Se connecter / S'enregistrer
Votre question

Probleme de pub Cid

Tags :
  • Internet Explorer
  • Sécurité
Dernière réponse : dans Sécurité et virus
Anonyme
27 Mai 2008 10:43:11

Salut tout le monde j ai un petit soucy c et que depuis quelque temps j ai beaucoup de pub Cid qui s ouvre et mon pc rame a fond.
Donc j ai regarder un peu sur le net pour savoir ce qu il se passait et je telecharger hijackthis qui ma sorti cette liste la:


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:31:16, on 27/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\eMule\emule.exe
C:\documents and settings\administrateur\local settings\application data\bgfiuefxtp.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Xfire\xfire.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Base frag grid bows] C:\Documents and Settings\All Users\Application Data\Cast ping base frag\Atom Cdrom.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [FragByte] C:\DOCUME~1\ADMINI~1\APPLIC~1\SITEEX~1\CASHCLOSE.exe
O4 - HKCU\..\Run: [bgfiuefxtp] c:\documents and settings\administrateur\local settings\application data\bgfiuefxtp.exe bgfiuefxtp
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Co...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://fichiers.touslesdrivers.com/fichiers/hardwaredet...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 8343 bytes

Alors sa serait simpa si quelqu un pouvait me donner un coup de main sa m aiderais beaucoup vu que je m' y connait pas trop sur pc

Merci a tous

Autres pages sur : probleme pub cid

a b 8 Sécurité
27 Mai 2008 12:33:27

Bonjour,

Télécharge Lop S&D.zip.
Dézippe-le sur ton Bureau uniquement.
Ouvre le dossier Lop S&D puis double-clique sur Scan.bat. Tape sur "R" puis valide en appuyant sur "Entrée".
Un rapport sera généré, poste son contenu ici.
Anonyme
27 Mai 2008 14:49:51

Merci de m avoir répondu mais quand je cliqu sur ton lien pour telecharger je tombe sur une page d erreur :sweat: 
Contenus similaires
Anonyme
27 Mai 2008 14:55:00

Ben c et bon je vien de le trouver alors sa donne sa :


# Rapport Lopxp fait le 27/05/2008 à 14:53:06
# Exécuté dans : C:\Program Files\Lopxp
# Version 3.10 - Maj du 11/04/2008

Killing 'iexplore.exe'
"C:\Program Files\Internet Explorer\IEXPLORE.EXE" (1272)
"C:\Program Files\Internet Explorer\IEXPLORE.EXE" (2908)
"C:\Program Files\Internet Explorer\iexplore.exe" (3948)

========== Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

2008-05-08 à 15:59:33 - 7Wonders
2008-05-15 à 08:21:35 - Adobe
2008-05-17 à 17:02:43 - AdobeUM
2008-05-06 à 18:07:05 - Ahead
2008-05-24 à 09:16:34 - Anuman Interactive
2008-05-26 à 20:19:35 - Bloom RU
2008-05-03 à 23:12:46 - DAEMON Tools
2008-05-25 à 08:11:27 - dvdcss
2008-05-08 à 10:33:55 - EleFun Games
2008-05-04 à 11:02:25 - FloodLightGames
2008-05-08 à 16:47:38 - funkitron
2008-05-08 à 13:04:59 - Gamelab
2008-05-04 à 09:37:32 - Google
2008-05-26 à 19:04:30 - Identities
2008-05-04 à 11:03:22 - Macromedia
2008-05-05 à 22:05:52 - Meridian93
2008-05-26 à 19:14:07 - Microsoft
2008-05-04 à 18:07:25 - Oberon Games
2008-05-04 à 09:16:38 - PC Tools
2008-05-26 à 19:46:48 - PlayFirst
2008-05-10 à 06:22:28 - SecuROM
2008-05-25 à 11:35:20 - SiteExitWeb
2008-05-27 à 12:30:58 - Skype
2008-05-27 à 06:00:53 - skypePM
2008-05-04 à 20:40:29 - vlc
2008-05-04 à 09:14:07 - WinRAR
2008-05-19 à 22:13:03 - Xfire
2008-05-26 à 19:04:30 - Zylom

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

2008-05-15 à 08:21:51 - Adobe
2008-05-15 à 16:38:26 - ApplicationHistory
2008-05-15 à 16:20:05 - FamilyRestaurant
2008-05-04 à 09:20:28 - Google
2008-05-17 à 17:02:32 - Identities
2008-05-15 à 17:05:24 - JollyBear
2008-05-26 à 17:29:59 - Microsoft
2008-05-15 à 14:48:58 - Oberon Games

+- C:\Documents and Settings\All Users\Application Data

2008-05-13 à 14:12:54 - Adobe
2008-05-06 à 18:01:16 - Ahead
2008-05-25 à 11:34:28 - Cast ping base frag
2008-05-04 à 11:02:25 - FloodLightGames
2008-05-15 à 16:57:18 - Fugazo
2008-05-05 à 15:58:30 - Go Go Gourmet
2008-05-04 à 09:16:38 - Google
2008-05-15 à 17:05:24 - JollyBear
2008-05-25 à 19:13:50 - ma-config.com
2008-05-25 à 11:34:43 - Messenger Plus!
2008-05-26 à 19:09:59 - Microsoft
2008-05-21 à 16:46:06 - nView_Profiles
2008-05-04 à 18:07:25 - Oberon Games
2008-05-26 à 19:46:48 - PlayFirst
2008-05-14 à 15:10:38 - Sandlot Games
2008-05-10 à 06:24:53 - SimCity Societies
2008-05-25 à 07:58:12 - Skype
2008-05-27 à 10:55:31 - TEMP
2008-05-04 à 15:10:41 - Trymedia
2008-05-19 à 15:24:41 - VirtualFarm
2008-05-25 à 11:25:26 - WLInstaller
2008-05-26 à 19:04:25 - Zylom

========== Listing du dossier Program Files

+- C:\Program Files

2008-05-08 à 17:06:16 - 5 Spots
2008-05-13 à 14:11:45 - Adobe
2008-05-15 à 16:36:31 - AGEIA Technologies
2008-05-06 à 18:02:49 - Ahead
2008-05-03 à 23:19:07 - Alwil Software
2008-05-26 à 09:53:34 - Anuman interactive
2008-05-25 à 19:13:14 - BitDownload
2008-05-15 à 16:44:48 - BitTorrent Fastest Tool
2008-05-26 à 20:46:45 - Bullfrog
2008-05-25 à 11:33:32 - Circle Developement
2008-05-25 à 20:34:30 - Codemasters
2008-05-25 à 19:14:33 - Common Files
2008-05-03 à 22:26:56 - ComPlus Applications
2008-05-03 à 23:14:36 - DAEMON Tools Lite
2008-05-19 à 17:58:50 - EA GAMES
2008-05-27 à 08:12:06 - eMule
2008-05-25 à 20:37:08 - Fichiers communs
2008-05-08 à 15:58:33 - GameHouse
2008-05-26 à 19:46:30 - GamesBar
2008-05-19 à 17:59:08 - GameSpy Arcade
2008-05-13 à 14:04:28 - GMX Media
2008-05-04 à 09:16:38 - Google
2008-05-19 à 18:45:58 - InstallShield Installation Information
2008-05-03 à 23:03:14 - Intel
2008-05-04 à 07:34:51 - Internet Explorer
2008-05-27 à 12:53:09 - Lopxp
2008-05-25 à 19:13:50 - ma-config.com
2008-05-04 à 01:05:14 - Messenger
2008-05-25 à 11:33:32 - Messenger Plus! Live
2008-05-03 à 22:30:20 - microsoft frontpage
2008-05-25 à 11:26:33 - Microsoft SQL Server Compact Edition
2008-05-03 à 22:28:07 - Movie Maker
2008-05-03 à 22:25:58 - MSN
2008-05-03 à 22:26:20 - MSN Gaming Zone
2008-05-03 à 22:28:20 - NetMeeting
2008-05-15 à 18:02:26 - Oberon Media
2008-05-03 à 22:26:53 - Online Services
2008-05-04 à 21:31:58 - orange
2008-05-04 à 01:04:27 - Outlook Express
2008-05-15 à 18:01:53 - PopCap Games
2008-05-03 à 23:01:38 - Realtek
2008-05-04 à 18:04:03 - ReflexiveArcade
2008-05-26 à 08:43:38 - Registry Mechanic
2008-05-03 à 22:28:58 - Services en ligne
2008-05-25 à 11:33:46 - SiteExitWeb
2008-05-25 à 07:58:13 - Skype
2008-05-26 à 17:26:22 - Snowy Lunch Rush
2008-05-09 à 16:01:19 - Spyware Doctor
2008-05-27 à 08:31:07 - Trend Micro
2008-05-14 à 13:59:19 - TryMedia
2008-05-04 à 18:39:27 - Turbo Subs
2008-05-15 à 16:14:17 - Ubisoft
2008-05-03 à 22:38:56 - Uninstall Information
2008-05-04 à 19:58:40 - VideoLAN
2008-05-08 à 17:05:12 - Wanadoo Jeux
2008-05-24 à 09:26:35 - Wedding Dash
2008-05-26 à 17:25:41 - Windows Live
2008-05-04 à 08:18:52 - Windows Media Player
2008-05-03 à 22:26:13 - Windows NT
2008-05-03 à 22:26:43 - Windows Plus
2008-05-03 à 22:28:59 - WindowsUpdate
2008-05-04 à 09:14:01 - WinRAR
2008-05-03 à 22:30:20 - xerox
2008-05-23 à 00:33:52 - Xfire
2008-05-26 à 19:13:51 - Zylom Games

========== Tâches planifiées

88F84C1482FFFFCC.job: c:\docume~1\admini~1\applic~1\siteex~1\body dog bind.exe

========== Clés registre

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Base frag grid bows"="C:\Documents and Settings\All Users\Application Data\Cast ping base frag\Atom Cdrom.exe"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FragByte"="C:\DOCUME~1\ADMINI~1\APPLIC~1\SITEEX~1\CASHCLOSE.exe"


========== Bloqueur popups Internet Explorer


========== Suggestion ( /!\ Nécessite une interprétation.) ==========

C:\Documents and Settings\Administrateur\Application Data\SiteExitWeb
C:\Documents and Settings\All Users\Application Data\Cast ping base frag
C:\Program Files\Circle Developement
C:\Program Files\SiteExitWeb
C:\WINDOWS\tasks\88F84C1482FFFFCC.job
C:\Program Files\BitDownload

+- Registre:

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Base frag grid bows"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FragByte"=-




- Fin du rapport -
a b 8 Sécurité
27 Mai 2008 15:50:49

Excuse moi. J'ai mis la mauvaise procédure.


Télécharge Lop S&D.exe ([#ff0000]Eric_71[/#f]) sur ton Bureau.
  • Lance l'installation du programme en exécutant le fichier téléchargé.
  • Double-clique maintenant sur le raccourci de LopS&D.
  • Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
  • Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
  • Poste le rapport généré (C:\lopR.txt*)

    (Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
    * le nom de la partition peut changer
    Anonyme
    27 Mai 2008 18:47:47

    voila ce que sa ma sorti :



    -----------------------[ Lop S&D 4.2.0-9 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : Administrateur ] [ "C:\Lop SD" ] [ Selection : 1 ]
    [ 27/05/2008 | 18:44:40,41 ] [ PC : ANAIS-F73CDF656 ]
    [ MAJ : 16-05-2008 | 23:35 ]

    -------------[ Listing des dossiers dans Application Data ]------------

    [08/05/2008|17:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\7Wonders
    [15/05/2008|10:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
    [17/05/2008|19:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
    [06/05/2008|20:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
    [24/05/2008|11:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\Anuman Interactive
    [26/05/2008|22:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Bloom RU
    [04/05/2008|01:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\DAEMON Tools
    [04/05/2008|02:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
    [25/05/2008|10:11] C:\DOCUME~1\ADMINI~1\APPLIC~1\dvdcss
    [08/05/2008|12:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\EleFun Games
    [04/05/2008|13:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\FloodLightGames
    [08/05/2008|18:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\funkitron
    [08/05/2008|15:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Gamelab
    [04/05/2008|11:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
    [26/05/2008|21:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
    [04/05/2008|13:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
    [06/05/2008|00:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Meridian93
    [26/05/2008|21:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
    [04/05/2008|20:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Oberon Games
    [04/05/2008|11:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Tools
    [26/05/2008|21:46] C:\DOCUME~1\ADMINI~1\APPLIC~1\PlayFirst
    [10/05/2008|08:22] C:\DOCUME~1\ADMINI~1\APPLIC~1\SecuROM
    [25/05/2008|13:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\SiteExitWeb
    [27/05/2008|18:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\Skype
    [27/05/2008|16:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\skypePM
    [04/05/2008|22:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
    [04/05/2008|11:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\WinRAR
    [20/05/2008|00:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Xfire
    [26/05/2008|21:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Zylom

    [13/05/2008|16:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [06/05/2008|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [25/05/2008|13:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag
    [04/05/2008|02:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [04/05/2008|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
    [15/05/2008|18:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
    [05/05/2008|17:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Go Go Gourmet
    [04/05/2008|11:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [15/05/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
    [25/05/2008|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
    [25/05/2008|13:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [26/05/2008|21:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [21/05/2008|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
    [04/05/2008|20:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
    [26/05/2008|21:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
    [14/05/2008|17:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
    [10/05/2008|08:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SimCity Societies
    [25/05/2008|09:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [27/05/2008|12:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [04/05/2008|17:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
    [19/05/2008|17:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\VirtualFarm
    [25/05/2008|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
    [26/05/2008|21:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

    [04/05/2008|02:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [04/05/2008|00:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [04/05/2008|00:30] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [04/05/2008|01:12] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander
    [20/05/2008|12:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\Xfire

    [04/05/2008|00:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
    [19/05/2008|20:43] C:\DOCUME~1\NETWOR~1\APPLIC~1\Xfire

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [27/05/2008 18:00][--ah-----] C:\WINDOWS\tasks\88F84C1482FFFFCC.job
    [27/05/2008 10:10][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [24/03/2006 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    88F84C1482FFFFCC.job <--> c:\docume~1\admini~1\applic~1\siteex~1\bodydogbind.exe

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [08/05/2008|19:06] C:\Program Files\5 Spots
    [13/05/2008|16:11] C:\Program Files\Adobe
    [15/05/2008|18:36] C:\Program Files\AGEIA Technologies
    [06/05/2008|20:02] C:\Program Files\Ahead
    [04/05/2008|01:19] C:\Program Files\Alwil Software
    [26/05/2008|11:53] C:\Program Files\Anuman interactive
    [25/05/2008|21:13] C:\Program Files\BitDownload
    [15/05/2008|18:44] C:\Program Files\BitTorrent Fastest Tool
    [26/05/2008|22:46] C:\Program Files\Bullfrog
    [25/05/2008|13:33] C:\Program Files\Circle Developement
    [25/05/2008|22:34] C:\Program Files\Codemasters
    [25/05/2008|21:14] C:\Program Files\Common Files
    [04/05/2008|00:26] C:\Program Files\ComPlus Applications
    [04/05/2008|01:14] C:\Program Files\DAEMON Tools Lite
    [19/05/2008|19:58] C:\Program Files\EA GAMES
    [27/05/2008|10:12] C:\Program Files\eMule
    [25/05/2008|22:37] C:\Program Files\Fichiers communs
    [08/05/2008|17:58] C:\Program Files\GameHouse
    [26/05/2008|21:46] C:\Program Files\GamesBar
    [19/05/2008|19:59] C:\Program Files\GameSpy Arcade
    [13/05/2008|16:04] C:\Program Files\GMX Media
    [04/05/2008|11:16] C:\Program Files\Google
    [19/05/2008|20:45] C:\Program Files\InstallShield Installation Information
    [04/05/2008|01:03] C:\Program Files\Intel
    [04/05/2008|09:34] C:\Program Files\Internet Explorer
    [27/05/2008|14:53] C:\Program Files\Lopxp
    [25/05/2008|21:13] C:\Program Files\ma-config.com
    [04/05/2008|03:05] C:\Program Files\Messenger
    [25/05/2008|13:33] C:\Program Files\Messenger Plus! Live
    [04/05/2008|00:30] C:\Program Files\microsoft frontpage
    [25/05/2008|13:26] C:\Program Files\Microsoft SQL Server Compact Edition
    [04/05/2008|00:28] C:\Program Files\Movie Maker
    [04/05/2008|00:25] C:\Program Files\MSN
    [04/05/2008|00:26] C:\Program Files\MSN Gaming Zone
    [04/05/2008|00:28] C:\Program Files\NetMeeting
    [15/05/2008|20:02] C:\Program Files\Oberon Media
    [04/05/2008|00:26] C:\Program Files\Online Services
    [04/05/2008|23:31] C:\Program Files\orange
    [04/05/2008|03:04] C:\Program Files\Outlook Express
    [15/05/2008|20:01] C:\Program Files\PopCap Games
    [04/05/2008|01:01] C:\Program Files\Realtek
    [04/05/2008|20:04] C:\Program Files\ReflexiveArcade
    [26/05/2008|10:43] C:\Program Files\Registry Mechanic
    [04/05/2008|00:28] C:\Program Files\Services en ligne
    [25/05/2008|13:33] C:\Program Files\SiteExitWeb
    [25/05/2008|09:58] C:\Program Files\Skype
    [26/05/2008|19:26] C:\Program Files\Snowy Lunch Rush
    [09/05/2008|18:01] C:\Program Files\Spyware Doctor
    [27/05/2008|10:31] C:\Program Files\Trend Micro
    [14/05/2008|15:59] C:\Program Files\TryMedia
    [04/05/2008|20:39] C:\Program Files\Turbo Subs
    [15/05/2008|18:14] C:\Program Files\Ubisoft
    [04/05/2008|00:38] C:\Program Files\Uninstall Information
    [04/05/2008|21:58] C:\Program Files\VideoLAN
    [08/05/2008|19:05] C:\Program Files\Wanadoo Jeux
    [24/05/2008|11:26] C:\Program Files\Wedding Dash
    [26/05/2008|19:25] C:\Program Files\Windows Live
    [04/05/2008|10:18] C:\Program Files\Windows Media Player
    [04/05/2008|00:26] C:\Program Files\Windows NT
    [04/05/2008|00:26] C:\Program Files\Windows Plus
    [04/05/2008|00:28] C:\Program Files\WindowsUpdate
    [04/05/2008|11:14] C:\Program Files\WinRAR
    [04/05/2008|00:30] C:\Program Files\xerox
    [23/05/2008|02:33] C:\Program Files\Xfire
    [26/05/2008|21:13] C:\Program Files\Zylom Games

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [13/05/2008|16:12] C:\Program Files\Fichiers communs\Adobe
    [06/05/2008|20:01] C:\Program Files\Fichiers communs\Ahead
    [25/05/2008|22:37] C:\Program Files\Fichiers communs\DirectX
    [04/05/2008|01:03] C:\Program Files\Fichiers communs\InstallShield
    [10/05/2008|08:03] C:\Program Files\Fichiers communs\Microsoft Shared
    [04/05/2008|00:28] C:\Program Files\Fichiers communs\MSSoap
    [15/05/2008|20:01] C:\Program Files\Fichiers communs\Oberon Media
    [04/05/2008|02:16] C:\Program Files\Fichiers communs\ODBC
    [04/05/2008|00:28] C:\Program Files\Fichiers communs\Services
    [25/05/2008|09:58] C:\Program Files\Fichiers communs\Skype
    [04/05/2008|02:15] C:\Program Files\Fichiers communs\SpeechEngines
    [04/05/2008|03:04] C:\Program Files\Fichiers communs\System
    [04/05/2008|01:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [15/05/2008|18:36] C:\Program Files\Fichiers communs\Wise Installation Wizard

    ---------------------------[ Process ]--------------------------

    ... 55

    iexplore.exe ~ [1780]
    iexplore.exe ~ [1444]
    iexplore.exe ~ [4064]

    ----------------------[ Recherche avec S_Lop ]---------------------

    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bis69.exe
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bis756.exe

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\Atom Cdrom.exe
    C:\DOCUME~1\ADMINI~1\APPLIC~1\siteex~1
    C:\DOCUME~1\ADMINI~1\APPLIC~1\siteex~1\body dog bind.exe
    C:\DOCUME~1\ADMINI~1\APPLIC~1\siteex~1\CASHCLOSE.exe
    C:\DOCUME~1\ADMINI~1\APPLIC~1\siteex~1\Poll does mail global.exe
    C:\DOCUME~1\ADMINI~1\APPLIC~1\siteex~1\qqbsslxd.exe
    C:\Program Files\siteex~1
    C:\Program Files\Bitdownload
    C:\Program Files\BitTorrent Fastest Tool
    C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
    C:\Program Files\BitTorrent Fastest Tool\BitP.exe
    C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
    C:\Program Files\Circle Developement
    C:\Program Files\Circle Developement\Uninstall.exe
    C:\WINDOWS\Tasks\88F84C1482FFFFCC.job

    ----------------------[ Verification du Registre ]----------------------

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "FragByte"="C:\\DOCUME~1\\ADMINI~1\\APPLIC~1\\SITEEX~1\\CASHCLOSE.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Base frag grid bows"="C:\\Documents and Settings\\All Users\\Application Data\\Cast ping base frag\\Atom Cdrom.exe"

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-05-27 18:46:03
    Windows 5.1.2600 Service Pack 2 NTFS
    detected NTDLL code modification:
    ZwClose
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    C:\WINDOWS\system32\nvs2.inf
    C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\bgfiuefxtp_navps.dat
    C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\bgfiuefxtp.exe
    C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\bgfiuefxtp.dat
    C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\bgfiuefxtp_nav.dat
    ! EGDACCESS !

    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg
    => C:\Documents and Settings\Administrateur\Bureau\jeu\PS2 emulateur (Play Station 2 emu) + Crack (1).zip
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.NFO
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.R00
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.R01
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.R02
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.R03
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.RAR
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG\crack
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG\crack.zip
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG\setup.exe
    => C:\Documents and Settings\Administrateur\Recent\Dream Day Wedding - Francais + Crack updated-fixed 11-2007.lnk
    => C:\Documents and Settings\Administrateur\Recent\Dream.Day.Honeymoon.v1.04.Cracked-F4CG.lnk
    => C:\Documents and Settings\Administrateur\Recent\[PC-Jeu] Les Sims 2 fran‡ais,the sims 2(multilanguage) 4cds+instructions, codes, crack.lnk
    => C:\Documents and Settings\Administrateur\Mes documents\Registry.Mechanic.v7.0.0.1010.Multilangages.Incl-Keygen
    => C:\Documents and Settings\Administrateur\Mes documents\Registry.Mechanic.v7.0.0.1010.Multilangages.Incl-Keygen\Keygen
    => C:\Documents and Settings\Administrateur\Mes documents\Registry.Mechanic.v7.0.0.1010.Multilangages.Incl-Keygen\rminstall.exe
    => C:\Documents and Settings\Administrateur\Mes documents\Registry.Mechanic.v7.0.0.1010.Multilangages.Incl-Keygen\www.eMule-island.com.url
    => C:\Documents and Settings\Administrateur\Mes documents\Registry.Mechanic.v7.0.0.1010.Multilangages.Incl-Keygen\Keygen\KeyGen.exe
    => C:\Documents and Settings\Administrateur\Recent\Agatha Christie - Death On The Nile - Francais + keygen.lnk
    => C:\Documents and Settings\Administrateur\Recent\cl‚s_keygen.lnk
    => C:\Documents and Settings\Administrateur\Recent\Keygen.lnk
    => C:\Documents and Settings\Administrateur\Recent\The.Sims.2.MULTILANGUE-Keygen.Shared.By.OCBTeam(CD1).lnk
    => C:\Documents and Settings\Administrateur\Recent\The.Sims.2.MULTILANGUE-Keygen.Shared.By.OCBTeam(CD2).lnk
    => C:\Documents and Settings\All Users\Documents\Mes Images\Hospital Tycoon + Crack Inclus - jeux pc en fran‡ais [Y@nn]
    => C:\Documents and Settings\All Users\Documents\Mes Images\Hospital Tycoon + Crack Inclus - jeux pc en fran‡ais [Y@nn]\Crack Hospital Tycoon fr
    => C:\Documents and Settings\All Users\Documents\Mes Images\Hospital Tycoon + Crack Inclus - jeux pc en fran‡ais [Y@nn]\Hospital Tycoon FR by DjaFyh.mdf
    => C:\Documents and Settings\All Users\Documents\Mes Images\Hospital Tycoon + Crack Inclus - jeux pc en fran‡ais [Y@nn]\Hospital tycoon FR Crack.nfo
    => C:\Documents and Settings\All Users\Documents\Mes Images\Hospital Tycoon + Crack Inclus - jeux pc en fran‡ais [Y@nn]\Crack Hospital Tycoon fr\HospitalTycoon.exe


    [F:628][D:63]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
    [F:374][D:0]-> C:\DOCUME~1\ADMINI~1\Cookies
    [F:2992][D:6]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 18:46:21,75 ]----------------------
    a b 8 Sécurité
    27 Mai 2008 19:10:53

    Re,

    Ouvre le dossier Lop S&D puis double-clique sur Scan.bat. Tape sur "S" puis valide en appuyant sur "Entrée".
    [#ff0000]! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
    Un rapport sera généré, poste son contenu ici.

    NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
    Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
    Tape explorer puis valide.
    Anonyme
    27 Mai 2008 21:15:26

    heu, j ai un petit probleme quand j ouvre Lop S&D je n ai pas l onglet Scan.bat. J ai que des chiffres de 1 à 4 :heink: 
    a b 8 Sécurité
    28 Mai 2008 12:54:20

    Excuse moi, c'est option 2.
    Anonyme
    29 Mai 2008 09:07:21

    Voila :) 



    -----------------------[ Lop S&D 4.2.0-9 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : Administrateur ] [ "C:\Lop SD" ] [ Selection : 2 ]
    [ 29/05/2008 | 9:03:52,40 ] [ PC : ANAIS-F73CDF656 ]
    [ MAJ : 16-05-2008 | 23:35 ]


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

    Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\Atom Cdrom.exe
    Supprimé! - C:\DOCUME~1\ADMINI~1\APPLIC~1\siteex~1\body dog bind.exe
    Supprimé! - C:\DOCUME~1\ADMINI~1\APPLIC~1\siteex~1\CASHCLOSE.exe
    Supprimé! - C:\DOCUME~1\ADMINI~1\APPLIC~1\siteex~1\Poll does mail global.exe
    Supprimé! - C:\DOCUME~1\ADMINI~1\APPLIC~1\siteex~1\qqbsslxd.exe
    Supprimé! - C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
    Supprimé! - C:\Program Files\BitTorrent Fastest Tool\BitP.exe
    Supprimé! - C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
    Supprimé! - C:\Program Files\Circle Developement\Uninstall.exe
    Supprimé! - C:\WINDOWS\Tasks\88F84C1482FFFFCC.job
    Supprimé! - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bis69.exe
    Supprimé! - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bis756.exe
    Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag
    Supprimé! - C:\DOCUME~1\ADMINI~1\APPLIC~1\siteex~1
    Supprimé! - C:\Program Files\siteex~1
    Supprimé! - C:\Program Files\Bitdownload
    Supprimé! - C:\Program Files\BitTorrent Fastest Tool
    Supprimé! - C:\Program Files\Circle Developement

    //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    -------------[ Listing des dossiers dans Application Data ]------------

    [08/05/2008|17:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\7Wonders
    [15/05/2008|10:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
    [17/05/2008|19:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
    [06/05/2008|20:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
    [24/05/2008|11:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\Anuman Interactive
    [26/05/2008|22:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Bloom RU
    [04/05/2008|01:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\DAEMON Tools
    [04/05/2008|02:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
    [25/05/2008|10:11] C:\DOCUME~1\ADMINI~1\APPLIC~1\dvdcss
    [08/05/2008|12:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\EleFun Games
    [04/05/2008|13:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\FloodLightGames
    [08/05/2008|18:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\funkitron
    [08/05/2008|15:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Gamelab
    [04/05/2008|11:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
    [26/05/2008|21:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
    [04/05/2008|13:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
    [06/05/2008|00:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Meridian93
    [26/05/2008|21:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
    [04/05/2008|20:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Oberon Games
    [04/05/2008|11:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Tools
    [26/05/2008|21:46] C:\DOCUME~1\ADMINI~1\APPLIC~1\PlayFirst
    [10/05/2008|08:22] C:\DOCUME~1\ADMINI~1\APPLIC~1\SecuROM
    [29/05/2008|09:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Skype
    [29/05/2008|08:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\skypePM
    [04/05/2008|22:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
    [04/05/2008|11:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\WinRAR
    [20/05/2008|00:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Xfire
    [26/05/2008|21:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Zylom

    [13/05/2008|16:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [06/05/2008|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [04/05/2008|02:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [04/05/2008|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
    [15/05/2008|18:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
    [05/05/2008|17:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Go Go Gourmet
    [04/05/2008|11:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [15/05/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
    [25/05/2008|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
    [25/05/2008|13:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [26/05/2008|21:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [21/05/2008|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
    [04/05/2008|20:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
    [26/05/2008|21:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
    [14/05/2008|17:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
    [10/05/2008|08:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SimCity Societies
    [25/05/2008|09:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [29/05/2008|05:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [04/05/2008|17:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
    [19/05/2008|17:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\VirtualFarm
    [25/05/2008|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
    [26/05/2008|21:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

    [04/05/2008|02:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [04/05/2008|00:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [04/05/2008|00:30] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [04/05/2008|01:12] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander
    [20/05/2008|12:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\Xfire

    [04/05/2008|00:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
    [19/05/2008|20:43] C:\DOCUME~1\NETWOR~1\APPLIC~1\Xfire

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [28/05/2008 10:03][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [24/03/2006 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [08/05/2008|19:06] C:\Program Files\5 Spots
    [13/05/2008|16:11] C:\Program Files\Adobe
    [15/05/2008|18:36] C:\Program Files\AGEIA Technologies
    [06/05/2008|20:02] C:\Program Files\Ahead
    [04/05/2008|01:19] C:\Program Files\Alwil Software
    [26/05/2008|11:53] C:\Program Files\Anuman interactive
    [26/05/2008|22:46] C:\Program Files\Bullfrog
    [25/05/2008|22:34] C:\Program Files\Codemasters
    [25/05/2008|21:14] C:\Program Files\Common Files
    [04/05/2008|00:26] C:\Program Files\ComPlus Applications
    [04/05/2008|01:14] C:\Program Files\DAEMON Tools Lite
    [19/05/2008|19:58] C:\Program Files\EA GAMES
    [28/05/2008|12:04] C:\Program Files\eMule
    [25/05/2008|22:37] C:\Program Files\Fichiers communs
    [08/05/2008|17:58] C:\Program Files\GameHouse
    [26/05/2008|21:46] C:\Program Files\GamesBar
    [19/05/2008|19:59] C:\Program Files\GameSpy Arcade
    [13/05/2008|16:04] C:\Program Files\GMX Media
    [04/05/2008|11:16] C:\Program Files\Google
    [19/05/2008|20:45] C:\Program Files\InstallShield Installation Information
    [04/05/2008|01:03] C:\Program Files\Intel
    [04/05/2008|09:34] C:\Program Files\Internet Explorer
    [27/05/2008|14:53] C:\Program Files\Lopxp
    [25/05/2008|21:13] C:\Program Files\ma-config.com
    [04/05/2008|03:05] C:\Program Files\Messenger
    [25/05/2008|13:33] C:\Program Files\Messenger Plus! Live
    [04/05/2008|00:30] C:\Program Files\microsoft frontpage
    [25/05/2008|13:26] C:\Program Files\Microsoft SQL Server Compact Edition
    [04/05/2008|00:28] C:\Program Files\Movie Maker
    [04/05/2008|00:25] C:\Program Files\MSN
    [04/05/2008|00:26] C:\Program Files\MSN Gaming Zone
    [04/05/2008|00:28] C:\Program Files\NetMeeting
    [15/05/2008|20:02] C:\Program Files\Oberon Media
    [04/05/2008|00:26] C:\Program Files\Online Services
    [04/05/2008|23:31] C:\Program Files\orange
    [04/05/2008|03:04] C:\Program Files\Outlook Express
    [15/05/2008|20:01] C:\Program Files\PopCap Games
    [04/05/2008|01:01] C:\Program Files\Realtek
    [04/05/2008|20:04] C:\Program Files\ReflexiveArcade
    [26/05/2008|10:43] C:\Program Files\Registry Mechanic
    [04/05/2008|00:28] C:\Program Files\Services en ligne
    [25/05/2008|09:58] C:\Program Files\Skype
    [26/05/2008|19:26] C:\Program Files\Snowy Lunch Rush
    [09/05/2008|18:01] C:\Program Files\Spyware Doctor
    [27/05/2008|10:31] C:\Program Files\Trend Micro
    [14/05/2008|15:59] C:\Program Files\TryMedia
    [04/05/2008|20:39] C:\Program Files\Turbo Subs
    [15/05/2008|18:14] C:\Program Files\Ubisoft
    [04/05/2008|00:38] C:\Program Files\Uninstall Information
    [04/05/2008|21:58] C:\Program Files\VideoLAN
    [08/05/2008|19:05] C:\Program Files\Wanadoo Jeux
    [24/05/2008|11:26] C:\Program Files\Wedding Dash
    [26/05/2008|19:25] C:\Program Files\Windows Live
    [04/05/2008|10:18] C:\Program Files\Windows Media Player
    [04/05/2008|00:26] C:\Program Files\Windows NT
    [04/05/2008|00:26] C:\Program Files\Windows Plus
    [04/05/2008|00:28] C:\Program Files\WindowsUpdate
    [04/05/2008|11:14] C:\Program Files\WinRAR
    [04/05/2008|00:30] C:\Program Files\xerox
    [29/05/2008|06:46] C:\Program Files\Xfire
    [26/05/2008|21:13] C:\Program Files\Zylom Games

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [13/05/2008|16:12] C:\Program Files\Fichiers communs\Adobe
    [06/05/2008|20:01] C:\Program Files\Fichiers communs\Ahead
    [25/05/2008|22:37] C:\Program Files\Fichiers communs\DirectX
    [04/05/2008|01:03] C:\Program Files\Fichiers communs\InstallShield
    [10/05/2008|08:03] C:\Program Files\Fichiers communs\Microsoft Shared
    [04/05/2008|00:28] C:\Program Files\Fichiers communs\MSSoap
    [15/05/2008|20:01] C:\Program Files\Fichiers communs\Oberon Media
    [04/05/2008|02:16] C:\Program Files\Fichiers communs\ODBC
    [04/05/2008|00:28] C:\Program Files\Fichiers communs\Services
    [25/05/2008|09:58] C:\Program Files\Fichiers communs\Skype
    [04/05/2008|02:15] C:\Program Files\Fichiers communs\SpeechEngines
    [04/05/2008|03:04] C:\Program Files\Fichiers communs\System
    [04/05/2008|01:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [15/05/2008|18:36] C:\Program Files\Fichiers communs\Wise Installation Wizard

    ---------------------------[ Process ]--------------------------

    ... 49

    ... OK !

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    Aucun fichier / dossier Lop trouvé !

    ----------------------[ Verification du Registre ]----------------------

    ..... OK !

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-05-29 09:05:17
    Windows 5.1.2600 Service Pack 2 NTFS
    detected NTDLL code modification:
    ZwClose
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    C:\WINDOWS\system32\nvs2.inf
    C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\kecbgnpwtc_navps.dat
    C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\kecbgnpwtc.exe
    C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\kecbgnpwtc.dat
    C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\kecbgnpwtc_nav.dat
    ! EGDACCESS !

    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg
    => C:\Documents and Settings\Administrateur\Bureau\jeu\PS2 emulateur (Play Station 2 emu) + Crack (1).zip
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.NFO
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.R00
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.R01
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.R02
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.R03
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.RAR
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG\crack
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG\crack.zip
    => C:\Documents and Settings\Administrateur\Bureau\jeu\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7 Wonders Of The Ancient World v1.0 Cracked-F4cg\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG\setup.exe
    => C:\Documents and Settings\Administrateur\Recent\Dream Day Wedding - Francais + Crack updated-fixed 11-2007.lnk
    => C:\Documents and Settings\Administrateur\Recent\Dream.Day.Honeymoon.v1.04.Cracked-F4CG.lnk
    => C:\Documents and Settings\Administrateur\Recent\[PC-Jeu] Les Sims 2 fran‡ais,the sims 2(multilanguage) 4cds+instructions, codes, crack.lnk
    => C:\Documents and Settings\Administrateur\Mes documents\Registry.Mechanic.v7.0.0.1010.Multilangages.Incl-Keygen
    => C:\Documents and Settings\Administrateur\Mes documents\Registry.Mechanic.v7.0.0.1010.Multilangages.Incl-Keygen\Keygen
    => C:\Documents and Settings\Administrateur\Mes documents\Registry.Mechanic.v7.0.0.1010.Multilangages.Incl-Keygen\rminstall.exe
    => C:\Documents and Settings\Administrateur\Mes documents\Registry.Mechanic.v7.0.0.1010.Multilangages.Incl-Keygen\www.eMule-island.com.url
    => C:\Documents and Settings\Administrateur\Mes documents\Registry.Mechanic.v7.0.0.1010.Multilangages.Incl-Keygen\Keygen\KeyGen.exe
    => C:\Documents and Settings\Administrateur\Recent\Agatha Christie - Death On The Nile - Francais + keygen.lnk
    => C:\Documents and Settings\Administrateur\Recent\cl‚s_keygen.lnk
    => C:\Documents and Settings\Administrateur\Recent\Keygen.lnk
    => C:\Documents and Settings\Administrateur\Recent\The.Sims.2.MULTILANGUE-Keygen.Shared.By.OCBTeam(CD1).lnk
    => C:\Documents and Settings\Administrateur\Recent\The.Sims.2.MULTILANGUE-Keygen.Shared.By.OCBTeam(CD2).lnk
    => C:\Documents and Settings\All Users\Documents\Mes Images\Hospital Tycoon + Crack Inclus - jeux pc en fran‡ais [Y@nn]
    => C:\Documents and Settings\All Users\Documents\Mes Images\Hospital Tycoon + Crack Inclus - jeux pc en fran‡ais [Y@nn]\Crack Hospital Tycoon fr
    => C:\Documents and Settings\All Users\Documents\Mes Images\Hospital Tycoon + Crack Inclus - jeux pc en fran‡ais [Y@nn]\Hospital Tycoon FR by DjaFyh.mdf
    => C:\Documents and Settings\All Users\Documents\Mes Images\Hospital Tycoon + Crack Inclus - jeux pc en fran‡ais [Y@nn]\Hospital tycoon FR Crack.nfo
    => C:\Documents and Settings\All Users\Documents\Mes Images\Hospital Tycoon + Crack Inclus - jeux pc en fran‡ais [Y@nn]\Crack Hospital Tycoon fr\HospitalTycoon.exe


    [F:637][D:63]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
    [F:397][D:0]-> C:\DOCUME~1\ADMINI~1\Cookies
    [F:5120][D:10]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 9:05:36,73 ]----------------------
    a b 8 Sécurité
    29 Mai 2008 13:26:42

    Vire tous tes cracks.
    Anonyme
    29 Mai 2008 20:03:04

    Ok je vais faire sa, je te remercie beaucoup pour ton aide, j espere que sa va marcher car sa devient vraiment chiant :pt1cable: 
    a b 8 Sécurité
    30 Mai 2008 21:27:39

    Ce n'est pas terminé...

    Télécharge Navilog1.exe (IL-MAFIOSO)
    Enregistre-le sur ton Bureau.
    Lance l'installation en double cliquant sur navilog.exe.
    Une fois l'installation terminée, l'utilitaire s'exécutera automatiquement.
    (Si ce n'est pas le cas, double clique sur le raccourci présent sur le Bureau)

    Laisse-toi guider par l'utilitaire. Choisis l'option 1 puis valide.
    [#ff0000]! N'utilise pas l'option 2, 3 et 4 sans notre accord ![/#f]
    Patiente jusqu'à l'apparition de ce message :
    "*** Analyse Termine le ..... ***"
    Appuie sur une touche comme demandé. Le Bloc-notes va s'ouvrir. Poste-nous son contenu de cette manière :

    -> Edition / Sélectionner tout
    -> Edition / Copier
    -> Clique-Droit / Coller dans ta réponse


    NOTE : Le rapport se trouve également ici : C:\fixnavi.txt
    10 Juin 2008 13:31:28

    va sur google tappe CID et clik sue le premier lien "comment
    bloquer les CID...suis ensuite les instructions
    11 Juin 2008 09:29:22

    bonjour

    j'avais eu le m^me problème...
    c que tu as accepté le sponsor de messenger live !
    il te suffit d'aller dans pano de config, ajout/suppr programme, et de supprimer le sponsor msn,
    simplement

    a bientot
    25 Juin 2008 18:23:56

    salut j'ais le meme problemme voici mon raport, que faut il faire par le suite SVP merci baucoups




    -----------------------[ Lop S&D 4.2.1-8 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : GUILHEM ] [ "C:\Lop SD" ] [ Selection : 1 ]
    [ 25/06/2008 | 18:06:49,37 ] [ PC : FAMILLE-E1F4103 ]
    [ MAJ : 24-06-2008 | 11:00 ]

    -------------[ Listing des dossiers dans Application Data ]------------

    [29/03/2008|16:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
    [27/04/2008|19:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
    [17/02/2008|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [19/01/2008|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [19/01/2008|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [24/06/2008|20:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
    [21/01/2008|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
    [24/06/2008|11:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [21/01/2008|21:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [23/06/2008|17:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford
    [19/01/2008|17:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [22/02/2008|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [19/01/2008|17:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [20/01/2008|22:27] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [20/01/2008|21:51] C:\DOCUME~1\FAMILL~1\APPLIC~1\Adobe
    [01/03/2008|10:19] C:\DOCUME~1\FAMILL~1\APPLIC~1\ArcSoft
    [19/01/2008|17:00] C:\DOCUME~1\FAMILL~1\APPLIC~1\desktop.ini
    [19/01/2008|21:00] C:\DOCUME~1\FAMILL~1\APPLIC~1\Google
    [14/03/2008|17:11] C:\DOCUME~1\FAMILL~1\APPLIC~1\Identities
    [19/01/2008|18:09] C:\DOCUME~1\FAMILL~1\APPLIC~1\InterTrust
    [20/01/2008|21:51] C:\DOCUME~1\FAMILL~1\APPLIC~1\Macromedia
    [03/02/2008|16:04] C:\DOCUME~1\FAMILL~1\APPLIC~1\Media Player Classic
    [15/03/2008|22:59] C:\DOCUME~1\FAMILL~1\APPLIC~1\Microsoft
    [21/01/2008|21:43] C:\DOCUME~1\FAMILL~1\APPLIC~1\Mozilla
    [23/06/2008|17:10] C:\DOCUME~1\FAMILL~1\APPLIC~1\Once jugs long
    [25/06/2008|12:38] C:\DOCUME~1\FAMILL~1\APPLIC~1\OpenOffice.org2
    [21/01/2008|21:40] C:\DOCUME~1\FAMILL~1\APPLIC~1\Sun

    [10/02/2008|20:39] C:\DOCUME~1\GUILHEM\APPLIC~1\Adobe
    [09/05/2008|20:58] C:\DOCUME~1\GUILHEM\APPLIC~1\Ahead
    [01/03/2008|00:22] C:\DOCUME~1\GUILHEM\APPLIC~1\ArcSoft
    [17/02/2008|22:41] C:\DOCUME~1\GUILHEM\APPLIC~1\CyberLink
    [19/01/2008|17:00] C:\DOCUME~1\GUILHEM\APPLIC~1\desktop.ini
    [20/01/2008|12:37] C:\DOCUME~1\GUILHEM\APPLIC~1\Google
    [18/02/2008|13:11] C:\DOCUME~1\GUILHEM\APPLIC~1\Help
    [19/01/2008|18:11] C:\DOCUME~1\GUILHEM\APPLIC~1\Identities
    [15/04/2008|12:15] C:\DOCUME~1\GUILHEM\APPLIC~1\LimeWire
    [20/01/2008|12:37] C:\DOCUME~1\GUILHEM\APPLIC~1\Macromedia
    [20/01/2008|13:04] C:\DOCUME~1\GUILHEM\APPLIC~1\Media Player Classic
    [25/06/2008|17:58] C:\DOCUME~1\GUILHEM\APPLIC~1\Microsoft
    [24/01/2008|16:13] C:\DOCUME~1\GUILHEM\APPLIC~1\Mozilla
    [20/01/2008|12:35] C:\DOCUME~1\GUILHEM\APPLIC~1\MSNInstaller
    [21/06/2008|17:28] C:\DOCUME~1\GUILHEM\APPLIC~1\Once jugs long
    [25/06/2008|12:40] C:\DOCUME~1\GUILHEM\APPLIC~1\OpenOffice.org2
    [20/01/2008|21:15] C:\DOCUME~1\GUILHEM\APPLIC~1\Roxio

    [19/06/2008|16:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [20/01/2008|22:26] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [25/06/2008 18:00][--ah-----] C:\WINDOWS\tasks\B27AE48590A59AB5.job
    [25/06/2008 18:00][--ah-----] C:\WINDOWS\tasks\A2E61D4091859A04.job
    [25/06/2008 16:00][--a------] C:\WINDOWS\tasks\HPpromotions psc 1600 series.job
    [25/06/2008 12:39][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [02/03/2006 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    A2E61D4091859A04.job <--> c:\docume~1\guilhem\applic~1\onceju~1\wiperefooze.exe
    B27AE48590A59AB5.job <--> c:\docume~1\famill~1\applic~1\onceju~1\wiperefooze.exe

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [19/01/2008|18:09] C:\Program Files\Adobe
    [19/01/2008|18:07] C:\Program Files\Ahead
    [19/01/2008|21:09] C:\Program Files\Alwil Software
    [27/04/2008|10:22] C:\Program Files\a-squared Free
    [19/01/2008|17:45] C:\Program Files\AvRack
    [19/01/2008|16:08] C:\Program Files\ComPlus Applications
    [19/01/2008|18:05] C:\Program Files\CyberLink
    [19/01/2008|18:06] C:\Program Files\CyberLink DVD Solution
    [20/01/2008|20:19] C:\Program Files\directx
    [01/03/2008|00:13] C:\Program Files\Fichiers communs
    [05/05/2008|13:31] C:\Program Files\Google
    [01/03/2008|00:13] C:\Program Files\Hercules
    [19/01/2008|22:05] C:\Program Files\Hewlett-Packard
    [19/01/2008|22:05] C:\Program Files\HP
    [01/03/2008|00:13] C:\Program Files\InstallShield Installation Information
    [17/06/2008|21:54] C:\Program Files\Internet Explorer
    [21/01/2008|21:40] C:\Program Files\Java
    [23/06/2008|17:53] C:\Program Files\LimeWire
    [20/01/2008|13:07] C:\Program Files\Media Player Classic
    [19/01/2008|17:53] C:\Program Files\Messenger
    [23/06/2008|18:46] C:\Program Files\Messenger Plus! Live
    [28/02/2008|13:44] C:\Program Files\Micro Application
    [20/01/2008|22:28] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [19/01/2008|16:12] C:\Program Files\microsoft frontpage
    [19/01/2008|22:22] C:\Program Files\Microsoft Office
    [30/03/2008|14:24] C:\Program Files\Microsoft SQL Server Compact Edition
    [19/01/2008|22:35] C:\Program Files\Microsoft Works
    [19/01/2008|22:22] C:\Program Files\Microsoft.NET
    [19/01/2008|16:09] C:\Program Files\Movie Maker
    [20/01/2008|12:34] C:\Program Files\MSN
    [22/02/2008|18:59] C:\Program Files\MSN Apps
    [19/01/2008|16:08] C:\Program Files\MSN Gaming Zone
    [16/04/2008|13:56] C:\Program Files\MSN Reaper
    [19/01/2008|22:40] C:\Program Files\MSWorks
    [20/01/2008|22:26] C:\Program Files\MSXML 4.0
    [19/01/2008|16:09] C:\Program Files\NetMeeting
    [23/06/2008|17:08] C:\Program Files\Once jugs long
    [19/01/2008|16:08] C:\Program Files\Online Services
    [21/01/2008|21:41] C:\Program Files\OpenOffice.org 2.3
    [19/01/2008|17:58] C:\Program Files\Outlook Express
    [19/01/2008|17:45] C:\Program Files\Realtek AC97
    [19/01/2008|17:45] C:\Program Files\Realtek Sound Manager
    [15/04/2008|11:25] C:\Program Files\Right JPG Converter
    [20/01/2008|20:19] C:\Program Files\Roxio
    [19/01/2008|20:40] C:\Program Files\SAGEM
    [20/01/2008|00:10] C:\Program Files\Services en ligne
    [20/01/2008|14:10] C:\Program Files\Theorica Divx ;-) Codecs
    [02/05/2008|11:55] C:\Program Files\Tronics
    [19/01/2008|16:18] C:\Program Files\Uninstall Information
    [01/10/2004|16:00] C:\Program Files\Uninstall_CDS.exe
    [19/01/2008|16:20] C:\Program Files\VIA
    [25/06/2008|12:40] C:\Program Files\Wanadoo
    [02/04/2008|14:37] C:\Program Files\Windows Live
    [18/06/2008|10:47] C:\Program Files\Windows Media Connect 2
    [18/06/2008|21:14] C:\Program Files\Windows Media Player
    [19/01/2008|16:07] C:\Program Files\Windows NT
    [19/01/2008|16:10] C:\Program Files\WindowsUpdate
    [19/01/2008|16:12] C:\Program Files\xerox
    [17/06/2008|19:57] C:\Program Files\Yahoo!

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [20/01/2008|20:19] C:\Program Files\Fichiers communs\Adaptec Shared
    [19/01/2008|22:45] C:\Program Files\Fichiers communs\Adobe
    [19/01/2008|18:07] C:\Program Files\Fichiers communs\Ahead
    [01/03/2008|00:15] C:\Program Files\Fichiers communs\ArcSoft
    [19/01/2008|22:22] C:\Program Files\Fichiers communs\DESIGNER
    [19/01/2008|22:04] C:\Program Files\Fichiers communs\Hewlett-Packard
    [19/01/2008|22:07] C:\Program Files\Fichiers communs\HP
    [19/01/2008|18:04] C:\Program Files\Fichiers communs\InstallShield
    [20/01/2008|13:16] C:\Program Files\Fichiers communs\Java
    [19/01/2008|18:08] C:\Program Files\Fichiers communs\LightScribe
    [20/01/2008|12:47] C:\Program Files\Fichiers communs\Microsoft Shared
    [19/01/2008|16:09] C:\Program Files\Fichiers communs\MSSoap
    [19/01/2008|17:01] C:\Program Files\Fichiers communs\ODBC
    [20/01/2008|20:20] C:\Program Files\Fichiers communs\Roxio Shared
    [19/01/2008|16:09] C:\Program Files\Fichiers communs\Services
    [19/01/2008|17:01] C:\Program Files\Fichiers communs\SpeechEngines
    [19/01/2008|22:22] C:\Program Files\Fichiers communs\System
    [20/01/2008|12:46] C:\Program Files\Fichiers communs\WindowsLiveInstaller

    ---------------------------[ Process ]--------------------------

    ... 49

    iexplore.exe ~ [348]
    iexplore.exe ~ [608]
    iexplore.exe ~ [2312]

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford\browse less.exe
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford\find tray.exe
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1\Dale Beep.exe
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1\deaf mfcd intra date.exe
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1\dpudgegk.exe
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1\qxrqwamo.exe
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1\wipe ref ooze.exe
    C:\DOCUME~1\GUILHEM\APPLIC~1\onceju~1
    C:\DOCUME~1\GUILHEM\APPLIC~1\onceju~1\Dale Beep.exe
    C:\DOCUME~1\GUILHEM\APPLIC~1\onceju~1\deaf mfcd intra date.exe
    C:\DOCUME~1\GUILHEM\APPLIC~1\onceju~1\wipe ref ooze.exe
    C:\DOCUME~1\GUILHEM\APPLIC~1\onceju~1\wirnzgwg.exe
    C:\Program Files\onceju~1
    C:\WINDOWS\Prefetch\WIPE REF OOZE.EXE-069ED0A8.pf
    C:\WINDOWS\Prefetch\WIPE REF OOZE.EXE-1DA06428.pf
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@www.adserver5[1].txt
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@adopt.euroclick[2].txt
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@32vegas[2].txt
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@banner.32vegas[2].txt
    C:\WINDOWS\Tasks\A2E61D4091859A04.job
    C:\WINDOWS\Tasks\B27AE48590A59AB5.job

    ----------------------[ Verification du Registre ]----------------------

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "dashsect"="C:\\DOCUME~1\\GUILHEM\\APPLIC~1\\ONCEJU~1\\Dale Beep.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Itch ford four knob"="C:\\Documents and Settings\\All Users\\Application Data\\third lies itch ford\\browse less.exe"

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-06-25 18:07:59
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------


    Aucune autre infection trouvée !

    [F:135][D:11]-> C:\DOCUME~1\GUILHEM\LOCALS~1\Temp
    [F:217][D:0]-> C:\DOCUME~1\GUILHEM\Cookies
    [F:4993][D:11]-> C:\DOCUME~1\GUILHEM\LOCALS~1\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 18:08:27,51 ]----------------------
    2 Juillet 2008 18:16:46


    -----------------------[ Lop S&D 4.2.1-8 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : GUILHEM ] [ "C:\Lop SD" ] [ Selection : 1 ]
    [ 02/07/2008 | 18:08:11,25 ] [ PC : FAMILLE-E1F4103 ]
    [ MAJ : 24-06-2008 | 11:00 ]

    -------------[ Listing des dossiers dans Application Data ]------------

    [29/03/2008|16:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
    [27/04/2008|19:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
    [17/02/2008|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [19/01/2008|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [19/01/2008|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [02/07/2008|11:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
    [21/01/2008|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
    [24/06/2008|11:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [21/01/2008|21:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [23/06/2008|17:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford
    [19/01/2008|17:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [22/02/2008|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [19/01/2008|17:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [20/01/2008|22:27] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [20/01/2008|21:51] C:\DOCUME~1\FAMILL~1\APPLIC~1\Adobe
    [01/03/2008|10:19] C:\DOCUME~1\FAMILL~1\APPLIC~1\ArcSoft
    [19/01/2008|17:00] C:\DOCUME~1\FAMILL~1\APPLIC~1\desktop.ini
    [19/01/2008|21:00] C:\DOCUME~1\FAMILL~1\APPLIC~1\Google
    [14/03/2008|17:11] C:\DOCUME~1\FAMILL~1\APPLIC~1\Identities
    [19/01/2008|18:09] C:\DOCUME~1\FAMILL~1\APPLIC~1\InterTrust
    [20/01/2008|21:51] C:\DOCUME~1\FAMILL~1\APPLIC~1\Macromedia
    [03/02/2008|16:04] C:\DOCUME~1\FAMILL~1\APPLIC~1\Media Player Classic
    [15/03/2008|22:59] C:\DOCUME~1\FAMILL~1\APPLIC~1\Microsoft
    [21/01/2008|21:43] C:\DOCUME~1\FAMILL~1\APPLIC~1\Mozilla
    [23/06/2008|17:10] C:\DOCUME~1\FAMILL~1\APPLIC~1\Once jugs long
    [02/07/2008|14:41] C:\DOCUME~1\FAMILL~1\APPLIC~1\OpenOffice.org2
    [21/01/2008|21:40] C:\DOCUME~1\FAMILL~1\APPLIC~1\Sun

    [10/02/2008|20:39] C:\DOCUME~1\GUILHEM\APPLIC~1\Adobe
    [09/05/2008|20:58] C:\DOCUME~1\GUILHEM\APPLIC~1\Ahead
    [01/03/2008|00:22] C:\DOCUME~1\GUILHEM\APPLIC~1\ArcSoft
    [17/02/2008|22:41] C:\DOCUME~1\GUILHEM\APPLIC~1\CyberLink
    [19/01/2008|17:00] C:\DOCUME~1\GUILHEM\APPLIC~1\desktop.ini
    [20/01/2008|12:37] C:\DOCUME~1\GUILHEM\APPLIC~1\Google
    [18/02/2008|13:11] C:\DOCUME~1\GUILHEM\APPLIC~1\Help
    [19/01/2008|18:11] C:\DOCUME~1\GUILHEM\APPLIC~1\Identities
    [15/04/2008|12:15] C:\DOCUME~1\GUILHEM\APPLIC~1\LimeWire
    [20/01/2008|12:37] C:\DOCUME~1\GUILHEM\APPLIC~1\Macromedia
    [20/01/2008|13:04] C:\DOCUME~1\GUILHEM\APPLIC~1\Media Player Classic
    [25/06/2008|17:58] C:\DOCUME~1\GUILHEM\APPLIC~1\Microsoft
    [24/01/2008|16:13] C:\DOCUME~1\GUILHEM\APPLIC~1\Mozilla
    [20/01/2008|12:35] C:\DOCUME~1\GUILHEM\APPLIC~1\MSNInstaller
    [21/06/2008|17:28] C:\DOCUME~1\GUILHEM\APPLIC~1\Once jugs long
    [02/07/2008|16:38] C:\DOCUME~1\GUILHEM\APPLIC~1\OpenOffice.org2
    [20/01/2008|21:15] C:\DOCUME~1\GUILHEM\APPLIC~1\Roxio

    [19/06/2008|16:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [20/01/2008|22:26] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [02/07/2008 18:00][--ah-----] C:\WINDOWS\tasks\B27AE48590A59AB5.job
    [02/07/2008 18:00][--ah-----] C:\WINDOWS\tasks\A2E61D4091859A04.job
    [02/07/2008 16:00][--a------] C:\WINDOWS\tasks\HPpromotions psc 1600 series.job
    [02/07/2008 11:28][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [02/03/2006 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    A2E61D4091859A04.job <--> c:\docume~1\guilhem\applic~1\onceju~1\wiperefooze.exe
    B27AE48590A59AB5.job <--> c:\docume~1\famill~1\applic~1\onceju~1\wiperefooze.exe

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [19/01/2008|18:09] C:\Program Files\Adobe
    [19/01/2008|18:07] C:\Program Files\Ahead
    [19/01/2008|21:09] C:\Program Files\Alwil Software
    [27/04/2008|10:22] C:\Program Files\a-squared Free
    [19/01/2008|17:45] C:\Program Files\AvRack
    [19/01/2008|16:08] C:\Program Files\ComPlus Applications
    [19/01/2008|18:05] C:\Program Files\CyberLink
    [19/01/2008|18:06] C:\Program Files\CyberLink DVD Solution
    [20/01/2008|20:19] C:\Program Files\directx
    [01/03/2008|00:13] C:\Program Files\Fichiers communs
    [05/05/2008|13:31] C:\Program Files\Google
    [01/03/2008|00:13] C:\Program Files\Hercules
    [19/01/2008|22:05] C:\Program Files\Hewlett-Packard
    [19/01/2008|22:05] C:\Program Files\HP
    [01/03/2008|00:13] C:\Program Files\InstallShield Installation Information
    [17/06/2008|21:54] C:\Program Files\Internet Explorer
    [21/01/2008|21:40] C:\Program Files\Java
    [23/06/2008|17:53] C:\Program Files\LimeWire
    [20/01/2008|13:07] C:\Program Files\Media Player Classic
    [19/01/2008|17:53] C:\Program Files\Messenger
    [23/06/2008|18:46] C:\Program Files\Messenger Plus! Live
    [28/02/2008|13:44] C:\Program Files\Micro Application
    [20/01/2008|22:28] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [19/01/2008|16:12] C:\Program Files\microsoft frontpage
    [19/01/2008|22:22] C:\Program Files\Microsoft Office
    [30/03/2008|14:24] C:\Program Files\Microsoft SQL Server Compact Edition
    [19/01/2008|22:35] C:\Program Files\Microsoft Works
    [19/01/2008|22:22] C:\Program Files\Microsoft.NET
    [19/01/2008|16:09] C:\Program Files\Movie Maker
    [20/01/2008|12:34] C:\Program Files\MSN
    [22/02/2008|18:59] C:\Program Files\MSN Apps
    [19/01/2008|16:08] C:\Program Files\MSN Gaming Zone
    [16/04/2008|13:56] C:\Program Files\MSN Reaper
    [19/01/2008|22:40] C:\Program Files\MSWorks
    [20/01/2008|22:26] C:\Program Files\MSXML 4.0
    [19/01/2008|16:09] C:\Program Files\NetMeeting
    [23/06/2008|17:08] C:\Program Files\Once jugs long
    [19/01/2008|16:08] C:\Program Files\Online Services
    [21/01/2008|21:41] C:\Program Files\OpenOffice.org 2.3
    [19/01/2008|17:58] C:\Program Files\Outlook Express
    [19/01/2008|17:45] C:\Program Files\Realtek AC97
    [19/01/2008|17:45] C:\Program Files\Realtek Sound Manager
    [15/04/2008|11:25] C:\Program Files\Right JPG Converter
    [20/01/2008|20:19] C:\Program Files\Roxio
    [19/01/2008|20:40] C:\Program Files\SAGEM
    [20/01/2008|00:10] C:\Program Files\Services en ligne
    [20/01/2008|14:10] C:\Program Files\Theorica Divx ;-) Codecs
    [02/05/2008|11:55] C:\Program Files\Tronics
    [19/01/2008|16:18] C:\Program Files\Uninstall Information
    [01/10/2004|16:00] C:\Program Files\Uninstall_CDS.exe
    [19/01/2008|16:20] C:\Program Files\VIA
    [02/07/2008|16:40] C:\Program Files\Wanadoo
    [02/04/2008|14:37] C:\Program Files\Windows Live
    [18/06/2008|10:47] C:\Program Files\Windows Media Connect 2
    [18/06/2008|21:14] C:\Program Files\Windows Media Player
    [19/01/2008|16:07] C:\Program Files\Windows NT
    [19/01/2008|16:10] C:\Program Files\WindowsUpdate
    [19/01/2008|16:12] C:\Program Files\xerox
    [17/06/2008|19:57] C:\Program Files\Yahoo!

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [20/01/2008|20:19] C:\Program Files\Fichiers communs\Adaptec Shared
    [19/01/2008|22:45] C:\Program Files\Fichiers communs\Adobe
    [19/01/2008|18:07] C:\Program Files\Fichiers communs\Ahead
    [01/03/2008|00:15] C:\Program Files\Fichiers communs\ArcSoft
    [19/01/2008|22:22] C:\Program Files\Fichiers communs\DESIGNER
    [19/01/2008|22:04] C:\Program Files\Fichiers communs\Hewlett-Packard
    [19/01/2008|22:07] C:\Program Files\Fichiers communs\HP
    [19/01/2008|18:04] C:\Program Files\Fichiers communs\InstallShield
    [20/01/2008|13:16] C:\Program Files\Fichiers communs\Java
    [19/01/2008|18:08] C:\Program Files\Fichiers communs\LightScribe
    [20/01/2008|12:47] C:\Program Files\Fichiers communs\Microsoft Shared
    [19/01/2008|16:09] C:\Program Files\Fichiers communs\MSSoap
    [19/01/2008|17:01] C:\Program Files\Fichiers communs\ODBC
    [20/01/2008|20:20] C:\Program Files\Fichiers communs\Roxio Shared
    [19/01/2008|16:09] C:\Program Files\Fichiers communs\Services
    [19/01/2008|17:01] C:\Program Files\Fichiers communs\SpeechEngines
    [19/01/2008|22:22] C:\Program Files\Fichiers communs\System
    [20/01/2008|12:46] C:\Program Files\Fichiers communs\WindowsLiveInstaller

    ---------------------------[ Process ]--------------------------

    ... 72

    iexplore.exe ~ [592]
    iexplore.exe ~ [3172]
    iexplore.exe ~ [2280]
    iexplore.exe ~ [2496]
    iexplore.exe ~ [2272]
    iexplore.exe ~ [1132]
    iexplore.exe ~ [3376]
    iexplore.exe ~ [5272]
    iexplore.exe ~ [3344]

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford\browse less.exe
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford\find tray.exe
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1\Dale Beep.exe
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1\deaf mfcd intra date.exe
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1\dpudgegk.exe
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1\qxrqwamo.exe
    C:\DOCUME~1\FAMILL~1\APPLIC~1\onceju~1\wipe ref ooze.exe
    C:\DOCUME~1\GUILHEM\APPLIC~1\onceju~1
    C:\DOCUME~1\GUILHEM\APPLIC~1\onceju~1\Dale Beep.exe
    C:\DOCUME~1\GUILHEM\APPLIC~1\onceju~1\deaf mfcd intra date.exe
    C:\DOCUME~1\GUILHEM\APPLIC~1\onceju~1\wipe ref ooze.exe
    C:\DOCUME~1\GUILHEM\APPLIC~1\onceju~1\wirnzgwg.exe
    C:\Program Files\onceju~1
    C:\WINDOWS\Prefetch\BROWSE LESS.EXE-39DE278C.pf
    C:\WINDOWS\Prefetch\WIPE REF OOZE.EXE-069ED0A8.pf
    C:\WINDOWS\Prefetch\WIPE REF OOZE.EXE-1DA06428.pf
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@www.adserver5[2].txt
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@banner.casinoking[2].txt
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@casinoking[1].txt
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@banner.cotedazurpalace[2].txt
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@cotedazurpalace[2].txt
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@adopt.euroclick[2].txt
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@32vegas[1].txt
    C:\DOCUME~1\GUILHEM\Cookies\guilhem@banner.32vegas[2].txt
    C:\WINDOWS\Tasks\A2E61D4091859A04.job
    C:\WINDOWS\Tasks\B27AE48590A59AB5.job

    ----------------------[ Verification du Registre ]----------------------

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "dashsect"="C:\\DOCUME~1\\GUILHEM\\APPLIC~1\\ONCEJU~1\\Dale Beep.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Itch ford four knob"="C:\\Documents and Settings\\All Users\\Application Data\\third lies itch ford\\browse less.exe"

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-07-02 18:10:40
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    => C:\Documents and Settings\GUILHEM\Local Settings\Temporary Internet Files\Content.IE5\X30K3U45\crackers34-14.20080502172308[1].jpg


    [F:221][D:14]-> C:\DOCUME~1\GUILHEM\LOCALS~1\Temp
    [F:369][D:0]-> C:\DOCUME~1\GUILHEM\Cookies
    [F:5150][D:11]-> C:\DOCUME~1\GUILHEM\LOCALS~1\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 18:11:24,36 ]----------------------
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS