Se connecter avec
S'enregistrer | Connectez-vous
Votre question

Plusieurs iexplore.exe dans le gestionnaire de tâches

Tags :
Dernière réponse : dans Sécurité et virus
Partagez
25 Septembre 2008 21:24:28

bonjours à tous, voilà depuis quelque temps j'ai plusieurs processus "iexplore.exe" ouvert en même temps, je me suis renseigné en cherchant un peu et j'ai appris que c'est un virus, je sais que le sujet existe mais toutes les solutions sont pour XP et moi je tourne sur Vista, de plus je n'ai pas bien compris les solutions données, donc si quelqu'un peut m'aider je lui en serai très reconnaissant.
Salutations.
F£\I][
25 Septembre 2008 22:31:10

voila le résultat avec hijack


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:30:07, on 25/09/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Common Files\Logitech\LCD Manager\LCDMon.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDPOP3.exe
C:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDClock.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\System32\mobsync.exe
C:\Users\de Buren\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ch/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Mininova Toolbar - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Mininova Toolbar - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Mininova Toolbar - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Common Files\Logitech\LCD Manager\LCDMon.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DEBUGNURB] "C:\ProgramData\logopenopen.lpy5gtf"
O4 - Startup: Nouveau document texte.txt
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: Download Video on This Page - C:\Program Files\Tomato\YouTube Video Downloader\IEPage.html
O8 - Extra context menu item: Download Video This Links To - C:\Program Files\Tomato\YouTube Video Downloader\IELink.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O9 - Extra button: Download Video - {11F19C45-9675-488A-A8E0-8E8234DC245D} - C:\Program Files\Tomato\YouTube Video Downloader\IEPage.html
O9 - Extra 'Tools' menuitem: Download Video on This Page - {11F19C45-9675-488A-A8E0-8E8234DC245D} - C:\Program Files\Tomato\YouTube Video Downloader\IEPage.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe

--
End of file - 7787 bytes
26 Septembre 2008 14:13:24

et voila un rapport en mode sans échec:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:08:44, on 26/09/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Safe mode

Running processes:
C:\Windows\Explorer.EXE
C:\Users\de Buren\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ch/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Mininova Toolbar - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll
O1 - Hosts: ::1 localhost
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Mininova Toolbar - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Mininova Toolbar - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Common Files\Logitech\LCD Manager\LCDMon.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DEBUGNURB] "C:\ProgramData\logopenopen.lpy5gtf"
O4 - HKCU\..\Run: [Itch ford four knob] "C:\ProgramData\First 32 Joy.xe09m"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: Download Video on This Page - C:\Program Files\Tomato\YouTube Video Downloader\IEPage.html
O8 - Extra context menu item: Download Video This Links To - C:\Program Files\Tomato\YouTube Video Downloader\IELink.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O9 - Extra button: Download Video - {11F19C45-9675-488A-A8E0-8E8234DC245D} - C:\Program Files\Tomato\YouTube Video Downloader\IEPage.html
O9 - Extra 'Tools' menuitem: Download Video on This Page - {11F19C45-9675-488A-A8E0-8E8234DC245D} - C:\Program Files\Tomato\YouTube Video Downloader\IEPage.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe

--
End of file - 6813 bytes
Contenus similaires
Pas de réponse à votre question ? Demandez !
a b 8 Sécurité
26 Septembre 2008 19:41:24

Bonjour,

Télécharge Toolbar-S&D ([#ff0000]Team IDN[/#ff]) sur ton Bureau.

  • Lance l'installation du programme en exécutant le fichier téléchargé.
  • Double-clique maintenant sur le raccourci de Toolbar-S&D.
  • Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
  • Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
  • Poste le rapport généré. (C:\TB.txt)
    26 Septembre 2008 23:39:39

    voila voila ;) 


    -----------\\ ToolBar S&D 1.2.1 XP/Vista

    Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
    X86-based PC ( Multiprocessor Free : AMD Sempron(tm) Processor 3400+ )
    BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
    USER : de Buren ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1229 [VPS 080926-0] 4.8.1229 (Activated)
    C:\ (Local Disk) - NTFS - Total : 113 Go Free : 61 Go
    D:\ (Local Disk) - NTFS - Total : 112 Go Free : 112 Go
    E:\ (CD or DVD)
    F:\ (USB)
    G:\ (USB)
    H:\ (USB)
    I:\ (USB)
    J:\ (Local Disk) - FAT32 - Total : 596 Go Free : 418 Go

    "C:\ToolBar SD" ( MAJ : 24-09-2008|21:50 )
    Option : [1] ( 26/09/2008|23:36 )

    [ UAC => 1 ]

    -----------\\ Recherche de Fichiers / Dossiers ...


    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Local Page"="C:\\Windows\\system32\\blank.htm"
    "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
    "Start Page"="http://www.google.ch/"
    "Url"="http://go.microsoft.com/fwlink/?LinkId=75720"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
    "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
    "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
    "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"


    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\Users\DEBURE~1\Documents\Felix\Musique\Kanye West\Late Registration\08 - Crack Music (featuring Game).mp3
    C:\Users\DEBURE~1\Documents\Felix\Oleoo\Eminem\The Return of Marshall Mathers 2\30-crack_smoke.mp3


    [ UAC => 1 ]


    1 - "C:\ToolBar SD\TB_1.txt" - 26/09/2008|23:37 - Option : [1]

    -----------\\ Fin du rapport a 23:37:01,13

    a b 8 Sécurité
    27 Septembre 2008 13:29:14

    Je me suis trompé de logiciel, excuse moi.

    Télécharge Lop S&D.exe ([#ff0000]Eric_71[/#f]) sur ton Bureau.

  • Lance l'installation du programme en exécutant le fichier téléchargé.
  • Double-clique maintenant sur le raccourci de LopS&D.
  • Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
  • Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
  • Poste le rapport généré (C:\lopR.txt*)
    27 Septembre 2008 16:05:59

    voila voila^^ je t'excuse parce que sans toi ben je suis dans la M ^^


    --------------------\\ Lop S&D 4.2.4-4 XP/Vista

    Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
    X86-based PC ( Multiprocessor Free : AMD Sempron(tm) Processor 3400+ )
    BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
    USER : de Buren ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1229 [VPS 080926-0] 4.8.1229 (Activated)
    C:\ (Local Disk) - NTFS - Total : 113 Go Free : 61 Go
    D:\ (Local Disk) - NTFS - Total : 112 Go Free : 112 Go
    E:\ (CD or DVD)
    F:\ (USB)
    G:\ (USB)
    H:\ (USB)
    I:\ (USB)
    J:\ (Local Disk) - FAT32 - Total : 596 Go Free : 418 Go

    "C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
    Option : [1] ( 27/09/2008|16:01 )

    [ UAC => 1 ]

    --------------------\\ Listing des dossiers dans Local

    [10/09/2008|21:43] C:\Users\DEBURE~1\AppData\Local\Adobe
    [24/05/2008|21:08] C:\Users\DEBURE~1\AppData\Local\Apple
    [10/08/2008|18:24] C:\Users\DEBURE~1\AppData\Local\Apple Computer
    [24/05/2008|18:22] C:\Users\DEBURE~1\AppData\Local\Application Data
    [26/09/2008|14:39] C:\Users\DEBURE~1\AppData\Local\d3d9caps.dat
    [27/09/2008|02:14] C:\Users\DEBURE~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [18/08/2008|21:48] C:\Users\DEBURE~1\AppData\Local\Downloaded Installations
    [03/09/2008|22:01] C:\Users\DEBURE~1\AppData\Local\GDIPFONTCACHEV1.DAT
    [25/05/2008|18:03] C:\Users\DEBURE~1\AppData\Local\Google
    [24/05/2008|18:22] C:\Users\DEBURE~1\AppData\Local\Historique
    [27/09/2008|02:21] C:\Users\DEBURE~1\AppData\Local\IconCache.db
    [25/05/2008|13:33] C:\Users\DEBURE~1\AppData\Local\Logitech
    [30/08/2008|23:08] C:\Users\DEBURE~1\AppData\Local\Microsoft
    [30/08/2008|22:19] C:\Users\DEBURE~1\AppData\Local\Microsoft Help
    [26/05/2008|22:30] C:\Users\DEBURE~1\AppData\Local\Moodysoft
    [23/06/2008|00:20] C:\Users\DEBURE~1\AppData\Local\Mozilla
    [31/08/2008|19:41] C:\Users\DEBURE~1\AppData\Local\ONSPEED
    [18/08/2008|22:54] C:\Users\DEBURE~1\AppData\Local\Simplify Media
    [27/09/2008|16:00] C:\Users\DEBURE~1\AppData\Local\Temp
    [24/05/2008|18:22] C:\Users\DEBURE~1\AppData\Local\Temporary Internet Files
    [27/05/2008|18:20] C:\Users\DEBURE~1\AppData\Local\VirtualStore

    --------------------\\ Tâches planifiées dans C:\Windows\tasks

    [27/09/2008 16:00][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
    [27/09/2008 15:58][--ah-----] C:\Windows\tasks\SA.DAT
    [27/09/2008 02:22][--a------] C:\Windows\tasks\SCHEDLGU.TXT

    --------------------\\ Listing des dossiers dans C:\ProgramData

    [14/09/2008|13:53] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
    [10/09/2008|21:09] C:\ProgramData\Adobe
    [24/05/2008|21:07] C:\ProgramData\Apple
    [24/05/2008|21:11] C:\ProgramData\Apple Computer
    [02/11/2006|15:02] C:\ProgramData\Application Data
    [24/05/2008|18:17] C:\ProgramData\Bureau
    [02/11/2006|15:02] C:\ProgramData\Desktop
    [02/11/2006|15:02] C:\ProgramData\Documents
    [26/09/2008|16:24] C:\ProgramData\DVD Shrink
    [24/05/2008|18:17] C:\ProgramData\Favoris
    [02/11/2006|15:02] C:\ProgramData\Favorites
    [18/09/2008|21:54] C:\ProgramData\First 32 Joy.xe09m
    [04/09/2008|19:10] C:\ProgramData\FLEXnet
    [25/05/2008|12:48] C:\ProgramData\Google
    [26/09/2008|13:27] C:\ProgramData\Google Updater
    [18/09/2008|21:54] C:\ProgramData\HECKMEALJUMP
    [30/07/2008|21:13] C:\ProgramData\LauncherAccess.dt
    [03/09/2008|13:31] C:\ProgramData\LogiShrd
    [02/07/2008|12:05] C:\ProgramData\Logitech
    [18/09/2008|21:53] C:\ProgramData\logopenopen.578p853
    [18/09/2008|21:53] C:\ProgramData\logopenopen.lpy5gtf
    [24/05/2008|18:17] C:\ProgramData\Menu D‚marrer
    [05/06/2008|21:50] C:\ProgramData\Messenger Plus!
    [30/08/2008|22:23] C:\ProgramData\Microsoft
    [12/09/2008|13:18] C:\ProgramData\Microsoft Help
    [24/05/2008|18:17] C:\ProgramData\ModŠles
    [27/08/2008|12:35] C:\ProgramData\NVIDIA
    [26/09/2008|22:45] C:\ProgramData\Spybot - Search & Destroy
    [02/11/2006|15:02] C:\ProgramData\Start Menu
    [02/11/2006|15:02] C:\ProgramData\Templates
    [26/09/2008|13:16] C:\ProgramData\third lies itch ford
    [24/05/2008|18:55] C:\ProgramData\TuneUp Software
    [24/05/2008|20:51] C:\ProgramData\WLInstaller

    --------------------\\ Listing des dossiers dans C:\Program Files

    [10/09/2008|21:07] C:\Program Files\Adobe
    [24/05/2008|18:40] C:\Program Files\Alwil Software
    [08/08/2008|19:57] C:\Program Files\Apple Software Update
    [23/09/2008|18:01] C:\Program Files\a-squared Free
    [26/05/2008|22:10] C:\Program Files\Auslogics
    [14/09/2008|13:51] C:\Program Files\Bonjour
    [18/09/2008|21:53] C:\Program Files\Circle Developement
    [03/09/2008|21:46] C:\Program Files\Common Files
    [30/07/2008|19:38] C:\Program Files\Conduit
    [24/05/2008|18:17] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
    [30/06/2008|16:48] C:\Program Files\Firefly Studios
    [08/08/2008|18:20] C:\Program Files\Google
    [03/09/2008|13:12] C:\Program Files\InstallShield Installation Information
    [26/09/2008|14:15] C:\Program Files\Internet Explorer
    [14/09/2008|13:52] C:\Program Files\iPod
    [14/09/2008|13:53] C:\Program Files\iTunes
    [25/05/2008|21:27] C:\Program Files\IZArc
    [25/05/2008|14:21] C:\Program Files\Java
    [29/06/2008|17:43] C:\Program Files\LimeWire
    [02/07/2008|12:01] C:\Program Files\Logitech
    [18/09/2008|21:53] C:\Program Files\Messenger Plus! Live
    [02/11/2006|14:37] C:\Program Files\Microsoft Games
    [30/08/2008|22:24] C:\Program Files\Microsoft Office
    [19/08/2008|17:43] C:\Program Files\Microsoft Silverlight
    [30/08/2008|22:24] C:\Program Files\Microsoft Visual Studio
    [30/08/2008|22:20] C:\Program Files\Microsoft Visual Studio 8
    [30/08/2008|22:25] C:\Program Files\Microsoft Works
    [30/08/2008|22:23] C:\Program Files\Microsoft.NET
    [30/07/2008|19:38] C:\Program Files\Mininova
    [26/05/2008|22:30] C:\Program Files\Moodysoft
    [28/05/2008|17:15] C:\Program Files\Movie Maker
    [26/09/2008|13:16] C:\Program Files\Mozilla Firefox
    [30/08/2008|22:24] C:\Program Files\MSBuild
    [23/06/2008|14:00] C:\Program Files\MSXML 4.0
    [25/05/2008|14:22] C:\Program Files\OpenOffice.org 2.4
    [14/09/2008|13:50] C:\Program Files\QuickTime
    [02/11/2006|14:37] C:\Program Files\Reference Assemblies
    [25/09/2008|18:43] C:\Program Files\RegCleaner
    [24/05/2008|19:32] C:\Program Files\RocketDock
    [23/06/2008|01:02] C:\Program Files\Samsung
    [18/08/2008|21:50] C:\Program Files\Simplify Media
    [26/09/2008|14:48] C:\Program Files\Spybot - Search & Destroy
    [26/09/2008|13:16] C:\Program Files\TightVNC
    [09/06/2008|16:37] C:\Program Files\Tomato
    [12/07/2008|16:22] C:\Program Files\TuneUp Utilities 2008
    [02/11/2006|15:01] C:\Program Files\Uninstall Information
    [25/05/2008|15:11] C:\Program Files\uTorrent
    [26/05/2008|22:03] C:\Program Files\VideoLAN
    [28/05/2008|17:15] C:\Program Files\Windows Calendar
    [28/05/2008|17:15] C:\Program Files\Windows Collaboration
    [28/05/2008|17:15] C:\Program Files\Windows Defender
    [24/05/2008|20:55] C:\Program Files\Windows Live
    [14/08/2008|20:39] C:\Program Files\Windows Mail
    [28/05/2008|17:15] C:\Program Files\Windows Media Player
    [24/05/2008|18:17] C:\Program Files\Windows NT
    [28/05/2008|17:15] C:\Program Files\Windows Photo Gallery
    [28/05/2008|17:15] C:\Program Files\Windows Sidebar
    [02/09/2008|21:46] C:\Program Files\Xi

    --------------------\\ Listing des dossiers dans C:\Program Files\Common Files

    [03/09/2008|21:55] C:\Program Files\Common Files\Adobe
    [14/09/2008|13:50] C:\Program Files\Common Files\Apple
    [30/08/2008|22:24] C:\Program Files\Common Files\DESIGNER
    [02/07/2008|12:01] C:\Program Files\Common Files\InstallShield
    [25/05/2008|14:20] C:\Program Files\Common Files\Java
    [03/09/2008|13:13] C:\Program Files\Common Files\Logishrd
    [03/09/2008|13:13] C:\Program Files\Common Files\Logitech
    [03/09/2008|21:46] C:\Program Files\Common Files\Macrovision Shared
    [31/08/2008|00:02] C:\Program Files\Common Files\microsoft shared
    [02/11/2006|13:18] C:\Program Files\Common Files\Services
    [02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
    [29/06/2008|18:12] C:\Program Files\Common Files\SWF Studio
    [30/08/2008|22:20] C:\Program Files\Common Files\System
    [24/05/2008|20:55] C:\Program Files\Common Files\WindowsLiveInstaller
    [24/05/2008|18:54] C:\Program Files\Common Files\Wise Installation Wizard

    --------------------\\ Process

    ( 58 Processes )

    iexplore.exe ~ [PID:2376]
    iexplore.exe ~ [PID:208]

    --------------------\\ Recherche avec S_Lop

    C:\ProgramData\First 32 Joy.xe09m
    C:\ProgramData\logopenopen.578p853
    C:\ProgramData\logopenopen.lpy5gtf

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\ProgramData\third lies itch ford
    C:\ProgramData\third lies itch ford\Tons Team.exe
    C:\Program Files\Circle Developement
    C:\Program Files\Circle Developement\Uninstall.exe
    C:\Users\DEBURE~1\AppData\Roaming\MICROS~1\Windows\Cookies\de_buren@adopt.euroclick[1].txt

    --------------------\\ Verification du Registre

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Itch ford four knob"="\"C:\\ProgramData\\First 32 Joy.xe09m\""
    "DEBUGNURB"="\"C:\\ProgramData\\logopenopen.lpy5gtf\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-09-27 16:01:36
    Windows 6.0.6001 Service Pack 1 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\Users\DEBURE~1\Documents\Felix\Musique\Kanye West\Late Registration\08 - Crack Music (featuring Game).mp3
    C:\Users\DEBURE~1\Documents\Felix\Oleoo\Eminem\The Return of Marshall Mathers 2\30-crack_smoke.mp3


    [F:56][D:11]-> C:\Users\DEBURE~1\AppData\Local\Temp
    [F:633][D:1]-> C:\Users\DEBURE~1\AppData\Roaming\MICROS~1\Windows\Cookies
    [F:190][D:9]-> C:\Users\DEBURE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
    [F:2][D:2]-> C:\$Recycle.Bin

    1 - "C:\Lop SD\LopR_1.txt" - 27/09/2008|16:04 - Option : [1]

    --------------------\\ Fin du rapport a 16:04:08
    [ UAC => 1 ]

    a b 8 Sécurité
    27 Septembre 2008 18:00:08

    Re,

    Relance Lop S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
    [#ff0000]! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
    Un rapport sera généré, poste son contenu ici.
    27 Septembre 2008 18:36:24

    ok ok je fai sa maintenant
    27 Septembre 2008 18:38:21


    --------------------\\ Lop S&D 4.2.4-4 XP/Vista

    Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
    X86-based PC ( Multiprocessor Free : AMD Sempron(tm) Processor 3400+ )
    BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
    USER : de Buren ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1229 [VPS 080926-0] 4.8.1229 (Activated)
    C:\ (Local Disk) - NTFS - Total : 113 Go Free : 60 Go
    D:\ (Local Disk) - NTFS - Total : 112 Go Free : 112 Go
    E:\ (CD or DVD)
    F:\ (USB)
    G:\ (USB)
    H:\ (USB)
    I:\ (USB)

    "C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
    Option : [2] ( 27/09/2008|18:35 )

    [ UAC => 1 ]


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

    Supprime! - C:\ProgramData\third lies itch ford\Tons Team.exe
    Supprime! - C:\Program Files\Circle Developement\Uninstall.exe
    Supprime! - C:\Users\DEBURE~1\AppData\Roaming\MICROS~1\Windows\Cookies\de_buren@adopt.euroclick[1].txt
    Supprime! - C:\ProgramData\First 32 Joy.xe09m
    Supprime! - C:\ProgramData\logopenopen.578p853
    Supprime! - C:\ProgramData\logopenopen.lpy5gtf
    Supprime! - C:\ProgramData\third lies itch ford
    Supprime! - C:\Program Files\Circle Developement
    -
    [ Fichier Hosts ] .. Restaure!

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    --------------------\\ Listing des dossiers dans Local

    [10/09/2008|21:43] C:\Users\DEBURE~1\AppData\Local\Adobe
    [24/05/2008|21:08] C:\Users\DEBURE~1\AppData\Local\Apple
    [10/08/2008|18:24] C:\Users\DEBURE~1\AppData\Local\Apple Computer
    [24/05/2008|18:22] C:\Users\DEBURE~1\AppData\Local\Application Data
    [26/09/2008|14:39] C:\Users\DEBURE~1\AppData\Local\d3d9caps.dat
    [27/09/2008|02:14] C:\Users\DEBURE~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [18/08/2008|21:48] C:\Users\DEBURE~1\AppData\Local\Downloaded Installations
    [03/09/2008|22:01] C:\Users\DEBURE~1\AppData\Local\GDIPFONTCACHEV1.DAT
    [25/05/2008|18:03] C:\Users\DEBURE~1\AppData\Local\Google
    [24/05/2008|18:22] C:\Users\DEBURE~1\AppData\Local\Historique
    [27/09/2008|02:21] C:\Users\DEBURE~1\AppData\Local\IconCache.db
    [25/05/2008|13:33] C:\Users\DEBURE~1\AppData\Local\Logitech
    [30/08/2008|23:08] C:\Users\DEBURE~1\AppData\Local\Microsoft
    [30/08/2008|22:19] C:\Users\DEBURE~1\AppData\Local\Microsoft Help
    [26/05/2008|22:30] C:\Users\DEBURE~1\AppData\Local\Moodysoft
    [23/06/2008|00:20] C:\Users\DEBURE~1\AppData\Local\Mozilla
    [31/08/2008|19:41] C:\Users\DEBURE~1\AppData\Local\ONSPEED
    [18/08/2008|22:54] C:\Users\DEBURE~1\AppData\Local\Simplify Media
    [27/09/2008|18:35] C:\Users\DEBURE~1\AppData\Local\Temp
    [24/05/2008|18:22] C:\Users\DEBURE~1\AppData\Local\Temporary Internet Files
    [27/05/2008|18:20] C:\Users\DEBURE~1\AppData\Local\VirtualStore

    --------------------\\ Tâches planifiées dans C:\Windows\tasks

    [27/09/2008 18:00][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
    [27/09/2008 15:58][--ah-----] C:\Windows\tasks\SA.DAT
    [27/09/2008 02:22][--a------] C:\Windows\tasks\SCHEDLGU.TXT

    --------------------\\ Listing des dossiers dans C:\ProgramData

    [14/09/2008|13:53] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
    [10/09/2008|21:09] C:\ProgramData\Adobe
    [24/05/2008|21:07] C:\ProgramData\Apple
    [24/05/2008|21:11] C:\ProgramData\Apple Computer
    [02/11/2006|15:02] C:\ProgramData\Application Data
    [24/05/2008|18:17] C:\ProgramData\Bureau
    [02/11/2006|15:02] C:\ProgramData\Desktop
    [02/11/2006|15:02] C:\ProgramData\Documents
    [26/09/2008|16:24] C:\ProgramData\DVD Shrink
    [24/05/2008|18:17] C:\ProgramData\Favoris
    [02/11/2006|15:02] C:\ProgramData\Favorites
    [04/09/2008|19:10] C:\ProgramData\FLEXnet
    [25/05/2008|12:48] C:\ProgramData\Google
    [27/09/2008|16:11] C:\ProgramData\Google Updater
    [18/09/2008|21:54] C:\ProgramData\HECKMEALJUMP
    [30/07/2008|21:13] C:\ProgramData\LauncherAccess.dt
    [03/09/2008|13:31] C:\ProgramData\LogiShrd
    [02/07/2008|12:05] C:\ProgramData\Logitech
    [24/05/2008|18:17] C:\ProgramData\Menu D‚marrer
    [05/06/2008|21:50] C:\ProgramData\Messenger Plus!
    [30/08/2008|22:23] C:\ProgramData\Microsoft
    [12/09/2008|13:18] C:\ProgramData\Microsoft Help
    [24/05/2008|18:17] C:\ProgramData\ModŠles
    [27/08/2008|12:35] C:\ProgramData\NVIDIA
    [26/09/2008|22:45] C:\ProgramData\Spybot - Search & Destroy
    [02/11/2006|15:02] C:\ProgramData\Start Menu
    [02/11/2006|15:02] C:\ProgramData\Templates
    [24/05/2008|18:55] C:\ProgramData\TuneUp Software
    [24/05/2008|20:51] C:\ProgramData\WLInstaller

    --------------------\\ Listing des dossiers dans C:\Program Files

    [10/09/2008|21:07] C:\Program Files\Adobe
    [24/05/2008|18:40] C:\Program Files\Alwil Software
    [08/08/2008|19:57] C:\Program Files\Apple Software Update
    [23/09/2008|18:01] C:\Program Files\a-squared Free
    [26/05/2008|22:10] C:\Program Files\Auslogics
    [14/09/2008|13:51] C:\Program Files\Bonjour
    [03/09/2008|21:46] C:\Program Files\Common Files
    [30/07/2008|19:38] C:\Program Files\Conduit
    [24/05/2008|18:17] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
    [30/06/2008|16:48] C:\Program Files\Firefly Studios
    [08/08/2008|18:20] C:\Program Files\Google
    [03/09/2008|13:12] C:\Program Files\InstallShield Installation Information
    [26/09/2008|14:15] C:\Program Files\Internet Explorer
    [14/09/2008|13:52] C:\Program Files\iPod
    [14/09/2008|13:53] C:\Program Files\iTunes
    [25/05/2008|21:27] C:\Program Files\IZArc
    [25/05/2008|14:21] C:\Program Files\Java
    [29/06/2008|17:43] C:\Program Files\LimeWire
    [02/07/2008|12:01] C:\Program Files\Logitech
    [18/09/2008|21:53] C:\Program Files\Messenger Plus! Live
    [02/11/2006|14:37] C:\Program Files\Microsoft Games
    [30/08/2008|22:24] C:\Program Files\Microsoft Office
    [19/08/2008|17:43] C:\Program Files\Microsoft Silverlight
    [30/08/2008|22:24] C:\Program Files\Microsoft Visual Studio
    [30/08/2008|22:20] C:\Program Files\Microsoft Visual Studio 8
    [30/08/2008|22:25] C:\Program Files\Microsoft Works
    [30/08/2008|22:23] C:\Program Files\Microsoft.NET
    [30/07/2008|19:38] C:\Program Files\Mininova
    [26/05/2008|22:30] C:\Program Files\Moodysoft
    [28/05/2008|17:15] C:\Program Files\Movie Maker
    [26/09/2008|13:16] C:\Program Files\Mozilla Firefox
    [30/08/2008|22:24] C:\Program Files\MSBuild
    [23/06/2008|14:00] C:\Program Files\MSXML 4.0
    [25/05/2008|14:22] C:\Program Files\OpenOffice.org 2.4
    [14/09/2008|13:50] C:\Program Files\QuickTime
    [02/11/2006|14:37] C:\Program Files\Reference Assemblies
    [25/09/2008|18:43] C:\Program Files\RegCleaner
    [24/05/2008|19:32] C:\Program Files\RocketDock
    [23/06/2008|01:02] C:\Program Files\Samsung
    [18/08/2008|21:50] C:\Program Files\Simplify Media
    [26/09/2008|14:48] C:\Program Files\Spybot - Search & Destroy
    [26/09/2008|13:16] C:\Program Files\TightVNC
    [09/06/2008|16:37] C:\Program Files\Tomato
    [12/07/2008|16:22] C:\Program Files\TuneUp Utilities 2008
    [02/11/2006|15:01] C:\Program Files\Uninstall Information
    [25/05/2008|15:11] C:\Program Files\uTorrent
    [26/05/2008|22:03] C:\Program Files\VideoLAN
    [28/05/2008|17:15] C:\Program Files\Windows Calendar
    [28/05/2008|17:15] C:\Program Files\Windows Collaboration
    [28/05/2008|17:15] C:\Program Files\Windows Defender
    [24/05/2008|20:55] C:\Program Files\Windows Live
    [14/08/2008|20:39] C:\Program Files\Windows Mail
    [28/05/2008|17:15] C:\Program Files\Windows Media Player
    [24/05/2008|18:17] C:\Program Files\Windows NT
    [28/05/2008|17:15] C:\Program Files\Windows Photo Gallery
    [28/05/2008|17:15] C:\Program Files\Windows Sidebar
    [02/09/2008|21:46] C:\Program Files\Xi

    --------------------\\ Listing des dossiers dans C:\Program Files\Common Files

    [03/09/2008|21:55] C:\Program Files\Common Files\Adobe
    [14/09/2008|13:50] C:\Program Files\Common Files\Apple
    [30/08/2008|22:24] C:\Program Files\Common Files\DESIGNER
    [02/07/2008|12:01] C:\Program Files\Common Files\InstallShield
    [25/05/2008|14:20] C:\Program Files\Common Files\Java
    [03/09/2008|13:13] C:\Program Files\Common Files\Logishrd
    [03/09/2008|13:13] C:\Program Files\Common Files\Logitech
    [03/09/2008|21:46] C:\Program Files\Common Files\Macrovision Shared
    [31/08/2008|00:02] C:\Program Files\Common Files\microsoft shared
    [02/11/2006|13:18] C:\Program Files\Common Files\Services
    [02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
    [29/06/2008|18:12] C:\Program Files\Common Files\SWF Studio
    [30/08/2008|22:20] C:\Program Files\Common Files\System
    [24/05/2008|20:55] C:\Program Files\Common Files\WindowsLiveInstaller
    [24/05/2008|18:54] C:\Program Files\Common Files\Wise Installation Wizard

    --------------------\\ Process

    ( 59 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-09-27 18:36:19
    Windows 6.0.6001 Service Pack 1 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\Users\DEBURE~1\Documents\Felix\Musique\Kanye West\Late Registration\08 - Crack Music (featuring Game).mp3
    C:\Users\DEBURE~1\Documents\Felix\Oleoo\Eminem\The Return of Marshall Mathers 2\30-crack_smoke.mp3


    [F:61][D:11]-> C:\Users\DEBURE~1\AppData\Local\Temp
    [F:632][D:1]-> C:\Users\DEBURE~1\AppData\Roaming\MICROS~1\Windows\Cookies
    [F:204][D:9]-> C:\Users\DEBURE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
    [F:2][D:2]-> C:\$Recycle.Bin

    1 - "C:\Lop SD\LopR_1.txt" - 27/09/2008|16:04 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 27/09/2008|18:37 - Option : [2]

    --------------------\\ Fin du rapport a 18:37:57
    [ UAC => 1 ]

    27 Septembre 2008 18:58:48

    sa a l'air bon , plus de iexplore.exe dans le gestionnaire en tout cas,,, merci beaucoup :) :) :) :) 
    a b 8 Sécurité
    27 Septembre 2008 19:04:52

    Reposte un rapport Hijackthis.
    27 Septembre 2008 19:57:33

    ok

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 19:57:20, on 27/09/2008
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Alwil Software\Avast4\ashDisp.exe
    C:\Program Files\Common Files\Logitech\LCD Manager\LCDMon.exe
    C:\Program Files\RocketDock\RocketDock.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Windows\System32\mobsync.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDPOP3.exe
    C:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDClock.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Windows\system32\wuauclt.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Users\de Buren\Documents\Felix\Programmes\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ch/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Mininova Toolbar - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
    O2 - BHO: Mininova Toolbar - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: Mininova Toolbar - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Common Files\Logitech\LCD Manager\LCDMon.exe"
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
    O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
    O8 - Extra context menu item: Download Video on This Page - C:\Program Files\Tomato\YouTube Video Downloader\IEPage.html
    O8 - Extra context menu item: Download Video This Links To - C:\Program Files\Tomato\YouTube Video Downloader\IELink.html
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
    O9 - Extra button: Download Video - {11F19C45-9675-488A-A8E0-8E8234DC245D} - C:\Program Files\Tomato\YouTube Video Downloader\IEPage.html
    O9 - Extra 'Tools' menuitem: Download Video on This Page - {11F19C45-9675-488A-A8E0-8E8234DC245D} - C:\Program Files\Tomato\YouTube Video Downloader\IEPage.html
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O13 - Gopher Prefix:
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe

    --
    End of file - 7333 bytes
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter