Utility\HKserv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Sony\HotKey Utility\HKWnd.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AIDA32 - Enterprise System Information\aida32.bin
C:\Program Files\Trend Micro\HijackThis\Nico.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://netscapeconf.volvo.se/proxy.pac
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O4 - HKLM\..\Run: [HKSERV.EXE] C:\Program Files\Sony\HotKey Utility\HKserv.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader3.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/...
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
End of file - 5300 bytes

Re Nico
...Bien Combo à supprimé deux fichiers infectieux
Supprime ComboFix, et C:\Qoobox / Vide ta corbeille ( important )

...Peux tu répondre à mes questions du poste n°13

A te lire

Bonjour,

Pardon, j'avais oublie les questions du post 13, donc non je n'ai pas de Proxy et je ne suis pas en reseau. J'ai 512 de SDRam.

OK, j'essaye avec Everest Home Edition et je te poste le report des que possible.

Merci et bonne journee :-)
Nico

Re,
Voici le rapport resume du system avec Everest :

Merci.

EVEREST Home Edition © 2003-2005 Lavalys, Inc.

------------------------------------------------------------­--------------------


Version EVEREST v2.20.405/fr
Site web http://www.lavalys.com/
Type de rapport Générateur de rapports
Ordinateur NICO
Générateur Nico et Adeline
Système d'exploitation Microsoft Windows XP Professional 5.1.2600 (WinXP Retail)
Date 2008-01-06
Heure 11:59


Résumé

------------------------------------------------------------­--------------------


Ordinateur:
Système d'exploitation Microsoft Windows XP Professional
Service Pack du système Service Pack 2
DirectX 4.09.00.0904 (DirectX 9.0c)
Nom du système NICO
Nom de l'utilisateur Nico et Adeline

Carte mère:
Type de processeur Mobile Intel Pentium 4 532, 3057 MHz (16 x 191)
Nom de la carte mère Sony Corporation Q-Project
Chipset de la carte mère ATI Mobility Radeon 7000 IGP
Mémoire système 512 Mo (PC2700 DDR SDRAM)
Type de BIOS Phoenix (09/01/04)
Port de communication RIM Virtual Serial Port v2 (COM4)
Port de communication RIM Virtual Serial Port v2 (COM5)
Port de communication Port imprimante ECP (LPT1)

Moniteur:
Carte vidéo ATI MOBILITY RADEON 9200 (64 Mo)
Carte vidéo ATI MOBILITY RADEON 9200 (64 Mo)
Accélérateur 3D ATI Mobility Radeon 9200 (M9+X)
Moniteur Sony Notebook LCD (1280x800)

Multimédia:
Carte audio ULi/ALi M5451 AC-Link Controller Audio Device

Stockage:
Contrôleur IDE Contrôleur IDE PCI Bus Master ALi M5229
Contrôleur IDE Texas Instruments PCI7420 Integrated FlashMedia Controller
Disque dur FUJITSU MHT2040AT (40 Go, 4200 RPM, Ultra-ATA/100)
Disque dur MemoryStick or MemoryStickPro Device
Lecteur optique PIONEER DVD-RW DVR-K14 (DVD+R9:2.4x, DVD+RW:8x/4x, DVD-RW:8x/4x, DVD-ROM:8x, CD:24x/24x/24x DVD+RW/DVD-RW)
État des disques durs SMART OK

Partitions:
C: (NTFS) 14998 Mo (7564 Mo libre)
D: (NTFS) 23148 Mo (2117 Mo libre)
Taille totale 38146 Mo (9681 Mo libre)

Entrée:
Clavier Clavier standard 101/102 touches ou clavier Microsoft Natural Keyboard PS/2
Souris Souris compatible PS/2

Réseau:
Carte réseau Carte réseau Fast Ethernet PCI Realtek RTL8139 Family
Carte réseau D-Link AirPlus G DWL-G630 Wireless Cardbus Adapter(rev.D) (10.1.1.4)
Carte réseau Nortel IPSECSHM Adapter - Miniport d'ordonnancement de paquets
Modem CXT AC-Link Modem for ALi
Modem Modem standard

Périphériques:
Imprimante hp deskjet 3420 series
Imprimante Microsoft Office Document Image Writer
Contrôleur USB1 NEC uPD720101 USB OpenHCI Controller
Contrôleur USB1 NEC uPD720101 USB OpenHCI Controller
Contrôleur USB2 NEC uPD720101 USB 2.0 Enhanced Host Controller (v1.0)
Batterie Adaptateur secteur Microsoft
Batterie Batterie à méthode de contrôle compatible ACPI Microsoft

Problèmes et suggestions:
Problème L'espace libre sur D: est seulement de 9%.


