Se connecter / S'enregistrer
Votre question

trop de problemes a cause de virus (je pense)

Tags :
  • Virus
  • Sécurité
Dernière réponse : dans Sécurité et virus
21 Mars 2008 18:40:30

Bonjour!!!! J'ai vu que vous avait aidé plusieurs personnes avec leurs problemes de virus et moi aussi jai un probleme. Est ce que vous pouvez m'aider??

Jai recu dun ami un link pour aller sur un site en cliquant dessus jai vu que cetais un mauvais site et depuis ce temps jai pleins de publicité qui apparait et des fenetres qui me disent que ma confidentialite est compromise. Jai aussi une fenetre qui me dit dinstaller un fichier qui est avec Grand Soft Incorporation (je ne sais pas cest quoi). On me dit aussi que le (ou peut etre les) virus infectent certains de mes documents. Pouvait vous maider et me dire quoi faire je desespere de retrouver mon ordinateur comme avant qui marchait vite et bien.

Merci beaucoup de vote aide

Voici le scan avec HiJackThis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:52:08, on 2008-03-21
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
C:\Program Files\Spyware Doctor\svcntaux.exe
C:\Program Files\Spyware Doctor\swdsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: My Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
O3 - Toolbar: Need2Find Bar - {4D1C4E89-A32A-416B-BCDB-33B3EF3617D3} - C:\Program Files\Need2Find\bar\1.bin\ND2FNBAR.DLL
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [readericon] C:\Program Files\Digital Media Reader\readericon45G.exe
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NETASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [IntelAudioStudio] "C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" TRAY
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AltnetPointsManager] c:\program files\altnet\points manager\points manager.exe -s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [My Web Search Bar Search Scope Monitor] "C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=2 /w
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKLM\..\Run: [ROAD ITCH AMOK PING] C:\Documents and Settings\All Users\Application Data\Long slow road itch\four okay.exe
O4 - HKLM\..\Run: [BM57e35b36] Rundll32.exe "C:\WINDOWS\system32\ppsvtvmh.dll",s
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
O4 - HKCU\..\Run: [OneMoreKey] C:\Program Files\XP Antivirus\xpa.exe
O4 - HKCU\..\Run: [Readme manager] C:\DOCUME~1\CHRIST~1\APPLIC~1\SETUPD~1\Axis inside.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Assistant Internet.lnk = C:\Program Files\NetAssistant\bin\matcli.exe
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jh...
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Christina\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall....
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld...
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUpload...
O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comned.com/signuptemplates/securelogin-d...
O17 - HKLM\System\CCS\Services\Tcpip\..\{03BBFF24-9CB7-4840-93AC-52A05219F7CC}: NameServer = 85.255.114.92,85.255.112.112
O17 - HKLM\System\CCS\Services\Tcpip\..\{140AEFCD-603E-4CBC-8292-2E245227857E}: NameServer = 85.255.114.92,85.255.112.112
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.114.92 85.255.112.112
O17 - HKLM\System\CS1\Services\Tcpip\..\{03BBFF24-9CB7-4840-93AC-52A05219F7CC}: NameServer = 85.255.114.92,85.255.112.112
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.114.92 85.255.112.112
O17 - HKLM\System\CS2\Services\Tcpip\..\{03BBFF24-9CB7-4840-93AC-52A05219F7CC}: NameServer = 85.255.114.92,85.255.112.112
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.114.92 85.255.112.112
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe

--
End of file - 13991 bytes

Autres pages sur : problemes cause virus pense

21 Mars 2008 18:43:10

bonjour

tu as plusieurs infections

1

Télécharge FixWareout de l'un de ces deux liens :
http://downloads.subratam.org/Fixwareout.exe
http://download.bleepingcomputer.com/lonny/Fixwareout.exe

Sauvegarde-le sur ton Bureau, puis lance-le.
Clique Next, puis Install, et assure-toi que "Run fixit" soit coché, puis clique Finish.
Suis les directives à l'écran.
L'outil va te demander de redémarrer ton PC; fais-le s'il te plaît.
Le redémarrage risque de prendre un peu plus de temps; ceci est normal.
Suite au redémarrage, copie/colle le contenu du rapport généré par l'outil qui se trouve ici : C:\fixwareout\report.txt, avec un nouveau rapport HijackThis! également.

2

Télécharge BTFix de Bibi26.
  • Dézippe l'archive sur ton Bureau.
  • Ouvre le dossier BTFix.
  • Double clique sur BTFix.exe.
  • Clique sur Rechercher.
  • Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.
    21 Mars 2008 19:23:09

    Le resutat de Fixwareout

    Username "Christina" - 2008-03-21 13:51:13 [Fixwareout edited 9/01/2007]

    ~~~~~ Prerun check
    HKLM\SOFTWARE\~\Winlogon\ "System"="kdvdb.exe"

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
    "nameserver"="85.255.114.92 85.255.112.112" <Value cleared.
    HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{03BBFF24-9CB7-4840-93AC-52A05219F7CC}
    "nameserver"="85.255.114.92,85.255.112.112" <Value cleared.
    HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{140AEFCD-603E-4CBC-8292-2E245227857E}
    "nameserver"="85.255.114.92,85.255.112.112" <Value cleared.
    HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{140AEFCD-603E-4CBC-8292-2E245227857E}
    "DhcpNameServer"="85.255.114.92,85.255.112.112" <Value cleared.
    HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{5E5A6075-790C-4782-8B41-02F352209B67}
    "DhcpNameServer"="85.255.114.92,85.255.112.112" <Value cleared.

    Cache de résolution DNS vidé.


    System was rebooted successfully.

    ~~~~~ Postrun check
    HKLM\SOFTWARE\~\Winlogon\ "system"=""
    ....
    ....
    ~~~~~ Misc files.
    ....
    ~~~~~ Checking for older varients.
    ....
    ~~~~~ Other
    C:\WINDOWS\Temp\kdvdb.ren 63424 2004-08-10


    C:\Program Files\IntCodec < Found
    Additional tools are recommended.

    ~~~~~ Current runs (hklm hkcu "run" Keys Only)
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "TkBellExe"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot"
    "StandardInstall"=""
    "SigmatelSysTrayApp"="sttray.exe"
    "SemanticInsight"="C:\\Program Files\\RXToolBar\\Semantic Insight\\SemanticInsight.exe"
    "Recguard"="%WINDIR%\\SMINST\\RECGUARD.EXE"
    "readericon"="C:\\Program Files\\Digital Media Reader\\readericon45G.exe"
    "MSKDetectorExe"="C:\\Program Files\\McAfee\\SpamKiller\\MSKDetct.exe /uninstall"
    "Motive SmartBridge"="C:\\PROGRA~1\\NETASS~1\\SMARTB~1\\MotiveSB.exe"
    "IntelAudioStudio"="\"C:\\Program Files\\Intel Audio Studio\\IntelAudioStudio.exe\" TRAY"
    "igfxtray"="C:\\WINDOWS\\system32\\igfxtray.exe"
    "igfxpers"="C:\\WINDOWS\\system32\\igfxpers.exe"
    "igfxhkcmd"="C:\\WINDOWS\\system32\\hkcmd.exe"
    "IAAnotif"="C:\\Program Files\\Intel\\Intel Matrix Storage Manager\\iaanotif.exe"
    "ehTray"="C:\\WINDOWS\\ehome\\ehtray.exe"
    "ccApp"="\"C:\\Program Files\\Fichiers communs\\Symantec Shared\\ccApp.exe\""
    "AltnetPointsManager"="c:\\program files\\altnet\\points manager\\points manager.exe -s"
    "QuickTime Task"="\"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime"
    "iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""
    "Google Desktop Search"="\"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup"
    "SDTray"="\"C:\\Program Files\\Spyware Doctor\\SDTrayApp.exe\""
    "Adobe Reader Speed Launcher"="\"C:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\""
    "SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.6.0_05\\bin\\jusched.exe\""
    "My Web Search Bar Search Scope Monitor"="\"C:\\PROGRA~1\\MYWEBS~1\\bar\\1.bin\\m3SrchMn.exe\" /m=2 /w"
    "MyWebSearch Email Plugin"="C:\\PROGRA~1\\MYWEBS~1\\bar\\1.bin\\mwsoemon.exe"
    "ROAD ITCH AMOK PING"="C:\\Documents and Settings\\All Users\\Application Data\\Long slow road itch\\four okay.exe"
    "BM57e35b36"="Rundll32.exe \"C:\\WINDOWS\\system32\\ppsvtvmh.dll\",s"

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"
    "ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
    "swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe"
    "updateMgr"="\"C:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe\" AcRdB7_0_8"
    "Skype"="\"C:\\Program Files\\Skype\\\\Phone\\Skype.exe\" /nosplash /minimized"
    "Picasa Media Detector"="C:\\Program Files\\Picasa2\\PicasaMediaDetector.exe"
    "AdobeUpdater"="C:\\Program Files\\Fichiers communs\\Adobe\\Updater5\\AdobeUpdater.exe"
    "OneMoreKey"="C:\\Program Files\\XP Antivirus\\xpa.exe"
    "Readme manager"="C:\\DOCUME~1\\CHRIST~1\\APPLIC~1\\SETUPD~1\\Axis inside.exe"
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
    ....
    Hosts file was reset, If you use a custom hosts file please replace it...
    ~~~~~ End report ~~~~~
    Contenus similaires
    21 Mars 2008 19:24:19

    HiJackthis resultat

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 14:17:35, on 2008-03-21
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16574)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    C:\Program Files\Norton AntiVirus\navapsvc.exe
    C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
    C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
    C:\Program Files\Spyware Doctor\svcntaux.exe
    C:\Program Files\Spyware Doctor\swdsvc.exe
    C:\Program Files\Spyware Doctor\SDTrayApp.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\ehome\mcrdsvc.exe
    C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\WINDOWS\System32\alg.exe
    C:\WINDOWS\system32\notepad.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Digital Media Reader\readericon45G.exe
    C:\PROGRA~1\NETASS~1\SMARTB~1\MotiveSB.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
    C:\WINDOWS\eHome\ehmsas.exe
    C:\Program Files\QuickTime\QTTask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe
    C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
    C:\WINDOWS\system32\Rundll32.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\Picasa2\PicasaMediaDetector.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\BigFix\bigfix.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Program Files\NetAssistant\bin\mpbtn.exe
    C:\Program Files\Google\Google Updater\GoogleUpdater.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\Program Files\MSN Messenger\usnsvc.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\WINDOWS\system32\msiexec.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
    O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
    O2 - BHO: (no name) - {0F359530-BCA1-468A-9BA3-EC35781C7735} - C:\WINDOWS\system32\pmnli.dll
    O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O2 - BHO: {5afba7d7-a310-7509-2c44-f42f8b1004a3} - {3a4001b8-f24f-44c2-9057-013a7d7abfa5} - C:\WINDOWS\system32\mbqxtlvy.dll
    O2 - BHO: Need2Find Bar BHO - {4D1C4E81-A32A-416b-BCDB-33B3EF3617D3} - C:\Program Files\Need2Find\bar\1.bin\ND2FNBAR.DLL
    O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
    O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - C:\WINDOWS\system32\nnnoomm.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
    O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: My Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
    O3 - Toolbar: Need2Find Bar - {4D1C4E89-A32A-416B-BCDB-33B3EF3617D3} - C:\Program Files\Need2Find\bar\1.bin\ND2FNBAR.DLL
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
    O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
    O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [readericon] C:\Program Files\Digital Media Reader\readericon45G.exe
    O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
    O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NETASS~1\SMARTB~1\MotiveSB.exe
    O4 - HKLM\..\Run: [IntelAudioStudio] "C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" TRAY
    O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [AltnetPointsManager] c:\program files\altnet\points manager\points manager.exe -s
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKLM\..\Run: [My Web Search Bar Search Scope Monitor] "C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=2 /w
    O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
    O4 - HKLM\..\Run: [ROAD ITCH AMOK PING] C:\Documents and Settings\All Users\Application Data\Long slow road itch\four okay.exe
    O4 - HKLM\..\Run: [BM57e35b36] Rundll32.exe "C:\WINDOWS\system32\ppsvtvmh.dll",s
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
    O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
    O4 - HKCU\..\Run: [OneMoreKey] C:\Program Files\XP Antivirus\xpa.exe
    O4 - HKCU\..\Run: [Readme manager] C:\DOCUME~1\CHRIST~1\APPLIC~1\SETUPD~1\Axis inside.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Assistant Internet.lnk = C:\Program Files\NetAssistant\bin\matcli.exe
    O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
    O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
    O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jh...
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Christina\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall....
    O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts...
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld...
    O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUpload...
    O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comned.com/signuptemplates/securelogin-d...
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
    O18 - Filter hijack: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
    O20 - Winlogon Notify: nnnoomm - C:\WINDOWS\SYSTEM32\nnnoomm.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
    O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
    O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
    O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
    O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
    O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe

    --
    End of file - 16312 bytes
    21 Mars 2008 19:28:04

    BTFix. resultat

    BTFix 1.088 (par bibi26) - 21/03/2008 14:26:43 - Analyse
    Lancé depuis C:\Documents and Settings\Christina\Bureau\BTFix\BTFix\BTFix.exe

    ---> Fichiers/Dossiers trouvés

    - C:\DBBackup\
    - C:\WINDOWS\smdat32m.sys
    - C:\WINDOWS\smdat32a.sys
    - C:\WINDOWS\Downloaded Program Files\f3initialsetup1.0.0.15-3.inf
    - C:\WINDOWS\Downloaded Program Files\ClientAX.dll
    - C:\WINDOWS\system32\f3PSSavr.scr
    - C:\WINDOWS\Fonts\acrsecI.fon
    - C:\WINDOWS\Fonts\acrsecB.fon
    - C:\WINDOWS\Fonts\acrsec.fon
    - C:\Program Files\MyWebSearch\
    - C:\Program Files\RXToolBar\
    - C:\Program Files\Need2Find\
    - C:\Program Files\INSTAFINK\
    - C:\Program Files\Altnet\
    - C:\Program Files\FunWebProducts\
    - C:\Program Files\Zango\
    - C:\Program Files\Zango Programs\
    - C:\Program Files\Mozilla Firefox\components\npclntax.xpt
    - C:\Program Files\Mozilla Firefox\chrome\m3ffxtbr.manifest
    - C:\Program Files\Mozilla Firefox\chrome\m3ffxtbr.jar
    - C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll
    - C:\Program Files\Mozilla Firefox\plugins\npclntax.dll
    - C:\Program Files\Internet Explorer\msimg32.dll
    - C:\Program Files\MSN Messenger\RICHED20.dll
    - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Zango\

    ---> Analyse terminée
    21 Mars 2008 21:11:58

    re

  • Ouvre BTFix.
  • Clique sur Nettoyer.
  • Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.
    21 Mars 2008 21:37:42

    BTFix 1.088 (par bibi26) - 21/03/2008 16:16:38 - Nettoyage - Mode normal
    Lancé depuis C:\Documents and Settings\Christina\Bureau\BTFix\BTFix\BTFix.exe

    ---> Fichiers/dossiers supprimés (Première passe)

    - Fichiers temporaires effacés
    - C:\DBBackup\
    - C:\WINDOWS\smdat32m.sys
    - C:\WINDOWS\smdat32a.sys
    - C:\WINDOWS\Downloaded Program Files\f3initialsetup1.0.0.15-3.inf
    - C:\WINDOWS\Downloaded Program Files\ClientAX.dll
    - C:\WINDOWS\system32\f3PSSavr.scr
    - C:\WINDOWS\Fonts\acrsecI.fon
    - C:\WINDOWS\Fonts\acrsecB.fon
    - C:\WINDOWS\Fonts\acrsec.fon
    - C:\Program Files\MyWebSearch\bar\1.bin\ (erreur lors de la suppression)
    - C:\Program Files\MyWebSearch\bar\Cache\
    - C:\Program Files\MyWebSearch\bar\Settings\
    - C:\Program Files\MyWebSearch\bar\ (erreur lors de la suppression)
    - C:\Program Files\MyWebSearch\ (erreur lors de la suppression)
    - C:\Program Files\RXToolBar\
    - C:\Program Files\INSTAFINK\
    - C:\Program Files\Altnet\Download Manager\
    - C:\Program Files\Altnet\My Altnet Shares\
    - C:\Program Files\Altnet\Points Manager\LocalPages\
    - C:\Program Files\Altnet\Points Manager\Skin\
    - C:\Program Files\Altnet\Points Manager\Temp Internet Shares\
    - C:\Program Files\Altnet\Points Manager\
    - C:\Program Files\Altnet\
    - C:\Program Files\FunWebProducts\PopSwatr\History\
    - C:\Program Files\FunWebProducts\PopSwatr\
    - C:\Program Files\FunWebProducts\ScreenSaver\Images\
    - C:\Program Files\FunWebProducts\ScreenSaver\
    - C:\Program Files\FunWebProducts\Shared\Cache\
    - C:\Program Files\FunWebProducts\Shared\
    - C:\Program Files\FunWebProducts\
    - C:\Program Files\Zango\
    - C:\Program Files\Zango Programs\Zango Toolbar\
    - C:\Program Files\Zango Programs\
    - C:\Program Files\Mozilla Firefox\components\npclntax.xpt
    - C:\Program Files\Mozilla Firefox\chrome\m3ffxtbr.manifest
    - C:\Program Files\Mozilla Firefox\chrome\m3ffxtbr.jar
    - C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll
    - C:\Program Files\Mozilla Firefox\plugins\npclntax.dll
    - C:\Program Files\Internet Explorer\msimg32.dll
    - C:\Program Files\MSN Messenger\RICHED20.dll
    - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Zango\

