Relevantknowledge ??? En cause...

Hello Aloutchi !

Merci pour ta rapidité ; )

J'ai Avast comme antivirus

Egalement Zone alarm installé et spybot-sd

J'ecris vite avant d'être à nouveau deconnecté !!!!

Hello,

Bon, alors là, je craque !!!! J'ai installé malwarebyte et après plus de 3 h 00 de scan, aucun virus detectés... le scan n'etait pas fini et paf mon ordi s'éteint et se relance tout seul en me demandant d'effectuer une vérification de l'intégrité du disque... Ok... Sauf qu'il reste bloqué sur l'étape 2 sur 3 et plus rien !!!! Je suis obligée d'eteindre "à la sauvage" , je relance et j'annule la vérif disque... Je redemarre malwarebyte et recoupure... même topo 3 fois de suite...

BOOOOUUUHHHHHH !!!!! je fais quoi maintenant !!!! (à part m'arracher les cheveux !!!!)

Hello,

N'arrivant pas à faire une analyse Malware complete... J'ai fait une rapide, voici le résultat :

"Malwarebytes' Anti-Malware 1.36
Version de la base de données: 2104
Windows 5.1.2600 Service Pack 3

10/05/2009 21:52:57
mbam-log-2009-05-10 (21-52-57).txt

Type de recherche: Examen rapide
Eléments examinés: 81812
Temps écoulé: 11 minute(s), 25 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 2

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\f:/windows/downloaded program files/uninst.bat (Trojan.Agent) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\F:\WINDOWS\Downloaded Program Files\uninst.bat (Trojan.Agent) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
F:\WINDOWS\Downloaded Program Files\uninst.bat (Trojan.Agent) -> Quarantined and deleted successfully.
F:\Program Files\setup.exe (Rogue.Installer) -> Quarantined and deleted successfully."

Alors ???? Je n'ai plus de problèmes pour surfer mais toujours des arrêts / redemarrages du PC sans raison avec a chaque reboot une demande d'analyse de l'integrité du disque qui reste bloquée...

Que dois-je faire, please ????

Hello NicOO

Voici le rapport HiJackThis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:16:48, on 12/05/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\system32\ZoneLabs\vsmon.exe
F:\WINDOWS\Explorer.EXE
F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
F:\Program Files\Alwil Software\Avast4\ashServ.exe
F:\WINDOWS\system32\spoolsv.exe
f:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
F:\Program Files\BELKIN USB Wireless Monitor\WLService.exe
F:\Program Files\Java\jre6\bin\jqs.exe
F:\Program Files\BELKIN USB Wireless Monitor\WLanCfgG.exe
F:\WINDOWS\system32\nvsvc32.exe
F:\WINDOWS\System32\svchost.exe
F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
F:\Program Files\ScanSoft\OmniPageSE\opware32.exe
F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE
F:\WINDOWS\system32\LVCOMSX.EXE
F:\Program Files\Logitech\Video\CameraAssistant.exe
F:\WINDOWS\system32\ElkCtrl.exe
F:\WINDOWS\system32\RUNDLL32.EXE
F:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
F:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
F:\Program Files\Java\jre6\bin\jusched.exe
F:\Program Files\dvd43\dvd43_tray.exe
F:\WINDOWS\system32\ctfmon.exe
F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
F:\WINDOWS\NCLAUNCH.EXe
F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
F:\Documents and Settings\Joëlle\Local Settings\Application Data\Votre Opinion\PanelApp\PanelApp.exe
F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
F:\Program Files\palmOne\HOTSYNC.EXE
F:\Program Files\IncrediMail\bin\IMApp.exe
F:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.free.fr/freebox/index.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - F:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - F:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - F:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - F:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - F:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - F:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: (no name) - {66886C4D-B307-4ECA-A228-52CA9B9851A4} - (no file)
O4 - HKLM\..\Run: [avast!] F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Omnipage] F:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [EPSON Stylus D68 Series] F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE /P23 "EPSON Stylus D68 Series" /O6 "USB001" /M "Stylus D68"
O4 - HKLM\..\Run: [LVCOMSX] F:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] F:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] F:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] F:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE F:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "F:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "F:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "F:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "F:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [dvd43] F:\Program Files\dvd43\dvd43_tray.exe
O4 - HKCU\..\Run: [IncrediMail] F:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [NCLaunch] F:\WINDOWS\NCLAUNCH.EXe
O4 - HKCU\..\Run: [LDM] F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [PanelApp] F:\Documents and Settings\Joëlle\Local Settings\Application Data\Votre Opinion\PanelApp\PanelApp.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: HotSync Manager.lnk = F:\Program Files\palmOne\HOTSYNC.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - F:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - F:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - F:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {164B406B-0FD6-4E7F-BA7E-64D227D4CA37} (dnlplayer Class) - http://www.digitalwebbooks.com/reader/dbplugin.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
O16 - DPF: {814EA0DA-E0D9-4AA4-833C-A1A6D38E79E9} (DASWebDownload Class) - http://das.microsoft.com/activate/cab/x86/i486/NTANSI/retail/DASAct.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game13.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader4.cab
O18 - Protocol: bw+0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {8D270099-2CE1-499C-BA1E-39CD4AEE768B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - F:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Belkin 54Mbps Wireless USB Network Service (Belkin 54Mbps Wireless USB) - Unknown owner - F:\Program Files\BELKIN USB Wireless Monitor\WLService.exe
O23 - Service: Google Software Updater (gusvc) - Google - F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - F:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - f:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: MSCSPTISRV - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Unknown owner - F:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PanelSvc - Unknown owner - F:\Program Files\Votre Opinion\PanelApp\PanelSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - F:\WINDOWS\system32\ZoneLabs\vsmon.exe


Qu'est ce que tu en dis ???? Mon Pc reboote sans cesse de lui meme - c'est d'un pénible !!!

@+ ; ) JOELLE

Hello NicOO,

Voici déja le rapport de VirusTotal :

Fichier PanelSvc.exe reçu le 2009.04.02 13:30:02 (CET)Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.02 -
AhnLab-V3 5.0.0.2 2009.04.02 -
AntiVir 7.9.0.129 2009.04.02 -
Antiy-AVL 2.0.3.1 2009.04.02 -
Authentium 5.1.2.4 2009.04.01 -
Avast 4.8.1335.0 2009.04.01 -
AVG 8.5.0.285 2009.04.02 -
BitDefender 7.2 2009.04.02 -
CAT-QuickHeal 10.00 2009.04.01 -
ClamAV 0.94.1 2009.04.02 -
Comodo 1093 2009.04.01 -
DrWeb 4.44.0.09170 2009.04.02 -
eSafe 7.0.17.0 2009.04.02 -
eTrust-Vet 31.6.6430 2009.04.02 -
F-Prot 4.4.4.56 2009.04.01 -
F-Secure 8.0.14470.0 2009.04.02 -
Fortinet 3.117.0.0 2009.04.02 -
GData 19 2009.04.02 -
Ikarus T3.1.1.49.0 2009.04.02 -
K7AntiVirus 7.10.690 2009.04.01 -
Kaspersky 7.0.0.125 2009.04.02 -
McAfee 5571 2009.04.01 -
McAfee+Artemis 5571 2009.04.01 -
McAfee-GW-Edition 6.7.6 2009.04.01 -
Microsoft 1.4502 2009.04.02 -
NOD32 3983 2009.04.02 -
Norman 6.00.06 2009.04.01 -
nProtect 2009.1.8.0 2009.04.02 -
Panda 10.0.0.14 2009.04.01 -
PCTools 4.4.2.0 2009.04.01 -
Prevx1 V2 2009.04.02 -
Rising 21.23.32.00 2009.04.02 -
Sophos 4.40.0 2009.04.02 -
Sunbelt 3.2.1858.2 2009.04.02 -
Symantec 1.4.4.12 2009.04.02 -
TheHacker 6.3.4.0.298 2009.04.01 -
TrendMicro 8.700.0.1004 2009.04.02 -
VBA32 3.12.10.2 2009.04.02 -
ViRobot 2009.4.2.1673 2009.04.02 -
VirusBuster 4.6.5.0 2009.04.01 -

Information additionnelle
File size: 77312 bytes
MD5...: 640e4cfc6548a129695ebc0ad2f347d0
SHA1..: 343fe7933c0fbc6efbd9716fc175565f54bf6088
SHA256: a25666dddc6773869b7ec094ee7d378b9e0a9c35ff0e99b6e842ba802f522e13
SHA512: 58a4832477ccff5a334589a33bfd87ec8411f536e28ac8ac8eb1dcd72d61a11e<BR>e28e02897420ad1a89156f3b530eec40391c52b05b9f763abfcbe48e90689788
ssdeep: 1536:ug7k9MdD46XD2j2+FBhopgMBRHI0JTicMFExwxmxk36jQe7l+i:ug7tD4kQ<BR>3oBRHTi7X/KsUl+<BR>
PEiD..: -
TrID..: File type identification<BR>Win32 Executable MS Visual C++ (generic) (65.2%)<BR>Win32 Executable Generic (14.7%)<BR>Win32 Dynamic Link Library (generic) (13.1%)<BR>Generic Win/DOS Executable (3.4%)<BR>DOS Executable Generic (3.4%)
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x748c<BR>timedatestamp.....: 0x4734c6d3 (Fri Nov 09 20:45:07 2007)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 4 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x1000 0xd8c0 0xda00 6.52 7fc3e8847dcbbcf2c32c38fe83931079<BR>.rdata 0xf000 0x33f4 0x3400 5.02 a19a2bb31fcdda7ff23512dd11f46ef5<BR>.data 0x13000 0x2960 0xe00 2.09 a87dc77620a19d623599bfaa49e0f23a<BR>.rsrc 0x16000 0xc58 0xe00 4.10 ae552b1e8d6c6598e2eacee64b748ad0<BR><BR>( 7 imports ) <BR>> KERNEL32.dll: CreateEventW, CreateThread, WaitForSingleObject, CloseHandle, ExitProcess, lstrcatW, ReadFile, LockResource, FindResourceExW, GetFileAttributesExW, Sleep, SetEvent, GetCommandLineW, LoadResource, SizeofResource, FindResourceW, GetLastError, LeaveCriticalSection, InterlockedDecrement, InterlockedIncrement, DeleteCriticalSection, InitializeCriticalSection, EnterCriticalSection, GetModuleFileNameW, GetVersionExW, GetThreadLocale, GetLocaleInfoA, GetACP, InterlockedExchange, lstrlenW, RaiseException, GetCurrentThreadId, FreeLibrary, GetProcAddress, LoadLibraryW, GetModuleHandleW, lstrcpyW, LoadLibraryExW, MultiByteToWideChar, lstrcpynW, CreateFileW, lstrcmpiW, GetSystemInfo, VirtualProtect, LCMapStringW, LCMapStringA, GetStringTypeW, GetStringTypeA, FlushFileBuffers, SetStdHandle, IsBadCodePtr, IsBadReadPtr, GetCPInfo, GetOEMCP, LoadLibraryA, WideCharToMultiByte, SetFilePointer, VirtualQuery, RtlUnwind, GetSystemTimeAsFileTime, GetCurrentProcessId, GetTickCount, QueryPerformanceCounter, GetVersionExA, HeapDestroy, HeapAlloc, HeapFree, HeapReAlloc, HeapSize, GetProcessHeap, GetModuleHandleA, GetStartupInfoW, TerminateProcess, GetCurrentProcess, HeapCreate, VirtualFree, VirtualAlloc, IsBadWritePtr, WriteFile, GetStdHandle, GetModuleFileNameA, UnhandledExceptionFilter, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, GetCommandLineA, SetHandleCount, GetFileType, GetStartupInfoA, TlsAlloc, SetLastError, TlsFree, TlsSetValue, TlsGetValue, SetUnhandledExceptionFilter<BR>> ADVAPI32.dll: ControlService, CryptReleaseContext, CryptDestroyKey, CryptDestroyHash, CryptVerifySignatureW, CryptHashData, CryptCreateHash, CryptAcquireContextW, CryptImportKey, SetServiceStatus, DeregisterEventSource, ReportEventW, RegisterEventSourceW, DeleteService, RegDeleteKeyW, OpenServiceW, CloseServiceHandle, CreateServiceW, OpenSCManagerW, RegisterServiceCtrlHandlerW, StartServiceCtrlDispatcherW, RegQueryValueExW, RegDeleteValueW, RegCreateKeyExW, RegSetValueExW, RegOpenKeyExW, RegQueryInfoKeyW, RegEnumKeyExW, RegCloseKey<BR>> CRYPT32.dll: CryptDecodeObject<BR>> USER32.dll: PostThreadMessageW, LoadStringW, CharUpperW, MessageBoxW, CharNextW, GetMessageW, TranslateMessage, DispatchMessageW<BR>> ole32.dll: CoTaskMemFree, CoTaskMemRealloc, CoInitializeSecurity, CoUninitialize, StringFromGUID2, CoRevokeClassObject, CoRegisterClassObject, CoCreateInstance, CoInitialize, CoTaskMemAlloc<BR>> OLEAUT32.dll: -, -, -, -, -, -, -, -<BR>> SHLWAPI.dll: PathFindExtensionW<BR><BR>( 0 exports ) <BR>
RDS...: NSRL Reference Data Set<BR>-

Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.02 -
AhnLab-V3 5.0.0.2 2009.04.02 -
AntiVir 7.9.0.129 2009.04.02 -
Antiy-AVL 2.0.3.1 2009.04.02 -
Authentium 5.1.2.4 2009.04.01 -
Avast 4.8.1335.0 2009.04.01 -
AVG 8.5.0.285 2009.04.02 -
BitDefender 7.2 2009.04.02 -
CAT-QuickHeal 10.00 2009.04.01 -
ClamAV 0.94.1 2009.04.02 -
Comodo 1093 2009.04.01 -
DrWeb 4.44.0.09170 2009.04.02 -
eSafe 7.0.17.0 2009.04.02 -
eTrust-Vet 31.6.6430 2009.04.02 -
F-Prot 4.4.4.56 2009.04.01 -
F-Secure 8.0.14470.0 2009.04.02 -
Fortinet 3.117.0.0 2009.04.02 -
GData 19 2009.04.02 -
Ikarus T3.1.1.49.0 2009.04.02 -
K7AntiVirus 7.10.690 2009.04.01 -
Kaspersky 7.0.0.125 2009.04.02 -
McAfee 5571 2009.04.01 -
McAfee+Artemis 5571 2009.04.01 -
McAfee-GW-Edition 6.7.6 2009.04.01 -
Microsoft 1.4502 2009.04.02 -
NOD32 3983 2009.04.02 -
Norman 6.00.06 2009.04.01 -
nProtect 2009.1.8.0 2009.04.02 -
Panda 10.0.0.14 2009.04.01 -
PCTools 4.4.2.0 2009.04.01 -
Prevx1 V2 2009.04.02 -
Rising 21.23.32.00 2009.04.02 -
Sophos 4.40.0 2009.04.02 -
Sunbelt 3.2.1858.2 2009.04.02 -
Symantec 1.4.4.12 2009.04.02 -
TheHacker 6.3.4.0.298 2009.04.01 -
TrendMicro 8.700.0.1004 2009.04.02 -
VBA32 3.12.10.2 2009.04.02 -
ViRobot 2009.4.2.1673 2009.04.02 -
VirusBuster 4.6.5.0 2009.04.01 -

Information additionnelle
File size: 77312 bytes
MD5...: 640e4cfc6548a129695ebc0ad2f347d0
SHA1..: 343fe7933c0fbc6efbd9716fc175565f54bf6088
SHA256: a25666dddc6773869b7ec094ee7d378b9e0a9c35ff0e99b6e842ba802f522e13
SHA512: 58a4832477ccff5a334589a33bfd87ec8411f536e28ac8ac8eb1dcd72d61a11e<BR>e28e02897420ad1a89156f3b530eec40391c52b05b9f763abfcbe48e90689788
ssdeep: 1536:ug7k9MdD46XD2j2+FBhopgMBRHI0JTicMFExwxmxk36jQe7l+i:ug7tD4kQ<BR>3oBRHTi7X/KsUl+<BR>
PEiD..: -
TrID..: File type identification<BR>Win32 Executable MS Visual C++ (generic) (65.2%)<BR>Win32 Executable Generic (14.7%)<BR>Win32 Dynamic Link Library (generic) (13.1%)<BR>Generic Win/DOS Executable (3.4%)<BR>DOS Executable Generic (3.4%)
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x748c<BR>timedatestamp.....: 0x4734c6d3 (Fri Nov 09 20:45:07 2007)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 4 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x1000 0xd8c0 0xda00 6.52 7fc3e8847dcbbcf2c32c38fe83931079<BR>.rdata 0xf000 0x33f4 0x3400 5.02 a19a2bb31fcdda7ff23512dd11f46ef5<BR>.data 0x13000 0x2960 0xe00 2.09 a87dc77620a19d623599bfaa49e0f23a<BR>.rsrc 0x16000 0xc58 0xe00 4.10 ae552b1e8d6c6598e2eacee64b748ad0<BR><BR>( 7 imports ) <BR>> KERNEL32.dll: CreateEventW, CreateThread, WaitForSingleObject, CloseHandle, ExitProcess, lstrcatW, ReadFile, LockResource, FindResourceExW, GetFileAttributesExW, Sleep, SetEvent, GetCommandLineW, LoadResource, SizeofResource, FindResourceW, GetLastError, LeaveCriticalSection, InterlockedDecrement, InterlockedIncrement, DeleteCriticalSection, InitializeCriticalSection, EnterCriticalSection, GetModuleFileNameW, GetVersionExW, GetThreadLocale, GetLocaleInfoA, GetACP, InterlockedExchange, lstrlenW, RaiseException, GetCurrentThreadId, FreeLibrary, GetProcAddress, LoadLibraryW, GetModuleHandleW, lstrcpyW, LoadLibraryExW, MultiByteToWideChar, lstrcpynW, CreateFileW, lstrcmpiW, GetSystemInfo, VirtualProtect, LCMapStringW, LCMapStringA, GetStringTypeW, GetStringTypeA, FlushFileBuffers, SetStdHandle, IsBadCodePtr, IsBadReadPtr, GetCPInfo, GetOEMCP, LoadLibraryA, WideCharToMultiByte, SetFilePointer, VirtualQuery, RtlUnwind, GetSystemTimeAsFileTime, GetCurrentProcessId, GetTickCount, QueryPerformanceCounter, GetVersionExA, HeapDestroy, HeapAlloc, HeapFree, HeapReAlloc, HeapSize, GetProcessHeap, GetModuleHandleA, GetStartupInfoW, TerminateProcess, GetCurrentProcess, HeapCreate, VirtualFree, VirtualAlloc, IsBadWritePtr, WriteFile, GetStdHandle, GetModuleFileNameA, UnhandledExceptionFilter, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, GetCommandLineA, SetHandleCount, GetFileType, GetStartupInfoA, TlsAlloc, SetLastError, TlsFree, TlsSetValue, TlsGetValue, SetUnhandledExceptionFilter<BR>> ADVAPI32.dll: ControlService, CryptReleaseContext, CryptDestroyKey, CryptDestroyHash, CryptVerifySignatureW, CryptHashData, CryptCreateHash, CryptAcquireContextW, CryptImportKey, SetServiceStatus, DeregisterEventSource, ReportEventW, RegisterEventSourceW, DeleteService, RegDeleteKeyW, OpenServiceW, CloseServiceHandle, CreateServiceW, OpenSCManagerW, RegisterServiceCtrlHandlerW, StartServiceCtrlDispatcherW, RegQueryValueExW, RegDeleteValueW, RegCreateKeyExW, RegSetValueExW, RegOpenKeyExW, RegQueryInfoKeyW, RegEnumKeyExW, RegCloseKey<BR>> CRYPT32.dll: CryptDecodeObject<BR>> USER32.dll: PostThreadMessageW, LoadStringW, CharUpperW, MessageBoxW, CharNextW, GetMessageW, TranslateMessage, DispatchMessageW<BR>> ole32.dll: CoTaskMemFree, CoTaskMemRealloc, CoInitializeSecurity, CoUninitialize, StringFromGUID2, CoRevokeClassObject, CoRegisterClassObject, CoCreateInstance, CoInitialize, CoTaskMemAlloc<BR>> OLEAUT32.dll: -, -, -, -, -, -, -, -<BR>> SHLWAPI.dll: PathFindExtensionW<BR><BR>( 0 exports ) <BR>
RDS...: NSRL Reference Data Set<BR>-


Je te fais parvenir la suite...

et voici celui de Lop S&D :

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.40GHz )
BIOS : Award Modular BIOS v6.00PG
USER : Joëlle ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090512-0] 4.8.1335 (Activated)
Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:38 Go (Free:17 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total:74 Go (Free:35 Go)

"F:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 12/05/2009|21:15 )

--------------------\\ Listing des dossiers dans APPLIC~1

[11/11/2008|16:10] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[05/02/2009|14:06] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[05/02/2009|14:07] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[10/05/2009|11:44] F:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8
[28/02/2009|19:19] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[07/02/2009|22:56] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Babylon
[15/02/2009|15:26] F:\DOCUME~1\ALLUSE~1\APPLIC~1\GameHouse
[07/03/2009|14:11] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[12/08/2008|14:19] F:\DOCUME~1\ALLUSE~1\APPLIC~1\IM
[12/08/2008|14:17] F:\DOCUME~1\ALLUSE~1\APPLIC~1\IncrediMail
[02/02/2009|22:41] F:\DOCUME~1\ALLUSE~1\APPLIC~1\kinoma
[26/12/2007|16:56] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Lea passion Mode
[16/08/2007|13:01] F:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[10/05/2009|12:13] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[02/02/2009|22:47] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Marlin
[22/01/2009|22:22] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/09/2008|11:45] F:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[05/02/2009|14:13] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[13/04/2009|16:51] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[02/09/2007|19:29] F:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanAppDataDir
[02/09/2007|19:29] F:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanWizard
[19/08/2007|17:42] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[16/08/2007|15:50] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[15/02/2009|15:24] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[16/08/2007|12:03] F:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[03/01/2009|23:07] F:\DOCUME~1\JOLLE~1\APPLIC~1\Adobe
[18/08/2008|13:56] F:\DOCUME~1\JOLLE~1\APPLIC~1\ArcSoft
[10/05/2009|11:23] F:\DOCUME~1\JOLLE~1\APPLIC~1\AVG8
[09/05/2009|12:22] F:\DOCUME~1\JOLLE~1\APPLIC~1\Azureus
[07/02/2009|22:56] F:\DOCUME~1\JOLLE~1\APPLIC~1\Babylon
[24/04/2009|13:07] F:\DOCUME~1\JOLLE~1\APPLIC~1\Canon
[29/03/2008|19:09] F:\DOCUME~1\JOLLE~1\APPLIC~1\dvdcss
[26/06/2008|08:04] F:\DOCUME~1\JOLLE~1\APPLIC~1\FileZilla
[19/08/2007|17:42] F:\DOCUME~1\JOLLE~1\APPLIC~1\Gaijin Ent
[16/08/2007|22:40] F:\DOCUME~1\JOLLE~1\APPLIC~1\Google
[16/08/2007|15:50] F:\DOCUME~1\JOLLE~1\APPLIC~1\Help
[15/02/2009|15:52] F:\DOCUME~1\JOLLE~1\APPLIC~1\Identities
[24/11/2007|23:07] F:\DOCUME~1\JOLLE~1\APPLIC~1\InAlbumTemp
[26/12/2007|16:51] F:\DOCUME~1\JOLLE~1\APPLIC~1\InstallShield
[01/09/2007|13:39] F:\DOCUME~1\JOLLE~1\APPLIC~1\IrfanView
[04/09/2008|18:22] F:\DOCUME~1\JOLLE~1\APPLIC~1\iWin
[08/09/2007|19:35] F:\DOCUME~1\JOLLE~1\APPLIC~1\Jasc
[01/03/2009|20:27] F:\DOCUME~1\JOLLE~1\APPLIC~1\JewelMatch2
[23/08/2007|18:27] F:\DOCUME~1\JOLLE~1\APPLIC~1\Leadertech
[16/08/2007|22:44] F:\DOCUME~1\JOLLE~1\APPLIC~1\Macromedia
[10/05/2009|12:13] F:\DOCUME~1\JOLLE~1\APPLIC~1\Malwarebytes
[10/05/2009|11:45] F:\DOCUME~1\JOLLE~1\APPLIC~1\Microsoft
[19/07/2008|18:22] F:\DOCUME~1\JOLLE~1\APPLIC~1\Mobipocket
[19/07/2008|14:08] F:\DOCUME~1\JOLLE~1\APPLIC~1\Mobipocket Reader
[31/10/2007|15:16] F:\DOCUME~1\JOLLE~1\APPLIC~1\Mozilla
[12/06/2008|18:48] F:\DOCUME~1\JOLLE~1\APPLIC~1\Nvu
[02/11/2008|19:46] F:\DOCUME~1\JOLLE~1\APPLIC~1\OpenOffice.org
[02/11/2008|19:29] F:\DOCUME~1\JOLLE~1\APPLIC~1\OpenOffice.org2
[17/04/2008|18:49] F:\DOCUME~1\JOLLE~1\APPLIC~1\PDM
[07/05/2009|21:52] F:\DOCUME~1\JOLLE~1\APPLIC~1\Python-Eggs
[30/04/2008|16:47] F:\DOCUME~1\JOLLE~1\APPLIC~1\Real
[02/09/2007|19:29] F:\DOCUME~1\JOLLE~1\APPLIC~1\ScanSoft
[11/09/2007|16:35] F:\DOCUME~1\JOLLE~1\APPLIC~1\SmartFTP
[05/02/2009|14:13] F:\DOCUME~1\JOLLE~1\APPLIC~1\Sony
[05/02/2009|13:52] F:\DOCUME~1\JOLLE~1\APPLIC~1\Sony Setup
[07/12/2007|16:59] F:\DOCUME~1\JOLLE~1\APPLIC~1\Sun
[21/03/2008|16:54] F:\DOCUME~1\JOLLE~1\APPLIC~1\vlc
[17/08/2007|10:54] F:\DOCUME~1\JOLLE~1\APPLIC~1\WinRAR
[15/02/2009|15:52] F:\DOCUME~1\JOLLE~1\APPLIC~1\Zylom

[15/02/2008|15:39] F:\DOCUME~1\LOCALS~1\APPLIC~1\Help
[10/05/2009|11:45] F:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[10/05/2009|11:45] F:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans F:\WINDOWS\tasks

[12/05/2009 13:40][--ah-----] F:\WINDOWS\tasks\User_Feed_Synchronization-{0673782A-3CD2-4508-A1FA-D429355CCCEC}.job
[12/05/2009 19:03][--ah-----] F:\WINDOWS\tasks\SA.DAT
[30/08/2002 14:00][-r-h-----] F:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans F:\Program Files

[29/03/2009|17:48] F:\Program Files\ABC Amber LIT Converter
[24/08/2007|17:42] F:\Program Files\Acrobat3
[07/02/2009|23:06] F:\Program Files\Adobe
[07/05/2009|21:13] F:\Program Files\adslTV
[16/08/2007|13:21] F:\Program Files\Alwil Software
[05/02/2009|14:06] F:\Program Files\Apple Software Update
[02/09/2007|19:26] F:\Program Files\ArcSoft
[10/04/2008|21:55] F:\Program Files\Audible
[10/05/2009|11:30] F:\Program Files\AVG
[18/11/2007|23:11] F:\Program Files\BELKIN USB Wireless Monitor
[18/11/2007|23:38] F:\Program Files\BOOKIN
[16/03/2008|20:47] F:\Program Files\Canon
[31/08/2007|10:19] F:\Program Files\Canon Scanner
[01/03/2009|22:48] F:\Program Files\Common Files
[16/08/2007|12:01] F:\Program Files\ComPlus Applications
[07/12/2008|18:37] F:\Program Files\CUISINONS
[02/02/2009|22:42] F:\Program Files\DIFX
[16/04/2009|22:06] F:\Program Files\DV BibliothŠque2
[07/05/2009|22:42] F:\Program Files\dvd43
[22/05/2008|21:43] F:\Program Files\El Juky
[26/04/2009|15:49] F:\Program Files\eMule
[15/02/2008|15:33] F:\Program Files\EPSON
[20/03/2009|21:02] F:\Program Files\Fichiers communs
[11/06/2008|16:36] F:\Program Files\FileZilla FTP Client
[08/02/2009|19:28] F:\Program Files\FormatFactory
[19/06/2008|11:11] F:\Program Files\Free
[07/03/2009|15:18] F:\Program Files\Google
[08/01/2008|17:31] F:\Program Files\iColorFolder
[03/02/2009|12:44] F:\Program Files\IncrediMail
[22/01/2009|22:06] F:\Program Files\InstallShield Installation Information
[09/05/2009|18:16] F:\Program Files\Internet Explorer
[17/08/2007|11:10] F:\Program Files\IrfanView
[19/08/2007|17:01] F:\Program Files\Jasc Software Inc
[15/04/2009|12:56] F:\Program Files\Java
[07/05/2009|22:12] F:\Program Files\JRE
[02/11/2008|19:10] F:\Program Files\licenses
[10/08/2008|21:14] F:\Program Files\Logitech
[10/05/2009|12:13] F:\Program Files\Malwarebytes' Anti-Malware
[22/08/2008|22:38] F:\Program Files\Messenger
[16/08/2007|12:04] F:\Program Files\microsoft frontpage
[17/08/2007|11:14] F:\Program Files\Microsoft Money
[19/08/2007|17:33] F:\Program Files\Microsoft Reader
[19/07/2008|18:13] F:\Program Files\Mobipocket.com
[13/07/2008|21:55] F:\Program Files\Monarch - The Butterfly King
[22/08/2008|22:32] F:\Program Files\Movie Maker
[16/08/2007|12:00] F:\Program Files\MSN
[16/08/2007|12:00] F:\Program Files\MSN Gaming Zone
[11/08/2008|15:18] F:\Program Files\MSXML 4.0
[09/01/2008|18:52] F:\Program Files\Navilog1
[22/08/2008|22:28] F:\Program Files\NetMeeting
[17/08/2007|11:21] F:\Program Files\Netscape
[12/06/2008|18:48] F:\Program Files\Nvu
[07/05/2009|22:11] F:\Program Files\OpenOffice.org 3
[22/08/2008|22:28] F:\Program Files\Outlook Express
[23/08/2007|17:08] F:\Program Files\Palm
[23/08/2007|18:11] F:\Program Files\Palm Digital Media
[23/08/2007|18:21] F:\Program Files\palmOne
[05/02/2009|14:08] F:\Program Files\QuickTime
[02/11/2008|19:10] F:\Program Files\readmes
[31/10/2007|15:10] F:\Program Files\Real
[02/09/2007|19:28] F:\Program Files\ScanSoft
[16/08/2007|12:02] F:\Program Files\Services en ligne
[18/08/2007|13:24] F:\Program Files\SiS7012
[25/05/2008|09:00] F:\Program Files\SmartFTP Client
[25/05/2008|08:59] F:\Program Files\SmartFTP Client 3.0 Setup Files
[07/05/2009|22:00] F:\Program Files\Sony
[05/02/2009|13:50] F:\Program Files\Sony Setup
[13/04/2009|16:51] F:\Program Files\Spybot - Search & Destroy
[01/02/2009|22:14] F:\Program Files\Stanza
[08/01/2008|13:07] F:\Program Files\Trend Micro
[26/12/2007|16:51] F:\Program Files\UBISOFT
[16/08/2007|12:30] F:\Program Files\Uninstall Information
[21/03/2008|16:51] F:\Program Files\VideoLAN
[12/02/2009|22:35] F:\Program Files\Votre Opinion
[09/05/2009|11:48] F:\Program Files\Vuze
[22/01/2009|20:53] F:\Program Files\Windows Media Connect 2
[22/01/2009|20:52] F:\Program Files\Windows Media Player
[22/08/2008|22:28] F:\Program Files\Windows NT
[16/08/2007|13:16] F:\Program Files\WindowsUpdate
[28/02/2009|22:15] F:\Program Files\WinLemm
[17/08/2007|10:54] F:\Program Files\WinRAR
[16/08/2007|12:04] F:\Program Files\xerox
[22/09/2008|14:22] F:\Program Files\Zone Labs
[15/02/2009|15:43] F:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans F:\Program Files\Fichiers communs

[11/11/2008|16:09] F:\Program Files\Fichiers communs\Adobe
[10/08/2008|21:12] F:\Program Files\Fichiers communs\InstallShield
[07/12/2007|16:59] F:\Program Files\Fichiers communs\Java
[10/08/2008|21:15] F:\Program Files\Fichiers communs\Logitech
[05/02/2009|14:04] F:\Program Files\Fichiers communs\Microsoft Shared
[19/07/2008|14:01] F:\Program Files\Fichiers communs\Mobipocket Shared
[16/08/2007|12:01] F:\Program Files\Fichiers communs\MSSoap
[16/08/2007|12:54] F:\Program Files\Fichiers communs\ODBC
[20/03/2009|21:02] F:\Program Files\Fichiers communs\Real
[02/09/2007|19:29] F:\Program Files\Fichiers communs\ScanSoft Shared
[16/08/2007|12:01] F:\Program Files\Fichiers communs\Services
[07/05/2009|22:00] F:\Program Files\Fichiers communs\Sony Shared
[16/08/2007|12:54] F:\Program Files\Fichiers communs\SpeechEngines
[22/08/2008|22:28] F:\Program Files\Fichiers communs\System
[20/03/2009|21:02] F:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 52 Processes )

IEXPLORE.EXE ~ [PID:2900]
IEXPLORE.EXE ~ [PID:3240]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[11].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[2].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[3].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[4].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[5].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[6].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[7].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[8].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[9].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@freecodesource.advertserve[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@redroom.advertserve[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adultfriendfinder[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@cover19.adultfriendfinder[2].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising.sellaband[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[10].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[2].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[3].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[4].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[5].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[6].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[7].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[8].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[9].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adex.bigpoint[2].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adin.bigpoint[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@bigpoint[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@bigpoint[2].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@fr.bigpoint[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@fr.darkorbit.bigpoint[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[2].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[3].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[4].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[5].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[6].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[7].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@euroclick[2].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@euroclick[3].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@vegasred[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@www.vegasred[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@2xmoinscher[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@www.2xmoinscher[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@888[1].txt
F:\DOCUME~1\JOLLE~1\Cookies\joëlle@888[2].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-12 21:21:06
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

F:\Program Files\webmediaplayer_setup.exe
[b]==> EGDACCESS <==/b



[F:358][D:38]-> F:\DOCUME~1\JOLLE~1\LOCALS~1\Temp
[F:5320][D:0]-> F:\DOCUME~1\JOLLE~1\Cookies
[F:285][D:12]-> F:\DOCUME~1\JOLLE~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "F:\Lop SD\LopR_1.txt" - 12/05/2009|21:25 - Option : [1]

--------------------\\ Fin du rapport a 21:25:23

Allez, je pars faire le Ccleaner... ; ) JOELLE

Et enfin, après Ccleaner... Le nouveau rapport HiJackThis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:39:16, on 12/05/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\system32\ZoneLabs\vsmon.exe
F:\WINDOWS\Explorer.EXE
F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
F:\Program Files\Alwil Software\Avast4\ashServ.exe
F:\WINDOWS\system32\spoolsv.exe
f:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
F:\Program Files\BELKIN USB Wireless Monitor\WLService.exe
F:\Program Files\Java\jre6\bin\jqs.exe
F:\Program Files\BELKIN USB Wireless Monitor\WLanCfgG.exe
F:\WINDOWS\system32\nvsvc32.exe
F:\WINDOWS\System32\svchost.exe
F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
F:\Program Files\ScanSoft\OmniPageSE\opware32.exe
F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE
F:\WINDOWS\system32\LVCOMSX.EXE
F:\Program Files\Logitech\Video\CameraAssistant.exe
F:\WINDOWS\system32\ElkCtrl.exe
F:\WINDOWS\system32\RUNDLL32.EXE
F:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
F:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
F:\Program Files\Java\jre6\bin\jusched.exe
F:\Program Files\dvd43\dvd43_tray.exe
F:\WINDOWS\system32\ctfmon.exe
F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
F:\WINDOWS\NCLAUNCH.EXe
F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
F:\Documents and Settings\Joëlle\Local Settings\Application Data\Votre Opinion\PanelApp\PanelApp.exe
F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
F:\Program Files\palmOne\HOTSYNC.EXE
F:\Program Files\IncrediMail\bin\IMApp.exe
F:\Program Files\IncrediMail\bin\IncMail.exe
F:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.free.fr/freebox/index.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - F:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - F:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - F:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - F:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avast!] F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Omnipage] F:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [EPSON Stylus D68 Series] F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE /P23 "EPSON Stylus D68 Series" /O6 "USB001" /M "Stylus D68"
O4 - HKLM\..\Run: [LVCOMSX] F:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] F:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] F:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] F:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE F:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "F:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "F:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "F:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "F:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [dvd43] F:\Program Files\dvd43\dvd43_tray.exe
O4 - HKCU\..\Run: [IncrediMail] F:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [NCLaunch] F:\WINDOWS\NCLAUNCH.EXe
O4 - HKCU\..\Run: [LDM] F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [PanelApp] F:\Documents and Settings\Joëlle\Local Settings\Application Data\Votre Opinion\PanelApp\PanelApp.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: HotSync Manager.lnk = F:\Program Files\palmOne\HOTSYNC.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - F:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - F:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - F:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
O16 - DPF: {814EA0DA-E0D9-4AA4-833C-A1A6D38E79E9} (DASWebDownload Class) - http://das.microsoft.com/activate/cab/x86/i486/NTANSI/retail/DASAct.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game13.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader4.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Belkin 54Mbps Wireless USB Network Service (Belkin 54Mbps Wireless USB) - Unknown owner - F:\Program Files\BELKIN USB Wireless Monitor\WLService.exe
O23 - Service: Google Software Updater (gusvc) - Google - F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - F:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - f:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: MSCSPTISRV - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Unknown owner - F:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PanelSvc - Unknown owner - F:\Program Files\Votre Opinion\PanelApp\PanelSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - F:\WINDOWS\system32\ZoneLabs\vsmon.exe

Bien chef ! Voici le nouveau rapport Lop :


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.40GHz )
BIOS : Award Modular BIOS v6.00PG
USER : Joëlle ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090512-0] 4.8.1335 (Activated)
Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:38 Go (Free:17 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total:74 Go (Free:35 Go)

"F:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 12/05/2009|22:42 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[11].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[2].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[3].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[4].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[5].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[6].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[7].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[8].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertstream[9].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@freecodesource.advertserve[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@redroom.advertserve[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adultfriendfinder[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@cover19.adultfriendfinder[2].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising.sellaband[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[10].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[2].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[3].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[4].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[5].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[6].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[7].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[8].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[9].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adex.bigpoint[2].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adin.bigpoint[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@bigpoint[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@bigpoint[2].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@fr.bigpoint[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@fr.darkorbit.bigpoint[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[2].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[3].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[4].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[5].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[6].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@adopt.euroclick[7].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@euroclick[2].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@euroclick[3].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@vegasred[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@www.vegasred[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@2xmoinscher[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@www.2xmoinscher[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@888[1].txt
Supprime! - F:\DOCUME~1\JOLLE~1\Cookies\joëlle@888[2].txt

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[11/11/2008|16:10] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[05/02/2009|14:06] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[05/02/2009|14:07] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[10/05/2009|11:44] F:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8
[28/02/2009|19:19] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[07/02/2009|22:56] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Babylon
[15/02/2009|15:26] F:\DOCUME~1\ALLUSE~1\APPLIC~1\GameHouse
[07/03/2009|14:11] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[12/08/2008|14:19] F:\DOCUME~1\ALLUSE~1\APPLIC~1\IM
[12/08/2008|14:17] F:\DOCUME~1\ALLUSE~1\APPLIC~1\IncrediMail
[02/02/2009|22:41] F:\DOCUME~1\ALLUSE~1\APPLIC~1\kinoma
[26/12/2007|16:56] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Lea passion Mode
[16/08/2007|13:01] F:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[10/05/2009|12:13] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[02/02/2009|22:47] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Marlin
[22/01/2009|22:22] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/09/2008|11:45] F:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[05/02/2009|14:13] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[13/04/2009|16:51] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[02/09/2007|19:29] F:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanAppDataDir
[02/09/2007|19:29] F:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanWizard
[19/08/2007|17:42] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[16/08/2007|15:50] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[15/02/2009|15:24] F:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[16/08/2007|12:03] F:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[03/01/2009|23:07] F:\DOCUME~1\JOLLE~1\APPLIC~1\Adobe
[18/08/2008|13:56] F:\DOCUME~1\JOLLE~1\APPLIC~1\ArcSoft
[10/05/2009|11:23] F:\DOCUME~1\JOLLE~1\APPLIC~1\AVG8
[09/05/2009|12:22] F:\DOCUME~1\JOLLE~1\APPLIC~1\Azureus
[07/02/2009|22:56] F:\DOCUME~1\JOLLE~1\APPLIC~1\Babylon
[24/04/2009|13:07] F:\DOCUME~1\JOLLE~1\APPLIC~1\Canon
[29/03/2008|19:09] F:\DOCUME~1\JOLLE~1\APPLIC~1\dvdcss
[26/06/2008|08:04] F:\DOCUME~1\JOLLE~1\APPLIC~1\FileZilla
[19/08/2007|17:42] F:\DOCUME~1\JOLLE~1\APPLIC~1\Gaijin Ent
[16/08/2007|22:40] F:\DOCUME~1\JOLLE~1\APPLIC~1\Google
[16/08/2007|15:50] F:\DOCUME~1\JOLLE~1\APPLIC~1\Help
[15/02/2009|15:52] F:\DOCUME~1\JOLLE~1\APPLIC~1\Identities
[24/11/2007|23:07] F:\DOCUME~1\JOLLE~1\APPLIC~1\InAlbumTemp
[26/12/2007|16:51] F:\DOCUME~1\JOLLE~1\APPLIC~1\InstallShield
[01/09/2007|13:39] F:\DOCUME~1\JOLLE~1\APPLIC~1\IrfanView
[04/09/2008|18:22] F:\DOCUME~1\JOLLE~1\APPLIC~1\iWin
[08/09/2007|19:35] F:\DOCUME~1\JOLLE~1\APPLIC~1\Jasc
[01/03/2009|20:27] F:\DOCUME~1\JOLLE~1\APPLIC~1\JewelMatch2
[23/08/2007|18:27] F:\DOCUME~1\JOLLE~1\APPLIC~1\Leadertech
[16/08/2007|22:44] F:\DOCUME~1\JOLLE~1\APPLIC~1\Macromedia
[10/05/2009|12:13] F:\DOCUME~1\JOLLE~1\APPLIC~1\Malwarebytes
[10/05/2009|11:45] F:\DOCUME~1\JOLLE~1\APPLIC~1\Microsoft
[19/07/2008|18:22] F:\DOCUME~1\JOLLE~1\APPLIC~1\Mobipocket
[19/07/2008|14:08] F:\DOCUME~1\JOLLE~1\APPLIC~1\Mobipocket Reader
[31/10/2007|15:16] F:\DOCUME~1\JOLLE~1\APPLIC~1\Mozilla
[12/06/2008|18:48] F:\DOCUME~1\JOLLE~1\APPLIC~1\Nvu
[02/11/2008|19:46] F:\DOCUME~1\JOLLE~1\APPLIC~1\OpenOffice.org
[02/11/2008|19:29] F:\DOCUME~1\JOLLE~1\APPLIC~1\OpenOffice.org2
[17/04/2008|18:49] F:\DOCUME~1\JOLLE~1\APPLIC~1\PDM
[07/05/2009|21:52] F:\DOCUME~1\JOLLE~1\APPLIC~1\Python-Eggs
[30/04/2008|16:47] F:\DOCUME~1\JOLLE~1\APPLIC~1\Real
[02/09/2007|19:29] F:\DOCUME~1\JOLLE~1\APPLIC~1\ScanSoft
[11/09/2007|16:35] F:\DOCUME~1\JOLLE~1\APPLIC~1\SmartFTP
[05/02/2009|14:13] F:\DOCUME~1\JOLLE~1\APPLIC~1\Sony
[05/02/2009|13:52] F:\DOCUME~1\JOLLE~1\APPLIC~1\Sony Setup
[07/12/2007|16:59] F:\DOCUME~1\JOLLE~1\APPLIC~1\Sun
[21/03/2008|16:54] F:\DOCUME~1\JOLLE~1\APPLIC~1\vlc
[17/08/2007|10:54] F:\DOCUME~1\JOLLE~1\APPLIC~1\WinRAR
[15/02/2009|15:52] F:\DOCUME~1\JOLLE~1\APPLIC~1\Zylom

[15/02/2008|15:39] F:\DOCUME~1\LOCALS~1\APPLIC~1\Help
[10/05/2009|11:45] F:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[10/05/2009|11:45] F:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans F:\WINDOWS\tasks

[12/05/2009 13:40][--ah-----] F:\WINDOWS\tasks\User_Feed_Synchronization-{0673782A-3CD2-4508-A1FA-D429355CCCEC}.job
[12/05/2009 19:03][--ah-----] F:\WINDOWS\tasks\SA.DAT
[30/08/2002 14:00][-r-h-----] F:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans F:\Program Files

[29/03/2009|17:48] F:\Program Files\ABC Amber LIT Converter
[24/08/2007|17:42] F:\Program Files\Acrobat3
[07/02/2009|23:06] F:\Program Files\Adobe
[07/05/2009|21:13] F:\Program Files\adslTV
[16/08/2007|13:21] F:\Program Files\Alwil Software
[05/02/2009|14:06] F:\Program Files\Apple Software Update
[02/09/2007|19:26] F:\Program Files\ArcSoft
[10/04/2008|21:55] F:\Program Files\Audible
[10/05/2009|11:30] F:\Program Files\AVG
[18/11/2007|23:11] F:\Program Files\BELKIN USB Wireless Monitor
[18/11/2007|23:38] F:\Program Files\BOOKIN
[16/03/2008|20:47] F:\Program Files\Canon
[31/08/2007|10:19] F:\Program Files\Canon Scanner
[01/03/2009|22:48] F:\Program Files\Common Files
[16/08/2007|12:01] F:\Program Files\ComPlus Applications
[07/12/2008|18:37] F:\Program Files\CUISINONS
[02/02/2009|22:42] F:\Program Files\DIFX
[16/04/2009|22:06] F:\Program Files\DV BibliothŠque2
[07/05/2009|22:42] F:\Program Files\dvd43
[22/05/2008|21:43] F:\Program Files\El Juky
[26/04/2009|15:49] F:\Program Files\eMule
[15/02/2008|15:33] F:\Program Files\EPSON
[20/03/2009|21:02] F:\Program Files\Fichiers communs
[11/06/2008|16:36] F:\Program Files\FileZilla FTP Client
[08/02/2009|19:28] F:\Program Files\FormatFactory
[19/06/2008|11:11] F:\Program Files\Free
[07/03/2009|15:18] F:\Program Files\Google
[08/01/2008|17:31] F:\Program Files\iColorFolder
[03/02/2009|12:44] F:\Program Files\IncrediMail
[22/01/2009|22:06] F:\Program Files\InstallShield Installation Information
[09/05/2009|18:16] F:\Program Files\Internet Explorer
[17/08/2007|11:10] F:\Program Files\IrfanView
[19/08/2007|17:01] F:\Program Files\Jasc Software Inc
[15/04/2009|12:56] F:\Program Files\Java
[07/05/2009|22:12] F:\Program Files\JRE
[02/11/2008|19:10] F:\Program Files\licenses
[10/08/2008|21:14] F:\Program Files\Logitech
[10/05/2009|12:13] F:\Program Files\Malwarebytes' Anti-Malware
[22/08/2008|22:38] F:\Program Files\Messenger
[16/08/2007|12:04] F:\Program Files\microsoft frontpage
[17/08/2007|11:14] F:\Program Files\Microsoft Money
[19/08/2007|17:33] F:\Program Files\Microsoft Reader
[19/07/2008|18:13] F:\Program Files\Mobipocket.com
[13/07/2008|21:55] F:\Program Files\Monarch - The Butterfly King
[22/08/2008|22:32] F:\Program Files\Movie Maker
[16/08/2007|12:00] F:\Program Files\MSN
[16/08/2007|12:00] F:\Program Files\MSN Gaming Zone
[11/08/2008|15:18] F:\Program Files\MSXML 4.0
[09/01/2008|18:52] F:\Program Files\Navilog1
[22/08/2008|22:28] F:\Program Files\NetMeeting
[17/08/2007|11:21] F:\Program Files\Netscape
[12/06/2008|18:48] F:\Program Files\Nvu
[07/05/2009|22:11] F:\Program Files\OpenOffice.org 3
[22/08/2008|22:28] F:\Program Files\Outlook Express
[23/08/2007|17:08] F:\Program Files\Palm
[23/08/2007|18:11] F:\Program Files\Palm Digital Media
[23/08/2007|18:21] F:\Program Files\palmOne
[05/02/2009|14:08] F:\Program Files\QuickTime
[02/11/2008|19:10] F:\Program Files\readmes
[31/10/2007|15:10] F:\Program Files\Real
[02/09/2007|19:28] F:\Program Files\ScanSoft
[16/08/2007|12:02] F:\Program Files\Services en ligne
[18/08/2007|13:24] F:\Program Files\SiS7012
[25/05/2008|09:00] F:\Program Files\SmartFTP Client
[25/05/2008|08:59] F:\Program Files\SmartFTP Client 3.0 Setup Files
[07/05/2009|22:00] F:\Program Files\Sony
[05/02/2009|13:50] F:\Program Files\Sony Setup
[13/04/2009|16:51] F:\Program Files\Spybot - Search & Destroy
[01/02/2009|22:14] F:\Program Files\Stanza
[08/01/2008|13:07] F:\Program Files\Trend Micro
[26/12/2007|16:51] F:\Program Files\UBISOFT
[16/08/2007|12:30] F:\Program Files\Uninstall Information
[21/03/2008|16:51] F:\Program Files\VideoLAN
[12/02/2009|22:35] F:\Program Files\Votre Opinion
[09/05/2009|11:48] F:\Program Files\Vuze
[22/01/2009|20:53] F:\Program Files\Windows Media Connect 2
[22/01/2009|20:52] F:\Program Files\Windows Media Player
[22/08/2008|22:28] F:\Program Files\Windows NT
[16/08/2007|13:16] F:\Program Files\WindowsUpdate
[28/02/2009|22:15] F:\Program Files\WinLemm
[17/08/2007|10:54] F:\Program Files\WinRAR
[16/08/2007|12:04] F:\Program Files\xerox
[22/09/2008|14:22] F:\Program Files\Zone Labs
[15/02/2009|15:43] F:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans F:\Program Files\Fichiers communs

[11/11/2008|16:09] F:\Program Files\Fichiers communs\Adobe
[10/08/2008|21:12] F:\Program Files\Fichiers communs\InstallShield
[07/12/2007|16:59] F:\Program Files\Fichiers communs\Java
[10/08/2008|21:15] F:\Program Files\Fichiers communs\Logitech
[05/02/2009|14:04] F:\Program Files\Fichiers communs\Microsoft Shared
[19/07/2008|14:01] F:\Program Files\Fichiers communs\Mobipocket Shared
[16/08/2007|12:01] F:\Program Files\Fichiers communs\MSSoap
[16/08/2007|12:54] F:\Program Files\Fichiers communs\ODBC
[20/03/2009|21:02] F:\Program Files\Fichiers communs\Real
[02/09/2007|19:29] F:\Program Files\Fichiers communs\ScanSoft Shared
[16/08/2007|12:01] F:\Program Files\Fichiers communs\Services
[07/05/2009|22:00] F:\Program Files\Fichiers communs\Sony Shared
[16/08/2007|12:54] F:\Program Files\Fichiers communs\SpeechEngines
[22/08/2008|22:28] F:\Program Files\Fichiers communs\System
[20/03/2009|21:02] F:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 50 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

F:\DOCUME~1\JOLLE~1\Cookies\joëlle@advertising[11].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-12 22:50:14
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

F:\Program Files\webmediaplayer_setup.exe
[b]==> EGDACCESS <==/b



[F:2][D:1]-> F:\DOCUME~1\JOLLE~1\LOCALS~1\Temp
[F:5317][D:0]-> F:\DOCUME~1\JOLLE~1\Cookies
[F:2181][D:4]-> F:\DOCUME~1\JOLLE~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "F:\Lop SD\LopR_1.txt" - 12/05/2009|21:25 - Option : [1]
2 - "F:\Lop SD\LopR_2.txt" - 12/05/2009|22:53 - Option : [2]

--------------------\\ Fin du rapport a 22:53:34

Et le nouveau HiJack arrive ; )

Le rapport HiJackThis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:57:15, on 12/05/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\system32\ZoneLabs\vsmon.exe
F:\WINDOWS\Explorer.EXE
F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
F:\Program Files\Alwil Software\Avast4\ashServ.exe
F:\WINDOWS\system32\spoolsv.exe
f:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
F:\Program Files\BELKIN USB Wireless Monitor\WLService.exe
F:\Program Files\Java\jre6\bin\jqs.exe
F:\Program Files\BELKIN USB Wireless Monitor\WLanCfgG.exe
F:\WINDOWS\system32\nvsvc32.exe
F:\WINDOWS\System32\svchost.exe
F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
F:\Program Files\ScanSoft\OmniPageSE\opware32.exe
F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE
F:\WINDOWS\system32\LVCOMSX.EXE
F:\Program Files\Logitech\Video\CameraAssistant.exe
F:\WINDOWS\system32\ElkCtrl.exe
F:\WINDOWS\system32\RUNDLL32.EXE
F:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
F:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
F:\Program Files\Java\jre6\bin\jusched.exe
F:\Program Files\dvd43\dvd43_tray.exe
F:\WINDOWS\system32\ctfmon.exe
F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
F:\WINDOWS\NCLAUNCH.EXe
F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
F:\Documents and Settings\Joëlle\Local Settings\Application Data\Votre Opinion\PanelApp\PanelApp.exe
F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
F:\Program Files\palmOne\HOTSYNC.EXE
F:\Program Files\IncrediMail\bin\IMApp.exe
F:\Program Files\IncrediMail\bin\IncMail.exe
F:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.free.fr/freebox/index.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - F:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - F:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - F:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - F:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avast!] F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Omnipage] F:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [EPSON Stylus D68 Series] F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE /P23 "EPSON Stylus D68 Series" /O6 "USB001" /M "Stylus D68"
O4 - HKLM\..\Run: [LVCOMSX] F:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] F:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] F:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] F:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE F:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "F:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "F:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "F:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "F:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [dvd43] F:\Program Files\dvd43\dvd43_tray.exe
O4 - HKCU\..\Run: [IncrediMail] F:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [NCLaunch] F:\WINDOWS\NCLAUNCH.EXe
O4 - HKCU\..\Run: [LDM] F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [PanelApp] F:\Documents and Settings\Joëlle\Local Settings\Application Data\Votre Opinion\PanelApp\PanelApp.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: HotSync Manager.lnk = F:\Program Files\palmOne\HOTSYNC.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - F:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - F:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - F:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
O16 - DPF: {814EA0DA-E0D9-4AA4-833C-A1A6D38E79E9} (DASWebDownload Class) - http://das.microsoft.com/activate/cab/x86/i486/NTANSI/retail/DASAct.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game13.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader4.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Belkin 54Mbps Wireless USB Network Service (Belkin 54Mbps Wireless USB) - Unknown owner - F:\Program Files\BELKIN USB Wireless Monitor\WLService.exe
O23 - Service: Google Software Updater (gusvc) - Google - F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - F:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - f:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: MSCSPTISRV - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Unknown owner - F:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PanelSvc - Unknown owner - F:\Program Files\Votre Opinion\PanelApp\PanelSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - F:\WINDOWS\system32\ZoneLabs\vsmon.exe

Hello NicOO

J'ai fait tout ce que tu m'a recommandé dans le précédent mail... Par contre, impossible d'effectuer le scan complet avec AntiVir... A chaque fois, mon PC s'éteint, à un moment où un autre, et il faut recommencer depuis le début... Et comme c'est plutôt long... Je vais le laisser tourner cette nuit, car là, je suis crevée et ça commence à me saouler... J'espère avoir un résultat à te communiquer d'ici demain...

Voici le dernier HiJackThis que j'ai fait :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:35:27, on 13/05/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\savedump.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\system32\ZoneLabs\vsmon.exe
F:\WINDOWS\Explorer.EXE
F:\WINDOWS\system32\spoolsv.exe
f:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
F:\Program Files\Avira\AntiVir Desktop\sched.exe
F:\Program Files\Avira\AntiVir Desktop\avguard.exe
F:\Program Files\BELKIN USB Wireless Monitor\WLService.exe
F:\Program Files\BELKIN USB Wireless Monitor\WLanCfgG.exe
F:\Program Files\Java\jre6\bin\jqs.exe
F:\WINDOWS\system32\nvsvc32.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\wuauclt.exe
F:\Program Files\ScanSoft\OmniPageSE\opware32.exe
F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE
F:\WINDOWS\system32\LVCOMSX.EXE
F:\Program Files\Logitech\Video\CameraAssistant.exe
F:\WINDOWS\system32\ElkCtrl.exe
F:\WINDOWS\system32\RUNDLL32.EXE
F:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
F:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
F:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
F:\Program Files\Java\jre6\bin\jusched.exe
F:\Program Files\dvd43\dvd43_tray.exe
F:\Program Files\Avira\AntiVir Desktop\avgnt.exe
F:\WINDOWS\system32\ctfmon.exe
F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
F:\WINDOWS\NCLAUNCH.EXe
F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
F:\Documents and Settings\Joëlle\Local Settings\Application Data\Votre Opinion\PanelApp\PanelApp.exe
F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
F:\Program Files\palmOne\HOTSYNC.EXE
F:\Program Files\IncrediMail\bin\IMApp.exe
F:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.free.fr/freebox/index.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - F:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - F:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - F:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - F:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Omnipage] F:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [EPSON Stylus D68 Series] F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE /P23 "EPSON Stylus D68 Series" /O6 "USB001" /M "Stylus D68"
O4 - HKLM\..\Run: [LVCOMSX] F:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] F:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] F:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] F:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE F:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "F:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "F:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "F:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "F:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [dvd43] F:\Program Files\dvd43\dvd43_tray.exe
O4 - HKLM\..\Run: [avgnt] "F:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [IncrediMail] F:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [NCLaunch] F:\WINDOWS\NCLAUNCH.EXe
O4 - HKCU\..\Run: [LDM] F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [PanelApp] F:\Documents and Settings\Joëlle\Local Settings\Application Data\Votre Opinion\PanelApp\PanelApp.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] F:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: HotSync Manager.lnk = F:\Program Files\palmOne\HOTSYNC.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - F:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
O16 - DPF: {814EA0DA-E0D9-4AA4-833C-A1A6D38E79E9} (DASWebDownload Class) - http://das.microsoft.com/activate/cab/x86/i486/NTANSI/retail/DASAct.cab
O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader4.cab
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - F:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - F:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Belkin 54Mbps Wireless USB Network Service (Belkin 54Mbps Wireless USB) - Unknown owner - F:\Program Files\BELKIN USB Wireless Monitor\WLService.exe
O23 - Service: Google Software Updater (gusvc) - Google - F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - F:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - f:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: MSCSPTISRV - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Unknown owner - F:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PanelSvc - Unknown owner - F:\Program Files\Votre Opinion\PanelApp\PanelSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - F:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - F:\WINDOWS\system32\ZoneLabs\vsmon.exe

Hello,

Impossible de faire quoi que ce soit sur le PC hier...Il a rebouté sans cesse... Du coup, j'ai démonté le disque dur, mis dans un boiiter externe et remis sur le pc de mon copain pour faire un scan avec son antivirus... Celui-ci nous a degoté un trojan, l'a supprimé, on a refait un scan puis un adaware and Co et rien trouvé...

Du coup, je viens de le remettre sur mon ordi... Pour l'instant, ça fonctionne... Simplement au démarrage, il me met toujours le même message : il faut verifier l'intégrité du disque et blablabla mais reste bloqué sur la phase 2 sur 3... Je dois interrompre la vérification pour passer au message de bienvenue et arriver sur le bureau...

C'est bizarre comme truc, non ????

Je vais retenter un antivir ce soir voir si cette fois-ci il va jusqu'au bout... Si oui, je te ferais parvenir le rapport...
Sinon, je sens que de rage et de colère, je vais faire un format c: et zou !!!!

A bientôt et encore merci pour ton aide ; ) JOELLE