Debug - PCI

------------------------------------------------------------­--------------------


B00 D00 F00: ATI Mobility Radeon 7000 IGP Host-PCI Bridge

Offset 00: 02 10 B2 CB 06 01 30 22 02 00 00 06 00 40 00 00
Offset 10: 08 00 00 E8 08 00 60 E0 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 A0 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 00 00 11 64 08 03 00 00 00 00 00 00 04 0D 00 00
Offset 50: 00 00 00 00 83 93 00 80 00 10 11 11 10 33 11 11
Offset 60: BD 0C 00 00 24 26 E2 56 00 0A 25 00 C1 EF 40 D1
Offset 70: E1 09 20 30 03 03 84 84 00 00 10 00 00 00 00 00
Offset 80: 00 00 00 00 96 10 83 03 30 00 30 00 00 00 00 00
Offset 90: 00 00 00 20 0A 13 07 00 00 00 7F 7F 00 00 00 00
Offset A0: 02 00 20 00 17 02 00 0F 14 03 00 00 05 00 00 00
Offset B0: 00 00 02 00 08 00 00 00 04 04 04 04 00 00 00 00
Offset C0: 00 00 00 FF 5A 15 05 0F 00 20 3F 00 11 00 84 00
Offset D0: F4 8F 0F 00 F7 97 4F 00 2A 00 20 10 00 00 00 FF
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 FF 00 00 00 FF
Offset F0: 1F 00 09 00 00 00 00 FF 00 08 10 18 00 00 00 00

B00 D01 F00: ATI Radeon IGP-340(M) / Radeon 7000 IGP AGP Controller

Offset 00: 02 10 10 70 07 00 20 02 00 00 04 06 00 63 01 00
Offset 10: 00 00 00 00 00 00 00 00 00 01 01 44 A1 A1 20 22
Offset 20: 30 E0 30 E0 00 F0 F0 F7 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 FF 00 0C 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D03 F00: ULi/ALi M5457 AC'97 Modem Controller

Offset 00: B9 10 57 54 07 00 90 02 00 00 03 07 00 00 00 00
Offset 10: 00 E0 EF FB 01 FA 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 0A 01 00 00
Offset 40: 01 00 22 C0 00 00 00 00 01 00 00 00 00 00 00 00
Offset 50: 4D 10 75 81 00 00 00 00 08 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D04 F00: ULi/ALi M5451 AC-Link Controller Audio Device

Offset 00: B9 10 51 54 07 00 90 C2 02 00 01 04 00 40 00 00
Offset 10: 01 84 00 00 00 50 00 E0 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 DC 00 00 00 00 00 00 00 0A 01 02 18
Offset 40: 00 00 00 00 00 40 08 E2 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 01 00 22 E6
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D06 F00: ULi/ALi M7101 Power Management Controller

Offset 00: B9 10 01 71 00 00 00 02 00 00 80 06 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 00 40 00 00 00 80 20 00 AA 20 08 30 00 00 00 08
Offset 50: 00 01 00 00 00 00 00 00 00 5F 01 C8 00 00 00 00
Offset 60: 00 00 00 00 A5 00 00 00 00 00 00 22 00 00 00 0E
Offset 70: 00 00 00 00 00 00 00 28 27 11 00 A2 BE FE FE 00
Offset 80: 66 88 13 1B 00 32 00 00 0E 00 00 2A 99 00 00 99
Offset 90: 30 03 00 00 00 00 00 1B F8 00 C4 41 00 40 00 00
Offset A0: 00 00 00 C0 00 00 00 28 00 FE 00 00 00 00 00 00
Offset B0: 00 84 04 08 00 A0 01 00 20 04 01 01 02 01 00 D4
Offset C0: 1B 10 00 00 00 00 00 00 00 00 00 02 00 00 00 00
Offset D0: 00 46 04 00 00 00 02 00 00 00 40 00 B5 D0 00 00
Offset E0: 00 80 40 80 01 00 01 00 00 00 00 00 00 00 00 00
Offset F0: 01 00 20 6E 00 00 00 00 00 00 00 00 00 00 00 00

B00 D07 F00: ULi/ALi M1533 PCI-ISA Bridge

Offset 00: B9 10 33 15 0F 00 10 02 00 00 01 06 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 A0 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 01 D1 0B C0 5D 42 00 03 24 93 97 33 00 00 CD 33
Offset 50: 00 00 00 40 02 00 02 00 5C 00 80 00 00 00 E0 F0
Offset 60: 60 21 00 00 00 00 00 00 00 00 00 00 00 64 00 00
Offset 70: D2 00 2B 00 00 1F 81 36 40 54 CD F8 20 80 00 91
Offset 80: A5 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 01 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D0A F00: Texas Instruments Algemene CardBus Controller

Offset 00: 4C 10 8E AC 07 00 10 02 00 00 07 06 08 40 82 00
Offset 10: 00 60 00 E0 A0 00 00 02 00 04 04 20 00 F0 EF FF
Offset 20: 00 F0 EF FF 00 F0 EF FB 00 E0 EF FF 00 FD 00 00
Offset 30: FC FD 00 00 00 FC 00 00 FC FC 00 00 04 01 00 04
Offset 40: 4D 10 75 81 01 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 62 B0 44 08 19 00 93 06 80 00 1F 00 22 1B 0A 00
Offset 90: C0 23 64 60 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 01 00 22 7E 00 80 C0 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 08 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D0A F02: Texas Instruments IEEE1394 FireWire Adapter

Offset 00: 4C 10 2E 80 16 00 10 02 00 10 00 0C 08 40 80 00
Offset 10: 00 B0 00 E0 00 00 00 E0 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 44 00 00 00 00 00 00 00 0A 03 03 04
Offset 40: 00 00 00 00 01 00 02 7E 00 80 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 08 00 00 00
Offset F0: 01 00 00 00 82 10 00 00 4D 10 75 81 00 00 00 00

B00 D0A F03: Texas Instruments PCIxx20 Integrated FlashMedia Controller

Offset 00: 4C 10 8F AC 06 00 10 02 00 00 80 01 08 40 80 00
Offset 10: 00 70 00 E0 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 44 00 00 00 00 00 00 00 0B 04 07 04
Offset 40: 00 00 00 00 01 00 02 7E 00 00 00 00 60 00 00 00
Offset 50: 4D 10 75 81 05 03 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D0C F00: NEC uPD720101 USB OpenHCI Controller

Offset 00: 33 10 35 00 16 00 10 02 43 10 03 0C 08 40 80 00
Offset 10: 00 90 00 E0 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 0A 01 01 2A
Offset 40: 01 00 42 FE 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 05 33 B0 6C 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D0C F01: NEC uPD720101 USB OpenHCI Controller

Offset 00: 33 10 35 00 16 00 10 02 43 10 03 0C 08 40 00 00
Offset 10: 00 A0 00 E0 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 06 02 01 2A
Offset 40: 01 00 42 FE 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D0C F02: NEC uPD720101 USB 2.0 Enhanced Host Controller (v1.0)

Offset 00: 33 10 E0 00 16 00 10 02 04 20 03 0C 08 84 00 00
Offset 10: 00 B8 00 E0 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 0B 03 10 22
Offset 40: 01 00 42 FE 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 20 20 3F 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 05 33 B0 6C 00 00 00 00 01 00 00 00 00 00 00 C0
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D0F F00: ULi/ALi M5229 IDE Controller

Offset 00: B9 10 29 52 05 00 90 02 C4 FA 01 01 00 40 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 81 80 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 60 00 00 00 00 00 00 00 00 01 02 04
Offset 40: 00 00 00 4A 00 00 00 00 30 00 20 C1 00 00 BA 3A
Offset 50: 02 00 00 8B 55 55 0F 0A 02 31 31 00 02 31 31 00
Offset 60: 01 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D12 F00: Realtek RTL8139 PCI Fast Ethernet Adapter [A/B/C]

Offset 00: EC 10 39 81 05 00 90 02 10 00 00 02 00 40 00 00
Offset 10: 01 90 00 00 00 BC 00 E0 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 03 01 20 40
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 01 00 C2 F7 00 01 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B01 D05 F00: ATI Mobility Radeon 9200 (Sony) Video Adapter

Offset 00: 02 10 61 5C 07 02 B0 02 01 00 00 03 08 FF 00 00
Offset 10: 08 00 00 F0 01 A0 00 00 00 00 30 E0 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 30: 00 00 00 00 58 00 00 00 00 00 00 00 04 01 08 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 4D 10 75 81
Offset 50: 01 00 02 06 00 00 00 00 02 50 20 00 17 02 00 4F
Offset 60: 14 03 00 0F 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B04 D00 F00: Atheros AR5005G Wireless Network Adapter

Offset 00: 8C 16 1A 00 46 03 90 02 01 00 00 02 08 80 00 00
Offset 10: 00 00 EF FF 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 01 50 00 00 86 11 15 3A
Offset 30: 00 00 00 00 44 00 00 00 00 00 00 00 04 01 0A 1C
Offset 40: 80 00 00 00 01 00 C2 01 00 40 00 C6 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B04 D00 F01: Unknown

Offset 00: 8C 16 96 FF 00 00 90 02 01 02 00 07 00 00 80 00
Offset 10: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 8C 16 96 EE
Offset 30: 00 00 00 00 44 00 00 00 00 00 00 00 00 01 00 00
Offset 40: 00 00 00 00 01 00 00 00 00 40 00 80 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00


Debug - Video BIOS

------------------------------------------------------------­--------------------


C000:0000 U.x.....................l.....IBM~.............. 761295520......
C000:0040 ??..............2004/08/18 18:11................DvN7...a\.......
C000:0080 ..M9+ JE2 230/215 Req8905...(C) 1988-2003, ATI Technologies Inc.
C000:00C0 BK-ATI VER008.016M.085.008. rxquanta.je5 v611 .M9+ AGP DGD1UN..
C000:0100 j.....U.j.]..W..........(.......a\a\.........yho..".........$TVS
C000:0140 ..6.........................................PCIR..a\........x...
C000:0180 ....ATI MOBILITY RADEON 9200.-DNV....s.......................-DN
C000:01C0 V....s..........................]._.........-.-@...g.f..........
C000:0200 ................................................................
C000:0240 ................................................................
C000:0280 ....}..Y.S@....A........A........A.......0 ..3Q0`..........CD
C000:02C0 ..<..... ....P ....P`........X .A`.X`........hA...............
C000:0300 }..`.A.........M.......[.M..............t.......................
C000:0340 0....px..r..|..............`..................................I.
C000:0380 ...........P...........P...............M.......[.A...........@..
C000:03C0 -.-L.. .'H.....T.DC.t..0.0.D..S:.X.2.2U......dM...............B.


Debug - Unknown

--------------------------------------------------------------------------------


PCI/AGP 168C-FF96: Unknown



--------------------------------------------------------------------------------

The names of actual companies and products mentioned herein may be the trademarks of their respective owners.

Bonjour Nico

...Bien, mis à part le HDD D:\, qui est saturé, rien de néfaste dans ton rapport Everest
.
...Quelle est ta page de démarrage avec Internet Explorer?

Je vais regarder, si ton fichier " Host ", n'a pas pris un coup

Zeb-Restore est un petit utilitaire de restauration de clés de la base de registre. Le but du programme n'est pas de restaurer l'ensemble du système mais uniquement les points les plus souvent touchés afin de solutionner différents problèmes qui peuvent revenir de façon récurrente.

Voici les éléments qui peuvent être restaurés :
- RegEdit : réactive l'accès à RegEdit
- Clés RUN : réactive le lancement de programmes par clés RunXXX
- Bouton Arrêter : rétablit le bouton Arrêter
- Windows Update : rétablit la fonction Windows Update
- Gestionnaire des tâches : réactive le gestionnaire des tâches
- Panneau de configuration : réactive le Panneau de configuration
- Ajout/Suppression de programmes : restaure la fonction Ajout-Suppression de programmes
- Policies : remet en place des éléments désactivés par "Policies"
- Bureau : réactive le bureau
- Réparation IE : répare Internet Exploreur (pages de recherche)
- Extension des fichiers : répare les extensions des fichiers .exe .bat .reg .pif .cmd .scr .com
- Sites de confiance et sensibles : efface le contenu de ces zones (à utiliser si vous êtes infecté par des malwares)
- Préfixes et Protocoles Internet : restore les clés des protocoles Internet (ZoneMap etc.)
- Réinitialiser Fichier Hosts : réinitialise le fichier Hosts

http://telechargement.zebulon.fr/zeb-restore.html

Bonne réception

Bonjour,

Pour repondre a ta question, ma page de demarrage avec Internet Explorer est google.com.au

Je viens de telecharger et d'effectuer le Zeb Restore.

L'UC monte moins souvent qu'aupravant a 100 %, mais ca le fait encore malheureusement regulierement.

Encore merci pour ton aide et ta persistence.
Nico