    ---> Fichiers/dossiers supprimés (Seconde passe - Redémarrage de l'ordinateur)

    - Fichiers temporaires effacés
    - C:\Program Files\MyWebSearch\bar\1.bin\
    - C:\Program Files\MyWebSearch\bar\
    - C:\Program Files\MyWebSearch\

    ---> Nettoyage terminé
    21 Mars 2008 21:52:01

    bien
    beau ménage déjà...

    reposte un log hijackthis stp :) 
    22 Mars 2008 01:10:54

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 20:10:37, on 2008-03-21
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16608)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    C:\Program Files\Norton AntiVirus\navapsvc.exe
    C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
    C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
    C:\Program Files\Spyware Doctor\svcntaux.exe
    C:\Program Files\Spyware Doctor\swdsvc.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\ehome\mcrdsvc.exe
    C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\WINDOWS\System32\alg.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Digital Media Reader\readericon45G.exe
    C:\WINDOWS\System32\svchost.exe
    C:\PROGRA~1\NETASS~1\SMARTB~1\MotiveSB.exe
    C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
    C:\Program Files\QuickTime\QTTask.exe
    C:\WINDOWS\eHome\ehmsas.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\Spyware Doctor\SDTrayApp.exe
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\WINDOWS\system32\Rundll32.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\Picasa2\PicasaMediaDetector.exe
    C:\Program Files\BigFix\bigfix.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Program Files\Google\Google Updater\GoogleUpdater.exe
    C:\Program Files\NetAssistant\bin\mpbtn.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\Program Files\MSN Messenger\usnsvc.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O2 - BHO: {5afba7d7-a310-7509-2c44-f42f8b1004a3} - {3a4001b8-f24f-44c2-9057-013a7d7abfa5} - C:\WINDOWS\system32\mbqxtlvy.dll
    O2 - BHO: (no name) - {576148ED-A03F-49AC-8CB9-D0E8F7221BC7} - C:\WINDOWS\system32\pmnli.dll
    O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - C:\WINDOWS\system32\nnnoomm.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
    O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: (no name) - {4D1C4E89-A32A-416B-BCDB-33B3EF3617D3} - (no file)
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
    O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [readericon] C:\Program Files\Digital Media Reader\readericon45G.exe
    O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
    O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NETASS~1\SMARTB~1\MotiveSB.exe
    O4 - HKLM\..\Run: [IntelAudioStudio] "C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" TRAY
    O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKLM\..\Run: [BM57e35b36] Rundll32.exe "C:\WINDOWS\system32\ppsvtvmh.dll",s
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
    O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
    O4 - HKCU\..\Run: [OneMoreKey] C:\Program Files\XP Antivirus\xpa.exe
    O4 - HKCU\..\Run: [Readme manager] C:\DOCUME~1\CHRIST~1\APPLIC~1\SETUPD~1\Axis inside.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Assistant Internet.lnk = C:\Program Files\NetAssistant\bin\matcli.exe
    O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
    O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Christina\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall....
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld...
    O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUpload...
    O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comned.com/signuptemplates/securelogin-d...
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
    O20 - Winlogon Notify: nnnoomm - C:\WINDOWS\SYSTEM32\nnnoomm.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
    O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
    O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
    O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
    O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
    O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe

    --
    End of file - 13840 bytes
    22 Mars 2008 12:40:13

    bonjour
    on continue, il reste encore une infection lop et une vundo...

    Télécharge Lop S&D.exe sur ton bureau

  • Double-clique dessus pour lancer l'installation
  • Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
  • Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré ( C:\lopR.txt )

    ( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
    22 Mars 2008 15:06:30


    -----------------------[ Lop S&D 4.0.9 XP/Vista ]----------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : Christina ] [ "C:\Lop SD" ]
    [ 2008-03-22 | 10:04:09,35 ] [ PC : YOUR-90CDB28E3D ]
    [ MAJ : 21-03-2008 | 01:20 ]

    -------------[ Listing des dossiers dans Application Data ]------------

    [2006-02-10|22:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
    [2006-02-10|22:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
    [2005-08-19|10:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
    [2006-02-10|22:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
    [2006-02-10|22:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
    [2006-02-08|10:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\SampleView

    [2008-03-21|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
    [2008-03-21|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
    [2007-10-21|11:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [2007-07-16|21:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [2006-10-18|20:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [2006-09-24|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [2005-08-19|10:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [2008-03-17|22:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
    [2006-11-11|04:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [2008-03-21|22:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
    [2006-07-22|13:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
    [2006-02-10|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
    [2006-02-10|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
    [2006-07-12|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
    [2007-10-07|16:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [2006-09-17|04:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [2006-07-12|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
    [2006-07-12|23:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MotiveSysIDs
    [2006-02-10|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Prism Deploy
    [2008-02-05|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
    [2007-10-21|10:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [2006-07-13|00:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [2008-03-22|09:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [2006-07-19|09:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

