Bonjour à tous, j'ai vu sur le forum que certains sont capables d'analyser les données, donc je tente ma chance. merci Logfile of HijackThis v1.97.7 Scan saved at 16:43:54, on 23/11/2003 Platform: Windows 2000 SP3 (WinNT 5.00.2195) MSIE: Internet Explorer v5.51 SP2 (5.51.4807.2300) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\Program Files\Sygate\SPF\Smc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVG6\avgserv.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\regsvc.exe C:\WINDOWS\system32\MSTask.exe C:\WINDOWS\system32\stisvc.exe C:\WINDOWS\System32\WBEM\WinMgmt.exe C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Wanadoo\TaskbarIcon.exe C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe C:\Program Files\Microsoft IntelliPoint\point32.exe C:\Program Files\Microsoft IntelliType Pro\type32.exe C:\Program Files\Winamp\Winampa.exe C:\WINDOWS\system32\internat.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe C:\Program Files\Microsoft Office\Office\Osa.exe C:\Program Files\Microsoft Office\Office\Findfast.exe C:\Program Files\Nikon\NkView6\NkvMon.exe C:\PROGRA~1\MICROS~3\OFFICE10\OUTLOOK.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE D:\Mes documents\programmes\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://forum.chez.com/vavroum/1/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R1 - HKCU\Software\Microsoft\Internet Connection Wizard,Shellnext = http://www.rezoweb.com/forum/aide/help/135.shtml R3 - URLSearchHook: MailTo Class - {01A9EB7D-69BC-11D2-AB2F-204C4F4F5020} - C:\WINDOWS\system32\astctl32.ocx O1 - Hosts: 64.135.204.60 www.0190-dialer.com O1 - Hosts: 64.135.204.60 spywareinfo.com O1 - Hosts: 64.135.204.60 www.spywareinfo.com O1 - Hosts: 64.135.204.60 lavasoftsupport.com O1 - Hosts: 64.135.204.60 www.lavasoftsupport.com O1 - Hosts: 64.135.204.60 exit.xitcash.com O1 - Hosts: 64.135.204.60 www.exitforcash.com O1 - Hosts: 64.135.204.60 exit.sellyourexit.com O1 - Hosts: 64.135.204.60 sex-explorer.com O1 - Hosts: 64.135.204.60 www.sex-explorer.com O1 - Hosts: 64.135.204.60 www.online-dialer.com O1 - Hosts: 64.135.204.60 network.nocreditcard.com O1 - Hosts: 64.135.204.60 www.mtreexxx.net O1 - Hosts: 64.135.204.60 install.xxxtoolbar.com O1 - Hosts: 64.135.204.60 www.xxxtoolbar.com O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O3 - Toolbar: @msdxmLC.dll,-1@1036,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O4 - HKLM\..\Run: [SystemTray] SysTray.Exe O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe O4 - HKLM\..\Run: [AVG_CC] C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe /STARTUP O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe" O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe" O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [SoundFusion] RunDll32 cwcprops.cpl,CrystalControlWnd O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe" O4 - HKCU\..\Run: [internat.exe] internat.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [SkwatAutoconnect] C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe O4 - Global Startup: BTTray.lnk = C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe O4 - Global Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE O4 - Global Startup: NkvMon.exe.lnk = C:\Program Files\Nikon\NkView6\NkvMon.exe O9 - Extra button: Stop Pub (HKLM) O9 - Extra 'Tools' menuitem: Stop Pub (HKLM) O9 - Extra button: Related (HKLM) O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM) O9 - Extra button: Yahoo! Messenger (HKLM) O9 - Extra 'Tools' menuitem: Yahoo! Messenger (HKLM) O9 - Extra button: Wanadoo (HKCU) O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://www.apple.com/qtactivex/qtplugin.cab O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab O16 - DPF: {6B4788E2-BAE8-11D2-A1B4-00400512739B} (PWMediaSendControl Class) - http://216.249.24.142/code/PWActiveXImgCtl.CAB O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab O16 - DPF: {E855A2D4-987E-4F3B-A51C-64D10A7E2479} (EPSImageControl Class) - http://tools.ebayimg.com/eps/activex/EPSControl_v1-32.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{EC575F9F-3F2B-4192-91E0-BA6F5A86FCC0}: NameServer = 80.10.246.1 80.10.246.132 je trouve admirable que ce genre de truc soit compréhensible pour certains...