Pb virus CID... [Résolu]

Salut

Télécharge ceci :

Lien : http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis

Démo : http://pageperso.aol.fr/balltrap34/demohijack.htm

Choisir l'option "do a scan and a logfile", et faire un copier/coller du rapport ainsi générer sur le forum.

++

bonjour!!j'ai des fenetres cid qui reviennent souvent kelkun pourais til maider pour arreter sa!!
merci davance!!
cordialement

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:50:24, on 13/01/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16575)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Common Files\aol\1177148205\ee\aolsoftware.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Panicware\Pop-Up Stopper\dpps2.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer optimisé pour MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: IntelligentAdvisor - {6548BF73-58FF-71D5-F97D-17C71E323709} - C:\Program Files\IntelligentAdvisor\IntelligentAdvisor-2.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1177148205\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Pop-Up Stopper] "C:\Program Files\Panicware\Pop-Up Stopper\dpps2.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [StartKeep] "C:\ProgramData\firstmixmix.vg4a8"
O4 - HKCU\..\Run: [MODE FREE BIRD SURF] "C:\ProgramData\Locks Mix Bows.krhhfk"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
O4 - Global Startup: OFFICE One Startup v7.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O13 - Gopher Prefix:
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-3-48.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkSrv.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

Peut-etre que c'est un fichier qui envoi ses pubs... Cherchez et suprimez!

j'ai chercher deja mais rien trouver..

va dans ton panneau de configuration et cherche.

Salut!!

hmm dsl cette semaine j'étais en concours donc j'ai pas vraiment pu me connecter...

donc voici mle rapport demander :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:25:13, on 19/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Creative\ShareDLL\CtNotify.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Creative\ShareDLL\MediaDet.Exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\Christian\Mes documents\Laurent\cogotch\Emulateurs\eMule\emule.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CAMP SHIM EXIT HECK] C:\Documents and Settings\All Users\Application Data\That Face Camp Shim\spam team.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [nurb city] C:\DOCUME~1\CHRIST~1\APPLIC~1\DASHCO~1\loadsect.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNxmk580YYRE
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/...
O16 - DPF: {1F831FA7-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file://C:\Program Files\AutoCAD LT 2002 Fra\InstFred.ocx
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D} (KXHCM10 Control) - http://sakura777.miemasu.net/kxhcm10.ocx
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://metaboli.club-internet.fr/components/Metaboli.ocx
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://zone.msn.com/bingame/luxr/default/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (OD2 Music Manager) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Roxio Inc. - C:\WINDOWS\system32\ImapiRox.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

Salut

Télécharge ceci: (by Moe) :

http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe

Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.

++

voici le rapport :

Rapport Lopxp fait le 19/01/2008 à 13:02:01
Exécuté dans : C:\Program Files\Lopxp

___________________________________________________________________________

=> Tâches planifiées

C:\WINDOWS\tasks\A210455F918BFFCB.job 
Crée le : 16/01/2008 à 19:15
Fichier exécuté => c:\docume~1\nicole\applic~1\dashco~1\cornextrahope.exe 

C:\WINDOWS\tasks\AAD085EF918B3883.job 
Crée le : 17/01/2008 à 18:34
Fichier exécuté => c:\docume~1\christ~1\applic~1\dashco~1\cornextrahope.exe 

C:\WINDOWS\tasks\XoftSpySE 2.job 
Crée le : 30/12/2007 à 10:14
Fichier exécuté => C:\Program Files\XoftSpySE\XoftSpy.exe ShowReminders

C:\WINDOWS\tasks\XoftSpySE.job 
Crée le : 30/12/2007 à 10:14
Fichier exécuté => C:\Program Files\XoftSpySE\XoftSpy.exe -t


___________________________________________________________________________

=> Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

03/06/2005 15:33:35 ... MICROS~1 --= Microsoft
06/01/2008 11:26:24 ... Mozilla ---= Mozilla
07/01/2008 10:38:48 ... Real ------= Real
06/01/2008 11:26:42 ... Talkback --= Talkback

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

03/06/2005 15:33:36 ... MICROS~1 --= Microsoft
06/01/2008 11:26:24 ... Mozilla ---= Mozilla

+- C:\Documents and Settings\All Users\Application Data

03/09/2005 08:19:42 ... ABBYY -----= ABBYY
28/06/2005 07:23:53 ... Adobe -----= Adobe
08/06/2005 06:05:45 ... APPLEC~1 --= Apple Computer
08/12/2005 14:34:21 ... Autodesk --= Autodesk
19/04/2006 17:00:05 ... BITSEX~1 --= Bitsexitlogsite
08/11/2006 16:53:12 ... BOONTY ----= BOONTY
26/07/2006 13:48:36 ... CanonBJ ---= CanonBJ
04/08/2006 11:33:13 ... Google ----= Google
31/12/2007 11:54:14 ... GOOGLE~1 --= Google Updater
08/03/2006 13:04:07 ... INSTAL~1 --= InstallShield
26/09/2005 16:27:06 ... MACROV~1 --= Macrovision
19/10/2005 11:45:03 ... MESSEN~1 --= Messenger Plus!
03/06/2005 14:40:32 ... MICROS~1 --= Microsoft
16/11/2006 20:54:45 ... MSN6 ------= MSN6
16/01/2006 08:24:10 ... MUMBOJ~1 --= MumboJumbo
06/06/2005 04:47:16 ... QUICKT~1 --= QuickTime
02/10/2005 12:41:08 ... Skype -----= Skype
06/10/2007 12:59:41 ... SONYER~1 --= Sony Ericsson
06/10/2007 12:59:17 ... Teleca ----= Teleca
24/12/2007 12:26:10 ... THATFA~1 --= That Face Camp Shim
14/10/2007 16:34:28 ... VICEVE~1 --= ViceVersa PRO 2
11/10/2005 17:04:35 ... WINDOW~1 --= Windows Genuine Advantage
26/09/2005 16:45:23 ... Zylom -----= Zylom

+- C:\Documents and Settings\Christian\Application Data

28/06/2005 07:10:39 ... Adobe -----= Adobe
28/06/2005 07:31:26 ... AdobeUM ---= AdobeUM
07/01/2006 12:45:55 ... APPLEC~1 --= Apple Computer
07/06/2005 05:52:56 ... ArcSoft ---= ArcSoft
25/05/2007 16:52:53 ... DASHCO~1 --= dash comp poke
08/11/2005 15:15:02 ... EASYNO~1 --= Easy Notes User Files
24/07/2006 09:42:31 ... F-Secure --= F-Secure
04/12/2005 13:32:06 ... Google ----= Google
28/10/2007 18:50:19 ... gtk-2.0 ---= gtk-2.0
06/06/2005 17:45:01 ... Help ------= Help
03/06/2005 12:01:04 ... IDENTI~1 --= Identities
24/07/2006 09:40:11 ... ispnews ---= ispnews
29/11/2007 19:03:08 ... JASCSO~1 --= Jasc Software Inc
06/06/2005 17:45:38 ... MACROM~1 --= Macromedia
03/06/2005 12:00:34 ... MICROS~1 --= Microsoft
26/08/2005 06:40:48 ... Mozilla ---= Mozilla
07/06/2005 05:54:10 ... Nikon -----= Nikon
07/06/2005 05:25:36 ... OPENOF~1.79 -----= OpenOffice.org1.9.79
06/09/2006 19:37:15 ... OPENOF~1.ORG -----= OpenOffice.org2
02/06/2007 15:08:24 ... PEX -------= PEX
23/08/2006 12:28:13 ... Real ------= Real
24/08/2006 13:21:20 ... RTE -------= RTE
16/09/2007 15:07:06 ... SECOND~1 --= SecondLife
03/06/2005 17:10:19 ... Skype -----= Skype
28/08/2006 07:31:51 ... SmartCom --= SmartCom
07/06/2005 06:42:37 ... Sun -------= Sun
26/08/2005 06:41:38 ... Talkback --= Talkback
03/04/2006 05:29:49 ... TEAMSP~1 --= teamspeak2
06/10/2007 13:01:17 ... Teleca ----= Teleca
04/08/2005 11:10:10 ... Template --= Template
17/11/2007 15:24:41 ... U3 --------= U3
24/06/2005 17:32:08 ... WATCHT~1 --= Watchtower

+- C:\Documents and Settings\Christian\Local Settings\Application Data

28/06/2005 07:30:47 ... Adobe -----= Adobe
07/01/2006 12:45:55 ... APPLEC~1 --= Apple Computer
17/02/2006 16:08:09 ... APPLIC~1 --= ApplicationHistory
22/04/2006 06:19:08 ... Dell ------= Dell
03/06/2005 14:13:11 ... Google ----= Google
06/06/2005 17:45:01 ... Help ------= Help
03/06/2005 12:37:04 ... IDENTI~1 --= Identities
15/09/2005 15:05:03 ... IM --------= IM
03/06/2005 12:00:35 ... MICROS~1 --= Microsoft
19/03/2007 18:27:36 ... Mozilla ---= Mozilla
07/01/2006 11:30:35 ... OD2 -------= OD2
05/06/2005 14:57:40 ... WMTOOL~1 --= WMTools Downloaded Files

+- C:\Documents and Settings\Nicole\Application Data

29/06/2005 11:54:56 ... Adobe -----= Adobe
03/03/2006 05:05:01 ... AdobeUM ---= AdobeUM
15/07/2006 17:29:40 ... APPLEC~1 --= Apple Computer
01/12/2006 19:11:11 ... Autodesk --= Autodesk
24/03/2007 21:34:18 ... DASHCO~1 --= dash comp poke
27/11/2006 10:04:47 ... DRIVEC~1 --= DriveCleaner 2006 Free
29/07/2006 10:00:04 ... F-Secure --= F-Secure
04/08/2006 11:33:20 ... Google ----= Google
06/07/2005 14:47:51 ... Help ------= Help
19/06/2005 16:31:57 ... IDENTI~1 --= Identities
26/07/2006 10:05:18 ... ispnews ---= ispnews
28/06/2005 15:04:04 ... JASCSO~1 --= Jasc Software Inc
19/06/2005 16:50:11 ... MACROM~1 --= Macromedia
19/06/2005 16:31:37 ... MICROS~1 --= Microsoft
27/11/2005 06:39:41 ... Mozilla ---= Mozilla
16/11/2006 20:54:44 ... MSN6 ------= MSN6
19/06/2005 17:08:01 ... OPENOF~1.79 ------= OpenOffice.org1.9.79
25/08/2006 08:46:02 ... OPENOF~1.ORG ------= OpenOffice.org2
08/11/2007 16:32:57 ... ORDIGR~1 --= Ordigramme
24/08/2006 12:39:00 ... Real ------= Real
29/07/2006 18:03:38 ... REGIST~1 --= Registry Cleaner
25/03/2007 19:15:49 ... SCREEN~1 --= Screenshot Sender
28/06/2005 04:25:47 ... Skype -----= Skype
09/09/2006 17:50:07 ... SmartCom --= SmartCom
06/09/2005 15:18:58 ... Sun -------= Sun
24/08/2007 09:21:11 ... Talkback --= Talkback
07/10/2007 09:18:10 ... Teleca ----= Teleca
04/09/2005 11:39:10 ... Template --= Template
22/06/2005 04:19:02 ... WATCHT~1 --= Watchtower

+- C:\Documents and Settings\Nicole\Local Settings\Application Data

29/06/2005 11:54:56 ... Adobe -----= Adobe
18/02/2006 17:12:05 ... APPLEC~1 --= Apple Computer
15/10/2005 16:52:33 ... Google ----= Google
06/07/2005 14:47:51 ... Help ------= Help
19/06/2005 16:50:51 ... IDENTI~1 --= Identities
13/09/2005 16:56:45 ... IM --------= IM
19/06/2005 16:31:39 ... MICROS~1 --= Microsoft
24/08/2007 09:20:57 ... Mozilla ---= Mozilla
04/01/2006 13:33:43 ... OD2 -------= OD2
14/10/2007 16:22:53 ... WinAVI ----= WinAVI
25/07/2005 17:50:22 ... WMTOOL~1 --= WMTools Downloaded Files

___________________________________________________________________________

=> Listing du dossier ProgramFiles

+- C:\Program Files

10/06/2005 17:28:52 ... Adaptec ---= Adaptec
28/06/2005 07:23:53 ... Adobe -----= Adobe
10/06/2007 17:45:27 ... Adverts ---= Adverts
03/08/2006 15:40:21 ... ALWILS~1 --= Alwil Software
28/05/2007 12:07:46 ... ANTIVI~1 --= AntivirusFirewall
03/07/2007 13:34:02 ... ArcSoft ---= ArcSoft
01/12/2006 18:25:27 ... AUTOCA~1 --= AutoCAD LT 2002 Fra
08/12/2005 14:35:22 ... BACKBU~1 --= backburner 2
13/10/2007 14:31:10 ... BFG -------= BFG
18/07/2006 15:57:42 ... Canon -----= Canon
24/12/2007 12:25:09 ... CIRCLE~1 --= Circle Developement
06/01/2008 11:06:45 ... CleanUp! --= CleanUp!
11/06/2005 07:00:28 ... Creative --= Creative
03/06/2005 17:12:27 ... CYBERL~1 --= CyberLink
07/09/2007 07:24:12 ... Dactylo ---= Dactylo
17/01/2008 18:33:54 ... DASHCO~1 --= dash comp poke
06/06/2005 04:39:27 ... Dell ------= Dell
18/08/2005 17:31:23 ... directx ---= directx
06/10/2007 13:09:19 ... DISC2P~1 --= Disc2Phone
05/06/2005 11:41:00 ... DivX ------= DivX
19/08/2005 07:02:11 ... DIVXCO~1 --= DivXCodec
17/11/2007 13:00:59 ... ECHANB~1 --= eChanblard
29/09/2007 20:08:12 ... eMule -----= eMule
03/06/2005 14:41:11 ... FICHIE~1 --= Fichiers communs
30/03/2007 18:38:48 ... FREEAU~1 --= Free Audio Pack
31/12/2007 11:54:10 ... Google ----= Google
27/08/2005 08:38:42 ... HABITA~1 --= Habitat 3D Maison
03/06/2005 12:30:56 ... INSTAL~1 --= InstallShield Installation Information
03/06/2005 11:50:43 ... INTERN~1 --= Internet Explorer
07/06/2005 05:49:27 ... JASCSO~1 --= Jasc Software Inc
07/06/2005 06:41:28 ... Java ------= Java
19/01/2008 12:59:50 ... Lopxp -----= Lopxp
03/06/2005 11:49:49 ... MESSEN~1 --= Messenger
26/07/2006 18:16:44 ... MESSEN~3 --= Messenger Plus! Live
03/06/2005 11:53:49 ... MICROS~1 --= microsoft frontpage
29/01/2006 12:51:45 ... MICROS~1.0 --= Microsoft IntelliPoint 5.0
30/06/2005 10:26:37 ... MICROS~2 --= Microsoft Office
30/06/2005 10:27:43 ... MICROS~3 --= Microsoft Visual Studio
30/06/2005 10:28:01 ... MICROS~4 --= Microsoft Works
03/06/2005 11:51:24 ... MOVIEM~1 --= Movie Maker
19/03/2007 18:23:14 ... MOZILL~1 --= Mozilla Firefox
28/05/2007 12:59:02 ... MSBuild ---= MSBuild
03/06/2005 11:49:41 ... MSNGAM~1 --= MSN Gaming Zone
03/06/2005 13:22:36 ... MSNMES~1 --= MSN Messenger
18/11/2006 12:42:48 ... MSXML4~1.0 --= MSXML 4.0
28/05/2007 13:02:53 ... MSXML6~1.0 --= MSXML 6.0
03/06/2005 11:50:58 ... NETMEE~1 --= NetMeeting
03/07/2007 13:35:13 ... Nikon -----= Nikon
25/08/2006 08:40:32 ... OPENOF~1.0 -----= OpenOffice.org 2.0
03/06/2005 11:50:53 ... OUTLOO~1 --= Outlook Express
07/09/2007 19:22:59 ... PDFEDI~1 --= PDF Editeur 2
07/01/2006 12:40:59 ... QUICKT~1 --= QuickTime
23/08/2006 12:28:33 ... Real ------= Real
28/05/2007 12:50:28 ... REFERE~1 --= Reference Assemblies
14/03/2006 17:49:04 ... RM-XPL~1 --= RM-X Player V4
22/05/2007 19:10:30 ... SAGEM -----= SAGEM
16/05/2007 18:01:31 ... SECURI~1 --= Securitoo
03/06/2005 17:10:08 ... Skype -----= Skype
07/09/2007 18:50:43 ... SODEAS~1 --= SodeaSoft
06/10/2007 12:59:17 ... SONYER~1 --= Sony Ericsson
20/03/2006 05:45:50 ... SONYSE~1 --= Sony Setup
12/07/2005 13:17:19 ... TERRAG~1 --= TerraGame
10/09/2005 07:48:43 ... TIEDUC~1 --= TI Education
19/01/2008 10:24:01 ... TRENDM~1 --= Trend Micro
04/07/2005 14:39:20 ... Trymedia --= Trymedia
14/07/2006 15:22:22 ... TWEAK-~1 --= Tweak-XP Pro 4
19/08/2007 18:21:30 ... UNINST~1 --= Uninstall Information
22/06/2005 04:15:24 ... WATCHT~1 --= Watchtower
10/06/2007 17:45:19 ... WI1F86~1 --= Windows Live
05/02/2007 19:21:41 ... WIE5D0~1 --= Windows Live Safety Center
12/10/2005 17:22:42 ... WINDOW~4 --= Windows Media Bonus Pack for Windows XP
01/02/2006 14:18:01 ... WI4DF6~1 --= Windows Media Connect 2
03/06/2005 11:51:02 ... WINDOW~3 --= Windows Media Player
03/06/2005 11:49:33 ... WINDOW~1 --= Windows NT
03/06/2005 11:49:53 ... WINDOW~2 --= WindowsUpdate
03/06/2005 17:02:33 ... WinRAR ----= WinRAR
03/06/2005 11:53:49 ... xerox -----= xerox
30/12/2007 10:14:29 ... XOFTSP~1 --= XoftSpySE
14/07/2006 15:01:13 ... XviD ------= XviD


___________________________________________________________________________

=> Clés registre

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CAMP SHIM EXIT HECK"="C:\Documents and Settings\All Users\Application Data\That Face Camp Shim\spam team.exe"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nurb city"="C:\DOCUME~1\CHRIST~1\APPLIC~1\DASHCO~1\loadsect.exe"


___________________________________________________________________________

=> Bloqueur popups Internet Explorer

+- Liste des popups autorisés :

host-domain-lookup.com
www.host-domain-lookup.com
searchweb2.com
www.searchweb2.com

___________________________________________________________________________

/!\  Suggestion (Nécessite une interprétation.)

+- Dossiers suspects :

C:\Documents and Settings\All Users\Application Data\Bitsexitlogsite
C:\Documents and Settings\All Users\Application Data\That Face Camp Shim
C:\Documents and Settings\Christian\Application Data\dash comp poke
C:\Documents and Settings\Nicole\Application Data\dash comp poke
C:\Program Files\dash comp poke
C:\Program Files\Adverts
C:\Program Files\Circle Developement

+- Tâches planifiées suspectes :

C:\WINDOWS\tasks\A210455F918BFFCB.job
C:\WINDOWS\tasks\AAD085EF918B3883.job

+- Registre:

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CAMP SHIM EXIT HECK"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nurb city"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow]
"host-domain-lookup.com"=-
"www.host-domain-lookup.com"=-
"searchweb2.com"=-
"www.searchweb2.com"=-

- Fin du rapport -

très bien :

va dans : Démarrer > Exécuter puis copie/colle cette ligne en gras exactement y compris les guillemets :

"%programfiles%\Lopxp\Lopxp.bat" /Fixme

puis valide, et poste le rapport stp

++

encore un rapport.... ^^

Rapport Lopxp fait le 19/01/2008 à 13:26:30
Exécuté dans : C:\Program Files\Lopxp

___________________________________________________________________________

=> Fixme :

+- Fichiers temporaires :
Nettoyage effectué.

___________________________________________________________________________

=> Tâches planifiées

C:\WINDOWS\tasks\XoftSpySE 2.job 
Crée le : 30/12/2007 à 10:14
Fichier exécuté => C:\Program Files\XoftSpySE\XoftSpy.exe ShowReminders

C:\WINDOWS\tasks\XoftSpySE.job 
Crée le : 30/12/2007 à 10:14
Fichier exécuté => C:\Program Files\XoftSpySE\XoftSpy.exe -t


___________________________________________________________________________

=> Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

03/06/2005 15:33:35 ... MICROS~1 --= Microsoft
06/01/2008 11:26:24 ... Mozilla ---= Mozilla
07/01/2008 10:38:48 ... Real ------= Real
06/01/2008 11:26:42 ... Talkback --= Talkback

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

03/06/2005 15:33:36 ... MICROS~1 --= Microsoft
06/01/2008 11:26:24 ... Mozilla ---= Mozilla

+- C:\Documents and Settings\All Users\Application Data

03/09/2005 08:19:42 ... ABBYY -----= ABBYY
28/06/2005 07:23:53 ... Adobe -----= Adobe
08/06/2005 06:05:45 ... APPLEC~1 --= Apple Computer
08/12/2005 14:34:21 ... Autodesk --= Autodesk
08/11/2006 16:53:12 ... BOONTY ----= BOONTY
26/07/2006 13:48:36 ... CanonBJ ---= CanonBJ
04/08/2006 11:33:13 ... Google ----= Google
31/12/2007 11:54:14 ... GOOGLE~1 --= Google Updater
08/03/2006 13:04:07 ... INSTAL~1 --= InstallShield
26/09/2005 16:27:06 ... MACROV~1 --= Macrovision
19/10/2005 11:45:03 ... MESSEN~1 --= Messenger Plus!
03/06/2005 14:40:32 ... MICROS~1 --= Microsoft
16/11/2006 20:54:45 ... MSN6 ------= MSN6
16/01/2006 08:24:10 ... MUMBOJ~1 --= MumboJumbo
06/06/2005 04:47:16 ... QUICKT~1 --= QuickTime
02/10/2005 12:41:08 ... Skype -----= Skype
06/10/2007 12:59:41 ... SONYER~1 --= Sony Ericsson
06/10/2007 12:59:17 ... Teleca ----= Teleca
14/10/2007 16:34:28 ... VICEVE~1 --= ViceVersa PRO 2
11/10/2005 17:04:35 ... WINDOW~1 --= Windows Genuine Advantage
26/09/2005 16:45:23 ... Zylom -----= Zylom

+- C:\Documents and Settings\Christian\Application Data

28/06/2005 07:10:39 ... Adobe -----= Adobe
28/06/2005 07:31:26 ... AdobeUM ---= AdobeUM
07/01/2006 12:45:55 ... APPLEC~1 --= Apple Computer
07/06/2005 05:52:56 ... ArcSoft ---= ArcSoft
08/11/2005 15:15:02 ... EASYNO~1 --= Easy Notes User Files
24/07/2006 09:42:31 ... F-Secure --= F-Secure
04/12/2005 13:32:06 ... Google ----= Google
28/10/2007 18:50:19 ... gtk-2.0 ---= gtk-2.0
06/06/2005 17:45:01 ... Help ------= Help
03/06/2005 12:01:04 ... IDENTI~1 --= Identities
24/07/2006 09:40:11 ... ispnews ---= ispnews
29/11/2007 19:03:08 ... JASCSO~1 --= Jasc Software Inc
06/06/2005 17:45:38 ... MACROM~1 --= Macromedia
03/06/2005 12:00:34 ... MICROS~1 --= Microsoft
26/08/2005 06:40:48 ... Mozilla ---= Mozilla
07/06/2005 05:54:10 ... Nikon -----= Nikon
07/06/2005 05:25:36 ... OPENOF~1.79 -----= OpenOffice.org1.9.79
06/09/2006 19:37:15 ... OPENOF~1.ORG -----= OpenOffice.org2
02/06/2007 15:08:24 ... PEX -------= PEX
23/08/2006 12:28:13 ... Real ------= Real
24/08/2006 13:21:20 ... RTE -------= RTE
16/09/2007 15:07:06 ... SECOND~1 --= SecondLife
03/06/2005 17:10:19 ... Skype -----= Skype
28/08/2006 07:31:51 ... SmartCom --= SmartCom
07/06/2005 06:42:37 ... Sun -------= Sun
26/08/2005 06:41:38 ... Talkback --= Talkback
03/04/2006 05:29:49 ... TEAMSP~1 --= teamspeak2
06/10/2007 13:01:17 ... Teleca ----= Teleca
04/08/2005 11:10:10 ... Template --= Template
17/11/2007 15:24:41 ... U3 --------= U3
24/06/2005 17:32:08 ... WATCHT~1 --= Watchtower

+- C:\Documents and Settings\Christian\Local Settings\Application Data

28/06/2005 07:30:47 ... Adobe -----= Adobe
07/01/2006 12:45:55 ... APPLEC~1 --= Apple Computer
17/02/2006 16:08:09 ... APPLIC~1 --= ApplicationHistory
22/04/2006 06:19:08 ... Dell ------= Dell
03/06/2005 14:13:11 ... Google ----= Google
06/06/2005 17:45:01 ... Help ------= Help
03/06/2005 12:37:04 ... IDENTI~1 --= Identities
15/09/2005 15:05:03 ... IM --------= IM
03/06/2005 12:00:35 ... MICROS~1 --= Microsoft
19/03/2007 18:27:36 ... Mozilla ---= Mozilla
07/01/2006 11:30:35 ... OD2 -------= OD2
05/06/2005 14:57:40 ... WMTOOL~1 --= WMTools Downloaded Files

+- C:\Documents and Settings\Nicole\Application Data

29/06/2005 11:54:56 ... Adobe -----= Adobe
03/03/2006 05:05:01 ... AdobeUM ---= AdobeUM
15/07/2006 17:29:40 ... APPLEC~1 --= Apple Computer
01/12/2006 19:11:11 ... Autodesk --= Autodesk
27/11/2006 10:04:47 ... DRIVEC~1 --= DriveCleaner 2006 Free
29/07/2006 10:00:04 ... F-Secure --= F-Secure
04/08/2006 11:33:20 ... Google ----= Google
06/07/2005 14:47:51 ... Help ------= Help
19/06/2005 16:31:57 ... IDENTI~1 --= Identities
26/07/2006 10:05:18 ... ispnews ---= ispnews
28/06/2005 15:04:04 ... JASCSO~1 --= Jasc Software Inc
19/06/2005 16:50:11 ... MACROM~1 --= Macromedia
19/06/2005 16:31:37 ... MICROS~1 --= Microsoft
27/11/2005 06:39:41 ... Mozilla ---= Mozilla
16/11/2006 20:54:44 ... MSN6 ------= MSN6
19/06/2005 17:08:01 ... OPENOF~1.79 ------= OpenOffice.org1.9.79
25/08/2006 08:46:02 ... OPENOF~1.ORG ------= OpenOffice.org2
08/11/2007 16:32:57 ... ORDIGR~1 --= Ordigramme
24/08/2006 12:39:00 ... Real ------= Real
29/07/2006 18:03:38 ... REGIST~1 --= Registry Cleaner
25/03/2007 19:15:49 ... SCREEN~1 --= Screenshot Sender
28/06/2005 04:25:47 ... Skype -----= Skype
09/09/2006 17:50:07 ... SmartCom --= SmartCom
06/09/2005 15:18:58 ... Sun -------= Sun
24/08/2007 09:21:11 ... Talkback --= Talkback
07/10/2007 09:18:10 ... Teleca ----= Teleca
04/09/2005 11:39:10 ... Template --= Template
22/06/2005 04:19:02 ... WATCHT~1 --= Watchtower

+- C:\Documents and Settings\Nicole\Local Settings\Application Data

29/06/2005 11:54:56 ... Adobe -----= Adobe
18/02/2006 17:12:05 ... APPLEC~1 --= Apple Computer
15/10/2005 16:52:33 ... Google ----= Google
06/07/2005 14:47:51 ... Help ------= Help
19/06/2005 16:50:51 ... IDENTI~1 --= Identities
13/09/2005 16:56:45 ... IM --------= IM
19/06/2005 16:31:39 ... MICROS~1 --= Microsoft
24/08/2007 09:20:57 ... Mozilla ---= Mozilla
04/01/2006 13:33:43 ... OD2 -------= OD2
14/10/2007 16:22:53 ... WinAVI ----= WinAVI
25/07/2005 17:50:22 ... WMTOOL~1 --= WMTools Downloaded Files

___________________________________________________________________________

=> Listing du dossier ProgramFiles

+- C:\Program Files

10/06/2005 17:28:52 ... Adaptec ---= Adaptec
28/06/2005 07:23:53 ... Adobe -----= Adobe
03/08/2006 15:40:21 ... ALWILS~1 --= Alwil Software
28/05/2007 12:07:46 ... ANTIVI~1 --= AntivirusFirewall
03/07/2007 13:34:02 ... ArcSoft ---= ArcSoft
01/12/2006 18:25:27 ... AUTOCA~1 --= AutoCAD LT 2002 Fra
08/12/2005 14:35:22 ... BACKBU~1 --= backburner 2
13/10/2007 14:31:10 ... BFG -------= BFG
18/07/2006 15:57:42 ... Canon -----= Canon
06/01/2008 11:06:45 ... CleanUp! --= CleanUp!
11/06/2005 07:00:28 ... Creative --= Creative
03/06/2005 17:12:27 ... CYBERL~1 --= CyberLink
07/09/2007 07:24:12 ... Dactylo ---= Dactylo
06/06/2005 04:39:27 ... Dell ------= Dell
18/08/2005 17:31:23 ... directx ---= directx
06/10/2007 13:09:19 ... DISC2P~1 --= Disc2Phone
05/06/2005 11:41:00 ... DivX ------= DivX
19/08/2005 07:02:11 ... DIVXCO~1 --= DivXCodec
17/11/2007 13:00:59 ... ECHANB~1 --= eChanblard
29/09/2007 20:08:12 ... eMule -----= eMule
03/06/2005 14:41:11 ... FICHIE~1 --= Fichiers communs
30/03/2007 18:38:48 ... FREEAU~1 --= Free Audio Pack
31/12/2007 11:54:10 ... Google ----= Google
27/08/2005 08:38:42 ... HABITA~1 --= Habitat 3D Maison
03/06/2005 12:30:56 ... INSTAL~1 --= InstallShield Installation Information
03/06/2005 11:50:43 ... INTERN~1 --= Internet Explorer
07/06/2005 05:49:27 ... JASCSO~1 --= Jasc Software Inc
07/06/2005 06:41:28 ... Java ------= Java
19/01/2008 12:59:50 ... Lopxp -----= Lopxp
03/06/2005 11:49:49 ... MESSEN~1 --= Messenger
26/07/2006 18:16:44 ... MESSEN~3 --= Messenger Plus! Live
03/06/2005 11:53:49 ... MICROS~1 --= microsoft frontpage
29/01/2006 12:51:45 ... MICROS~1.0 --= Microsoft IntelliPoint 5.0
30/06/2005 10:26:37 ... MICROS~2 --= Microsoft Office
30/06/2005 10:27:43 ... MICROS~3 --= Microsoft Visual Studio
30/06/2005 10:28:01 ... MICROS~4 --= Microsoft Works
03/06/2005 11:51:24 ... MOVIEM~1 --= Movie Maker
19/03/2007 18:23:14 ... MOZILL~1 --= Mozilla Firefox
28/05/2007 12:59:02 ... MSBuild ---= MSBuild
03/06/2005 11:49:41 ... MSNGAM~1 --= MSN Gaming Zone
03/06/2005 13:22:36 ... MSNMES~1 --= MSN Messenger
18/11/2006 12:42:48 ... MSXML4~1.0 --= MSXML 4.0
28/05/2007 13:02:53 ... MSXML6~1.0 --= MSXML 6.0
03/06/2005 11:50:58 ... NETMEE~1 --= NetMeeting
03/07/2007 13:35:13 ... Nikon -----= Nikon
25/08/2006 08:40:32 ... OPENOF~1.0 -----= OpenOffice.org 2.0
03/06/2005 11:50:53 ... OUTLOO~1 --= Outlook Express
07/09/2007 19:22:59 ... PDFEDI~1 --= PDF Editeur 2
07/01/2006 12:40:59 ... QUICKT~1 --= QuickTime
23/08/2006 12:28:33 ... Real ------= Real
28/05/2007 12:50:28 ... REFERE~1 --= Reference Assemblies
14/03/2006 17:49:04 ... RM-XPL~1 --= RM-X Player V4
22/05/2007 19:10:30 ... SAGEM -----= SAGEM
16/05/2007 18:01:31 ... SECURI~1 --= Securitoo
03/06/2005 17:10:08 ... Skype -----= Skype
07/09/2007 18:50:43 ... SODEAS~1 --= SodeaSoft
06/10/2007 12:59:17 ... SONYER~1 --= Sony Ericsson
20/03/2006 05:45:50 ... SONYSE~1 --= Sony Setup
12/07/2005 13:17:19 ... TERRAG~1 --= TerraGame
10/09/2005 07:48:43 ... TIEDUC~1 --= TI Education
19/01/2008 10:24:01 ... TRENDM~1 --= Trend Micro
04/07/2005 14:39:20 ... Trymedia --= Trymedia
14/07/2006 15:22:22 ... TWEAK-~1 --= Tweak-XP Pro 4
19/08/2007 18:21:30 ... UNINST~1 --= Uninstall Information
22/06/2005 04:15:24 ... WATCHT~1 --= Watchtower
10/06/2007 17:45:19 ... WI1F86~1 --= Windows Live
05/02/2007 19:21:41 ... WIE5D0~1 --= Windows Live Safety Center
12/10/2005 17:22:42 ... WINDOW~4 --= Windows Media Bonus Pack for Windows XP
01/02/2006 14:18:01 ... WI4DF6~1 --= Windows Media Connect 2
03/06/2005 11:51:02 ... WINDOW~3 --= Windows Media Player
03/06/2005 11:49:33 ... WINDOW~1 --= Windows NT
03/06/2005 11:49:53 ... WINDOW~2 --= WindowsUpdate
03/06/2005 17:02:33 ... WinRAR ----= WinRAR
03/06/2005 11:53:49 ... xerox -----= xerox
30/12/2007 10:14:29 ... XOFTSP~1 --= XoftSpySE
14/07/2006 15:01:13 ... XviD ------= XviD


___________________________________________________________________________

=> Clés registre


___________________________________________________________________________

=> Bloqueur popups Internet Explorer

+- Liste des popups autorisés :


___________________________________________________________________________

/!\  Suggestion (Nécessite une interprétation.)

- Fin du rapport -

très bien, fais ce qui est indiqué ici stp :

http://www.commentcamarche.net/faq/sujet 3174 virus methode preliminaire de desinfection version fr

++

rapport AVG :

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 19:21:13 19/01/2008

+ Résultat de l'analyse:



HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2EEB4FA-B6D6-41B9-9CFA-ABA87F862BCB} -> Adware.Generic : Ignoré.
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2EEB4FA-B6D6-41B9-9CFA-ABA87F862BCB} -> Adware.Generic : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360218.exe -> Downloader.Agent.hha : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360247.exe -> Downloader.Agent.hha : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360217.exe -> Downloader.Agent.hhc : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360246.exe -> Downloader.Agent.hhc : Ignoré.
:mozilla.150:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.151:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.30:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.31:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@2o7[2].txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.198:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.199:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.200:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.201:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.191:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adtech : Ignoré.
:mozilla.21:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.22:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.23:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.25:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.63:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.64:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.65:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.66:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.91:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.37:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Atdmt : Ignoré.
:mozilla.71:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignoré.
:mozilla.172:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Clickbank : Ignoré.
:mozilla.58:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
:mozilla.10:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Estat : Ignoré.
:mozilla.98:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Estat : Ignoré.
:mozilla.155:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.156:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@fastclick[2].txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.117:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.135:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.55:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Mediaplex : Ignoré.
:mozilla.134:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Overture : Ignoré.
:mozilla.88:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Overture : Ignoré.
:mozilla.49:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.50:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.51:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.52:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.53:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.54:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.56:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.17:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.20:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.21:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.22:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.28:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.29:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.17:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.92:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.94:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.228:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignoré.
:mozilla.75:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.76:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.164:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Webtrends : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360657.exe -> Trojan.Inject.qu : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360667.exe -> Trojan.Inject.qu : Ignoré.


Fin du rapport

est-ce que tu as supprimé tout ce qu'avg a trouvé ???

++

Yes j'ai suprimer tous les virus... AVG a confirmer! Je sais pas pourquoi le rapport les notes comme ignorés...

voici le rapport bitdefender :
BitDefender Online Scanner



Scan report generated at: Sun, Jan 20, 2008 - 13:27:03
Scan path: A:\;C:\;D:\;E:\;F:\;
Statistics
Time
02:05:16
Files
298279
Folders
8843
Boot Sectors
5
Archives
6383
Packed Files
11704
Results
Identified Viruses
1
Infected Files
25
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
25
Engines Info
Virus Definitions
892232
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
14
Archive plugins
38
Unpack plugins
7
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP665\A0358041.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP665\A0358041.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP665\A0358041.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358158.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358158.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358158.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358160.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358160.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358160.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358161.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358161.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358161.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360092.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360092.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360092.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360094.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360094.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360094.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360095.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360095.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360095.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360105.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360105.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360105.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360126.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360126.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360126.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360128.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360128.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360128.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360140.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360140.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360140.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360151.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360151.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360151.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360153.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360153.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360153.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360155.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360155.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360155.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360156.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360156.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360156.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360175.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360175.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360175.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360196.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360196.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360196.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360214.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360214.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360214.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360215.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360215.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360215.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360216.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360216.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360216.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360244.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360244.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360244.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360245.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360245.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360245.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP679\A0360499.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP679\A0360499.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP679\A0360499.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360523.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360523.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360523.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360673.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360673.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360673.exe
Deleted

enfin le rapport hijackthis :


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:47:55, on 20/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Creative\ShareDLL\CtNotify.exe
C:\Program Files\Creative\ShareDLL\MediaDet.Exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNxmk580YYRE
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/...
O16 - DPF: {1F831FA7-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file://C:\Program Files\AutoCAD LT 2002 Fra\InstFred.ocx
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D} (KXHCM10 Control) - http://sakura777.miemasu.net/kxhcm10.ocx
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://metaboli.club-internet.fr/components/Metaboli.ocx
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://zone.msn.com/bingame/luxr/default/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (OD2 Music Manager) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Roxio Inc. - C:\WINDOWS\system32\ImapiRox.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

Salut

ok, où en sont tes soucis ??

++