    [2007-07-11|14:51] C:\DOCUME~1\bfbf\APPLIC~1\.
    [2007-07-11|14:51] C:\DOCUME~1\bfbf\APPLIC~1\..
    [2005-08-19|10:01] C:\DOCUME~1\bfbf\APPLIC~1\desktop.ini
    [2007-07-11|14:42] C:\DOCUME~1\bfbf\APPLIC~1\Google
    [2006-02-10|22:20] C:\DOCUME~1\bfbf\APPLIC~1\Identities
    [2007-07-11|14:51] C:\DOCUME~1\bfbf\APPLIC~1\Macromedia
    [2007-07-11|14:54] C:\DOCUME~1\bfbf\APPLIC~1\Microsoft
    [2007-07-11|14:41] C:\DOCUME~1\bfbf\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\bfbf\APPLIC~1\SampleView

    [2008-03-21|16:01] C:\DOCUME~1\CHRIST~1\APPLIC~1\.
    [2008-03-21|16:01] C:\DOCUME~1\CHRIST~1\APPLIC~1\..
    [2008-03-20|15:41] C:\DOCUME~1\CHRIST~1\APPLIC~1\Adobe
    [2007-10-21|10:00] C:\DOCUME~1\CHRIST~1\APPLIC~1\AdobeUM
    [2006-07-14|22:51] C:\DOCUME~1\CHRIST~1\APPLIC~1\Apple Computer
    [2006-09-24|18:30] C:\DOCUME~1\CHRIST~1\APPLIC~1\CyberLink
    [2005-08-19|10:01] C:\DOCUME~1\CHRIST~1\APPLIC~1\desktop.ini
    [2006-11-12|14:40] C:\DOCUME~1\CHRIST~1\APPLIC~1\DivX
    [2007-05-05|10:20] C:\DOCUME~1\CHRIST~1\APPLIC~1\Google
    [2007-12-24|01:36] C:\DOCUME~1\CHRIST~1\APPLIC~1\Help
    [2006-02-10|22:20] C:\DOCUME~1\CHRIST~1\APPLIC~1\Identities
    [2007-12-30|15:38] C:\DOCUME~1\CHRIST~1\APPLIC~1\IMVU
    [2006-07-15|17:55] C:\DOCUME~1\CHRIST~1\APPLIC~1\Macromedia
    [2007-01-07|23:28] C:\DOCUME~1\CHRIST~1\APPLIC~1\Microsoft
    [2006-09-05|18:45] C:\DOCUME~1\CHRIST~1\APPLIC~1\Mozilla
    [2007-10-21|10:39] C:\DOCUME~1\CHRIST~1\APPLIC~1\PC Tools
    [2007-12-28|18:14] C:\DOCUME~1\CHRIST~1\APPLIC~1\PowerChallenge
    [2006-10-11|20:20] C:\DOCUME~1\CHRIST~1\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\CHRIST~1\APPLIC~1\SampleView
    [2007-10-21|13:25] C:\DOCUME~1\CHRIST~1\APPLIC~1\Skype
    [2007-07-31|22:41] C:\DOCUME~1\CHRIST~1\APPLIC~1\Sony Corporation
    [2007-10-21|11:20] C:\DOCUME~1\CHRIST~1\APPLIC~1\Sun
    [2007-09-14|07:23] C:\DOCUME~1\CHRIST~1\APPLIC~1\Symantec

    [2006-02-10|22:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
    [2006-02-10|22:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
    [2005-08-19|10:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [2006-02-10|22:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [2006-02-10|22:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [2006-02-08|10:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView

    [2007-08-31|19:57] C:\DOCUME~1\fff\APPLIC~1\.
    [2007-08-31|19:57] C:\DOCUME~1\fff\APPLIC~1\..
    [2005-08-19|10:01] C:\DOCUME~1\fff\APPLIC~1\desktop.ini
    [2007-08-31|19:50] C:\DOCUME~1\fff\APPLIC~1\Google
    [2006-02-10|22:20] C:\DOCUME~1\fff\APPLIC~1\Identities
    [2007-08-31|19:57] C:\DOCUME~1\fff\APPLIC~1\Macromedia
    [2007-08-31|19:49] C:\DOCUME~1\fff\APPLIC~1\Microsoft
    [2007-08-31|19:49] C:\DOCUME~1\fff\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\fff\APPLIC~1\SampleView

    [2006-09-15|00:41] C:\DOCUME~1\ghd\APPLIC~1\.
    [2006-09-15|00:41] C:\DOCUME~1\ghd\APPLIC~1\..
    [2005-08-19|10:01] C:\DOCUME~1\ghd\APPLIC~1\desktop.ini
    [2006-09-15|00:41] C:\DOCUME~1\ghd\APPLIC~1\Identities
    [2006-09-15|00:41] C:\DOCUME~1\ghd\APPLIC~1\Microsoft
    [2006-09-15|00:41] C:\DOCUME~1\ghd\APPLIC~1\SampleView


    [2007-12-27|10:08] C:\DOCUME~1\INVIT~1\APPLIC~1\.
    [2007-12-27|10:08] C:\DOCUME~1\INVIT~1\APPLIC~1\..
    [2006-08-03|20:54] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
    [2006-07-18|13:14] C:\DOCUME~1\INVIT~1\APPLIC~1\Apple Computer
    [2007-12-27|10:08] C:\DOCUME~1\INVIT~1\APPLIC~1\CyberLink
    [2005-08-19|10:01] C:\DOCUME~1\INVIT~1\APPLIC~1\desktop.ini
    [2007-05-04|18:05] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
    [2006-02-10|22:20] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
    [2006-07-19|07:49] C:\DOCUME~1\INVIT~1\APPLIC~1\InstallShield
    [2006-07-30|10:53] C:\DOCUME~1\INVIT~1\APPLIC~1\InstallShield Installation Information
    [2006-07-26|13:53] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
    [2007-04-15|11:20] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
    [2007-01-18|22:25] C:\DOCUME~1\INVIT~1\APPLIC~1\Mozilla
    [2006-11-30|15:50] C:\DOCUME~1\INVIT~1\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\INVIT~1\APPLIC~1\SampleView
    [2006-07-21|08:01] C:\DOCUME~1\INVIT~1\APPLIC~1\Template
    [2006-07-21|08:01] C:\DOCUME~1\INVIT~1\APPLIC~1\wklnhst.dat


    [2007-10-10|20:06] C:\DOCUME~1\iyiiiii\APPLIC~1\.
    [2007-10-10|20:06] C:\DOCUME~1\iyiiiii\APPLIC~1\..
    [2005-08-19|10:01] C:\DOCUME~1\iyiiiii\APPLIC~1\desktop.ini
    [2007-10-10|20:06] C:\DOCUME~1\iyiiiii\APPLIC~1\Google
    [2006-02-10|22:20] C:\DOCUME~1\iyiiiii\APPLIC~1\Identities
    [2007-10-10|20:06] C:\DOCUME~1\iyiiiii\APPLIC~1\Macromedia
    [2007-10-10|20:05] C:\DOCUME~1\iyiiiii\APPLIC~1\Microsoft
    [2007-10-10|20:05] C:\DOCUME~1\iyiiiii\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\iyiiiii\APPLIC~1\SampleView

    [2006-02-10|22:20] C:\DOCUME~1\jbjbbj\APPLIC~1\.
    [2006-02-10|22:20] C:\DOCUME~1\jbjbbj\APPLIC~1\..
    [2005-08-19|10:01] C:\DOCUME~1\jbjbbj\APPLIC~1\desktop.ini
    [2007-09-27|19:35] C:\DOCUME~1\jbjbbj\APPLIC~1\Google
    [2006-02-10|22:20] C:\DOCUME~1\jbjbbj\APPLIC~1\Identities
    [2007-09-27|19:35] C:\DOCUME~1\jbjbbj\APPLIC~1\Macromedia
    [2006-02-10|22:20] C:\DOCUME~1\jbjbbj\APPLIC~1\Microsoft
    [2007-09-27|19:34] C:\DOCUME~1\jbjbbj\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\jbjbbj\APPLIC~1\SampleView

    [2007-03-06|13:45] C:\DOCUME~1\lll\APPLIC~1\.
    [2007-03-06|13:45] C:\DOCUME~1\lll\APPLIC~1\..
    [2005-08-19|10:01] C:\DOCUME~1\lll\APPLIC~1\desktop.ini
    [2007-03-06|13:45] C:\DOCUME~1\lll\APPLIC~1\Google
    [2006-02-10|22:20] C:\DOCUME~1\lll\APPLIC~1\Identities
    [2007-03-06|13:45] C:\DOCUME~1\lll\APPLIC~1\Macromedia
    [2007-03-06|13:45] C:\DOCUME~1\lll\APPLIC~1\Microsoft
    [2007-03-06|13:45] C:\DOCUME~1\lll\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\lll\APPLIC~1\SampleView

    [2007-11-08|19:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
    [2007-11-08|19:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
    [2006-07-12|18:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
    [2006-09-25|21:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [2007-11-08|19:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

    [2008-03-12|08:48] C:\DOCUME~1\MARLHN~1\APPLIC~1\.
    [2008-03-12|08:48] C:\DOCUME~1\MARLHN~1\APPLIC~1\..
    [2008-03-12|08:48] C:\DOCUME~1\MARLHN~1\APPLIC~1\Adobe
    [2005-08-19|10:01] C:\DOCUME~1\MARLHN~1\APPLIC~1\desktop.ini
    [2007-08-23|18:43] C:\DOCUME~1\MARLHN~1\APPLIC~1\Google
    [2006-02-10|22:20] C:\DOCUME~1\MARLHN~1\APPLIC~1\Identities
    [2008-03-09|11:54] C:\DOCUME~1\MARLHN~1\APPLIC~1\Macromedia
    [2008-03-09|14:56] C:\DOCUME~1\MARLHN~1\APPLIC~1\Microsoft
    [2007-04-27|21:37] C:\DOCUME~1\MARLHN~1\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\MARLHN~1\APPLIC~1\SampleView

    [2008-03-21|15:30] C:\DOCUME~1\Mona\APPLIC~1\.
    [2008-03-21|15:30] C:\DOCUME~1\Mona\APPLIC~1\..
    [2008-03-21|15:29] C:\DOCUME~1\Mona\APPLIC~1\Adobe
    [2005-08-19|10:01] C:\DOCUME~1\Mona\APPLIC~1\desktop.ini
    [2008-03-13|11:12] C:\DOCUME~1\Mona\APPLIC~1\FunWebProducts
    [2008-03-13|17:01] C:\DOCUME~1\Mona\APPLIC~1\Gamelab
    [2008-03-11|16:39] C:\DOCUME~1\Mona\APPLIC~1\Google
    [2006-02-10|22:20] C:\DOCUME~1\Mona\APPLIC~1\Identities
    [2008-03-10|13:21] C:\DOCUME~1\Mona\APPLIC~1\Macromedia
    [2008-03-11|09:32] C:\DOCUME~1\Mona\APPLIC~1\Microsoft
    [2008-03-21|15:30] C:\DOCUME~1\Mona\APPLIC~1\Mozilla
    [2008-03-09|23:32] C:\DOCUME~1\Mona\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\Mona\APPLIC~1\SampleView

    [2006-07-13|00:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
    [2006-07-13|00:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
    [2006-02-10|22:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
    [2006-07-13|00:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

    [2006-02-10|22:20] C:\DOCUME~1\ookkk\APPLIC~1\.
    [2006-02-10|22:20] C:\DOCUME~1\ookkk\APPLIC~1\..
    [2005-08-19|10:01] C:\DOCUME~1\ookkk\APPLIC~1\desktop.ini
    [2007-07-18|14:35] C:\DOCUME~1\ookkk\APPLIC~1\Google
    [2006-02-10|22:20] C:\DOCUME~1\ookkk\APPLIC~1\Identities
    [2007-07-18|14:36] C:\DOCUME~1\ookkk\APPLIC~1\Macromedia
    [2006-02-10|22:20] C:\DOCUME~1\ookkk\APPLIC~1\Microsoft
    [2007-07-18|14:34] C:\DOCUME~1\ookkk\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\ookkk\APPLIC~1\SampleView



    [2006-02-10|22:20] C:\DOCUME~1\uyy7kky\APPLIC~1\.
    [2006-02-10|22:20] C:\DOCUME~1\uyy7kky\APPLIC~1\..
    [2005-08-19|10:01] C:\DOCUME~1\uyy7kky\APPLIC~1\desktop.ini
    [2007-10-17|19:57] C:\DOCUME~1\uyy7kky\APPLIC~1\Google
    [2006-02-10|22:20] C:\DOCUME~1\uyy7kky\APPLIC~1\Identities
    [2007-10-17|19:57] C:\DOCUME~1\uyy7kky\APPLIC~1\Macromedia
    [2006-02-10|22:20] C:\DOCUME~1\uyy7kky\APPLIC~1\Microsoft
    [2007-10-17|19:56] C:\DOCUME~1\uyy7kky\APPLIC~1\Real
    [2006-02-08|10:08] C:\DOCUME~1\uyy7kky\APPLIC~1\SampleView

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [2008-03-21 18:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
    [2008-03-17 20:20][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [2008-03-22 00:20][--a------] C:\WINDOWS\tasks\WebReg 20060905002057.job
    [2008-03-21 17:52][--a------] C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 2170 series#1153591088.job
    [2008-03-21 20:00][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Scan my computer - Owner.job
    [2006-07-27 18:30][--a------] C:\WINDOWS\tasks\Rappel d'abonnement 3 auprŠs de l'ISP.job
    [2006-07-22 23:45][--a------] C:\WINDOWS\tasks\Rappel d'abonnement 2 auprŠs de l'ISP.job
    [2006-07-14 23:45][--a------] C:\WINDOWS\tasks\Rappel d'abonnement 1 auprŠs de l'ISP.job
    [2008-03-22 09:52][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [2004-08-10 15:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [2008-03-21|16:32] C:\Program Files\.
    [2008-03-21|16:32] C:\Program Files\..
    [2007-12-18|19:12] C:\Program Files\Adobe
    [2007-05-14|20:36] C:\Program Files\Apple Software Update
    [2008-03-13|17:42] C:\Program Files\BellesBeautyBoutique_at
    [2006-02-10|22:21] C:\Program Files\BigFix
    [2007-08-26|01:38] C:\Program Files\BingoCafe
    [2007-12-07|01:03] C:\Program Files\Bonjour
    [2006-07-12|22:44] C:\Program Files\Common Files
    [2005-08-19|17:09] C:\Program Files\ComPlus Applications
    [2006-02-10|22:21] C:\Program Files\CONEXANT
    [2006-02-10|22:21] C:\Program Files\CyberLink
    [2006-02-10|22:21] C:\Program Files\Digital Media Reader
    [2007-10-21|11:37] C:\Program Files\DivX
    [2008-03-13|15:53] C:\Program Files\DreamDayFirstHome_at
    [2006-07-22|23:48] C:\Program Files\EA SPORTS
    [2006-08-22|14:21] C:\Program Files\EGirl_v15
    [2007-12-07|00:44] C:\Program Files\Fichiers communs
    [2007-10-21|11:37] C:\Program Files\Google
    [2006-07-22|13:51] C:\Program Files\Hewlett-Packard
    [2006-09-25|20:25] C:\Program Files\INSTALL.LOG
    [2007-06-04|11:56] C:\Program Files\InstallShield Installation Information
    [2006-08-25|22:43] C:\Program Files\IntCodec
    [2006-02-10|22:21] C:\Program Files\Intel
    [2006-02-10|22:21] C:\Program Files\Intel Audio Studio
    [2007-01-03|16:56] C:\Program Files\InterActual
    [2008-03-21|17:09] C:\Program Files\Internet Explorer
    [2007-07-16|21:48] C:\Program Files\iPod
    [2007-07-16|21:48] C:\Program Files\iTunes
    [2008-03-13|12:45] C:\Program Files\Java
    [2008-03-13|17:01] C:\Program Files\JojosFashionShow_at
    [2006-10-13|19:53] C:\Program Files\Kazaa
    [2006-02-10|22:21] C:\Program Files\McAfee
    [2006-02-10|22:21] C:\Program Files\Messenger
    [2008-03-16|22:40] C:\Program Files\Messenger Plus! Live
    [2006-02-10|22:21] C:\Program Files\Microsoft Digital Image 2006
    [2006-07-19|09:38] C:\Program Files\microsoft frontpage
    [2007-12-17|16:08] C:\Program Files\Microsoft Games
    [2006-09-05|23:38] C:\Program Files\Microsoft Money 2005
    [2006-07-19|09:38] C:\Program Files\Microsoft Office
    [2006-07-19|09:39] C:\Program Files\Microsoft Visual Studio
    [2006-02-10|22:21] C:\Program Files\Microsoft Works
    [2006-08-22|15:46] C:\Program Files\Montorgueil
    [2006-07-12|23:43] C:\Program Files\Motive
    [2006-02-10|22:21] C:\Program Files\Movie Maker
    [2008-03-21|15:48] C:\Program Files\Mozilla Firefox
    [2006-02-10|22:21] C:\Program Files\MSN
    [2006-02-10|22:21] C:\Program Files\MSN Encarta Plus
    [2006-02-10|22:21] C:\Program Files\MSN Gaming Zone
    [2008-03-21|16:17] C:\Program Files\MSN Messenger
    [2006-11-15|14:55] C:\Program Files\MSXML 4.0
    [2006-09-16|17:12] C:\Program Files\NetAssistant
    [2006-02-10|22:21] C:\Program Files\NetMeeting
    [2006-07-13|00:10] C:\Program Files\Norton AntiVirus
    [2008-03-21|15:04] C:\Program Files\Norton Security Scan
    [2006-02-10|22:21] C:\Program Files\Online Services
    [2007-06-13|07:32] C:\Program Files\Outlook Express
    [2007-11-08|21:33] C:\Program Files\Photo-Brush
    [2007-12-06|23:34] C:\Program Files\PhotoFiltre
    [2007-12-06|01:20] C:\Program Files\Picasa2
    [2007-07-16|21:47] C:\Program Files\QuickTime
    [2006-10-08|13:48] C:\Program Files\Real
    [2006-08-07|04:49] C:\Program Files\RealVegas Online Fun Only
    [2006-08-11|22:25] C:\Program Files\Rockstar Games
    [2008-03-11|16:41] C:\Program Files\SallysSalon_at
    [2006-02-10|22:21] C:\Program Files\Services en ligne
    [2006-02-10|22:21] C:\Program Files\SigmaTel
    [2007-10-21|10:59] C:\Program Files\Skype
    [2007-03-08|21:41] C:\Program Files\solarus
    [2007-06-04|12:10] C:\Program Files\Sony
    [2008-03-19|23:49] C:\Program Files\Spyware Doctor
    [2007-10-21|11:22] C:\Program Files\Sun
    [2006-07-13|00:06] C:\Program Files\Symantec
    [2008-03-21|12:51] C:\Program Files\Trend Micro
    [2005-08-19|17:22] C:\Program Files\Uninstall Information
    [2007-10-07|16:12] C:\Program Files\Windows Live
    [2007-01-01|21:39] C:\Program Files\Windows Media Connect 2
    [2007-01-02|09:13] C:\Program Files\Windows Media Player
    [2006-02-10|22:21] C:\Program Files\Windows NT
    [2006-02-10|22:21] C:\Program Files\Windows Plus
    [2005-08-19|17:12] C:\Program Files\WindowsUpdate
    [2006-02-10|22:21] C:\Program Files\xerox
    [2008-03-10|23:09] C:\Program Files\XP Antivirus

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [2007-12-07|00:44] C:\Program Files\Fichiers communs\.
    [2007-12-07|00:44] C:\Program Files\Fichiers communs\..
    [2007-12-07|01:03] C:\Program Files\Fichiers communs\Adobe
    [2007-07-16|21:46] C:\Program Files\Fichiers communs\Apple
    [2006-07-19|09:39] C:\Program Files\Fichiers communs\Designer
    [2006-07-22|13:52] C:\Program Files\Fichiers communs\Hewlett-Packard
    [2006-02-10|22:21] C:\Program Files\Fichiers communs\InstallShield
    [2006-02-10|22:21] C:\Program Files\Fichiers communs\Java
    [2007-12-07|00:44] C:\Program Files\Fichiers communs\Macrovision Shared
    [2006-07-19|09:39] C:\Program Files\Fichiers communs\Microsoft Shared
    [2006-07-12|22:44] C:\Program Files\Fichiers communs\Motive
    [2006-02-10|22:21] C:\Program Files\Fichiers communs\MSSoap
    [2006-02-10|22:21] C:\Program Files\Fichiers communs\New Boundary
    [2006-02-10|22:21] C:\Program Files\Fichiers communs\ODBC
    [2006-10-08|13:49] C:\Program Files\Fichiers communs\Real
    [2006-02-10|22:21] C:\Program Files\Fichiers communs\Services
    [2007-10-21|10:59] C:\Program Files\Fichiers communs\Skype
    [2006-02-10|22:21] C:\Program Files\Fichiers communs\SpeechEngines
    [2008-03-21|17:09] C:\Program Files\Fichiers communs\Symantec Shared
    [2007-06-13|07:32] C:\Program Files\Fichiers communs\System
    [2006-10-08|13:49] C:\Program Files\Fichiers communs\xing shared

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    Aucun fichier / dossier Lop trouvé !

    ----------------------[ Verification du Registre ]----------------------

    ..... OK !

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-03-22 10:05:18
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden files ...
    scan completed successfully
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    C:\WINDOWS\system32\ilnmp.ini2
    C:\WINDOWS\system32\opqss.ini2
    ! VUNDO Possible !


    /!\ [Fich:376][Doss:12] C:\DOCUME~1\CHRIST~1\LOCALS~1\Temp
    /!\ [Fich:103][Doss:0] C:\DOCUME~1\CHRIST~1\Cookies
    /!\ [Fich:4168][Doss:53] C:\DOCUME~1\CHRIST~1\LOCALS~1\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 10:05:35,43 ]----------------------
    22 Mars 2008 18:57:16

    re

    ~Télécharge VundoFix.exe (par Atribune) sur ton Bureau.
    http://www.atribune.org/ccount/click.php?id=4
    Double-clique VundoFix.exe afin de le lancer
    Clique sur le bouton Scan for Vundo.
    ~Lorsque le scan est complété, clique sur le bouton Remove Vundo
    Une invite te demandera si tu veux supprimer les fichiers, clique YES
    Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers
    Tu verras une invite qui t'annonce que ton PC va redémarrer; clique OK.
    ~Copie/colle le contenu du rapport situé dans C:\vundofix.txt ainsi qu'un nouveau rapport HijackThis dans ta prochaine réponse
    Note: Il est possible que VundoFix soit confronté à un fichier qu'il ne peut supprimer. Si tel est le cas, l'outil se lancera au prochain redémarrage; il faut simplement suivre les instructions ci-haut, à partir de "clique sur le bouton Scan for Vundo
    22 Mars 2008 23:36:27

    Je n'ai pas le bouton Remove Vundo. J'ai seulement Scan for Vundo et Fix Vundo. Ou je suis duppose trouver Remove Vundo.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS