Votre question

Besoin d'un pti coup de ménage

Tags :
  • Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
24 Juillet 2008 09:27:46

Bonjour à toutes et à tous!

Voila je m'y connais "moyen" en informatique mais je sais que mon PC doit être rempli de cochonneries et je voudrais lui redonner un brin de jeunesse!

Voici tout d'abord mon rapport hijackthis:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:25:39, on 24/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\QuickTime\QTTask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - F:\instal\MegaIEMn.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [FileByte] C:\DOCUME~1\Claude\APPLIC~1\SITEEX~1\Part Bike Cdrom.exe
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKLM\..\Policies\Explorer\Run: [none] C:\Program Files\Video ActiveX Object\pmsngr.exe
O4 - HKLM\..\Policies\Explorer\Run: [isamini.exe] C:\Program Files\Video ActiveX Object\isamonitor.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Global Startup: Net Pro Anti-Popup.lnk = C:\Program Files\Net Pro Anti-Popup\NPAP.exe
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZSzeb049YY...
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei-...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by110fd.bay110.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-fr.cab
O16 - DPF: {D8B94E9A-A34B-4253-BF48-C7CB7F2CFDB0} - http://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_...
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 9902 bytes


Après je ne sais plus du tout comment procéder! C'est la que je compte précieusement sur votre aide! Merci d'avance!

Autres pages sur : besoin pti coup menage

24 Juillet 2008 10:25:06

Salut :hello: 

Il y a effectivement quelques infections présentes sur ton ordi.

Télécharge SmitfraudFix (de S!ri).

  • Enregistre le sur ton Bureau.
  • Lance-le en double cliquant sur SmitfraudFix.exe
  • Appuie sur une touche comme demandé.
  • Exécute l’option 1, un rapport va apparaître, poste le.

    Le rapport se trouve ici : C:\rapport.txt

    Télécharge Lop S&D.exe (d’ Eric 71) sur ton bureau.

  • Double-clique dessus pour lancer l'installation
  • Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)
  • Séléctionne la langue souhaitée , puis choisis l'Option 1 (Recherche)
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré (C:\lopR.txt)

    Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
    Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
    Tapes explorer et valide. Cela te fera apparaitre ton bureau


    bisous myrtille
    24 Juillet 2008 10:43:53

    Voila le premier rapport:

    SmitFraudFix v2.331

    Rapport fait à 10:38:12,45, 24/07/2008
    Executé à partir de C:\Documents and Settings\Claude\Bureau\SmitfraudFix
    OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
    Le type du système de fichiers est NTFS
    Fix executé en mode normal

    »»»»»»»»»»»»»»»»»»»»»»»» Process

    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    C:\Program Files\QuickTime\QTTask.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Windows Media Player\WMPNSCFG.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\WINDOWS\system32\drivers\CDAC11BA.EXE
    C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\UAService7.exe
    C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    C:\Documents and Settings\Claude\Bureau\SmitfraudFix\Policies.exe
    C:\WINDOWS\system32\cmd.exe

    »»»»»»»»»»»»»»»»»»»»»»»» hosts


    »»»»»»»»»»»»»»»»»»»»»»»» C:\


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Claude


    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Claude\Application Data


    »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


    »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Claude\Favoris


    »»»»»»»»»»»»»»»»»»»»»»»» Bureau


    »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


    »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


    »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
    "Source"="About:Home"
    "SubscribedURL"="About:Home"
    "FriendlyName"="Ma page d'accueil"


    »»»»»»»»»»»»»»»»»»»»»»»» IEDFix
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    IEDFix
    Credits: Malware Analysis & Diagnostic
    Code: S!Ri



    »»»»»»»»»»»»»»»»»»»»»»»» VACFix
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    VACFix
    Credits: Malware Analysis & Diagnostic
    Code: S!Ri


    »»»»»»»»»»»»»»»»»»»»»»»» 404Fix
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    404Fix
    Credits: Malware Analysis & Diagnostic
    Code: S!Ri


    »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll


    »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLs"=""


    »»»»»»»»»»»»»»»»»»»»»»»» Winlogon
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
    "Userinit"="C:\\WINDOWS\\system32\\userinit.exe"
    "System"=""


    »»»»»»»»»»»»»»»»»»»»»»»» Rustock



    »»»»»»»»»»»»»»»»»»»»»»»» DNS

    Description: VIA Rhine III Fast Ethernet Adapter - Miniport d'ordonnancement de paquets
    DNS Server Search Order: 192.168.1.1

    HKLM\SYSTEM\CCS\Services\Tcpip\..\{8413FE29-ADD4-4129-83CD-89B360A4D9FC}: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS1\Services\Tcpip\..\{40E64602-26C1-4F20-95FA-2C26E78DA1E3}: DhcpNameServer=192.168.1.1 0.0.0.0
    HKLM\SYSTEM\CS2\Services\Tcpip\..\{8413FE29-ADD4-4129-83CD-89B360A4D9FC}: DhcpNameServer=192.168.1.1 0.0.0.0
    HKLM\SYSTEM\CS3\Services\Tcpip\..\{8413FE29-ADD4-4129-83CD-89B360A4D9FC}: DhcpNameServer=192.168.1.1 0.0.0.0
    HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 0.0.0.0
    HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 0.0.0.0
    HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 0.0.0.0


    »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


    »»»»»»»»»»»»»»»»»»»»»»»» Fin




    Et voila le deuxième:


    --------------------\\ Lop S&D 4.2.2-3 XP/Vista

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : Claude ] [ "C:\Lop SD" ] [ Selection : 1 ]
    [ 24/07/2008 | 10:41:04,50 ] [ PC : PIERSON-B7A53FD ]
    [ MAJ : 22-07-2008 | 17:35 ]

    --------------------\\ Listing des dossiers dans Application Data

    [27/11/2005|13:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
    [03/02/2007|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [06/04/2005|14:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [16/04/2008|14:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [16/04/2008|19:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [10/04/2005|00:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    [04/05/2005|19:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [06/04/2005|15:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [18/10/2006|21:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [24/11/2007|10:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default
    [22/12/2007|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
    [18/09/2007|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
    [18/09/2007|14:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
    [26/10/2007|10:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
    [13/11/2007|10:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Loud View Meet Debug
    [16/06/2006|14:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [14/07/2007|11:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [20/05/2006|08:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pineapple Works
    [06/04/2008|10:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
    [19/03/2006|15:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
    [28/05/2006|16:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [02/04/2008|17:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
    [23/04/2005|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
    [06/08/2005|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [08/04/2008|22:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [08/04/2005|16:35] C:\DOCUME~1\Claude\APPLIC~1\ABBYY
    [27/11/2005|14:38] C:\DOCUME~1\Claude\APPLIC~1\ACD Systems
    [26/06/2008|10:09] C:\DOCUME~1\Claude\APPLIC~1\Adobe
    [16/05/2008|11:16] C:\DOCUME~1\Claude\APPLIC~1\AdobeUM
    [23/12/2005|12:56] C:\DOCUME~1\Claude\APPLIC~1\Ahead
    [16/04/2008|19:18] C:\DOCUME~1\Claude\APPLIC~1\Apple Computer
    [25/04/2006|22:10] C:\DOCUME~1\Claude\APPLIC~1\ArcSoft
    [10/08/2006|21:19] C:\DOCUME~1\Claude\APPLIC~1\Creative
    [23/04/2005|14:40] C:\DOCUME~1\Claude\APPLIC~1\CyberLink
    [06/04/2005|15:22] C:\DOCUME~1\Claude\APPLIC~1\desktop.ini
    [15/12/2006|22:56] C:\DOCUME~1\Claude\APPLIC~1\DMCache
    [18/08/2005|14:56] C:\DOCUME~1\Claude\APPLIC~1\fltk.org
    [22/10/2006|08:57] C:\DOCUME~1\Claude\APPLIC~1\Google
    [22/12/2007|19:18] C:\DOCUME~1\Claude\APPLIC~1\Grisoft
    [20/04/2005|20:54] C:\DOCUME~1\Claude\APPLIC~1\Help
    [06/04/2005|13:55] C:\DOCUME~1\Claude\APPLIC~1\Identities
    [07/03/2006|20:16] C:\DOCUME~1\Claude\APPLIC~1\InterTrust
    [07/03/2006|20:40] C:\DOCUME~1\Claude\APPLIC~1\Leadertech
    [09/04/2005|21:31] C:\DOCUME~1\Claude\APPLIC~1\Macromedia
    [04/05/2005|19:40] C:\DOCUME~1\Claude\APPLIC~1\Media Player Classic
    [10/02/2008|22:00] C:\DOCUME~1\Claude\APPLIC~1\Microsoft
    [06/07/2007|13:53] C:\DOCUME~1\Claude\APPLIC~1\Mozilla
    [29/05/2005|22:00] C:\DOCUME~1\Claude\APPLIC~1\Musicmatch
    [22/12/2007|14:06] C:\DOCUME~1\Claude\APPLIC~1\site extra bend
    [09/07/2006|14:01] C:\DOCUME~1\Claude\APPLIC~1\Skype
    [02/04/2008|17:30] C:\DOCUME~1\Claude\APPLIC~1\Sony
    [15/04/2005|22:57] C:\DOCUME~1\Claude\APPLIC~1\Sun
    [01/10/2005|16:50] C:\DOCUME~1\Claude\APPLIC~1\vlc

    [06/04/2005|15:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [06/04/2005|13:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [06/07/2007|13:26] C:\DOCUME~1\LECOMP~1\APPLIC~1\ACD Systems
    [15/07/2007|18:48] C:\DOCUME~1\LECOMP~1\APPLIC~1\Adobe
    [06/07/2007|12:30] C:\DOCUME~1\LECOMP~1\APPLIC~1\AdobeUM
    [06/04/2005|15:22] C:\DOCUME~1\LECOMP~1\APPLIC~1\desktop.ini
    [06/07/2007|11:50] C:\DOCUME~1\LECOMP~1\APPLIC~1\Google
    [22/12/2007|16:18] C:\DOCUME~1\LECOMP~1\APPLIC~1\Grisoft
    [16/10/2005|11:23] C:\DOCUME~1\LECOMP~1\APPLIC~1\Identities
    [06/07/2007|12:30] C:\DOCUME~1\LECOMP~1\APPLIC~1\Leadertech
    [27/10/2007|14:48] C:\DOCUME~1\LECOMP~1\APPLIC~1\LimeWire
    [16/10/2005|11:25] C:\DOCUME~1\LECOMP~1\APPLIC~1\Macromedia
    [22/12/2007|18:22] C:\DOCUME~1\LECOMP~1\APPLIC~1\Microsoft
    [06/07/2007|12:00] C:\DOCUME~1\LECOMP~1\APPLIC~1\Mozilla
    [22/12/2007|15:32] C:\DOCUME~1\LECOMP~1\APPLIC~1\site extra bend

    [08/01/2006|12:13] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [06/04/2005|14:09] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander

    [06/04/2005|13:40] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [17/07/2008 14:33][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [24/07/2008 10:00][--ah-----] C:\WINDOWS\tasks\A9511FDE918A973A.job
    [23/07/2008 21:56][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    ( A9511FDE918A973A.job )=( c:\docume~1\claude\applic~1\siteex~1\boreokaymeet.exe )

    --------------------\\ Listing des dossiers dans C:\Program Files

    [08/04/2005|16:34] C:\Program Files\ABBYY
    [27/11/2005|13:19] C:\Program Files\ACD Systems
    [07/03/2006|20:16] C:\Program Files\Adobe
    [22/12/2007|15:38] C:\Program Files\Adverts
    [06/04/2005|14:18] C:\Program Files\Ahead
    [18/06/2008|09:12] C:\Program Files\ALDI
    [02/07/2006|23:26] C:\Program Files\Alwil Software
    [28/05/2006|17:24] C:\Program Files\Anti-Leech
    [16/04/2008|14:19] C:\Program Files\Apple Software Update
    [07/03/2006|20:19] C:\Program Files\ArcSoft
    [06/01/2008|14:12] C:\Program Files\Atari
    [06/04/2005|14:35] C:\Program Files\ATI Technologies
    [21/07/2006|10:47] C:\Program Files\AviSynth 2.5
    [16/02/2008|22:35] C:\Program Files\BitComet
    [06/04/2005|16:28] C:\Program Files\BulletProofSoft.com
    [08/08/2006|17:18] C:\Program Files\CA
    [06/04/2005|14:07] C:\Program Files\Common Files
    [06/04/2005|13:37] C:\Program Files\ComPlus Applications
    [11/08/2006|00:38] C:\Program Files\Creative
    [06/04/2005|14:07] C:\Program Files\CyberLink
    [03/12/2006|12:05] C:\Program Files\DeskMates
    [06/04/2005|14:22] C:\Program Files\DivX
    [15/05/2005|12:54] C:\Program Files\eMPIA
    [10/02/2008|13:44] C:\Program Files\eMule
    [15/05/2005|12:54] C:\Program Files\EMUSB2.0
    [22/12/2007|15:31] C:\Program Files\ESET
    [16/04/2008|14:31] C:\Program Files\Fichiers communs
    [28/03/2006|21:28] C:\Program Files\fsupport
    [24/08/2005|20:03] C:\Program Files\FunWebProducts
    [04/02/2007|10:43] C:\Program Files\Google
    [22/12/2007|16:17] C:\Program Files\Grisoft
    [25/06/2008|16:32] C:\Program Files\Hachette Multimedia
    [06/04/2005|14:08] C:\Program Files\Home Cinema
    [18/09/2007|14:26] C:\Program Files\HP
    [11/07/2008|14:48] C:\Program Files\Icone
    [25/06/2008|16:32] C:\Program Files\InstallShield Installation Information
    [06/04/2005|14:47] C:\Program Files\Intel
    [12/06/2008|21:03] C:\Program Files\Internet Explorer
    [06/12/2005|19:52] C:\Program Files\Java
    [26/10/2007|10:04] C:\Program Files\Lavasoft
    [11/07/2008|14:48] C:\Program Files\LETMIN
    [06/04/2005|14:42] C:\Program Files\Medion
    [10/04/2005|00:56] C:\Program Files\Mes Jeux Install‚s
    [16/04/2005|00:12] C:\Program Files\Messenger
    [08/04/2008|22:02] C:\Program Files\Messenger Plus! Live
    [16/06/2006|14:34] C:\Program Files\MessengerPlus! 3
    [06/04/2005|13:40] C:\Program Files\microsoft frontpage
    [06/04/2005|14:59] C:\Program Files\Microsoft Office
    [24/02/2008|18:10] C:\Program Files\Microsoft Picture It! 7
    [05/08/2005|00:38] C:\Program Files\Montorgueil
    [22/07/2007|17:10] C:\Program Files\Movie Maker
    [24/07/2008|09:15] C:\Program Files\Mozilla Firefox
    [09/02/2008|17:22] C:\Program Files\MSBuild
    [06/04/2005|13:36] C:\Program Files\MSN
    [06/04/2005|13:37] C:\Program Files\MSN Gaming Zone
    [08/04/2008|22:04] C:\Program Files\MSN Messenger
    [17/11/2006|22:01] C:\Program Files\MSXML 4.0
    [09/02/2008|17:24] C:\Program Files\MSXML 6.0
    [06/04/2005|14:12] C:\Program Files\Musicmatch
    [22/12/2007|13:47] C:\Program Files\Net Pro Anti-Popup
    [06/04/2005|13:38] C:\Program Files\NetMeeting
    [11/08/2006|00:36] C:\Program Files\Notify
    [06/04/2005|13:37] C:\Program Files\Online Services
    [22/12/2007|14:52] C:\Program Files\outlook
    [22/07/2007|17:10] C:\Program Files\Outlook Express
    [25/12/2005|18:00] C:\Program Files\Project64 v1.5
    [29/12/2006|22:13] C:\Program Files\pspvideo9
    [16/04/2008|14:33] C:\Program Files\QuickTime
    [22/07/2007|17:46] C:\Program Files\Rainlendar
    [09/02/2008|17:18] C:\Program Files\Reference Assemblies
    [04/02/2006|22:17] C:\Program Files\SAGEM
    [23/09/2005|17:02] C:\Program Files\Samsung
    [09/06/2005|19:03] C:\Program Files\ScanWizard 5
    [06/04/2005|15:16] C:\Program Files\SereneScreen
    [06/04/2005|13:39] C:\Program Files\Services en ligne
    [13/11/2007|10:24] C:\Program Files\site extra bend
    [02/04/2008|17:28] C:\Program Files\Sony Ericsson
    [24/07/2008|09:24] C:\Program Files\Trend Micro
    [08/04/2005|16:32] C:\Program Files\Ulead Systems
    [23/09/2005|17:02] C:\Program Files\Uninstall Information
    [08/04/2008|22:03] C:\Program Files\Windows Live
    [06/01/2007|19:33] C:\Program Files\Windows Media Components
    [06/01/2007|19:42] C:\Program Files\Windows Media Connect 2
    [06/01/2007|19:42] C:\Program Files\Windows Media Player
    [06/04/2005|13:37] C:\Program Files\Windows NT
    [06/04/2005|13:39] C:\Program Files\WindowsUpdate
    [08/08/2006|18:54] C:\Program Files\WinRAR
    [06/04/2005|14:07] C:\Program Files\X10 Hardware
    [06/04/2005|13:40] C:\Program Files\xerox
    [22/12/2007|13:59] C:\Program Files\Yahoo!
    [11/08/2005|00:43] C:\Program Files\Zone Labs

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [27/11/2005|13:19] C:\Program Files\Fichiers communs\ACD Systems
    [07/03/2006|20:16] C:\Program Files\Fichiers communs\Adobe
    [06/04/2005|14:16] C:\Program Files\Fichiers communs\Ahead
    [19/08/2005|15:22] C:\Program Files\Fichiers communs\AnimeVamp
    [16/04/2008|14:31] C:\Program Files\Fichiers communs\Apple
    [07/03/2006|20:18] C:\Program Files\Fichiers communs\ArcSoft
    [10/04/2005|00:57] C:\Program Files\Fichiers communs\BOONTY Shared
    [06/04/2005|14:59] C:\Program Files\Fichiers communs\DESIGNER
    [09/09/2006|22:30] C:\Program Files\Fichiers communs\ErrorSafe
    [29/08/2006|18:26] C:\Program Files\Fichiers communs\InstallShield
    [06/04/2005|14:25] C:\Program Files\Fichiers communs\Java
    [08/07/2008|21:01] C:\Program Files\Fichiers communs\Microsoft Shared
    [06/04/2005|13:38] C:\Program Files\Fichiers communs\MSSoap
    [06/04/2005|15:22] C:\Program Files\Fichiers communs\ODBC
    [06/04/2005|13:38] C:\Program Files\Fichiers communs\Services
    [06/04/2005|15:22] C:\Program Files\Fichiers communs\SpeechEngines
    [28/03/2006|21:29] C:\Program Files\Fichiers communs\SWF Studio
    [13/06/2007|21:01] C:\Program Files\Fichiers communs\System
    [23/12/2006|16:05] C:\Program Files\Fichiers communs\Totem Shared
    [08/04/2008|22:03] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [26/10/2007|10:04] C:\Program Files\Fichiers communs\Wise Installation Wizard

    --------------------\\ Process

    ( 46 Processus )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default
    C:\DOCUME~1\Claude\APPLIC~1\siteex~1
    C:\Program Files\siteex~1
    C:\Program Files\Adverts
    C:\DOCUME~1\Claude\Cookies\claude@banner.cotedazurpalace[2].txt
    C:\DOCUME~1\Claude\Cookies\claude@cotedazurpalace[1].txt
    C:\DOCUME~1\Claude\Cookies\claude@888[1].txt
    C:\WINDOWS\Tasks\A9511FDE918A973A.job

    --------------------\\ Verification du Registre

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "FileByte"="C:\\DOCUME~1\\Claude\\APPLIC~1\\SITEEX~1\\Part Bike Cdrom.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts MODIFIE

    127.0.0.1 bin.errorprotector.com ## added by CiD
    127.0.0.1 br.errorsafe.com ## added by CiD
    127.0.0.1 br.winantivirus.com ## added by CiD
    127.0.0.1 br.winfixer.com ## added by CiD
    127.0.0.1 cdn.drivecleaner.com ## added by CiD
    127.0.0.1 cdn.errorsafe.com ## added by CiD
    127.0.0.1 cdn.winsoftware.com ## added by CiD
    127.0.0.1 de.errorsafe.com ## added by CiD
    127.0.0.1 de.winantivirus.com ## added by CiD
    127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
    127.0.0.1 download.cdn.errorsafe.com ## added by CiD
    127.0.0.1 download.cdn.winsoftware.com ## added by CiD
    127.0.0.1 download.errorsafe.com ## added by CiD
    127.0.0.1 download.systemdoctor.com ## added by CiD
    127.0.0.1 download.winantispyware.com ## added by CiD
    127.0.0.1 download.windrivecleaner.com ## added by CiD
    127.0.0.1 download.winfixer.com ## added by CiD
    127.0.0.1 drivecleaner.com ## added by CiD
    127.0.0.1 dynamique.drivecleaner.com ## added by CiD
    127.0.0.1 errorprotector.com ## added by CiD
    127.0.0.1 errorsafe.com ## added by CiD
    127.0.0.1 es.winantivirus.com ## added by CiD
    127.0.0.1 fr.winantivirus.com ## added by CiD
    127.0.0.1 fr.winfixer.com ## added by CiD
    127.0.0.1 go.drivecleaner.com ## added by CiD
    127.0.0.1 go.errorsafe.com ## added by CiD
    127.0.0.1 go.winantispyware.com ## added by CiD
    127.0.0.1 go.winantivirus.com ## added by CiD
    127.0.0.1 hk.winantivirus.com ## added by CiD
    127.0.0.1 instlog.errorsafe.com ## added by CiD
    127.0.0.1 instlog.winantivirus.com ## added by CiD
    127.0.0.1 instlog.winfixer.com ## added by CiD
    127.0.0.1 jsp.drivecleaner.com ## added by CiD
    127.0.0.1 kb.errorsafe.com ## added by CiD
    127.0.0.1 kb.winantivirus.com ## added by CiD
    127.0.0.1 nl.errorsafe.com ## added by CiD
    127.0.0.1 se.errorsafe.com ## added by CiD
    127.0.0.1 secure.drivecleaner.com ## added by CiD
    127.0.0.1 secure.errorsafe.com ## added by CiD
    127.0.0.1 secure.winantispam.com ## added by CiD
    127.0.0.1 secure.winantispy.com ## added by CiD
    127.0.0.1 secure.winantivirus.com ## added by CiD
    127.0.0.1 support.winantivirus.com ## added by CiD
    127.0.0.1 trial.updates.winsoftware.com ## added by CiD
    127.0.0.1 ulog.winantivirus.com ## added by CiD
    127.0.0.1 utils.errorsafe.com ## added by CiD
    127.0.0.1 utils.winantivirus.com ## added by CiD
    127.0.0.1 utils.winfixer.com ## added by CiD
    127.0.0.1 winantispyware.com ## added by CiD
    127.0.0.1 winantivirus.com ## added by CiD
    127.0.0.1 winfixer.com ## added by CiD
    127.0.0.1 winfixer2006.com ## added by CiD
    127.0.0.1 winsoftware.com ## added by CiD
    127.0.0.1 www.drivecleaner.com ## added by CiD
    127.0.0.1 www.errorprotector.com ## added by CiD
    127.0.0.1 www.errorsafe.com ## added by CiD
    127.0.0.1 www.systemdoctor.com ## added by CiD
    127.0.0.1 www.utils.winfixer.com ## added by CiD
    127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
    127.0.0.1 www.win-virus-pro.com ## added by CiD
    127.0.0.1 www.winantispam.com ## added by CiD
    127.0.0.1 www.winantispy.com ## added by CiD
    127.0.0.1 www.winantispyware.com ## added by CiD
    127.0.0.1 www.winantivirus.com ## added by CiD
    127.0.0.1 www.winantiviruspro.com ## added by CiD
    127.0.0.1 www.windrivecleaner.com ## added by CiD
    127.0.0.1 www.windrivesafe.com ## added by CiD
    127.0.0.1 www.winfixer.com ## added by CiD
    127.0.0.1 www.winfixer2006.com ## added by CiD
    127.0.0.1 www.winsoftware.com ## added by CiD

    -> 72 [ 70 ## added by CiD ]

    /!\ 1 Not 127.0.0.1 !!

    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-07-24 10:41:58
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 333

    --------------------\\ Recherche d'autres infections


    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\objectstore.v2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\pending.dat
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\volume.xml
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\volume.xml~
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Logs\Dfsr00001.log
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\$db_normal$
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\$db_clean$
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\dfsr.db
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\fsr.chk
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\fsr.log
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\res1.log
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\res2.log
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\real\724e502a-9472-4a39-af9b-fbdfca361522.AddressBook
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\real\b13f06e1-21bb-4f41-b709-476baf648883.MeContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\real\contactcoll.cache
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\real\members.stg
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\242C11F1-86AC-4A0B-9054-2252305CFC53.WindowsLiveContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\3AEA1BFA-7EB7-49CD-A2F9-9C12E1DD5A5E.WindowsLiveContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\5A161DCE-BFD0-46F2-ACAB-4A471267E61F.WindowsLiveContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\5e753c4a-53da-4dae-98b7-d3ea98c778d3.MeContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\841D95F3-F5D8-43FD-A96A-56EDBCCE738D.WindowsLiveContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\contactcoll.cache
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\members.stg
    ==> EGDACCESS <==

    --------------------\\ Cracks & Keygens ..

    => C:\DOCUME~1\Claude\Local Settings\Temp\R‚pertoire temporaire 1 pour [PCGame] Final Fantasy XI_CDkey&Crack(2).zip
    => C:\DOCUME~1\Claude\Local Settings\Temp\R‚pertoire temporaire 2 pour [PCGame] Final Fantasy XI_CDkey&Crack(2).zip
    => C:\DOCUME~1\Claude\Local Settings\Temp\R‚pertoire temporaire 3 pour [PCGame] Final Fantasy XI_CDkey&Crack(2).zip
    => C:\DOCUME~1\Claude\Local Settings\Temp\R‚pertoire temporaire 1 pour [PCGame] Final Fantasy XI_CDkey&Crack(2).zip\Final Fantasy XI Login
    => C:\DOCUME~1\Claude\Local Settings\Temp\R‚pertoire temporaire 1 pour [PCGame] Final Fantasy XI_CDkey&Crack(2).zip\Final Fantasy XI Login\Thumbs.db


    [F:1605][D:313]-> C:\DOCUME~1\Claude\LOCALS~1\Temp
    [F:92][D:0]-> C:\DOCUME~1\Claude\Cookies
    [F:4894][D:10]-> C:\DOCUME~1\Claude\LOCALS~1\TEMPOR~1\content.IE5

    --------------------\\ Fin du rapport a 10:42:58,25


    Merci de ton aide Myrtilles

    Contenus similaires
    24 Juillet 2008 11:13:51

    Salut,

    Relance Lop S&D.

  • Choisis cette fois ci l'Option 2 (Suppression)
    ! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
  • Poste le rapport généré (C:\lopR.txt)

    [#008040]Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
    Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
    Tapes explorer et valide. Cela te fera apparaitre ton bureau


  • Relance ensuite Hijackthis (clique droit -> lancer en tant qu'adminstrateur sous Vista), do a system scan only, coche ces lignes (si toujours présentes) :
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R3 - Default URLSearchHook is missing
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O4 - HKCU\..\Run: [FileByte] C:\DOCUME~1\Claude\APPLIC~1\SITEEX~1\Part Bike Cdrom.exe
    O4 - HKLM\..\Policies\Explorer\Run: [none] C:\Program Files\Video ActiveX Object\pmsngr.exe
    O4 - HKLM\..\Policies\Explorer\Run: [isamini.exe] C:\Program Files\Video ActiveX Object\isamonitor.exe
    O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusea [...] xdm119YYFR
    O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocac [...] .0.8-2.cab
    O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-fr.cab
    O16 - DPF: {D8B94E9A-A34B-4253-BF48-C7CB7F2CFDB0} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab

    Ferme toutes les applications en cours (particulièrement ton navigateur Internet).
    Puis Fix Checked !

    Supprime ensuite les dossiers suivants (si encore présent):
  • C:\DOCUME~1\ALLUSE~1\APPLIC~1\Loud View Meet Debug
  • C:\DOCUME~1\Claude\APPLIC~1\site extra bend
  • C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default

    et le fichier suivant:
  • C:\WINDOWS\tasks\A9511FDE918A973A.job

    Puis crée un nouveau rapport Hijackthis et poste le avec rapport de LOP S&D.

    bisous myrtilles
    24 Juillet 2008 11:34:43

    Et voila le premier rapport:


    --------------------\\ Lop S&D 4.2.2-3 XP/Vista

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : Claude ] [ "C:\Lop SD" ] [ Selection : 2 ]
    [ 24/07/2008 | 11:17:12,59 ] [ PC : PIERSON-B7A53FD ]
    [ MAJ : 22-07-2008 | 17:35 ]


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

    Supprime! - C:\DOCUME~1\Claude\Cookies\claude@banner.cotedazurpalace[2].txt
    Supprime! - C:\DOCUME~1\Claude\Cookies\claude@cotedazurpalace[1].txt
    Supprime! - C:\DOCUME~1\Claude\Cookies\claude@888[1].txt
    Supprime! - C:\WINDOWS\Tasks\A9511FDE918A973A.job
    Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default
    Supprime! - C:\DOCUME~1\Claude\APPLIC~1\siteex~1
    Supprime! - C:\Program Files\siteex~1
    Supprime! - C:\Program Files\Adverts
    RestaurÚ! - Fichier Hosts

    //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    --------------------\\ Listing des dossiers dans APPLIC~1

    [27/11/2005|13:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
    [03/02/2007|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [06/04/2005|14:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [16/04/2008|14:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [16/04/2008|19:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [10/04/2005|00:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    [04/05/2005|19:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [06/04/2005|15:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [18/10/2006|21:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [22/12/2007|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
    [18/09/2007|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
    [18/09/2007|14:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
    [26/10/2007|10:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
    [13/11/2007|10:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Loud View Meet Debug
    [16/06/2006|14:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [14/07/2007|11:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [20/05/2006|08:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pineapple Works
    [06/04/2008|10:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
    [19/03/2006|15:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
    [28/05/2006|16:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [02/04/2008|17:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
    [23/04/2005|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
    [06/08/2005|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [08/04/2008|22:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [08/04/2005|16:35] C:\DOCUME~1\Claude\APPLIC~1\ABBYY
    [27/11/2005|14:38] C:\DOCUME~1\Claude\APPLIC~1\ACD Systems
    [26/06/2008|10:09] C:\DOCUME~1\Claude\APPLIC~1\Adobe
    [16/05/2008|11:16] C:\DOCUME~1\Claude\APPLIC~1\AdobeUM
    [23/12/2005|12:56] C:\DOCUME~1\Claude\APPLIC~1\Ahead
    [16/04/2008|19:18] C:\DOCUME~1\Claude\APPLIC~1\Apple Computer
    [25/04/2006|22:10] C:\DOCUME~1\Claude\APPLIC~1\ArcSoft
    [10/08/2006|21:19] C:\DOCUME~1\Claude\APPLIC~1\Creative
    [23/04/2005|14:40] C:\DOCUME~1\Claude\APPLIC~1\CyberLink
    [06/04/2005|15:22] C:\DOCUME~1\Claude\APPLIC~1\desktop.ini
    [15/12/2006|22:56] C:\DOCUME~1\Claude\APPLIC~1\DMCache
    [18/08/2005|14:56] C:\DOCUME~1\Claude\APPLIC~1\fltk.org
    [22/10/2006|08:57] C:\DOCUME~1\Claude\APPLIC~1\Google
    [22/12/2007|19:18] C:\DOCUME~1\Claude\APPLIC~1\Grisoft
    [20/04/2005|20:54] C:\DOCUME~1\Claude\APPLIC~1\Help
    [06/04/2005|13:55] C:\DOCUME~1\Claude\APPLIC~1\Identities
    [07/03/2006|20:16] C:\DOCUME~1\Claude\APPLIC~1\InterTrust
    [07/03/2006|20:40] C:\DOCUME~1\Claude\APPLIC~1\Leadertech
    [09/04/2005|21:31] C:\DOCUME~1\Claude\APPLIC~1\Macromedia
    [04/05/2005|19:40] C:\DOCUME~1\Claude\APPLIC~1\Media Player Classic
    [10/02/2008|22:00] C:\DOCUME~1\Claude\APPLIC~1\Microsoft
    [06/07/2007|13:53] C:\DOCUME~1\Claude\APPLIC~1\Mozilla
    [29/05/2005|22:00] C:\DOCUME~1\Claude\APPLIC~1\Musicmatch
    [09/07/2006|14:01] C:\DOCUME~1\Claude\APPLIC~1\Skype
    [02/04/2008|17:30] C:\DOCUME~1\Claude\APPLIC~1\Sony
    [15/04/2005|22:57] C:\DOCUME~1\Claude\APPLIC~1\Sun
    [01/10/2005|16:50] C:\DOCUME~1\Claude\APPLIC~1\vlc

    [06/04/2005|15:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [06/04/2005|13:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [06/07/2007|13:26] C:\DOCUME~1\LECOMP~1\APPLIC~1\ACD Systems
    [15/07/2007|18:48] C:\DOCUME~1\LECOMP~1\APPLIC~1\Adobe
    [06/07/2007|12:30] C:\DOCUME~1\LECOMP~1\APPLIC~1\AdobeUM
    [06/04/2005|15:22] C:\DOCUME~1\LECOMP~1\APPLIC~1\desktop.ini
    [06/07/2007|11:50] C:\DOCUME~1\LECOMP~1\APPLIC~1\Google
    [22/12/2007|16:18] C:\DOCUME~1\LECOMP~1\APPLIC~1\Grisoft
    [16/10/2005|11:23] C:\DOCUME~1\LECOMP~1\APPLIC~1\Identities
    [06/07/2007|12:30] C:\DOCUME~1\LECOMP~1\APPLIC~1\Leadertech
    [27/10/2007|14:48] C:\DOCUME~1\LECOMP~1\APPLIC~1\LimeWire
    [16/10/2005|11:25] C:\DOCUME~1\LECOMP~1\APPLIC~1\Macromedia
    [22/12/2007|18:22] C:\DOCUME~1\LECOMP~1\APPLIC~1\Microsoft
    [06/07/2007|12:00] C:\DOCUME~1\LECOMP~1\APPLIC~1\Mozilla
    [22/12/2007|15:32] C:\DOCUME~1\LECOMP~1\APPLIC~1\site extra bend

    [08/01/2006|12:13] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [06/04/2005|14:09] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander

    [06/04/2005|13:40] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [17/07/2008 14:33][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [23/07/2008 21:56][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [08/04/2005|16:34] C:\Program Files\ABBYY
    [27/11/2005|13:19] C:\Program Files\ACD Systems
    [07/03/2006|20:16] C:\Program Files\Adobe
    [06/04/2005|14:18] C:\Program Files\Ahead
    [18/06/2008|09:12] C:\Program Files\ALDI
    [02/07/2006|23:26] C:\Program Files\Alwil Software
    [28/05/2006|17:24] C:\Program Files\Anti-Leech
    [16/04/2008|14:19] C:\Program Files\Apple Software Update
    [07/03/2006|20:19] C:\Program Files\ArcSoft
    [06/01/2008|14:12] C:\Program Files\Atari
    [06/04/2005|14:35] C:\Program Files\ATI Technologies
    [21/07/2006|10:47] C:\Program Files\AviSynth 2.5
    [16/02/2008|22:35] C:\Program Files\BitComet
    [06/04/2005|16:28] C:\Program Files\BulletProofSoft.com
    [08/08/2006|17:18] C:\Program Files\CA
    [06/04/2005|14:07] C:\Program Files\Common Files
    [06/04/2005|13:37] C:\Program Files\ComPlus Applications
    [11/08/2006|00:38] C:\Program Files\Creative
    [06/04/2005|14:07] C:\Program Files\CyberLink
    [03/12/2006|12:05] C:\Program Files\DeskMates
    [06/04/2005|14:22] C:\Program Files\DivX
    [15/05/2005|12:54] C:\Program Files\eMPIA
    [10/02/2008|13:44] C:\Program Files\eMule
    [15/05/2005|12:54] C:\Program Files\EMUSB2.0
    [22/12/2007|15:31] C:\Program Files\ESET
    [16/04/2008|14:31] C:\Program Files\Fichiers communs
    [28/03/2006|21:28] C:\Program Files\fsupport
    [24/08/2005|20:03] C:\Program Files\FunWebProducts
    [04/02/2007|10:43] C:\Program Files\Google
    [22/12/2007|16:17] C:\Program Files\Grisoft
    [25/06/2008|16:32] C:\Program Files\Hachette Multimedia
    [06/04/2005|14:08] C:\Program Files\Home Cinema
    [18/09/2007|14:26] C:\Program Files\HP
    [11/07/2008|14:48] C:\Program Files\Icone
    [25/06/2008|16:32] C:\Program Files\InstallShield Installation Information
    [06/04/2005|14:47] C:\Program Files\Intel
    [12/06/2008|21:03] C:\Program Files\Internet Explorer
    [06/12/2005|19:52] C:\Program Files\Java
    [26/10/2007|10:04] C:\Program Files\Lavasoft
    [11/07/2008|14:48] C:\Program Files\LETMIN
    [06/04/2005|14:42] C:\Program Files\Medion
    [10/04/2005|00:56] C:\Program Files\Mes Jeux Install‚s
    [16/04/2005|00:12] C:\Program Files\Messenger
    [08/04/2008|22:02] C:\Program Files\Messenger Plus! Live
    [16/06/2006|14:34] C:\Program Files\MessengerPlus! 3
    [06/04/2005|13:40] C:\Program Files\microsoft frontpage
    [06/04/2005|14:59] C:\Program Files\Microsoft Office
    [24/02/2008|18:10] C:\Program Files\Microsoft Picture It! 7
    [05/08/2005|00:38] C:\Program Files\Montorgueil
    [22/07/2007|17:10] C:\Program Files\Movie Maker
    [24/07/2008|09:15] C:\Program Files\Mozilla Firefox
    [09/02/2008|17:22] C:\Program Files\MSBuild
    [06/04/2005|13:36] C:\Program Files\MSN
    [06/04/2005|13:37] C:\Program Files\MSN Gaming Zone
    [08/04/2008|22:04] C:\Program Files\MSN Messenger
    [17/11/2006|22:01] C:\Program Files\MSXML 4.0
    [09/02/2008|17:24] C:\Program Files\MSXML 6.0
    [06/04/2005|14:12] C:\Program Files\Musicmatch
    [22/12/2007|13:47] C:\Program Files\Net Pro Anti-Popup
    [06/04/2005|13:38] C:\Program Files\NetMeeting
    [11/08/2006|00:36] C:\Program Files\Notify
    [06/04/2005|13:37] C:\Program Files\Online Services
    [22/12/2007|14:52] C:\Program Files\outlook
    [22/07/2007|17:10] C:\Program Files\Outlook Express
    [25/12/2005|18:00] C:\Program Files\Project64 v1.5
    [29/12/2006|22:13] C:\Program Files\pspvideo9
    [16/04/2008|14:33] C:\Program Files\QuickTime
    [22/07/2007|17:46] C:\Program Files\Rainlendar
    [09/02/2008|17:18] C:\Program Files\Reference Assemblies
    [04/02/2006|22:17] C:\Program Files\SAGEM
    [23/09/2005|17:02] C:\Program Files\Samsung
    [09/06/2005|19:03] C:\Program Files\ScanWizard 5
    [06/04/2005|15:16] C:\Program Files\SereneScreen
    [06/04/2005|13:39] C:\Program Files\Services en ligne
    [02/04/2008|17:28] C:\Program Files\Sony Ericsson
    [24/07/2008|09:24] C:\Program Files\Trend Micro
    [08/04/2005|16:32] C:\Program Files\Ulead Systems
    [23/09/2005|17:02] C:\Program Files\Uninstall Information
    [08/04/2008|22:03] C:\Program Files\Windows Live
    [06/01/2007|19:33] C:\Program Files\Windows Media Components
    [06/01/2007|19:42] C:\Program Files\Windows Media Connect 2
    [06/01/2007|19:42] C:\Program Files\Windows Media Player
    [06/04/2005|13:37] C:\Program Files\Windows NT
    [06/04/2005|13:39] C:\Program Files\WindowsUpdate
    [08/08/2006|18:54] C:\Program Files\WinRAR
    [06/04/2005|14:07] C:\Program Files\X10 Hardware
    [06/04/2005|13:40] C:\Program Files\xerox
    [22/12/2007|13:59] C:\Program Files\Yahoo!
    [11/08/2005|00:43] C:\Program Files\Zone Labs

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [27/11/2005|13:19] C:\Program Files\Fichiers communs\ACD Systems
    [07/03/2006|20:16] C:\Program Files\Fichiers communs\Adobe
    [06/04/2005|14:16] C:\Program Files\Fichiers communs\Ahead
    [19/08/2005|15:22] C:\Program Files\Fichiers communs\AnimeVamp
    [16/04/2008|14:31] C:\Program Files\Fichiers communs\Apple
    [07/03/2006|20:18] C:\Program Files\Fichiers communs\ArcSoft
    [10/04/2005|00:57] C:\Program Files\Fichiers communs\BOONTY Shared
    [06/04/2005|14:59] C:\Program Files\Fichiers communs\DESIGNER
    [09/09/2006|22:30] C:\Program Files\Fichiers communs\ErrorSafe
    [29/08/2006|18:26] C:\Program Files\Fichiers communs\InstallShield
    [06/04/2005|14:25] C:\Program Files\Fichiers communs\Java
    [08/07/2008|21:01] C:\Program Files\Fichiers communs\Microsoft Shared
    [06/04/2005|13:38] C:\Program Files\Fichiers communs\MSSoap
    [06/04/2005|15:22] C:\Program Files\Fichiers communs\ODBC
    [06/04/2005|13:38] C:\Program Files\Fichiers communs\Services
    [06/04/2005|15:22] C:\Program Files\Fichiers communs\SpeechEngines
    [28/03/2006|21:29] C:\Program Files\Fichiers communs\SWF Studio
    [13/06/2007|21:01] C:\Program Files\Fichiers communs\System
    [23/12/2006|16:05] C:\Program Files\Fichiers communs\Totem Shared
    [08/04/2008|22:03] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [26/10/2007|10:04] C:\Program Files\Fichiers communs\Wise Installation Wizard

    --------------------\\ Process

    ( 45 Processus )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-07-24 11:18:08
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 333

    --------------------\\ Recherche d'autres infections


    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\objectstore.v2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.dt2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.id2
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\pending.dat
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\volume.xml
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\volume.xml~
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Logs\Dfsr00001.log
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\$db_normal$
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\$db_clean$
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\dfsr.db
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\fsr.chk
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\fsr.log
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\res1.log
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Messenger\navarro_laurie@hotmail.fr\SharingMetadata\Working\database_3814_B473_14B4_35AA\res2.log
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\real\724e502a-9472-4a39-af9b-fbdfca361522.AddressBook
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\real\b13f06e1-21bb-4f41-b709-476baf648883.MeContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\real\contactcoll.cache
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\real\members.stg
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\242C11F1-86AC-4A0B-9054-2252305CFC53.WindowsLiveContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\3AEA1BFA-7EB7-49CD-A2F9-9C12E1DD5A5E.WindowsLiveContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\5A161DCE-BFD0-46F2-ACAB-4A471267E61F.WindowsLiveContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\5e753c4a-53da-4dae-98b7-d3ea98c778d3.MeContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\841D95F3-F5D8-43FD-A96A-56EDBCCE738D.WindowsLiveContact
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\contactcoll.cache
    C:\DOCUME~1\Claude\LOCALS~1\APPLIC~1\Microsoft\Windows Live Contacts\navarro_laurie@hotmail.fr\shadow\members.stg
    ==> EGDACCESS <==

    --------------------\\ Cracks & Keygens ..

    => C:\DOCUME~1\Claude\Local Settings\Temp\R‚pertoire temporaire 1 pour [PCGame] Final Fantasy XI_CDkey&Crack(2).zip
    => C:\DOCUME~1\Claude\Local Settings\Temp\R‚pertoire temporaire 2 pour [PCGame] Final Fantasy XI_CDkey&Crack(2).zip
    => C:\DOCUME~1\Claude\Local Settings\Temp\R‚pertoire temporaire 3 pour [PCGame] Final Fantasy XI_CDkey&Crack(2).zip
    => C:\DOCUME~1\Claude\Local Settings\Temp\R‚pertoire temporaire 1 pour [PCGame] Final Fantasy XI_CDkey&Crack(2).zip\Final Fantasy XI Login
    => C:\DOCUME~1\Claude\Local Settings\Temp\R‚pertoire temporaire 1 pour [PCGame] Final Fantasy XI_CDkey&Crack(2).zip\Final Fantasy XI Login\Thumbs.db


    [F:1605][D:313]-> C:\DOCUME~1\Claude\LOCALS~1\Temp
    [F:92][D:0]-> C:\DOCUME~1\Claude\Cookies
    [F:5006][D:10]-> C:\DOCUME~1\Claude\LOCALS~1\TEMPOR~1\content.IE5

    --------------------\\ Fin du rapport a 11:18:51,87




    Et le second:


    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 11:33:50, on 24/07/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16674)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    C:\Program Files\QuickTime\QTTask.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Windows Media Player\WMPNSCFG.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\WINDOWS\system32\drivers\CDAC11BA.EXE
    C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\UAService7.exe
    C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\WINDOWS\explorer.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O2 - BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - F:\instal\MegaIEMn.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - Global Startup: Net Pro Anti-Popup.lnk = C:\Program Files\Net Pro Anti-Popup\NPAP.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
    O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by110fd.bay110.hotmail.msn.com/resources/MsnPUpl...
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
    O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
    O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

    --
    End of file - 8727 bytes
    24 Juillet 2008 11:46:15

    Salut,
    comment va l'ordi?

    On voit des restes d'autres malwares dans les rapports. Pour cette raison j'aimerai te demander de faire un scan avec MalwareByte's Anti-Malware:

    Télécharge MalwareByte's Anti-Malware sur ton Bureau.

  • Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.

    Une fois l'installation et la mise à jour effectuées :
    Redémarre en mode sans échec
    /!\ Ne jamais démarrer en mode sans échec via MSCONFIG /!\

  • Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
  • Afin de lancer la recherche, clic sur"Rechercher".
  • Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
    -- si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
    -- si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau afin de le poster dans ta prochaine réponse.

    REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]

    [#FF0000]Aide
    : Comment utiliser MBAM.


    bisous myrtille
    24 Juillet 2008 14:01:36

    Encore merci pour ton aide Myrtilles!

    Voila le nouveau rapport:

    Malwarebytes' Anti-Malware 1.23
    Version de la base de données: 985
    Windows 5.1.2600 Service Pack 2

    13:57:12 24/07/2008
    mbam-log-7-24-2008 (13-57-12).txt

    Type de recherche: Examen complet (C:\|D:\|E:\|F:\|)
    Eléments examinés: 119668
    Temps écoulé: 1 hour(s), 50 minute(s), 29 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 15
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 6
    Fichier(s) infecté(s): 3

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\mywebsearch.htmlpanel (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\mywebsearch.htmlpanel.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\{a4730ebe-43a6-443e-9776-36915d323ad3} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\{a1c392a2-b274-46db-89be-1fbd476b9c93} (Adware.EGDAccess) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\FocusInteractive (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    C:\Program Files\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    C:\Program Files\FunWebProducts\ScreenSaver (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    C:\Program Files\FunWebProducts\ScreenSaver\Images (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    C:\Program Files\FunWebProducts\Shared (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    C:\Program Files\Montorgueil (Dialer) -> Quarantined and deleted successfully.
    C:\Program Files\Montorgueil\YAKLEKU (Dialer) -> Quarantined and deleted successfully.

    Fichier(s) infecté(s):
    C:\System Volume Information\_restore{B8D9F61B-F503-4D46-B13F-B9EDCC20225D}\RP1067\A0330912.exe (Rogue.Installer) -> Quarantined and deleted successfully.
    C:\Program Files\Montorgueil\14.03619 (Dialer) -> Quarantined and deleted successfully.
    C:\Program Files\Montorgueil\YAKLEKU\YAKLEKU.ico (Dialer) -> Quarantined and deleted successfully.
    24 Juillet 2008 14:05:20

    J'ai un autre petit souci, quand j'allume mon PC une fenêtre apparait avec:

    NPAP
    Erreur d'exécution '62':
    L'entrée dépasse la fin de fichier
    24 Juillet 2008 14:16:26

    Salut,

    MalwareByte's Anti-Malware a bien fait son boulot. :) 

    As-tu installé volontairement Boonty Games? Veux tu le garder?

    Tu as installé une ancienne version de Java. S'il-te-plaît désinstalle toutes les versions de Java sous Ajouts/Suppression de Programmes, puis télécharge et installe la dernière version de Sun.

    Citation :

    NPAP
    Erreur d'exécution '62':
    L'entrée dépasse la fin de fichier


    Il semblerait que cette erreur provient de Net Pro Anti-Popup, qui m'est complétement inconnu.
    Il faudrait peut-être contacté les développeurs.

    bisous myrtille
    24 Juillet 2008 14:21:06

    non je veux pas de boonty games!!
    Comment l'enlever s'il te plait?
    24 Juillet 2008 14:36:45

    Salut,

    Boonty Games peut être désinstallé par Ajout/Suppression de Programmes.

    Ensuite Redémarre en mode sans échec et relance Hijackthis (clique droit -> lancer en tant qu'adminstrateur sous Vista), do a system scan only, coche ces lignes (si toujours présentes) :

    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe

    Ferme toutes les applications en cours (particulièrement ton navigateur Internet).
    Puis Fix Checked !

    puis, toujours en mode sans echec, supprime le dossier

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    et
    C:\Program Files\Fichiers communs\BOONTY Shared


    redémarre en mode normal et crée un nouveau rapport avec Hijackthis et poste le.

    bisous myrtille
    24 Juillet 2008 14:37:53

    Euh... encore un petit peu de boulet-attitude pour la fin!
    J'arrive pas à télécharger la dernière version de Java! Ca me mets des fichier en format ".jnlp" ou je sais pas quoi...
    24 Juillet 2008 14:49:27

    Salut,

    Tu as téléchargé cette version de Java?

    Tu peux lancé l'installation? Ca bloque à quelle étape?

    bisous myrtille
    24 Juillet 2008 14:55:23

    Non en fait c'est bon tout fonctionne impec'!!!

    Je te remercie du tps que tu m'as consacré!!! Mon PC s'est refait une beauté!!!

    Donc mille mercis a toi!

    Je te reposte le rapport:

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 14:54:35, on 24/07/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16674)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    C:\Program Files\QuickTime\QTTask.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Windows Media Player\WMPNSCFG.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\WINDOWS\system32\drivers\CDAC11BA.EXE
    C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\UAService7.exe
    C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\msiexec.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O2 - BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - F:\instal\MegaIEMn.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
    O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by110fd.bay110.hotmail.msn.com/resources/MsnPUpl...
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
    O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
    O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

    --
    End of file - 8691 bytes

    Bisous Miko
    24 Juillet 2008 15:49:42

    Salut,
    le rapport m'as l'air propre.
    Si tu n'as plus de soucis avec ton ordi je pense que c'est tous bon. :) 

    Je souhaite une bonne aprés-midi.
    Bisous myrtille
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS