Votre question

gros besoin d'aide ! ! ! ! ! (plusieur virus... : s)

Tags :
  • Symantec
  • Sécurité
Dernière réponse : dans Sécurité et virus
4 Avril 2008 19:55:28

Logfile of HijackThis v1.99.1
Scan saved at 19:48:12, on 04/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\PROGRA~1\MESSAG~1\Demon.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Hewlett-Packard\HP Pavilion Webcam\HPWebcam.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\mqsvc.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\DOCUME~1\Nana\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
O4 - HKLM\..\Run: [Demon] C:\PROGRA~1\MESSAG~1\Demon.exe
O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
O4 - HKLM\..\Run: [DSLAGENTEXE] DSLAGENT.EXE USB
O4 - HKLM\..\Run: [GsiFinal] rundll32 gspndll.dll,postInstall final
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [VideoraiPodConverter] C:\Program Files\VideoraiPodConverter\VideoraConverter.exe -t
O4 - HKLM\..\Run: [CLOCKMP3CASHACID] C:\Documents and Settings\All Users\Application Data\fourbookclockmp3\bike face.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [amva] C:\WINDOWS\system32\amvo.exe
O4 - HKCU\..\Run: [Cityextra] C:\DOCUME~1\Nana\APPLIC~1\INTRAF~1\File Stupid Aim.exe
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Pavilion Webcam Tray Icon.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?95b99fdf71a34090af2d783aac09b699
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?95b99fdf71a34090af2d783aac09b699
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUpload...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Service Norton Protection Center (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe

Bonjour, j'ai besoin d'aide pour donner une news vie à mon PC merçi d'avance !

Autres pages sur : gros besoin aide plusieur virus

a b 8 Sécurité
4 Avril 2008 20:14:55

Un bonjour ? Une explication ?
4 Avril 2008 20:36:58

oui biensur je suis infestè de virus, je suis sous windows XP et j'aimerais que vous m'aidiez a enlever tous c'est virus. j'ai commencer par faire un scan avec hijack.
Contenus similaires
a b 8 Sécurité
5 Avril 2008 12:24:19

Ok.

Télécharge Lop S&D.exe sur ton Bureau.
  • Double-clique dessus pour lancer l'installation
  • Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
  • Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré (C:\lopR.txt)

    (Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
    5 Avril 2008 14:41:39


    -----------------------[ Lop S&D 4.1.0-6 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : Nana ] [ "C:\Lop SD" ]
    [ 05/04/2008 | 14:39:39,00 ] [ PC : JOHANNA ]
    [ MAJ : 02-04-2008 | 23:05 ]

    -------------[ Listing des dossiers dans Application Data ]------------

    [18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
    [18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
    [29/06/2006|12:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
    [18/09/2006|16:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
    [18/09/2006|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
    [18/09/2006|16:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
    [18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec

    [05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
    [05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
    [05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
    [04/04/2008|23:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [01/07/2007|12:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [20/01/2007|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [04/04/2008|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
    [18/09/2006|09:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [29/06/2006|12:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [04/04/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fourbookclockmp3
    [13/11/2006|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [05/11/2006|01:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
    [05/11/2006|02:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
    [18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
    [04/04/2008|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
    [11/05/2007|20:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [18/03/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [18/09/2006|08:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
    [05/12/2007|22:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
    [18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
    [18/09/2006|08:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [12/09/2007|20:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [13/11/2006|17:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar

    [18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
    [18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
    [29/06/2006|12:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [18/09/2006|16:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [18/09/2006|09:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
    [18/09/2006|16:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

    [18/09/2006|08:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
    [18/09/2006|08:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
    [12/09/2007|20:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\.
    [23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\..
    [04/04/2008|23:03] C:\DOCUME~1\Nana\APPLIC~1\Adobe
    [22/11/2006|21:59] C:\DOCUME~1\Nana\APPLIC~1\AdobeUM
    [09/03/2008|21:25] C:\DOCUME~1\Nana\APPLIC~1\Apple Computer
    [05/11/2006|04:03] C:\DOCUME~1\Nana\APPLIC~1\CyberLink
    [29/06/2006|12:59] C:\DOCUME~1\Nana\APPLIC~1\desktop.ini
    [12/02/2007|19:04] C:\DOCUME~1\Nana\APPLIC~1\DivX
    [18/11/2006|21:38] C:\DOCUME~1\Nana\APPLIC~1\Google
    [05/11/2006|00:33] C:\DOCUME~1\Nana\APPLIC~1\Help
    [05/11/2006|02:55] C:\DOCUME~1\Nana\APPLIC~1\HP
    [18/09/2006|16:33] C:\DOCUME~1\Nana\APPLIC~1\Identities
    [19/10/2007|12:52] C:\DOCUME~1\Nana\APPLIC~1\Image Zone Express
    [04/04/2008|13:07] C:\DOCUME~1\Nana\APPLIC~1\INTRAFLAP
    [19/12/2006|17:16] C:\DOCUME~1\Nana\APPLIC~1\Leadertech
    [13/11/2006|17:20] C:\DOCUME~1\Nana\APPLIC~1\Macromedia
    [30/01/2008|21:33] C:\DOCUME~1\Nana\APPLIC~1\Microsoft
    [16/04/2007|12:54] C:\DOCUME~1\Nana\APPLIC~1\Screenshot Sender
    [19/12/2006|17:16] C:\DOCUME~1\Nana\APPLIC~1\Sonic
    [02/06/2007|15:50] C:\DOCUME~1\Nana\APPLIC~1\Sun
    [18/09/2006|08:54] C:\DOCUME~1\Nana\APPLIC~1\Symantec
    [05/11/2006|19:19] C:\DOCUME~1\Nana\APPLIC~1\Template
    [13/11/2006|17:34] C:\DOCUME~1\Nana\APPLIC~1\Windows Desktop Search
    [23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\wklnhst.dat

    [18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
    [18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
    [18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [04/04/2008 23:00][--ah-----] C:\WINDOWS\tasks\ADD121F79186D473.job
    [28/11/2007 22:45][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [05/04/2008 14:26][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
    [04/04/2008 20:00][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complŠte du systŠme - Nana.job
    [05/04/2008 14:23][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [25/03/2006 06:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [04/04/2008|12:45] C:\Program Files\.
    [04/04/2008|12:45] C:\Program Files\..
    [04/04/2008|20:02] C:\Program Files\Adobe
    [11/05/2007|20:49] C:\Program Files\Adverts
    [08/07/2007|20:22] C:\Program Files\Alcohol Soft
    [08/07/2007|20:22] C:\Program Files\Alcohol Toolbar
    [28/11/2007|22:45] C:\Program Files\Apple Software Update
    [04/04/2008|12:45] C:\Program Files\Avira
    [01/02/2007|21:24] C:\Program Files\AviSynth 2.5
    [05/11/2006|03:33] C:\Program Files\Boonty
    [05/11/2006|03:33] C:\Program Files\BoontyGames
    [18/09/2006|16:33] C:\Program Files\ComPlus Applications
    [18/09/2006|09:13] C:\Program Files\CONEXANT
    [20/12/2006|17:55] C:\Program Files\DivX
    [01/03/2007|20:22] C:\Program Files\EA GAMES
    [05/11/2006|00:22] C:\Program Files\ECI Telecom
    [21/10/2007|16:49] C:\Program Files\eMule
    [04/04/2008|20:05] C:\Program Files\Fichiers communs
    [18/09/2006|09:01] C:\Program Files\FrenchOtto
    [18/09/2006|09:01] C:\Program Files\GemMasterFrench
    [06/02/2007|20:35] C:\Program Files\Google
    [05/11/2006|01:50] C:\Program Files\Hewlett-Packard
    [05/11/2006|01:54] C:\Program Files\HP
    [05/11/2006|00:07] C:\Program Files\HPQ
    [04/04/2008|20:02] C:\Program Files\InstallShield Installation Information
    [14/02/2008|13:22] C:\Program Files\Internet Explorer
    [09/06/2007|15:23] C:\Program Files\INTRAFLAP
    [21/10/2007|16:31] C:\Program Files\Inventel
    [02/03/2008|15:12] C:\Program Files\iPod
    [02/03/2008|15:13] C:\Program Files\iTunes
    [18/09/2006|16:33] C:\Program Files\Java
    [13/11/2006|17:40] C:\Program Files\LimeWire
    [11/11/2006|02:48] C:\Program Files\Maxis
    [05/11/2006|03:33] C:\Program Files\Mes Jeux T‚l‚charg‚s
    [05/11/2006|00:22] C:\Program Files\Messager Wanadoo
    [19/11/2006|15:32] C:\Program Files\Messenger
    [09/06/2007|15:23] C:\Program Files\Messenger Plus! Live
    [18/09/2006|16:33] C:\Program Files\microsoft frontpage
    [18/09/2006|09:04] C:\Program Files\Microsoft Office
    [19/11/2006|15:30] C:\Program Files\Microsoft Works
    [18/09/2006|16:33] C:\Program Files\Movie Maker
    [18/09/2006|16:33] C:\Program Files\MSN
    [18/09/2006|16:33] C:\Program Files\MSN Gaming Zone
    [09/06/2007|15:22] C:\Program Files\MSN Messenger
    [19/11/2006|15:29] C:\Program Files\MSXML 4.0
    [18/09/2006|16:33] C:\Program Files\NetMeeting
    [18/09/2006|09:13] C:\Program Files\NetWaiting
    [06/10/2007|11:46] C:\Program Files\Norton Internet Security
    [04/02/2007|17:20] C:\Program Files\ONES Trial (F)
    [18/09/2006|16:33] C:\Program Files\Online Services
    [22/10/2007|20:21] C:\Program Files\Orange
    [13/06/2007|22:14] C:\Program Files\Outlook Express
    [02/03/2008|15:08] C:\Program Files\QuickTime
    [18/09/2006|09:12] C:\Program Files\Services en ligne
    [18/09/2006|16:33] C:\Program Files\Sonic
    [20/01/2007|15:06] C:\Program Files\Symantec
    [18/09/2006|09:05] C:\Program Files\Synaptics
    [18/09/2006|16:33] C:\Program Files\Uninstall Information
    [20/11/2007|15:02] C:\Program Files\Veoh Networks
    [01/02/2007|21:24] C:\Program Files\VideoraiPodConverter
    [05/04/2008|14:26] C:\Program Files\Wanadoo
    [13/11/2006|17:33] C:\Program Files\Windows Desktop Search
    [09/06/2007|15:22] C:\Program Files\Windows Live
    [28/01/2007|21:44] C:\Program Files\Windows Live Safety Center
    [13/11/2006|17:32] C:\Program Files\Windows Live Toolbar
    [12/09/2007|19:04] C:\Program Files\Windows Media Connect 2
    [12/09/2007|19:04] C:\Program Files\Windows Media Player
    [18/09/2006|16:33] C:\Program Files\Windows NT
    [18/09/2006|16:33] C:\Program Files\Windows Plus
    [18/09/2006|16:33] C:\Program Files\WindowsUpdate
    [12/02/2007|19:31] C:\Program Files\wt3d.ini
    [18/09/2006|16:33] C:\Program Files\xerox

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [04/04/2008|20:05] C:\Program Files\Fichiers communs\.
    [04/04/2008|20:05] C:\Program Files\Fichiers communs\..
    [04/04/2008|20:05] C:\Program Files\Fichiers communs\Adobe
    [04/04/2008|20:05] C:\Program Files\Fichiers communs\Adobe Systems Shared
    [01/07/2007|12:27] C:\Program Files\Fichiers communs\Apple
    [21/10/2007|16:31] C:\Program Files\Fichiers communs\FDEUnInstaller.exe
    [05/11/2006|01:49] C:\Program Files\Fichiers communs\Hewlett-Packard
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\HP
    [18/09/2006|08:56] C:\Program Files\Fichiers communs\InstallShield
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\Java
    [18/09/2006|09:24] C:\Program Files\Fichiers communs\LightScribe
    [30/04/2007|11:51] C:\Program Files\Fichiers communs\Microsoft Shared
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\MSSoap
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\ODBC
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\Services
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\Sonic Shared
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\SpeechEngines
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\SureThing Shared
    [05/04/2008|14:30] C:\Program Files\Fichiers communs\Symantec Shared
    [13/06/2007|22:14] C:\Program Files\Fichiers communs\System
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\TiVo Shared

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    C:\Program Files\Adverts
    C:\Program Files\Adverts\uninst.exe
    C:\WINDOWS\Tasks\ADD121F79186D473.job

    ----------------------[ Verification du Registre ]----------------------

    ..... OK !

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts MODIFIE

    127.0.0.1 bin.errorprotector.com ## added by CiD
    127.0.0.1 br.errorsafe.com ## added by CiD
    127.0.0.1 br.winantivirus.com ## added by CiD
    127.0.0.1 br.winfixer.com ## added by CiD
    127.0.0.1 de.errorsafe.com ## added by CiD
    127.0.0.1 de.winantivirus.com ## added by CiD
    127.0.0.1 download.cdn.winsoftware.com ## added by CiD
    127.0.0.1 download.errorsafe.com ## added by CiD
    127.0.0.1 download.systemdoctor.com ## added by CiD
    127.0.0.1 download.winantispyware.com ## added by CiD
    127.0.0.1 download.windrivecleaner.com ## added by CiD
    127.0.0.1 download.winfixer.com ## added by CiD
    127.0.0.1 drivecleaner.com ## added by CiD
    127.0.0.1 dynamique.drivecleaner.com ## added by CiD
    127.0.0.1 errorprotector.com ## added by CiD
    127.0.0.1 errorsafe.com ## added by CiD
    127.0.0.1 es.winantivirus.com ## added by CiD
    127.0.0.1 fr.winantivirus.com ## added by CiD
    127.0.0.1 fr.winfixer.com ## added by CiD
    127.0.0.1 go.drivecleaner.com ## added by CiD
    127.0.0.1 go.errorsafe.com ## added by CiD
    127.0.0.1 go.winantispyware.com ## added by CiD
    127.0.0.1 go.winantivirus.com ## added by CiD
    127.0.0.1 hk.winantivirus.com ## added by CiD
    127.0.0.1 instlog.errorsafe.com ## added by CiD
    127.0.0.1 instlog.winantivirus.com ## added by CiD
    127.0.0.1 jsp.drivecleaner.com ## added by CiD
    127.0.0.1 kb.errorsafe.com ## added by CiD
    127.0.0.1 kb.winantivirus.com ## added by CiD
    127.0.0.1 nl.errorsafe.com ## added by CiD
    127.0.0.1 se.errorsafe.com ## added by CiD
    127.0.0.1 secure.drivecleaner.com ## added by CiD
    127.0.0.1 secure.errorsafe.com ## added by CiD
    127.0.0.1 secure.winantispam.com ## added by CiD
    127.0.0.1 secure.winantispy.com ## added by CiD
    127.0.0.1 secure.winantivirus.com ## added by CiD
    127.0.0.1 support.winantivirus.com ## added by CiD
    127.0.0.1 ulog.winantivirus.com ## added by CiD
    127.0.0.1 utils.errorsafe.com ## added by CiD
    127.0.0.1 utils.winantivirus.com ## added by CiD
    127.0.0.1 winantispyware.com ## added by CiD
    127.0.0.1 winantivirus.com ## added by CiD
    127.0.0.1 winfixer.com ## added by CiD
    127.0.0.1 www.drivecleaner.com ## added by CiD
    127.0.0.1 www.errorprotector.com ## added by CiD
    127.0.0.1 www.errorsafe.com ## added by CiD
    127.0.0.1 www.systemdoctor.com ## added by CiD
    127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
    127.0.0.1 www.win-virus-pro.com ## added by CiD
    127.0.0.1 www.winantispam.com ## added by CiD
    127.0.0.1 www.winantispy.com ## added by CiD
    127.0.0.1 www.winantispyware.com ## added by CiD
    127.0.0.1 www.winantivirus.com ## added by CiD
    127.0.0.1 www.winantiviruspro.com ## added by CiD
    127.0.0.1 www.windrivecleaner.com ## added by CiD
    127.0.0.1 www.windrivesafe.com ## added by CiD
    127.0.0.1 www.winfixer.com ## added by CiD
    127.0.0.1 cdn.drivecleaner.com ## added by CiD
    127.0.0.1 cdn.errorsafe.com ## added by CiD
    127.0.0.1 cdn.winsoftware.com ## added by CiD
    127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
    127.0.0.1 download.cdn.errorsafe.com ## added by CiD
    127.0.0.1 instlog.winfixer.com ## added by CiD
    127.0.0.1 trial.updates.winsoftware.com ## added by CiD
    127.0.0.1 utils.winfixer.com ## added by CiD
    127.0.0.1 winfixer2006.com ## added by CiD
    127.0.0.1 winsoftware.com ## added by CiD
    127.0.0.1 www.utils.winfixer.com ## added by CiD
    127.0.0.1 www.winfixer2006.com ## added by CiD
    127.0.0.1 www.winsoftware.com ## added by CiD

    -> 72 ( 70 ## added by CiD )

    /!\ 1 Not 127.0.0.1 !!

    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-04-05 14:40:36
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden files ...
    scan completed successfully
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    Aucune autre infection trouvée !

    /!\ [Fich:3818][Doss:41] C:\DOCUME~1\Nana\LOCALS~1\Temp
    /!\ [Fich:30][Doss:0] C:\DOCUME~1\Nana\Cookies
    /!\ [Fich:6285][Doss:20] C:\DOCUME~1\Nana\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 14:41:12,81 ]----------------------



    a b 8 Sécurité
    5 Avril 2008 15:15:52

    Re,

    Relance Lop S&D

  • Choisis cette fois ci l'Option 2 (Suppression)
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré (C:\lopR.txt)

    (Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
    5 Avril 2008 15:26:42


    -----------------------[ Lop S&D 4.1.0-6 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : Nana ] [ "C:\Lop SD" ]
    [ 05/04/2008 | 15:21:56,43 ] [ PC : JOHANNA ]
    [ MAJ : 02-04-2008 | 23:05 ]

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

    Supprimé! - C:\Program Files\Adverts\uninst.exe
    Supprimé! - C:\WINDOWS\Tasks\ADD121F79186D473.job
    Supprimé! - C:\Program Files\Adverts
    Restauré! - Fichier Hosts

    //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    -------------[ Listing des dossiers dans Application Data ]------------

    [18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
    [18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
    [29/06/2006|12:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
    [18/09/2006|16:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
    [18/09/2006|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
    [18/09/2006|16:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
    [18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec

    [05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
    [05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
    [05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
    [04/04/2008|23:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [01/07/2007|12:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [20/01/2007|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [04/04/2008|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
    [18/09/2006|09:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [29/06/2006|12:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [04/04/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fourbookclockmp3
    [13/11/2006|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [05/11/2006|01:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
    [05/11/2006|02:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
    [18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
    [04/04/2008|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
    [11/05/2007|20:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [18/03/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [18/09/2006|08:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
    [05/12/2007|22:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
    [18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
    [18/09/2006|08:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [12/09/2007|20:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [13/11/2006|17:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar

    [18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
    [18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
    [29/06/2006|12:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [18/09/2006|16:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [18/09/2006|09:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
    [18/09/2006|16:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

    [18/09/2006|08:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
    [18/09/2006|08:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
    [12/09/2007|20:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\.
    [23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\..
    [04/04/2008|23:03] C:\DOCUME~1\Nana\APPLIC~1\Adobe
    [22/11/2006|21:59] C:\DOCUME~1\Nana\APPLIC~1\AdobeUM
    [09/03/2008|21:25] C:\DOCUME~1\Nana\APPLIC~1\Apple Computer
    [05/11/2006|04:03] C:\DOCUME~1\Nana\APPLIC~1\CyberLink
    [29/06/2006|12:59] C:\DOCUME~1\Nana\APPLIC~1\desktop.ini
    [12/02/2007|19:04] C:\DOCUME~1\Nana\APPLIC~1\DivX
    [18/11/2006|21:38] C:\DOCUME~1\Nana\APPLIC~1\Google
    [05/11/2006|00:33] C:\DOCUME~1\Nana\APPLIC~1\Help
    [05/11/2006|02:55] C:\DOCUME~1\Nana\APPLIC~1\HP
    [18/09/2006|16:33] C:\DOCUME~1\Nana\APPLIC~1\Identities
    [19/10/2007|12:52] C:\DOCUME~1\Nana\APPLIC~1\Image Zone Express
    [04/04/2008|13:07] C:\DOCUME~1\Nana\APPLIC~1\INTRAFLAP
    [19/12/2006|17:16] C:\DOCUME~1\Nana\APPLIC~1\Leadertech
    [13/11/2006|17:20] C:\DOCUME~1\Nana\APPLIC~1\Macromedia
    [30/01/2008|21:33] C:\DOCUME~1\Nana\APPLIC~1\Microsoft
    [16/04/2007|12:54] C:\DOCUME~1\Nana\APPLIC~1\Screenshot Sender
    [19/12/2006|17:16] C:\DOCUME~1\Nana\APPLIC~1\Sonic
    [02/06/2007|15:50] C:\DOCUME~1\Nana\APPLIC~1\Sun
    [18/09/2006|08:54] C:\DOCUME~1\Nana\APPLIC~1\Symantec
    [05/11/2006|19:19] C:\DOCUME~1\Nana\APPLIC~1\Template
    [13/11/2006|17:34] C:\DOCUME~1\Nana\APPLIC~1\Windows Desktop Search
    [23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\wklnhst.dat

    [18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
    [18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
    [18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [28/11/2007 22:45][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [05/04/2008 14:26][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
    [04/04/2008 20:00][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complŠte du systŠme - Nana.job
    [05/04/2008 14:23][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [25/03/2006 06:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [05/04/2008|15:21] C:\Program Files\.
    [05/04/2008|15:21] C:\Program Files\..
    [04/04/2008|20:02] C:\Program Files\Adobe
    [08/07/2007|20:22] C:\Program Files\Alcohol Soft
    [08/07/2007|20:22] C:\Program Files\Alcohol Toolbar
    [28/11/2007|22:45] C:\Program Files\Apple Software Update
    [04/04/2008|12:45] C:\Program Files\Avira
    [01/02/2007|21:24] C:\Program Files\AviSynth 2.5
    [05/11/2006|03:33] C:\Program Files\Boonty
    [05/11/2006|03:33] C:\Program Files\BoontyGames
    [18/09/2006|16:33] C:\Program Files\ComPlus Applications
    [18/09/2006|09:13] C:\Program Files\CONEXANT
    [20/12/2006|17:55] C:\Program Files\DivX
    [01/03/2007|20:22] C:\Program Files\EA GAMES
    [05/11/2006|00:22] C:\Program Files\ECI Telecom
    [21/10/2007|16:49] C:\Program Files\eMule
    [04/04/2008|20:05] C:\Program Files\Fichiers communs
    [18/09/2006|09:01] C:\Program Files\FrenchOtto
    [18/09/2006|09:01] C:\Program Files\GemMasterFrench
    [06/02/2007|20:35] C:\Program Files\Google
    [05/11/2006|01:50] C:\Program Files\Hewlett-Packard
    [05/11/2006|01:54] C:\Program Files\HP
    [05/11/2006|00:07] C:\Program Files\HPQ
    [04/04/2008|20:02] C:\Program Files\InstallShield Installation Information
    [14/02/2008|13:22] C:\Program Files\Internet Explorer
    [09/06/2007|15:23] C:\Program Files\INTRAFLAP
    [21/10/2007|16:31] C:\Program Files\Inventel
    [02/03/2008|15:12] C:\Program Files\iPod
    [02/03/2008|15:13] C:\Program Files\iTunes
    [18/09/2006|16:33] C:\Program Files\Java
    [13/11/2006|17:40] C:\Program Files\LimeWire
    [11/11/2006|02:48] C:\Program Files\Maxis
    [05/11/2006|03:33] C:\Program Files\Mes Jeux T‚l‚charg‚s
    [05/11/2006|00:22] C:\Program Files\Messager Wanadoo
    [19/11/2006|15:32] C:\Program Files\Messenger
    [09/06/2007|15:23] C:\Program Files\Messenger Plus! Live
    [18/09/2006|16:33] C:\Program Files\microsoft frontpage
    [18/09/2006|09:04] C:\Program Files\Microsoft Office
    [19/11/2006|15:30] C:\Program Files\Microsoft Works
    [18/09/2006|16:33] C:\Program Files\Movie Maker
    [18/09/2006|16:33] C:\Program Files\MSN
    [18/09/2006|16:33] C:\Program Files\MSN Gaming Zone
    [09/06/2007|15:22] C:\Program Files\MSN Messenger
    [19/11/2006|15:29] C:\Program Files\MSXML 4.0
    [18/09/2006|16:33] C:\Program Files\NetMeeting
    [18/09/2006|09:13] C:\Program Files\NetWaiting
    [06/10/2007|11:46] C:\Program Files\Norton Internet Security
    [04/02/2007|17:20] C:\Program Files\ONES Trial (F)
    [18/09/2006|16:33] C:\Program Files\Online Services
    [22/10/2007|20:21] C:\Program Files\Orange
    [13/06/2007|22:14] C:\Program Files\Outlook Express
    [02/03/2008|15:08] C:\Program Files\QuickTime
    [18/09/2006|09:12] C:\Program Files\Services en ligne
    [18/09/2006|16:33] C:\Program Files\Sonic
    [20/01/2007|15:06] C:\Program Files\Symantec
    [18/09/2006|09:05] C:\Program Files\Synaptics
    [18/09/2006|16:33] C:\Program Files\Uninstall Information
    [20/11/2007|15:02] C:\Program Files\Veoh Networks
    [01/02/2007|21:24] C:\Program Files\VideoraiPodConverter
    [05/04/2008|14:26] C:\Program Files\Wanadoo
    [13/11/2006|17:33] C:\Program Files\Windows Desktop Search
    [09/06/2007|15:22] C:\Program Files\Windows Live
    [28/01/2007|21:44] C:\Program Files\Windows Live Safety Center
    [13/11/2006|17:32] C:\Program Files\Windows Live Toolbar
    [12/09/2007|19:04] C:\Program Files\Windows Media Connect 2
    [12/09/2007|19:04] C:\Program Files\Windows Media Player
    [18/09/2006|16:33] C:\Program Files\Windows NT
    [18/09/2006|16:33] C:\Program Files\Windows Plus
    [18/09/2006|16:33] C:\Program Files\WindowsUpdate
    [12/02/2007|19:31] C:\Program Files\wt3d.ini
    [18/09/2006|16:33] C:\Program Files\xerox

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [04/04/2008|20:05] C:\Program Files\Fichiers communs\.
    [04/04/2008|20:05] C:\Program Files\Fichiers communs\..
    [04/04/2008|20:05] C:\Program Files\Fichiers communs\Adobe
    [04/04/2008|20:05] C:\Program Files\Fichiers communs\Adobe Systems Shared
    [01/07/2007|12:27] C:\Program Files\Fichiers communs\Apple
    [21/10/2007|16:31] C:\Program Files\Fichiers communs\FDEUnInstaller.exe
    [05/11/2006|01:49] C:\Program Files\Fichiers communs\Hewlett-Packard
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\HP
    [18/09/2006|08:56] C:\Program Files\Fichiers communs\InstallShield
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\Java
    [18/09/2006|09:24] C:\Program Files\Fichiers communs\LightScribe
    [30/04/2007|11:51] C:\Program Files\Fichiers communs\Microsoft Shared
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\MSSoap
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\ODBC
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\Services
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\Sonic Shared
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\SpeechEngines
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\SureThing Shared
    [05/04/2008|14:30] C:\Program Files\Fichiers communs\Symantec Shared
    [13/06/2007|22:14] C:\Program Files\Fichiers communs\System
    [18/09/2006|16:33] C:\Program Files\Fichiers communs\TiVo Shared

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    Aucun fichier / dossier Lop trouvé !

    ----------------------[ Verification du Registre ]----------------------

    ..... OK !

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-04-05 15:23:15
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden files ...
    scan completed successfully
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    Aucune autre infection trouvée !

    /!\ [Fich:3818][Doss:41] C:\DOCUME~1\Nana\LOCALS~1\Temp
    /!\ [Fich:21][Doss:0] C:\DOCUME~1\Nana\Cookies
    /!\ [Fich:6510][Doss:20] C:\DOCUME~1\Nana\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 15:23:31,07 ]----------------------
    a b 8 Sécurité
    5 Avril 2008 16:10:25

    Reposte un rapport Hijackthis.
    5 Avril 2008 16:28:56

    Logfile of HijackThis v1.99.1
    Scan saved at 16:28:16, on 05/04/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
    c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\HP\QuickPlay\QPService.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
    C:\PROGRA~1\MESSAG~1\Demon.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\Windows Media Player\WMPNSCFG.exe
    C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\Hewlett-Packard\HP Pavilion Webcam\HPWebcam.exe
    C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\mqsvc.exe
    C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    C:\WINDOWS\system32\mqtgsvc.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\WINDOWS\eHome\ehmsas.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\WINDOWS\explorer.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\iTunes\iTunes.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe
    C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\DOCUME~1\Nana\LOCALS~1\Temp\Répertoire temporaire 2 pour hijackthis.zip\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
    O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
    O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
    O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
    O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
    O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
    O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
    O4 - HKLM\..\Run: [Demon] C:\PROGRA~1\MESSAG~1\Demon.exe
    O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
    O4 - HKLM\..\Run: [DSLAGENTEXE] DSLAGENT.EXE USB
    O4 - HKLM\..\Run: [GsiFinal] rundll32 gspndll.dll,postInstall final
    O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKLM\..\Run: [VideoraiPodConverter] C:\Program Files\VideoraiPodConverter\VideoraConverter.exe -t
    O4 - HKLM\..\Run: [CLOCKMP3CASHACID] C:\Documents and Settings\All Users\Application Data\fourbookclockmp3\bike face.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
    O4 - HKCU\..\Run: [amva] C:\WINDOWS\system32\amvo.exe
    O4 - HKCU\..\Run: [Cityextra] C:\DOCUME~1\Nana\APPLIC~1\INTRAF~1\File Stupid Aim.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O4 - Global Startup: HP Pavilion Webcam Tray Icon.lnk = ?
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?95b99fdf71a34090af2d783aac09b699
    O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?95b99fdf71a34090af2d783aac09b699
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
    O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
    O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
    O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUpload...
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
    O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\ccPwdSvc.exe
    O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Norton Internet Security\comHost.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    O23 - Service: Service Norton Protection Center (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe

    a b 8 Sécurité
    5 Avril 2008 17:37:54

    Re,

    Fix les lignes dans le cadre ci-dessous avec Hijackthis : AIDE EN IMAGES

    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O4 - HKLM\..\Run: [CLOCKMP3CASHACID] C:\Documents and Settings\All Users\Application Data\fourbookclockmp3\bike face.exe
    O4 - HKCU\..\Run: [amva] C:\WINDOWS\system32\amvo.exe
    O4 - HKLM\..\Run: [CLOCKMP3CASHACID] C:\Documents and Settings\All Users\Application Data\fourbookclockmp3\bike face.exe


    Télécharge OTMoveIt (d'OldTimer). Sauvegarde-le sur ton Bureau.
    Sélectionne tous les emplacements dans le cadre ci-dessous :

    C:\DOCUME~1\Nana\APPLIC~1\INTRAF~1
    C:\WINDOWS\system32\amvo.exe
    C:\Documents and Settings\All Users\Application Data\fourbookclockmp3

    ---> Clique-droit puis Copier (ou Ctrl+C)

    Double-clique sur OTMoveIt.exe afin de le lancer.
    Fais un Clique-droit sur le cadre de gauche puis choisis Coller (ou Ctrl+V).
    Clique maintenant sur [#ff0000]MoveIt![/#f]

    [#ff0000]Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.[/#f]

    Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    Le nom du rapport correspond au moment de sa création : date_heure.log

    ->Informations sur le logiciel<-
    5 Avril 2008 18:16:43

    File/Folder [fixed]C:\DOCUME~1\Nana\APPLIC~1\INTRAF~1 not found.
    File/Folder C:\WINDOWS\system32\amvo.exe not found.
    C:\Documents and Settings\All Users\Application Data\fourbookclockmp3 moved successfully.

    OTMoveIt2 v1.0.21 log created on 04052008_181356

    voila le Result




    RAPPORT


    File/Folder [fixed]C:\DOCUME~1\Nana\APPLIC~1\INTRAF~1 not found.
    File/Folder C:\WINDOWS\system32\amvo.exe not found.
    C:\Documents and Settings\All Users\Application Data\fourbookclockmp3 moved successfully.

    OTMoveIt2 v1.0.21 log created on 04052008_181356

    a b 8 Sécurité
    6 Avril 2008 12:20:13

    Il y a eu une erreur dans les balises :/ 
    Tu peux recommencer ?
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS